Dept of Justice MoneyPak Virus

G

great_mazinga

New Member
Thread author
Verified
Apr 14, 2013
18
Results of screen317's Security Check version 0.99.62
Windows XP Service Pack 3 x86
Internet Explorer 8
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
ESET Online Scanner v3
Symantec AntiVirus
`````````Anti-malware/Other Utilities Check:`````````
Ad-Aware
Java(TM) 6 Update 39
Java version out of Date!
Adobe Reader 9 Adobe Reader out of Date!
Google Chrome 25.0.1364.172
Google Chrome 26.0.1410.64
````````Process Check: objlist.exe by Laurent````````
Ad-Aware AAWService.exe
Ad-Aware AAWTray.exe
Symantec AntiVirus DefWatch.exe
Symantec AntiVirus Rtvscan.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:: 7%
````````````````````End of Log``````````````````````
 
Fiery

Fiery

Level 1
Jan 11, 2011
2,007
Can you post the last quarter of the TDSSkiller log? It is too long to fit the entire log into one post
 
G

great_mazinga

New Member
Thread author
Verified
Apr 14, 2013
18
I hope this is enough. Also I updated Java and Adobe [they were promting me for updates]. I hope that is not a problem

23:37:03.0312 3932 PptpMiniport - ok
23:37:03.0328 3932 [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
23:37:03.0484 3932 ProtectedStorage - ok
23:37:03.0484 3932 [ 09298EC810B07E5D582CB3A3F9255424 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
23:37:03.0687 3932 PSched - ok
23:37:03.0750 3932 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
23:37:03.0937 3932 Ptilink - ok
23:37:04.0000 3932 [ 25F7C4453F189F79EB3846D3E23805A0 ] PxHelp20 C:\WINDOWS\system32\Drivers\PxHelp20.sys
23:37:04.0015 3932 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
23:37:04.0015 3932 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
23:37:04.0046 3932 [ C50FAA6FDA843FA2172AA2B9C3CD1DAB ] qkbfiltr C:\WINDOWS\system32\drivers\qkbfiltr.sys
23:37:04.0062 3932 qkbfiltr ( UnsignedFile.Multi.Generic ) - warning
23:37:04.0062 3932 qkbfiltr - detected UnsignedFile.Multi.Generic (1)
23:37:04.0078 3932 ql1080 - ok
23:37:04.0093 3932 Ql10wnt - ok
23:37:04.0125 3932 ql12160 - ok
23:37:04.0140 3932 ql1240 - ok
23:37:04.0156 3932 ql1280 - ok
23:37:04.0187 3932 [ 8652B9E134C3478BE948BF089DF8ED5E ] qmofiltr C:\WINDOWS\system32\drivers\qmofiltr.sys
23:37:04.0203 3932 qmofiltr ( UnsignedFile.Multi.Generic ) - warning
23:37:04.0203 3932 qmofiltr - detected UnsignedFile.Multi.Generic (1)
23:37:04.0234 3932 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:37:04.0421 3932 RasAcd - ok
23:37:04.0468 3932 [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto C:\WINDOWS\System32\rasauto.dll
23:37:04.0656 3932 RasAuto - ok
23:37:04.0703 3932 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
23:37:04.0875 3932 Rasl2tp - ok
23:37:04.0953 3932 [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan C:\WINDOWS\System32\rasmans.dll
23:37:05.0140 3932 RasMan - ok
23:37:05.0140 3932 [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:37:05.0312 3932 RasPppoe - ok
23:37:05.0343 3932 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
23:37:05.0531 3932 Raspti - ok
23:37:05.0578 3932 [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:37:05.0765 3932 Rdbss - ok
23:37:05.0828 3932 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
23:37:06.0015 3932 RDPCDD - ok
23:37:06.0093 3932 [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
23:37:06.0156 3932 RDPWD - ok
23:37:06.0203 3932 [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
23:37:06.0359 3932 RDSessMgr - ok
23:37:06.0375 3932 [ F828DD7E1419B6653894A8F97A0094C5 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
23:37:06.0546 3932 redbook - ok
23:37:06.0593 3932 [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
23:37:06.0765 3932 RemoteAccess - ok
23:37:06.0812 3932 [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator C:\WINDOWS\system32\locator.exe
23:37:06.0968 3932 RpcLocator - ok
23:37:07.0015 3932 [ 6B27A5C03DFB94B4245739065431322C ] RpcSs C:\WINDOWS\system32\rpcss.dll
23:37:07.0062 3932 RpcSs - ok
23:37:07.0109 3932 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\system32\rsvp.exe
23:37:07.0296 3932 RSVP - ok
23:37:07.0328 3932 [ 4A0AE7891FCF74ACC848B109294CB80F ] RTL8023xp C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys
23:37:07.0375 3932 RTL8023xp - ok
23:37:07.0421 3932 [ D507C1400284176573224903819FFDA3 ] rtl8139 C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
23:37:07.0562 3932 rtl8139 - ok
23:37:07.0593 3932 [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs C:\WINDOWS\system32\lsass.exe
23:37:07.0750 3932 SamSs - ok
23:37:07.0812 3932 [ 5387EAE86FB5F6B72052F5273BDD3E86 ] SavRoam C:\Program Files\Symantec AntiVirus\SavRoam.exe
23:37:07.0828 3932 SavRoam - ok
23:37:07.0875 3932 [ 12B6E269EF8AC8EA36122544C8A1B6D8 ] SAVRT C:\Program Files\Symantec AntiVirus\savrt.sys
23:37:07.0906 3932 SAVRT - ok
23:37:07.0921 3932 [ 97E5B6F3F95465E1F59360B59D8EC64E ] SAVRTPEL C:\Program Files\Symantec AntiVirus\Savrtpel.sys
23:37:07.0937 3932 SAVRTPEL - ok
23:37:07.0984 3932 [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
23:37:08.0156 3932 SCardSvr - ok
23:37:08.0203 3932 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule C:\WINDOWS\system32\schedsvc.dll
23:37:08.0390 3932 Schedule - ok
23:37:08.0453 3932 [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
23:37:08.0625 3932 Secdrv - ok
23:37:08.0671 3932 [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon C:\WINDOWS\System32\seclogon.dll
23:37:08.0828 3932 seclogon - ok
23:37:08.0859 3932 [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS C:\WINDOWS\system32\sens.dll
23:37:09.0031 3932 SENS - ok
23:37:09.0093 3932 [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial C:\WINDOWS\system32\drivers\Serial.sys
23:37:09.0265 3932 Serial - ok
23:37:09.0296 3932 [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
23:37:09.0484 3932 Sfloppy - ok
23:37:09.0546 3932 [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
23:37:09.0750 3932 SharedAccess - ok
23:37:09.0781 3932 [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
23:37:09.0796 3932 ShellHWDetection - ok
23:37:09.0812 3932 Simbad - ok
23:37:09.0843 3932 [ A16722715D3206AB7E1A6463CE0B747E ] SNDSrvc C:\Program Files\Common Files\Symantec Shared\SNDSrvc.exe
23:37:09.0875 3932 SNDSrvc - ok
23:37:09.0890 3932 Sparrow - ok
23:37:09.0937 3932 [ EF9760A364D836A0CE6149EBDF71524D ] SPBBCDrv C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
23:37:09.0968 3932 SPBBCDrv - ok
23:37:10.0046 3932 [ 0A6BCAB3BB4AD9D25E833FB3F840CAE0 ] SPBBCSvc C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
23:37:10.0140 3932 SPBBCSvc - ok
23:37:10.0171 3932 [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
23:37:10.0328 3932 splitter - ok
23:37:10.0406 3932 [ 60784F891563FB1B767F70117FC2428F ] Spooler C:\WINDOWS\system32\spoolsv.exe
23:37:10.0421 3932 Spooler - ok
23:37:10.0437 3932 [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
23:37:10.0625 3932 sr - ok
23:37:10.0687 3932 [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice C:\WINDOWS\system32\srsvc.dll
23:37:10.0875 3932 srservice - ok
23:37:10.0921 3932 [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
23:37:10.0984 3932 Srv - ok
23:37:11.0031 3932 [ 98625722AD52B40305E74AAA83C93086 ] sscdbhk5 C:\WINDOWS\system32\drivers\sscdbhk5.sys
23:37:11.0046 3932 sscdbhk5 ( UnsignedFile.Multi.Generic ) - warning
23:37:11.0046 3932 sscdbhk5 - detected UnsignedFile.Multi.Generic (1)
23:37:11.0093 3932 [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
23:37:11.0281 3932 SSDPSRV - ok
23:37:11.0296 3932 [ D79412E3942C8A257253487536D5A994 ] ssrtln C:\WINDOWS\system32\drivers\ssrtln.sys
23:37:11.0296 3932 ssrtln ( UnsignedFile.Multi.Generic ) - warning
23:37:11.0296 3932 ssrtln - detected UnsignedFile.Multi.Generic (1)
23:37:11.0343 3932 [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc C:\WINDOWS\system32\wiaservc.dll
23:37:11.0531 3932 stisvc - ok
23:37:11.0562 3932 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
23:37:11.0750 3932 swenum - ok
23:37:11.0781 3932 [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
23:37:11.0953 3932 swmidi - ok
23:37:11.0953 3932 SwPrv - ok
23:37:12.0031 3932 [ 486A64AABD88E4E174681E89E9736BC9 ] Swupdtmr c:\TOSHIBA\IVP\swupdate\swupdtmr.exe
23:37:12.0062 3932 Swupdtmr ( UnsignedFile.Multi.Generic ) - warning
23:37:12.0062 3932 Swupdtmr - detected UnsignedFile.Multi.Generic (1)
23:37:12.0203 3932 [ 0023CC5610B9C48CF68571DEE4C686FC ] Symantec AntiVirus C:\Program Files\Symantec AntiVirus\Rtvscan.exe
23:37:12.0312 3932 Symantec AntiVirus - ok
23:37:12.0328 3932 symc810 - ok
