Go Back   Tech Support Forum > Security Center > Virus/Trojan/Spyware Help > Resolved HJT Threads

User Tag List

please help. had system check virus, now redirect

This is a discussion on please help. had system check virus, now redirect within the Resolved HJT Threads forums, part of the Tech Support Forum category. Had system check virus and removed approx two weeks ago. Computer still acting up. I ran TDSS Killer and I


 
 
Thread Tools Search this Thread
Old 02-26-2012, 12:31 PM   #1
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



Had system check virus and removed approx two weeks ago. Computer still acting up. I ran TDSS Killer and I believe I hit cure at the end. Since that I cannot get online. "Internet explorer cannot display the webpage" shows on the screen. Also i geta message that Mcafee real time scanning is off and if I turn it on it turns back off. I ran the logs and transferred them via flash drive because I can not get online on the laptop.
Thanks in advance for any help you can give me.



DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 9.0.8112.16421
Run by tony at 10:11:03 on 2012-02-26
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.1.1033.18.3061.2142 [GMT -6:00]
.
AV: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {86355677-4064-3EA7-ABB3-1B136EB04637}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: McAfee Anti-Virus and Anti-Spyware *Enabled/Updated* {3D54B793-665E-3129-9103-206115370C8A}
FW: McAfee Firewall *Enabled* {BE0ED752-0A0B-3FFF-80EC-B2269063014C}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\System32\WLTRYSVC.EXE
C:\Windows\System32\bcmwltry.exe
C:\Windows\system32\WLANExt.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\system32\taskeng.exe
C:\Windows\Explorer.EXE
C:\Program Files\DellTPad\Apoint.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Windows\System32\WLTRAY.EXE
C:\Program Files\Dell\MediaDirect\PCMService.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\Sigmatel\C-Major Audio\WDM\sttray.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\McAfee.com\Agent\mcagent.exe
C:\Program Files\McAfee\MAT\McPvTray.exe
C:\Program Files\McAfee Online Backup\MOBKstat.exe
C:\Program Files\Dell\QuickSet\quickset.exe
C:\Windows\system32\aestsrv.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\Intel\Intel Matrix Storage Manager\Iaantmon.exe
C:\Program Files\Kodak\AiO\Center\EKAiOHostService.exe
C:\Program Files\Common Files\Mcafee\McSvcHost\McSvHost.exe
C:\Windows\system32\mfevtps.exe
C:\Windows\system32\STacSV.exe
C:\Windows\system32\rundll32.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\DRIVERS\xaudio.exe
C:\Program Files\Common Files\McAfee\SystemCore\mcshield.exe
C:\Program Files\Common Files\McAfee\SystemCore\mfefire.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\DellTPad\ApMsgFwd.exe
C:\Program Files\DellTPad\HidFind.exe
C:\Program Files\DellTPad\Apntex.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\McAfee Online Backup\MOBKbackup.exe
C:\Program Files\McAfee Online Backup\MOBKbackup.exe
c:\PROGRA~1\mcafee\VIRUSS~1\mcvsshld.exe
C:\Program Files\Common Files\McAfee\Core\mchost.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uSearch Page = hxxp://www.google.com
uStart Page = hxxp://www.yahoo.com/?ilc=1
uWindow Title = Internet Explorer provided by Dell
uDefault_Page_URL = hxxp://www.google.com/ig/dell?hl=en&client=dell-usuk-rel&channel=us&ibd=1080711
uSearch Bar = hxxp://www.google.com/ie
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
uURLSearchHooks: H - No File
BHO: Adobe PDF Reader Link Helper: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelper.dll
BHO: MediaBar: {0974ba1e-64ec-11de-b2a5-e43756d89593} - c:\progra~1\bearsh~1\mediabar\toolbar\BearshareMediabarDx.dll
BHO: InternetContext Class: {2be38694-1044-4c28-8ade-5f0078226b48} - c:\program files\egrabber\listgrabber standard 2012\PxToolbarHelper.dll
BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\progra~1\micros~2\office14\GROOVEEX.DLL
BHO: SSVHelper Class: {761497bb-d6f0-462c-b6eb-d4daf1d92d43} - c:\program files\java\jre1.6.0_05\bin\ssv.dll
BHO: scriptproxy: {7db2d5a0-7241-4e79-b68d-6309f01c5231} - c:\program files\common files\mcafee\systemcore\ScriptSn.20120129232307.dll
BHO: MediaBar: {abb49b3b-ab7d-4ed0-9135-93fd5aa4f69f} - c:\progra~1\imesha~1\mediabar\toolbar\iMeshMediaBarDx.dll
BHO: McAfee SiteAdvisor BHO: {b164e929-a1b6-4a06-b104-2cd0e90a88ff} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
BHO: Office Document Cache Handler: {b4f3a835-0e21-4959-ba22-42b3008e02ff} - c:\progra~1\micros~2\office14\URLREDIR.DLL
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\program files\dell\bae\BAE.dll
TB: MediaBar: {abb49b3b-ab7d-4ed0-9135-93fd5aa4f69f} - c:\progra~1\imesha~1\mediabar\toolbar\iMeshMediaBarDx.dll
TB: MediaBar: {0974ba1e-64ec-11de-b2a5-e43756d89593} - c:\progra~1\bearsh~1\mediabar\toolbar\BearshareMediabarDx.dll
TB: eGrabber AutoNext: {acd1c8d6-2b2f-4f33-847a-6c7f9da71a84} - c:\program files\egrabber\listgrabber standard 2012\AutoNextBar.dll
TB: McAfee SiteAdvisor Toolbar: {0ebbbe48-bad4-4b4c-8e5a-516abecae064} - c:\progra~1\mcafee\sitead~1\mcieplg.dll
TB: {D4027C7F-154A-4066-A1AD-4243D8127440} - No File
uRun: [Facebook Update] "c:\users\tony\appdata\local\facebook\update\FacebookUpdate.exe" /c /nocrashserver
mRun: [ECenter] c:\dell\e-center\EULALauncher.exe
mRun: [Apoint] c:\program files\delltpad\Apoint.exe
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [IAAnotif] "c:\program files\intel\intel matrix storage manager\Iaanotif.exe"
mRun: [Broadcom Wireless Manager UI] c:\windows\system32\WLTRAY.exe
mRun: [dscactivate] "c:\program files\dell support center\gs_agent\custom\dsca.exe"
mRun: [PCMService] "c:\program files\dell\mediadirect\PCMService.exe"
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [Conime] %windir%\system32\conime.exe
mRun: [SigmatelSysTrayApp] %ProgramFiles%\SigmaTel\C-Major Audio\WDM\sttray.exe
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [EKIJ5000StatusMonitor] c:\windows\system32\spool\drivers\w32x86\3\EKIJ5000MUI.exe
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [TotalRecipeSearch Search Scope Monitor] "c:\progra~1\totalr~2\bar\1.bin\14srchmn.exe" /m=2 /w /h
mRun: [BCSSync] "c:\program files\microsoft office\office14\BCSSync.exe" /DelayServices
mRun: [mcui_exe] "c:\program files\mcafee.com\agent\mcagent.exe" /runkey
mRun: [McPvTray_exe] "c:\program files\mcafee\mat\McPvTray.exe"
dRunOnce: [KodakHomeCenter] "c:\program files\kodak\aio\center\AiOHomeCenter.exe"
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\digita~1.lnk - c:\program files\digital line detect\DLG.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\mcafee~1.lnk - c:\program files\mcafee online backup\MOBKstat.exe
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\quickset.lnk - c:\program files\dell\quickset\quickset.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office14\EXCEL.EXE/3000
IE: Se&nd to OneNote - c:\progra~1\micros~2\office14\ONBttnIE.dll/105
IE: Send image to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: Send page to &Bluetooth Device... - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {1B617093-5CD4-42f5-91CA-AD1004C83588} - c:\program files\egrabber\listgrabber standard 2012\InternetAddress.exe
IE: {CCA281CA-C863-46ef-9331-5C8D4460577F} - c:\program files\widcomm\bluetooth software\btsendto_ie.htm
IE: {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBC} - c:\program files\java\jre1.6.0_05\bin\ssv.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\program files\microsoft office\office14\ONBttnIE.dll
IE: {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - {FFFDC614-B694-4AE6-AB38-5D6374584B52} - c:\program files\microsoft office\office14\ONBttnIELinkedNotes.dll
LSP: mswsock.dll
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - hxxp://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
TCP: DhcpNameServer = 192.168.1.254
TCP: Interfaces\{C1424037-DFEC-4571-A52F-09894A97D277} : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{FC57DAF7-755A-486B-9B55-2343F9C32149} : DhcpNameServer = 65.32.1.65 65.32.1.70
Filter: application/x-mfe-ipt - {3EF5086B-5478-4598-A054-786C45D75692} - c:\progra~1\mcafee\msc\McSnIePl.dll
Filter: text/xml - {807573E5-5146-11D5-A672-00B0D022E945} - c:\program files\common files\microsoft shared\office14\MSOXMLMF.DLL
Handler: dssrequest - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Handler: sacore - {5513F07E-936B-4E52-9B00-067394E91CC5} - c:\progra~1\mcafee\sitead~1\McIEPlg.dll
Notify: GoToAssist - c:\program files\citrix\gotoassist\514\G2AWinLogon.dll
Notify: igfxcui - igfxdev.dll
SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\progra~1\micros~2\office14\GROOVEEX.DLL
.
============= SERVICES / DRIVERS ===============
.
R0 McPvDrv;McPvDrv Driver;c:\windows\system32\drivers\McPvDrv.sys [2012-1-29 64048]
R0 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2011-10-15 464176]
R1 mfenlfk;McAfee NDIS Light Filter;c:\windows\system32\drivers\mfenlfk.sys [2012-1-29 64880]
R1 mfewfpk;McAfee Inc. mfewfpk;c:\windows\system32\drivers\mfewfpk.sys [2012-1-29 165680]
R1 MOBKFilter;MOBKFilter;c:\windows\system32\drivers\MOBK.sys [2012-1-29 54776]
R2 AESTFilters;Andrea ST Filters Service;c:\windows\system32\AEstSrv.exe [2008-7-10 73728]
R2 FontCache;Windows Font Cache Service;c:\windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2008-1-20 21504]
R2 Kodak AiO Network Discovery Service;Kodak AiO Network Discovery Service;c:\program files\kodak\aio\center\EKAiOHostService.exe [2011-12-19 394672]
R2 McAfee SiteAdvisor Service;McAfee SiteAdvisor Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-1-29 214904]
R2 McMPFSvc;McAfee Personal Firewall Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-1-29 214904]
R2 McNaiAnn;McAfee VirusScan Announcer;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-1-29 214904]
R2 McProxy;McAfee Proxy Service;c:\program files\common files\mcafee\mcsvchost\McSvHost.exe [2012-1-29 214904]
R2 McShield;McAfee McShield;c:\program files\common files\mcafee\systemcore\mcshield.exe [2012-1-29 166288]
R2 mfefire;McAfee Firewall Core Service;c:\program files\common files\mcafee\systemcore\mfefire.exe [2012-1-29 160608]
R2 mfevtp;McAfee Validation Trust Protection Service;c:\windows\system32\mfevtps.exe [2012-1-29 150856]
R2 MOBKbackup;McAfee Online Backup;c:\program files\mcafee online backup\MOBKbackup.exe [2010-4-13 229688]
R2 UMVPFSrv;UMVPFSrv;c:\program files\common files\logishrd\lvmvfm\UMVPFSrv.exe [2011-8-19 450848]
R3 cfwids;McAfee Inc. cfwids;c:\windows\system32\drivers\cfwids.sys [2012-1-29 57600]
R3 IntcHdmiAddService;Intel(R) High Definition Audio HDMI Service;c:\windows\system32\drivers\IntcHdmi.sys [2008-7-10 111616]
R3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2012-1-29 180816]
R3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2012-1-29 59456]
R3 mfefirek;McAfee Inc. mfefirek;c:\windows\system32\drivers\mfefirek.sys [2012-1-29 338176]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S3 mferkdet;McAfee Inc. mferkdet;c:\windows\system32\drivers\mferkdet.sys [2012-1-29 87656]
S3 Microsoft SharePoint Workspace Audit Service;Microsoft SharePoint Workspace Audit Service;c:\program files\microsoft office\office14\GROOVE.EXE [2011-6-12 31125880]
S3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2012-02-23 17:00:04 -------- d-sh--w- C:\found.000
2012-02-23 16:55:53 -------- d-----w- C:\TDSSKiller_Quarantine
2012-02-23 03:28:53 -------- d-----w- c:\windows\Intuit
2012-02-16 03:40:11 680448 ----a-w- c:\windows\system32\msvcrt.dll
2012-02-16 03:40:03 2044416 ----a-w- c:\windows\system32\win32k.sys
2012-02-16 03:39:58 2409784 ----a-w- c:\program files\windows mail\OESpamFilter.dat
2012-02-06 15:31:03 0 --sha-w- c:\windows\system32\dds_trash_log.cmd
2012-01-30 05:26:57 -------- d-----w- c:\program files\McAfeeMOBK
2012-01-30 05:26:42 54776 ----a-w- c:\windows\system32\drivers\MOBK.sys
2012-01-30 05:26:32 -------- d-----w- c:\program files\McAfee Online Backup
2012-01-30 05:26:13 64048 ----a-w- c:\windows\system32\drivers\McPvDrv.sys
2012-01-30 05:25:41 -------- d-----w- c:\users\tony\appdata\local\McAfee Anti-Theft
2012-01-30 05:23:06 9608 ----a-w- c:\windows\system32\drivers\mfeclnk.sys
2012-01-30 05:22:58 165680 ----a-w- c:\windows\system32\drivers\mfewfpk.sys
2012-01-30 05:22:57 87656 ----a-w- c:\windows\system32\drivers\mferkdet.sys
2012-01-30 05:22:57 64880 ----a-w- c:\windows\system32\drivers\mfenlfk.sys
2012-01-30 05:22:56 338176 ----a-w- c:\windows\system32\drivers\mfefirek.sys
2012-01-30 05:22:55 59456 ----a-w- c:\windows\system32\drivers\mfebopk.sys
2012-01-30 05:22:55 57600 ----a-w- c:\windows\system32\drivers\cfwids.sys
2012-01-30 05:22:55 180816 ----a-w- c:\windows\system32\drivers\mfeavfk.sys
2012-01-30 05:21:58 -------- d-----w- c:\program files\GridinSoft Trojan Killer
2012-01-30 05:10:30 150856 ----a-w- c:\windows\system32\mfevtps.exe
2012-01-30 05:03:57 -------- d-----w- c:\program files\McAfee.com
2012-01-30 00:07:09 -------- d-----w- c:\program files\PC Tools Security
2012-01-30 00:07:09 -------- d-----w- c:\program files\common files\PC Tools
2012-01-30 00:05:44 -------- d-----w- c:\programdata\PC Tools
.
==================== Find3M ====================
.
2012-02-23 16:57:48 72192 ----a-w- c:\windows\system32\drivers\tdx.sys
2012-01-19 1501 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-14 03:04:54 1798656 ----a-w- c:\windows\system32\jscript9.dll
2011-12-14 02:57:18 1127424 ----a-w- c:\windows\system32\wininet.dll
2011-12-14 02:56:58 1427456 ----a-w- c:\windows\system32\inetcpl.cpl
2011-12-14 02:50:04 2382848 ----a-w- c:\windows\system32\mshtml.tlb
.
============= FINISH: 10:12:31.95 ===============
Attached Files
File Type: zip log.zip (83.1 KB, 42 views)
Tlaptony is offline  
Sponsored Links
Advertisement
 
Old 02-27-2012, 05:02 AM   #2
TSF Team
Manager Emeritus
 
Join Date: Jun 2008
Location: London UK
Posts: 4,966
OS: Windows 7 SP1 x64



Hi Tlaptony, welcome to TSF.

A log should have been saved by TDSSKiller, please locate your root drive (typically C:\) and attach all TDSSKiller logs found there.

