Welcome to MalwareRemoval.com,
What if we told you that you could get malware removal help from experts, and that it was 100% free? MalwareRemoval.com provides free support for people with infected computers. Our help, and the tools we use are always 100% free. No hidden catch. We simply enjoy helping others. You enjoy a clean, safe computer.

Malware Removal Instructions

Removal of new toolbar

MalwareRemoval.com provides free support for people with infected computers. Using plain language that anyone can understand, our community of volunteer experts will walk you through each step.

Re: Removal of new toolbar

Unread postby sweetjopye » May 30th, 2013, 7:56 am

Hi pgmigg, here they are. The only problem I can still see with the computer is that
Firefox will not shut down. It just keeps running even when I close it. I've been opening
the task manager to close it down. sweetjopye

2013-05-29 20:39:39 . 2013-05-29 20:39:39 582 ----a-w- C:\Qoobox\Quarantine\Registry_backups\AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA}.reg.dat
2013-05-29 20:39:24 . 2013-05-29 20:39:24 484 ----a-w- C:\Qoobox\Quarantine\Registry_backups\Notify-TPSvc.reg.dat
2013-05-29 20:39:14 . 2013-05-29 20:39:14 163 ----a-w- C:\Qoobox\Quarantine\Registry_backups\HKCU-Run-DW6.reg.dat
2013-05-29 20:39:13 . 2013-05-29 20:39:13 1,802 ----a-w- C:\Qoobox\Quarantine\Registry_backups\Toolbar-{8660E5B3-6C41-44DE-8503-98D99BBECD41}.reg.dat
2013-05-26 00:10:23 . 1997-06-10 16:04:10 27,648 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\_detmp.2.vir
2010-05-10 18:44:36 . 2010-05-12 12:36:33 1,956,656 ----a-w- C:\Qoobox\Quarantine\C\install_flash_player_ax.exe.vir
2010-01-29 18:05:01 . 2010-01-29 18:05:01 171 ----a-w- C:\Qoobox\Quarantine\Registry_backups\WebBrowser-{CCC7A320-B3CA-4199-B1A6-9F516DD69829}.reg.dat
2010-01-29 18:05:00 . 2010-01-29 18:05:00 132 ----a-w- C:\Qoobox\Quarantine\Registry_backups\Toolbar-{CCC7A320-B3CA-4199-B1A6-9F516DD69829}.reg.dat
2010-01-29 18:00:48 . 2004-09-13 17:15:24 53 ----a-w- C:\Qoobox\Quarantine\D\Autorun.inf.vir
2010-01-29 17:58:27 . 2013-05-29 21:18:31 6,120 ----a-w- C:\Qoobox\Quarantine\Registry_backups\tcpip.reg
2010-01-29 17:47:21 . 2013-05-29 21:07:14 204 ----a-w- C:\Qoobox\Quarantine\catchme.log
2009-06-27 13:11:50 . 2009-06-27 13:13:43 4 ----a-w- C:\Qoobox\Quarantine\C\Documents and Settings\Owner\Application Data\78B685.vir
2009-01-31 00:35:54 . 2009-01-31 00:35:54 133,632 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\SETD0.tmp.vir
2009-01-31 00:34:02 . 2009-01-31 00:34:02 254,976 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\SETC0.tmp.vir
2009-01-31 00:34:02 . 2009-01-31 00:34:02 166,912 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\SETC2.tmp.vir
2007-11-10 03:59:25 . 2006-08-18 01:14:56 13,824 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\Thumbs.db.vir
2007-11-07 12:03:18 . 2007-11-07 12:03:18 562,688 ----a-w- C:\Qoobox\Quarantine\C\install.exe.vir
2006-10-19 01:47:22 . 2006-10-19 01:47:22 2,450,944 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\SET93.tmp.vir
2006-10-19 01:47:20 . 2006-10-19 01:47:20 937,984 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\SET8C.tmp.vir
2006-10-19 01:47:18 . 2006-10-19 01:47:18 222,208 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\SET87.tmp.vir
2006-10-19 01:47:08 . 2006-10-19 01:47:08 276,992 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\SETA0.tmp.vir
2006-05-07 00:44:09 . 2006-05-07 00:44:09 0 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\URTTemp\mscoree.dll.local.vir
2006-05-07 00:44:09 . 2003-02-21 18:42:22 348,160 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\URTTemp\msvcr71.dll.vir
2006-05-07 00:44:09 . 2003-02-21 09:06:24 155,648 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\URTTemp\mscoree.dll.vir
2006-05-07 00:44:09 . 2003-02-21 09:09:18 77,824 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\URTTemp\mscorsn.dll.vir
2006-05-07 00:44:09 . 2003-02-21 09:08:32 2,482,176 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\URTTemp\mscorwks.dll.vir
2006-05-07 00:44:09 . 2003-02-21 09:06:20 282,624 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\URTTemp\fusion.dll.vir
2003-02-21 19:16:08 . 2003-02-21 19:16:08 49,152 ----a-w- C:\Qoobox\Quarantine\C\WINDOWS\system32\URTTemp\regtlib.exe.vir

ComboFix 13-05-30.01 - Owner 05/29/2013 16:22:39.2.1 - x86
Microsoft Windows XP Home Edition 5.1.2600.3.1252.1.1033.18.895.155 [GMT -4:00]
Running from: c:\documents and settings\Owner\Desktop\ComboFix.exe
AV: avast! Internet Security *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\Default User\WINDOWS
c:\documents and settings\Owner\Application Data\78B685
c:\documents and settings\Owner\WINDOWS
C:\install.exe
C:\install_flash_player_ax.exe
c:\windows\_detmp.2
c:\windows\system32\config\systemprofile\WINDOWS
c:\windows\system32\SET87.tmp
c:\windows\system32\SET8C.tmp
c:\windows\system32\SET93.tmp
c:\windows\system32\SETA0.tmp
c:\windows\system32\SETC0.tmp
c:\windows\system32\SETC2.tmp
c:\windows\system32\SETD0.tmp
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
.
.
((((((((((((((((((((((((( Files Created from 2013-04-28 to 2013-05-29 )))))))))))))))))))))))))))))))
.
.
2013-05-28 11:28 . 2013-05-28 11:28 -------- d-----w- c:\windows\ERUNT
2013-05-28 11:27 . 2013-05-28 11:27 -------- d-----w- C:\JRT
2013-05-27 18:02 . 2013-05-27 18:02 -------- d-----w- c:\windows\system32\wbem\Repository
2013-05-27 17:59 . 2013-05-27 17:59 -------- d-----w- c:\program files\Common Files\Apple
2013-05-27 17:59 . 2013-05-27 17:59 -------- d-----w- c:\program files\Apple Software Update
2013-05-27 17:59 . 2013-05-27 17:59 -------- d-----w- c:\program files\ConvertHelper
2013-05-27 17:52 . 2013-05-27 17:52 -------- d-----w- c:\program files\Nokia
2013-05-26 21:44 . 2013-05-27 17:49 -------- d-----w- c:\program files\Spybot - Search & Destroy
2013-05-26 21:44 . 2013-05-27 17:49 -------- d-----w- c:\documents and settings\All Users\Application Data\Spybot - Search & Destroy
2013-05-10 07:57 . 2013-05-10 07:57 187456 ----a-w- c:\program files\Internet Explorer\PLUGINS\nppdf32.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-05-15 14:23 . 2012-03-31 00:37 692104 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2013-05-15 14:23 . 2012-01-01 22:12 71048 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2013-04-16 21:59 . 2006-05-07 00:24 841216 ----a-w- c:\windows\system32\wininet.dll
2013-04-16 21:59 . 2006-05-07 00:24 841216 ----a-w- c:\windows\system32\wininet(2)(2).dll
2013-04-16 21:59 . 2006-05-07 00:24 1172992 ----a-w- c:\windows\system32\urlmon(2)(2).dll
2013-04-16 21:59 . 2006-05-07 00:24 106496 ----a-w- c:\windows\system32\url(2)(2).dll
2013-04-16 21:59 . 2006-05-07 00:24 1830912 ----a-w- c:\windows\system32\inetcpl.cpl
2013-04-16 21:59 . 2006-10-17 19:57 268288 ----a-w- c:\windows\system32\iertutil(2)(2).dll
2013-04-16 21:59 . 2006-05-07 00:24 78336 ----a-w- c:\windows\system32\ieencode.dll
2013-04-16 21:59 . 2006-05-07 00:24 17408 ------w- c:\windows\system32\corpol.dll
2013-04-12 23:28 . 2006-05-07 00:24 389120 ----a-w- c:\windows\system32\html.iec
2013-04-10 01:31 . 2006-05-07 00:24 1876352 ----a-w- c:\windows\system32\win32k.sys
2013-04-10 01:31 . 2006-05-07 00:24 1876352 ----a-w- c:\windows\system32\win32k(2)(2).sys
2013-04-04 09:35 . 2013-04-24 11:53 94112 ----a-w- c:\windows\system32\WindowsAccessBridge.dll
2013-03-13 16:17 . 2012-06-15 12:42 861088 ----a-w- c:\windows\system32\npdeployJava1.dll
2013-03-13 16:17 . 2010-04-24 02:04 782240 ----a-w- c:\windows\system32\deployJava1.dll
2013-03-08 08:36 . 2006-05-07 00:24 293376 ----a-w- c:\windows\system32\winsrv.dll
2013-03-07 01:28 . 2006-05-07 00:24 2193408 ------w- c:\windows\system32\ntoskrnl.exe
2013-03-07 00:50 . 2004-08-04 05:59 2070016 ------w- c:\windows\system32\ntkrnlpa.exe
2013-03-06 22:33 . 2013-03-18 16:27 49248 ----a-w- c:\windows\system32\drivers\aswRvrt.sys
2013-03-06 22:33 . 2013-03-18 16:27 164736 ----a-w- c:\windows\system32\drivers\aswVmm.sys
2013-03-06 22:33 . 2012-03-10 22:12 368176 ----a-w- c:\windows\system32\drivers\aswSP.sys
2013-03-06 22:33 . 2012-03-10 22:12 765736 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2013-03-06 22:33 . 2012-03-10 22:12 62376 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2013-03-06 22:33 . 2012-03-10 22:12 49760 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2013-03-06 22:33 . 2013-03-18 16:27 66336 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
2013-03-06 22:33 . 2012-03-10 22:12 29816 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2013-03-06 22:32 . 2012-03-10 22:11 41664 ----a-w- c:\windows\avastSS.scr
2013-03-06 22:32 . 2012-03-10 22:11 228600 ----a-w- c:\windows\system32\aswBoot.exe
2008-04-08 11:12 . 2008-04-08 11:12 774144 ----a-w- c:\program files\RngInterstitial.dll
2011-02-28 22:01 . 2013-05-28 13:18 28472 ----a-w- c:\program files\mozilla firefox\plugins\atgpcdec.dll
2011-02-28 22:01 . 2013-05-28 13:18 185224 ----a-w- c:\program files\mozilla firefox\plugins\atgpcext.dll
2011-02-28 22:01 . 2013-05-28 13:18 99208 ----a-w- c:\program files\mozilla firefox\plugins\ieatgpc.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2013-03-06 22:32 121968 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"OpenDNS Updater"="c:\program files\OpenDNS Updater\OpenDNSUpdater.exe" [2010-06-16 839680]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"="RTHDCPL.EXE" [2007-09-27 16844800]
"SkyTel"="SkyTel.EXE" [2007-08-03 1826816]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2002-09-14 212992]
"Reminder"="c:\windows\Creator\Remind_XP.exe" [2005-02-26 966656]
"RemoteControl"="c:\program files\CyberLink\PowerDVD\PDVDServ.exe" [2006-11-23 56928]
"LanguageShortcut"="c:\program files\CyberLink\PowerDVD\Language\Language.exe" [2006-11-29 58928]
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" [2010-08-31 185896]
"HP Software Update"="c:\program files\Hp\HP Software Update\HPWuSchd2.exe" [2010-06-10 49208]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2013-04-04 958576]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2013-03-06 4767304]
"RIMBBLaunchAgent.exe"="c:\program files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe" [2011-11-02 90448]
"APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2012-10-12 59280]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2012-10-25 421888]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2013-03-12 253816]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"AvgUninstallURL"="start http://www.avg.com/ww.special-uninstall ... =10.0.1204" [?]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
Driver performer.lnk - c:\documents and settings\Owner\Desktop\DriverPerformer_18i.exe [N/A]
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\OpenDNS Updater\\OpenDNSUpdater.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\WINDOWS\\system32\\freecell.exe"=
"c:\\Program Files\\Vivitar Experience Image Manager\\Vivitar.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Program Files\\Google\\Google Earth\\plugin\\geplugin.exe"=
"c:\\Program Files\\Google\\Google Earth\\client\\googleearth.exe"=
"c:\\Program Files\\Bonjour\\mDNSResponder.exe"=
"c:\\Program Files\\Research In Motion\\BlackBerry Desktop\\Rim.Desktop.exe"=
"c:\\Program Files\\Common Files\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Documents and Settings\\Owner\\Local Settings\\Application Data\\Google\\Google Talk Plugin\\googletalkplugin.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\IcmpSettings]
"AllowInboundEchoRequest"= 1 (0x1)
.
R0 aswRvrt;aswRvrt;c:\windows\system32\drivers\aswRvrt.sys [3/18/2013 12:27 PM 49248]
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [3/10/2012 6:12 PM 765736]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [3/10/2012 6:12 PM 368176]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [3/10/2012 6:12 PM 29816]
R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [3/18/2013 12:27 PM 66336]
R2 Iprip;RIP Listener;c:\windows\System32\svchost.exe -k netsvcs [5/6/2006 8:24 PM 14336]
S2 gupdate1c9a98c50a0c980;Google Update Service (gupdate1c9a98c50a0c980);c:\program files\Google\Update\GoogleUpdate.exe [3/20/2009 2:47 PM 133104]
S3 aswVmm;aswVmm;c:\windows\system32\drivers\aswVmm.sys [3/18/2013 12:27 PM 164736]
S3 el575nd5;3Com Megahertz 10/100 LAN CardBus PC Card Driver;c:\windows\system32\drivers\el575ND5.sys [7/1/2006 12:44 AM 69692]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
p2psvc REG_MULTI_SZ p2psvc p2pimsvc p2pgasvc PNRPSvc
.
Contents of the 'Scheduled Tasks' folder
.
2013-05-29 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-03-31 14:23]
.
2013-05-28 c:\windows\Tasks\At1.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-17 01:12]
.
2013-05-29 c:\windows\Tasks\At2.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-17 01:12]
.
2013-05-28 c:\windows\Tasks\At3.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-17 01:12]
.
2013-05-29 c:\windows\Tasks\At4.job
- c:\program files\HP\HP Deskjet 2050 J510 series\Bin\HPCustPartic.exe [2010-11-17 01:12]
.
2013-05-29 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-09 22:32]
.
2013-05-29 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-03-20 18:47]
.
2013-05-29 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-03-20 18:47]
.
2013-05-29 c:\windows\Tasks\RealUpgradeLogonTaskS-1-5-21-3579281925-3374184885-2556633510-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]
.
2013-05-25 c:\windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-3579281925-3374184885-2556633510-1003.job
- c:\program files\Real\RealUpgrade\realupgrade.exe [2010-02-25 02:09]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://my.yahoo.com/
mStart Page = hxxp://www.gateway.com/g/startpage.html ... TP&M=W3644
uInternet Settings,ProxyOverride = <local>;*.local
Trusted Zone: secunia.com\www
TCP: DhcpNameServer = 192.168.2.1
FF - ProfilePath - c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\1gfknr99.default\
FF - ExtSQL: 2013-05-26 12:39; wrc@avast.com; c:\program files\AVAST Software\Avast\WebRep\FF
FF - ExtSQL: 2013-05-27 13:56; {0545b830-f0aa-4d7e-8820-50a4629a56fe}; c:\documents and settings\Owner\Application Data\Mozilla\Firefox\Profiles\1gfknr99.default\extensions\{0545b830-f0aa-4d7e-8820-50a4629a56fe}
.
- - - - ORPHANS REMOVED - - - -
.
Toolbar-{8660E5B3-6C41-44DE-8503-98D99BBECD41} - c:\program files\Coupons.com CouponBar\tbcore3.dll
HKCU-Run-DW6 - c:\program files\The Weather Channel FW\Desktop\DesktopWeather.exe
Notify-TPSvc - TPSvc.dll
AddRemove-{09FF4DB8-7DE9-4D47-B7DB-915DB7D9A8CA} - c:\documents and settings\All Users\Application Data\{83C3B2FD-37EA-4C06-A228-E9B5E32FF0B1}\bm_installer.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2013-05-29 16:37
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_7_700_202_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
Completion time: 2013-05-29 16:40:21
ComboFix-quarantined-files.txt 2013-05-29 20:40
ComboFix2.txt 2010-01-29 18:06
.
Pre-Run: 115,204,894,720 bytes free
Post-Run: 117,552,594,944 bytes free
.
WindowsXP-KB310994-SP2-Home-BootDisk-ENU.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Home Edition" /noexecute=optin /fastdetect
.
- - End Of File - - 4DAC8E951E786F276F21650EC308BB65
sweetjopye
Active Member
 
Posts: 14
Joined: May 27th, 2013, 8:21 am
Advertisement
Register to Remove

Re: Removal of new toolbar

Unread postby pgmigg » May 30th, 2013, 1:58 pm

Hello sweetjopye,

Thank you for proper log. Very good job! :D
The only problem I can still see with the computer is that
Firefox will not shut down. It just keeps running even when I close it. I've been opening
the task manager to close it down.
Let continue and will resolve this issue too...

Step 1.
TDSSKiller - Rootkit Removal Tool - Scan only
Please download the TDSSKiller.exe by Kaspersky and save it to your Desktop. <-Important!!!
  1. Restart your computer and don't run (open) any applications.
  2. Double-click on TDSSKiller.exe to run the tool for known TDSS/TDL variants.
    If TDSSKiller does not run, please rename it. Right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. zarodinu.com).
    If you don't see file extensions, please see: How to change the file extension.
  3. Then click on Change parameters.
  4. Put a checkmark beside Loaded modules. A reboot will be needed to apply the changes. Do it. TDSSKiller will launch automatically after the reboot. Also your computer may seem very slow and unusable. This is normal. Give it enough time to load your background programs.
  5. Then click on Change parameters in TDSSKiller. Check all boxes and then click OK.
  6. Click the Start Scan button. Do not use the computer during the scan!
  7. If the scan completes with nothing found, click Close to exit.
  8. If malicious objects are found, they will show in the "Scan results - Select action for found objects" and offer 3 options.
    • Please select Skip instead of Cure (default).
  9. Then click Continue, then Close and then Close again.
  10. A log file named TDSSKiller_version_dd.mm.yyyy_hh.mm.ss_log.txt will be created and saved to the root directory (usually Local Disk C:).
  11. Copy and paste the contents of that file in your next reply.

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of TDSSKiller report file.

Please do not hesitate to divide the post into multiple if it is too long...