23:37:12.0343 3932 symc8xx - ok
23:37:12.0390 3932 [ 49B20B430A4F219173F823536944474A ] SymEvent C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
23:37:12.0406 3932 SymEvent - ok
23:37:12.0453 3932 [ 626F733BE7F951116C5C0804B068666C ] SYMREDRV C:\WINDOWS\System32\Drivers\SYMREDRV.SYS
23:37:12.0468 3932 SYMREDRV - ok
23:37:12.0484 3932 [ CB7CC4DDBE09E224D4CD876760BA982C ] SYMTDI C:\WINDOWS\System32\Drivers\SYMTDI.SYS
23:37:12.0500 3932 SYMTDI - ok
23:37:12.0515 3932 sym_hi - ok
23:37:12.0531 3932 sym_u3 - ok
23:37:12.0593 3932 [ EB363DDFBE8B6D51003CCAB29D93D744 ] SynTP C:\WINDOWS\system32\DRIVERS\SynTP.sys
23:37:12.0640 3932 SynTP - ok
23:37:12.0687 3932 [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
23:37:12.0859 3932 sysaudio - ok
23:37:12.0921 3932 [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
23:37:13.0109 3932 SysmonLog - ok
23:37:13.0156 3932 [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
23:37:13.0328 3932 TapiSrv - ok
23:37:13.0359 3932 [ EECA2B57545E7B7BE949B5E70E31444F ] TBiosDrv C:\WINDOWS\system32\drivers\TBiosDrv.sys
23:37:13.0375 3932 TBiosDrv ( UnsignedFile.Multi.Generic ) - warning
23:37:13.0375 3932 TBiosDrv - detected UnsignedFile.Multi.Generic (1)
23:37:13.0421 3932 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
23:37:13.0453 3932 Tcpip - ok
23:37:13.0500 3932 [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
23:37:13.0687 3932 TDPIPE - ok
23:37:13.0734 3932 [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
23:37:13.0890 3932 TDTCP - ok
23:37:13.0906 3932 [ 88155247177638048422893737429D9E ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
23:37:14.0062 3932 TermDD - ok
23:37:14.0125 3932 [ FF3477C03BE7201C294C35F684B3479F ] TermService C:\WINDOWS\System32\termsrv.dll
23:37:14.0312 3932 TermService - ok
23:37:14.0359 3932 [ D0177776E11B0B3F272EEBD262A69661 ] tfsnboio C:\WINDOWS\system32\dla\tfsnboio.sys
23:37:14.0375 3932 tfsnboio ( UnsignedFile.Multi.Generic ) - warning
23:37:14.0375 3932 tfsnboio - detected UnsignedFile.Multi.Generic (1)
23:37:14.0406 3932 [ 599804BC938B8305A5422319774DA871 ] tfsncofs C:\WINDOWS\system32\dla\tfsncofs.sys
23:37:14.0421 3932 tfsncofs ( UnsignedFile.Multi.Generic ) - warning
23:37:14.0421 3932 tfsncofs - detected UnsignedFile.Multi.Generic (1)
23:37:14.0437 3932 [ A1902C00ADC11C4D83F8E3ED947A6A32 ] tfsndrct C:\WINDOWS\system32\dla\tfsndrct.sys
23:37:14.0453 3932 tfsndrct ( UnsignedFile.Multi.Generic ) - warning
23:37:14.0453 3932 tfsndrct - detected UnsignedFile.Multi.Generic (1)
23:37:14.0500 3932 [ D8DDB3F2B1BEF15CFF6728D89C042C61 ] tfsndres C:\WINDOWS\system32\dla\tfsndres.sys
23:37:14.0515 3932 tfsndres ( UnsignedFile.Multi.Generic ) - warning
23:37:14.0515 3932 tfsndres - detected UnsignedFile.Multi.Generic (1)
23:37:14.0562 3932 [ C4F2DEA75300971CDAEE311007DE138D ] tfsnifs C:\WINDOWS\system32\dla\tfsnifs.sys
23:37:14.0562 3932 tfsnifs ( UnsignedFile.Multi.Generic ) - warning
23:37:14.0562 3932 tfsnifs - detected UnsignedFile.Multi.Generic (1)
23:37:14.0593 3932 [ 272925BE0EA919F08286D2EE6F102B0F ] tfsnopio C:\WINDOWS\system32\dla\tfsnopio.sys
23:37:14.0609 3932 tfsnopio ( UnsignedFile.Multi.Generic ) - warning
23:37:14.0609 3932 tfsnopio - detected UnsignedFile.Multi.Generic (1)
23:37:14.0625 3932 [ 7B7D955E5CEBC2FB88B03EF875D52A2F ] tfsnpool C:\WINDOWS\system32\dla\tfsnpool.sys
23:37:14.0625 3932 tfsnpool ( UnsignedFile.Multi.Generic ) - warning
23:37:14.0625 3932 tfsnpool - detected UnsignedFile.Multi.Generic (1)
23:37:14.0671 3932 [ E3D01263109D800C1967C12C10A0B018 ] tfsnudf C:\WINDOWS\system32\dla\tfsnudf.sys
23:37:14.0703 3932 tfsnudf ( UnsignedFile.Multi.Generic ) - warning
23:37:14.0703 3932 tfsnudf - detected UnsignedFile.Multi.Generic (1)
23:37:14.0750 3932 [ B9E9C377906E3A65BC74598FFF7F7458 ] tfsnudfa C:\WINDOWS\system32\dla\tfsnudfa.sys
23:37:14.0750 3932 tfsnudfa ( UnsignedFile.Multi.Generic ) - warning
23:37:14.0750 3932 tfsnudfa - detected UnsignedFile.Multi.Generic (1)
23:37:14.0781 3932 [ 99BC0B50F511924348BE19C7C7313BBF ] Themes C:\WINDOWS\System32\shsvcs.dll
23:37:14.0812 3932 Themes - ok
23:37:14.0812 3932 TosIde - ok
23:37:14.0875 3932 [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks C:\WINDOWS\system32\trkwks.dll
23:37:15.0046 3932 TrkWks - ok
23:37:15.0125 3932 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
23:37:15.0296 3932 Udfs - ok
23:37:15.0312 3932 ultra - ok
23:37:15.0359 3932 [ AB0A7CA90D9E3D6A193905DC1715DED0 ] UMWdf C:\WINDOWS\system32\wdfmgr.exe
23:37:15.0406 3932 UMWdf - ok
23:37:15.0468 3932 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update C:\WINDOWS\system32\DRIVERS\update.sys
23:37:15.0671 3932 Update - ok
23:37:15.0718 3932 [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost C:\WINDOWS\System32\upnphost.dll
23:37:15.0890 3932 upnphost - ok
23:37:15.0937 3932 [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS C:\WINDOWS\System32\ups.exe
23:37:16.0125 3932 UPS - ok
23:37:16.0156 3932 [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
23:37:16.0328 3932 usbccgp - ok
23:37:16.0359 3932 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
23:37:16.0531 3932 usbehci - ok
23:37:16.0578 3932 [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
23:37:16.0765 3932 usbhub - ok
23:37:16.0812 3932 [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
23:37:16.0984 3932 usbohci - ok
23:37:17.0046 3932 [ A717C8721046828520C9EDF31288FC00 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
23:37:17.0234 3932 usbprint - ok
23:37:17.0281 3932 [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
23:37:17.0453 3932 usbscan - ok
23:37:17.0500 3932 [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
23:37:17.0671 3932 USBSTOR - ok
23:37:17.0687 3932 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
23:37:17.0859 3932 VgaSave - ok
23:37:17.0875 3932 ViaIde - ok
23:37:17.0906 3932 [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
23:37:18.0078 3932 VolSnap - ok
23:37:18.0125 3932 [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS C:\WINDOWS\System32\vssvc.exe
23:37:18.0312 3932 VSS - ok
23:37:18.0343 3932 [ 54AF4B1D5459500EF0937F6D33B1914F ] W32Time C:\WINDOWS\system32\w32time.dll
23:37:18.0531 3932 W32Time - ok
23:37:18.0578 3932 [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:37:18.0750 3932 Wanarp - ok
23:37:18.0765 3932 wanatw - ok
23:37:18.0796 3932 WDICA - ok
23:37:18.0812 3932 [ 6768ACF64B18196494413695F0C3A00F ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
23:37:18.0968 3932 wdmaud - ok
23:37:19.0015 3932 [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient C:\WINDOWS\System32\webclnt.dll
23:37:19.0187 3932 WebClient - ok
23:37:19.0234 3932 [ EB5D5DD39DA6B25FFD4206892365F67C ] winachsf C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
23:37:19.0296 3932 winachsf - ok
23:37:19.0375 3932 [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
23:37:19.0546 3932 winmgmt - ok
23:37:19.0609 3932 [ 140EF97B64F560FD78643CAE2CDAD838 ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
23:37:19.0656 3932 WmdmPmSN - ok
23:37:19.0703 3932 [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe
23:37:19.0875 3932 WmiApSrv - ok
23:37:19.0953 3932 [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc C:\WINDOWS\system32\wscsvc.dll
23:37:20.0140 3932 wscsvc - ok
23:37:20.0156 3932 [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv C:\WINDOWS\system32\wuauserv.dll
23:37:20.0343 3932 wuauserv - ok
23:37:20.0406 3932 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
23:37:20.0609 3932 WZCSVC - ok
23:37:20.0640 3932 [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
23:37:20.0812 3932 xmlprov - ok
23:37:20.0828 3932 ================ Scan global ===============================
23:37:20.0875 3932 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
23:37:20.0921 3932 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
23:37:20.0968 3932 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
23:37:21.0000 3932 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
23:37:21.0000 3932 [Global] - ok
23:37:21.0000 3932 ================ Scan MBR ==================================
23:37:21.0031 3932 [ 671B81004FDD1588FA9ED1331C9CECA9 ] \Device\Harddisk0\DR0
23:37:21.0281 3932 \Device\Harddisk0\DR0 - ok
23:37:21.0296 3932 ================ Scan VBR ==================================
23:37:21.0296 3932 [ E2910C3D779A9C3DAABFEBFB05752691 ] \Device\Harddisk0\DR0\Partition1
23:37:21.0296 3932 \Device\Harddisk0\DR0\Partition1 - ok
23:37:21.0312 3932 ================ Scan active images ========================
23:37:21.0312 3932 [ 8C953733D8F36EB2133F5BB58808B66B ] C:\WINDOWS\system32\drivers\intelppm.sys