For example, the logs will appear as C:\TDSSKiller.2.7.7.0_date_time_log.txt
Will Watts is offline  
Old 02-27-2012, 07:55 AM   #3
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



10:52:56.0018 4984 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
10:52:56.0478 4984 ============================================================
10:52:56.0478 4984 Current date / time: 2012/02/23 10:52:56.0478
10:52:56.0478 4984 SystemInfo:
10:52:56.0479 4984
10:52:56.0479 4984 OS Version: 6.0.6002 ServicePack: 2.0
10:52:56.0479 4984 Product type: Workstation
10:52:56.0479 4984 ComputerName: TONY-LAPTOP
10:52:56.0479 4984 UserName: tony
10:52:56.0479 4984 Windows directory: C:\Windows
10:52:56.0479 4984 System windows directory: C:\Windows
10:52:56.0479 4984 Processor architecture: Intel x86
10:52:56.0479 4984 Number of processors: 2
10:52:56.0479 4984 Page size: 0x1000
10:52:56.0479 4984 Boot type: Normal boot
10:52:56.0479 4984 ============================================================
10:52:57.0036 4984 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:52:57.0038 4984 \Device\Harddisk0\DR0:
10:52:57.0038 4984 MBR used
10:52:57.0038 4984 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1388000
10:52:57.0038 4984 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C000, BlocksNum 0x1B929168
10:52:57.0136 4984 Initialize success
10:52:57.0136 4984 ============================================================
10:53:46.0471 2644 Deinitialize success


10:54:52.0522 4792 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
10:54:53.0067 4792 ============================================================
10:54:53.0067 4792 Current date / time: 2012/02/23 10:54:53.0067
10:54:53.0067 4792 SystemInfo:
10:54:53.0067 4792
10:54:53.0067 4792 OS Version: 6.0.6002 ServicePack: 2.0
10:54:53.0067 4792 Product type: Workstation
10:54:53.0068 4792 ComputerName: TONY-LAPTOP
10:54:53.0068 4792 UserName: tony
10:54:53.0068 4792 Windows directory: C:\Windows
10:54:53.0068 4792 System windows directory: C:\Windows
10:54:53.0068 4792 Processor architecture: Intel x86
10:54:53.0068 4792 Number of processors: 2
10:54:53.0068 4792 Page size: 0x1000
10:54:53.0068 4792 Boot type: Normal boot
10:54:53.0068 4792 ============================================================
10:54:53.0655 4792 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
10:54:53.0658 4792 \Device\Harddisk0\DR0:
10:54:53.0658 4792 MBR used
10:54:53.0658 4792 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1388000
10:54:53.0658 4792 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C000, BlocksNum 0x1B929168
10:54:53.0756 4792 Initialize success
10:54:53.0756 4792 ============================================================
10:54:56.0769 5112 ============================================================
10:54:56.0769 5112 Scan started
10:54:56.0769 5112 Mode: Manual;
10:54:56.0769 5112 ============================================================
10:54:57.0550 5112 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
10:54:57.0557 5112 ACPI - ok
10:54:57.0708 5112 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
10:54:57.0719 5112 adp94xx - ok
10:54:57.0834 5112 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
10:54:57.0843 5112 adpahci - ok
10:54:57.0949 5112 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
10:54:57.0953 5112 adpu160m - ok
10:54:58.0068 5112 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
10:54:58.0073 5112 adpu320 - ok
10:54:58.0226 5112 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
10:54:58.0234 5112 AFD - ok
10:54:58.0356 5112 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
10:54:58.0359 5112 agp440 - ok
10:54:58.0449 5112 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
10:54:58.0452 5112 aic78xx - ok
10:54:58.0577 5112 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
10:54:58.0578 5112 aliide - ok
10:54:58.0697 5112 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
10:54:58.0699 5112 amdagp - ok
10:54:58.0803 5112 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
10:54:58.0805 5112 amdide - ok
10:54:58.0918 5112 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
10:54:58.0921 5112 AmdK7 - ok
10:54:59.0031 5112 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
10:54:59.0034 5112 AmdK8 - ok
10:54:59.0163 5112 ApfiltrService (a80230bd04f0b8bf05185b369bb1cbb8) C:\Windows\system32\DRIVERS\Apfiltr.sys
10:54:59.0168 5112 ApfiltrService - ok
10:54:59.0449 5112 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
10:54:59.0449 5112 arc - ok
10:54:59.0574 5112 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
10:54:59.0574 5112 arcsas - ok
10:54:59.0792 5112 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
10:54:59.0808 5112 AsyncMac - ok
10:54:59.0917 5112 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
10:54:59.0932 5112 atapi - ok
10:55:00.0042 5112 BCM42RLY - ok
10:55:00.0229 5112 BCM43XX (cdf7f28ffd693b1b4137845dd1ef1ccc) C:\Windows\system32\DRIVERS\bcmwl6.sys
10:55:00.0260 5112 BCM43XX - ok
10:55:00.0385 5112 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
10:55:00.0385 5112 Beep - ok
10:55:00.0510 5112 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
10:55:00.0510 5112 blbdrive - ok
10:55:00.0744 5112 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
10:55:00.0790 5112 bowser - ok
10:55:00.0931 5112 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
10:55:00.0931 5112 BrFiltLo - ok
10:55:01.0149 5112 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
10:55:01.0149 5112 BrFiltUp - ok
10:55:01.0321 5112 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
10:55:01.0321 5112 Brserid - ok
10:55:01.0430 5112 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
10:55:01.0430 5112 BrSerWdm - ok
10:55:01.0711 5112 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
10:55:01.0711 5112 BrUsbMdm - ok
10:55:01.0867 5112 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
10:55:01.0898 5112 BrUsbSer - ok
10:55:02.0070 5112 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
10:55:02.0070 5112 BthEnum - ok
10:55:02.0272 5112 BTHMODEM (9a966a8e86d1771911ae34a20d11bff3) C:\Windows\system32\DRIVERS\bthmodem.sys
10:55:02.0272 5112 BTHMODEM - ok
10:55:02.0460 5112 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
10:55:02.0460 5112 BthPan - ok
10:55:02.0694 5112 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
10:55:02.0725 5112 BTHPORT - ok
10:55:02.0834 5112 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
10:55:02.0834 5112 BTHUSB - ok
10:55:02.0959 5112 btwaudio (4a28e7bd365377d0512b7ef8c7596d2c) C:\Windows\system32\drivers\btwaudio.sys
10:55:02.0959 5112 btwaudio - ok
10:55:03.0052 5112 btwavdt (5ffde57253d665067b0886612817eb11) C:\Windows\system32\drivers\btwavdt.sys
10:55:03.0068 5112 btwavdt - ok
10:55:03.0162 5112 btwrchid (ab07dc8b05c31a4f95fc73019be9db15) C:\Windows\system32\DRIVERS\btwrchid.sys
10:55:03.0162 5112 btwrchid - ok
10:55:03.0271 5112 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
10:55:03.0271 5112 cdfs - ok
10:55:03.0380 5112 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
10:55:03.0380 5112 cdrom - ok
10:55:03.0489 5112 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\Windows\system32\drivers\cfwids.sys
10:55:03.0489 5112 cfwids - ok
10:55:03.0567 5112 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
10:55:03.0567 5112 circlass - ok
10:55:03.0676 5112 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
10:55:03.0723 5112 CLFS - ok
10:55:03.0832 5112 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
10:55:03.0832 5112 CmBatt - ok
10:55:03.0910 5112 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
10:55:03.0926 5112 cmdide - ok
10:55:04.0035 5112 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
10:55:04.0035 5112 Compbatt - ok
10:55:04.0222 5112 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
10:55:04.0238 5112 crcdisk - ok
10:55:04.0441 5112 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
10:55:04.0441 5112 Crusoe - ok
10:55:04.0659 5112 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
10:55:04.0722 5112 DfsC - ok
10:55:04.0940 5112 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
10:55:04.0940 5112 disk - ok
10:55:05.0190 5112 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
10:55:05.0190 5112 drmkaud - ok
10:55:05.0408 5112 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
10:55:05.0486 5112 DXGKrnl - ok
10:55:05.0736 5112 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
10:55:05.0767 5112 e1express - ok
10:55:05.0954 5112 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
10:55:05.0970 5112 E1G60 - ok
10:55:06.0157 5112 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
10:55:06.0172 5112 Ecache - ok
10:55:06.0297 5112 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
10:55:06.0313 5112 elxstor - ok
10:55:06.0422 5112 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
10:55:06.0422 5112 ErrDev - ok
10:55:06.0656 5112 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
10:55:06.0672 5112 exfat - ok
10:55:06.0874 5112 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
10:55:06.0890 5112 fastfat - ok
10:55:07.0030 5112 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
10:55:07.0030 5112 fdc - ok
10:55:07.0155 5112 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
10:55:07.0155 5112 FileInfo - ok
10:55:07.0264 5112 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
10:55:07.0264 5112 Filetrace - ok
10:55:07.0358 5112 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
10:55:07.0358 5112 flpydisk - ok
10:55:07.0514 5112 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
10:55:07.0514 5112 FltMgr - ok
10:55:07.0639 5112 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
10:55:07.0639 5112 Fs_Rec - ok
10:55:07.0764 5112 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
10:55:07.0764 5112 gagp30kx - ok
10:55:07.0888 5112 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:55:07.0888 5112 GEARAspiWDM - ok
10:55:08.0076 5112 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
10:55:08.0091 5112 HDAudBus - ok
10:55:08.0200 5112 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
10:55:08.0200 5112 HidBth - ok
10:55:08.0310 5112 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
10:55:08.0310 5112 HidIr - ok
10:55:08.0434 5112 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
10:55:08.0434 5112 HidUsb - ok
10:55:08.0528 5112 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
10:55:08.0528 5112 HpCISSs - ok
10:55:08.0668 5112 HSF_DPV (e9e589c9ab799f52e18f057635a2b362) C:\Windows\system32\DRIVERS\HSX_DPV.sys
10:55:08.0700 5112 HSF_DPV - ok
10:55:08.0809 5112 HSXHWAZL (7845d2385f4dc7dfb3ccaf0c2fa4948e) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
10:55:08.0824 5112 HSXHWAZL - ok
10:55:08.0934 5112 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
10:55:08.0949 5112 HTTP - ok
10:55:09.0043 5112 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
10:55:09.0043 5112 i2omp - ok
10:55:09.0168 5112 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
10:55:09.0168 5112 i8042prt - ok
10:55:09.0277 5112 iaStor (997e8f5939f2d12cd9f2e6b395724c16) C:\Windows\system32\drivers\iastor.sys
10:55:09.0292 5112 iaStor - ok
10:55:09.0402 5112 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
10:55:09.0402 5112 iaStorV - ok
10:55:09.0604 5112 igfx (c134e69ce901422d1f2d7ea8d69098fe) C:\Windows\system32\DRIVERS\igdkmd32.sys
10:55:09.0667 5112 igfx - ok
10:55:09.0823 5112 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
10:55:09.0823 5112 iirsp - ok
10:55:09.0994 5112 IntcHdmiAddService (98d303ccb3415e9202e82043b37d66dc) C:\Windows\system32\drivers\IntcHdmi.sys
10:55:09.0994 5112 IntcHdmiAddService - ok
10:55:10.0182 5112 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\DRIVERS\intelide.sys
10:55:10.0182 5112 intelide - ok
10:55:10.0338 5112 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
10:55:10.0353 5112 intelppm - ok
10:55:10.0462 5112 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:55:10.0462 5112 IpFilterDriver - ok
10:55:10.0540 5112 IpInIp - ok
10:55:10.0634 5112 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
10:55:10.0650 5112 IPMIDRV - ok
10:55:10.0790 5112 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
10:55:10.0821 5112 IPNAT - ok
10:55:10.0962 5112 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
10:55:10.0962 5112 IRENUM - ok
10:55:11.0055 5112 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
10:55:11.0055 5112 isapnp - ok
10:55:11.0180 5112 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
10:55:11.0180 5112 iScsiPrt - ok
10:55:11.0274 5112 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
10:55:11.0289 5112 iteatapi - ok
10:55:11.0383 5112 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
10:55:11.0383 5112 iteraid - ok
10:55:11.0476 5112 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
10:55:11.0476 5112 kbdclass - ok
10:55:11.0617 5112 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
10:55:11.0617 5112 kbdhid - ok
10:55:11.0788 5112 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
10:55:11.0788 5112 KSecDD - ok
10:55:11.0929 5112 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
10:55:11.0929 5112 lltdio - ok
10:55:12.0054 5112 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
10:55:12.0054 5112 LSI_FC - ok
10:55:12.0147 5112 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
10:55:12.0163 5112 LSI_SAS - ok
10:55:12.0272 5112 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
10:55:12.0272 5112 LSI_SCSI - ok
10:55:12.0366 5112 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
10:55:12.0381 5112 luafv - ok
10:55:12.0522 5112 LVRS (7521c0c58ee91be90b6cc33e792d10c7) C:\Windows\system32\DRIVERS\lvrs.sys
10:55:12.0522 5112 LVRS - ok
10:55:12.0802 5112 LVUVC (37e57c48af530df01cdd4e8a2ad77b51) C:\Windows\system32\DRIVERS\lvuvc.sys
10:55:12.0943 5112 LVUVC - ok
10:55:13.0068 5112 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
10:55:13.0068 5112 MBAMProtector - ok
10:55:13.0302 5112 McPvDrv (000751813ecef491689176e72b3a8bee) C:\Windows\system32\drivers\McPvDrv.sys
10:55:13.0302 5112 McPvDrv - ok
10:55:13.0426 5112 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
10:55:13.0426 5112 mdmxsdk - ok
10:55:13.0536 5112 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
10:55:13.0536 5112 megasas - ok
10:55:13.0645 5112 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
10:55:13.0645 5112 MegaSR - ok
10:55:13.0754 5112 mfeapfk (36b47b1e9c537f8f2b4481084b8f7d22) C:\Windows\system32\drivers\mfeapfk.sys
10:55:13.0754 5112 mfeapfk - ok
10:55:13.0879 5112 mfeavfk (cde41293db871a75cd99eb0ce781356b) C:\Windows\system32\drivers\mfeavfk.sys
10:55:13.0894 5112 mfeavfk - ok
10:55:14.0004 5112 mfeavfk01 - ok
10:55:14.0066 5112 mfebopk (e22385f64bdf0ad81157479496e33c4a) C:\Windows\system32\drivers\mfebopk.sys
10:55:14.0066 5112 mfebopk - ok
10:55:14.0191 5112 mfefirek (215666a8a85023ef019b510cbb67f678) C:\Windows\system32\drivers\mfefirek.sys
10:55:14.0206 5112 mfefirek - ok
10:55:14.0316 5112 mfehidk (56d330981866a72f061dd16cc5004513) C:\Windows\system32\drivers\mfehidk.sys
10:55:14.0331 5112 mfehidk - ok
10:55:14.0425 5112 mfenlfk (b41bacc049cdb916a52b1448bf30d6ab) C:\Windows\system32\DRIVERS\mfenlfk.sys
10:55:14.0425 5112 mfenlfk - ok
10:55:14.0550 5112 mferkdet (89b564d63c53fc0c6782ab07eea63acf) C:\Windows\system32\drivers\mferkdet.sys
10:55:14.0550 5112 mferkdet - ok
10:55:14.0674 5112 mfewfpk (c2ff7473a60c0fb2df145ab686889653) C:\Windows\system32\drivers\mfewfpk.sys
10:55:14.0690 5112 mfewfpk - ok
10:55:14.0955 5112 MOBKFilter (e896775837a8bce436348df460522394) C:\Windows\system32\DRIVERS\MOBK.sys
10:55:14.0986 5112 MOBKFilter - ok
10:55:15.0096 5112 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
10:55:15.0096 5112 Modem - ok
10:55:15.0205 5112 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
10:55:15.0205 5112 monitor - ok
10:55:15.0298 5112 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
10:55:15.0314 5112 mouclass - ok