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Removal of new toolbar

Unread postby sweetjopye » May 30th, 2013, 4:02 pm

Hi pgmigg, here's part of it15:00:15.0593 0556 TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:00:16.0375 0556 ============================================================
15:00:16.0375 0556 Current date / time: 2013/05/30 15:00:16.0375
15:00:16.0375 0556 SystemInfo:
15:00:16.0375 0556
15:00:16.0375 0556 OS Version: 5.1.2600 ServicePack: 3.0
15:00:16.0375 0556 Product type: Workstation
15:00:16.0375 0556 ComputerName: YOUR-BC185A12A1
15:00:16.0375 0556 UserName: Owner
15:00:16.0375 0556 Windows directory: C:\WINDOWS
15:00:16.0390 0556 System windows directory: C:\WINDOWS
15:00:16.0390 0556 Processor architecture: Intel x86
15:00:16.0390 0556 Number of processors: 1
15:00:16.0390 0556 Page size: 0x1000
15:00:16.0390 0556 Boot type: Normal boot
15:00:16.0390 0556 ============================================================
15:00:18.0375 0556 BG loaded
15:00:19.0312 0556 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
15:00:19.0359 0556 ============================================================
15:00:19.0359 0556 \Device\Harddisk0\DR0:
15:00:19.0437 0556 MBR partitions:
15:00:19.0437 0556 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0xA30359, BlocksNum 0x11FE8768
15:00:19.0437 0556 \Device\Harddisk0\DR0\Partition2: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xA3031A
15:00:19.0437 0556 ============================================================
15:00:20.0078 0556 C: <-> \Device\Harddisk0\DR0\Partition1
15:00:20.0125 0556 D: <-> \Device\Harddisk0\DR0\Partition2
15:00:20.0125 0556 ============================================================
15:00:20.0125 0556 Initialize success
15:00:20.0125 0556 ============================================================
15:00:59.0031 4008 ============================================================
15:00:59.0031 4008 Scan started
15:00:59.0031 4008 Mode: Manual; SigCheck; TDLFS;
15:00:59.0031 4008 ============================================================
15:01:00.0031 4008 ================ Scan system memory ========================
15:01:00.0031 4008 System memory - ok
15:01:00.0031 4008 ================ Scan services =============================
15:01:00.0187 4008 [ C07D5197410AAB28D0D93F943F59656D ] 6to4 C:\WINDOWS\System32\6to4svc.dll
15:01:03.0578 4008 6to4 - ok
15:01:03.0609 4008 Abiosdsk - ok
15:01:03.0625 4008 [ 6ABB91494FE6C59089B9336452AB2EA3 ] abp480n5 C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
15:01:03.0718 4008 abp480n5 - ok
15:01:03.0750 4008 [ 8FD99680A539792A30E97944FDAECF17 ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:01:03.0906 4008 ACPI - ok
15:01:03.0921 4008 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
15:01:04.0062 4008 ACPIEC - ok
15:01:04.0140 4008 [ F040037B149FD0F5A5044AE563390FA7 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:01:04.0156 4008 AdobeFlashPlayerUpdateSvc - ok
15:01:04.0171 4008 [ 9A11864873DA202C996558B2106B0BBC ] adpu160m C:\WINDOWS\system32\DRIVERS\adpu160m.sys
15:01:04.0343 4008 adpu160m - ok
15:01:04.0375 4008 [ 8BED39E3C35D6A489438B8141717A557 ] aec C:\WINDOWS\system32\drivers\aec.sys
15:01:04.0546 4008 aec - ok
15:01:04.0593 4008 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD C:\WINDOWS\System32\drivers\afd.sys
15:01:04.0640 4008 AFD - ok
15:01:04.0671 4008 [ 08FD04AA961BDC77FB983F328334E3D7 ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
15:01:04.0828 4008 agp440 - ok
15:01:04.0843 4008 [ 03A7E0922ACFE1B07D5DB2EEB0773063 ] agpCPQ C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
15:01:05.0000 4008 agpCPQ - ok
15:01:05.0015 4008 [ C23EA9B5F46C7F7910DB3EAB648FF013 ] Aha154x C:\WINDOWS\system32\DRIVERS\aha154x.sys
15:01:05.0093 4008 Aha154x - ok
15:01:05.0109 4008 [ 19DD0FB48B0C18892F70E2E7D61A1529 ] aic78u2 C:\WINDOWS\system32\DRIVERS\aic78u2.sys
15:01:05.0234 4008 aic78u2 - ok
15:01:05.0250 4008 [ B7FE594A7468AA0132DEB03FB8E34326 ] aic78xx C:\WINDOWS\system32\DRIVERS\aic78xx.sys
15:01:05.0406 4008 aic78xx - ok
15:01:05.0421 4008 [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter C:\WINDOWS\system32\alrsvc.dll
15:01:05.0609 4008 Alerter - ok
15:01:05.0625 4008 [ 8C515081584A38AA007909CD02020B3D ] ALG C:\WINDOWS\System32\alg.exe
15:01:05.0734 4008 ALG - ok
15:01:05.0765 4008 [ 1140AB9938809700B46BB88E46D72A96 ] AliIde C:\WINDOWS\system32\DRIVERS\aliide.sys
15:01:05.0937 4008 AliIde - ok
15:01:05.0937 4008 [ CB08AED0DE2DD889A8A820CD8082D83C ] alim1541 C:\WINDOWS\system32\DRIVERS\alim1541.sys
15:01:06.0156 4008 alim1541 - ok
15:01:06.0171 4008 [ 95B4FB835E28AA1336CEEB07FD5B9398 ] amdagp C:\WINDOWS\system32\DRIVERS\amdagp.sys
15:01:06.0343 4008 amdagp - ok
15:01:06.0375 4008 [ 79F5ADD8D24BD6893F2903A3E2F3FAD6 ] amsint C:\WINDOWS\system32\DRIVERS\amsint.sys
15:01:06.0500 4008 amsint - ok
15:01:06.0515 4008 AppMgmt - ok
15:01:06.0546 4008 [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
15:01:06.0750 4008 Arp1394 - ok
15:01:06.0765 4008 [ 62D318E9A0C8FC9B780008E724283707 ] asc C:\WINDOWS\system32\DRIVERS\asc.sys
15:01:06.0984 4008 asc - ok
15:01:07.0015 4008 [ 69EB0CC7714B32896CCBFD5EDCBEA447 ] asc3350p C:\WINDOWS\system32\DRIVERS\asc3350p.sys
15:01:07.0125 4008 asc3350p - ok
15:01:07.0140 4008 [ 5D8DE112AA0254B907861E9E9C31D597 ] asc3550 C:\WINDOWS\system32\DRIVERS\asc3550.sys
15:01:07.0296 4008 asc3550 - ok
15:01:07.0359 4008 [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
15:01:07.0390 4008 aspnet_state - ok
15:01:07.0406 4008 [ CCDA8D84FD02AEC52E62F296433AE9DC ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
15:01:09.0078 4008 aswFsBlk - ok
15:01:09.0125 4008 [ A6E20E62871A28A0F1C05B1681848FA7 ] aswMonFlt C:\WINDOWS\system32\drivers\aswMonFlt.sys
15:01:09.0140 4008 aswMonFlt - ok
15:01:09.0171 4008 [ C1A411B7CCD604554D96EFDAC2F83617 ] AswRdr C:\WINDOWS\system32\drivers\AswRdr.sys
15:01:09.0187 4008 AswRdr - ok
15:01:09.0203 4008 [ 657A61979F40D67CA29716149766FFA7 ] aswRvrt C:\WINDOWS\system32\drivers\aswRvrt.sys
15:01:09.0218 4008 aswRvrt - ok
15:01:09.0250 4008 [ 0E604867FC28F00D91CB0B00D2EC830D ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
15:01:09.0281 4008 aswSnx - ok
15:01:09.0312 4008 [ 6FC4AA106AA505394C908D37CCCB9148 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
15:01:09.0343 4008 aswSP - ok
15:01:09.0375 4008 [ 33E21FFB063CA6C7E00D568467DC72E4 ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
15:01:09.0390 4008 aswTdi - ok
15:01:09.0406 4008 [ EDB0C9BA44B748E420CCA989FD8B826E ] aswVmm C:\WINDOWS\system32\drivers\aswVmm.sys
15:01:09.0437 4008 aswVmm - ok
15:01:09.0453 4008 [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:01:09.0640 4008 AsyncMac - ok
15:01:09.0656 4008 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
15:01:09.0812 4008 atapi - ok
15:01:09.0828 4008 Atdisk - ok
15:01:09.0859 4008 [ 9916C1225104BA14794209CFA8012159 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:01:10.0031 4008 Atmarpc - ok
15:01:10.0062 4008 [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
15:01:10.0265 4008 AudioSrv - ok
15:01:10.0296 4008 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
15:01:10.0453 4008 audstub - ok
15:01:10.0515 4008 [ 41735B82DB57E4EBE9504EC400FD120E ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:01:10.0531 4008 avast! Antivirus - ok
15:01:10.0562 4008 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
15:01:10.0734 4008 Beep - ok
15:01:10.0875 4008 [ 574738F61FCA2935F5265DC4E5691314 ] BITS C:\WINDOWS\system32\qmgr.dll
15:01:11.0203 4008 BITS - ok
15:01:11.0296 4008 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe
15:01:11.0328 4008 Bonjour Service - ok
15:01:11.0359 4008 [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser C:\WINDOWS\System32\browser.dll
15:01:11.0421 4008 Browser - ok
15:01:11.0562 4008 catchme - ok
15:01:11.0593 4008 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
15:01:11.0781 4008 cbidf - ok
15:01:11.0796 4008 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
15:01:11.0953 4008 cbidf2k - ok
15:01:11.0984 4008 [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
15:01:12.0156 4008 CCDECODE - ok
15:01:12.0171 4008 [ F3EC03299634490E97BBCE94CD2954C7 ] cd20xrnt C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
15:01:12.0265 4008 cd20xrnt - ok
15:01:12.0296 4008 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
15:01:12.0484 4008 Cdaudio - ok
15:01:12.0515 4008 [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
15:01:12.0703 4008 Cdfs - ok
15:01:12.0750 4008 [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:01:12.0921 4008 Cdrom - ok
15:01:12.0937 4008 Changer - ok
15:01:12.0953 4008 [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc C:\WINDOWS\system32\cisvc.exe
15:01:13.0093 4008 CiSvc - ok
15:01:13.0109 4008 [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
15:01:13.0281 4008 ClipSrv - ok
15:01:13.0328 4008 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:01:13.0500 4008 clr_optimization_v2.0.50727_32 - ok
15:01:13.0515 4008 [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt C:\WINDOWS\system32\DRIVERS\CmBatt.sys
15:01:13.0687 4008 CmBatt - ok
15:01:13.0734 4008 [ E5DCB56C533014ECBC556A8357C929D5 ] CmdIde C:\WINDOWS\system32\DRIVERS\cmdide.sys
15:01:13.0921 4008 CmdIde - ok
15:01:13.0937 4008 [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt C:\WINDOWS\system32\DRIVERS\compbatt.sys
15:01:14.0109 4008 Compbatt - ok
15:01:14.0125 4008 COMSysApp - ok
15:01:14.0140 4008 [ 3EE529119EED34CD212A215E8C40D4B6 ] Cpqarray C:\WINDOWS\system32\DRIVERS\cpqarray.sys
15:01:14.0296 4008 Cpqarray - ok
15:01:14.0328 4008 [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
15:01:14.0500 4008 CryptSvc - ok
15:01:14.0546 4008 [ E550E7418984B65A78299D248F0A7F36 ] dac2w2k C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
15:01:14.0703 4008 dac2w2k - ok
15:01:14.0718 4008 [ 683789CAA3864EB46125AE86FF677D34 ] dac960nt C:\WINDOWS\system32\DRIVERS\dac960nt.sys
15:01:14.0921 4008 dac960nt - ok
15:01:15.0015 4008 [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
15:01:15.0093 4008 DcomLaunch - ok
15:01:15.0125 4008 [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
15:01:15.0296 4008 Dhcp - ok
15:01:15.0328 4008 [ 044452051F3E02E7963599FC8F4F3E25 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
15:01:15.0531 4008 Disk - ok
15:01:15.0546 4008 dmadmin - ok
15:01:15.0578 4008 [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
15:01:15.0812 4008 dmboot - ok
15:01:15.0937 4008 [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio C:\WINDOWS\system32\drivers\dmio.sys
15:01:16.0140 4008 dmio - ok
15:01:16.0156 4008 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
15:01:16.0328 4008 dmload - ok
15:01:16.0359 4008 [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver C:\WINDOWS\System32\dmserver.dll
15:01:16.0531 4008 dmserver - ok
15:01:16.0562 4008 [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
15:01:16.0750 4008 DMusic - ok
15:01:16.0781 4008 [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
15:01:16.0843 4008 Dnscache - ok
15:01:16.0875 4008 [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc C:\WINDOWS\System32\dot3svc.dll
15:01:17.0015 4008 Dot3svc - ok
15:01:17.0046 4008 [ 40F3B93B4E5B0126F2F5C0A7A5E22660 ] dpti2o C:\WINDOWS\system32\DRIVERS\dpti2o.sys
15:01:17.0218 4008 dpti2o - ok
15:01:17.0250 4008 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
15:01:17.0390 4008 drmkaud - ok
15:01:17.0421 4008 [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost C:\WINDOWS\System32\eapsvc.dll
15:01:17.0593 4008 EapHost - ok
15:01:17.0640 4008 [ 23F6B9CF432F492EBBD8105D78CB008C ] el575nd5 C:\WINDOWS\system32\DRIVERS\el575nd5.sys
15:01:17.0812 4008 el575nd5 - ok
15:01:17.0859 4008 [ BC93B4A066477954555966D77FEC9ECB ] ERSvc C:\WINDOWS\System32\ersvc.dll
15:01:18.0015 4008 ERSvc - ok
15:01:18.0062 4008 [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog C:\WINDOWS\system32\services.exe
15:01:18.0093 4008 Eventlog - ok
15:01:18.0140 4008 [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem C:\WINDOWS\system32\es.dll
15:01:18.0187 4008 EventSystem - ok
15:01:18.0218 4008 [ 38D332A6D56AF32635675F132548343E ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
15:01:18.0375 4008 Fastfat - ok
15:01:18.0421 4008 [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:01:18.0468 4008 FastUserSwitchingCompatibility - ok
15:01:18.0500 4008 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys
15:01:18.0671 4008 Fdc - ok
15:01:18.0703 4008 [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips C:\WINDOWS\system32\drivers\Fips.sys
15:01:18.0875 4008 Fips - ok
15:01:18.0906 4008 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys
15:01:19.0062 4008 Flpydisk - ok
15:01:19.0109 4008 [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
15:01:19.0265 4008 FltMgr - ok
15:01:19.0328 4008 [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
15:01:19.0359 4008 FontCache3.0.0.0 - ok
15:01:19.0406 4008 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:01:19.0578 4008 Fs_Rec - ok
15:01:19.0593 4008 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:01:19.0765 4008 Ftdisk - ok
15:01:19.0812 4008 [ F2F431D1573EE632975C524418655B84 ] GEARAspiWDM C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
15:01:19.0828 4008 GEARAspiWDM - ok
15:01:19.0859 4008 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:01:20.0031 4008 Gpc - ok
15:01:20.0140 4008 [ 626A24ED1228580B9518C01930936DF9 ] gupdate1c9a98c50a0c980 C:\Program Files\Google\Update\GoogleUpdate.exe
15:01:20.0156 4008 gupdate1c9a98c50a0c980 - ok
15:01:20.0156 4008 [ 626A24ED1228580B9518C01930936DF9 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
15:01:20.0171 4008 gupdatem - ok
15:01:20.0203 4008 [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
15:01:20.0390 4008 HDAudBus - ok
15:01:20.0468 4008 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:01:20.0640 4008 helpsvc - ok
15:01:20.0687 4008 [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ C:\WINDOWS\System32\hidserv.dll
15:01:20.0875 4008 HidServ - ok
15:01:20.0906 4008 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:01:21.0078 4008 HidUsb - ok
15:01:21.0109 4008 [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc C:\WINDOWS\System32\kmsvc.dll
15:01:21.0281 4008 hkmsvc - ok
15:01:21.0312 4008 [ B028377DEA0546A5FCFBA928A8AEFAE0 ] hpn C:\WINDOWS\system32\DRIVERS\hpn.sys
15:01:21.0468 4008 hpn - ok
15:01:21.0515 4008 [ F3E718604C5A8A28003280D861D96C19 ] HSFHWBS2 C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
15:01:21.0531 4008 HSFHWBS2 - ok
15:01:21.0562 4008 [ 4290713B7C3289EF87EE5CA474B21221 ] HSF_DPV C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
15:01:21.0656 4008 HSF_DPV - ok
15:01:21.0718 4008 [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
15:01:21.0734 4008 HTTP - ok
15:01:21.0765 4008 [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
15:01:21.0968 4008 HTTPFilter - ok
15:01:22.0015 4008 [ 9368670BD426EBEA5E8B18A62416EC28 ] i2omgmt C:\WINDOWS\system32\drivers\i2omgmt.sys
15:01:22.0171 4008 i2omgmt - ok
15:01:22.0203 4008 [ F10863BF1CCC290BABD1A09188AE49E0 ] i2omp C:\WINDOWS\system32\DRIVERS\i2omp.sys
15:01:22.0437 4008 i2omp - ok
15:01:22.0453 4008 [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:01:22.0671 4008 i8042prt - ok
15:01:22.0765 4008 [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:01:22.0828 4008 idsvc - ok
15:01:22.0859 4008 [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
15:01:23.0046 4008 Imapi - ok
15:01:23.0093 4008 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService C:\WINDOWS\system32\imapi.exe
15:01:23.0250 4008 ImapiService - ok
15:01:23.0296 4008 [ 4A40E045FAEE58631FD8D91AFC620719 ] ini910u C:\WINDOWS\system32\DRIVERS\ini910u.sys
15:01:23.0453 4008 ini910u - ok
15:01:23.0593 4008 [ 574C9B2F9406D28F8F7E5C7B46B470E6 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
15:01:23.0843 4008 IntcAzAudAddService - ok
15:01:23.0875 4008 [ B5466A9250342A7AA0CD1FBA13420678 ] IntelIde C:\WINDOWS\system32\DRIVERS\intelide.sys
15:01:24.0046 4008 IntelIde - ok
15:01:24.0093 4008 [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys
15:01:24.0265 4008 Ip6Fw - ok
15:01:24.0296 4008 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:01:24.0468 4008 IpFilterDriver - ok
15:01:24.0500 4008 [ B87AB476DCF76E72010632B5550955F5 ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:01:24.0656 4008 IpInIp - ok
15:01:24.0687 4008 [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:01:24.0843 4008 IpNat - ok
15:01:24.0890 4008 [ F08D74EC300B8BA60CA953C58A24D19E ] Iprip C:\WINDOWS\System32\iprip.dll
15:01:25.0078 4008 Iprip - ok
15:01:25.0093 4008 [ 23C74D75E36E7158768DD63D92789A91 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:01:25.0281 4008 IPSec - ok
15:01:25.0296 4008 [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
15:01:25.0375 4008 IRENUM - ok
15:01:25.0406 4008 [ 0501F0B9AB08425F8C0EACBDCC04AA32 ] irsir C:\WINDOWS\system32\DRIVERS\irsir.sys
15:01:25.0468 4008 irsir - ok
15:01:25.0500 4008 [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:01:25.0640 4008 isapnp - ok
15:01:25.0718 4008 [ 5739F2821D49975CEDE6BF0153D0CF01 ] JavaQuickStarterService C:\Program Files\Java\jre7\bin\jqs.exe
15:01:25.0734 4008 JavaQuickStarterService - ok
15:01:25.0781 4008 [ A7B973DE438A6B98CA7F365837D2F548 ] JL2005C C:\WINDOWS\system32\Drivers\jl2005c.sys
15:01:25.0796 4008 JL2005C ( UnsignedFile.Multi.Generic ) - warning
15:01:25.0796 4008 JL2005C - detected UnsignedFile.Multi.Generic (1)
15:01:25.0828 4008 [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:01:26.0000 4008 Kbdclass - ok
15:01:26.0031 4008 [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:01:26.0187 4008 kbdhid - ok
15:01:26.0203 4008 [ 692BCF44383D056AED41B045A323D378 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
15:01:26.0390 4008 kmixer - ok
15:01:26.0421 4008 [ B467646C54CC746128904E1654C750C1 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
15:01:26.0468 4008 KSecDD - ok
15:01:26.0500 4008 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
15:01:26.0546 4008 lanmanserver - ok
15:01:26.0578 4008 [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:01:26.0609 4008 lanmanworkstation - ok
15:01:26.0625 4008 lbrtfdc - ok
15:01:26.0656 4008 [ A7DB739AE99A796D91580147E919CC59 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
15:01:26.0875 4008 LmHosts - ok
15:01:26.0921 4008 [ 32933B07FC16D9F778BEE12545FA1B1A ] LPDSVC C:\WINDOWS\system32\tcpsvcs.exe
15:01:27.0125 4008 LPDSVC - ok
15:01:27.0125 4008 MCSTRM - ok
15:01:27.0156 4008 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
15:01:27.0187 4008 mdmxsdk - ok
15:01:27.0234 4008 [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger C:\WINDOWS\System32\msgsvc.dll
15:01:27.0421 4008 Messenger - ok
15:01:27.0453 4008 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
15:01:27.0625 4008 mnmdd - ok
15:01:27.0656 4008 [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc C:\WINDOWS\system32\mnmsrvc.exe
15:01:27.0859 4008 mnmsrvc - ok
15:01:27.0890 4008 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
15:01:28.0078 4008 Modem - ok
15:01:28.0109 4008 [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:01:28.0281 4008 Mouclass - ok
15:01:28.0328 4008 [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:01:28.0500 4008 mouhid - ok
15:01:28.0531 4008 [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
15:01:28.0718 4008 MountMgr - ok
15:01:28.0796 4008 [ 825BF0E46B4470A463AEB641480C5FCA ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:01:28.0828 4008 MozillaMaintenance - ok
15:01:28.0890 4008 [ 3F4BB95E5A44F3BE34824E8E7CAF0737 ] mraid35x C:\WINDOWS\system32\DRIVERS\mraid35x.sys
15:01:29.0078 4008 mraid35x - ok
15:01:29.0093 4008 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:01:29.0265 4008 MRxDAV - ok
15:01:29.0328 4008 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:01:29.0406 4008 MRxSmb - ok
15:01:29.0437 4008 [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC C:\WINDOWS\system32\msdtc.exe
15:01:29.0609 4008 MSDTC - ok
15:01:29.0640 4008 [ C941EA2454BA8350021D774DAF0F1027 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
15:01:29.0796 4008 Msfs - ok
15:01:29.0796 4008 MSIServer - ok
15:01:29.0828 4008 [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:01:30.0000 4008 MSKSSRV - ok
15:01:30.0015 4008 [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:01:30.0187 4008 MSPCLOCK - ok
15:01:30.0203 4008 [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
15:01:30.0390 4008 MSPQM - ok
15:01:30.0406 4008 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:01:30.0578 4008 mssmbios - ok
15:01:30.0609 4008 [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
15:01:30.0781 4008 MSTEE - ok
15:01:30.0828 4008 [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
15:01:30.0859 4008 Mup - ok
15:01:30.0890 4008 [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
15:01:31.0062 4008 NABTSFEC - ok
15:01:31.0109 4008 [ 0102140028FAD045756796E1C685D695 ] napagent C:\WINDOWS\System32\qagentrt.dll
15:01:31.0312 4008 napagent - ok
15:01:31.0343 4008 [ 1DF7F42665C94B825322FAE71721130D ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
15:01:31.0484 4008 NDIS - ok
15:01:31.0515 4008 [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
15:01:31.0687 4008 NdisIP - ok
15:01:31.0734 4008 [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:01:31.0781 4008 NdisTapi - ok
15:01:31.0812 4008 [ F927A4434C5028758A842943EF1A3849 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:01:31.0968 4008 Ndisuio - ok
15:01:31.0984 4008 [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:01:32.0140 4008 NdisWan - ok
15:01:32.0171 4008 [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
15:01:32.0203 4008 NDProxy - ok
15:01:32.0250 4008 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
15:01:32.0421 4008 NetBIOS - ok
15:01:32.0437 4008 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
15:01:32.0593 4008 NetBT - ok
15:01:32.0640 4008 [ B857BA82860D7FF85AE29B095645563B ] NetDDE C:\WINDOWS\system32\netdde.exe
15:01:32.0828 4008 NetDDE - ok
15:01:32.0828 4008 [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
15:01:33.0093 4008 NetDDEdsdm - ok
15:01:33.0109 4008 [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon C:\WINDOWS\system32\lsass.exe
15:01:33.0265 4008 Netlogon - ok
15:01:33.0296 4008 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman C:\WINDOWS\System32\netman.dll
15:01:33.0453 4008 Netman - ok
15:01:33.0484 4008 [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
15:01:33.0515 4008 NetTcpPortSharing - ok
15:01:33.0546 4008 [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
15:01:33.0703 4008 NIC1394 - ok
15:01:33.0781 4008 [ 943337D786A56729263071623BBB9DE5 ] Nla C:\WINDOWS\System32\mswsock.dll
15:01:33.0812 4008 Nla - ok
15:01:33.0859 4008 [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
15:01:34.0015 4008 Npfs - ok
15:01:34.0046 4008 [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
15:01:34.0296 4008 Ntfs - ok
15:01:34.0312 4008 [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp C:\WINDOWS\system32\lsass.exe
15:01:34.0484 4008 NtLmSsp - ok
15:01:34.0531 4008 [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
15:01:34.0734 4008 NtmsSvc - ok
15:01:34.0781 4008 [ CF7E041663119E09D2E118521ADA9300 ] NuidFltr C:\WINDOWS\system32\DRIVERS\NuidFltr.sys
15:01:34.0796 4008 NuidFltr - ok
15:01:34.0828 4008 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
15:01:35.0000 4008 Null - ok
15:01:35.0578 4008 [ 7C56F3FD65B2BDB315CA3605A5392D7B ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
15:01:36.0609 4008 nv - ok
15:01:36.0640 4008 [ 0AE6258709D58FB53638E8D28F4480D4 ] NVENETFD C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
15:01:36.0687 4008 NVENETFD - ok
15:01:36.0734 4008 [ 701427803FE7E83EEE2F3EE4693AB099 ] nvgts C:\WINDOWS\system32\drivers\NVGTS.SYS
15:01:36.0812 4008 nvgts ( UnsignedFile.Multi.Generic ) - warning
15:01:36.0812 4008 nvgts - detected UnsignedFile.Multi.Generic (1)
15:01:36.0875 4008 [ 1296B33C223A58485D5EAA779752216A ] nvnetbus C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
15:01:36.0968 4008 nvnetbus - ok
15:01:37.0031 4008 [ 36032035FA55F030D55237D5C639A81D ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
15:01:37.0078 4008 NVSvc - ok
15:01:37.0093 4008 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:01:37.0312 4008 NwlnkFlt - ok
15:01:37.0328 4008 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:01:37.0531 4008 NwlnkFwd - ok
15:01:37.0562 4008 [ 8B8B1BE2DBA4025DA6786C645F77F123 ] NwlnkIpx C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
15:01:37.0734 4008 NwlnkIpx - ok
15:01:37.0765 4008 [ 56D34A67C05E94E16377C60609741FF8 ] NwlnkNb C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
15:01:37.0968 4008 NwlnkNb - ok
15:01:38.0000 4008 [ C0BB7D1615E1ACBDC99757F6CEAF8CF0 ] NwlnkSpx C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
15:01:38.0218 4008 NwlnkSpx - ok
15:01:38.0265 4008 [ 4B83FCBBE72AF5F99D109798653E8B78 ] NwSapAgent C:\WINDOWS\System32\ipxsap.dll
15:01:38.0468 4008 NwSapAgent - ok
15:01:38.0500 4008 [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
15:01:38.0687 4008 ohci1394 - ok
15:01:38.0843 4008 [ 7A56CF3E3F12E8AF599963B16F50FB6A ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
15:01:39.0125 4008 ose - ok
15:01:39.0203 4008 [ 937A02981F11B2CE96B1D493C95AED2B ] p2pgasvc C:\WINDOWS\system32\p2pgasvc.dll
15:01:39.0468 4008 p2pgasvc - ok
15:01:39.0531 4008 [ 4A1035CB8F0D57BE41873B5183D96CF4 ] p2pimsvc C:\WINDOWS\system32\p2psvc.dll
15:01:39.0843 4008 p2pimsvc - ok
15:01:39.0906 4008 [ 4A1035CB8F0D57BE41873B5183D96CF4 ] p2psvc C:\WINDOWS\system32\p2psvc.dll
15:01:40.0093 4008 p2psvc - ok
15:01:40.0109 4008 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
15:01:40.0296 4008 Parport - ok
15:01:40.0328 4008 [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
15:01:40.0500 4008 PartMgr - ok
15:01:40.0562 4008 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
15:01:40.0750 4008 ParVdm - ok
15:01:40.0781 4008 [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
15:01:40.0859 4008 pccsmcfd - ok
15:01:40.0906 4008 [ A219903CCF74233761D92BEF471A07B1 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
15:01:41.0093 4008 PCI - ok
15:01:41.0109 4008 PCIDump - ok
15:01:41.0125 4008 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
sweetjopye
Active Member
 