23:37:21.0312 3932 C:\WINDOWS\system32\drivers\intelppm.sys - ok
23:37:21.0328 3932 [ E28726B72C46821A28830E077D39A55B ] C:\WINDOWS\system32\drivers\videoprt.sys
23:37:21.0328 3932 C:\WINDOWS\system32\drivers\videoprt.sys - ok
23:37:21.0343 3932 [ D5537CC8CC9A86668E3903BD53CAA83C ] C:\WINDOWS\system32\drivers\ati2mtag.sys
23:37:21.0343 3932 C:\WINDOWS\system32\drivers\ati2mtag.sys - ok
23:37:21.0343 3932 [ 791912E524CC2CC6F50B5F2B52D1EB71 ] C:\WINDOWS\system32\drivers\usbport.sys
23:37:21.0343 3932 C:\WINDOWS\system32\drivers\usbport.sys - ok
23:37:21.0359 3932 [ 0DAECCE65366EA32B162F85F07C6753B ] C:\WINDOWS\system32\drivers\usbohci.sys
23:37:21.0359 3932 C:\WINDOWS\system32\drivers\usbohci.sys - ok
23:37:21.0375 3932 [ 083A052659F5310DD8B6A6CB05EDCF8E ] C:\WINDOWS\system32\drivers\imapi.sys
23:37:21.0375 3932 C:\WINDOWS\system32\drivers\imapi.sys - ok
23:37:21.0390 3932 [ 6C1618A07B49E3873582B6449E744088 ] C:\WINDOWS\system32\drivers\pfc.sys
23:37:21.0390 3932 C:\WINDOWS\system32\drivers\pfc.sys - ok
23:37:21.0406 3932 [ 98625722AD52B40305E74AAA83C93086 ] C:\WINDOWS\system32\drivers\sscdbhk5.sys
23:37:21.0406 3932 C:\WINDOWS\system32\drivers\sscdbhk5.sys - ok
23:37:21.0421 3932 [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] C:\WINDOWS\system32\drivers\usbehci.sys
23:37:21.0421 3932 C:\WINDOWS\system32\drivers\usbehci.sys - ok
23:37:21.0421 3932 [ 1F4260CC5B42272D71F79E570A27A4FE ] C:\WINDOWS\system32\drivers\cdrom.sys
23:37:21.0421 3932 C:\WINDOWS\system32\drivers\cdrom.sys - ok
23:37:21.0437 3932 [ 0753515F78DF7F271A5E61C20BCD36A1 ] C:\WINDOWS\system32\drivers\ks.sys
23:37:21.0437 3932 C:\WINDOWS\system32\drivers\ks.sys - ok
23:37:21.0453 3932 [ F828DD7E1419B6653894A8F97A0094C5 ] C:\WINDOWS\system32\drivers\redbook.sys
23:37:21.0453 3932 C:\WINDOWS\system32\drivers\redbook.sys - ok
23:37:21.0468 3932 [ 4A0B06AA8943C1E332520F7440C0AA30 ] C:\WINDOWS\system32\drivers\i8042prt.sys
23:37:21.0468 3932 C:\WINDOWS\system32\drivers\i8042prt.sys - ok
23:37:21.0468 3932 [ 463C1EC80CD17420A542B7F36A36F128 ] C:\WINDOWS\system32\drivers\kbdclass.sys
23:37:21.0468 3932 C:\WINDOWS\system32\drivers\kbdclass.sys - ok
23:37:21.0484 3932 [ C50FAA6FDA843FA2172AA2B9C3CD1DAB ] C:\WINDOWS\system32\drivers\qkbfiltr.sys
23:37:21.0484 3932 C:\WINDOWS\system32\drivers\qkbfiltr.sys - ok
23:37:21.0500 3932 [ 8652B9E134C3478BE948BF089DF8ED5E ] C:\WINDOWS\system32\drivers\qmofiltr.sys
23:37:21.0500 3932 C:\WINDOWS\system32\drivers\qmofiltr.sys - ok
23:37:21.0515 3932 [ EB363DDFBE8B6D51003CCAB29D93D744 ] C:\WINDOWS\system32\drivers\SynTP.sys
23:37:21.0515 3932 C:\WINDOWS\system32\drivers\SynTP.sys - ok
23:37:21.0515 3932 [ 596EB39B50D6EBD9B734DC4AE0544693 ] C:\WINDOWS\system32\drivers\usbd.sys
23:37:21.0515 3932 C:\WINDOWS\system32\drivers\usbd.sys - ok
23:37:21.0531 3932 [ 69645F795BBC22F05BEA8B8734E3EE82 ] C:\WINDOWS\system32\drivers\ar5211.sys
23:37:21.0531 3932 C:\WINDOWS\system32\drivers\ar5211.sys - ok
23:37:21.0546 3932 [ 35C9E97194C8CFB8430125F8DBC34D04 ] C:\WINDOWS\system32\drivers\mouclass.sys
23:37:21.0546 3932 C:\WINDOWS\system32\drivers\mouclass.sys - ok
23:37:21.0562 3932 [ 4A0AE7891FCF74ACC848B109294CB80F ] C:\WINDOWS\system32\drivers\Rtlnicxp.sys
23:37:21.0562 3932 C:\WINDOWS\system32\drivers\Rtlnicxp.sys - ok
23:37:21.0578 3932 [ 9A3BBDE74DAB737EFA82DE7EF4B40BEA ] C:\WINDOWS\system32\drivers\camc6hal.sys
23:37:21.0578 3932 C:\WINDOWS\system32\drivers\camc6hal.sys - ok
23:37:21.0578 3932 [ 6CB08593487F5701D2D2254E693EAFCE ] C:\WINDOWS\system32\drivers\drmk.sys
23:37:21.0578 3932 C:\WINDOWS\system32\drivers\drmk.sys - ok
23:37:21.0593 3932 [ E82A496C3961EFC6828B508C310CE98F ] C:\WINDOWS\system32\drivers\portcls.sys
23:37:21.0593 3932 C:\WINDOWS\system32\drivers\portcls.sys - ok
23:37:21.0609 3932 [ CCE1F3C7C8E7383B90372229454999CF ] C:\WINDOWS\system32\drivers\camc6aud.sys
23:37:21.0609 3932 C:\WINDOWS\system32\drivers\camc6aud.sys - ok
23:37:21.0625 3932 [ 790ACB861176AE06D97BD7FBDDCDBBCB ] C:\WINDOWS\system32\drivers\HSFHWATI.sys
23:37:21.0625 3932 C:\WINDOWS\system32\drivers\HSFHWATI.sys - ok
23:37:21.0625 3932 [ 9A7C0D83BD340A43E10A453960607025 ] C:\WINDOWS\system32\drivers\HSF_DPV.sys
23:37:21.0625 3932 C:\WINDOWS\system32\drivers\HSF_DPV.sys - ok
23:37:21.0640 3932 [ EB5D5DD39DA6B25FFD4206892365F67C ] C:\WINDOWS\system32\drivers\HSF_CNXT.sys
23:37:21.0640 3932 C:\WINDOWS\system32\drivers\HSF_CNXT.sys - ok
23:37:21.0656 3932 [ D9F724AA26C010A217C97606B160ED68 ] C:\WINDOWS\system32\drivers\audstub.sys
23:37:21.0656 3932 C:\WINDOWS\system32\drivers\audstub.sys - ok
23:37:21.0671 3932 [ 0F6C187D38D98F8DF904589A5F94D411 ] C:\WINDOWS\system32\drivers\cmbatt.sys
23:37:21.0671 3932 C:\WINDOWS\system32\drivers\cmbatt.sys - ok
23:37:21.0671 3932 [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] C:\WINDOWS\system32\drivers\modem.sys
23:37:21.0671 3932 C:\WINDOWS\system32\drivers\modem.sys - ok
23:37:21.0687 3932 [ 0109C4F3850DFBAB279542515386AE22 ] C:\WINDOWS\system32\drivers\ndistapi.sys
23:37:21.0687 3932 C:\WINDOWS\system32\drivers\ndistapi.sys - ok
23:37:21.0703 3932 [ 11B4A627BC9614B885C4969BFA5FF8A6 ] C:\WINDOWS\system32\drivers\rasl2tp.sys
23:37:21.0703 3932 C:\WINDOWS\system32\drivers\rasl2tp.sys - ok
23:37:21.0703 3932 [ EDC1531A49C80614B2CFDA43CA8659AB ] C:\WINDOWS\system32\drivers\ndiswan.sys
23:37:21.0703 3932 C:\WINDOWS\system32\drivers\ndiswan.sys - ok
23:37:21.0718 3932 [ 5BC962F2654137C9909C3D4603587DEE ] C:\WINDOWS\system32\drivers\raspppoe.sys
23:37:21.0718 3932 C:\WINDOWS\system32\drivers\raspppoe.sys - ok
23:37:21.0734 3932 [ 0539D5E53587F82D1B4FD74C5BE205CF ] C:\WINDOWS\system32\drivers\tdi.sys
23:37:21.0734 3932 C:\WINDOWS\system32\drivers\tdi.sys - ok
23:37:21.0750 3932 [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] C:\WINDOWS\system32\drivers\raspptp.sys
23:37:21.0750 3932 C:\WINDOWS\system32\drivers\raspptp.sys - ok
23:37:21.0750 3932 [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] C:\WINDOWS\system32\drivers\msgpc.sys
23:37:21.0750 3932 C:\WINDOWS\system32\drivers\msgpc.sys - ok
23:37:21.0765 3932 [ 09298EC810B07E5D582CB3A3F9255424 ] C:\WINDOWS\system32\drivers\psched.sys
23:37:21.0765 3932 C:\WINDOWS\system32\drivers\psched.sys - ok
23:37:21.0781 3932 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] C:\WINDOWS\system32\drivers\ptilink.sys
23:37:21.0781 3932 C:\WINDOWS\system32\drivers\ptilink.sys - ok
23:37:21.0796 3932 [ FDBB1D60066FCFBB7452FD8F9829B242 ] C:\WINDOWS\system32\drivers\raspti.sys
23:37:21.0796 3932 C:\WINDOWS\system32\drivers\raspti.sys - ok
23:37:21.0812 3932 [ 88155247177638048422893737429D9E ] C:\WINDOWS\system32\drivers\termdd.sys
23:37:21.0812 3932 C:\WINDOWS\system32\drivers\termdd.sys - ok
23:37:21.0812 3932 [ 3941D127AEF12E93ADDF6FE6EE027E0F ] C:\WINDOWS\system32\drivers\swenum.sys
23:37:21.0812 3932 C:\WINDOWS\system32\drivers\swenum.sys - ok
23:37:21.0828 3932 [ 402DDC88356B1BAC0EE3DD1580C76A31 ] C:\WINDOWS\system32\drivers\update.sys
23:37:21.0828 3932 C:\WINDOWS\system32\drivers\update.sys - ok
23:37:21.0843 3932 [ 141BEFBD4F2A84A66E2F54B9E32E40D1 ] C:\WINDOWS\system32\drivers\BoiHwSetup.sys
23:37:21.0843 3932 C:\WINDOWS\system32\drivers\BoiHwSetup.sys - ok
23:37:21.0859 3932 [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] C:\WINDOWS\system32\drivers\mssmbios.sys
23:37:21.0859 3932 C:\WINDOWS\system32\drivers\mssmbios.sys - ok
23:37:21.0859 3932 [ 9282BD12DFB069D3889EB3FCC1000A9B ] C:\WINDOWS\system32\drivers\ndproxy.sys
23:37:21.0859 3932 C:\WINDOWS\system32\drivers\ndproxy.sys - ok
23:37:21.0875 3932 [ 1AB3CDDE553B6E064D2E754EFE20285C ] C:\WINDOWS\system32\drivers\usbhub.sys
23:37:21.0875 3932 C:\WINDOWS\system32\drivers\usbhub.sys - ok
23:37:21.0890 3932 [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] C:\WINDOWS\system32\drivers\fdc.sys
23:37:21.0890 3932 C:\WINDOWS\system32\drivers\fdc.sys - ok
23:37:21.0906 3932 [ 12B6E269EF8AC8EA36122544C8A1B6D8 ] C:\Program Files\Symantec AntiVirus\savrt.sys
23:37:21.0906 3932 C:\Program Files\Symantec AntiVirus\savrt.sys - ok
23:37:21.0921 3932 [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] C:\WINDOWS\system32\drivers\flpydisk.sys
23:37:21.0921 3932 C:\WINDOWS\system32\drivers\flpydisk.sys - ok
23:37:21.0921 3932 [ 8E6B8C671615D126FDC553D1E2DE5562 ] C:\WINDOWS\system32\drivers\sfloppy.sys
23:37:21.0921 3932 C:\WINDOWS\system32\drivers\sfloppy.sys - ok
23:37:21.0937 3932 [ 49B20B430A4F219173F823536944474A ] C:\WINDOWS\system32\drivers\SYMEVENT.SYS
23:37:21.0937 3932 C:\WINDOWS\system32\drivers\SYMEVENT.SYS - ok
23:37:21.0937 3932 [ 97E5B6F3F95465E1F59360B59D8EC64E ] C:\Program Files\Symantec AntiVirus\Savrtpel.sys