10:55:15.0423 5112 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
10:55:15.0423 5112 mouhid - ok
10:55:15.0532 5112 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
10:55:15.0532 5112 MountMgr - ok
10:55:15.0626 5112 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
10:55:15.0626 5112 mpio - ok
10:55:15.0720 5112 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
10:55:15.0720 5112 mpsdrv - ok
10:55:15.0907 5112 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
10:55:15.0907 5112 Mraid35x - ok
10:55:16.0032 5112 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
10:55:16.0032 5112 MRxDAV - ok
10:55:16.0156 5112 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:55:16.0156 5112 mrxsmb - ok
10:55:16.0297 5112 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:55:16.0297 5112 mrxsmb10 - ok
10:55:16.0422 5112 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:55:16.0437 5112 mrxsmb20 - ok
10:55:16.0531 5112 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
10:55:16.0531 5112 msahci - ok
10:55:16.0640 5112 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
10:55:16.0640 5112 msdsm - ok
10:55:16.0765 5112 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
10:55:16.0765 5112 Msfs - ok
10:55:16.0905 5112 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
10:55:16.0921 5112 msisadrv - ok
10:55:17.0046 5112 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
10:55:17.0046 5112 MSKSSRV - ok
10:55:17.0155 5112 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
10:55:17.0155 5112 MSPCLOCK - ok
10:55:17.0264 5112 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
10:55:17.0264 5112 MSPQM - ok
10:55:17.0373 5112 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
10:55:17.0389 5112 MsRPC - ok
10:55:17.0482 5112 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
10:55:17.0482 5112 mssmbios - ok
10:55:17.0592 5112 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
10:55:17.0607 5112 MSTEE - ok
10:55:17.0732 5112 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
10:55:17.0732 5112 Mup - ok
10:55:17.0872 5112 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
10:55:17.0872 5112 NativeWifiP - ok
10:55:18.0044 5112 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
10:55:18.0075 5112 NDIS - ok
10:55:18.0184 5112 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
10:55:18.0184 5112 NdisTapi - ok
10:55:18.0294 5112 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
10:55:18.0294 5112 Ndisuio - ok
10:55:18.0434 5112 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
10:55:18.0434 5112 NdisWan - ok
10:55:18.0543 5112 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
10:55:18.0559 5112 NDProxy - ok
10:55:18.0668 5112 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
10:55:18.0668 5112 NetBIOS - ok
10:55:18.0793 5112 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
10:55:18.0808 5112 netbt - ok
10:55:18.0949 5112 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
10:55:18.0949 5112 nfrd960 - ok
10:55:19.0074 5112 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
10:55:19.0074 5112 Npfs - ok
10:55:19.0198 5112 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
10:55:19.0198 5112 nsiproxy - ok
10:55:19.0370 5112 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
10:55:19.0401 5112 Ntfs - ok
10:55:19.0526 5112 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
10:55:19.0526 5112 ntrigdigi - ok
10:55:19.0635 5112 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
10:55:19.0635 5112 Null - ok
10:55:19.0760 5112 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
10:55:19.0760 5112 nvraid - ok
10:55:19.0869 5112 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
10:55:19.0869 5112 nvstor - ok
10:55:19.0978 5112 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
10:55:19.0994 5112 nv_agp - ok
10:55:20.0072 5112 NwlnkFlt - ok
10:55:20.0181 5112 NwlnkFwd - ok
10:55:20.0322 5112 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
10:55:20.0322 5112 ohci1394 - ok
10:55:20.0462 5112 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
10:55:20.0478 5112 Parport - ok
10:55:20.0602 5112 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
10:55:20.0602 5112 partmgr - ok
10:55:20.0743 5112 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
10:55:20.0743 5112 Parvdm - ok
10:55:20.0883 5112 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
10:55:20.0883 5112 pci - ok
10:55:21.0039 5112 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
10:55:21.0039 5112 pciide - ok
10:55:21.0133 5112 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
10:55:21.0148 5112 pcmcia - ok
10:55:21.0507 5112 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
10:55:21.0554 5112 PEAUTH - ok
10:55:21.0928 5112 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
10:55:21.0928 5112 PptpMiniport - ok
10:55:22.0896 5112 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
10:55:22.0896 5112 Processor - ok
10:55:23.0052 5112 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
10:55:23.0052 5112 PSched - ok
10:55:23.0192 5112 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\Windows\system32\Drivers\PxHelp20.sys
10:55:23.0208 5112 PxHelp20 - ok
10:55:23.0364 5112 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
10:55:23.0395 5112 ql2300 - ok
10:55:23.0676 5112 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
10:55:23.0676 5112 ql40xx - ok
10:55:23.0816 5112 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
10:55:23.0816 5112 QWAVEdrv - ok
10:55:24.0066 5112 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
10:55:24.0128 5112 R300 - ok
10:55:24.0315 5112 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
10:55:24.0315 5112 RasAcd - ok
10:55:24.0549 5112 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:55:24.0565 5112 Rasl2tp - ok
10:55:24.0768 5112 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
10:55:24.0768 5112 RasPppoe - ok
10:55:24.0955 5112 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
10:55:24.0970 5112 RasSstp - ok
10:55:25.0158 5112 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
10:55:25.0158 5112 rdbss - ok
10:55:25.0329 5112 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:55:25.0329 5112 RDPCDD - ok
10:55:25.0548 5112 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
10:55:25.0563 5112 rdpdr - ok
10:55:25.0750 5112 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
10:55:25.0750 5112 RDPENCDD - ok
10:55:26.0000 5112 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
10:55:26.0016 5112 RDPWD - ok
10:55:26.0218 5112 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
10:55:26.0218 5112 RFCOMM - ok
10:55:26.0437 5112 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
10:55:26.0437 5112 rimmptsk - ok
10:55:26.0593 5112 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
10:55:26.0593 5112 rimsptsk - ok
10:55:26.0796 5112 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
10:55:26.0796 5112 rismxdp - ok
10:55:26.0936 5112 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
10:55:26.0936 5112 rspndr - ok
10:55:27.0279 5112 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
10:55:27.0279 5112 sbp2port - ok
10:55:27.0638 5112 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
10:55:27.0638 5112 sdbus - ok
10:55:27.0841 5112 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
10:55:27.0841 5112 secdrv - ok
10:55:28.0028 5112 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
10:55:28.0028 5112 Serenum - ok
10:55:28.0184 5112 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
10:55:28.0184 5112 Serial - ok
10:55:29.0042 5112 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
10:55:29.0042 5112 sermouse - ok
10:55:29.0292 5112 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
10:55:29.0292 5112 sffdisk - ok
10:55:29.0604 5112 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
10:55:29.0604 5112 sffp_mmc - ok
10:55:30.0165 5112 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
10:55:30.0165 5112 sffp_sd - ok
10:55:30.0274 5112 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
10:55:30.0274 5112 sfloppy - ok
10:55:30.0430 5112 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
10:55:30.0430 5112 sisagp - ok
10:55:30.0524 5112 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
10:55:30.0524 5112 SiSRaid2 - ok
10:55:30.0602 5112 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
10:55:30.0618 5112 SiSRaid4 - ok
10:55:30.0820 5112 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
10:55:30.0820 5112 Smb - ok
10:55:30.0945 5112 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
10:55:30.0945 5112 spldr - ok
10:55:31.0054 5112 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
10:55:31.0054 5112 srv - ok
10:55:31.0195 5112 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
10:55:31.0195 5112 srv2 - ok
10:55:31.0413 5112 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
10:55:31.0413 5112 srvnet - ok
10:55:31.0554 5112 STHDA (6a2a5e809c2c0178326d92b19ee4aad3) C:\Windows\system32\drivers\stwrt.sys
10:55:31.0569 5112 STHDA - ok
10:55:31.0725 5112 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
10:55:31.0725 5112 swenum - ok
10:55:31.0850 5112 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
10:55:31.0850 5112 Symc8xx - ok
10:55:31.0975 5112 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
10:55:31.0975 5112 Sym_hi - ok
10:55:32.0100 5112 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
10:55:32.0100 5112 Sym_u3 - ok
10:55:32.0287 5112 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
10:55:32.0318 5112 Tcpip - ok
10:55:32.0474 5112 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
10:55:32.0490 5112 Tcpip6 - ok
10:55:32.0708 5112 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
10:55:32.0708 5112 tcpipreg - ok
10:55:32.0817 5112 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
10:55:32.0817 5112 TDPIPE - ok
10:55:32.0926 5112 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
10:55:32.0926 5112 TDTCP - ok
10:55:33.0082 5112 tdx (02357d46a465b5e2c6d0bbf41694a5f8) C:\Windows\system32\DRIVERS\tdx.sys
10:55:33.0082 5112 tdx ( Virus.Win32.ZAccess.k ) - infected
10:55:33.0082 5112 tdx - detected Virus.Win32.ZAccess.k (0)
10:55:33.0238 5112 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
10:55:33.0238 5112 TermDD - ok
10:55:33.0394 5112 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:55:33.0394 5112 tssecsrv - ok
10:55:33.0504 5112 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
10:55:33.0504 5112 tunmp - ok
10:55:33.0940 5112 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
10:55:33.0940 5112 tunnel - ok
10:55:34.0065 5112 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
10:55:34.0065 5112 uagp35 - ok
10:55:34.0284 5112 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
10:55:34.0299 5112 udfs - ok
10:55:34.0471 5112 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
10:55:34.0486 5112 uliagpkx - ok
10:55:34.0642 5112 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
10:55:34.0642 5112 uliahci - ok
10:55:34.0830 5112 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
10:55:34.0830 5112 UlSata - ok
10:55:35.0001 5112 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
10:55:35.0001 5112 ulsata2 - ok
10:55:35.0142 5112 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
10:55:35.0142 5112 umbus - ok
10:55:35.0563 5112 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
10:55:35.0563 5112 USBAAPL - ok
10:55:36.0171 5112 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
10:55:36.0171 5112 usbaudio - ok
10:55:36.0343 5112 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
10:55:36.0343 5112 usbccgp - ok
10:55:36.0499 5112 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
10:55:36.0499 5112 usbcir - ok
10:55:36.0639 5112 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
10:55:36.0639 5112 usbehci - ok
10:55:36.0826 5112 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
10:55:36.0826 5112 usbhub - ok
10:55:36.0982 5112 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
10:55:36.0982 5112 usbohci - ok
10:55:37.0138 5112 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
10:55:37.0138 5112 usbprint - ok
10:55:37.0326 5112 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
10:55:37.0326 5112 usbscan - ok
10:55:37.0450 5112 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:55:37.0466 5112 USBSTOR - ok
10:55:37.0653 5112 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
10:55:37.0653 5112 usbuhci - ok
10:55:37.0856 5112 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
10:55:37.0856 5112 usbvideo - ok
10:55:38.0012 5112 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
10:55:38.0028 5112 vga - ok
10:55:38.0137 5112 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
10:55:38.0137 5112 VgaSave - ok
10:55:38.0324 5112 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
10:55:38.0324 5112 viaagp - ok
10:55:38.0433 5112 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
10:55:38.0449 5112 ViaC7 - ok
10:55:38.0605 5112 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
10:55:38.0605 5112 viaide - ok
10:55:38.0714 5112 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
10:55:38.0714 5112 volmgr - ok
10:55:38.0932 5112 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
10:55:38.0932 5112 volmgrx - ok
10:55:39.0166 5112 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
10:55:39.0166 5112 volsnap - ok
10:55:39.0322 5112 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
10:55:39.0322 5112 vsmraid - ok
10:55:39.0510 5112 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
10:55:39.0525 5112 WacomPen - ok
10:55:39.0697 5112 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:55:39.0697 5112 Wanarp - ok
10:55:39.0728 5112 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
10:55:39.0728 5112 Wanarpv6 - ok
10:55:39.0946 5112 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
10:55:39.0946 5112 Wd - ok
10:55:40.0134 5112 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
10:55:40.0149 5112 Wdf01000 - ok
10:55:40.0352 5112 winachsf (4daca8f07537d4d7e3534bb99294aa26) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
10:55:40.0368 5112 winachsf - ok
10:55:40.0602 5112 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
10:55:40.0617 5112 WmiAcpi - ok
10:55:40.0789 5112 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
10:55:40.0804 5112 WpdUsb - ok
10:55:41.0382 5112 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
10:55:41.0382 5112 ws2ifsl - ok
10:55:41.0506 5112 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:55:41.0506 5112 WUDFRd - ok
10:55:41.0569 5112 XAudio (5a7ff9a18ff6d7e0527fe3abf9204ef8) C:\Windows\system32\DRIVERS\xaudio.sys
10:55:41.0584 5112 XAudio - ok
10:55:41.0756 5112 yukonwlh (a4822191c7cea271903c2a4fb6d9809d) C:\Windows\system32\DRIVERS\yk60x86.sys
10:55:41.0756 5112 yukonwlh - ok
10:55:41.0834 5112 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
10:55:42.0068 5112 \Device\Harddisk0\DR0 - ok
10:55:42.0115 5112 Boot (0x1200) (1c87bb41b794aa77b498067de1159056) \Device\Harddisk0\DR0\Partition0
10:55:42.0115 5112 \Device\Harddisk0\DR0\Partition0 - ok
10:55:42.0115 5112 Boot (0x1200) (f805fa144e726ceaa4cf9a250587b283) \Device\Harddisk0\DR0\Partition1
10:55:42.0115 5112 \Device\Harddisk0\DR0\Partition1 - ok
10:55:42.0130 5112 ============================================================
10:55:42.0130 5112 Scan finished
10:55:42.0130 5112 ============================================================
10:55:42.0146 4332 Detected object count: 1
10:55:42.0146 4332 Actual detected object count: 1
10:55:53.0659 4332 C:\Windows\system32\DRIVERS\tdx.sys - copied to quarantine
10:56:04.0424 4332 VerifyFileNameVersionInfo: GetFileVersionInfoSizeW(C:\Windows\system32\drivers\tdx.sys) error 1813
10:56:10.0461 4332 Backup copy found, using it..
10:56:10.0477 4332 C:\Windows\system32\DRIVERS\tdx.sys - will be cured on reboot
10:56:14.0829 4332 tdx ( Virus.Win32.ZAccess.k ) - User select action: Cure
10:56:50.0133 2584 Deinitialize success