Posts: 14
Joined: May 27th, 2013, 8:21 am

Re: Removal of new toolbar

Unread postby sweetjopye » May 30th, 2013, 4:21 pm

Here's some more.
15:01:41.0296 4008 PCIIde - ok
15:01:41.0312 4008 [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia C:\WINDOWS\system32\DRIVERS\pcmcia.sys
15:01:41.0500 4008 Pcmcia - ok
15:01:41.0500 4008 PDCOMP - ok
15:01:41.0515 4008 PDFRAME - ok
15:01:41.0515 4008 PDRELI - ok
15:01:41.0531 4008 PDRFRAME - ok
15:01:41.0625 4008 [ 6C14B9C19BA84F73D3A86DBA11133101 ] perc2 C:\WINDOWS\system32\DRIVERS\perc2.sys
15:01:41.0875 4008 perc2 - ok
15:01:41.0890 4008 [ F50F7C27F131AFE7BEBA13E14A3B9416 ] perc2hib C:\WINDOWS\system32\DRIVERS\perc2hib.sys
15:01:42.0078 4008 perc2hib - ok
15:01:42.0125 4008 [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay C:\WINDOWS\system32\services.exe
15:01:42.0171 4008 PlugPlay - ok
15:01:42.0265 4008 [ 4A1035CB8F0D57BE41873B5183D96CF4 ] PNRPSvc C:\WINDOWS\system32\p2psvc.dll
15:01:42.0468 4008 PNRPSvc - ok
15:01:42.0484 4008 [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent C:\WINDOWS\system32\lsass.exe
15:01:42.0656 4008 PolicyAgent - ok
15:01:42.0687 4008 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:01:42.0875 4008 PptpMiniport - ok
15:01:42.0937 4008 [ 33D7285F12D934268A34206DFC4AD1B3 ] PrismXL C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
15:01:42.0953 4008 PrismXL ( UnsignedFile.Multi.Generic ) - warning
15:01:42.0953 4008 PrismXL - detected UnsignedFile.Multi.Generic (1)
15:01:43.0000 4008 [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
15:01:43.0156 4008 Processor - ok
15:01:43.0218 4008 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:01:43.0375 4008 ProtectedStorage - ok
15:01:43.0390 4008 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
15:01:43.0593 4008 PSched - ok
15:01:43.0671 4008 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:01:43.0937 4008 Ptilink - ok
15:01:44.0031 4008 [ 0A63FB54039EB5662433CABA3B26DBA7 ] ql1080 C:\WINDOWS\system32\DRIVERS\ql1080.sys
15:01:44.0250 4008 ql1080 - ok
15:01:44.0296 4008 [ 6503449E1D43A0FF0201AD5CB1B8C706 ] Ql10wnt C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
15:01:44.0484 4008 Ql10wnt - ok
15:01:44.0531 4008 [ 156ED0EF20C15114CA097A34A30D8A01 ] ql12160 C:\WINDOWS\system32\DRIVERS\ql12160.sys
15:01:44.0703 4008 ql12160 - ok
15:01:44.0796 4008 [ 70F016BEBDE6D29E864C1230A07CC5E6 ] ql1240 C:\WINDOWS\system32\DRIVERS\ql1240.sys
15:01:45.0078 4008 ql1240 - ok
15:01:45.0109 4008 [ 907F0AEEA6BC451011611E732BD31FCF ] ql1280 C:\WINDOWS\system32\DRIVERS\ql1280.sys
15:01:45.0296 4008 ql1280 - ok
15:01:45.0343 4008 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:01:45.0468 4008 RasAcd - ok
15:01:45.0500 4008 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
15:01:45.0656 4008 RasAuto - ok
15:01:45.0687 4008 [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda C:\WINDOWS\system32\DRIVERS\rasirda.sys
15:01:45.0750 4008 Rasirda - ok
15:01:45.0781 4008 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:01:45.0937 4008 Rasl2tp - ok
15:01:45.0968 4008 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
15:01:46.0125 4008 RasMan - ok
15:01:46.0140 4008 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:01:46.0296 4008 RasPppoe - ok
15:01:46.0312 4008 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
15:01:46.0453 4008 Raspti - ok
15:01:46.0484 4008 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:01:46.0640 4008 Rdbss - ok
15:01:46.0656 4008 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:01:46.0812 4008 RDPCDD - ok
15:01:46.0828 4008 [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:01:47.0000 4008 rdpdr - ok
15:01:47.0031 4008 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
15:01:47.0078 4008 RDPWD - ok
15:01:47.0109 4008 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
15:01:47.0265 4008 RDSessMgr - ok
15:01:47.0296 4008 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
15:01:47.0453 4008 redbook - ok
15:01:47.0484 4008 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
15:01:47.0640 4008 RemoteAccess - ok
15:01:47.0718 4008 [ BD517C7FB119997EFFBE39D5E4B37B05 ] RichVideo C:\Program Files\CyberLink\Shared Files\RichVideo.exe
15:01:47.0765 4008 RichVideo ( UnsignedFile.Multi.Generic ) - warning
15:01:47.0765 4008 RichVideo - detected UnsignedFile.Multi.Generic (1)
15:01:47.0812 4008 [ 4F4A4C09CC5BE58A76CAC1C337E004E6 ] RimUsb C:\WINDOWS\system32\Drivers\RimUsb.sys
15:01:47.0859 4008 RimUsb - ok
15:01:47.0875 4008 [ 3A5633AD615E2B15291BD0B1B97CCD8A ] RimVSerPort C:\WINDOWS\system32\DRIVERS\RimSerial.sys
15:01:47.0906 4008 RimVSerPort - ok
15:01:47.0921 4008 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM C:\WINDOWS\system32\Drivers\RootMdm.sys
15:01:48.0078 4008 ROOTMODEM - ok
15:01:48.0109 4008 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
15:01:48.0250 4008 RpcLocator - ok
15:01:48.0328 4008 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\System32\rpcss.dll
15:01:48.0421 4008 RpcSs - ok
15:01:48.0484 4008 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
15:01:48.0625 4008 RSVP - ok
15:01:48.0656 4008 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
15:01:48.0828 4008 SamSs - ok
15:01:48.0875 4008 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
15:01:49.0093 4008 SCardSvr - ok
15:01:49.0171 4008 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
15:01:49.0375 4008 Schedule - ok
15:01:49.0406 4008 [ 8D04819A3CE51B9EB47E5689B44D43C4 ] sdbus C:\WINDOWS\system32\DRIVERS\sdbus.sys
15:01:49.0578 4008 sdbus - ok
15:01:49.0625 4008 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:01:49.0687 4008 Secdrv - ok
15:01:49.0734 4008 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
15:01:49.0921 4008 seclogon - ok
15:01:49.0921 4008 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
15:01:50.0093 4008 SENS - ok
15:01:50.0125 4008 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
15:01:50.0296 4008 Serenum - ok
15:01:50.0328 4008 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
15:01:50.0500 4008 Serial - ok
15:01:50.0718 4008 [ 8988D1F32F56B3CD3F0F6C39F8A91A98 ] ServiceLayer C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
15:01:50.0812 4008 ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
15:01:50.0812 4008 ServiceLayer - detected UnsignedFile.Multi.Generic (1)
15:01:50.0859 4008 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
15:01:51.0015 4008 Sfloppy - ok
15:01:51.0078 4008 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
15:01:51.0281 4008 SharedAccess - ok
15:01:51.0328 4008 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:01:51.0375 4008 ShellHWDetection - ok
15:01:51.0375 4008 Simbad - ok
15:01:51.0406 4008 [ 32933B07FC16D9F778BEE12545FA1B1A ] SimpTcp C:\WINDOWS\system32\tcpsvcs.exe
15:01:51.0578 4008 SimpTcp - ok
15:01:51.0625 4008 [ 6B33D0EBD30DB32E27D1D78FE946A754 ] sisagp C:\WINDOWS\system32\DRIVERS\sisagp.sys
15:01:51.0781 4008 sisagp - ok
15:01:51.0796 4008 [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:01:51.0968 4008 SLIP - ok
15:01:52.0000 4008 [ 60C377BE6B3CC83F6A8584934B181D2E ] SNMP C:\WINDOWS\System32\snmp.exe
15:01:52.0156 4008 SNMP - ok
15:01:52.0187 4008 [ 80A050795A107A76C2B1CD4CFBE010E6 ] SNMPTRAP C:\WINDOWS\System32\snmptrap.exe
15:01:52.0359 4008 SNMPTRAP - ok
15:01:52.0390 4008 [ 83C0F71F86D3BDAF915685F3D568B20E ] Sparrow C:\WINDOWS\system32\DRIVERS\sparrow.sys
15:01:52.0453 4008 Sparrow - ok
15:01:52.0500 4008 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
15:01:52.0656 4008 splitter - ok
15:01:52.0687 4008 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
15:01:52.0734 4008 Spooler - ok
15:01:52.0734 4008 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
15:01:52.0796 4008 sr - ok
15:01:52.0843 4008 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
15:01:52.0921 4008 srservice - ok
15:01:52.0953 4008 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
15:01:53.0000 4008 Srv - ok
15:01:53.0031 4008 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
15:01:53.0093 4008 SSDPSRV - ok
15:01:53.0125 4008 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
15:01:53.0281 4008 stisvc - ok
15:01:53.0312 4008 [ 77813007BA6265C4B6098187E6ED79D2 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:01:53.0484 4008 streamip - ok
15:01:53.0515 4008 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
15:01:53.0671 4008 swenum - ok
15:01:53.0687 4008 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
15:01:53.0843 4008 swmidi - ok
15:01:53.0859 4008 SwPrv - ok
15:01:53.0906 4008 [ 1FF3217614018630D0A6758630FC698C ] symc810 C:\WINDOWS\system32\DRIVERS\symc810.sys
15:01:54.0062 4008 symc810 - ok
15:01:54.0062 4008 [ 070E001D95CF725186EF8B20335F933C ] symc8xx C:\WINDOWS\system32\DRIVERS\symc8xx.sys
15:01:54.0250 4008 symc8xx - ok
15:01:54.0250 4008 SymIM - ok
15:01:54.0265 4008 SymIMMP - ok
15:01:54.0281 4008 [ 80AC1C4ABBE2DF3B738BF15517A51F2C ] sym_hi C:\WINDOWS\system32\DRIVERS\sym_hi.sys
15:01:54.0421 4008 sym_hi - ok
15:01:54.0437 4008 [ BF4FAB949A382A8E105F46EBB4937058 ] sym_u3 C:\WINDOWS\system32\DRIVERS\sym_u3.sys
15:01:54.0593 4008 sym_u3 - ok
15:01:54.0625 4008 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
15:01:54.0750 4008 sysaudio - ok
15:01:54.0781 4008 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
15:01:54.0937 4008 SysmonLog - ok
15:01:54.0968 4008 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
15:01:55.0156 4008 TapiSrv - ok
15:01:55.0203 4008 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:01:55.0250 4008 Tcpip - ok
15:01:55.0281 4008 [ 4E53BBCC4BE37D7A4BD6EF1098C89FF7 ] Tcpip6 C:\WINDOWS\system32\DRIVERS\tcpip6.sys
15:01:55.0328 4008 Tcpip6 - ok
15:01:55.0343 4008 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
15:01:55.0500 4008 TDPIPE - ok
15:01:55.0515 4008 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
15:01:55.0687 4008 TDTCP - ok
15:01:55.0718 4008 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
15:01:55.0906 4008 TermDD - ok
15:01:55.0953 4008 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
15:01:56.0140 4008 TermService - ok
15:01:56.0171 4008 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
15:01:56.0187 4008 Themes - ok
15:01:56.0234 4008 [ F2790F6AF01321B172AA62F8E1E187D9 ] TosIde C:\WINDOWS\system32\DRIVERS\toside.sys
15:01:56.0375 4008 TosIde - ok
15:01:56.0406 4008 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
15:01:56.0562 4008 TrkWks - ok
15:01:56.0609 4008 [ 8F861EDA21C05857EB8197300A92501C ] tunmp C:\WINDOWS\system32\DRIVERS\tunmp.sys
15:01:56.0781 4008 tunmp - ok
15:01:56.0812 4008 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
15:01:57.0000 4008 Udfs - ok
15:01:57.0015 4008 [ 1B698A51CD528D8DA4FFAED66DFC51B9 ] ultra C:\WINDOWS\system32\DRIVERS\ultra.sys
15:01:57.0078 4008 ultra - ok
15:01:57.0109 4008 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
15:01:57.0265 4008 Update - ok
15:01:57.0296 4008 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
15:01:57.0390 4008 upnphost - ok
15:01:57.0406 4008 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
15:01:57.0578 4008 UPS - ok
15:01:57.0609 4008 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:01:57.0765 4008 usbccgp - ok
15:01:57.0812 4008 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:01:57.0953 4008 usbehci - ok
15:01:57.0984 4008 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:01:58.0125 4008 usbhub - ok
15:01:58.0140 4008 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
15:01:58.0296 4008 usbohci - ok
15:01:58.0328 4008 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:01:58.0453 4008 usbprint - ok
15:01:58.0500 4008 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:01:58.0640 4008 usbscan - ok
15:01:58.0656 4008 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:01:58.0828 4008 USBSTOR - ok
15:01:58.0843 4008 [ 26496F9DEE2D787FC3E61AD54821FFE6 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:01:58.0968 4008 usbuhci - ok
15:01:59.0015 4008 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
15:01:59.0156 4008 VgaSave - ok
15:01:59.0203 4008 [ 754292CE5848B3738281B4F3607EAEF4 ] viaagp C:\WINDOWS\system32\DRIVERS\viaagp.sys
15:01:59.0343 4008 viaagp - ok
15:01:59.0359 4008 [ 3B3EFCDA263B8AC14FDF9CBDD0791B2E ] ViaIde C:\WINDOWS\system32\DRIVERS\viaide.sys
15:01:59.0500 4008 ViaIde - ok
15:01:59.0500 4008 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
15:01:59.0656 4008 VolSnap - ok
15:01:59.0703 4008 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
15:01:59.0781 4008 VSS - ok
15:01:59.0828 4008 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
15:01:59.0968 4008 W32Time - ok
15:02:00.0015 4008 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:02:00.0171 4008 Wanarp - ok
15:02:00.0218 4008 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000 C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
15:02:00.0265 4008 Wdf01000 - ok
15:02:00.0265 4008 WDICA - ok
15:02:00.0281 4008 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
15:02:00.0406 4008 wdmaud - ok
15:02:00.0437 4008 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
15:02:00.0593 4008 WebClient - ok
15:02:00.0640 4008 [ CB2DC26DE2C815FC2309566F92D22ED4 ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
15:02:00.0703 4008 winachsf - ok
15:02:00.0796 4008 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
15:02:00.0937 4008 winmgmt - ok
15:02:00.0984 4008 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
15:02:01.0015 4008 WmdmPmSN - ok
15:02:01.0062 4008 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:02:01.0203 4008 WmiApSrv - ok
15:02:01.0281 4008 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
15:02:01.0343 4008 WMPNetworkSvc - ok
15:02:01.0375 4008 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
15:02:01.0421 4008 WpdUsb - ok
15:02:01.0437 4008 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
15:02:01.0593 4008 WS2IFSL - ok
15:02:01.0625 4008 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
15:02:01.0796 4008 wscsvc - ok
15:02:01.0812 4008 [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:02:01.0953 4008 WSTCODEC - ok
15:02:01.0984 4008 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
15:02:02.0156 4008 wuauserv - ok
15:02:02.0187 4008 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:02:02.0218 4008 WudfPf - ok
15:02:02.0234 4008 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:02:02.0281 4008 WudfRd - ok
15:02:02.0312 4008 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
15:02:02.0343 4008 WudfSvc - ok
15:02:02.0406 4008 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
15:02:02.0546 4008 WZCSVC - ok
15:02:02.0578 4008 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
15:02:02.0734 4008 xmlprov - ok
15:02:02.0750 4008 ================ Scan global ===============================
15:02:02.0796 4008 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
15:02:02.0859 4008 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
15:02:02.0875 4008 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
15:02:02.0906 4008 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
15:02:02.0906 4008 [Global] - ok
15:02:02.0921 4008 ================ Scan MBR ==================================
15:02:02.0937 4008 [ B20939CD98B7710036274839082AE757 ] \Device\Harddisk0\DR0
15:02:03.0109 4008 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
15:02:03.0109 4008 \Device\Harddisk0\DR0 - detected TDSS File System (1)
15:02:03.0109 4008 ================ Scan VBR ==================================
15:02:03.0109 4008 [ BC9FB64A1CC300DDCF76D41FA025A06B ] \Device\Harddisk0\DR0\Partition1
15:02:03.0109 4008 \Device\Harddisk0\DR0\Partition1 - ok
15:02:03.0125 4008 [ F648C7F977486BFAFBCF36A189EEAFAD ] \Device\Harddisk0\DR0\Partition2
15:02:03.0125 4008 \Device\Harddisk0\DR0\Partition2 - ok
15:02:03.0125 4008 ================ Scan active images ========================
15:02:03.0125 4008 [ 8F861EDA21C05857EB8197300A92501C ] C:\WINDOWS\system32\drivers\tunmp.sys
15:02:03.0125 4008 C:\WINDOWS\system32\drivers\tunmp.sys - ok
15:02:03.0125 4008 [ A32BEBAF723557681BFC6BD93E98BD26 ] C:\WINDOWS\system32\drivers\processr.sys
15:02:03.0125 4008 C:\WINDOWS\system32\drivers\processr.sys - ok
15:02:03.0140 4008 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] C:\WINDOWS\system32\drivers\serial.sys
15:02:03.0140 4008 C:\WINDOWS\system32\drivers\serial.sys - ok
15:02:03.0140 4008 [ 0F29512CCD6BEAD730039FB4BD2C85CE ] C:\WINDOWS\system32\drivers\serenum.sys
15:02:03.0140 4008 C:\WINDOWS\system32\drivers\serenum.sys - ok
15:02:03.0156 4008 [ 5575FAF8F97CE5E713D108C2A58D7C7C ] C:\WINDOWS\system32\drivers\parport.sys
15:02:03.0156 4008 C:\WINDOWS\system32\drivers\parport.sys - ok
15:02:03.0156 4008 [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
15:02:03.0156 4008 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
15:02:03.0171 4008 [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
15:02:03.0171 4008 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
15:02:03.0171 4008 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
15:02:03.0171 4008 C:\WINDOWS\system32\drivers\usbport.sys - ok
15:02:03.0171 4008 [ 0DAECCE65366EA32B162F85F07C6753B ] C:\WINDOWS\system32\drivers\usbohci.sys
15:02:03.0171 4008 C:\WINDOWS\system32\drivers\usbohci.sys - ok
15:02:03.0187 4008 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
15:02:03.0187 4008 C:\WINDOWS\system32\drivers\ks.sys - ok
15:02:03.0187 4008 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
15:02:03.0187 4008 C:\WINDOWS\system32\drivers\usbehci.sys - ok
15:02:03.0203 4008 [ F3E718604C5A8A28003280D861D96C19 ] C:\WINDOWS\system32\drivers\HSFHWBS2.sys
15:02:03.0203 4008 C:\WINDOWS\system32\drivers\HSFHWBS2.sys - ok
15:02:03.0203 4008 [ 4290713B7C3289EF87EE5CA474B21221 ] C:\WINDOWS\system32\drivers\HSF_DPV.sys
15:02:03.0203 4008 C:\WINDOWS\system32\drivers\HSF_DPV.sys - ok
15:02:03.0218 4008 [ CB2DC26DE2C815FC2309566F92D22ED4 ] C:\WINDOWS\system32\drivers\HSF_CNXT.sys
15:02:03.0218 4008 C:\WINDOWS\system32\drivers\HSF_CNXT.sys - ok
15:02:03.0218 4008 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
15:02:03.0218 4008 C:\WINDOWS\system32\drivers\cdrom.sys - ok
15:02:03.0218 4008 [ F2F431D1573EE632975C524418655B84 ] C:\WINDOWS\system32\drivers\GEARAspiWDM.sys
15:02:03.0218 4008 C:\WINDOWS\system32\drivers\GEARAspiWDM.sys - ok
15:02:03.0234 4008 [ 573C7D0A32852B48F3058CFD8026F511 ] C:\WINDOWS\system32\drivers\hdaudbus.sys
15:02:03.0234 4008 C:\WINDOWS\system32\drivers\hdaudbus.sys - ok
15:02:03.0234 4008 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
15:02:03.0234 4008 C:\WINDOWS\system32\drivers\imapi.sys - ok
15:02:03.0250 4008 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] C:\WINDOWS\system32\drivers\modem.sys
15:02:03.0250 4008 C:\WINDOWS\system32\drivers\modem.sys - ok
15:02:03.0250 4008 [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
15:02:03.0250 4008 C:\WINDOWS\system32\drivers\redbook.sys - ok
15:02:03.0265 4008 [ F876A657727EB3A296396343DDE839E1 ] C:\WINDOWS\system32\drivers\nvnrm.sys
15:02:03.0265 4008 C:\WINDOWS\system32\drivers\nvnrm.sys - ok
15:02:03.0265 4008 [ 1296B33C223A58485D5EAA779752216A ] C:\WINDOWS\system32\drivers\nvnetbus.sys
15:02:03.0265 4008 C:\WINDOWS\system32\drivers\nvnetbus.sys - ok
15:02:03.0281 4008 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
15:02:03.0281 4008 C:\WINDOWS\system32\drivers\videoprt.sys - ok
15:02:03.0281 4008 [ 7C56F3FD65B2BDB315CA3605A5392D7B ] C:\WINDOWS\system32\drivers\nv4_mini.sys
15:02:03.0281 4008 C:\WINDOWS\system32\drivers\nv4_mini.sys - ok
15:02:03.0281 4008 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
15:02:03.0281 4008 C:\WINDOWS\system32\drivers\audstub.sys - ok
15:02:03.0296 4008 [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
15:02:03.0296 4008 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
15:02:03.0296 4008 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
15:02:03.0296 4008 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
15:02:03.0312 4008 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
15:02:03.0312 4008 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
15:02:03.0312 4008 [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] C:\WINDOWS\system32\drivers\rootmdm.sys
15:02:03.0312 4008 C:\WINDOWS\system32\drivers\rootmdm.sys - ok
15:02:03.0328 4008 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
15:02:03.0328 4008 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
15:02:03.0328 4008 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
15:02:03.0328 4008 C:\WINDOWS\system32\drivers\tdi.sys - ok
15:02:03.0328 4008 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
15:02:03.0328 4008 C:\WINDOWS\system32\drivers\raspptp.sys - ok
15:02:03.0343 4008 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
15:02:03.0343 4008 C:\WINDOWS\system32\drivers\msgpc.sys - ok
15:02:03.0343 4008 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
15:02:03.0343 4008 C:\WINDOWS\system32\drivers\psched.sys - ok
15:02:03.0359 4008 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
15:02:03.0359 4008 C:\WINDOWS\system32\drivers\ptilink.sys - ok
15:02:03.0359 4008 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
15:02:03.0359 4008 C:\WINDOWS\system32\drivers\raspti.sys - ok
15:02:03.0375 4008 [ 6AA8BB224B30A20A5D07A2734568D6D7 ] C:\WINDOWS\system32\drivers\wdfldr.sys
15:02:03.0375 4008 C:\WINDOWS\system32\drivers\wdfldr.sys - ok
15:02:03.0375 4008 [ 3A5633AD615E2B15291BD0B1B97CCD8A ] C:\WINDOWS\system32\drivers\RimSerial.sys
15:02:03.0375 4008 C:\WINDOWS\system32\drivers\RimSerial.sys - ok
15:02:03.0375 4008 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
15:02:03.0375 4008 C:\WINDOWS\system32\drivers\termdd.sys - ok
15:02:03.0390 4008 [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] C:\WINDOWS\system32\drivers\wdf01000.sys
15:02:03.0390 4008 C:\WINDOWS\system32\drivers\wdf01000.sys - ok
15:02:03.0390 4008 [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
15:02:03.0390 4008 C:\WINDOWS\system32\drivers\mouclass.sys - ok
15:02:03.0406 4008 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
15:02:03.0406 4008 C:\WINDOWS\system32\drivers\swenum.sys - ok
15:02:03.0406 4008 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
15:02:03.0406 4008 C:\WINDOWS\system32\drivers\update.sys - ok
15:02:03.0421 4008 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
15:02:03.0421 4008 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
15:02:03.0421 4008 [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
15:02:03.0421 4008 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
15:02:03.0421 4008 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
15:02:03.0421 4008 C:\WINDOWS\system32\drivers\usbd.sys - ok
15:02:03.0437 4008 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
15:02:03.0437 4008 C:\WINDOWS\system32\drivers\usbhub.sys - ok
15:02:03.0437 4008 [ 0AE6258709D58FB53638E8D28F4480D4 ] C:\WINDOWS\system32\drivers\NVENETFD.sys
15:02:03.0437 4008 C:\WINDOWS\system32\drivers\NVENETFD.sys - ok
15:02:03.0453 4008 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
15:02:03.0453 4008 C:\WINDOWS\system32\drivers\drmk.sys - ok
15:02:03.0453 4008 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
15:02:03.0453 4008 C:\WINDOWS\system32\drivers\portcls.sys - ok
15:02:03.0468 4008 [ 574C9B2F9406D28F8F7E5C7B46B470E6 ] C:\WINDOWS\system32\drivers\RtkHDAud.sys
15:02:03.0468 4008 C:\WINDOWS\system32\drivers\RtkHDAud.sys - ok
15:02:03.0468 4008 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
15:02:03.0468 4008 C:\WINDOWS\system32\drivers\fdc.sys - ok
15:02:03.0468 4008 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
15:02:03.0468 4008 C:\WINDOWS\system32\drivers\flpydisk.sys - ok
15:02:03.0484 4008 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
15:02:03.0484 4008 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
15:02:03.0484 4008 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
15:02:03.0484 4008 C:\WINDOWS\system32\drivers\beep.sys - ok
15:02:03.0500 4008 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
15:02:03.0500 4008 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
15:02:03.0500 4008 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
15:02:03.0500 4008 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
15:02:03.0515 4008 [ 96ECCF28FDBF1B2CC12725818A63628D ] C:\WINDOWS\system32\drivers\hidparse.sys
15:02:03.0515 4008 C:\WINDOWS\system32\drivers\hidparse.sys - ok
15:02:03.0515 4008 [ 9368670BD426EBEA5E8B18A62416EC28 ] C:\WINDOWS\system32\drivers\i2omgmt.sys
15:02:03.0515 4008 C:\WINDOWS\system32\drivers\i2omgmt.sys - ok
15:02:03.0531 4008 [ 9EF487A186DEA361AA06913A75B3FA99 ] C:\WINDOWS\system32\drivers\kbdhid.sys
15:02:03.0531 4008 C:\WINDOWS\system32\drivers\kbdhid.sys - ok
15:02:03.0531 4008 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
15:02:03.0531 4008 C:\WINDOWS\system32\drivers\null.sys - ok
15:02:03.0531 4008 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
15:02:03.0531 4008 C:\WINDOWS\system32\drivers\vga.sys - ok
15:02:03.0546 4008 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
15:02:03.0546 4008 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
15:02:03.0546 4008 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
15:02:03.0546 4008 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
15:02:03.0562 4008 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
15:02:03.0562 4008 C:\WINDOWS\system32\drivers\msfs.sys - ok