23:37:21.0937 3932 C:\Program Files\Symantec AntiVirus\Savrtpel.sys - ok
23:37:21.0953 3932 [ 28494C43D62AA7584BDCA2FADFBC4D11 ] C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20130322.005\NAVEX15.SYS
23:37:21.0953 3932 C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20130322.005\NAVEX15.SYS - ok
23:37:21.0968 3932 [ 7D7A3BC6640C1A0D1442816B30856928 ] C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20130322.005\NAVENG.SYS
23:37:21.0968 3932 C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20130322.005\NAVENG.SYS - ok
23:37:21.0984 3932 [ C1B486A7658353D33A10CC15211A873B ] C:\WINDOWS\system32\drivers\cdaudio.sys
23:37:21.0984 3932 C:\WINDOWS\system32\drivers\cdaudio.sys - ok
23:37:22.0000 3932 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] C:\WINDOWS\system32\drivers\fs_rec.sys
23:37:22.0000 3932 C:\WINDOWS\system32\drivers\fs_rec.sys - ok
23:37:22.0000 3932 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] C:\WINDOWS\system32\drivers\null.sys
23:37:22.0000 3932 C:\WINDOWS\system32\drivers\null.sys - ok
23:37:22.0015 3932 [ DA1F27D85E0D1525F6621372E7B685E9 ] C:\WINDOWS\system32\drivers\beep.sys
23:37:22.0015 3932 C:\WINDOWS\system32\drivers\beep.sys - ok
23:37:22.0031 3932 [ D79412E3942C8A257253487536D5A994 ] C:\WINDOWS\system32\drivers\ssrtln.sys
23:37:22.0031 3932 C:\WINDOWS\system32\drivers\ssrtln.sys - ok
23:37:22.0046 3932 [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] C:\WINDOWS\system32\drivers\vga.sys
23:37:22.0046 3932 C:\WINDOWS\system32\drivers\vga.sys - ok
23:37:22.0046 3932 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] C:\WINDOWS\system32\drivers\mnmdd.sys
23:37:22.0046 3932 C:\WINDOWS\system32\drivers\mnmdd.sys - ok
23:37:22.0062 3932 [ 4912D5B403614CE99C28420F75353332 ] C:\WINDOWS\system32\drivers\rdpcdd.sys
23:37:22.0062 3932 C:\WINDOWS\system32\drivers\rdpcdd.sys - ok
23:37:22.0078 3932 [ 7EFAC183A25B30FB5D64CC9D484B1EB6 ] C:\WINDOWS\system32\drivers\meiudf.sys
23:37:22.0078 3932 C:\WINDOWS\system32\drivers\meiudf.sys - ok
23:37:22.0093 3932 [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] C:\WINDOWS\system32\drivers\udfs.sys
23:37:22.0093 3932 C:\WINDOWS\system32\drivers\udfs.sys - ok
23:37:22.0109 3932 [ C941EA2454BA8350021D774DAF0F1027 ] C:\WINDOWS\system32\drivers\msfs.sys
23:37:22.0109 3932 C:\WINDOWS\system32\drivers\msfs.sys - ok
23:37:22.0109 3932 [ 3182D64AE053D6FB034F44B6DEF8034A ] C:\WINDOWS\system32\drivers\npfs.sys
23:37:22.0109 3932 C:\WINDOWS\system32\drivers\npfs.sys - ok
23:37:22.0125 3932 [ FE0D99D6F31E4FAD8159F690D68DED9C ] C:\WINDOWS\system32\drivers\rasacd.sys
23:37:22.0125 3932 C:\WINDOWS\system32\drivers\rasacd.sys - ok
23:37:22.0140 3932 [ 23C74D75E36E7158768DD63D92789A91 ] C:\WINDOWS\system32\drivers\ipsec.sys
23:37:22.0140 3932 C:\WINDOWS\system32\drivers\ipsec.sys - ok
23:37:22.0156 3932 [ 9AEFA14BD6B182D61E3119FA5F436D3D ] C:\WINDOWS\system32\drivers\tcpip.sys
23:37:22.0156 3932 C:\WINDOWS\system32\drivers\tcpip.sys - ok
23:37:22.0171 3932 [ CB7CC4DDBE09E224D4CD876760BA982C ] C:\WINDOWS\system32\drivers\symtdi.sys
23:37:22.0171 3932 C:\WINDOWS\system32\drivers\symtdi.sys - ok
23:37:22.0171 3932 [ CC748EA12C6EFFDE940EE98098BF96BB ] C:\WINDOWS\system32\drivers\ipnat.sys
23:37:22.0171 3932 C:\WINDOWS\system32\drivers\ipnat.sys - ok
23:37:22.0187 3932 [ E20B95BAEDB550F32DD489265C1DA1F6 ] C:\WINDOWS\system32\drivers\wanarp.sys
23:37:22.0187 3932 C:\WINDOWS\system32\drivers\wanarp.sys - ok
23:37:22.0203 3932 [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] C:\WINDOWS\system32\drivers\netbt.sys
23:37:22.0203 3932 C:\WINDOWS\system32\drivers\netbt.sys - ok
23:37:22.0203 3932 [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] C:\WINDOWS\system32\drivers\afd.sys
23:37:22.0203 3932 C:\WINDOWS\system32\drivers\afd.sys - ok
23:37:22.0218 3932 [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] C:\WINDOWS\system32\drivers\netbios.sys
23:37:22.0218 3932 C:\WINDOWS\system32\drivers\netbios.sys - ok
23:37:22.0234 3932 [ EF9760A364D836A0CE6149EBDF71524D ] C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
23:37:22.0234 3932 C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys - ok
23:37:22.0250 3932 [ 7AD224AD1A1437FE28D89CF22B17780A ] C:\WINDOWS\system32\drivers\rdbss.sys
23:37:22.0250 3932 C:\WINDOWS\system32\drivers\rdbss.sys - ok
23:37:22.0250 3932 [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] C:\WINDOWS\system32\drivers\mrxsmb.sys
23:37:22.0250 3932 C:\WINDOWS\system32\drivers\mrxsmb.sys - ok
23:37:22.0265 3932 [ D45926117EB9FA946A6AF572FBE1CAA3 ] C:\WINDOWS\system32\drivers\fips.sys
23:37:22.0265 3932 C:\WINDOWS\system32\drivers\fips.sys - ok
23:37:22.0281 3932 [ 85B8B4032A895A746D46A288A9B30DED ] C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
23:37:22.0281 3932 C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys - ok
23:37:22.0296 3932 [ B5A8A04A6E5B4E86B95B1553AA918F5F ] C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
23:37:22.0296 3932 C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys - ok
23:37:22.0312 3932 [ 5F816C1F539266D2D4C78694239DA0B5 ] C:\WINDOWS\system32\smss.exe
23:37:22.0312 3932 C:\WINDOWS\system32\smss.exe - ok
23:37:22.0312 3932 [ F8F0D25CA553E39DDE485D8FC7FCCE89 ] C:\WINDOWS\system32\ntdll.dll
23:37:22.0312 3932 C:\WINDOWS\system32\ntdll.dll - ok
23:37:22.0328 3932 [ 23043C91A0F9DFB4B9E9F87B680863B4 ] C:\WINDOWS\system32\autochk.exe
23:37:22.0328 3932 C:\WINDOWS\system32\autochk.exe - ok
23:37:22.0343 3932 [ 7A3EA5CA1AE2C8D94DCA120E0BEA0B02 ] C:\WINDOWS\system32\lsdelete.exe
23:37:22.0343 3932 C:\WINDOWS\system32\lsdelete.exe - ok
23:37:22.0359 3932 [ 9F3A2F5AA6875C72BF062C712CFA2674 ] C:\WINDOWS\system32\drivers\atapi.sys
23:37:22.0359 3932 C:\WINDOWS\system32\drivers\atapi.sys - ok
23:37:22.0359 3932 [ 2F31B7F954BED437F2C75026C65CAF7B ] C:\WINDOWS\system32\drivers\wmilib.sys
23:37:22.0359 3932 C:\WINDOWS\system32\drivers\wmilib.sys - ok
23:37:22.0375 3932 [ FE97D0343ACFDEBDD578FC67CC91FA87 ] C:\WINDOWS\system32\drivers\dxapi.sys
23:37:22.0375 3932 C:\WINDOWS\system32\drivers\dxapi.sys - ok
23:37:22.0390 3932 [ 9A10AACBFDC4922715375FB4065EC930 ] C:\WINDOWS\system32\watchdog.sys
23:37:22.0390 3932 C:\WINDOWS\system32\watchdog.sys - ok
23:37:22.0406 3932 [ 860AC2E4711D2DACF12D98A42105A611 ] C:\WINDOWS\system32\win32k.sys
23:37:22.0406 3932 C:\WINDOWS\system32\win32k.sys - ok
23:37:22.0406 3932 [ 44F275C64738EA2056E3D9580C23B60F ] C:\WINDOWS\system32\csrss.exe
23:37:22.0406 3932 C:\WINDOWS\system32\csrss.exe - ok
23:37:22.0421 3932 [ DD40363ABAD230A84C5E2178B11EFA88 ] C:\WINDOWS\system32\csrsrv.dll
23:37:22.0421 3932 C:\WINDOWS\system32\csrsrv.dll - ok
23:37:22.0437 3932 [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll
23:37:22.0437 3932 C:\WINDOWS\system32\basesrv.dll - ok
23:37:22.0453 3932 [ 8B1F3320AEBB536E021A5014409862DE ] C:\WINDOWS\system32\gdi32.dll
23:37:22.0453 3932 C:\WINDOWS\system32\gdi32.dll - ok
23:37:22.0453 3932 [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll
23:37:22.0453 3932 C:\WINDOWS\system32\winsrv.dll - ok
23:37:22.0468 3932 [ 6FE42512AB1B89F32A7407F261B1D2D0 ] C:\WINDOWS\system32\kernel32.dll
23:37:22.0468 3932 C:\WINDOWS\system32\kernel32.dll - ok
23:37:22.0484 3932 [ B26B135FF1B9F60C9388B4A7D16F600B ] C:\WINDOWS\system32\user32.dll
23:37:22.0484 3932 C:\WINDOWS\system32\user32.dll - ok
23:37:22.0500 3932 [ AC7280566A7BB85CB3291F04DDC1198E ] C:\WINDOWS\system32\drivers\dxg.sys
23:37:22.0500 3932 C:\WINDOWS\system32\drivers\dxg.sys - ok
23:37:22.0515 3932 [ A73F5D6705B1D820C19B18782E176EFD ] C:\WINDOWS\system32\drivers\dxgthk.sys
23:37:22.0515 3932 C:\WINDOWS\system32\drivers\dxgthk.sys - ok
23:37:22.0531 3932 [ D3F64518C311887B471E505C1FA6B537 ] C:\WINDOWS\system32\ati2dvag.dll
23:37:22.0531 3932 C:\WINDOWS\system32\ati2dvag.dll - ok
23:37:22.0546 3932 [ B9E36A602CEAE4EC901DB3F51CDD1B6A ] C:\WINDOWS\system32\ati2cqag.dll
23:37:22.0546 3932 C:\WINDOWS\system32\ati2cqag.dll - ok
23:37:22.0546 3932 [ 2D7AA72D6452B8B7BD95469B2454D501 ] C:\WINDOWS\system32\atikvmag.dll
23:37:22.0546 3932 C:\WINDOWS\system32\atikvmag.dll - ok
23:37:22.0562 3932 [ ECB7591870F8BFB1A4C17B718AD5A4AA ] C:\WINDOWS\system32\vga.dll
23:37:22.0562 3932 C:\WINDOWS\system32\vga.dll - ok
23:37:22.0578 3932 [ BB19A019D1D43118A15539809183035D ] C:\WINDOWS\system32\ati3duag.dll
23:37:22.0578 3932 C:\WINDOWS\system32\ati3duag.dll - ok
23:37:22.0593 3932 [ 7BC895C47D36BBBFA128798A8B1AD34C ] C:\WINDOWS\system32\ativvaxx.dll
23:37:22.0593 3932 C:\WINDOWS\system32\ativvaxx.dll - ok
23:37:22.0609 3932 [ ED0EF0A136DEC83DF69F04118870003E ] C:\WINDOWS\system32\winlogon.exe