20:50:01.0866 5392 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
20:50:01.0975 5392 ============================================================
20:50:01.0975 5392 Current date / time: 2012/02/23 20:50:01.0975
20:50:01.0975 5392 SystemInfo:
20:50:01.0975 5392
20:50:01.0975 5392 OS Version: 6.0.6002 ServicePack: 2.0
20:50:01.0975 5392 Product type: Workstation
20:50:01.0975 5392 ComputerName: TONY-LAPTOP
20:50:01.0975 5392 UserName: tony
20:50:01.0975 5392 Windows directory: C:\Windows
20:50:01.0975 5392 System windows directory: C:\Windows
20:50:01.0975 5392 Processor architecture: Intel x86
20:50:01.0975 5392 Number of processors: 2
20:50:01.0975 5392 Page size: 0x1000
20:50:01.0975 5392 Boot type: Normal boot
20:50:01.0975 5392 ============================================================
20:50:02.0615 5392 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
20:50:02.0615 5392 \Device\Harddisk0\DR0:
20:50:02.0615 5392 MBR used
20:50:02.0615 5392 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1388000
20:50:02.0615 5392 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C000, BlocksNum 0x1B929168
20:50:02.0724 5392 Initialize success
20:50:02.0724 5392 ============================================================
20:50:05.0080 5384 ============================================================
20:50:05.0080 5384 Scan started
20:50:05.0080 5384 Mode: Manual;
20:50:05.0080 5384 ============================================================
20:50:05.0688 5384 12777168 - ok
20:50:05.0860 5384 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
20:50:05.0875 5384 ACPI - ok
20:50:06.0031 5384 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
20:50:06.0031 5384 adp94xx - ok
20:50:06.0156 5384 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
20:50:06.0172 5384 adpahci - ok
20:50:06.0297 5384 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
20:50:06.0297 5384 adpu160m - ok
20:50:06.0437 5384 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
20:50:06.0437 5384 adpu320 - ok
20:50:06.0655 5384 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
20:50:06.0655 5384 AFD - ok
20:50:06.0780 5384 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
20:50:06.0780 5384 agp440 - ok
20:50:06.0889 5384 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
20:50:06.0889 5384 aic78xx - ok
20:50:07.0014 5384 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
20:50:07.0014 5384 aliide - ok
20:50:07.0155 5384 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
20:50:07.0155 5384 amdagp - ok
20:50:07.0264 5384 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
20:50:07.0264 5384 amdide - ok
20:50:07.0389 5384 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
20:50:07.0389 5384 AmdK7 - ok
20:50:07.0513 5384 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
20:50:07.0513 5384 AmdK8 - ok
20:50:07.0654 5384 ApfiltrService (a80230bd04f0b8bf05185b369bb1cbb8) C:\Windows\system32\DRIVERS\Apfiltr.sys
20:50:07.0654 5384 ApfiltrService - ok
20:50:07.0794 5384 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
20:50:07.0794 5384 arc - ok
20:50:07.0919 5384 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
20:50:07.0919 5384 arcsas - ok
20:50:08.0044 5384 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
20:50:08.0059 5384 AsyncMac - ok
20:50:08.0169 5384 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
20:50:08.0169 5384 atapi - ok
20:50:08.0293 5384 BCM42RLY - ok
20:50:08.0465 5384 BCM43XX (cdf7f28ffd693b1b4137845dd1ef1ccc) C:\Windows\system32\DRIVERS\bcmwl6.sys
20:50:08.0496 5384 BCM43XX - ok
20:50:08.0652 5384 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
20:50:08.0652 5384 Beep - ok
20:50:08.0793 5384 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
20:50:08.0793 5384 blbdrive - ok
20:50:08.0949 5384 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
20:50:08.0949 5384 bowser - ok
20:50:09.0089 5384 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
20:50:09.0089 5384 BrFiltLo - ok
20:50:09.0198 5384 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
20:50:09.0198 5384 BrFiltUp - ok
20:50:09.0307 5384 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
20:50:09.0307 5384 Brserid - ok
20:50:09.0417 5384 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
20:50:09.0417 5384 BrSerWdm - ok
20:50:09.0495 5384 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
20:50:09.0495 5384 BrUsbMdm - ok
20:50:09.0510 5384 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
20:50:09.0510 5384 BrUsbSer - ok
20:50:09.0651 5384 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
20:50:09.0651 5384 BthEnum - ok
20:50:09.0791 5384 BTHMODEM (9a966a8e86d1771911ae34a20d11bff3) C:\Windows\system32\DRIVERS\bthmodem.sys
20:50:09.0791 5384 BTHMODEM - ok
20:50:09.0916 5384 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
20:50:09.0916 5384 BthPan - ok
20:50:10.0056 5384 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
20:50:10.0072 5384 BTHPORT - ok
20:50:10.0197 5384 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
20:50:10.0197 5384 BTHUSB - ok
20:50:10.0321 5384 btwaudio (4a28e7bd365377d0512b7ef8c7596d2c) C:\Windows\system32\drivers\btwaudio.sys
20:50:10.0337 5384 btwaudio - ok
20:50:10.0446 5384 btwavdt (5ffde57253d665067b0886612817eb11) C:\Windows\system32\drivers\btwavdt.sys
20:50:10.0446 5384 btwavdt - ok
20:50:10.0555 5384 btwrchid (ab07dc8b05c31a4f95fc73019be9db15) C:\Windows\system32\DRIVERS\btwrchid.sys
20:50:10.0555 5384 btwrchid - ok
20:50:10.0680 5384 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
20:50:10.0696 5384 cdfs - ok
20:50:10.0821 5384 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
20:50:10.0821 5384 cdrom - ok
20:50:10.0961 5384 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\Windows\system32\drivers\cfwids.sys
20:50:10.0977 5384 cfwids - ok
20:50:11.0070 5384 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
20:50:11.0070 5384 circlass - ok
20:50:11.0164 5384 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
20:50:11.0179 5384 CLFS - ok
20:50:11.0304 5384 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
20:50:11.0304 5384 CmBatt - ok
20:50:11.0413 5384 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
20:50:11.0413 5384 cmdide - ok
20:50:11.0523 5384 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
20:50:11.0523 5384 Compbatt - ok
20:50:11.0647 5384 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
20:50:11.0647 5384 crcdisk - ok
20:50:11.0757 5384 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
20:50:11.0757 5384 Crusoe - ok
20:50:11.0913 5384 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
20:50:11.0913 5384 DfsC - ok
20:50:12.0069 5384 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
20:50:12.0069 5384 disk - ok
20:50:12.0193 5384 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
20:50:12.0193 5384 drmkaud - ok
20:50:12.0334 5384 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
20:50:12.0349 5384 DXGKrnl - ok
20:50:12.0474 5384 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
20:50:12.0474 5384 e1express - ok
20:50:12.0583 5384 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
20:50:12.0583 5384 E1G60 - ok
20:50:12.0739 5384 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
20:50:12.0755 5384 Ecache - ok
20:50:12.0895 5384 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
20:50:12.0911 5384 elxstor - ok
20:50:13.0036 5384 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
20:50:13.0036 5384 ErrDev - ok
20:50:13.0207 5384 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
20:50:13.0207 5384 exfat - ok
20:50:13.0285 5384 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
20:50:13.0285 5384 fastfat - ok
20:50:13.0379 5384 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
20:50:13.0379 5384 fdc - ok
20:50:13.0504 5384 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
20:50:13.0504 5384 FileInfo - ok
20:50:13.0535 5384 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
20:50:13.0535 5384 Filetrace - ok
20:50:13.0644 5384 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
20:50:13.0644 5384 flpydisk - ok
20:50:13.0675 5384 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
20:50:13.0675 5384 FltMgr - ok
20:50:13.0816 5384 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
20:50:13.0816 5384 Fs_Rec - ok
20:50:13.0847 5384 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
20:50:13.0847 5384 gagp30kx - ok
20:50:13.0972 5384 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
20:50:13.0987 5384 GEARAspiWDM - ok
20:50:14.0175 5384 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
20:50:14.0175 5384 HDAudBus - ok
20:50:14.0237 5384 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
20:50:14.0237 5384 HidBth - ok
20:50:14.0253 5384 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
20:50:14.0253 5384 HidIr - ok
20:50:14.0393 5384 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
20:50:14.0393 5384 HidUsb - ok
20:50:14.0440 5384 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
20:50:14.0440 5384 HpCISSs - ok
20:50:14.0549 5384 HSF_DPV (e9e589c9ab799f52e18f057635a2b362) C:\Windows\system32\DRIVERS\HSX_DPV.sys
20:50:14.0596 5384 HSF_DPV - ok
20:50:14.0721 5384 HSXHWAZL (7845d2385f4dc7dfb3ccaf0c2fa4948e) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
20:50:14.0721 5384 HSXHWAZL - ok
20:50:14.0861 5384 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
20:50:14.0877 5384 HTTP - ok
20:50:14.0923 5384 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
20:50:14.0923 5384 i2omp - ok
20:50:15.0064 5384 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
20:50:15.0064 5384 i8042prt - ok
20:50:15.0204 5384 iaStor (997e8f5939f2d12cd9f2e6b395724c16) C:\Windows\system32\drivers\iastor.sys
20:50:15.0204 5384 iaStor - ok
20:50:15.0267 5384 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
20:50:15.0267 5384 iaStorV - ok
20:50:15.0454 5384 igfx (c134e69ce901422d1f2d7ea8d69098fe) C:\Windows\system32\DRIVERS\igdkmd32.sys
20:50:15.0516 5384 igfx - ok
20:50:15.0625 5384 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
20:50:15.0625 5384 iirsp - ok
20:50:15.0766 5384 IntcHdmiAddService (98d303ccb3415e9202e82043b37d66dc) C:\Windows\system32\drivers\IntcHdmi.sys
20:50:15.0766 5384 IntcHdmiAddService - ok
20:50:15.0828 5384 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\DRIVERS\intelide.sys
20:50:15.0828 5384 intelide - ok
20:50:15.0922 5384 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
20:50:15.0922 5384 intelppm - ok
20:50:15.0953 5384 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:50:15.0953 5384 IpFilterDriver - ok
20:50:15.0969 5384 IpInIp - ok
20:50:16.0000 5384 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
20:50:16.0000 5384 IPMIDRV - ok
20:50:16.0031 5384 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
20:50:16.0031 5384 IPNAT - ok
20:50:16.0125 5384 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
20:50:16.0125 5384 IRENUM - ok
20:50:16.0156 5384 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
20:50:16.0156 5384 isapnp - ok
20:50:16.0218 5384 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
20:50:16.0218 5384 iScsiPrt - ok
20:50:16.0312 5384 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
20:50:16.0312 5384 iteatapi - ok
20:50:16.0327 5384 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
20:50:16.0327 5384 iteraid - ok
20:50:16.0359 5384 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
20:50:16.0359 5384 kbdclass - ok
20:50:16.0437 5384 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
20:50:16.0437 5384 kbdhid - ok
20:50:16.0593 5384 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
20:50:16.0593 5384 KSecDD - ok
20:50:16.0671 5384 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
20:50:16.0671 5384 lltdio - ok
20:50:16.0717 5384 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
20:50:16.0717 5384 LSI_FC - ok
20:50:16.0733 5384 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
20:50:16.0733 5384 LSI_SAS - ok
20:50:16.0764 5384 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
20:50:16.0764 5384 LSI_SCSI - ok
20:50:16.0795 5384 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
20:50:16.0795 5384 luafv - ok
20:50:16.0936 5384 LVRS (7521c0c58ee91be90b6cc33e792d10c7) C:\Windows\system32\DRIVERS\lvrs.sys
20:50:16.0951 5384 LVRS - ok
20:50:17.0170 5384 LVUVC (37e57c48af530df01cdd4e8a2ad77b51) C:\Windows\system32\DRIVERS\lvuvc.sys
20:50:17.0326 5384 LVUVC - ok
20:50:17.0451 5384 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
20:50:17.0451 5384 MBAMProtector - ok
20:50:17.0591 5384 McPvDrv (000751813ecef491689176e72b3a8bee) C:\Windows\system32\drivers\McPvDrv.sys
20:50:17.0607 5384 McPvDrv - ok
20:50:17.0653 5384 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
20:50:17.0653 5384 mdmxsdk - ok
20:50:17.0700 5384 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
20:50:17.0716 5384 megasas - ok
20:50:17.0778 5384 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
20:50:17.0794 5384 MegaSR - ok
20:50:17.0841 5384 mfeapfk (36b47b1e9c537f8f2b4481084b8f7d22) C:\Windows\system32\drivers\mfeapfk.sys
20:50:17.0841 5384 mfeapfk - ok
20:50:17.0887 5384 mfeavfk (cde41293db871a75cd99eb0ce781356b) C:\Windows\system32\drivers\mfeavfk.sys
20:50:17.0887 5384 mfeavfk - ok
20:50:17.0903 5384 mfeavfk01 - ok
20:50:17.0950 5384 mfebopk (e22385f64bdf0ad81157479496e33c4a) C:\Windows\system32\drivers\mfebopk.sys
20:50:17.0950 5384 mfebopk - ok
20:50:17.0997 5384 mfefirek (215666a8a85023ef019b510cbb67f678) C:\Windows\system32\drivers\mfefirek.sys
20:50:18.0012 5384 mfefirek - ok
20:50:18.0075 5384 mfehidk (56d330981866a72f061dd16cc5004513) C:\Windows\system32\drivers\mfehidk.sys
20:50:18.0075 5384 mfehidk - ok
20:50:18.0121 5384 mfenlfk (b41bacc049cdb916a52b1448bf30d6ab) C:\Windows\system32\DRIVERS\mfenlfk.sys
20:50:18.0121 5384 mfenlfk - ok
20:50:18.0168 5384 mferkdet (89b564d63c53fc0c6782ab07eea63acf) C:\Windows\system32\drivers\mferkdet.sys
20:50:18.0184 5384 mferkdet - ok
20:50:18.0215 5384 mfewfpk (c2ff7473a60c0fb2df145ab686889653) C:\Windows\system32\drivers\mfewfpk.sys
20:50:18.0231 5384 mfewfpk - ok
20:50:18.0309 5384 MOBKFilter (e896775837a8bce436348df460522394) C:\Windows\system32\DRIVERS\MOBK.sys
20:50:18.0309 5384 MOBKFilter - ok
20:50:18.0340 5384 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
20:50:18.0340 5384 Modem - ok
20:50:18.0387 5384 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
20:50:18.0387 5384 monitor - ok
20:50:18.0433 5384 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
20:50:18.0433 5384 mouclass - ok
20:50:18.0465 5384 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
20:50:18.0465 5384 mouhid - ok
20:50:18.0496 5384 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
20:50:18.0511 5384 MountMgr - ok
20:50:18.0558 5384 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
20:50:18.0558 5384 mpio - ok
20:50:18.0589 5384 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
20:50:18.0605 5384 mpsdrv - ok