15:02:03.0562 4008 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
15:02:03.0562 4008 C:\WINDOWS\system32\drivers\ipsec.sys - ok
15:02:03.0578 4008 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
15:02:03.0578 4008 C:\WINDOWS\system32\drivers\npfs.sys - ok
15:02:03.0578 4008 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
15:02:03.0578 4008 C:\WINDOWS\system32\drivers\rasacd.sys - ok
15:02:03.0578 4008 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
15:02:03.0578 4008 C:\WINDOWS\system32\drivers\tcpip.sys - ok
15:02:03.0593 4008 [ 33E21FFB063CA6C7E00D568467DC72E4 ] C:\WINDOWS\system32\drivers\aswTdi.sys
15:02:03.0593 4008 C:\WINDOWS\system32\drivers\aswTdi.sys - ok
15:02:03.0593 4008 [ 4E53BBCC4BE37D7A4BD6EF1098C89FF7 ] C:\WINDOWS\system32\drivers\tcpip6.sys
15:02:03.0593 4008 C:\WINDOWS\system32\drivers\tcpip6.sys - ok
15:02:03.0609 4008 [ 3BB22519A194418D5FEC05D800A19AD0 ] C:\WINDOWS\system32\drivers\ip6fw.sys
15:02:03.0609 4008 C:\WINDOWS\system32\drivers\ip6fw.sys - ok
15:02:03.0609 4008 [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
15:02:03.0609 4008 C:\WINDOWS\system32\drivers\ipnat.sys - ok
15:02:03.0625 4008 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
15:02:03.0625 4008 C:\WINDOWS\system32\drivers\netbt.sys - ok
15:02:03.0625 4008 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
15:02:03.0625 4008 C:\WINDOWS\system32\drivers\wanarp.sys - ok
15:02:03.0625 4008 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
15:02:03.0625 4008 C:\WINDOWS\system32\drivers\afd.sys - ok
15:02:03.0640 4008 [ C1A411B7CCD604554D96EFDAC2F83617 ] C:\WINDOWS\system32\drivers\aswRdr.sys
15:02:03.0640 4008 C:\WINDOWS\system32\drivers\aswRdr.sys - ok
15:02:03.0640 4008 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] C:\WINDOWS\system32\drivers\ws2ifsl.sys
15:02:03.0640 4008 C:\WINDOWS\system32\drivers\ws2ifsl.sys - ok
15:02:03.0656 4008 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
15:02:03.0656 4008 C:\WINDOWS\system32\drivers\netbios.sys - ok
15:02:03.0656 4008 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
15:02:03.0656 4008 C:\WINDOWS\system32\drivers\rdbss.sys - ok
15:02:03.0671 4008 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
15:02:03.0671 4008 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
15:02:03.0671 4008 [ 6FC4AA106AA505394C908D37CCCB9148 ] C:\WINDOWS\system32\drivers\aswSP.sys
15:02:03.0671 4008 C:\WINDOWS\system32\drivers\aswSP.sys - ok
15:02:03.0671 4008 [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
15:02:03.0671 4008 C:\WINDOWS\system32\drivers\fips.sys - ok
15:02:03.0687 4008 [ 0E604867FC28F00D91CB0B00D2EC830D ] C:\WINDOWS\system32\drivers\aswSnx.sys
15:02:03.0687 4008 C:\WINDOWS\system32\drivers\aswSnx.sys - ok
15:02:03.0687 4008 [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
15:02:03.0687 4008 C:\WINDOWS\system32\smss.exe - ok
15:02:03.0703 4008 [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
15:02:03.0703 4008 C:\WINDOWS\system32\ntdll.dll - ok
15:02:03.0703 4008 [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
15:02:03.0703 4008 C:\WINDOWS\system32\autochk.exe - ok
15:02:03.0718 4008 [ 38D332A6D56AF32635675F132548343E ] C:\WINDOWS\system32\drivers\fastfat.sys
15:02:03.0718 4008 C:\WINDOWS\system32\drivers\fastfat.sys - ok
15:02:03.0718 4008 [ 1AF592532532A402ED7C060F6954004F ] C:\WINDOWS\system32\drivers\hidclass.sys
15:02:03.0718 4008 C:\WINDOWS\system32\drivers\hidclass.sys - ok
15:02:03.0718 4008 [ CCF82C5EC8A7326C3066DE870C06DAF1 ] C:\WINDOWS\system32\drivers\hidusb.sys
15:02:03.0718 4008 C:\WINDOWS\system32\drivers\hidusb.sys - ok
15:02:03.0734 4008 [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
15:02:03.0734 4008 C:\WINDOWS\system32\sfcfiles.dll - ok
15:02:03.0750 4008 [ 173F317CE0DB8E21322E71B7E60A27E8 ] C:\WINDOWS\system32\drivers\usbccgp.sys
15:02:03.0750 4008 C:\WINDOWS\system32\drivers\usbccgp.sys - ok
15:02:03.0750 4008 [ B1C303E17FB9D46E87A98E4BA6769685 ] C:\WINDOWS\system32\drivers\mouhid.sys
15:02:03.0750 4008 C:\WINDOWS\system32\drivers\mouhid.sys - ok
15:02:03.0750 4008 [ CF7E041663119E09D2E118521ADA9300 ] C:\WINDOWS\system32\drivers\nuidfltr.sys
15:02:03.0750 4008 C:\WINDOWS\system32\drivers\nuidfltr.sys - ok
15:02:03.0765 4008 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] C:\WINDOWS\system32\drivers\usbscan.sys
15:02:03.0765 4008 C:\WINDOWS\system32\drivers\usbscan.sys - ok
15:02:03.0765 4008 [ A717C8721046828520C9EDF31288FC00 ] C:\WINDOWS\system32\drivers\usbprint.sys
15:02:03.0765 4008 C:\WINDOWS\system32\drivers\usbprint.sys - ok
15:02:03.0781 4008 [ E65E2353A5D74EA89971CB918EEEB2F6 ] C:\WINDOWS\system32\drivers\diskdump.sys
15:02:03.0781 4008 C:\WINDOWS\system32\drivers\diskdump.sys - ok
15:02:03.0781 4008 [ 701427803FE7E83EEE2F3EE4693AB099 ] C:\WINDOWS\system32\drivers\nvgts.sys
15:02:03.0781 4008 C:\WINDOWS\system32\drivers\nvgts.sys - ok
15:02:03.0796 4008 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
15:02:03.0796 4008 C:\WINDOWS\system32\drivers\dxapi.sys - ok
15:02:03.0796 4008 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
15:02:03.0796 4008 C:\WINDOWS\system32\watchdog.sys - ok
15:02:03.0796 4008 [ FC8A1F72A8097910A11D5184BC3F887B ] C:\WINDOWS\system32\win32k.sys
15:02:03.0796 4008 C:\WINDOWS\system32\win32k.sys - ok
15:02:03.0812 4008 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
15:02:03.0812 4008 C:\WINDOWS\system32\basesrv.dll - ok
15:02:03.0812 4008 [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
15:02:03.0812 4008 C:\WINDOWS\system32\csrsrv.dll - ok
15:02:03.0828 4008 [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
15:02:03.0828 4008 C:\WINDOWS\system32\csrss.exe - ok
15:02:03.0828 4008 [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
15:02:03.0828 4008 C:\WINDOWS\system32\gdi32.dll - ok
15:02:03.0843 4008 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
15:02:03.0843 4008 C:\WINDOWS\system32\winsrv.dll - ok
15:02:03.0843 4008 [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
15:02:03.0843 4008 C:\WINDOWS\system32\kernel32.dll - ok
15:02:03.0843 4008 [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
15:02:03.0843 4008 C:\WINDOWS\system32\user32.dll - ok
15:02:03.0859 4008 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
15:02:03.0859 4008 C:\WINDOWS\system32\drivers\dxg.sys - ok
15:02:03.0859 4008 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
15:02:03.0859 4008 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
15:02:03.0875 4008 [ 02EF59B043D03C5A75B66B75520CBEDF ] C:\WINDOWS\system32\nv4_disp.dll
15:02:03.0875 4008 C:\WINDOWS\system32\nv4_disp.dll - ok
15:02:03.0875 4008 [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
15:02:03.0875 4008 C:\WINDOWS\system32\vga.dll - ok
15:02:03.0890 4008 [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
15:02:03.0890 4008 C:\WINDOWS\system32\advapi32.dll - ok
15:02:03.0890 4008 [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
15:02:03.0890 4008 C:\WINDOWS\system32\winlogon.exe - ok
15:02:03.0890 4008 [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\system32\rpcrt4.dll
15:02:03.0890 4008 C:\WINDOWS\system32\rpcrt4.dll - ok
15:02:03.0906 4008 [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
15:02:03.0906 4008 C:\WINDOWS\system32\authz.dll - ok
15:02:03.0906 4008 [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
15:02:03.0906 4008 C:\WINDOWS\system32\secur32.dll - ok
15:02:03.0921 4008 [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
15:02:03.0921 4008 C:\WINDOWS\system32\msvcrt.dll - ok
15:02:03.0921 4008 [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
15:02:03.0921 4008 C:\WINDOWS\system32\crypt32.dll - ok
15:02:03.0921 4008 [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
15:02:03.0937 4008 C:\WINDOWS\system32\msasn1.dll - ok
15:02:03.0937 4008 [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
15:02:03.0937 4008 C:\WINDOWS\system32\nddeapi.dll - ok
15:02:03.0937 4008 [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
15:02:03.0937 4008 C:\WINDOWS\system32\netapi32.dll - ok
15:02:03.0953 4008 [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
15:02:03.0953 4008 C:\WINDOWS\system32\profmap.dll - ok
15:02:03.0953 4008 [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
15:02:03.0953 4008 C:\WINDOWS\system32\userenv.dll - ok
15:02:03.0968 4008 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
15:02:03.0968 4008 C:\WINDOWS\system32\psapi.dll - ok
15:02:03.0968 4008 [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
15:02:03.0968 4008 C:\WINDOWS\system32\regapi.dll - ok
15:02:03.0984 4008 [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
15:02:03.0984 4008 C:\WINDOWS\system32\setupapi.dll - ok
15:02:03.0984 4008 [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
15:02:03.0984 4008 C:\WINDOWS\system32\version.dll - ok
15:02:04.0000 4008 [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
15:02:04.0000 4008 C:\WINDOWS\system32\winsta.dll - ok
15:02:04.0000 4008 [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
15:02:04.0000 4008 C:\WINDOWS\system32\wintrust.dll - ok
15:02:04.0000 4008 [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
15:02:04.0000 4008 C:\WINDOWS\system32\imagehlp.dll - ok
15:02:04.0015 4008 [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
15:02:04.0015 4008 C:\WINDOWS\system32\ws2help.dll - ok
15:02:04.0015 4008 [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
15:02:04.0015 4008 C:\WINDOWS\system32\ws2_32.dll - ok
15:02:04.0031 4008 [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
15:02:04.0031 4008 C:\WINDOWS\system32\imm32.dll - ok
15:02:04.0031 4008 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
15:02:04.0031 4008 C:\WINDOWS\system32\kbdus.dll - ok
15:02:04.0046 4008 [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
15:02:04.0046 4008 C:\WINDOWS\system32\msgina.dll - ok
15:02:04.0046 4008 [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
15:02:04.0046 4008 C:\WINDOWS\system32\comctl32.dll - ok
15:02:04.0046 4008 [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
15:02:04.0046 4008 C:\WINDOWS\system32\odbc32.dll - ok
15:02:04.0062 4008 [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
15:02:04.0062 4008 C:\WINDOWS\system32\comdlg32.dll - ok
15:02:04.0062 4008 [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
15:02:04.0062 4008 C:\WINDOWS\system32\shell32.dll - ok
15:02:04.0078 4008 [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
15:02:04.0078 4008 C:\WINDOWS\system32\shlwapi.dll - ok
15:02:04.0078 4008 [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
15:02:04.0078 4008 C:\WINDOWS\system32\sxs.dll - ok
15:02:04.0093 4008 [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
15:02:04.0093 4008 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
15:02:04.0093 4008 [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
15:02:04.0093 4008 C:\WINDOWS\system32\odbcint.dll - ok
15:02:04.0109 4008 [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
15:02:04.0109 4008 C:\WINDOWS\system32\shsvcs.dll - ok
15:02:04.0109 4008 [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
15:02:04.0109 4008 C:\WINDOWS\system32\sfc.dll - ok
15:02:04.0109 4008 [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
15:02:04.0109 4008 C:\WINDOWS\system32\sfc_os.dll - ok
15:02:04.0125 4008 [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
15:02:04.0125 4008 C:\WINDOWS\system32\ole32.dll - ok
15:02:04.0125 4008 [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
15:02:04.0125 4008 C:\WINDOWS\system32\apphelp.dll - ok
15:02:04.0140 4008 [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
15:02:04.0140 4008 C:\WINDOWS\system32\lsass.exe - ok
15:02:04.0140 4008 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
15:02:04.0140 4008 C:\WINDOWS\system32\services.exe - ok
15:02:04.0156 4008 [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
15:02:04.0156 4008 C:\WINDOWS\system32\lsasrv.dll - ok
15:02:04.0156 4008 [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
15:02:04.0156 4008 C:\WINDOWS\system32\ncobjapi.dll - ok
15:02:04.0156 4008 [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
15:02:04.0156 4008 C:\WINDOWS\system32\msvcp60.dll - ok
15:02:04.0171 4008 [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
15:02:04.0171 4008 C:\WINDOWS\system32\mpr.dll - ok
15:02:04.0171 4008 [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
15:02:04.0171 4008 C:\WINDOWS\system32\ntdsapi.dll - ok
15:02:04.0187 4008 [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
15:02:04.0187 4008 C:\WINDOWS\system32\scesrv.dll - ok
15:02:04.0187 4008 [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
15:02:04.0187 4008 C:\WINDOWS\system32\dnsapi.dll - ok
15:02:04.0187 4008 [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
15:02:04.0187 4008 C:\WINDOWS\system32\umpnpmgr.dll - ok
15:02:04.0203 4008 [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
15:02:04.0203 4008 C:\WINDOWS\system32\wldap32.dll - ok
15:02:04.0203 4008 [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
15:02:04.0203 4008 C:\WINDOWS\AppPatch\acadproc.dll - ok
15:02:04.0218 4008 [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
15:02:04.0218 4008 C:\WINDOWS\system32\samlib.dll - ok
15:02:04.0218 4008 [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
15:02:04.0218 4008 C:\WINDOWS\system32\samsrv.dll - ok
15:02:04.0234 4008 [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
15:02:04.0234 4008 C:\WINDOWS\system32\shimeng.dll - ok
15:02:04.0234 4008 [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
15:02:04.0234 4008 C:\WINDOWS\AppPatch\acgenral.dll - ok
15:02:04.0250 4008 [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
15:02:04.0250 4008 C:\WINDOWS\system32\cryptdll.dll - ok
15:02:04.0250 4008 [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
15:02:04.0250 4008 C:\WINDOWS\system32\winmm.dll - ok
15:02:04.0250 4008 [ EFF03460E542EEA6B0ABDEC6BF19C897 ] C:\WINDOWS\system32\oleaut32.dll
15:02:04.0265 4008 C:\WINDOWS\system32\oleaut32.dll - ok
15:02:04.0265 4008 [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
15:02:04.0265 4008 C:\WINDOWS\system32\msacm32.dll - ok
15:02:04.0265 4008 [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
15:02:04.0265 4008 C:\WINDOWS\system32\uxtheme.dll - ok
15:02:04.0281 4008 [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
15:02:04.0281 4008 C:\WINDOWS\system32\msapsspc.dll - ok
15:02:04.0281 4008 [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
15:02:04.0281 4008 C:\WINDOWS\system32\msvcrt40.dll - ok
15:02:04.0296 4008 [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
15:02:04.0296 4008 C:\WINDOWS\system32\schannel.dll - ok
15:02:04.0296 4008 [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
15:02:04.0296 4008 C:\WINDOWS\system32\digest.dll - ok
15:02:04.0296 4008 [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
15:02:04.0296 4008 C:\WINDOWS\system32\msnsspc.dll - ok
15:02:04.0312 4008 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
15:02:04.0312 4008 C:\WINDOWS\system32\msprivs.dll - ok
15:02:04.0312 4008 [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\msctfime.ime
15:02:04.0312 4008 C:\WINDOWS\system32\msctfime.ime - ok
15:02:04.0328 4008 [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
15:02:04.0328 4008 C:\WINDOWS\system32\kerberos.dll - ok
15:02:04.0328 4008 [ C11D10A3C164AC222BC9AAB3650A88B3 ] C:\WINDOWS\system32\atmfd.dll
15:02:04.0328 4008 C:\WINDOWS\system32\atmfd.dll - ok
15:02:04.0343 4008 [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
15:02:04.0343 4008 C:\WINDOWS\system32\msv1_0.dll - ok
15:02:04.0343 4008 [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
15:02:04.0343 4008 C:\WINDOWS\system32\iphlpapi.dll - ok
15:02:04.0343 4008 [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
15:02:04.0343 4008 C:\WINDOWS\system32\netlogon.dll - ok
15:02:04.0359 4008 [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
15:02:04.0359 4008 C:\WINDOWS\system32\w32time.dll - ok
15:02:04.0359 4008 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
15:02:04.0359 4008 C:\WINDOWS\system32\rsaenh.dll - ok
15:02:04.0375 4008 [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
15:02:04.0375 4008 C:\WINDOWS\system32\wdigest.dll - ok
15:02:04.0375 4008 [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
15:02:04.0375 4008 C:\WINDOWS\system32\winscard.dll - ok
15:02:04.0390 4008 [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
15:02:04.0390 4008 C:\WINDOWS\system32\wtsapi32.dll - ok
15:02:04.0390 4008 [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
15:02:04.0390 4008 C:\WINDOWS\system32\scecli.dll - ok
15:02:04.0390 4008 [ CCDA8D84FD02AEC52E62F296433AE9DC ] C:\WINDOWS\system32\drivers\aswFsBlk.sys
15:02:04.0390 4008 C:\WINDOWS\system32\drivers\aswFsBlk.sys - ok
15:02:04.0406 4008 [ A6E20E62871A28A0F1C05B1681848FA7 ] C:\WINDOWS\system32\drivers\aswMonFlt.sys
15:02:04.0406 4008 C:\WINDOWS\system32\drivers\aswMonFlt.sys - ok
15:02:04.0406 4008 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
15:02:04.0406 4008 C:\WINDOWS\system32\svchost.exe - ok
15:02:04.0421 4008 [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
15:02:04.0421 4008 C:\WINDOWS\system32\ntmarta.dll - ok
15:02:04.0421 4008 [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
15:02:04.0421 4008 C:\WINDOWS\system32\rpcss.dll - ok
15:02:04.0437 4008 [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
15:02:04.0437 4008 C:\WINDOWS\system32\xpsp2res.dll - ok
15:02:04.0437 4008 [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
15:02:04.0437 4008 C:\WINDOWS\system32\eventlog.dll - ok
15:02:04.0437 4008 [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
15:02:04.0437 4008 C:\WINDOWS\system32\mswsock.dll - ok
15:02:04.0453 4008 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
15:02:04.0453 4008 C:\WINDOWS\system32\hnetcfg.dll - ok
15:02:04.0453 4008 [ 60B8C0DB5A8E4D7B4712DF66D6FF2788 ] C:\WINDOWS\system32\wship6.dll
15:02:04.0453 4008 C:\WINDOWS\system32\wship6.dll - ok
15:02:04.0468 4008 [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
15:02:04.0468 4008 C:\WINDOWS\system32\wshtcpip.dll - ok
15:02:04.0468 4008 [ 811BB60991FC03A63F2F844A3F9C6488 ] C:\WINDOWS\system32\wshisn.dll
15:02:04.0468 4008 C:\WINDOWS\system32\wshisn.dll - ok
15:02:04.0484 4008 [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
15:02:04.0484 4008 C:\WINDOWS\system32\winrnr.dll - ok
15:02:04.0484 4008 [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
15:02:04.0484 4008 C:\WINDOWS\system32\wsock32.dll - ok
15:02:04.0500 4008 [ 40947436A70E0034E41123DF5A0A7702 ] C:\Program Files\Bonjour\mdnsNSP.dll
15:02:04.0500 4008 C:\Program Files\Bonjour\mdnsNSP.dll - ok
15:02:04.0500 4008 [ AF1449AC1D79D37C7026C1D8912DDA8E ] C:\WINDOWS\system32\pnrpnsp.dll
15:02:04.0500 4008 C:\WINDOWS\system32\pnrpnsp.dll - ok
15:02:04.0500 4008 [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
15:02:04.0500 4008 C:\WINDOWS\system32\rasadhlp.dll - ok
15:02:04.0515 4008 [ 5CAF91E865FE0C85048A233E594544D2 ] C:\WINDOWS\system32\WudfPlatform.dll
15:02:04.0515 4008 C:\WINDOWS\system32\WudfPlatform.dll - ok
15:02:04.0515 4008 [ 05231C04253C5BC30B26CBAAE680ED89 ] C:\WINDOWS\system32\WudfSvc.dll
15:02:04.0515 4008 C:\WINDOWS\system32\WudfSvc.dll - ok
15:02:04.0531 4008 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
15:02:04.0531 4008 C:\WINDOWS\system32\logonui.exe - ok
15:02:04.0531 4008 [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
15:02:04.0531 4008 C:\WINDOWS\system32\cscdll.dll - ok
15:02:04.0546 4008 [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
15:02:04.0546 4008 C:\WINDOWS\system32\dimsntfy.dll - ok
15:02:04.0546 4008 [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
15:02:04.0546 4008 C:\WINDOWS\system32\winspool.drv - ok
15:02:04.0546 4008 [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
15:02:04.0546 4008 C:\WINDOWS\system32\wlnotify.dll - ok
15:02:04.0562 4008 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
15:02:04.0562 4008 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
15:02:04.0562 4008 [ 8B8B1BE2DBA4025DA6786C645F77F123 ] C:\WINDOWS\system32\drivers\nwlnkipx.sys
15:02:04.0562 4008 C:\WINDOWS\system32\drivers\nwlnkipx.sys - ok
15:02:04.0578 4008 [ 56D34A67C05E94E16377C60609741FF8 ] C:\WINDOWS\system32\drivers\nwlnknb.sys
15:02:04.0578 4008 C:\WINDOWS\system32\drivers\nwlnknb.sys - ok
15:02:04.0578 4008 [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
15:02:04.0578 4008 C:\WINDOWS\system32\dhcpcsvc.dll - ok
15:02:04.0593 4008 [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
15:02:04.0593 4008 C:\WINDOWS\system32\duser.dll - ok
15:02:04.0593 4008 [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
15:02:04.0593 4008 C:\WINDOWS\system32\dnsrslvr.dll - ok
15:02:04.0593 4008 [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
15:02:04.0593 4008 C:\WINDOWS\system32\msimg32.dll - ok
15:02:04.0609 4008 [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
15:02:04.0609 4008 C:\WINDOWS\system32\oleacc.dll - ok
15:02:04.0609 4008 [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
15:02:04.0609 4008 C:\WINDOWS\system32\lmhsvc.dll - ok
15:02:04.0625 4008 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
15:02:04.0625 4008 C:\WINDOWS\system32\wzcsvc.dll - ok
15:02:04.0625 4008 [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
15:02:04.0625 4008 C:\WINDOWS\system32\rtutils.dll - ok
15:02:04.0640 4008 [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
15:02:04.0640 4008 C:\WINDOWS\system32\wmi.dll - ok
15:02:04.0640 4008 [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
15:02:04.0640 4008 C:\WINDOWS\system32\clbcatq.dll - ok
15:02:04.0640 4008 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
15:02:04.0640 4008 C:\WINDOWS\system32\eapolqec.dll - ok
15:02:04.0656 4008 [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
15:02:04.0656 4008 C:\WINDOWS\system32\atl.dll - ok
15:02:04.0656 4008 [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
15:02:04.0656 4008 C:\WINDOWS\system32\comres.dll - ok
15:02:04.0671 4008 [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
15:02:04.0671 4008 C:\WINDOWS\system32\qutil.dll - ok
15:02:04.0671 4008 [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
15:02:04.0671 4008 C:\WINDOWS\system32\dot3api.dll - ok
15:02:04.0687 4008 [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
15:02:04.0687 4008 C:\WINDOWS\system32\esent.dll - ok
15:02:04.0687 4008 [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
15:02:04.0687 4008 C:\WINDOWS\system32\shgina.dll - ok
15:02:04.0687 4008 [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
15:02:04.0687 4008 C:\WINDOWS\system32\cscui.dll - ok
15:02:04.0703 4008 [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
15:02:04.0703 4008 C:\WINDOWS\system32\powrprof.dll - ok
15:02:04.0703 4008 [ 3E2F3E2F4A82B7FAE23BAB864FB0F837 ] C:\WINDOWS\system32\dpcdll.dll
15:02:04.0703 4008 C:\WINDOWS\system32\dpcdll.dll - ok
15:02:04.0718 4008 [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
15:02:04.0718 4008 C:\WINDOWS\system32\rastls.dll - ok
15:02:04.0718 4008 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
15:02:04.0718 4008 C:\WINDOWS\system32\cryptui.dll - ok
15:02:04.0734 4008 [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
15:02:04.0734 4008 C:\WINDOWS\system32\userinit.exe - ok
15:02:04.0734 4008 [ 41735B82DB57E4EBE9504EC400FD120E ] C:\Program Files\AVAST Software\Avast\AvastSvc.exe
15:02:04.0734 4008 C:\Program Files\AVAST Software\Avast\AvastSvc.exe - ok
15:02:04.0750 4008 [ 729B764A70D3F111E2A3227D8ACB9F0D ] C:\WINDOWS\system32\wininet.dll
15:02:04.0750 4008 C:\WINDOWS\system32\wininet.dll - ok
15:02:04.0750 4008 [ 81BC2B7B6C5C46EB31DEDAC66548053E ] C:\Program Files\AVAST Software\Avast\aswCmnBS.dll
15:02:04.0750 4008 C:\Program Files\AVAST Software\Avast\aswCmnBS.dll - ok
15:02:04.0750 4008 [ 4021AEBD765FBFD22E5E7B21FB0E9549 ] C:\Program Files\AVAST Software\Avast\aswCmnOS.dll
15:02:04.0750 4008 C:\Program Files\AVAST Software\Avast\aswCmnOS.dll - ok
15:02:04.0765 4008 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
15:02:04.0765 4008 C:\WINDOWS\system32\normaliz.dll - ok
15:02:04.0765 4008 [ 6200CCC91CBA6FDC24F89F9EBE4FA24B ] C:\WINDOWS\system32\iertutil.dll
15:02:04.0765 4008 C:\WINDOWS\system32\iertutil.dll - ok
15:02:04.0781 4008 [ 35868C1F8B1BFF5CA1F957E3548A96FC ] C:\Program Files\AVAST Software\Avast\aswCmnIS.dll
15:02:04.0781 4008 C:\Program Files\AVAST Software\Avast\aswCmnIS.dll - ok
15:02:04.0781 4008 [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
15:02:04.0781 4008 C:\WINDOWS\system32\mprapi.dll - ok
15:02:04.0796 4008 [ CDBE9690CF2B8409FACAD94FAC9479C9 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
15:02:04.0796 4008 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll - ok
15:02:04.0796 4008 [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
15:02:04.0796 4008 C:\WINDOWS\explorer.exe - ok
15:02:04.0796 4008 [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
15:02:04.0796 4008 C:\WINDOWS\system32\activeds.dll - ok
15:02:04.0812 4008 [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
15:02:04.0812 4008 C:\WINDOWS\system32\adsldpc.dll - ok
15:02:04.0812 4008 [ 4C39358EBDD2FFCD9132A30E1EC31E16 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
15:02:04.0812 4008 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll - ok
15:02:04.0828 4008 [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
15:02:04.0828 4008 C:\WINDOWS\system32\browseui.dll
sweetjopye
Active Member
 