23:37:22.0609 3932 C:\WINDOWS\system32\winlogon.exe - ok
23:37:22.0609 3932 [ E76F8807070ED04E7408A86D6D3A6137 ] C:\WINDOWS\system32\advapi32.dll
23:37:22.0609 3932 C:\WINDOWS\system32\advapi32.dll - ok
23:37:22.0625 3932 [ D4502F124289A31976130CCCB014C9AA ] C:\WINDOWS\system32\rpcrt4.dll
23:37:22.0625 3932 C:\WINDOWS\system32\rpcrt4.dll - ok
23:37:22.0640 3932 [ 714705F29A917993536A6AB2DEDB0B7F ] C:\WINDOWS\system32\authz.dll
23:37:22.0640 3932 C:\WINDOWS\system32\authz.dll - ok
23:37:22.0656 3932 [ 355EDBB4D412B01F1740C17E3F50FA00 ] C:\WINDOWS\system32\msvcrt.dll
23:37:22.0656 3932 C:\WINDOWS\system32\msvcrt.dll - ok
23:37:22.0671 3932 [ 5357826C8A8DD6A07F17C48BB45BE46E ] C:\WINDOWS\system32\secur32.dll
23:37:22.0671 3932 C:\WINDOWS\system32\secur32.dll - ok
23:37:22.0671 3932 [ 6BEE5D4EFF0A0341BCC4A462D81CCFC1 ] C:\WINDOWS\system32\crypt32.dll
23:37:22.0671 3932 C:\WINDOWS\system32\crypt32.dll - ok
23:37:22.0687 3932 [ 04D898830DF96A17A20FD35D7590F87E ] C:\WINDOWS\system32\msasn1.dll
23:37:22.0687 3932 C:\WINDOWS\system32\msasn1.dll - ok
23:37:22.0687 3932 [ 013C1148C1EC025596896E093F60F608 ] C:\WINDOWS\system32\nddeapi.dll
23:37:22.0687 3932 C:\WINDOWS\system32\nddeapi.dll - ok
23:37:22.0703 3932 [ CAC752BF84DB4666ED3CE0948E6EA937 ] C:\WINDOWS\system32\netapi32.dll
23:37:22.0703 3932 C:\WINDOWS\system32\netapi32.dll - ok
23:37:22.0718 3932 [ FCFA1C55971CC229D353B3A15ACCD995 ] C:\WINDOWS\system32\profmap.dll
23:37:22.0718 3932 C:\WINDOWS\system32\profmap.dll - ok
23:37:22.0734 3932 [ 43D13C80EBEC0135A3611E0F616F179B ] C:\WINDOWS\system32\userenv.dll
23:37:22.0734 3932 C:\WINDOWS\system32\userenv.dll - ok
23:37:22.0750 3932 [ 9CFCB3CA3D83B4EAA133F0644A2C6F31 ] C:\WINDOWS\system32\psapi.dll
23:37:22.0750 3932 C:\WINDOWS\system32\psapi.dll - ok
23:37:22.0750 3932 [ AF11C591F2F4AFF4A6CF699D376F618B ] C:\WINDOWS\system32\regapi.dll
23:37:22.0750 3932 C:\WINDOWS\system32\regapi.dll - ok
23:37:22.0765 3932 [ 24192246760E0E64435522E246B1D6C2 ] C:\WINDOWS\system32\setupapi.dll
23:37:22.0765 3932 C:\WINDOWS\system32\setupapi.dll - ok
23:37:22.0781 3932 [ C7CE131408739B0B3A318BE2D0032719 ] C:\WINDOWS\system32\version.dll
23:37:22.0781 3932 C:\WINDOWS\system32\version.dll - ok
23:37:22.0796 3932 [ 430CEB794F6E6EF8AC86958C242366D6 ] C:\WINDOWS\system32\winsta.dll
23:37:22.0796 3932 C:\WINDOWS\system32\winsta.dll - ok
23:37:22.0796 3932 [ D458B738B4C2CE33174CFB2CE12412DB ] C:\WINDOWS\system32\wintrust.dll
23:37:22.0796 3932 C:\WINDOWS\system32\wintrust.dll - ok
23:37:22.0812 3932 [ FFC01A72D1C25CCB39F61B202CE60819 ] C:\WINDOWS\system32\imagehlp.dll
23:37:22.0812 3932 C:\WINDOWS\system32\imagehlp.dll - ok
23:37:22.0828 3932 [ 2CCC474EB85CEAA3E1FA1726580A3E5A ] C:\WINDOWS\system32\ws2_32.dll
23:37:22.0828 3932 C:\WINDOWS\system32\ws2_32.dll - ok
23:37:22.0843 3932 [ 0DA85218E92526972A821587E6A8BF8F ] C:\WINDOWS\system32\imm32.dll
23:37:22.0843 3932 C:\WINDOWS\system32\imm32.dll - ok
23:37:22.0859 3932 [ 9789E95E1D88EEB4B922BF3EA7779C28 ] C:\WINDOWS\system32\ws2help.dll
23:37:22.0859 3932 C:\WINDOWS\system32\ws2help.dll - ok
23:37:22.0859 3932 [ 56C5B179FE3308B655EB6208C3256FEC ] C:\WINDOWS\system32\kbdus.dll
23:37:22.0859 3932 C:\WINDOWS\system32\kbdus.dll - ok
23:37:22.0875 3932 [ D7B7A57C0E57C836F18CF12A4C62A1CA ] C:\WINDOWS\system32\msgina.dll
23:37:22.0875 3932 C:\WINDOWS\system32\msgina.dll - ok
23:37:22.0890 3932 [ 93AFB83FBC1F9443CAC722FCA63D73BF ] C:\WINDOWS\system32\comctl32.dll
23:37:22.0890 3932 C:\WINDOWS\system32\comctl32.dll - ok
23:37:22.0906 3932 [ 40B0F98BAD16AD5DEF894E88C3EF8014 ] C:\WINDOWS\system32\odbc32.dll
23:37:22.0906 3932 C:\WINDOWS\system32\odbc32.dll - ok
23:37:22.0906 3932 [ 86987A5000DFA3EBE2275C0456BCF2FE ] C:\WINDOWS\system32\comdlg32.dll
23:37:22.0906 3932 C:\WINDOWS\system32\comdlg32.dll - ok
23:37:22.0921 3932 [ 6843D54BC4A40CC8C5741AF750233D10 ] C:\WINDOWS\system32\shell32.dll
23:37:22.0921 3932 C:\WINDOWS\system32\shell32.dll - ok
23:37:22.0937 3932 [ C448A248B743F5FB935C787A5D97268B ] C:\WINDOWS\system32\shlwapi.dll
23:37:22.0937 3932 C:\WINDOWS\system32\shlwapi.dll - ok
23:37:22.0937 3932 [ 694503348B586E99D56C0E30AB5B3EF8 ] C:\WINDOWS\system32\sxs.dll
23:37:22.0937 3932 C:\WINDOWS\system32\sxs.dll - ok
23:37:22.0953 3932 [ 736B12B725AEB2B07F0241A9F680CB10 ] C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
23:37:22.0953 3932 C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll - ok
23:37:22.0968 3932 [ 6B7C6B32F8E84D56C6260D684019FEA2 ] C:\WINDOWS\system32\odbcint.dll
23:37:22.0968 3932 C:\WINDOWS\system32\odbcint.dll - ok
23:37:22.0984 3932 [ 99BC0B50F511924348BE19C7C7313BBF ] C:\WINDOWS\system32\shsvcs.dll
23:37:22.0984 3932 C:\WINDOWS\system32\shsvcs.dll - ok
23:37:22.0984 3932 [ 96E1C926F22EE1BFBAE82901A35F6BF3 ] C:\WINDOWS\system32\sfc.dll
23:37:22.0984 3932 C:\WINDOWS\system32\sfc.dll - ok
23:37:23.0000 3932 [ 6B5DB6789177A4FD0DEBC248041D0739 ] C:\WINDOWS\system32\sfc_os.dll
23:37:23.0000 3932 C:\WINDOWS\system32\sfc_os.dll - ok
23:37:23.0015 3932 [ 6BAD1BED9872E62049E487FB91AE2F3A ] C:\WINDOWS\system32\ole32.dll
23:37:23.0015 3932 C:\WINDOWS\system32\ole32.dll - ok
23:37:23.0031 3932 [ CF492D7E9AF1C628B3536D20EF6F5CC7 ] C:\WINDOWS\system32\apphelp.dll
23:37:23.0031 3932 C:\WINDOWS\system32\apphelp.dll - ok
23:37:23.0046 3932 [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe
23:37:23.0046 3932 C:\WINDOWS\system32\services.exe - ok
23:37:23.0062 3932 [ BF2466B3E18E970D8A976FB95FC1CA85 ] C:\WINDOWS\system32\lsass.exe
23:37:23.0062 3932 C:\WINDOWS\system32\lsass.exe - ok
23:37:23.0062 3932 [ EC29A79F1E76DC509E24D401F29D0678 ] C:\WINDOWS\system32\ncobjapi.dll
23:37:23.0062 3932 C:\WINDOWS\system32\ncobjapi.dll - ok
23:37:23.0078 3932 [ F404830F3CD9BF8F2515E489C0CDA297 ] C:\WINDOWS\system32\msvcp60.dll
23:37:23.0078 3932 C:\WINDOWS\system32\msvcp60.dll - ok
23:37:23.0093 3932 [ B24A42A413E694AD73FDFB7FBD492C31 ] C:\WINDOWS\system32\scesrv.dll
23:37:23.0093 3932 C:\WINDOWS\system32\scesrv.dll - ok
23:37:23.0109 3932 [ 2EDFC2A8893435723AD80481803C6D5C ] C:\WINDOWS\system32\umpnpmgr.dll
23:37:23.0109 3932 C:\WINDOWS\system32\umpnpmgr.dll - ok
23:37:23.0125 3932 [ EA9EE60B408878E5F2012F9C783836DB ] C:\WINDOWS\AppPatch\acadproc.dll
23:37:23.0125 3932 C:\WINDOWS\AppPatch\acadproc.dll - ok
23:37:23.0140 3932 [ 1F03103598BD817B1078DAB1326DDE11 ] C:\WINDOWS\system32\shimeng.dll
23:37:23.0140 3932 C:\WINDOWS\system32\shimeng.dll - ok
23:37:23.0140 3932 [ BD31DC6DBE9333C4FBD4BDF0899F2160 ] C:\WINDOWS\system32\lsasrv.dll
23:37:23.0140 3932 C:\WINDOWS\system32\lsasrv.dll - ok
23:37:23.0156 3932 [ DD7BD97FB8BD800963789158A5E4B41D ] C:\WINDOWS\system32\mpr.dll
23:37:23.0156 3932 C:\WINDOWS\system32\mpr.dll - ok
23:37:23.0171 3932 [ 389496118B3B03C2328024AF320132AC ] C:\WINDOWS\system32\dnsapi.dll
23:37:23.0171 3932 C:\WINDOWS\system32\dnsapi.dll - ok
23:37:23.0171 3932 [ EC4C0D9BFD9F7E33F8B395AD54E13063 ] C:\WINDOWS\system32\ntdsapi.dll
23:37:23.0171 3932 C:\WINDOWS\system32\ntdsapi.dll - ok
23:37:23.0187 3932 [ 0492CF5870F0E616B0C71695A433D162 ] C:\WINDOWS\system32\wldap32.dll
23:37:23.0187 3932 C:\WINDOWS\system32\wldap32.dll - ok
23:37:23.0203 3932 [ 8329A39D5A402A75A74301D6A62ECDA1 ] C:\WINDOWS\system32\samlib.dll
23:37:23.0203 3932 C:\WINDOWS\system32\samlib.dll - ok
23:37:23.0218 3932 [ F05B8CDB7FE0E55DCCFB1D946CE80064 ] C:\WINDOWS\system32\samsrv.dll
23:37:23.0218 3932 C:\WINDOWS\system32\samsrv.dll - ok
23:37:23.0218 3932 [ 17A1D675C12BBF80CAAC54A4855C41D0 ] C:\WINDOWS\system32\cryptdll.dll
23:37:23.0218 3932 C:\WINDOWS\system32\cryptdll.dll - ok
23:37:23.0234 3932 [ 310C15FD8358B2C4CD7A5B98A112883F ] C:\WINDOWS\AppPatch\acgenral.dll
23:37:23.0234 3932 C:\WINDOWS\AppPatch\acgenral.dll - ok
23:37:23.0250 3932 [ 4A953F13942867BA8FB41F141EC1B80C ] C:\WINDOWS\system32\winmm.dll
23:37:23.0250 3932 C:\WINDOWS\system32\winmm.dll - ok
23:37:23.0265 3932 [ EFF03460E542EEA6B0ABDEC6BF19C897 ] C:\WINDOWS\system32\oleaut32.dll
23:37:23.0265 3932 C:\WINDOWS\system32\oleaut32.dll - ok
23:37:23.0265 3932 [ 2098AB52BD5316E59AA36F3437B13BE6 ] C:\WINDOWS\system32\msacm32.dll
23:37:23.0265 3932 C:\WINDOWS\system32\msacm32.dll - ok
23:37:23.0281 3932 [ 7A2CC3719B255E6B5D74396183B7715B ] C:\WINDOWS\system32\uxtheme.dll
23:37:23.0281 3932 C:\WINDOWS\system32\uxtheme.dll - ok
23:37:23.0296 3932 [ F24B12786D60A17008319E3F2AEE7799 ] C:\WINDOWS\system32\msapsspc.dll
23:37:23.0296 3932 C:\WINDOWS\system32\msapsspc.dll - ok
23:37:23.0312 3932 [ 7A660EDC0757849DF5F8706FB6E9F740 ] C:\WINDOWS\system32\msvcrt40.dll
23:37:23.0312 3932 C:\WINDOWS\system32\msvcrt40.dll - ok
23:37:23.0312 3932 [ 0F64207B49390C8063C36AE7CBF9C2DB ] C:\WINDOWS\system32\schannel.dll
23:37:23.0312 3932 C:\WINDOWS\system32\schannel.dll - ok