20:50:18.0636 5384 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
20:50:18.0636 5384 Mraid35x - ok
20:50:18.0699 5384 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
20:50:18.0699 5384 MRxDAV - ok
20:50:18.0761 5384 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:50:18.0761 5384 mrxsmb - ok
20:50:18.0808 5384 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:50:18.0823 5384 mrxsmb10 - ok
20:50:18.0839 5384 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:50:18.0839 5384 mrxsmb20 - ok
20:50:18.0886 5384 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
20:50:18.0886 5384 msahci - ok
20:50:18.0917 5384 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
20:50:18.0917 5384 msdsm - ok
20:50:18.0964 5384 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
20:50:18.0964 5384 Msfs - ok
20:50:19.0011 5384 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
20:50:19.0011 5384 msisadrv - ok
20:50:19.0089 5384 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
20:50:19.0089 5384 MSKSSRV - ok
20:50:19.0120 5384 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
20:50:19.0120 5384 MSPCLOCK - ok
20:50:19.0151 5384 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
20:50:19.0151 5384 MSPQM - ok
20:50:19.0198 5384 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
20:50:19.0198 5384 MsRPC - ok
20:50:19.0245 5384 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
20:50:19.0245 5384 mssmbios - ok
20:50:19.0276 5384 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
20:50:19.0276 5384 MSTEE - ok
20:50:19.0338 5384 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
20:50:19.0338 5384 Mup - ok
20:50:19.0401 5384 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
20:50:19.0401 5384 NativeWifiP - ok
20:50:19.0494 5384 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
20:50:19.0494 5384 NDIS - ok
20:50:19.0541 5384 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
20:50:19.0541 5384 NdisTapi - ok
20:50:19.0603 5384 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
20:50:19.0603 5384 Ndisuio - ok
20:50:19.0681 5384 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
20:50:19.0681 5384 NdisWan - ok
20:50:19.0744 5384 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
20:50:19.0744 5384 NDProxy - ok
20:50:19.0791 5384 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
20:50:19.0791 5384 NetBIOS - ok
20:50:19.0853 5384 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
20:50:19.0869 5384 netbt - ok
20:50:19.0947 5384 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
20:50:19.0947 5384 nfrd960 - ok
20:50:20.0009 5384 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
20:50:20.0009 5384 Npfs - ok
20:50:20.0071 5384 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
20:50:20.0071 5384 nsiproxy - ok
20:50:20.0165 5384 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
20:50:20.0196 5384 Ntfs - ok
20:50:20.0227 5384 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
20:50:20.0227 5384 ntrigdigi - ok
20:50:20.0243 5384 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
20:50:20.0243 5384 Null - ok
20:50:20.0274 5384 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
20:50:20.0274 5384 nvraid - ok
20:50:20.0305 5384 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
20:50:20.0305 5384 nvstor - ok
20:50:20.0352 5384 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
20:50:20.0368 5384 nv_agp - ok
20:50:20.0368 5384 NwlnkFlt - ok
20:50:20.0399 5384 NwlnkFwd - ok
20:50:20.0493 5384 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
20:50:20.0493 5384 ohci1394 - ok
20:50:20.0555 5384 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
20:50:20.0555 5384 Parport - ok
20:50:20.0633 5384 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
20:50:20.0633 5384 partmgr - ok
20:50:20.0695 5384 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
20:50:20.0695 5384 Parvdm - ok
20:50:20.0758 5384 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
20:50:20.0773 5384 pci - ok
20:50:20.0805 5384 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
20:50:20.0805 5384 pciide - ok
20:50:20.0836 5384 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
20:50:20.0836 5384 pcmcia - ok
20:50:20.0898 5384 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
20:50:20.0929 5384 PEAUTH - ok
20:50:21.0117 5384 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
20:50:21.0117 5384 PptpMiniport - ok
20:50:21.0148 5384 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
20:50:21.0148 5384 Processor - ok
20:50:21.0210 5384 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
20:50:21.0210 5384 PSched - ok
20:50:21.0273 5384 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\Windows\system32\Drivers\PxHelp20.sys
20:50:21.0273 5384 PxHelp20 - ok
20:50:21.0335 5384 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
20:50:21.0351 5384 ql2300 - ok
20:50:21.0366 5384 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
20:50:21.0366 5384 ql40xx - ok
20:50:21.0397 5384 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
20:50:21.0397 5384 QWAVEdrv - ok
20:50:21.0522 5384 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
20:50:21.0569 5384 R300 - ok
20:50:21.0600 5384 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
20:50:21.0600 5384 RasAcd - ok
20:50:21.0631 5384 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:50:21.0631 5384 Rasl2tp - ok
20:50:21.0694 5384 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
20:50:21.0694 5384 RasPppoe - ok
20:50:21.0741 5384 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
20:50:21.0741 5384 RasSstp - ok
20:50:21.0803 5384 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
20:50:21.0803 5384 rdbss - ok
20:50:21.0819 5384 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:50:21.0834 5384 RDPCDD - ok
20:50:21.0865 5384 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
20:50:21.0881 5384 rdpdr - ok
20:50:21.0897 5384 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
20:50:21.0897 5384 RDPENCDD - ok
20:50:21.0959 5384 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
20:50:21.0959 5384 RDPWD - ok
20:50:22.0021 5384 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
20:50:22.0037 5384 RFCOMM - ok
20:50:22.0068 5384 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
20:50:22.0068 5384 rimmptsk - ok
20:50:22.0084 5384 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
20:50:22.0099 5384 rimsptsk - ok
20:50:22.0115 5384 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
20:50:22.0115 5384 rismxdp - ok
20:50:22.0146 5384 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
20:50:22.0146 5384 rspndr - ok
20:50:22.0177 5384 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
20:50:22.0177 5384 sbp2port - ok
20:50:22.0240 5384 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
20:50:22.0240 5384 sdbus - ok
20:50:22.0255 5384 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
20:50:22.0271 5384 secdrv - ok
20:50:22.0302 5384 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
20:50:22.0302 5384 Serenum - ok
20:50:22.0333 5384 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
20:50:22.0333 5384 Serial - ok
20:50:22.0365 5384 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
20:50:22.0365 5384 sermouse - ok
20:50:22.0411 5384 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
20:50:22.0411 5384 sffdisk - ok
20:50:22.0443 5384 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
20:50:22.0443 5384 sffp_mmc - ok
20:50:22.0458 5384 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
20:50:22.0474 5384 sffp_sd - ok
20:50:22.0489 5384 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
20:50:22.0489 5384 sfloppy - ok
20:50:22.0536 5384 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
20:50:22.0536 5384 sisagp - ok
20:50:22.0552 5384 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
20:50:22.0552 5384 SiSRaid2 - ok
20:50:22.0583 5384 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
20:50:22.0583 5384 SiSRaid4 - ok
20:50:22.0645 5384 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
20:50:22.0661 5384 Smb - ok
20:50:22.0692 5384 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
20:50:22.0692 5384 spldr - ok
20:50:22.0755 5384 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
20:50:22.0755 5384 srv - ok
20:50:22.0801 5384 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
20:50:22.0801 5384 srv2 - ok
20:50:22.0848 5384 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
20:50:22.0864 5384 srvnet - ok
20:50:22.0926 5384 STHDA (6a2a5e809c2c0178326d92b19ee4aad3) C:\Windows\system32\drivers\stwrt.sys
20:50:22.0926 5384 STHDA - ok
20:50:22.0989 5384 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
20:50:23.0004 5384 swenum - ok
20:50:23.0035 5384 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
20:50:23.0035 5384 Symc8xx - ok
20:50:23.0067 5384 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
20:50:23.0067 5384 Sym_hi - ok
20:50:23.0098 5384 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
20:50:23.0098 5384 Sym_u3 - ok
20:50:23.0192 5384 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
20:50:23.0224 5384 Tcpip - ok
20:50:23.0286 5384 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
20:50:23.0302 5384 Tcpip6 - ok
20:50:23.0348 5384 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
20:50:23.0348 5384 tcpipreg - ok
20:50:23.0380 5384 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
20:50:23.0380 5384 TDPIPE - ok
20:50:23.0411 5384 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
20:50:23.0411 5384 TDTCP - ok
20:50:23.0442 5384 tdx - ok
20:50:23.0504 5384 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
20:50:23.0504 5384 TermDD - ok
20:50:23.0660 5384 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:50:23.0660 5384 tssecsrv - ok
20:50:23.0707 5384 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
20:50:23.0707 5384 tunmp - ok
20:50:23.0816 5384 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
20:50:23.0816 5384 tunnel - ok
20:50:23.0863 5384 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
20:50:23.0863 5384 uagp35 - ok
20:50:23.0941 5384 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
20:50:23.0941 5384 udfs - ok
20:50:23.0988 5384 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
20:50:23.0988 5384 uliagpkx - ok
20:50:24.0019 5384 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
20:50:24.0019 5384 uliahci - ok
20:50:24.0050 5384 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
20:50:24.0050 5384 UlSata - ok
20:50:24.0066 5384 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
20:50:24.0066 5384 ulsata2 - ok
20:50:24.0097 5384 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
20:50:24.0097 5384 umbus - ok
20:50:24.0160 5384 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
20:50:24.0160 5384 USBAAPL - ok
20:50:24.0222 5384 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
20:50:24.0222 5384 usbaudio - ok
20:50:24.0269 5384 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
20:50:24.0269 5384 usbccgp - ok
20:50:24.0300 5384 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
20:50:24.0300 5384 usbcir - ok
20:50:24.0362 5384 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
20:50:24.0362 5384 usbehci - ok
20:50:24.0425 5384 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
20:50:24.0425 5384 usbhub - ok
20:50:24.0487 5384 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
20:50:24.0487 5384 usbohci - ok
20:50:24.0643 5384 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
20:50:24.0643 5384 usbprint - ok
20:50:24.0721 5384 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
20:50:24.0721 5384 usbscan - ok
20:50:24.0846 5384 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:50:24.0846 5384 USBSTOR - ok
20:50:24.0924 5384 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
20:50:24.0924 5384 usbuhci - ok
20:50:25.0033 5384 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
20:50:25.0049 5384 usbvideo - ok
20:50:25.0096 5384 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
20:50:25.0096 5384 vga - ok
20:50:25.0142 5384 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
20:50:25.0142 5384 VgaSave - ok
20:50:25.0174 5384 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
20:50:25.0189 5384 viaagp - ok
20:50:25.0205 5384 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
20:50:25.0205 5384 ViaC7 - ok
20:50:25.0236 5384 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
20:50:25.0236 5384 viaide - ok
20:50:25.0267 5384 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
20:50:25.0267 5384 volmgr - ok
20:50:25.0330 5384 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
20:50:25.0330 5384 volmgrx - ok
20:50:25.0408 5384 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
20:50:25.0408 5384 volsnap - ok
20:50:25.0454 5384 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
20:50:25.0470 5384 vsmraid - ok
20:50:25.0517 5384 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
20:50:25.0517 5384 WacomPen - ok
20:50:25.0564 5384 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:50:25.0564 5384 Wanarp - ok
20:50:25.0579 5384 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
20:50:25.0579 5384 Wanarpv6 - ok
20:50:25.0610 5384 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
20:50:25.0610 5384 Wd - ok
20:50:25.0657 5384 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
20:50:25.0657 5384 Wdf01000 - ok
20:50:25.0751 5384 winachsf (4daca8f07537d4d7e3534bb99294aa26) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
20:50:25.0782 5384 winachsf - ok
20:50:25.0860 5384 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
20:50:25.0860 5384 WmiAcpi - ok
20:50:25.0985 5384 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
20:50:25.0985 5384 WpdUsb - ok
20:50:26.0016 5384 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
20:50:26.0016 5384 ws2ifsl - ok
20:50:26.0063 5384 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:50:26.0063 5384 WUDFRd - ok
20:50:26.0110 5384 XAudio (5a7ff9a18ff6d7e0527fe3abf9204ef8) C:\Windows\system32\DRIVERS\xaudio.sys
20:50:26.0110 5384 XAudio - ok
20:50:26.0188 5384 yukonwlh (a4822191c7cea271903c2a4fb6d9809d) C:\Windows\system32\DRIVERS\yk60x86.sys
20:50:26.0188 5384 yukonwlh - ok
20:50:26.0234 5384 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
20:50:26.0359 5384 \Device\Harddisk0\DR0 - ok
20:50:26.0375 5384 Boot (0x1200) (1c87bb41b794aa77b498067de1159056) \Device\Harddisk0\DR0\Partition0
20:50:26.0375 5384 \Device\Harddisk0\DR0\Partition0 - ok
20:50:26.0375 5384 Boot (0x1200) (f805fa144e726ceaa4cf9a250587b283) \Device\Harddisk0\DR0\Partition1
20:50:26.0390 5384 \Device\Harddisk0\DR0\Partition1 - ok
20:50:26.0390 5384 ============================================================
20:50:26.0390 5384 Scan finished
20:50:26.0390 5384 ============================================================
20:50:26.0406 5068 Detected object count: 0
20:50:26.0406 5068 Actual detected object count: 0
20:51:19.0992 2868 Deinitialize success