Posts: 14
Joined: May 27th, 2013, 8:21 am

Re: Removal of new toolbar

Unread postby sweetjopye » May 30th, 2013, 4:42 pm

And finally. from sweetjopye

15:02:04.0828 4008 [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
15:02:04.0828 4008 C:\WINDOWS\system32\browseui.dll - ok
15:02:04.0828 4008 [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
15:02:04.0828 4008 C:\WINDOWS\system32\rasapi32.dll - ok
15:02:04.0843 4008 [ E9CE9F8CD76B81B1CE5C9F3F58D0591A ] C:\Program Files\AVAST Software\Avast\ashBase.dll
15:02:04.0843 4008 C:\Program Files\AVAST Software\Avast\ashBase.dll - ok
15:02:04.0843 4008 [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
15:02:04.0843 4008 C:\WINDOWS\system32\rasman.dll - ok
15:02:04.0843 4008 [ FFF65CA2746E1FA5673D2BF2CC706955 ] C:\Program Files\AVAST Software\Avast\aswEngLdr.dll
15:02:04.0843 4008 C:\Program Files\AVAST Software\Avast\aswEngLdr.dll - ok
15:02:04.0859 4008 [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
15:02:04.0859 4008 C:\WINDOWS\system32\tapi32.dll - ok
15:02:04.0859 4008 [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
15:02:04.0859 4008 C:\WINDOWS\system32\shdocvw.dll - ok
15:02:04.0875 4008 [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
15:02:04.0875 4008 C:\WINDOWS\system32\riched20.dll - ok
15:02:04.0875 4008 [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
15:02:04.0875 4008 C:\WINDOWS\system32\raschap.dll - ok
15:02:04.0890 4008 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
15:02:04.0890 4008 C:\WINDOWS\system32\netman.dll - ok
15:02:04.0890 4008 [ C0BB7D1615E1ACBDC99757F6CEAF8CF0 ] C:\WINDOWS\system32\drivers\nwlnkspx.sys
15:02:04.0890 4008 C:\WINDOWS\system32\drivers\nwlnkspx.sys - ok
15:02:04.0890 4008 [ 47742160BBC1B66D0CB09AA45F907540 ] C:\Program Files\AVAST Software\Avast\avBugReport.exe
15:02:04.0890 4008 C:\Program Files\AVAST Software\Avast\avBugReport.exe - ok
15:02:04.0906 4008 [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
15:02:04.0906 4008 C:\WINDOWS\system32\netshell.dll - ok
15:02:04.0906 4008 [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
15:02:04.0906 4008 C:\WINDOWS\system32\dbghelp.dll - ok
15:02:04.0921 4008 [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
15:02:04.0921 4008 C:\WINDOWS\system32\winhttp.dll - ok
15:02:04.0921 4008 [ 0127F0E5C76C1C02842952DD7B38157A ] C:\Program Files\AVAST Software\Avast\1033\Base.dll
15:02:04.0921 4008 C:\Program Files\AVAST Software\Avast\1033\Base.dll - ok
15:02:04.0937 4008 [ 1BE8D8DCCEBD1174BCC22D0BC575C237 ] C:\Program Files\AVAST Software\Avast\ashServ.dll
15:02:04.0937 4008 C:\Program Files\AVAST Software\Avast\ashServ.dll - ok
15:02:04.0937 4008 [ 56DEC67E273BA88A630C4B7B29D9D7BB ] C:\Program Files\AVAST Software\Avast\ashShell.dll
15:02:04.0937 4008 C:\Program Files\AVAST Software\Avast\ashShell.dll - ok
15:02:04.0937 4008 [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
15:02:04.0937 4008 C:\WINDOWS\system32\credui.dll - ok
15:02:04.0953 4008 [ FD639FEEE160F399DB58A3FDB2E0DF4D ] C:\Program Files\AVAST Software\Avast\aswAux.dll
15:02:04.0953 4008 C:\Program Files\AVAST Software\Avast\aswAux.dll - ok
15:02:04.0953 4008 [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
15:02:04.0953 4008 C:\WINDOWS\system32\msi.dll - ok
15:02:04.0968 4008 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
15:02:04.0968 4008 C:\WINDOWS\system32\dot3dlg.dll - ok
15:02:04.0968 4008 [ 3B8707AC8BB05CD0D4D96333D4411EE7 ] C:\Program Files\AVAST Software\Avast\ashTask.dll
15:02:04.0968 4008 C:\Program Files\AVAST Software\Avast\ashTask.dll - ok
15:02:04.0984 4008 [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
15:02:04.0984 4008 C:\WINDOWS\system32\onex.dll - ok
15:02:04.0984 4008 [ 8588D68F3A51C147EA8019E496F805EB ] C:\Program Files\AVAST Software\Avast\ashTaskEx.dll
15:02:04.0984 4008 C:\Program Files\AVAST Software\Avast\ashTaskEx.dll - ok
15:02:05.0000 4008 [ 720B5083FC3037150801504F9ECA1591 ] C:\Program Files\AVAST Software\Avast\aswLog.dll
15:02:05.0000 4008 C:\Program Files\AVAST Software\Avast\aswLog.dll - ok
15:02:05.0000 4008 [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
15:02:05.0000 4008 C:\WINDOWS\system32\eappcfg.dll - ok
15:02:05.0015 4008 [ 129D3C6FF2E0C60FBD757C63C72F15B8 ] C:\Program Files\AVAST Software\Avast\aswProperty.dll
15:02:05.0015 4008 C:\Program Files\AVAST Software\Avast\aswProperty.dll - ok
15:02:05.0015 4008 [ F5FEDB7D35E030A2DACD40FB3245C765 ] C:\Program Files\AVAST Software\Avast\aswSqLt.dll
15:02:05.0015 4008 C:\Program Files\AVAST Software\Avast\aswSqLt.dll - ok
15:02:05.0015 4008 [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
15:02:05.0015 4008 C:\WINDOWS\system32\eappprxy.dll - ok
15:02:05.0031 4008 [ 31472162FB12CFE31226343FDEE94318 ] C:\Program Files\AVAST Software\Avast\AavmRpch.dll
15:02:05.0031 4008 C:\Program Files\AVAST Software\Avast\AavmRpch.dll - ok
15:02:05.0031 4008 [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
15:02:05.0031 4008 C:\WINDOWS\system32\wzcsapi.dll - ok
15:02:05.0046 4008 [ 482310DD75538EB321210FF1E2538C72 ] C:\Program Files\AVAST Software\Avast\Aavm4h.dll
15:02:05.0046 4008 C:\Program Files\AVAST Software\Avast\Aavm4h.dll - ok
15:02:05.0046 4008 [ 1650A06EB48C18969057761AFCCBF001 ] C:\Program Files\AVAST Software\Avast\avastIP.dll
15:02:05.0046 4008 C:\Program Files\AVAST Software\Avast\avastIP.dll - ok
15:02:05.0062 4008 [ 682F67B86B4F586D813BACA7A0AA06A7 ] C:\Program Files\AVAST Software\Avast\aswIdle.dll
15:02:05.0062 4008 C:\Program Files\AVAST Software\Avast\aswIdle.dll - ok
15:02:05.0062 4008 [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
15:02:05.0062 4008 C:\WINDOWS\system32\desk.cpl - ok
15:02:05.0062 4008 [ EB6613261E287A8B9783C9C8B7F118F8 ] C:\Program Files\AVAST Software\Avast\aswDld.dll
15:02:05.0062 4008 C:\Program Files\AVAST Software\Avast\aswDld.dll - ok
15:02:05.0078 4008 [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
15:02:05.0078 4008 C:\WINDOWS\system32\themeui.dll - ok
15:02:05.0078 4008 [ 20EEC2605DC89048E9989FE8D73E26BD ] C:\Program Files\AVAST Software\Avast\aswStrm.dll
15:02:05.0078 4008 C:\Program Files\AVAST Software\Avast\aswStrm.dll - ok
15:02:05.0093 4008 [ 912B67BB8249925A5C972FC5839EAE09 ] C:\WINDOWS\system32\actxprxy.dll
15:02:05.0093 4008 C:\WINDOWS\system32\actxprxy.dll - ok
15:02:05.0093 4008 [ 48643F5994373A9640961BA40242C291 ] C:\WINDOWS\system32\urlmon.dll
15:02:05.0093 4008 C:\WINDOWS\system32\urlmon.dll - ok
15:02:05.0109 4008 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
15:02:05.0109 4008 C:\WINDOWS\system32\schedsvc.dll - ok
15:02:05.0109 4008 [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
15:02:05.0109 4008 C:\WINDOWS\system32\msidle.dll - ok
15:02:05.0109 4008 [ 73A720073843EDB55D7E67C42E846BE8 ] C:\Program Files\AVAST Software\Avast\defs\13052300\aswEngin.dll
15:02:05.0109 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\aswEngin.dll - ok
15:02:05.0125 4008 [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
15:02:05.0125 4008 C:\WINDOWS\system32\spoolsv.exe - ok
15:02:05.0125 4008 [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
15:02:05.0125 4008 C:\WINDOWS\system32\cmd.exe - ok
15:02:05.0140 4008 [ 6EBD942EBCE624138507C681EB592090 ] C:\WINDOWS\system32\ieframe.dll
15:02:05.0140 4008 C:\WINDOWS\system32\ieframe.dll - ok
15:02:05.0140 4008 [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
15:02:05.0140 4008 C:\WINDOWS\system32\audiosrv.dll - ok
15:02:05.0156 4008 [ 64790077F7574E0EB97F3CD2C7B46796 ] C:\Program Files\AVAST Software\Avast\defs\13052300\aswCmnIS.dll
15:02:05.0156 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\aswCmnIS.dll - ok
15:02:05.0156 4008 [ A8888A5327621856C0CEC4E385F69309 ] C:\WINDOWS\system32\wkssvc.dll
15:02:05.0156 4008 C:\WINDOWS\system32\wkssvc.dll - ok
15:02:05.0156 4008 [ 09C5CB1DEEFFB23C29FDF135C70E506E ] C:\Program Files\AVAST Software\Avast\defs\13052300\aswCmnOS.dll
15:02:05.0156 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\aswCmnOS.dll - ok
15:02:05.0171 4008 [ 3E573496112D62DFCCE4E0D745E6D1DD ] C:\Program Files\AVAST Software\Avast\defs\13052300\aswCmnBS.dll
15:02:05.0171 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\aswCmnBS.dll - ok
15:02:05.0171 4008 [ AB3C4A3667AEAD147F175721D8719B78 ] C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe
15:02:05.0171 4008 C:\Program Files\AVAST Software\Avast\AvastEmUpdate.exe - ok
15:02:05.0187 4008 [ F4B53E84EBD4EDC4938E9B40B583D6FE ] C:\Program Files\AVAST Software\Avast\defs\13052300\aswScan.dll
15:02:05.0187 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\aswScan.dll - ok
15:02:05.0187 4008 [ 32ED62D8C410117E09B0B7CA44FC4456 ] C:\Program Files\AVAST Software\Avast\defs\13052300\aswRep.dll
15:02:05.0187 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\aswRep.dll - ok
15:02:05.0203 4008 [ 178A34E5554DCE485E1262DDF027960C ] C:\DOCUME~1\Owner\LOCALS~1\temp\244BAA8B-5882-4E35-8AC4-E507545FCB5A.exe
15:02:05.0203 4008 C:\DOCUME~1\Owner\LOCALS~1\temp\244BAA8B-5882-4E35-8AC4-E507545FCB5A.exe - ok
15:02:05.0203 4008 [ 2399F8068E969D9C25A05B6F779A790A ] C:\Program Files\AVAST Software\Avast\defs\13052300\aswFiDb.dll
15:02:05.0203 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\aswFiDb.dll - ok
15:02:05.0203 4008 [ E69DC934250D6173A2BDD57E32CE8A91 ] C:\Program Files\AVAST Software\Avast\defs\13052300\algo.dll
15:02:05.0203 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\algo.dll - ok
15:02:05.0218 4008 [ A70A2D85AD143D6BB823C246CEB699A5 ] C:\WINDOWS\system32\ntshrui.dll
15:02:05.0218 4008 C:\WINDOWS\system32\ntshrui.dll - ok
15:02:05.0218 4008 [ 680B56A8B62D1BCF4A0B2AAAD03D88E4 ] C:\WINDOWS\system32\wdmaud.drv
15:02:05.0218 4008 C:\WINDOWS\system32\wdmaud.drv - ok
15:02:05.0234 4008 [ 6768ACF64B18196494413695F0C3A00F ] C:\WINDOWS\system32\drivers\wdmaud.sys
15:02:05.0234 4008 C:\WINDOWS\system32\drivers\wdmaud.sys - ok
15:02:05.0234 4008 [ 91790D6749EBED90E2C40479C0A91879 ] C:\WINDOWS\system32\verclsid.exe
15:02:05.0234 4008 C:\WINDOWS\system32\verclsid.exe - ok
15:02:05.0250 4008 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] C:\WINDOWS\system32\drivers\sysaudio.sys
15:02:05.0250 4008 C:\WINDOWS\system32\drivers\sysaudio.sys - ok
15:02:05.0250 4008 [ 8BED39E3C35D6A489438B8141717A557 ] C:\WINDOWS\system32\drivers\aec.sys
15:02:05.0250 4008 C:\WINDOWS\system32\drivers\aec.sys - ok
15:02:05.0265 4008 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] C:\WINDOWS\system32\drivers\splitter.sys
15:02:05.0265 4008 C:\WINDOWS\system32\drivers\splitter.sys - ok
15:02:05.0265 4008 [ 2DC5A8019E2387987905F77C664E4BE2 ] C:\WINDOWS\system32\linkinfo.dll
15:02:05.0265 4008 C:\WINDOWS\system32\linkinfo.dll - ok
15:02:05.0281 4008 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] C:\WINDOWS\system32\drivers\swmidi.sys
15:02:05.0281 4008 C:\WINDOWS\system32\drivers\swmidi.sys - ok
15:02:05.0281 4008 [ 8A208DFCF89792A484E76C40E5F50B45 ] C:\WINDOWS\system32\drivers\dmusic.sys
15:02:05.0281 4008 C:\WINDOWS\system32\drivers\dmusic.sys - ok
15:02:05.0281 4008 [ 692BCF44383D056AED41B045A323D378 ] C:\WINDOWS\system32\drivers\kmixer.sys
15:02:05.0281 4008 C:\WINDOWS\system32\drivers\kmixer.sys - ok
15:02:05.0296 4008 [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] C:\WINDOWS\system32\drivers\drmkaud.sys
15:02:05.0296 4008 C:\WINDOWS\system32\drivers\drmkaud.sys - ok
15:02:05.0296 4008 [ 9A3BD5F55AADFF859539142F6328A66E ] C:\WINDOWS\system32\msacm32.drv
15:02:05.0296 4008 C:\WINDOWS\system32\msacm32.drv - ok
15:02:05.0312 4008 [ 5C12660A97822F6E61576943B49AAAD6 ] C:\WINDOWS\system32\midimap.dll
15:02:05.0312 4008 C:\WINDOWS\system32\midimap.dll - ok
15:02:05.0312 4008 [ 074FAE0B816FBA78F667B116303D31EB ] C:\WINDOWS\RTHDCPL.exe
15:02:05.0312 4008 C:\WINDOWS\RTHDCPL.exe - ok
15:02:05.0328 4008 [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
15:02:05.0328 4008 C:\WINDOWS\system32\mlang.dll - ok
15:02:05.0328 4008 [ 4D83ED8BDDEC431FC8AD907B47CFB6E3 ] C:\WINDOWS\system32\dsound.dll
15:02:05.0328 4008 C:\WINDOWS\system32\dsound.dll - ok
15:02:05.0328 4008 [ 1AFA1CBBB859A9F335FEC2F8CF3D5D0B ] C:\WINDOWS\SkyTel.exe
15:02:05.0328 4008 C:\WINDOWS\SkyTel.exe - ok
15:02:05.0343 4008 [ D3CC7A3813123E955B3A497C04B404E2 ] C:\WINDOWS\SMINST\Recguard.exe
15:02:05.0343 4008 C:\WINDOWS\SMINST\Recguard.exe - ok
15:02:05.0343 4008 [ BACC877DB547BD8F421891EBFB6282ED ] C:\WINDOWS\creator\Remind_XP.exe
15:02:05.0343 4008 C:\WINDOWS\creator\Remind_XP.exe - ok
15:02:05.0359 4008 [ 22D71D1DB6FC789A1CE8AC6963580259 ] C:\WINDOWS\system32\hhctrl.ocx
15:02:05.0359 4008 C:\WINDOWS\system32\hhctrl.ocx - ok
15:02:05.0359 4008 [ 56F676060D70BA066459478824510BEA ] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
15:02:05.0359 4008 C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe - ok
15:02:05.0359 4008 [ C933871DA46F03E59633F17CBF5E8D44 ] C:\Program Files\CyberLink\PowerDVD\Language\Language.exe
15:02:05.0359 4008 C:\Program Files\CyberLink\PowerDVD\Language\Language.exe - ok
15:02:05.0375 4008 [ 0B467F470CC9918FDCEEDCFD7DC4D697 ] C:\WINDOWS\system32\oledlg.dll
15:02:05.0375 4008 C:\WINDOWS\system32\oledlg.dll - ok
15:02:05.0375 4008 [ 89D583FC41D48328128A974C25AFAEB7 ] C:\Program Files\Common Files\Real\Update_OB\realsched.exe
15:02:05.0375 4008 C:\Program Files\Common Files\Real\Update_OB\realsched.exe - ok
15:02:05.0390 4008 [ 5652F6CE1D9E9D8068B9D29BC21B5409 ] C:\WINDOWS\system32\olepro32.dll
15:02:05.0390 4008 C:\WINDOWS\system32\olepro32.dll - ok
15:02:05.0390 4008 [ F6F2BFC17069EB335ACCEEF7595F9302 ] C:\WINDOWS\system32\mfc42u.dll
15:02:05.0390 4008 C:\WINDOWS\system32\mfc42u.dll - ok
15:02:05.0406 4008 [ D658AB1B55127D18DCFBCAC8CAAEA522 ] C:\Program Files\HP\HP Software Update\hpwuschd2.exe
15:02:05.0406 4008 C:\Program Files\HP\HP Software Update\hpwuschd2.exe - ok
15:02:05.0406 4008 [ 48BE298F7FD1BEF4D8FBACB04D8D95C4 ] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
15:02:05.0406 4008 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe - ok
15:02:05.0406 4008 [ D7FC7B3BDAE8C0202961A4DF17B0F293 ] C:\Program Files\CyberLink\PowerDVD\CLRCEngine3.dll
15:02:05.0406 4008 C:\Program Files\CyberLink\PowerDVD\CLRCEngine3.dll - ok
15:02:05.0421 4008 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\Program Files\CyberLink\PowerDVD\msvcr71.dll
15:02:05.0421 4008 C:\Program Files\CyberLink\PowerDVD\msvcr71.dll - ok
15:02:05.0421 4008 [ 148C545849C1379A3D4448F5DE768E86 ] C:\Program Files\AVAST Software\Avast\AvastUI.exe
15:02:05.0421 4008 C:\Program Files\AVAST Software\Avast\AvastUI.exe - ok
15:02:05.0437 4008 [ B2D4A37B12F04736362268FFC5B6F5BF ] C:\Program Files\AVAST Software\Avast\aswUtil.dll
15:02:05.0437 4008 C:\Program Files\AVAST Software\Avast\aswUtil.dll - ok
15:02:05.0437 4008 [ CDB517386A26AE420CB24BDB3CD88779 ] C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe
15:02:05.0437 4008 C:\Program Files\Common Files\Research In Motion\USB Drivers\RIMBBLaunchAgent.exe - ok
15:02:05.0453 4008 [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
15:02:05.0453 4008 C:\WINDOWS\system32\sensapi.dll - ok
15:02:05.0453 4008 [ D2DAD71C96C113ED07F7BB79AD831C28 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe
15:02:05.0453 4008 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe - ok
15:02:05.0453 4008 [ 0B3595A4FF0B36D68E5FC67FD7D70FDC ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
15:02:05.0453 4008 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll - ok
15:02:05.0468 4008 [ C9564CF4976E7E96B4052737AA2492B4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
15:02:05.0468 4008 C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll - ok
15:02:05.0468 4008 [ 8DDA2B606279753601F9415DA503CA63 ] C:\Program Files\QuickTime\QTTask.exe
15:02:05.0468 4008 C:\Program Files\QuickTime\QTTask.exe - ok
15:02:05.0484 4008 [ 2A8681AEA24003040CA7D677BE9F1702 ] C:\WINDOWS\system32\drivers\75913439.sys
15:02:05.0484 4008 C:\WINDOWS\system32\drivers\75913439.sys - ok
15:02:05.0484 4008 [ D63797E8E7781EE1500A810CB6194FA6 ] C:\Program Files\Common Files\Java\Java Update\jusched.exe
15:02:05.0484 4008 C:\Program Files\Common Files\Java\Java Update\jusched.exe - ok
15:02:05.0484 4008 [ 11D42BB6206F33FBB3BA0288D3EF81BD ] C:\WINDOWS\system32\drivers\mrxdav.sys
15:02:05.0484 4008 C:\WINDOWS\system32\drivers\mrxdav.sys - ok
15:02:05.0500 4008 [ C885B02847F5D2FD45A24E219ED93B32 ] C:\WINDOWS\system32\drivers\cdfs.sys
15:02:05.0500 4008 C:\WINDOWS\system32\drivers\cdfs.sys - ok
15:02:05.0500 4008 [ 5E538034D77CB5042AF6DCD96943FBC6 ] C:\WINDOWS\system32\webcheck.dll
15:02:05.0500 4008 C:\WINDOWS\system32\webcheck.dll - ok
15:02:05.0515 4008 [ 50512FC9B7878E3C2C147BC17326A7DB ] C:\WINDOWS\system32\stobject.dll
15:02:05.0515 4008 C:\WINDOWS\system32\stobject.dll - ok