23:37:23.0328 3932 [ 3D76DD0CBC536E0F8C45D23ED230BEB2 ] C:\WINDOWS\system32\digest.dll
23:37:23.0328 3932 C:\WINDOWS\system32\digest.dll - ok
23:37:23.0343 3932 [ A4388DF80E52695AE92EE5F3F61F1619 ] C:\WINDOWS\system32\msnsspc.dll
23:37:23.0343 3932 C:\WINDOWS\system32\msnsspc.dll - ok
23:37:23.0359 3932 [ C6BB1D1500DB4A0E224CB65E6C7E8A80 ] C:\WINDOWS\system32\msprivs.dll
23:37:23.0359 3932 C:\WINDOWS\system32\msprivs.dll - ok
23:37:23.0375 3932 [ A525C96C51D55111FDF3BEA9FFFFC7AE ] C:\WINDOWS\system32\kerberos.dll
23:37:23.0375 3932 C:\WINDOWS\system32\kerberos.dll - ok
23:37:23.0375 3932 [ 5733177BCF16EE78B99543C9B0AB81EA ] C:\WINDOWS\system32\msctfime.ime
23:37:23.0375 3932 C:\WINDOWS\system32\msctfime.ime - ok
23:37:23.0390 3932 [ 517561A1113B04E51D936CD018DE1C1F ] C:\WINDOWS\system32\msv1_0.dll
23:37:23.0390 3932 C:\WINDOWS\system32\msv1_0.dll - ok
23:37:23.0406 3932 [ AF07DC9B7CC455629E732340C7B15F3A ] C:\WINDOWS\system32\iphlpapi.dll
23:37:23.0406 3932 C:\WINDOWS\system32\iphlpapi.dll - ok
23:37:23.0421 3932 [ 1B7F071C51B77C272875C3A23E1E4550 ] C:\WINDOWS\system32\netlogon.dll
23:37:23.0421 3932 C:\WINDOWS\system32\netlogon.dll - ok
23:37:23.0421 3932 [ 54AF4B1D5459500EF0937F6D33B1914F ] C:\WINDOWS\system32\w32time.dll
23:37:23.0421 3932 C:\WINDOWS\system32\w32time.dll - ok
23:37:23.0437 3932 [ 9DD07AF82244867CA36681EA2D29CE79 ] C:\WINDOWS\system32\sfcfiles.dll
23:37:23.0437 3932 C:\WINDOWS\system32\sfcfiles.dll - ok
23:37:23.0453 3932 [ 3AAF9B35939FF9E58CCD18D41655C2FC ] C:\WINDOWS\system32\wdigest.dll
23:37:23.0453 3932 C:\WINDOWS\system32\wdigest.dll - ok
23:37:23.0453 3932 [ 54DAE3EA34802B4ED9AE1C6B1209FA56 ] C:\WINDOWS\system32\rsaenh.dll
23:37:23.0453 3932 C:\WINDOWS\system32\rsaenh.dll - ok
23:37:23.0468 3932 [ 02988B904C386B500CD08639C4C20EEA ] C:\WINDOWS\system32\winscard.dll
23:37:23.0468 3932 C:\WINDOWS\system32\winscard.dll - ok
23:37:23.0484 3932 [ A86BB5E61BF3E39B62AB4C7E7085A084 ] C:\WINDOWS\system32\scecli.dll
23:37:23.0484 3932 C:\WINDOWS\system32\scecli.dll - ok
23:37:23.0500 3932 [ 0E2735281FBB9A764D5584C2A5DCBA59 ] C:\WINDOWS\system32\wtsapi32.dll
23:37:23.0500 3932 C:\WINDOWS\system32\wtsapi32.dll - ok
23:37:23.0515 3932 [ 5AFBEC7A6AC61B211633DFDB1D9E0C89 ] C:\WINDOWS\system32\drivers\drvnddm.sys
23:37:23.0515 3932 C:\WINDOWS\system32\drivers\drvnddm.sys - ok
23:37:23.0515 3932 [ EECA2B57545E7B7BE949B5E70E31444F ] C:\WINDOWS\system32\drivers\tbiosdrv.sys
23:37:23.0515 3932 C:\WINDOWS\system32\drivers\tbiosdrv.sys - ok
23:37:23.0531 3932 [ D8DDB3F2B1BEF15CFF6728D89C042C61 ] C:\WINDOWS\system32\dla\tfsndres.sys
23:37:23.0531 3932 C:\WINDOWS\system32\dla\tfsndres.sys - ok
23:37:23.0546 3932 [ C4F2DEA75300971CDAEE311007DE138D ] C:\WINDOWS\system32\dla\tfsnifs.sys
23:37:23.0546 3932 C:\WINDOWS\system32\dla\tfsnifs.sys - ok
23:37:23.0562 3932 [ 272925BE0EA919F08286D2EE6F102B0F ] C:\WINDOWS\system32\dla\tfsnopio.sys
23:37:23.0562 3932 C:\WINDOWS\system32\dla\tfsnopio.sys - ok
23:37:23.0578 3932 [ 7B7D955E5CEBC2FB88B03EF875D52A2F ] C:\WINDOWS\system32\dla\tfsnpool.sys
23:37:23.0578 3932 C:\WINDOWS\system32\dla\tfsnpool.sys - ok
23:37:23.0593 3932 [ D0177776E11B0B3F272EEBD262A69661 ] C:\WINDOWS\system32\dla\tfsnboio.sys
23:37:23.0593 3932 C:\WINDOWS\system32\dla\tfsnboio.sys - ok
23:37:23.0593 3932 [ 599804BC938B8305A5422319774DA871 ] C:\WINDOWS\system32\dla\tfsncofs.sys
23:37:23.0593 3932 C:\WINDOWS\system32\dla\tfsncofs.sys - ok
23:37:23.0609 3932 [ A1902C00ADC11C4D83F8E3ED947A6A32 ] C:\WINDOWS\system32\dla\tfsndrct.sys
23:37:23.0609 3932 C:\WINDOWS\system32\dla\tfsndrct.sys - ok
23:37:23.0625 3932 [ E3D01263109D800C1967C12C10A0B018 ] C:\WINDOWS\system32\dla\tfsnudf.sys
23:37:23.0625 3932 C:\WINDOWS\system32\dla\tfsnudf.sys - ok
23:37:23.0640 3932 [ B9E9C377906E3A65BC74598FFF7F7458 ] C:\WINDOWS\system32\dla\tfsnudfa.sys
23:37:23.0640 3932 C:\WINDOWS\system32\dla\tfsnudfa.sys - ok
23:37:23.0656 3932 [ 2081A5B5E4ABA206A0A8A1A97DF0FB23 ] C:\WINDOWS\system32\logonui.exe
23:37:23.0656 3932 C:\WINDOWS\system32\logonui.exe - ok
23:37:23.0656 3932 [ 06B67E6A0B679D037D2D9E27A64CE90C ] C:\WINDOWS\system32\ati2evxx.exe
23:37:23.0656 3932 C:\WINDOWS\system32\ati2evxx.exe - ok
23:37:23.0671 3932 [ 3D41A9326F0376FC73AF961DD23B1FB1 ] C:\WINDOWS\system32\duser.dll
23:37:23.0671 3932 C:\WINDOWS\system32\duser.dll - ok
23:37:23.0687 3932 [ AFFC87E2501FCE8F09D4C10BA6421CCF ] C:\WINDOWS\system32\msimg32.dll
23:37:23.0687 3932 C:\WINDOWS\system32\msimg32.dll - ok
23:37:23.0687 3932 [ 20200EE3CFE10E9F0C028D8653BE11C6 ] C:\WINDOWS\system32\oleacc.dll
23:37:23.0687 3932 C:\WINDOWS\system32\oleacc.dll - ok
23:37:23.0703 3932 [ F137A0CA70003DB20448D540651FA003 ] C:\WINDOWS\system32\clbcatq.dll
23:37:23.0703 3932 C:\WINDOWS\system32\clbcatq.dll - ok
23:37:23.0718 3932 [ 1280A158C722FA95A80FB7AEBE78FA7D ] C:\WINDOWS\system32\comres.dll
23:37:23.0718 3932 C:\WINDOWS\system32\comres.dll - ok
23:37:23.0734 3932 [ E5EDBD51476DB5001ABF5C82AE5C3DD1 ] C:\WINDOWS\system32\shgina.dll
23:37:23.0734 3932 C:\WINDOWS\system32\shgina.dll - ok
23:37:23.0734 3932 [ 475108BFB738C5ABE2A19EAC7B005259 ] C:\WINDOWS\system32\ati2edxx.dll
23:37:23.0734 3932 C:\WINDOWS\system32\ati2edxx.dll - ok
23:37:23.0750 3932 [ 27C6D03BCDB8CFEB96B716F3D8BE3E18 ] C:\WINDOWS\system32\svchost.exe
23:37:23.0750 3932 C:\WINDOWS\system32\svchost.exe - ok
23:37:23.0765 3932 [ 549290DBC280C887681D7652978DBBE0 ] C:\WINDOWS\system32\ntmarta.dll
23:37:23.0765 3932 C:\WINDOWS\system32\ntmarta.dll - ok
23:37:23.0781 3932 [ 6B27A5C03DFB94B4245739065431322C ] C:\WINDOWS\system32\rpcss.dll
23:37:23.0781 3932 C:\WINDOWS\system32\rpcss.dll - ok
23:37:23.0796 3932 [ 16403217AB6FC5C30C14C6B12098AD4B ] C:\WINDOWS\system32\xpsp2res.dll
23:37:23.0796 3932 C:\WINDOWS\system32\xpsp2res.dll - ok
23:37:23.0812 3932 [ 6D4FEB43EE538FC5428CC7F0565AA656 ] C:\WINDOWS\system32\eventlog.dll
23:37:23.0812 3932 C:\WINDOWS\system32\eventlog.dll - ok
23:37:23.0828 3932 [ 943337D786A56729263071623BBB9DE5 ] C:\WINDOWS\system32\mswsock.dll
23:37:23.0828 3932 C:\WINDOWS\system32\mswsock.dll - ok
23:37:23.0828 3932 [ 3CB32D3B8CBE79899D63280BB7A83CD9 ] C:\WINDOWS\system32\hnetcfg.dll
23:37:23.0828 3932 C:\WINDOWS\system32\hnetcfg.dll - ok
23:37:23.0843 3932 [ 4E3D06D6E68EEDB52565080F55B460D3 ] C:\WINDOWS\system32\wshtcpip.dll
23:37:23.0843 3932 C:\WINDOWS\system32\wshtcpip.dll - ok
23:37:23.0859 3932 [ D72B9EC3337B247A666F098F3D6B43DE ] C:\WINDOWS\system32\winrnr.dll
23:37:23.0859 3932 C:\WINDOWS\system32\winrnr.dll - ok
23:37:23.0875 3932 [ 6F9BEF24C578D5D6740E080BEDD6A448 ] C:\WINDOWS\system32\rasadhlp.dll
23:37:23.0875 3932 C:\WINDOWS\system32\rasadhlp.dll - ok
23:37:23.0875 3932 [ 2C5C22990156A1063E19AD162191DC1D ] C:\WINDOWS\system32\drivers\AegisP.sys
23:37:23.0875 3932 C:\WINDOWS\system32\drivers\AegisP.sys - ok
23:37:23.0890 3932 [ 0723C82CB1A30CAC4057133109734568 ] C:\WINDOWS\system32\ati2evxx.dll
23:37:23.0890 3932 C:\WINDOWS\system32\ati2evxx.dll - ok
23:37:23.0906 3932 [ 515A7FAE2070C2B0242B2353443E2F11 ] C:\WINDOWS\system32\cscdll.dll
23:37:23.0906 3932 C:\WINDOWS\system32\cscdll.dll - ok
23:37:23.0921 3932 [ E2092F0A1D7ABC243F9C2362483D150D ] C:\WINDOWS\system32\dimsntfy.dll
23:37:23.0921 3932 C:\WINDOWS\system32\dimsntfy.dll - ok
23:37:23.0921 3932 [ 2CC34E8BB667EEF78899546E12649196 ] C:\WINDOWS\system32\wlnotify.dll
23:37:23.0921 3932 C:\WINDOWS\system32\wlnotify.dll - ok
23:37:23.0937 3932 [ BD83ABA61E8ACCC8D9FFB869F29418CE ] C:\WINDOWS\system32\winspool.drv
23:37:23.0937 3932 C:\WINDOWS\system32\winspool.drv - ok
23:37:23.0953 3932 [ F927A4434C5028758A842943EF1A3849 ] C:\WINDOWS\system32\drivers\ndisuio.sys
23:37:23.0953 3932 C:\WINDOWS\system32\drivers\ndisuio.sys - ok
23:37:23.0953 3932 [ 627B55FAD15C6B03B44198AFBEEBAB1A ] C:\WINDOWS\system32\WgaLogon.dll
23:37:23.0953 3932 C:\WINDOWS\system32\WgaLogon.dll - ok
23:37:23.0968 3932 [ 1265EB253ED4EBE4ACB3BD5F548FF796 ] C:\WINDOWS\system32\drivers\Netdevio.sys
23:37:23.0968 3932 C:\WINDOWS\system32\drivers\Netdevio.sys - ok
23:37:23.0984 3932 [ ACFEE2392503DD5E457363A0510B8BCB ] C:\WINDOWS\system32\msxml3.dll
23:37:23.0984 3932 C:\WINDOWS\system32\msxml3.dll - ok
23:37:24.0000 3932 [ 5E38D7684A49CACFB752B046357E0589 ] C:\WINDOWS\system32\dhcpcsvc.dll
23:37:24.0000 3932 C:\WINDOWS\system32\dhcpcsvc.dll - ok
23:37:24.0015 3932 [ 5F7E24FA9EAB896051FFB87F840730D2 ] C:\WINDOWS\system32\dnsrslvr.dll
23:37:24.0015 3932 C:\WINDOWS\system32\dnsrslvr.dll - ok
23:37:24.0015 3932 [ A7DB739AE99A796D91580147E919CC59 ] C:\WINDOWS\system32\lmhsvc.dll
23:37:24.0015 3932 C:\WINDOWS\system32\lmhsvc.dll - ok
23:37:24.0031 3932 [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] C:\WINDOWS\system32\wzcsvc.dll