more in next post
Tlaptony is offline  
Sponsored Links
Advertisement
 
Old 02-27-2012, 07:56 AM   #4
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



22:07:03.0238 3596 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
22:07:03.0331 3596 ============================================================
22:07:03.0331 3596 Current date / time: 2012/02/23 22:07:03.0331
22:07:03.0331 3596 SystemInfo:
22:07:03.0331 3596
22:07:03.0331 3596 OS Version: 6.0.6002 ServicePack: 2.0
22:07:03.0331 3596 Product type: Workstation
22:07:03.0331 3596 ComputerName: TONY-LAPTOP
22:07:03.0331 3596 UserName: tony
22:07:03.0331 3596 Windows directory: C:\Windows
22:07:03.0331 3596 System windows directory: C:\Windows
22:07:03.0331 3596 Processor architecture: Intel x86
22:07:03.0331 3596 Number of processors: 2
22:07:03.0331 3596 Page size: 0x1000
22:07:03.0331 3596 Boot type: Normal boot
22:07:03.0331 3596 ============================================================
22:07:04.0532 3596 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:07:04.0548 3596 \Device\Harddisk0\DR0:
22:07:04.0548 3596 MBR used
22:07:04.0548 3596 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1388000
22:07:04.0548 3596 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C000, BlocksNum 0x1B929168
22:07:04.0720 3596 Initialize success
22:07:04.0720 3596 ============================================================
22:07:17.0012 2648 ============================================================
22:07:17.0012 2648 Scan started
22:07:17.0012 2648 Mode: Manual; SigCheck; TDLFS;
22:07:17.0012 2648 ============================================================
22:07:17.0590 2648 12777168 - ok
22:07:17.0948 2648 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:07:18.0120 2648 ACPI - ok
22:07:18.0323 2648 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:07:18.0354 2648 adp94xx - ok
22:07:18.0682 2648 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:07:18.0713 2648 adpahci - ok
22:07:18.0978 2648 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:07:18.0994 2648 adpu160m - ok
22:07:19.0368 2648 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:07:19.0384 2648 adpu320 - ok
22:07:19.0618 2648 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:07:19.0852 2648 AFD - ok
22:07:20.0148 2648 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:07:20.0164 2648 agp440 - ok
22:07:20.0710 2648 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:07:20.0725 2648 aic78xx - ok
22:07:20.0959 2648 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:07:20.0990 2648 aliide - ok
22:07:21.0100 2648 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:07:21.0115 2648 amdagp - ok
22:07:21.0146 2648 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:07:21.0162 2648 amdide - ok
22:07:21.0271 2648 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:07:21.0505 2648 AmdK7 - ok
22:07:21.0786 2648 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:07:21.0864 2648 AmdK8 - ok
22:07:22.0004 2648 ApfiltrService (a80230bd04f0b8bf05185b369bb1cbb8) C:\Windows\system32\DRIVERS\Apfiltr.sys
22:07:22.0082 2648 ApfiltrService - ok
22:07:22.0394 2648 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:07:22.0410 2648 arc - ok
22:07:22.0597 2648 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:07:22.0613 2648 arcsas - ok
22:07:23.0128 2648 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:07:23.0174 2648 AsyncMac - ok
22:07:23.0440 2648 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
22:07:23.0455 2648 atapi - ok
22:07:23.0642 2648 BCM42RLY - ok
22:07:23.0783 2648 BCM43XX (cdf7f28ffd693b1b4137845dd1ef1ccc) C:\Windows\system32\DRIVERS\bcmwl6.sys
22:07:23.0861 2648 BCM43XX - ok
22:07:24.0173 2648 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:07:24.0266 2648 Beep - ok
22:07:24.0688 2648 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:07:24.0812 2648 blbdrive - ok
22:07:25.0296 2648 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:07:25.0405 2648 bowser - ok
22:07:25.0577 2648 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:07:25.0748 2648 BrFiltLo - ok
22:07:25.0842 2648 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:07:25.0936 2648 BrFiltUp - ok
22:07:26.0014 2648 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:07:26.0232 2648 Brserid - ok
22:07:26.0716 2648 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:07:26.0825 2648 BrSerWdm - ok
22:07:27.0012 2648 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:07:27.0152 2648 BrUsbMdm - ok
22:07:27.0433 2648 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:07:27.0589 2648 BrUsbSer - ok
22:07:27.0823 2648 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
22:07:27.0932 2648 BthEnum - ok
22:07:28.0104 2648 BTHMODEM (9a966a8e86d1771911ae34a20d11bff3) C:\Windows\system32\DRIVERS\bthmodem.sys
22:07:28.0182 2648 BTHMODEM - ok
22:07:28.0229 2648 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
22:07:28.0322 2648 BthPan - ok
22:07:28.0447 2648 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
22:07:28.0510 2648 BTHPORT - ok
22:07:28.0650 2648 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
22:07:28.0712 2648 BTHUSB - ok
22:07:28.0900 2648 btwaudio (4a28e7bd365377d0512b7ef8c7596d2c) C:\Windows\system32\drivers\btwaudio.sys
22:07:28.0978 2648 btwaudio - ok
22:07:29.0071 2648 btwavdt (5ffde57253d665067b0886612817eb11) C:\Windows\system32\drivers\btwavdt.sys
22:07:29.0102 2648 btwavdt - ok
22:07:29.0196 2648 btwrchid (ab07dc8b05c31a4f95fc73019be9db15) C:\Windows\system32\DRIVERS\btwrchid.sys
22:07:29.0227 2648 btwrchid - ok
22:07:29.0290 2648 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:07:29.0336 2648 cdfs - ok
22:07:29.0446 2648 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:07:29.0492 2648 cdrom - ok
22:07:29.0695 2648 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\Windows\system32\drivers\cfwids.sys
22:07:29.0758 2648 cfwids - ok
22:07:29.0820 2648 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:07:29.0867 2648 circlass - ok
22:07:29.0929 2648 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:07:29.0960 2648 CLFS - ok
22:07:30.0038 2648 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
22:07:30.0116 2648 CmBatt - ok
22:07:30.0194 2648 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:07:30.0210 2648 cmdide - ok
22:07:30.0397 2648 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
22:07:30.0413 2648 Compbatt - ok
22:07:30.0475 2648 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:07:30.0491 2648 crcdisk - ok
22:07:30.0506 2648 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:07:30.0569 2648 Crusoe - ok
22:07:30.0631 2648 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:07:30.0678 2648 DfsC - ok
22:07:30.0959 2648 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:07:30.0990 2648 disk - ok
22:07:31.0146 2648 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:07:31.0208 2648 drmkaud - ok
22:07:31.0676 2648 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:07:31.0754 2648 DXGKrnl - ok
22:07:31.0864 2648 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
22:07:31.0926 2648 e1express - ok
22:07:32.0051 2648 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:07:32.0160 2648 E1G60 - ok
22:07:32.0300 2648 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:07:32.0332 2648 Ecache - ok
22:07:32.0410 2648 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:07:32.0441 2648 elxstor - ok
22:07:32.0488 2648 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:07:32.0550 2648 ErrDev - ok
22:07:32.0956 2648 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:07:33.0065 2648 exfat - ok
22:07:33.0533 2648 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:07:33.0611 2648 fastfat - ok
22:07:33.0751 2648 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:07:33.0860 2648 fdc - ok
22:07:34.0032 2648 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:07:34.0063 2648 FileInfo - ok
22:07:34.0141 2648 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:07:34.0219 2648 Filetrace - ok
22:07:34.0250 2648 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:07:34.0297 2648 flpydisk - ok
22:07:34.0360 2648 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:07:34.0391 2648 FltMgr - ok
22:07:34.0453 2648 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:07:34.0516 2648 Fs_Rec - ok
22:07:34.0547 2648 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:07:34.0562 2648 gagp30kx - ok
22:07:34.0640 2648 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:07:34.0656 2648 GEARAspiWDM - ok
22:07:34.0796 2648 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:07:34.0906 2648 HDAudBus - ok
22:07:34.0952 2648 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:07:35.0062 2648 HidBth - ok
22:07:35.0108 2648 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:07:35.0202 2648 HidIr - ok
22:07:35.0311 2648 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:07:35.0498 2648 HidUsb - ok
22:07:35.0530 2648 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:07:35.0561 2648 HpCISSs - ok
22:07:35.0654 2648 HSF_DPV (e9e589c9ab799f52e18f057635a2b362) C:\Windows\system32\DRIVERS\HSX_DPV.sys
22:07:35.0842 2648 HSF_DPV - ok
22:07:36.0138 2648 HSXHWAZL (7845d2385f4dc7dfb3ccaf0c2fa4948e) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
22:07:36.0356 2648 HSXHWAZL - ok
22:07:36.0684 2648 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
22:07:36.0778 2648 HTTP - ok
22:07:36.0949 2648 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:07:36.0980 2648 i2omp - ok
22:07:37.0027 2648 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:07:37.0074 2648 i8042prt - ok
22:07:37.0152 2648 iaStor (997e8f5939f2d12cd9f2e6b395724c16) C:\Windows\system32\drivers\iastor.sys
22:07:37.0199 2648 iaStor - ok
22:07:37.0214 2648 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:07:37.0246 2648 iaStorV - ok
22:07:37.0355 2648 igfx (c134e69ce901422d1f2d7ea8d69098fe) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:07:37.0511 2648 igfx - ok
22:07:37.0542 2648 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:07:37.0558 2648 iirsp - ok
22:07:37.0620 2648 IntcHdmiAddService (98d303ccb3415e9202e82043b37d66dc) C:\Windows\system32\drivers\IntcHdmi.sys
22:07:37.0682 2648 IntcHdmiAddService - ok
22:07:37.0729 2648 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\DRIVERS\intelide.sys
22:07:37.0745 2648 intelide - ok
22:07:37.0792 2648 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:07:37.0854 2648 intelppm - ok
22:07:37.0916 2648 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:07:37.0963 2648 IpFilterDriver - ok
22:07:37.0994 2648 IpInIp - ok
22:07:38.0135 2648 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:07:38.0213 2648 IPMIDRV - ok
22:07:38.0260 2648 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:07:38.0338 2648 IPNAT - ok
22:07:38.0384 2648 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:07:38.0447 2648 IRENUM - ok
22:07:38.0478 2648 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:07:38.0494 2648 isapnp - ok
22:07:38.0540 2648 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:07:38.0556 2648 iScsiPrt - ok
22:07:38.0618 2648 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:07:38.0634 2648 iteatapi - ok
22:07:38.0665 2648 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:07:38.0681 2648 iteraid - ok
22:07:38.0696 2648 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:07:38.0712 2648 kbdclass - ok
22:07:38.0837 2648 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:07:38.0884 2648 kbdhid - ok
22:07:38.0993 2648 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
22:07:39.0024 2648 KSecDD - ok
22:07:39.0086 2648 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:07:39.0149 2648 lltdio - ok
22:07:39.0258 2648 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:07:39.0274 2648 LSI_FC - ok
22:07:39.0289 2648 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:07:39.0320 2648 LSI_SAS - ok
22:07:39.0352 2648 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:07:39.0367 2648 LSI_SCSI - ok
22:07:39.0398 2648 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:07:39.0445 2648 luafv - ok
22:07:39.0539 2648 LVRS (7521c0c58ee91be90b6cc33e792d10c7) C:\Windows\system32\DRIVERS\lvrs.sys
22:07:39.0617 2648 LVRS - ok
22:07:39.0835 2648 LVUVC (37e57c48af530df01cdd4e8a2ad77b51) C:\Windows\system32\DRIVERS\lvuvc.sys
22:07:40.0225 2648 LVUVC - ok
22:07:40.0366 2648 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
22:07:40.0397 2648 MBAMProtector - ok
22:07:40.0522 2648 McPvDrv (000751813ecef491689176e72b3a8bee) C:\Windows\system32\drivers\McPvDrv.sys
22:07:40.0553 2648 McPvDrv - ok
22:07:40.0615 2648 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
22:07:40.0662 2648 mdmxsdk - ok
22:07:40.0724 2648 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:07:40.0740 2648 megasas - ok
22:07:40.0787 2648 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:07:40.0849 2648 MegaSR - ok
22:07:40.0958 2648 mfeapfk (36b47b1e9c537f8f2b4481084b8f7d22) C:\Windows\system32\drivers\mfeapfk.sys
22:07:41.0005 2648 mfeapfk - ok
22:07:41.0099 2648 mfeavfk (cde41293db871a75cd99eb0ce781356b) C:\Windows\system32\drivers\mfeavfk.sys
22:07:41.0146 2648 mfeavfk - ok
22:07:41.0161 2648 mfeavfk01 - ok
22:07:41.0192 2648 mfebopk (e22385f64bdf0ad81157479496e33c4a) C:\Windows\system32\drivers\mfebopk.sys
22:07:41.0239 2648 mfebopk - ok
22:07:41.0302 2648 mfefirek (215666a8a85023ef019b510cbb67f678) C:\Windows\system32\drivers\mfefirek.sys
22:07:41.0348 2648 mfefirek - ok
22:07:41.0442 2648 mfehidk (56d330981866a72f061dd16cc5004513) C:\Windows\system32\drivers\mfehidk.sys
22:07:41.0504 2648 mfehidk - ok
22:07:41.0598 2648 mfenlfk (b41bacc049cdb916a52b1448bf30d6ab) C:\Windows\system32\DRIVERS\mfenlfk.sys
22:07:41.0660 2648 mfenlfk - ok
22:07:41.0801 2648 mferkdet (89b564d63c53fc0c6782ab07eea63acf) C:\Windows\system32\drivers\mferkdet.sys
22:07:41.0848 2648 mferkdet - ok
22:07:41.0957 2648 mfewfpk (c2ff7473a60c0fb2df145ab686889653) C:\Windows\system32\drivers\mfewfpk.sys
22:07:42.0004 2648 mfewfpk - ok
22:07:42.0113 2648 MOBKFilter (e896775837a8bce436348df460522394) C:\Windows\system32\DRIVERS\MOBK.sys
22:07:42.0144 2648 MOBKFilter - ok
22:07:42.0284 2648 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:07:42.0347 2648 Modem - ok
22:07:42.0487 2648 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:07:42.0581 2648 monitor - ok
22:07:42.0596 2648 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:07:42.0628 2648 mouclass - ok
22:07:42.0674 2648 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:07:42.0752 2648 mouhid - ok
22:07:42.0784 2648 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:07:42.0830 2648 MountMgr - ok
22:07:42.0862 2648 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:07:42.0893 2648 mpio - ok
22:07:43.0033 2648 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:07:43.0111 2648 mpsdrv - ok
22:07:43.0142 2648 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:07:43.0158 2648 Mraid35x - ok
22:07:43.0220 2648 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:07:43.0330 2648 MRxDAV - ok
22:07:43.0595 2648 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:07:43.0751 2648 mrxsmb - ok
22:07:43.0969 2648 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:07:44.0172 2648 mrxsmb10 - ok
22:07:44.0640 2648 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:07:44.0687 2648 mrxsmb20 - ok
22:07:44.0780 2648 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
22:07:44.0796 2648 msahci - ok
22:07:44.0843 2648 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:07:44.0858 2648 msdsm - ok
22:07:44.0905 2648 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:07:44.0968 2648 Msfs - ok
22:07:45.0014 2648 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:07:45.0046 2648 msisadrv - ok
22:07:45.0108 2648 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:07:45.0170 2648 MSKSSRV - ok
22:07:45.0217 2648 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:07:45.0280 2648 MSPCLOCK - ok
22:07:45.0295 2648 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:07:45.0358 2648 MSPQM - ok
22:07:45.0436 2648 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:07:45.0467 2648 MsRPC - ok
22:07:45.0498 2648 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:07:45.0514 2648 mssmbios - ok
22:07:45.0545 2648 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:07:45.0607 2648 MSTEE - ok
22:07:45.0654 2648 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:07:45.0670 2648 Mup - ok
22:07:45.0810 2648 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:07:45.0857 2648 NativeWifiP - ok
22:07:45.0950 2648 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:07:45.0997 2648 NDIS - ok
22:07:46.0044 2648 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:07:46.0122 2648 NdisTapi - ok
22:07:46.0216 2648 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:07:46.0294 2648 Ndisuio - ok
22:07:46.0387 2648 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:07:46.0465 2648 NdisWan - ok
22:07:46.0496 2648 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:07:46.0528 2648 NDProxy - ok
22:07:46.0559 2648 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:07:46.0590 2648 NetBIOS - ok
22:07:46.0637 2648 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:07:46.0684 2648 netbt - ok
22:07:46.0746 2648 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:07:46.0762 2648 nfrd960 - ok
22:07:46.0824 2648 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:07:46.0980 2648 Npfs - ok
22:07:47.0198 2648 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:07:47.0292 2648 nsiproxy - ok
22:07:47.0573 2648 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:07:47.0698 2648 Ntfs - ok
22:07:47.0807 2648 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:07:47.0932 2648 ntrigdigi - ok
22:07:47.0978 2648 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:07:48.0056 2648 Null - ok
22:07:48.0088 2648 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:07:48.0103 2648 nvraid - ok
22:07:48.0134 2648 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:07:48.0150 2648 nvstor - ok
22:07:48.0197 2648 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:07:48.0212 2648 nv_agp - ok
22:07:48.0228 2648 NwlnkFlt - ok
22:07:48.0244 2648 NwlnkFwd - ok
22:07:48.0306 2648 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
22:07:48.0353 2648 ohci1394 - ok
22:07:48.0431 2648 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:07:48.0524 2648 Parport - ok
22:07:48.0992 2648 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:07:49.0008 2648 partmgr - ok
22:07:49.0367 2648 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:07:49.0460 2648 Parvdm - ok
22:07:49.0616 2648 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:07:49.0648 2648 pci - ok
22:07:49.0710 2648 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
22:07:49.0726 2648 pciide - ok
22:07:49.0788 2648 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:07:49.0804 2648 pcmcia - ok
22:07:49.0882 2648 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:07:50.0053 2648 PEAUTH - ok
22:07:50.0116 2648 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:07:50.0178 2648 PptpMiniport - ok
22:07:50.0225 2648 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:07:50.0303 2648 Processor - ok
22:07:50.0350 2648 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:07:50.0381 2648 PSched - ok
22:07:50.0443 2648 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\Windows\system32\Drivers\PxHelp20.sys
22:07:50.0474 2648 PxHelp20 - ok
22:07:50.0552 2648 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:07:50.0646 2648 ql2300 - ok
22:07:50.0755 2648 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:07:50.0771 2648 ql40xx - ok
22:07:50.0802 2648 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:07:50.0880 2648 QWAVEdrv - ok
22:07:51.0020 2648 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:07:51.0270 2648 R300 - ok
22:07:51.0473 2648 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:07:51.0551 2648 RasAcd - ok
22:07:51.0722 2648 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:07:51.0800 2648 Rasl2tp - ok
22:07:52.0019 2648 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:07:52.0097 2648 RasPppoe - ok
22:07:53.0064 2648 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:07:53.0158 2648 RasSstp - ok
22:07:54.0047 2648 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:07:54.0078 2648 rdbss - ok
22:07:54.0328 2648 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:07:54.0406 2648 RDPCDD - ok
22:07:54.0452 2648 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:07:54.0515 2648 rdpdr - ok
22:07:54.0530 2648 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:07:54.0593 2648 RDPENCDD - ok
22:07:54.0920 2648 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:07:55.0014 2648 RDPWD - ok
22:07:55.0310 2648 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
22:07:55.0404 2648 RFCOMM - ok
22:07:55.0576 2648 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
22:07:55.0638 2648 rimmptsk - ok
22:07:55.0669 2648 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
22:07:55.0732 2648 rimsptsk - ok
22:07:55.0763 2648 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
22:07:55.0825 2648 rismxdp - ok
22:07:55.0872 2648 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:07:55.0934 2648 rspndr - ok
22:07:55.0981 2648 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:07:56.0012 2648 sbp2port - ok
22:07:56.0122 2648 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
22:07:56.0153 2648 sdbus - ok
22:07:56.0200 2648 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:07:56.0324 2648 secdrv - ok
22:07:56.0387 2648 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
22:07:56.0512 2648 Serenum - ok
22:07:56.0543 2648 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
22:07:56.0621 2648 Serial - ok
22:07:56.0683 2648 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:07:56.0761 2648 sermouse - ok
22:07:57.0089 2648 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:07:57.0151 2648 sffdisk - ok
22:07:57.0245 2648 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:07:57.0354 2648 sffp_mmc - ok
22:07:57.0463 2648 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:07:57.0541 2648 sffp_sd - ok
22:07:57.0572 2648 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:07:57.0697 2648 sfloppy - ok
22:07:57.0884 2648 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:07:57.0900 2648 sisagp - ok
22:07:58.0040 2648 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:07:58.0072 2648 SiSRaid2 - ok
22:07:58.0103 2648 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:07:58.0118 2648 SiSRaid4 - ok
22:07:58.0181 2648 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:07:58.0259 2648 Smb - ok
22:07:58.0321 2648 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:07:58.0337 2648 spldr - ok
22:07:58.0430 2648 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:07:58.0540 2648 srv - ok
22:07:58.0930 2648 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:07:59.0008 2648 srv2 - ok
22:07:59.0554 2648 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:07:59.0569 2648 srvnet - ok
22:07:59.0866 2648 STHDA (6a2a5e809c2c0178326d92b19ee4aad3) C:\Windows\system32\drivers\stwrt.sys
22:07:59.0912 2648 STHDA - ok
22:08:00.0053 2648 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:08:00.0084 2648 swenum - ok
22:08:00.0115 2648 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:08:00.0146 2648 Symc8xx - ok
22:08:00.0193 2648 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:08:00.0209 2648 Sym_hi - ok
22:08:00.0240 2648 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:08:00.0271 2648 Sym_u3 - ok
22:08:00.0365 2648 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:08:00.0474 2648 Tcpip - ok
22:08:00.0521 2648 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:08:00.0583 2648 Tcpip6 - ok
22:08:00.0630 2648 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:08:00.0692 2648 tcpipreg - ok
22:08:00.0739 2648 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:08:00.0786 2648 TDPIPE - ok
22:08:00.0833 2648 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:08:00.0911 2648 TDTCP - ok
22:08:00.0926 2648 tdx - ok
22:08:01.0020 2648 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:08:01.0036 2648 TermDD - ok
22:08:01.0488 2648 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:08:01.0535 2648 tssecsrv - ok
22:08:01.0660 2648 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:08:01.0738 2648 tunmp - ok
22:08:01.0800 2648 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:08:01.0894 2648 tunnel - ok
22:08:01.0909 2648 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:08:01.0940 2648 uagp35 - ok
22:08:02.0003 2648 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:08:02.0050 2648 udfs - ok
22:08:02.0096 2648 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:08:02.0112 2648 uliagpkx - ok
22:08:02.0143 2648 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:08:02.0174 2648 uliahci - ok
22:08:02.0206 2648 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:08:02.0221 2648 UlSata - ok
22:08:02.0237 2648 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:08:02.0252 2648 ulsata2 - ok
22:08:02.0284 2648 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:08:02.0315 2648 umbus - ok
22:08:02.0377 2648 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:08:02.0440 2648 USBAAPL - ok
22:08:02.0502 2648 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
22:08:02.0533 2648 usbaudio - ok
22:08:02.0611 2648 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:08:02.0689 2648 usbccgp - ok
22:08:02.0705 2648 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:08:02.0798 2648 usbcir - ok
22:08:02.0830 2648 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:08:02.0892 2648 usbehci - ok
22:08:02.0939 2648 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:08:03.0001 2648 usbhub - ok
22:08:03.0048 2648 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:08:03.0142 2648 usbohci - ok
22:08:03.0204 2648 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
22:08:03.0266 2648 usbprint - ok
22:08:03.0329 2648 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:08:03.0422 2648 usbscan - ok
22:08:03.0469 2648 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:08:03.0547 2648 USBSTOR - ok
22:08:03.0594 2648 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:08:03.0688 2648 usbuhci - ok
22:08:03.0766 2648 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
22:08:03.0906 2648 usbvideo - ok
22:08:04.0078 2648 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:08:04.0156 2648 vga - ok
22:08:04.0187 2648 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:08:04.0234 2648 VgaSave - ok
22:08:04.0265 2648 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:08:04.0280 2648 viaagp - ok
22:08:04.0296 2648 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:08:04.0343 2648 ViaC7 - ok
22:08:04.0374 2648 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:08:04.0405 2648 viaide - ok
22:08:04.0436 2648 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:08:04.0452 2648 volmgr - ok
22:08:04.0514 2648 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:08:04.0546 2648 volmgrx - ok
22:08:04.0655 2648 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:08:04.0670 2648 volsnap - ok
22:08:04.0717 2648 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:08:04.0748 2648 vsmraid - ok
22:08:04.0826 2648 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:08:04.0936 2648 WacomPen - ok
22:08:04.0998 2648 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:08:05.0060 2648 Wanarp - ok
22:08:05.0092 2648 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:08:05.0123 2648 Wanarpv6 - ok
22:08:05.0544 2648 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:08:05.0575 2648 Wd - ok
22:08:05.0700 2648 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:08:05.0747 2648 Wdf01000 - ok
22:08:05.0903 2648 winachsf (4daca8f07537d4d7e3534bb99294aa26) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
22:08:06.0059 2648 winachsf - ok
22:08:06.0340 2648 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:08:06.0418 2648 WmiAcpi - ok
22:08:06.0558 2648 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:08:06.0652 2648 WpdUsb - ok
22:08:06.0698 2648 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:08:06.0730 2648 ws2ifsl - ok
22:08:06.0792 2648 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:08:06.0886 2648 WUDFRd - ok
22:08:06.0948 2648 XAudio (5a7ff9a18ff6d7e0527fe3abf9204ef8) C:\Windows\system32\DRIVERS\xaudio.sys
22:08:06.0964 2648 XAudio - ok
22:08:07.0042 2648 yukonwlh (a4822191c7cea271903c2a4fb6d9809d) C:\Windows\system32\DRIVERS\yk60x86.sys
22:08:07.0120 2648 yukonwlh - ok
22:08:07.0151 2648 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
22:08:07.0463 2648 \Device\Harddisk0\DR0 - ok
22:08:07.0510 2648 Boot (0x1200) (1c87bb41b794aa77b498067de1159056) \Device\Harddisk0\DR0\Partition0
22:08:07.0510 2648 \Device\Harddisk0\DR0\Partition0 - ok
22:08:07.0510 2648 Boot (0x1200) (f805fa144e726ceaa4cf9a250587b283) \Device\Harddisk0\DR0\Partition1
22:08:07.0510 2648 \Device\Harddisk0\DR0\Partition1 - ok
22:08:07.0510 2648 ============================================================
22:08:07.0510 2648 Scan finished
22:08:07.0510 2648 ============================================================
22:08:07.0525 3076 Detected object count: 0
22:08:07.0525 3076 Actual detected object count: 0
22:11:07.0382 2156 Deinitialize success