15:02:05.0515 4008 [ 231A0B0E3BA7ABFE469A8262FAA1FD71 ] C:\WINDOWS\system32\batmeter.dll
15:02:05.0515 4008 C:\WINDOWS\system32\batmeter.dll - ok
15:02:05.0515 4008 [ 5C4ADB808B54126C1ED2FBA0EAE06C63 ] C:\WINDOWS\system32\upnpui.dll
15:02:05.0515 4008 C:\WINDOWS\system32\upnpui.dll - ok
15:02:05.0531 4008 [ 66CD0BEC783DCEA93C4BEDB0CC288425 ] C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe
15:02:05.0531 4008 C:\Program Files\OpenDNS Updater\OpenDNSUpdater.exe - ok
15:02:05.0531 4008 [ CA6ADE4F7761BB15B3325356DC3B82BB ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90u.dll
15:02:05.0531 4008 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_028bc148\mfc90u.dll - ok
15:02:05.0546 4008 [ 77A354E28153AD2D5E120A5A8687BC06 ] C:\WINDOWS\system32\webclnt.dll
15:02:05.0546 4008 C:\WINDOWS\system32\webclnt.dll - ok
15:02:05.0546 4008 [ 93C088C2AEB2F23E720BDA7E32BD5117 ] C:\WINDOWS\system32\upnp.dll
15:02:05.0546 4008 C:\WINDOWS\system32\upnp.dll - ok
15:02:05.0546 4008 [ 3D075865DCC26931972F6476AD0497BE ] C:\WINDOWS\system32\ssdpapi.dll
15:02:05.0546 4008 C:\WINDOWS\system32\ssdpapi.dll - ok
15:02:05.0562 4008 [ D38F9CA4EBB022D811F6107AB0346333 ] C:\Program Files\AVAST Software\Avast\Setup\setiface.dll
15:02:05.0562 4008 C:\Program Files\AVAST Software\Avast\Setup\setiface.dll - ok
15:02:05.0562 4008 [ 80942B137077DA7D2375B3041DA9127F ] C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll
15:02:05.0562 4008 C:\Program Files\Common Files\Apple\Apple Application Support\AppleVersions.dll - ok
15:02:05.0578 4008 [ 7290A6DD34862278DF9E26D96E5A95D8 ] C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll
15:02:05.0578 4008 C:\Program Files\Common Files\Apple\Apple Application Support\YSCrashDump.dll - ok
15:02:05.0578 4008 [ 5D43C9A33F18C707BA169AFDA88BDF30 ] C:\WINDOWS\system32\fltlib.dll
15:02:05.0578 4008 C:\WINDOWS\system32\fltlib.dll - ok
15:02:05.0593 4008 [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] C:\Program Files\Bonjour\mDNSResponder.exe
15:02:05.0593 4008 C:\Program Files\Bonjour\mDNSResponder.exe - ok
15:02:05.0593 4008 [ 2FDFA845DCE5D6A843E413F18307561A ] C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll
15:02:05.0593 4008 C:\Program Files\Common Files\Apple\Apple Application Support\CoreFoundation.dll - ok
15:02:05.0593 4008 [ 4AE04D9608F272F3F468B34F2F1329E5 ] C:\Program Files\AVAST Software\Avast\AhResBhv.dll
15:02:05.0593 4008 C:\Program Files\AVAST Software\Avast\AhResBhv.dll - ok
15:02:05.0609 4008 [ 94868FC1295C8B76B8D45C1F44D9F653 ] C:\Program Files\AVAST Software\Avast\AhResJs.dll
15:02:05.0609 4008 C:\Program Files\AVAST Software\Avast\AhResJs.dll - ok
15:02:05.0609 4008 [ A33452A42BDF214E7FC40CB470515605 ] C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe
15:02:05.0609 4008 C:\Program Files\Adobe\Reader 10.0\Reader\reader_sl.exe - ok
15:02:05.0625 4008 [ DEA9DFD3E83F48D7005E066011D340F7 ] C:\Program Files\AVAST Software\Avast\AhResMai.dll
15:02:05.0625 4008 C:\Program Files\AVAST Software\Avast\AhResMai.dll - ok
15:02:05.0625 4008 [ 3D4E199942E29207970E04315D02AD3B ] C:\WINDOWS\system32\cryptsvc.dll
15:02:05.0625 4008 C:\WINDOWS\system32\cryptsvc.dll - ok
15:02:05.0625 4008 [ 626A24ED1228580B9518C01930936DF9 ] C:\Program Files\Google\Update\GoogleUpdate.exe
15:02:05.0625 4008 C:\Program Files\Google\Update\GoogleUpdate.exe - ok
15:02:05.0640 4008 [ 00709952D444EAE14DBBD30D36FBAE0F ] C:\WINDOWS\system32\certcli.dll
15:02:05.0640 4008 C:\WINDOWS\system32\certcli.dll - ok
15:02:05.0640 4008 [ C03EC02F6C9F492293D78F850E2E48FC ] C:\Program Files\AVAST Software\Avast\AhResMes.dll
15:02:05.0640 4008 C:\Program Files\AVAST Software\Avast\AhResMes.dll - ok
15:02:05.0656 4008 [ 15D7A4070D2B52D2EEA8D99E551E9E53 ] C:\Program Files\AVAST Software\Avast\AhResNS.dll
15:02:05.0656 4008 C:\Program Files\AVAST Software\Avast\AhResNS.dll - ok
15:02:05.0656 4008 [ 758D99511FD82B6C55E70494039E9F1A ] C:\Program Files\Google\Update\1.3.21.145\goopdate.dll
15:02:05.0656 4008 C:\Program Files\Google\Update\1.3.21.145\goopdate.dll - ok
15:02:05.0671 4008 [ D4991D98F2DB73C60D042F1AEF79EFAE ] C:\WINDOWS\system32\es.dll
15:02:05.0671 4008 C:\WINDOWS\system32\es.dll - ok
15:02:05.0671 4008 [ A46789AD5F3A85470F898B15D5C056BD ] C:\Program Files\AVAST Software\Avast\AhResP2P.dll
15:02:05.0671 4008 C:\Program Files\AVAST Software\Avast\AhResP2P.dll - ok
15:02:05.0671 4008 [ B2D91A72C78D27D9A25FFF8BAF6EB2F4 ] C:\Program Files\AVAST Software\Avast\AhResStd.dll
15:02:05.0671 4008 C:\Program Files\AVAST Software\Avast\AhResStd.dll - ok
15:02:05.0687 4008 [ FBFCA1A574D47EE575448B719CBBF2E4 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90enu.dll
15:02:05.0687 4008 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFCLOC_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_730c3508\mfc90enu.dll - ok
15:02:05.0687 4008 [ 39F39B23969512842F6A6D259E68FF11 ] C:\Program Files\AVAST Software\Avast\AhResWS.dll
15:02:05.0687 4008 C:\Program Files\AVAST Software\Avast\AhResWS.dll - ok
15:02:05.0703 4008 [ 54152706627F5F33952340D90ADA50EE ] C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll
15:02:05.0703 4008 C:\Program Files\Common Files\Apple\Apple Application Support\pthreadVC2.dll - ok
15:02:05.0703 4008 [ BC93B4A066477954555966D77FEC9ECB ] C:\WINDOWS\system32\ersvc.dll
15:02:05.0703 4008 C:\WINDOWS\system32\ersvc.dll - ok
15:02:05.0703 4008 [ AAC3C0194EEBA939E18590411130CF43 ] C:\Program Files\AVAST Software\Avast\defs\13052300\ArPot.dll
15:02:05.0703 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\ArPot.dll - ok
15:02:05.0718 4008 [ 78865ABC5F5D13190F8B35BD9044714A ] C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll
15:02:05.0718 4008 C:\Program Files\Common Files\Apple\Apple Application Support\objc.dll - ok
15:02:05.0718 4008 [ 5C5E3AFD499E5146FEF1DA5EF8A23205 ] C:\Program Files\AVAST Software\Avast\dbghelp.dll
15:02:05.0718 4008 C:\Program Files\AVAST Software\Avast\dbghelp.dll - ok
15:02:05.0734 4008 [ FF9831030678C7B6D70BAC00F68F8976 ] C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll
15:02:05.0734 4008 C:\Program Files\Common Files\Apple\Apple Application Support\libdispatch.dll - ok
15:02:05.0734 4008 [ 2C8F7A0B6D023C6DD817E999528F2F98 ] C:\Program Files\AVAST Software\Avast\ashMaiSv.dll
15:02:05.0734 4008 C:\Program Files\AVAST Software\Avast\ashMaiSv.dll - ok
15:02:05.0734 4008 [ AF718FFE60D958E590AF49C4FC3BD6A6 ] C:\Program Files\AVAST Software\Avast\ssleay32.dll
15:02:05.0734 4008 C:\Program Files\AVAST Software\Avast\ssleay32.dll - ok
15:02:05.0750 4008 [ E5B6D88B36BDDAD5039764FBF80284DD ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll
15:02:05.0750 4008 C:\Program Files\Common Files\Apple\Apple Application Support\libicuin.dll - ok
15:02:05.0750 4008 [ 9C70887708A7C88D20DD215AC5AA757F ] C:\Program Files\AVAST Software\Avast\libeay32.dll
15:02:05.0750 4008 C:\Program Files\AVAST Software\Avast\libeay32.dll - ok
15:02:05.0765 4008 [ 4FCCA060DFE0C51A09DD5C3843888BCD ] C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
15:02:05.0765 4008 C:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll - ok
15:02:05.0765 4008 [ 5739F2821D49975CEDE6BF0153D0CF01 ] C:\Program Files\Java\jre7\bin\jqs.exe
15:02:05.0765 4008 C:\Program Files\Java\jre7\bin\jqs.exe - ok
15:02:05.0765 4008 [ F08D74EC300B8BA60CA953C58A24D19E ] C:\WINDOWS\system32\iprip.dll
15:02:05.0765 4008 C:\WINDOWS\system32\iprip.dll - ok
15:02:05.0781 4008 [ 44B1C057B30890C55FB6F4C1582E8522 ] C:\Program Files\AVAST Software\Avast\snxhk.dll
15:02:05.0781 4008 C:\Program Files\AVAST Software\Avast\snxhk.dll - ok
15:02:05.0781 4008 [ DEB04DA35CC871B6D309B77E1443C796 ] C:\WINDOWS\system32\hidserv.dll
15:02:05.0781 4008 C:\WINDOWS\system32\hidserv.dll - ok
15:02:05.0796 4008 [ 76B35CB0F3A4E69D6DFF27F542B9F856 ] C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe
15:02:05.0796 4008 C:\Program Files\Google\Update\1.3.21.145\GoogleCrashHandler.exe - ok
15:02:05.0796 4008 [ 67EC459E42D3081DD8FD34356F7CAFC1 ] C:\Program Files\Java\jre7\bin\msvcr100.dll
15:02:05.0796 4008 C:\Program Files\Java\jre7\bin\msvcr100.dll - ok
15:02:05.0796 4008 [ 8973122796E3B5D6B5900FC186E55FEA ] C:\WINDOWS\system32\hid.dll
15:02:05.0812 4008 C:\WINDOWS\system32\hid.dll - ok
15:02:05.0812 4008 [ 4044E880593FE1AC9942190FCE414BE7 ] C:\WINDOWS\system32\mstask.dll
15:02:05.0812 4008 C:\WINDOWS\system32\mstask.dll - ok
15:02:05.0812 4008 [ 7EA351E5AB744DC2C22D98E23485A262 ] C:\Program Files\AVAST Software\Avast\aswAra.dll
15:02:05.0812 4008 C:\Program Files\AVAST Software\Avast\aswAra.dll - ok
15:02:05.0828 4008 [ 1D75BC73585969F41BA7EF0C882DFF2B ] C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll
15:02:05.0828 4008 C:\Program Files\Common Files\Apple\Apple Application Support\libicuuc.dll - ok
15:02:05.0828 4008 [ 62CF83A6989312A0DD39BBFFB3D1C166 ] C:\WINDOWS\system32\pdh.dll
15:02:05.0828 4008 C:\WINDOWS\system32\pdh.dll - ok
15:02:05.0843 4008 [ B6D90C99A72044AEF85A2B7D78FEBEF4 ] C:\Program Files\AVAST Software\Avast\defs\13052300\exts.dll
15:02:05.0843 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\exts.dll - ok
15:02:05.0843 4008 [ 369F7B1A4F358B976176556A1A331F36 ] C:\WINDOWS\system32\odbcbcp.dll
15:02:05.0843 4008 C:\WINDOWS\system32\odbcbcp.dll - ok
15:02:05.0843 4008 [ C339473B25526F866DBB21425F3D8F3A ] C:\Program Files\AVAST Software\Avast\ashWebSv.dll
15:02:05.0843 4008 C:\Program Files\AVAST Software\Avast\ashWebSv.dll - ok
15:02:05.0859 4008 [ FC7A868DECC3AB027F29178EC8A7F252 ] C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll
15:02:05.0859 4008 C:\Program Files\Common Files\Apple\Apple Application Support\icudt46.dll - ok
15:02:05.0859 4008 [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] C:\WINDOWS\system32\srvsvc.dll
15:02:05.0859 4008 C:\WINDOWS\system32\srvsvc.dll - ok
15:02:05.0875 4008 [ 0CEA2D0D3FA284B85ED5B68365114F76 ] C:\WINDOWS\system32\drivers\mdmxsdk.sys
15:02:05.0875 4008 C:\WINDOWS\system32\drivers\mdmxsdk.sys - ok
15:02:05.0875 4008 [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
15:02:05.0875 4008 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
15:02:05.0875 4008 [ 20FD44370267CCD0A64A1B31861C21D2 ] C:\WINDOWS\system32\netmsg.dll
15:02:05.0875 4008 C:\WINDOWS\system32\netmsg.dll - ok
15:02:05.0890 4008 [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
15:02:05.0890 4008 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
15:02:05.0890 4008 [ ACDAFCD14EC0ECE89198503746A5C147 ] C:\WINDOWS\system32\perfos.dll
15:02:05.0890 4008 C:\WINDOWS\system32\perfos.dll - ok
15:02:05.0906 4008 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] C:\WINDOWS\system32\drivers\srv.sys
15:02:05.0906 4008 C:\WINDOWS\system32\drivers\srv.sys - ok
15:02:05.0906 4008 [ ABFB673B24A9B3287761D497529FB5B9 ] C:\WINDOWS\system32\perfdisk.dll
15:02:05.0906 4008 C:\WINDOWS\system32\perfdisk.dll - ok
15:02:05.0906 4008 [ 8BCD11D38FCE43A519246A91CC40DE6A ] C:\WINDOWS\system32\security.dll
15:02:05.0906 4008 C:\WINDOWS\system32\security.dll - ok
15:02:05.0921 4008 [ 79E3A8C328E7E569C32B0998377D9742 ] C:\WINDOWS\system32\spoolss.dll
15:02:05.0921 4008 C:\WINDOWS\system32\spoolss.dll - ok
15:02:05.0921 4008 [ DF7A5058504EE982914A3C24676F4485 ] C:\Program Files\AVAST Software\Avast\ashWsFtr.dll
15:02:05.0921 4008 C:\Program Files\AVAST Software\Avast\ashWsFtr.dll - ok
15:02:05.0937 4008 [ 9EEFE69139FDBB4A3C327630F8EB993A ] C:\WINDOWS\system32\wlanapi.dll
15:02:05.0937 4008 C:\WINDOWS\system32\wlanapi.dll - ok
15:02:05.0937 4008 [ 5677DFE438EC1F009273FC84FEED6B10 ] C:\WINDOWS\system32\localspl.dll
15:02:05.0937 4008 C:\WINDOWS\system32\localspl.dll - ok
15:02:05.0953 4008 [ 2FFBCD4394E60013EAF45427EC4E6A1E ] C:\Program Files\AVAST Software\Avast\defs\13052300\aswAR.dll
15:02:05.0953 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\aswAR.dll - ok
15:02:05.0953 4008 [ 2DE1190196EE9555DB548A57622022EB ] C:\WINDOWS\system32\drprov.dll
15:02:05.0953 4008 C:\WINDOWS\system32\drprov.dll - ok
15:02:05.0953 4008 [ 401A8C0BE0BAA7D7A470F0942244152D ] C:\WINDOWS\system32\rasdlg.dll
15:02:05.0953 4008 C:\WINDOWS\system32\rasdlg.dll - ok
15:02:05.0968 4008 [ 36468087E22C57A83DF758B3F90DF73F ] C:\WINDOWS\system32\ntlanman.dll
15:02:05.0968 4008 C:\WINDOWS\system32\ntlanman.dll - ok
15:02:05.0968 4008 [ 5D3D1AB0EF4EA55B731863050482C111 ] C:\WINDOWS\system32\cnbjmon.dll
15:02:05.0968 4008 C:\WINDOWS\system32\cnbjmon.dll - ok
15:02:05.0984 4008 [ 9EC1D983086E5FA14FFB3518B7E3B596 ] C:\Program Files\AVAST Software\Avast\defs\13052300\aswRawFS.dll
15:02:05.0984 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\aswRawFS.dll - ok
15:02:05.0984 4008 [ AC5DF42FE314C1446B1DAD237BFCFFE0 ] C:\WINDOWS\system32\netui0.dll
15:02:05.0984 4008 C:\WINDOWS\system32\netui0.dll - ok
15:02:05.0984 4008 [ ED5A816D8E11E03F1937AC3C56826EE4 ] C:\WINDOWS\system32\netui1.dll
15:02:05.0984 4008 C:\WINDOWS\system32\netui1.dll - ok
15:02:06.0000 4008 [ B41D53899E37CC43DA85DA19998BEE81 ] C:\WINDOWS\system32\netrap.dll
15:02:06.0000 4008 C:\WINDOWS\system32\netrap.dll - ok
15:02:06.0000 4008 [ 520C1168F1D8447EFDE7C101CA5E75EC ] C:\Program Files\AVAST Software\Avast\aswData.dll
15:02:06.0000 4008 C:\Program Files\AVAST Software\Avast\aswData.dll - ok
15:02:06.0015 4008 [ FB8F8EEC8D9C2157789472DD61CDC78B ] C:\WINDOWS\system32\davclnt.dll
15:02:06.0015 4008 C:\WINDOWS\system32\davclnt.dll - ok
15:02:06.0015 4008 [ 36032035FA55F030D55237D5C639A81D ] C:\WINDOWS\system32\nvsvc32.exe
15:02:06.0015 4008 C:\WINDOWS\system32\nvsvc32.exe - ok
15:02:06.0015 4008 [ DF649FA45C0A12C89E3735D4CCDB39A1 ] C:\WINDOWS\system32\hpinksts8711LM.dll
15:02:06.0031 4008 C:\WINDOWS\system32\hpinksts8711LM.dll - ok
15:02:06.0031 4008 [ ECFF42413E9744A6F80BA8F2A77704AF ] C:\WINDOWS\system32\lprmon.dll
15:02:06.0031 4008 C:\WINDOWS\system32\lprmon.dll - ok
15:02:06.0031 4008 [ 7BD2D27143F94B2103AC694EBBB7CE10 ] C:\WINDOWS\system32\lprhelp.dll
15:02:06.0031 4008 C:\WINDOWS\system32\lprhelp.dll - ok
15:02:06.0046 4008 [ 332760FBA1655FCFD35BD6F4FD871300 ] C:\WINDOWS\system32\ipsecsvc.dll
15:02:06.0046 4008 C:\WINDOWS\system32\ipsecsvc.dll - ok
15:02:06.0046 4008 [ 4B83FCBBE72AF5F99D109798653E8B78 ] C:\WINDOWS\system32\ipxsap.dll
15:02:06.0046 4008 C:\WINDOWS\system32\ipxsap.dll - ok
15:02:06.0062 4008 [ 222DE7F5EDB9DDBE628384A1A8BE59CE ] C:\WINDOWS\system32\pjlmon.dll
15:02:06.0062 4008 C:\WINDOWS\system32\pjlmon.dll - ok
15:02:06.0062 4008 [ 9F0E7FBD08442DDCF856E933D26A296C ] C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll
15:02:06.0062 4008 C:\Program Files\AVAST Software\Avast\1033\uiLangRes.dll - ok
15:02:06.0062 4008 [ B92A85618A470F4406CEE8785CE89B4F ] C:\WINDOWS\system32\rtm.dll
15:02:06.0062 4008 C:\WINDOWS\system32\rtm.dll - ok
15:02:06.0078 4008 [ AE0382AD9C73D343D85E1A50C80B7C20 ] C:\WINDOWS\system32\tcpmon.dll
15:02:06.0078 4008 C:\WINDOWS\system32\tcpmon.dll - ok
15:02:06.0078 4008 [ C5FF8682EADA5B3B27A865F1C3EF9270 ] C:\WINDOWS\system32\oakley.dll
15:02:06.0078 4008 C:\WINDOWS\system32\oakley.dll - ok
15:02:06.0093 4008 [ ED13869C11FD522B80EDF712D77251F1 ] C:\Program Files\AVAST Software\Avast\CommonRes.dll
15:02:06.0093 4008 C:\Program Files\AVAST Software\Avast\CommonRes.dll - ok
15:02:06.0093 4008 [ D05AB88927849DF74CF4F1C303DAEB4F ] C:\WINDOWS\system32\adptif.dll
15:02:06.0093 4008 C:\WINDOWS\system32\adptif.dll - ok
15:02:06.0093 4008 [ 248712EA6BA17B9FF0C542A3828375DD ] C:\WINDOWS\system32\winipsec.dll
15:02:06.0093 4008 C:\WINDOWS\system32\winipsec.dll - ok
15:02:06.0109 4008 [ FEDE68BF80052BAD393AFD5C2E60DCB0 ] C:\WINDOWS\system32\dssenh.dll
15:02:06.0109 4008 C:\WINDOWS\system32\dssenh.dll - ok
15:02:06.0109 4008 [ 2BC87937803127726A94D3915D9FE9EE ] C:\Program Files\AVAST Software\Avast\Setup\avast.setup
15:02:06.0109 4008 C:\Program Files\AVAST Software\Avast\Setup\avast.setup - ok
15:02:06.0125 4008 [ F6FD367C9EAAEDF90CD7A7952AE0B336 ] C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll
15:02:06.0125 4008 C:\Program Files\Common Files\Apple\Apple Application Support\ASL.dll - ok
15:02:06.0125 4008 [ 33D7285F12D934268A34206DFC4AD1B3 ] C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
15:02:06.0125 4008 C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS - ok
15:02:06.0125 4008 [ B16DBFF263718E8D2D8378F0F42C76C3 ] C:\WINDOWS\system32\stkMonitor.dll
15:02:06.0125 4008 C:\WINDOWS\system32\stkMonitor.dll - ok
15:02:06.0140 4008 [ F26385E8BA4549B5186B774EC0E45D86 ] C:\WINDOWS\system32\usbmon.dll
15:02:06.0140 4008 C:\WINDOWS\system32\usbmon.dll - ok
15:02:06.0140 4008 [ 853D0D0C6F02D7BFDF1CF99DD7553732 ] C:\WINDOWS\system32\pstorsvc.dll
15:02:06.0140 4008 C:\WINDOWS\system32\pstorsvc.dll - ok
15:02:06.0156 4008 [ BD517C7FB119997EFFBE39D5E4B37B05 ] C:\Program Files\CyberLink\Shared Files\RichVideo.exe
15:02:06.0156 4008 C:\Program Files\CyberLink\Shared Files\RichVideo.exe - ok