23:37:24.0031 3932 C:\WINDOWS\system32\wzcsvc.dll - ok
23:37:24.0046 3932 [ 876CCF164E08D6B903CD14398E056DD2 ] C:\WINDOWS\system32\rtutils.dll
23:37:24.0046 3932 C:\WINDOWS\system32\rtutils.dll - ok
23:37:24.0062 3932 [ 7B0770526801F05D58C51A3DFB87B4BD ] C:\WINDOWS\system32\wmi.dll
23:37:24.0062 3932 C:\WINDOWS\system32\wmi.dll - ok
23:37:24.0062 3932 [ E6EF7BC927D9F8F9BA1584BFC39E0C6F ] C:\WINDOWS\system32\eapolqec.dll
23:37:24.0062 3932 C:\WINDOWS\system32\eapolqec.dll - ok
23:37:24.0078 3932 [ 224FB925C641DA16CEB6D60F40CA4C75 ] C:\WINDOWS\system32\atl.dll
23:37:24.0078 3932 C:\WINDOWS\system32\atl.dll - ok
23:37:24.0093 3932 [ 8AE93AACC648921BAACB8602991AC4B3 ] C:\WINDOWS\system32\qutil.dll
23:37:24.0093 3932 C:\WINDOWS\system32\qutil.dll - ok
23:37:24.0109 3932 [ 8E2CC37BA87D8F681066E0E9C8A19F73 ] C:\WINDOWS\system32\dot3api.dll
23:37:24.0109 3932 C:\WINDOWS\system32\dot3api.dll - ok
23:37:24.0125 3932 [ F5B754CDEA20BBB3A31E16A776EDE6D6 ] C:\WINDOWS\system32\esent.dll
23:37:24.0125 3932 C:\WINDOWS\system32\esent.dll - ok
23:37:24.0140 3932 [ B714735C12A70171DE28657948FD91F1 ] C:\WINDOWS\system32\mlang.dll
23:37:24.0140 3932 C:\WINDOWS\system32\mlang.dll - ok
23:37:24.0140 3932 [ A39BE37C9237DB5F1990D61B268EA555 ] C:\WINDOWS\system32\rastls.dll
23:37:24.0140 3932 C:\WINDOWS\system32\rastls.dll - ok
23:37:24.0156 3932 [ 6E4BE11D50F8A8DE2BAD644C9C9DE8D3 ] C:\WINDOWS\system32\cryptui.dll
23:37:24.0156 3932 C:\WINDOWS\system32\cryptui.dll - ok
23:37:24.0171 3932 [ DA5B96A293B006572209E5EAC9F3A045 ] C:\WINDOWS\system32\wininet.dll
23:37:24.0171 3932 C:\WINDOWS\system32\wininet.dll - ok
23:37:24.0171 3932 [ 10753A3ADC3E39A3B10CC3F08E98E6B4 ] C:\WINDOWS\system32\normaliz.dll
23:37:24.0171 3932 C:\WINDOWS\system32\normaliz.dll - ok
23:37:24.0187 3932 [ A9D17E2AFAB5EB5C4920D8E07505D3CA ] C:\WINDOWS\system32\urlmon.dll
23:37:24.0187 3932 C:\WINDOWS\system32\urlmon.dll - ok
23:37:24.0203 3932 [ BD485DBD15FFA3286A75906E4C4DD914 ] C:\WINDOWS\system32\iertutil.dll
23:37:24.0203 3932 C:\WINDOWS\system32\iertutil.dll - ok
23:37:24.0218 3932 [ EA5B8BECA3F279C757578CD7F1E95855 ] C:\WINDOWS\system32\mprapi.dll
23:37:24.0218 3932 C:\WINDOWS\system32\mprapi.dll - ok
23:37:24.0234 3932 [ 2CDAE321B8E878A278BA2D2FA013060B ] C:\WINDOWS\system32\activeds.dll
23:37:24.0234 3932 C:\WINDOWS\system32\activeds.dll - ok
23:37:24.0234 3932 [ 0D84657DBF93DB98673DEFDF2B29E25A ] C:\WINDOWS\system32\adsldpc.dll
23:37:24.0234 3932 C:\WINDOWS\system32\adsldpc.dll - ok
23:37:24.0250 3932 [ 92C4F48B62B0B876194584C3FF09CCB6 ] C:\WINDOWS\system32\rasapi32.dll
23:37:24.0250 3932 C:\WINDOWS\system32\rasapi32.dll - ok
23:37:24.0265 3932 [ 4DEF926F6A0545AE486A03C84F2EE482 ] C:\WINDOWS\system32\rasman.dll
23:37:24.0265 3932 C:\WINDOWS\system32\rasman.dll - ok
23:37:24.0281 3932 [ 00AABF131B4823785818DB99A075A313 ] C:\WINDOWS\system32\tapi32.dll
23:37:24.0281 3932 C:\WINDOWS\system32\tapi32.dll - ok
23:37:24.0281 3932 [ C1FAEA15E41F62D7BFA7FBC395C24BA6 ] C:\WINDOWS\system32\riched20.dll
23:37:24.0281 3932 C:\WINDOWS\system32\riched20.dll - ok
23:37:24.0296 3932 [ 566382CA5F2C41FEAEEEFAC908F1EB92 ] C:\WINDOWS\system32\xmlprovi.dll
23:37:24.0296 3932 C:\WINDOWS\system32\xmlprovi.dll - ok
23:37:24.0312 3932 [ 767FF54A552732CE772C2302025FA82F ] C:\WINDOWS\system32\wzcsapi.dll
23:37:24.0312 3932 C:\WINDOWS\system32\wzcsapi.dll - ok
23:37:24.0328 3932 [ 085ED2E391A871C7BAE87E0228B546BA ] C:\WINDOWS\system32\cscui.dll
23:37:24.0328 3932 C:\WINDOWS\system32\cscui.dll - ok
23:37:24.0328 3932 [ 56CE97FF94B7662A300D359CD6F4D601 ] C:\WINDOWS\system32\raschap.dll
23:37:24.0328 3932 C:\WINDOWS\system32\raschap.dll - ok
23:37:24.0343 3932 [ 50A166237A0FA771261275A405646CC0 ] C:\WINDOWS\system32\powrprof.dll
23:37:24.0343 3932 C:\WINDOWS\system32\powrprof.dll - ok
23:37:24.0359 3932 [ 3E2F3E2F4A82B7FAE23BAB864FB0F837 ] C:\WINDOWS\system32\dpcdll.dll
23:37:24.0359 3932 C:\WINDOWS\system32\dpcdll.dll - ok
23:37:24.0375 3932 [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] C:\WINDOWS\system32\netman.dll
23:37:24.0375 3932 C:\WINDOWS\system32\netman.dll - ok
23:37:24.0390 3932 [ 3637EC6C50E02BB6FD80DD41CF47853E ] C:\WINDOWS\system32\NavLogon.dll
23:37:24.0390 3932 C:\WINDOWS\system32\NavLogon.dll - ok
23:37:24.0390 3932 [ A93AEE1928A9D7CE3E16D24EC7380F89 ] C:\WINDOWS\system32\userinit.exe
23:37:24.0390 3932 C:\WINDOWS\system32\userinit.exe - ok
23:37:24.0406 3932 [ D95C71052E5EF63B55997FB31483D02F ] C:\WINDOWS\system32\wbem\wbemcomn.dll
23:37:24.0406 3932 C:\WINDOWS\system32\wbem\wbemcomn.dll - ok
23:37:24.0421 3932 [ 205ADD80FF8099B1A8101EB490B933D1 ] C:\WINDOWS\system32\wbem\wbemprox.dll
23:37:24.0421 3932 C:\WINDOWS\system32\wbem\wbemprox.dll - ok
23:37:24.0421 3932 [ 2203161EC24C210D51DB69C604F4A504 ] C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe
23:37:24.0421 3932 C:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe - ok
23:37:24.0437 3932 [ 062F837C1FBDB6A0A75F82EFC2EE8E74 ] C:\WINDOWS\system32\netshell.dll
23:37:24.0437 3932 C:\WINDOWS\system32\netshell.dll - ok
23:37:24.0453 3932 [ 235892E493845D64D890163CFEF90E97 ] C:\WINDOWS\system32\credui.dll
23:37:24.0453 3932 C:\WINDOWS\system32\credui.dll - ok
23:37:24.0468 3932 [ 4E8F3230BAC8C1CAADF01A8C728E1C5C ] C:\WINDOWS\system32\dot3dlg.dll
23:37:24.0468 3932 C:\WINDOWS\system32\dot3dlg.dll - ok
23:37:24.0468 3932 [ CA04959077AFE36369D37B3504740C87 ] C:\WINDOWS\system32\onex.dll
23:37:24.0468 3932 C:\WINDOWS\system32\onex.dll - ok
23:37:24.0484 3932 [ 5DB625E7D095604010CF84DE2D8ACFA6 ] C:\WINDOWS\system32\eappcfg.dll
23:37:24.0484 3932 C:\WINDOWS\system32\eappcfg.dll - ok
23:37:24.0500 3932 [ ABC4206543450C0666D152F4B65833B8 ] C:\WINDOWS\system32\eappprxy.dll
23:37:24.0500 3932 C:\WINDOWS\system32\eappprxy.dll - ok
23:37:24.0515 3932 [ 12896823FB95BFB3DC9B46BCAEDC9923 ] C:\WINDOWS\explorer.exe
23:37:24.0515 3932 C:\WINDOWS\explorer.exe - ok
23:37:24.0515 3932 [ 561FA2ABB31DFA8FAB762145F81667C2 ] C:\WINDOWS\system32\msvcp71.dll
23:37:24.0515 3932 C:\WINDOWS\system32\msvcp71.dll - ok
23:37:24.0531 3932 [ 9885DCB7F5FB550D9822B485A18E6AD7 ] C:\Program Files\Common Files\Symantec Shared\ccL40.dll
23:37:24.0531 3932 C:\Program Files\Common Files\Symantec Shared\ccL40.dll - ok
23:37:24.0546 3932 [ 86F1895AE8C5E8B17D99ECE768A70732 ] C:\WINDOWS\system32\msvcr71.dll
23:37:24.0546 3932 C:\WINDOWS\system32\msvcr71.dll - ok
23:37:24.0562 3932 [ B6E6F3F5B63053D5DC1F4EE32992492F ] C:\WINDOWS\system32\dbghelp.dll
23:37:24.0562 3932 C:\WINDOWS\system32\dbghelp.dll - ok
23:37:24.0578 3932 [ 9617743FA5D8770414858BBD58673095 ] C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll
23:37:24.0578 3932 C:\Program Files\Common Files\Symantec Shared\ccVrTrst.dll - ok
23:37:24.0593 3932 [ 67156D5A9AC356DC99D7BCCB388E3316 ] C:\WINDOWS\system32\wsock32.dll
23:37:24.0593 3932 C:\WINDOWS\system32\wsock32.dll - ok
23:37:24.0593 3932 [ E392E172687BE172F8600C5F41AB03D9 ] C:\WINDOWS\system32\browseui.dll
23:37:24.0593 3932 C:\WINDOWS\system32\browseui.dll - ok
23:37:24.0609 3932 [ 26CB10FA893F940AB09713FF46DCDADE ] C:\WINDOWS\system32\shdocvw.dll
23:37:24.0609 3932 C:\WINDOWS\system32\shdocvw.dll - ok
23:37:24.0625 3932 [ 04945313BC60488E0C14AD1167160659 ] C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe
23:37:24.0625 3932 C:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe - ok
23:37:24.0640 3932 [ B4ED498E3BFEE64E952BC44FC6057DB8 ] C:\WINDOWS\system32\desk.cpl
23:37:24.0640 3932 C:\WINDOWS\system32\desk.cpl - ok
23:37:24.0640 3932 [ A314EEA2A503A8E04085201E436384A5 ] C:\WINDOWS\system32\themeui.dll
23:37:24.0640 3932 C:\WINDOWS\system32\themeui.dll - ok
23:37:24.0656 3932 [ 6D778E0F95447E6546553EEEA709D03C ] C:\WINDOWS\system32\cmd.exe
23:37:24.0656 3932 C:\WINDOWS\system32\cmd.exe - ok
23:37:24.0671 3932 [ A2180B455AE266D66F38634DE018E7CE ] C:\WINDOWS\system32\ieframe.dll
23:37:24.0671 3932 C:\WINDOWS\system32\ieframe.dll - ok
23:37:24.0687 3932 [ 30390FDEF803EB3C87EC8A9B8E191519 ] C:\Program Files\Common Files\Symantec Shared\ccSet.dll
23:37:24.0687 3932 C:\Program Files\Common Files\Symantec Shared\ccSet.dll - ok
23:37:24.0687 3932 [ D3F72D50DE53F9F1F55240115AF4D42E ] C:\WINDOWS\system32\msi.dll
23:37:24.0687 3932 C:\WINDOWS\system32\msi.dll - ok
23:37:24.0703 3932 [ E8CA507335C5AA7BE0A05B11A3A3D625 ] C:\PROGRA~1\COMMON~1\SYMANT~1\SPBBC\SPBBCEvt.dll
23:37:24.0703 3932 C:\PROGRA~1\COMMON~1\SYMANT~1\SPBBC\SPBBCEvt.dll - ok
23:37:24.0718 3932 [ 84F572454B354D3D7E2D1F9E65A3DF11 ] C:\PROGRA~1\COMMON~1\SYMANT~1\ccSetEvt.dll
23:37:24.0718 3932 C:\PROGRA~1\COMMON~1\SYMANT~1\ccSetEvt.dll - ok
23:37:24.0734 3932 [ 0A6BCAB3BB4AD9D25E833FB3F840CAE0 ] C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe
23:37:24.0734 3932 C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe - ok
23:37:24.0750 3932 [ 55AFD4A9D5ED4AD40D5215CCDF4D65F3 ] C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe
23:37:24.0750 3932 C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe - ok
23:37:24.0750 3932 [ C14350FC0D47D806699C4F907FC6785B ] C:\WINDOWS\system32\cryptnet.dll
23:37:24.0750 3932 C:\WINDOWS\system32\cryptnet.dll - ok
23:37:24.0765 3932 [ 3CBA2210FA39C6ED7895634842E930DD ] C:\WINDOWS\system32\sensapi.dll
23:37:24.0765 3932 C:\WINDOWS\system32\sensapi.dll - ok
23:37:24.0781 3932 [ 684559A03CBC1D05BA120A18B0D8BA5D ] C:\WINDOWS\system32\winhttp.dll
23:37:24.0781 3932 C:\WINDOWS\system32\winhttp.dll - ok
23:37:24.0796 3932 [ F9D3C78CFE15271D80790677C893CE45 ] C:\WINDOWS\system32\cabinet.dll
23:37:24.0796 3932 C:\WINDOWS\system32\cabinet.dll - ok
23:37:24.0796 3932 [ AF814F7410549FCD2B035127F06D12C6 ] C:\Program Files\Lavasoft\Ad-Aware\RPAPI.dll
23:37:24.0796 3932 C:\Program Files\Lavasoft\Ad-Aware\RPAPI.dll - ok
23:37:24.0812 3932 [ B2EEE3DEE31F50E082E9C720A6D7757D ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
23:37:24.0812 3932 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll - ok
23:37:24.0828 3932 [ 7538050656FE5D63CB4B80349DD1CFE3 ] C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
23:37:24.0828 3932 C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll - ok
23:37:24.0843 3932 [ 5D43C9A33F18C707BA169AFDA88BDF30 ] C:\WINDOWS\system32\fltlib.dll
23:37:24.0843 3932 C:\WINDOWS\system32\fltlib.dll - ok
23:37:24.0859 3932 [ BF4ED9A78F1A299966906CB7DE598215 ] C:\Program Files\Lavasoft\Ad-Aware\Resources.dll
23:37:24.0859 3932 C:\Program Files\Lavasoft\Ad-Aware\Resources.dll - ok
23:37:24.0859 3932 [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] C:\WINDOWS\system32\schedsvc.dll
23:37:24.0859 3932 C:\WINDOWS\system32\schedsvc.dll - ok
23:37:24.0875 3932 [ E47E364C96467FD54FA44D59F927C3AB ] C:\WINDOWS\system32\msidle.dll
23:37:24.0875 3932 C:\WINDOWS\system32\msidle.dll - ok
23:37:24.0890 3932 [ 60784F891563FB1B767F70117FC2428F ] C:\WINDOWS\system32\spoolsv.exe
23:37:24.0890 3932 C:\WINDOWS\system32\spoolsv.exe - ok
23:37:24.0906 3932 [ 4044E880593FE1AC9942190FCE414BE7 ] C:\WINDOWS\system32\mstask.dll
23:37:24.0906 3932 C:\WINDOWS\system32\mstask.dll - ok
23:37:24.0921 3932 [ DEF7A7882BEC100FE0B2CE2549188F9D ] C:\WINDOWS\system32\audiosrv.dll
23:37:24.0921 3932 C:\WINDOWS\system32\audiosrv.dll - ok
23:37:24.0921 3932 [ 4B3D99792BE5BFA9296F4C3F0B7157D3 ] C:\WINDOWS\system32\acs.exe
23:37:24.0921 3932 C:\WINDOWS\system32\acs.exe - ok
23:37:
 
G

great_mazinga

New Member
Thread author
Verified
Apr 14, 2013
18
Last 20, so sorry this is such a mess.

23:37:58.0156 3344 TBiosDrv ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0156 3344 TBiosDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:37:58.0156 3344 tfsnboio ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0156 3344 tfsnboio ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:37:58.0156 3344 tfsncofs ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0156 3344 tfsncofs ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:37:58.0156 3344 tfsndrct ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0156 3344 tfsndrct ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:37:58.0156 3344 tfsndres ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0156 3344 tfsndres ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:37:58.0156 3344 tfsnifs ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0156 3344 tfsnifs ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:37:58.0156 3344 tfsnopio ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0156 3344 tfsnopio ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:37:58.0171 3344 tfsnpool ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0171 3344 tfsnpool ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:37:58.0171 3344 tfsnudf ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0171 3344 tfsnudf ( UnsignedFile.Multi.Generic ) - User select action: Skip
23:37:58.0171 3344 tfsnudfa ( UnsignedFile.Multi.Generic ) - skipped by user
23:37:58.0171 3344 tfsnudfa ( UnsignedFile.Multi.Generic ) - User select action: Skip


Fiery said:
This TDSSKiller log is so long :s

Just copy the last 20 lines on the log please :)
Click to expand...
 
Fiery

Fiery

Level 1
Jan 11, 2011
2,007
No worries :)

If you are no longer experiencing any other issues, your PC appears to be clean!

Double click on OTL to run it
  • Click on the Cleanup button at the top.
  • You will be asked to reboot the machine to finish the Cleanup process. Choose Yes
  • This will remove itself and other tools we may have used.

Also, open adwCleaner and click Uninstall



Now that your PC is clean, I recommend you to create a new System Restore point then purge the old ones after.

For XP
How to create a Restore Point in XP
Delete all restore points except the most recent one

For Vista
Create a restore point
Delete all but the most recent restore point

For Windows 7
Create a restore point
Delete all but the most recent restore point - Click the Delete all but the most recent restore point link



Keeping your programs (especially Adobe and Java products) updated is essential. Outdated programs make your PC more vulnerable to future malware threats. To help you:
  • Download and install Update Checker. It will notify you if any of your programs require an update.
  • Microsoft releases patches for Windows and Office products regularly to patch up Windows and Office product bugs and vulnerabilities.
  • Please ensure you update your system regularly and have automatic updates on. You can learn how to turn Automatic Updates on here

I also recommend you to switch your antivirus program to a better one. Here are some suggestions:

In addition to your antivirus, you need additional protection such as a firewall and behavioural blocker.


Other steps that you may want to do to further protect your system/files:
  • Sandboxie - "Quarantines" your browser so anything that you do in it will be isolated from your system.
  • Backup important files regulary to an external hard-drive or USB

Here are only a few suggestions that will improve your system security. Should you wish to allow us to make full recommendations and set your PC up with maximum security, please start a thread here. Our community of PC enthusiasts and experts will give you feedback and help you secure your system from future malware infections.

Should you want to try a product but don't know how it performs, here is a list of current reviews to help you decide.

Internet Explorer may be the most popular browser but it's definitely not the most secure browser. Consider using other browsers with addition add-ons to safeguard your system while browsing the internet.

Firefox is a more secure, faster browser than Internet Explorer. Firefox contains less vulnerabilities, reducing the risk of drive-by downloads. In addition, you can add the following add-ons to increase security.
  • KeyScramber - Encrypts your keystrokes to protect you against keyloggers that steals personal & banking information
  • AdBlock - Disable/blocks advertisements on websites so you won't accidentally click on a malicious ad.
  • NoScript - Disables Flash & Java contents to avoid exploits or drive-by attacks
  • Web of Trust - Shows the website rating by other users and blocks dangerous and poor-rated sites

Google Chrome is another good browser that is faster and more secure than Internet Explorer by having a sandbox feature. Additionally, you can add the following add-on to Chrome to heighten security.

Lastly, it is important to perform system maintenance on a regular basis. Here are a few tools and on-demand scanners that you should keep & use every 1-2 weeks to keep your system healthy.

Other than that, stay safe out there! If you have any other questions or concerns, feel free to ask :)

My virus removal help is always free. Should you wish to show your appreciation via a donation, it will be much appreciated.
 

Similar threads

Y
  • Locked
All of my browsers redirect to chrome or yahoo.
Replies
4
Views
400
Windows Malware Removal Help & Support
nasdaq
nasdaq
mbs5380
  • Locked
Lingering malware after removal of Chromestera.
Replies
4
Views
556
Windows Malware Removal Help & Support
nasdaq
nasdaq
D
  • Locked
Chrome extension cannot be removed. Causing issues. Malware.
Replies
3
Views
550
Windows Malware Removal Help & Support
nasdaq
nasdaq

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top