09:20:22.0660 3828 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
09:20:22.0722 3828 ============================================================
09:20:22.0722 3828 Current date / time: 2012/02/26 09:20:22.0722
09:20:22.0722 3828 SystemInfo:
09:20:22.0722 3828
09:20:22.0722 3828 OS Version: 6.0.6002 ServicePack: 2.0
09:20:22.0722 3828 Product type: Workstation
09:20:22.0722 3828 ComputerName: TONY-LAPTOP
09:20:22.0722 3828 UserName: tony
09:20:22.0722 3828 Windows directory: C:\Windows
09:20:22.0722 3828 System windows directory: C:\Windows
09:20:22.0722 3828 Processor architecture: Intel x86
09:20:22.0722 3828 Number of processors: 2
09:20:22.0722 3828 Page size: 0x1000
09:20:22.0722 3828 Boot type: Normal boot
09:20:22.0722 3828 ============================================================
09:20:23.0471 3828 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
09:20:23.0471 3828 \Device\Harddisk0\DR0:
09:20:23.0471 3828 MBR used
09:20:23.0471 3828 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1388000
09:20:23.0471 3828 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C000, BlocksNum 0x1B929168
09:20:24.0251 3828 Initialize success
09:20:24.0251 3828 ============================================================
09:39:49.0463 2900 Deinitialize success