15:02:06.0156 4008 [ EEE7F12D9FF46F68FBC0DA059A359E9E ] C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
15:02:06.0156 4008 C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll - ok
15:02:06.0171 4008 [ 691771D7570A53130E7E885D8266E6C0 ] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll
15:02:06.0171 4008 C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon_main.dll - ok
15:02:06.0171 4008 [ 22D89D84E8E081CDA529DBF8C0255A38 ] C:\WINDOWS\system32\psbase.dll
15:02:06.0171 4008 C:\WINDOWS\system32\psbase.dll - ok
15:02:06.0171 4008 [ 22DD6D7D4BFE2B8CE705CC950C8AEA4C ] C:\WINDOWS\system32\win32spl.dll
15:02:06.0171 4008 C:\WINDOWS\system32\win32spl.dll - ok
15:02:06.0187 4008 [ CBE612E2BB6A10E3563336191EDA1250 ] C:\WINDOWS\system32\seclogon.dll
15:02:06.0187 4008 C:\WINDOWS\system32\seclogon.dll - ok
15:02:06.0187 4008 [ 32933B07FC16D9F778BEE12545FA1B1A ] C:\WINDOWS\system32\tcpsvcs.exe
15:02:06.0187 4008 C:\WINDOWS\system32\tcpsvcs.exe - ok
15:02:06.0203 4008 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] C:\WINDOWS\system32\sens.dll
15:02:06.0203 4008 C:\WINDOWS\system32\sens.dll - ok
15:02:06.0203 4008 [ EE4C651A217B01D636B5364AC77DA892 ] C:\WINDOWS\system32\inetpp.dll
15:02:06.0203 4008 C:\WINDOWS\system32\inetpp.dll - ok
15:02:06.0203 4008 [ 9C454CD857B4C0CCF7A614B047616503 ] C:\WINDOWS\system32\simptcp.dll
15:02:06.0203 4008 C:\WINDOWS\system32\simptcp.dll - ok
15:02:06.0218 4008 [ 60C377BE6B3CC83F6A8584934B181D2E ] C:\WINDOWS\system32\snmp.exe
15:02:06.0218 4008 C:\WINDOWS\system32\snmp.exe - ok
15:02:06.0218 4008 [ 5C1F0537E61F87B435F56E00B4F20EE8 ] C:\WINDOWS\system32\snmpapi.dll
15:02:06.0218 4008 C:\WINDOWS\system32\snmpapi.dll - ok
15:02:06.0234 4008 [ 2D0157B482115B37F1D84D69A22790D4 ] C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll
15:02:06.0234 4008 C:\Program Files\Common Files\Apple\Apple Application Support\CFNetwork.dll - ok
15:02:06.0234 4008 [ C63121DE1BCE663B2602E146E45B6FCA ] C:\WINDOWS\system32\nvcpl.dll
15:02:06.0234 4008 C:\WINDOWS\system32\nvcpl.dll - ok
15:02:06.0234 4008 [ 0A855F27A1E48991D14C593CB930D2B2 ] C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll
15:02:06.0234 4008 C:\Program Files\Common Files\Apple\Apple Application Support\SQLite3.dll - ok
15:02:06.0250 4008 [ 288FC8B1A73FB46AE02590157855E302 ] C:\WINDOWS\system32\nvapi.dll
15:02:06.0250 4008 C:\WINDOWS\system32\nvapi.dll - ok
15:02:06.0250 4008 [ A84509C6AB1C764C592F192AA89DA830 ] C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
15:02:06.0250 4008 C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll - ok
15:02:06.0250 4008 [ E8F932E855CBF23ED4632439A35E7354 ] C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
15:02:06.0250 4008 C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll - ok
15:02:06.0265 4008 [ 3805DF0AC4296A34BA4BF93B346CC378 ] C:\WINDOWS\system32\srsvc.dll
15:02:06.0265 4008 C:\WINDOWS\system32\srsvc.dll - ok
15:02:06.0265 4008 [ 7AC9F99C9E12A5C0C35B0A9891543AEC ] C:\WINDOWS\system32\lmmib2.dll
15:02:06.0265 4008 C:\WINDOWS\system32\lmmib2.dll - ok
15:02:06.0281 4008 [ 63E8D944AFBEEBB243F25C4ED07E74C5 ] C:\WINDOWS\system32\inetmib1.dll
15:02:06.0281 4008 C:\WINDOWS\system32\inetmib1.dll - ok
15:02:06.0281 4008 [ 9B9F1C38D559047B8AC0DBA2D5FEBDE9 ] C:\WINDOWS\system32\ksuser.dll
15:02:06.0281 4008 C:\WINDOWS\system32\ksuser.dll - ok
15:02:06.0296 4008 [ C744B07A16F5FBAAF2892716F4DBCB1B ] C:\WINDOWS\system32\hostmib.dll
15:02:06.0296 4008 C:\WINDOWS\system32\hostmib.dll - ok
15:02:06.0296 4008 [ 55BCA12F7F523D35CA3CB833C725F54E ] C:\WINDOWS\system32\trkwks.dll
15:02:06.0296 4008 C:\WINDOWS\system32\trkwks.dll - ok
15:02:06.0296 4008 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] C:\WINDOWS\system32\wiaservc.dll
15:02:06.0296 4008 C:\WINDOWS\system32\wiaservc.dll - ok
15:02:06.0312 4008 [ 5F0CE62E0831CF972EC6949FD3E37DA7 ] C:\WINDOWS\system32\cfgmgr32.dll
15:02:06.0312 4008 C:\WINDOWS\system32\cfgmgr32.dll - ok
15:02:06.0312 4008 [ CFD4E51402DA9838B5A04AE680AF54A0 ] C:\WINDOWS\system32\browser.dll
15:02:06.0312 4008 C:\WINDOWS\system32\browser.dll - ok
15:02:06.0328 4008 [ 4AC2FA4A6F0DF2511BAC13393C06EFF1 ] C:\WINDOWS\system32\mscms.dll
15:02:06.0328 4008 C:\WINDOWS\system32\mscms.dll - ok
15:02:06.0328 4008 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] C:\WINDOWS\system32\wuauserv.dll
15:02:06.0328 4008 C:\WINDOWS\system32\wuauserv.dll - ok
15:02:06.0328 4008 [ C85E9B1DF4A7E61AF9B02110EABC296D ] C:\WINDOWS\system32\Macromed\Flash\Flash32_11_7_700_202.ocx
15:02:06.0328 4008 C:\WINDOWS\system32\Macromed\Flash\Flash32_11_7_700_202.ocx - ok
15:02:06.0343 4008 [ 2D0E4ED081963804CCC196A0929275B5 ] C:\WINDOWS\system32\wbem\wmisvc.dll
15:02:06.0343 4008 C:\WINDOWS\system32\wbem\wmisvc.dll - ok
15:02:06.0343 4008 [ ACACB8B14E66109B8ACD6644B5574B9A ] C:\WINDOWS\system32\vssapi.dll
15:02:06.0343 4008 C:\WINDOWS\system32\vssapi.dll - ok
15:02:06.0359 4008 [ D1E73B6F78DF0AA59B9F160F7B84377F ] C:\Program Files\Java\jre7\bin\awt.dll
15:02:06.0359 4008 C:\Program Files\Java\jre7\bin\awt.dll - ok
15:02:06.0359 4008 [ FC3EC24FCE372C89423E015A2AC1A31E ] C:\WINDOWS\system32\wuaueng.dll
15:02:06.0359 4008 C:\WINDOWS\system32\wuaueng.dll - ok
15:02:06.0359 4008 [ 6A473B625E465946F73FB2C24412656C ] C:\WINDOWS\system32\snmpmib.dll
15:02:06.0359 4008 C:\WINDOWS\system32\snmpmib.dll - ok
15:02:06.0375 4008 [ 14390243E43F290A61B0B1FB3602DC4F ] C:\WINDOWS\system32\evntagnt.dll
15:02:06.0375 4008 C:\WINDOWS\system32\evntagnt.dll - ok
15:02:06.0375 4008 [ 384DA6A9C70889F01B99888C5E07072C ] C:\WINDOWS\system32\igmpagnt.dll
15:02:06.0375 4008 C:\WINDOWS\system32\igmpagnt.dll - ok
15:02:06.0390 4008 [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
15:02:06.0390 4008 C:\WINDOWS\system32\cabinet.dll - ok
15:02:06.0390 4008 [ 93F02F396720478C656D65ECFB65A497 ] C:\WINDOWS\system32\mcastmib.dll
15:02:06.0390 4008 C:\WINDOWS\system32\mcastmib.dll - ok
15:02:06.0390 4008 [ B85E95679B5ADC12311BCD3F5385D623 ] C:\WINDOWS\system32\mspatcha.dll
15:02:06.0390 4008 C:\WINDOWS\system32\mspatcha.dll - ok
15:02:06.0406 4008 [ D022E59E6F132660B2D7E66D41FFB341 ] C:\WINDOWS\system32\rtipxmib.dll
15:02:06.0406 4008 C:\WINDOWS\system32\rtipxmib.dll - ok
15:02:06.0406 4008 [ C07D5197410AAB28D0D93F943F59656D ] C:\WINDOWS\system32\6to4svc.dll
15:02:06.0406 4008 C:\WINDOWS\system32\6to4svc.dll - ok
15:02:06.0421 4008 [ 7C278E6408D1DCE642230C0585A854D5 ] C:\WINDOWS\system32\wscsvc.dll
15:02:06.0421 4008 C:\WINDOWS\system32\wscsvc.dll - ok
15:02:06.0421 4008 [ 83F41D0D89645D7235C051AB1D9523AC ] C:\WINDOWS\system32\ipnathlp.dll
15:02:06.0421 4008 C:\WINDOWS\system32\ipnathlp.dll - ok
15:02:06.0437 4008 [ 0BAD19F0BFB315F7D26704B6A4C45FD5 ] C:\WINDOWS\system32\HPScanMiniDrv_DJ2050_510g.dll
15:02:06.0437 4008 C:\WINDOWS\system32\HPScanMiniDrv_DJ2050_510g.dll - ok
15:02:06.0437 4008 [ F0BF811622F2DD6C8E26EE4600D83731 ] C:\WINDOWS\system32\wbem\wbemcore.dll
15:02:06.0437 4008 C:\WINDOWS\system32\wbem\wbemcore.dll - ok
15:02:06.0437 4008 [ 36E652727134278104147DB2014BF878 ] C:\Program Files\Java\jre7\bin\client\jvm.dll
15:02:06.0437 4008 C:\Program Files\Java\jre7\bin\client\jvm.dll - ok
15:02:06.0453 4008 [ E4616430709F440CF1809D88DC2366EA ] C:\WINDOWS\system32\wbem\esscli.dll
15:02:06.0453 4008 C:\WINDOWS\system32\wbem\esscli.dll - ok
15:02:06.0453 4008 [ 378A0AEFB11D8B0DC8C27B9F7604B88D ] C:\WINDOWS\system32\wbem\fastprox.dll
15:02:06.0453 4008 C:\WINDOWS\system32\wbem\fastprox.dll - ok
15:02:06.0468 4008 [ ED0C0DF222209E43AD9AFBF3FE87DDE0 ] C:\WINDOWS\system32\comsvcs.dll
15:02:06.0468 4008 C:\WINDOWS\system32\comsvcs.dll - ok
15:02:06.0468 4008 [ 690D97864735E8ECD87F55777E266690 ] C:\WINDOWS\system32\colbact.dll
15:02:06.0468 4008 C:\WINDOWS\system32\colbact.dll - ok
15:02:06.0468 4008 [ 36795A645EAA47FE31D2A8F136A2C69B ] C:\WINDOWS\system32\mtxclu.dll
15:02:06.0468 4008 C:\WINDOWS\system32\mtxclu.dll - ok
15:02:06.0484 4008 [ 6969F61969CBEE95A22AF2242003564D ] C:\Program Files\Java\jre7\bin\dcpr.dll
15:02:06.0484 4008 C:\Program Files\Java\jre7\bin\dcpr.dll - ok
15:02:06.0484 4008 [ DF82E222578DBE59FCBBD69A02E4C806 ] C:\WINDOWS\system32\clusapi.dll
15:02:06.0484 4008 C:\WINDOWS\system32\clusapi.dll - ok
15:02:06.0484 4008 [ F51EBB6FC536A6B2D588FD668D3A8249 ] C:\WINDOWS\system32\resutils.dll
15:02:06.0484 4008 C:\WINDOWS\system32\resutils.dll - ok
15:02:06.0500 4008 [ 3458EDA96E30FBD0477A2800D3FB1909 ] C:\WINDOWS\system32\wups.dll
15:02:06.0500 4008 C:\WINDOWS\system32\wups.dll - ok
15:02:06.0500 4008 [ BDC0C99E472176C8C2C853A68ADC5073 ] C:\WINDOWS\system32\wups2.dll
15:02:06.0500 4008 C:\WINDOWS\system32\wups2.dll - ok
15:02:06.0515 4008 [ 010472D0AE758227C6F6E6933549C219 ] C:\WINDOWS\system32\wbem\wbemsvc.dll
15:02:06.0515 4008 C:\WINDOWS\system32\wbem\wbemsvc.dll - ok
15:02:06.0515 4008 [ 3273D1565BF30225C115B480A3BB2C9D ] C:\WINDOWS\system32\wbem\wmiutils.dll
15:02:06.0515 4008 C:\WINDOWS\system32\wbem\wmiutils.dll - ok
15:02:06.0515 4008 [ 942A17D2901A31EA68627CBFFCD268CC ] C:\WINDOWS\system32\wbem\repdrvfs.dll
15:02:06.0515 4008 C:\WINDOWS\system32\wbem\repdrvfs.dll - ok
15:02:06.0531 4008 [ 071143F687B4F887E21461CA6CC7EB29 ] C:\WINDOWS\system32\wbem\wmiprvsd.dll
15:02:06.0531 4008 C:\WINDOWS\system32\wbem\wmiprvsd.dll - ok
15:02:06.0531 4008 [ D34F8AA27DAB10341BC325D13C25676E ] C:\Program Files\Java\jre7\bin\deploy.dll
15:02:06.0531 4008 C:\Program Files\Java\jre7\bin\deploy.dll - ok
15:02:06.0546 4008 [ E9E9143730A7627CEFCCBCF563BC92F5 ] C:\Program Files\Java\jre7\bin\fontmanager.dll
15:02:06.0546 4008 C:\Program Files\Java\jre7\bin\fontmanager.dll - ok
15:02:06.0546 4008 [ 2E0B0A051FFAA86E358465BB0880D453 ] C:\WINDOWS\system32\wuauclt.exe
15:02:06.0546 4008 C:\WINDOWS\system32\wuauclt.exe - ok
15:02:06.0562 4008 [ 26D881D27CBE51D3614E68D7313EA026 ] C:\WINDOWS\system32\wbem\wbemess.dll
15:02:06.0562 4008 C:\WINDOWS\system32\wbem\wbemess.dll - ok
15:02:06.0562 4008 [ 2A4318112B14E4D015C0B6975153859B ] C:\Program Files\Java\jre7\bin\java.dll
15:02:06.0562 4008 C:\Program Files\Java\jre7\bin\java.dll - ok
15:02:06.0562 4008 [ 1A617835452EEE5060976C9B9F5FE635 ] C:\WINDOWS\system32\wuapi.dll
15:02:06.0562 4008 C:\WINDOWS\system32\wuapi.dll - ok
15:02:06.0578 4008 [ AE5F5021FC66A380FD46B17A3E30E8E8 ] C:\Program Files\Java\jre7\bin\javaw.exe
15:02:06.0578 4008 C:\Program Files\Java\jre7\bin\javaw.exe - ok
15:02:06.0578 4008 [ D26451B540720A7313A9BCBE794DAF62 ] C:\WINDOWS\system32\wbem\ncprov.dll
15:02:06.0578 4008 C:\WINDOWS\system32\wbem\ncprov.dll - ok
15:02:06.0593 4008 [ 6404807ABC7AF52FA3792697AE638B50 ] C:\WINDOWS\system32\wbem\wbemcons.dll
15:02:06.0593 4008 C:\WINDOWS\system32\wbem\wbemcons.dll - ok
15:02:06.0593 4008 [ DF1F6DD4158FE3A2B1F4A232DC9E2079 ] C:\Program Files\Java\jre7\bin\jp2native.dll
15:02:06.0593 4008 C:\Program Files\Java\jre7\bin\jp2native.dll - ok
15:02:06.0609 4008 [ E76A2F1EB29CFF5E7C0D705A1674A0F7 ] C:\Program Files\Java\jre7\bin\jpeg.dll
15:02:06.0609 4008 C:\Program Files\Java\jre7\bin\jpeg.dll - ok
15:02:06.0609 4008 [ 98FDE200AA094D5AEC67B02B550CEEEF ] C:\Program Files\Java\jre7\bin\net.dll
15:02:06.0609 4008 C:\Program Files\Java\jre7\bin\net.dll - ok
15:02:06.0609 4008 [ A817834EA027BDFEE103B2AE70250699 ] C:\Program Files\Java\jre7\bin\nio.dll
15:02:06.0609 4008 C:\Program Files\Java\jre7\bin\nio.dll - ok
15:02:06.0625 4008 [ 60A52B2FA76513F590C52DFA59E16C84 ] C:\Program Files\Java\jre7\bin\verify.dll
15:02:06.0625 4008 C:\Program Files\Java\jre7\bin\verify.dll - ok
15:02:06.0625 4008 [ C6F079BFD89C22903B22D94D93D45061 ] C:\Program Files\Java\jre7\bin\zip.dll
15:02:06.0625 4008 C:\Program Files\Java\jre7\bin\zip.dll - ok
15:02:06.0640 4008 [ CC96587B1C07F84B95271223B19537A8 ] C:\Program Files\AVAST Software\Avast\defs\13052300\uiext.dll
15:02:06.0640 4008 C:\Program Files\AVAST Software\Avast\defs\13052300\uiext.dll - ok
15:02:06.0640 4008 [ FF3477C03BE7201C294C35F684B3479F ] C:\WINDOWS\system32\termsrv.dll
15:02:06.0640 4008 C:\WINDOWS\system32\termsrv.dll - ok
15:02:06.0640 4008 [ DF6551E4C4C46655A0C76194F1FCEA5D ] C:\WINDOWS\system32\icaapi.dll
15:02:06.0640 4008 C:\WINDOWS\system32\icaapi.dll - ok
15:02:06.0656 4008 [ 2D65D56C2F8B6CC5EBFF8E7200C30304 ] C:\WINDOWS\system32\mstlsapi.dll
15:02:06.0656 4008 C:\WINDOWS\system32\mstlsapi.dll - ok
15:02:06.0656 4008 [ 3CB78C17BB664637787C9A1C98F79C38 ] C:\WINDOWS\system32\tapisrv.dll
15:02:06.0656 4008 C:\WINDOWS\system32\tapisrv.dll - ok
15:02:06.0671 4008 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] C:\WINDOWS\system32\rasmans.dll
15:02:06.0671 4008 C:\WINDOWS\system32\rasmans.dll - ok
15:02:06.0671 4008 [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] C:\WINDOWS\system32\imapi.exe
15:02:06.0671 4008 C:\WINDOWS\system32\imapi.exe - ok
15:02:06.0671 4008 [ 37A62C6092AADD2EFDE0468DD8818E99 ] C:\WINDOWS\system32\netcfgx.dll
15:02:06.0671 4008 C:\WINDOWS\system32\netcfgx.dll - ok
15:02:06.0687 4008 [ F80A415EF82CD06FFAF0D971528EAD38 ] C:\WINDOWS\system32\drivers\http.sys
15:02:06.0687 4008 C:\WINDOWS\system32\drivers\http.sys - ok
15:02:06.0687 4008 [ 5F7692CEC90E2E9AA32CD58321E234B8 ] C:\WINDOWS\system32\rastapi.dll
15:02:06.0687 4008 C:\WINDOWS\system32\rastapi.dll - ok
15:02:06.0703 4008 [ 0A5679B3714EDAB99E357057EE88FCA6 ] C:\WINDOWS\system32\ssdpsrv.dll
15:02:06.0703 4008 C:\WINDOWS\system32\ssdpsrv.dll - ok
15:02:06.0703 4008 [ AACE07FE34FADDDF973CE068A6424957 ] C:\WINDOWS\system32\unimdm.tsp
15:02:06.0703 4008 C:\WINDOWS\system32\unimdm.tsp - ok
15:02:06.0718 4008 [ 995252FCC4692B5B97EE17D596C9386E ] C:\WINDOWS\system32\uniplat.dll
15:02:06.0718 4008 C:\WINDOWS\system32\uniplat.dll - ok
15:02:06.0718 4008 [ 19AE6CBA05B9005698A6DEDCC88F202E ] C:\WINDOWS\system32\unimdmat.dll
15:02:06.0718 4008 C:\WINDOWS\system32\unimdmat.dll - ok
15:02:06.0718 4008 [ FE4A73CDBC882A19D070F1C01586E81A ] C:\WINDOWS\system32\modemui.dll
15:02:06.0718 4008 C:\WINDOWS\system32\modemui.dll - ok
15:02:06.0734 4008 [ 76EC97C5068D3D9FAA7774B0F659D31A ] C:\WINDOWS\system32\kmddsp.tsp
15:02:06.0734 4008 C:\WINDOWS\system32\kmddsp.tsp - ok
15:02:06.0734 4008 [ 4589963D84F2984FA5949A72162BA4F4 ] C:\WINDOWS\system32\ndptsp.tsp
15:02:06.0734 4008 C:\WINDOWS\system32\ndptsp.tsp - ok
15:02:06.0734 4008 [ 8B8A45DF7CEF36D93C7BD3E4C84003B8 ] C:\WINDOWS\system32\ipconf.tsp
15:02:06.0734 4008 C:\WINDOWS\system32\ipconf.tsp - ok
15:02:06.0750 4008 [ 8BC2B02DC11C98D14CEE43B8E8393FF3 ] C:\WINDOWS\system32\h323.tsp
15:02:06.0750 4008 C:\WINDOWS\system32\h323.tsp - ok
15:02:06.0750 4008 [ 6B552ED3BEE5AA3C4560478FF779BA98 ] C:\WINDOWS\system32\hidphone.tsp
15:02:06.0750 4008 C:\WINDOWS\system32\hidphone.tsp - ok
15:02:06.0765 4008 [ F92E1076C42FCD6DB3D72D8CFE9816D5 ] C:\WINDOWS\system32\wscntfy.exe
15:02:06.0765 4008 C:\WINDOWS\system32\wscntfy.exe - ok
15:02:06.0765 4008 [ D0545A010ED2259A740C8414899A938F ] C:\WINDOWS\system32\rasppp.dll
15:02:06.0765 4008 C:\WINDOWS\system32\rasppp.dll - ok
15:02:06.0765 4008 [ 8C515081584A38AA007909CD02020B3D ] C:\WINDOWS\system32\alg.exe
15:02:06.0765 4008 C:\WINDOWS\system32\alg.exe - ok
15:02:06.0781 4008 [ B464BD425D5D09ABE4192234D1577B22 ] C:\WINDOWS\system32\ntlsapi.dll
15:02:06.0781 4008 C:\WINDOWS\system32\ntlsapi.dll - ok
15:02:06.0781 4008 [ D651151C706B961CF375FFD33545DAF9 ] C:\WINDOWS\system32\dpnhupnp.dll
15:02:06.0781 4008 C:\WINDOWS\system32\dpnhupnp.dll - ok
15:02:06.0796 4008 [ A655C88AA555BB8EF8957BD29408827F ] C:\WINDOWS\system32\rasqec.dll
15:02:06.0796 4008 C:\WINDOWS\system32\rasqec.dll - ok
15:02:06.0796 4008 [ B1DED39112E0C85BAFA58DCBEC6718B6 ] C:\WINDOWS\system32\ipxwan.dll
15:02:06.0796 4008 C:\WINDOWS\system32\ipxwan.dll - ok
15:02:06.0796 4008 ============================================================
15:02:06.0796 4008 Scan finished
15:02:06.0796 4008 ============================================================
15:02:06.0906 4000 Detected object count: 6
15:02:06.0906 4000 Actual detected object count: 6
15:03:37.0265 4000 JL2005C ( UnsignedFile.Multi.Generic ) - skipped by user
15:03:37.0265 4000 JL2005C ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:03:37.0265 4000 nvgts ( UnsignedFile.Multi.Generic ) - skipped by user
15:03:37.0265 4000 nvgts ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:03:37.0265 4000 PrismXL ( UnsignedFile.Multi.Generic ) - skipped by user
15:03:37.0265 4000 PrismXL ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:03:37.0281 4000 RichVideo ( UnsignedFile.Multi.Generic ) - skipped by user
15:03:37.0281 4000 RichVideo ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:03:37.0281 4000 ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
15:03:37.0281 4000 ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:03:37.0281 4000 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
15:03:37.0281 4000 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
15:03:41.0234 0140 Deinitialize success
sweetjopye
Active Member
 
Posts: 14
Joined: May 27th, 2013, 8:21 am

Re: Removal of new toolbar

Unread postby pgmigg » May 30th, 2013, 11:33 pm

Hello sweetjopye,

Step 1.
Show Hidden and System files
  1. Right click on Start, select Open.
  2. Select the Tools menu and click Folder Options.
  3. Select the View Tab. Under the "Hidden files and folders" section
    • SELECT "Show hidden files and folders"
    • Remove check mark from check box "Hide extensions for known file types"
    • Remove check mark from check box "Hide protected operating system files"
  4. Click Apply to set. Click OK to exit.

Step 2.
Run aswMBR scanner
Please download aswMBR and save it to your Desktop.
  1. Double click aswMBR.exe to run it.
  2. Click Yes to the prompt to download Avast! virus definitions.
    (Please be patient whilst the virus definitions download)
  3. With the AVscan set to Quick Scan, click the Scan button.
    (Please be patient whilst your computer is scanned.)
  4. After a while when the scan reports "Scan finished successfully", click Save log & save the log to your desktop.
  5. Click OK > Exit.
  6. Note: Do not attempt to fix anything at this stage!
  7. Two files will be created, aswMBR.txt & a file named MBR.dat.
  8. MBR.dat is a backup of the MBR (master boot record), do not delete it..
  9. I strongly suggest you keep a copy of this backup stored on an external device.
  10. Copy & Paste the contents of aswMBR.txt into your next reply.

Step 3.
Upload File/Files for testing
  1. Please go to jotti.org or Virustotal
  2. Copy/Paste the following files to upload them one by one for scanning:
    C:\WINDOWS\system32\Drivers\jl2005c.sys
    C:\WINDOWS\system32\drivers\NVGTS.SYS
    C:\Program Files\Common Files\New Boundary\PrismXL\PRISMXL.SYS
    C:\Program Files\CyberLink\Shared Files\RichVideo.exe
    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
  3. Press Submit - this will submit the file for testing.
    Note: If you will see a message "File already analysed", please click on "Reanalyse" button.
  4. Please wait for all the scanners to finish.
  5. Then copy and paste every permalink (web address) in your next response.
    Example of web address:
    Image

Please include in your next reply:
  1. Do you have any problems executing the instructions?
  2. Contents of the aswMBR.txt log file
  3. The resulting web links after online file scan by Virus Total.
  4. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Removal of new toolbar

Unread postby sweetjopye » June 1st, 2013, 9:35 am

Hi pgmigg, I'm sorry for not replying sooner. My internet connection stopped working. I'm sending this from a library computer. I really don't know what to do. My internet servicer said it might be my modom, so I will have to get a new one, since I can't use the internet until then. I can come to the library for your reply. Thanks, a worried sweetjope
ps The library printed out your instructions for me, so I can work on them.
sweetjopye
Active Member
 
Posts: 14
Joined: May 27th, 2013, 8:21 am

Re: Removal of new toolbar

Unread postby pgmigg » June 1st, 2013, 5:34 pm

Hello sweetjopye,
My internet connection stopped working.
It is not good! :( In such case when you need to download tools you can do it from library computer and save to USB flash drive and move it to your computer.
The library printed out your instructions for me, so I can work on them.
Please do it, at least for steps 1 and 2. The third one cannot be executed without Internet.

BTW, what type of Internet connection do you use at home - wire or wireless?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Removal of new toolbar

Unread postby sweetjopye » June 3rd, 2013, 11:38 am

Hi pgmigg, I don't have anything yet. Sorry. When I got home I realized I couldn't download anything without the internet. I just got a new modem, so I'll install that when I get home again (I'm at the library now) I will do the first 2 steps at least. Hopefully I'll have the internet on and be able to download things. If not, I'll follow your advice about
the flash drive. Thanks, sweetjopye
PS I have a wireless connection. I did turn on my computer yesterday to play a game and It took about 2 minutes to boot up. It's never done that before.
sweetjopye
Active Member
 
Posts: 14
Joined: May 27th, 2013, 8:21 am

Re: Removal of new toolbar

Unread postby pgmigg » June 3rd, 2013, 5:59 pm

Hello sweetjopye,
I will do the first 2 steps at least. Hopefully I'll have the internet on and be able to download things. If not, I'll follow your advice about
the flash drive.
Actually, if you will have Internet at home you can run all 3 steps - not only 1 and 2.
I have a wireless connection. I did turn on my computer yesterday to play a game and It took about 2 minutes to boot up. It's never done that before.
If you have Internet you can do even more - it may be Step 4:

Step 4.
Farbar Service Scanner
  1. Please download Farbar Service Scanner and save it to your Desktop.
  2. Double click FSS.exe to run it.
  3. Select the following options:
    • Internet Services
    • System Restore
    • Windows Update
  4. Press the "Scan" button.
  5. When finished, a text file named FSS.txt will be created on your desktop. (Same folder the tool is run).
  6. Please copy and paste the contents of the FSS.txt log to your next reply.


Please include in your next reply as much as you can from the following:
  1. Do you have any problems executing the instructions?
  2. Contents of the aswMBR.txt log file
  3. The resulting web links after online file scan by Virus Total.
  4. Contents of the FSS.txt log file
  5. Do you see any changes in computer behavior?

Thanks,
pgmigg

Failure to post replies within 72 hours will result in this thread being closed
User avatar
pgmigg
Admin/Teacher
Admin/Teacher
 
Posts: 5457
Joined: July 8th, 2008, 1:25 pm
Location: GMT-05:00

Re: Removal of new toolbar

Unread postby Wingman » June 6th, 2013, 6:17 pm

Due to a lack of response, this topic is now closed.

If you still require help, please open a new thread in the Infected? Virus, malware, adware, ransomware, oh my! forum, include a fresh FRST log, and wait for a new helper.
User avatar
Wingman
Admin/Teacher
Admin/Teacher
 
Posts: 14347
Joined: July 1st, 2008, 1:34 pm
Location: East Coast, USA
Advertisement
Register to Remove

Previous

  • Similar Topics
    Replies
    Views
    Last post

Return to Infected? Virus, malware, adware, ransomware, oh my!



Who is online

Users browsing this forum: No registered users and 108 guests

Contact us:

Advertisements do not imply our endorsement of that product or service. Register to remove all ads. The forum is run by volunteers who donate their time and expertise. We make every attempt to ensure that the help and advice posted is accurate and will not cause harm to your computer. However, we do not guarantee that they are accurate and they are to be used at your own risk. All trademarks are the property of their respective owners.

Member site: UNITE Against Malware