09:50:31.0331 2684 TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
09:50:31.0425 2684 ============================================================
09:50:31.0425 2684 Current date / time: 2012/02/26 09:50:31.0425
09:50:31.0425 2684 SystemInfo:
09:50:31.0425 2684
09:50:31.0425 2684 OS Version: 6.0.6002 ServicePack: 2.0
09:50:31.0425 2684 Product type: Workstation
09:50:31.0425 2684 ComputerName: TONY-LAPTOP
09:50:31.0425 2684 UserName: tony
09:50:31.0425 2684 Windows directory: C:\Windows
09:50:31.0425 2684 System windows directory: C:\Windows
09:50:31.0425 2684 Processor architecture: Intel x86
09:50:31.0425 2684 Number of processors: 2
09:50:31.0425 2684 Page size: 0x1000
09:50:31.0425 2684 Boot type: Normal boot
09:50:31.0425 2684 ============================================================
09:50:33.0671 2684 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
09:50:33.0687 2684 \Device\Harddisk0\DR0:
09:50:33.0687 2684 MBR used
09:50:33.0687 2684 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x14000, BlocksNum 0x1388000
09:50:33.0687 2684 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x139C000, BlocksNum 0x1B929168
09:50:33.0983 2684 Initialize success
09:50:33.0983 2684 ============================================================
09:50:37.0213 2296 ============================================================
09:50:37.0213 2296 Scan started
09:50:37.0213 2296 Mode: Manual;
09:50:37.0213 2296 ============================================================
09:50:37.0852 2296 12777168 - ok
09:50:38.0273 2296 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
09:50:38.0273 2296 ACPI - ok
09:50:38.0539 2296 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
09:50:38.0554 2296 adp94xx - ok
09:50:38.0757 2296 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
09:50:38.0773 2296 adpahci - ok
09:50:38.0866 2296 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
09:50:38.0960 2296 adpu160m - ok
09:50:39.0053 2296 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
09:50:39.0085 2296 adpu320 - ok
09:50:39.0272 2296 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
09:50:39.0303 2296 AFD - ok
09:50:39.0475 2296 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
09:50:39.0490 2296 agp440 - ok
09:50:39.0724 2296 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
09:50:39.0740 2296 aic78xx - ok
09:50:39.0958 2296 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
09:50:39.0974 2296 aliide - ok
09:50:40.0161 2296 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
09:50:40.0177 2296 amdagp - ok
09:50:40.0301 2296 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
09:50:40.0317 2296 amdide - ok
09:50:40.0504 2296 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
09:50:40.0504 2296 AmdK7 - ok
09:50:40.0629 2296 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
09:50:40.0645 2296 AmdK8 - ok
09:50:40.0785 2296 ApfiltrService (a80230bd04f0b8bf05185b369bb1cbb8) C:\Windows\system32\DRIVERS\Apfiltr.sys
09:50:40.0801 2296 ApfiltrService - ok
09:50:41.0081 2296 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
09:50:41.0097 2296 arc - ok
09:50:41.0253 2296 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
09:50:41.0253 2296 arcsas - ok
09:50:41.0518 2296 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
09:50:41.0534 2296 AsyncMac - ok
09:50:41.0737 2296 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
09:50:41.0737 2296 atapi - ok
09:50:42.0017 2296 BCM42RLY - ok
09:50:42.0251 2296 BCM43XX (cdf7f28ffd693b1b4137845dd1ef1ccc) C:\Windows\system32\DRIVERS\bcmwl6.sys
09:50:42.0267 2296 BCM43XX - ok
09:50:42.0517 2296 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
09:50:42.0532 2296 Beep - ok
09:50:42.0735 2296 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
09:50:42.0797 2296 blbdrive - ok
09:50:43.0187 2296 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
09:50:43.0219 2296 bowser - ok
09:50:43.0359 2296 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
09:50:43.0375 2296 BrFiltLo - ok
09:50:43.0515 2296 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
09:50:43.0515 2296 BrFiltUp - ok
09:50:43.0780 2296 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
09:50:43.0843 2296 Brserid - ok
09:50:43.0967 2296 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
09:50:43.0967 2296 BrSerWdm - ok
09:50:44.0201 2296 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
09:50:44.0201 2296 BrUsbMdm - ok
09:50:44.0435 2296 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
09:50:44.0467 2296 BrUsbSer - ok
09:50:44.0654 2296 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
09:50:44.0701 2296 BthEnum - ok
09:50:44.0966 2296 BTHMODEM (9a966a8e86d1771911ae34a20d11bff3) C:\Windows\system32\DRIVERS\bthmodem.sys
09:50:44.0981 2296 BTHMODEM - ok
09:50:45.0231 2296 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
09:50:45.0231 2296 BthPan - ok
09:50:45.0418 2296 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
09:50:45.0434 2296 BTHPORT - ok
09:50:45.0652 2296 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
09:50:45.0652 2296 BTHUSB - ok
09:50:45.0902 2296 btwaudio (4a28e7bd365377d0512b7ef8c7596d2c) C:\Windows\system32\drivers\btwaudio.sys
09:50:45.0902 2296 btwaudio - ok
09:50:46.0807 2296 btwavdt (5ffde57253d665067b0886612817eb11) C:\Windows\system32\drivers\btwavdt.sys
09:50:46.0822 2296 btwavdt - ok
09:50:47.0041 2296 btwrchid (ab07dc8b05c31a4f95fc73019be9db15) C:\Windows\system32\DRIVERS\btwrchid.sys
09:50:47.0041 2296 btwrchid - ok
09:50:47.0259 2296 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
09:50:47.0259 2296 cdfs - ok
09:50:47.0509 2296 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
09:50:47.0540 2296 cdrom - ok
09:50:47.0867 2296 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\Windows\system32\drivers\cfwids.sys
09:50:47.0867 2296 cfwids - ok
09:50:48.0304 2296 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
09:50:48.0382 2296 circlass - ok
09:50:48.0523 2296 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
09:50:48.0538 2296 CLFS - ok
09:50:48.0741 2296 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
09:50:48.0757 2296 CmBatt - ok
09:50:48.0913 2296 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
09:50:48.0928 2296 cmdide - ok
09:50:49.0833 2296 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
09:50:49.0833 2296 Compbatt - ok
09:50:50.0129 2296 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
09:50:50.0145 2296 crcdisk - ok
09:50:50.0441 2296 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
09:50:50.0441 2296 Crusoe - ok
09:50:50.0785 2296 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
09:50:52.0267 2296 DfsC - ok
09:50:52.0516 2296 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
09:50:52.0516 2296 disk - ok
09:50:52.0828 2296 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
09:50:52.0844 2296 drmkaud - ok
09:50:53.0125 2296 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
09:50:53.0125 2296 DXGKrnl - ok
09:50:53.0265 2296 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
09:50:53.0296 2296 e1express - ok
09:50:53.0421 2296 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
09:50:53.0452 2296 E1G60 - ok
09:50:53.0639 2296 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
09:50:53.0639 2296 Ecache - ok
09:50:53.0827 2296 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
09:50:53.0842 2296 elxstor - ok
09:50:53.0951 2296 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
09:50:53.0983 2296 ErrDev - ok
09:50:54.0170 2296 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
09:50:54.0201 2296 exfat - ok
09:50:54.0341 2296 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
09:50:54.0357 2296 fastfat - ok
09:50:54.0575 2296 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
09:50:54.0591 2296 fdc - ok
09:50:54.0778 2296 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
09:50:54.0778 2296 FileInfo - ok
09:50:54.0950 2296 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
09:50:54.0950 2296 Filetrace - ok
09:50:55.0043 2296 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
09:50:55.0043 2296 flpydisk - ok
09:50:55.0355 2296 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
09:50:55.0387 2296 FltMgr - ok
09:50:55.0527 2296 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
09:50:55.0543 2296 Fs_Rec - ok
09:50:55.0777 2296 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
09:50:55.0792 2296 gagp30kx - ok
09:50:55.0964 2296 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
09:50:55.0979 2296 GEARAspiWDM - ok
09:50:56.0260 2296 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
09:50:56.0276 2296 HDAudBus - ok
09:50:56.0385 2296 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
09:50:56.0416 2296 HidBth - ok
09:50:56.0572 2296 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
09:50:56.0572 2296 HidIr - ok
09:50:56.0837 2296 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
09:50:56.0853 2296 HidUsb - ok
09:50:56.0947 2296 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
09:50:56.0962 2296 HpCISSs - ok
09:50:57.0149 2296 HSF_DPV (e9e589c9ab799f52e18f057635a2b362) C:\Windows\system32\DRIVERS\HSX_DPV.sys
09:50:57.0259 2296 HSF_DPV - ok
09:50:57.0368 2296 HSXHWAZL (7845d2385f4dc7dfb3ccaf0c2fa4948e) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
09:50:57.0399 2296 HSXHWAZL - ok
09:50:57.0758 2296 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
09:50:57.0773 2296 HTTP - ok
09:50:57.0914 2296 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
09:50:57.0914 2296 i2omp - ok
09:50:58.0054 2296 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
09:50:58.0085 2296 i8042prt - ok
09:50:58.0475 2296 iaStor (997e8f5939f2d12cd9f2e6b395724c16) C:\Windows\system32\drivers\iastor.sys
09:50:58.0475 2296 iaStor - ok
09:50:58.0647 2296 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
09:50:58.0663 2296 iaStorV - ok
09:50:59.0053 2296 igfx (c134e69ce901422d1f2d7ea8d69098fe) C:\Windows\system32\DRIVERS\igdkmd32.sys
09:50:59.0193 2296 igfx - ok
09:50:59.0302 2296 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
09:50:59.0302 2296 iirsp - ok
09:50:59.0489 2296 IntcHdmiAddService (98d303ccb3415e9202e82043b37d66dc) C:\Windows\system32\drivers\IntcHdmi.sys
09:50:59.0521 2296 IntcHdmiAddService - ok
09:50:59.0692 2296 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\DRIVERS\intelide.sys
09:50:59.0692 2296 intelide - ok
09:50:59.0864 2296 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
09:50:59.0864 2296 intelppm - ok
09:51:00.0129 2296 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
09:51:00.0145 2296 IpFilterDriver - ok
09:51:00.0441 2296 IpInIp - ok
09:51:00.0987 2296 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
09:51:01.0018 2296 IPMIDRV - ok
09:51:01.0283 2296 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
09:51:01.0283 2296 IPNAT - ok
09:51:01.0486 2296 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
09:51:01.0502 2296 IRENUM - ok
09:51:01.0642 2296 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
09:51:01.0658 2296 isapnp - ok
09:51:02.0110 2296 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
09:51:02.0110 2296 iScsiPrt - ok
09:51:02.0438 2296 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
09:51:02.0500 2296 iteatapi - ok
09:51:02.0719 2296 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
09:51:02.0734 2296 iteraid - ok
09:51:02.0828 2296 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
09:51:02.0843 2296 kbdclass - ok
09:51:03.0218 2296 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
09:51:03.0233 2296 kbdhid - ok
09:51:03.0764 2296 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
09:51:03.0779 2296 KSecDD - ok
09:51:03.0920 2296 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
09:51:03.0935 2296 lltdio - ok
09:51:04.0138 2296 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
09:51:04.0154 2296 LSI_FC - ok
09:51:04.0279 2296 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
09:51:04.0279 2296 LSI_SAS - ok
09:51:04.0466 2296 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
09:51:04.0481 2296 LSI_SCSI - ok
09:51:04.0559 2296 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
09:51:04.0575 2296 luafv - ok
09:51:04.0825 2296 LVRS (7521c0c58ee91be90b6cc33e792d10c7) C:\Windows\system32\DRIVERS\lvrs.sys
09:51:04.0871 2296 LVRS - ok
09:51:05.0433 2296 LVUVC (37e57c48af530df01cdd4e8a2ad77b51) C:\Windows\system32\DRIVERS\lvuvc.sys
09:51:05.0683 2296 LVUVC - ok
09:51:05.0917 2296 McPvDrv (000751813ecef491689176e72b3a8bee) C:\Windows\system32\drivers\McPvDrv.sys
09:51:05.0917 2296 McPvDrv - ok
09:51:06.0088 2296 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
09:51:06.0104 2296 mdmxsdk - ok
09:51:06.0213 2296 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
09:51:06.0244 2296 megasas - ok
09:51:06.0431 2296 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
09:51:06.0494 2296 MegaSR - ok
09:51:06.0619 2296 mfeapfk (36b47b1e9c537f8f2b4481084b8f7d22) C:\Windows\system32\drivers\mfeapfk.sys
09:51:06.0619 2296 mfeapfk - ok
09:51:06.0899 2296 mfeavfk (cde41293db871a75cd99eb0ce781356b) C:\Windows\system32\drivers\mfeavfk.sys
09:51:06.0931 2296 mfeavfk - ok
09:51:07.0196 2296 mfeavfk01 - ok
09:51:07.0539 2296 mfebopk (e22385f64bdf0ad81157479496e33c4a) C:\Windows\system32\drivers\mfebopk.sys
09:51:07.0539 2296 mfebopk - ok
09:51:07.0695 2296 mfefirek (215666a8a85023ef019b510cbb67f678) C:\Windows\system32\drivers\mfefirek.sys
09:51:07.0742 2296 mfefirek - ok
09:51:07.0929 2296 mfehidk (56d330981866a72f061dd16cc5004513) C:\Windows\system32\drivers\mfehidk.sys
09:51:07.0929 2296 mfehidk - ok
09:51:08.0069 2296 mfenlfk (b41bacc049cdb916a52b1448bf30d6ab) C:\Windows\system32\DRIVERS\mfenlfk.sys
09:51:08.0085 2296 mfenlfk - ok
09:51:08.0194 2296 mferkdet (89b564d63c53fc0c6782ab07eea63acf) C:\Windows\system32\drivers\mferkdet.sys
09:51:08.0194 2296 mferkdet - ok
09:51:08.0366 2296 mfewfpk (c2ff7473a60c0fb2df145ab686889653) C:\Windows\system32\drivers\mfewfpk.sys
09:51:08.0381 2296 mfewfpk - ok
09:51:08.0662 2296 MOBKFilter (e896775837a8bce436348df460522394) C:\Windows\system32\DRIVERS\MOBK.sys
09:51:08.0678 2296 MOBKFilter - ok
09:51:08.0803 2296 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
09:51:08.0803 2296 Modem - ok
09:51:08.0959 2296 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
09:51:08.0959 2296 monitor - ok
09:51:09.0068 2296 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
09:51:09.0099 2296 mouclass - ok
09:51:09.0193 2296 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
09:51:09.0208 2296 mouhid - ok
09:51:09.0395 2296 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
09:51:09.0411 2296 MountMgr - ok
09:51:09.0505 2296 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
09:51:09.0520 2296 mpio - ok
09:51:09.0661 2296 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
09:51:09.0676 2296 mpsdrv - ok
09:51:09.0770 2296 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
09:51:09.0785 2296 Mraid35x - ok
09:51:09.0910 2296 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
09:51:09.0957 2296 MRxDAV - ok
09:51:10.0129 2296 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
09:51:10.0160 2296 mrxsmb - ok
09:51:10.0269 2296 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
09:51:10.0316 2296 mrxsmb10 - ok
09:51:10.0565 2296 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
09:51:10.0581 2296 mrxsmb20 - ok
09:51:10.0753 2296 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
09:51:10.0768 2296 msahci - ok
09:51:10.0924 2296 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
09:51:10.0955 2296 msdsm - ok
09:51:11.0111 2296 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
09:51:11.0111 2296 Msfs - ok
09:51:11.0252 2296 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
09:51:11.0267 2296 msisadrv - ok
09:51:11.0423 2296 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
09:51:11.0423 2296 MSKSSRV - ok
09:51:11.0579 2296 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
09:51:11.0579 2296 MSPCLOCK - ok
09:51:11.0829 2296 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
09:51:11.0845 2296 MSPQM - ok
09:51:12.0079 2296 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
09:51:12.0094 2296 MsRPC - ok
09:51:12.0203 2296 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
09:51:12.0203 2296 mssmbios - ok
09:51:12.0328 2296 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
09:51:12.0328 2296 MSTEE - ok
09:51:12.0500 2296 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
09:51:12.0500 2296 Mup - ok
09:51:12.0609 2296 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
09:51:12.0640 2296 NativeWifiP - ok
09:51:13.0654 2296 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
09:51:13.0685 2296 NDIS - ok
09:51:13.0795 2296 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
09:51:13.0810 2296 NdisTapi - ok
09:51:13.0904 2296 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
09:51:13.0919 2296 Ndisuio - ok
09:51:14.0653 2296 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
09:51:14.0684 2296 NdisWan - ok
09:51:14.0871 2296 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
09:51:14.0887 2296 NDProxy - ok
09:51:14.0996 2296 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
09:51:14.0996 2296 NetBIOS - ok
09:51:15.0215 2296 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
09:51:15.0246 2296 netbt - ok
09:51:15.0418 2296 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
09:51:15.0434 2296 nfrd960 - ok
09:51:15.0621 2296 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
09:51:15.0636 2296 Npfs - ok
09:51:15.0777 2296 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
09:51:15.0808 2296 nsiproxy - ok
09:51:16.0058 2296 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
09:51:16.0136 2296 Ntfs - ok
09:51:16.0276 2296 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
09:51:16.0307 2296 ntrigdigi - ok
09:51:16.0401 2296 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
09:51:16.0416 2296 Null - ok
09:51:16.0572 2296 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
09:51:16.0588 2296 nvraid - ok
09:51:16.0713 2296 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
09:51:16.0728 2296 nvstor - ok
09:51:16.0838 2296 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
09:51:16.0853 2296 nv_agp - ok
09:51:16.0947 2296 NwlnkFlt - ok
09:51:17.0040 2296 NwlnkFwd - ok
09:51:17.0181 2296 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
09:51:17.0181 2296 ohci1394 - ok
09:51:17.0321 2296 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
09:51:17.0352 2296 Parport - ok
09:51:17.0664 2296 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
09:51:17.0664 2296 partmgr - ok
09:51:17.0883 2296 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
09:51:17.0898 2296 Parvdm - ok
09:51:18.0070 2296 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
09:51:18.0101 2296 pci - ok
09:51:18.0413 2296 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
09:51:18.0413 2296 pciide - ok
09:51:18.0538 2296 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
09:51:18.0554 2296 pcmcia - ok
09:51:18.0710 2296 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
09:51:18.0772 2296 PEAUTH - ok
09:51:18.0959 2296 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
09:51:18.0975 2296 PptpMiniport - ok
09:51:19.0084 2296 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
09:51:19.0100 2296 Processor - ok
09:51:19.0318 2296 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
09:51:19.0334 2296 PSched - ok
09:51:19.0552 2296 PxHelp20 (03e0fe281823ba64b3782f5b38950e73) C:\Windows\system32\Drivers\PxHelp20.sys
09:51:19.0568 2296 PxHelp20 - ok
09:51:19.0755 2296 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
09:51:19.0802 2296 ql2300 - ok
09:51:19.0973 2296 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
09:51:19.0989 2296 ql40xx - ok
09:51:20.0176 2296 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
09:51:20.0207 2296 QWAVEdrv - ok
09:51:20.0457 2296 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
09:51:20.0660 2296 R300 - ok
09:51:20.0816 2296 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
09:51:20.0831 2296 RasAcd - ok
09:51:20.0862 2296 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
09:51:20.0894 2296 Rasl2tp - ok
09:51:20.0956 2296 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
09:51:20.0972 2296 RasPppoe - ok
09:51:21.0018 2296 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
09:51:21.0034 2296 RasSstp - ok
09:51:21.0096 2296 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
09:51:21.0190 2296 rdbss - ok
09:51:21.0268 2296 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
09:51:21.0284 2296 RDPCDD - ok
09:51:21.0315 2296 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
09:51:21.0330 2296 rdpdr - ok
09:51:21.0346 2296 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
09:51:21.0362 2296 RDPENCDD - ok
09:51:21.0440 2296 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
09:51:21.0471 2296 RDPWD - ok
09:51:21.0892 2296 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
09:51:21.0923 2296 RFCOMM - ok
09:51:22.0095 2296 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
09:51:22.0126 2296 rimmptsk - ok
09:51:22.0204 2296 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
09:51:22.0235 2296 rimsptsk - ok
09:51:22.0266 2296 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
09:51:22.0298 2296 rismxdp - ok
09:51:22.0344 2296 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
09:51:22.0360 2296 rspndr - ok
09:51:22.0391 2296 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
09:51:22.0407 2296 sbp2port - ok
09:51:22.0469 2296 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys
09:51:22.0500 2296 sdbus - ok
09:51:22.0547 2296 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
09:51:22.0578 2296 secdrv - ok
09:51:22.0625 2296 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
09:51:22.0641 2296 Serenum - ok
09:51:22.0688 2296 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
09:51:22.0719 2296 Serial - ok
09:51:22.0766 2296 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
09:51:22.0781 2296 sermouse - ok
09:51:22.0859 2296 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
09:51:22.0859 2296 sffdisk - ok
09:51:22.0906 2296 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
09:51:22.0922 2296 sffp_mmc - ok
09:51:22.0984 2296 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
09:51:22.0984 2296 sffp_sd - ok
09:51:23.0046 2296 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
09:51:23.0062 2296 sfloppy - ok
09:51:23.0109 2296 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
09:51:23.0109 2296 sisagp - ok
09:51:23.0171 2296 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
09:51:23.0187 2296 SiSRaid2 - ok
09:51:23.0249 2296 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
09:51:23.0280 2296 SiSRaid4 - ok
09:51:23.0343 2296 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
09:51:23.0374 2296 Smb - ok
09:51:23.0436 2296 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
09:51:23.0452 2296 spldr - ok
09:51:23.0514 2296 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
09:51:23.0546 2296 srv - ok
09:51:23.0577 2296 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
09:51:23.0624 2296 srv2 - ok
09:51:23.0670 2296 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
09:51:23.0686 2296 srvnet - ok
09:51:23.0748 2296 STHDA (6a2a5e809c2c0178326d92b19ee4aad3) C:\Windows\system32\drivers\stwrt.sys
09:51:23.0780 2296 STHDA - ok
09:51:23.0858 2296 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
09:51:23.0858 2296 swenum - ok
09:51:23.0904 2296 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
09:51:23.0904 2296 Symc8xx - ok
09:51:23.0936 2296 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
09:51:23.0951 2296 Sym_hi - ok
09:51:23.0982 2296 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
09:51:23.0982 2296 Sym_u3 - ok
09:51:24.0076 2296 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
09:51:24.0107 2296 Tcpip - ok
09:51:24.0154 2296 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
09:51:24.0170 2296 Tcpip6 - ok
09:51:24.0310 2296 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
09:51:24.0326 2296 tcpipreg - ok
09:51:24.0357 2296 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
09:51:24.0372 2296 TDPIPE - ok
09:51:24.0404 2296 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
09:51:24.0404 2296 TDTCP - ok
09:51:24.0419 2296 tdx - ok
09:51:24.0544 2296 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
09:51:24.0560 2296 TermDD - ok
09:51:24.0622 2296 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
09:51:24.0638 2296 tssecsrv - ok
09:51:24.0700 2296 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
09:51:24.0716 2296 tunmp - ok
09:51:24.0762 2296 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
09:51:24.0778 2296 tunnel - ok
09:51:24.0809 2296 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
09:51:24.0809 2296 uagp35 - ok
09:51:24.0887 2296 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
09:51:24.0903 2296 udfs - ok
09:51:24.0934 2296 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
09:51:24.0950 2296 uliagpkx - ok
09:51:24.0965 2296 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
09:51:24.0981 2296 uliahci - ok
09:51:25.0012 2296 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
09:51:25.0043 2296 UlSata - ok
09:51:25.0059 2296 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
09:51:25.0074 2296 ulsata2 - ok
09:51:25.0090 2296 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
09:51:25.0106 2296 umbus - ok
09:51:25.0168 2296 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
09:51:25.0168 2296 USBAAPL - ok
09:51:25.0230 2296 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
09:51:25.0246 2296 usbaudio - ok
09:51:25.0277 2296 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
09:51:25.0277 2296 usbccgp - ok
09:51:25.0293 2296 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
09:51:25.0308 2296 usbcir - ok
09:51:25.0371 2296 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
09:51:25.0402 2296 usbehci - ok
09:51:25.0449 2296 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
09:51:25.0480 2296 usbhub - ok
09:51:25.0558 2296 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
09:51:25.0558 2296 usbohci - ok
09:51:25.0620 2296 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
09:51:25.0636 2296 usbprint - ok
09:51:25.0698 2296 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
09:51:25.0730 2296 usbscan - ok
09:51:25.0854 2296 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
09:51:25.0886 2296 USBSTOR - ok
09:51:25.0932 2296 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
09:51:25.0964 2296 usbuhci - ok
09:51:26.0026 2296 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
09:51:26.0026 2296 usbvideo - ok
09:51:26.0088 2296 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
09:51:26.0104 2296 vga - ok
09:51:26.0135 2296 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
09:51:26.0151 2296 VgaSave - ok
09:51:26.0166 2296 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
09:51:26.0182 2296 viaagp - ok
09:51:26.0213 2296 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
09:51:26.0229 2296 ViaC7 - ok
09:51:26.0244 2296 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
09:51:26.0260 2296 viaide - ok
09:51:26.0291 2296 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
09:51:26.0291 2296 volmgr - ok
09:51:26.0338 2296 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
09:51:26.0385 2296 volmgrx - ok
09:51:26.0447 2296 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
09:51:26.0447 2296 volsnap - ok
09:51:26.0478 2296 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
09:51:26.0510 2296 vsmraid - ok
09:51:26.0603 2296 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
09:51:26.0619 2296 WacomPen - ok
09:51:26.0666 2296 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
09:51:26.0697 2296 Wanarp - ok
09:51:26.0728 2296 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
09:51:26.0728 2296 Wanarpv6 - ok
09:51:26.0759 2296 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
09:51:26.0790 2296 Wd - ok
09:51:26.0822 2296 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
09:51:26.0837 2296 Wdf01000 - ok
09:51:26.0931 2296 winachsf (4daca8f07537d4d7e3534bb99294aa26) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
09:51:27.0009 2296 winachsf - ok
09:51:27.0102 2296 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
09:51:27.0102 2296 WmiAcpi - ok
09:51:27.0180 2296 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
09:51:27.0196 2296 WpdUsb - ok
09:51:27.0243 2296 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
09:51:27.0258 2296 ws2ifsl - ok
09:51:27.0290 2296 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
09:51:27.0321 2296 WUDFRd - ok
09:51:27.0368 2296 XAudio (5a7ff9a18ff6d7e0527fe3abf9204ef8) C:\Windows\system32\DRIVERS\xaudio.sys
09:51:27.0368 2296 XAudio - ok
09:51:27.0446 2296 yukonwlh (a4822191c7cea271903c2a4fb6d9809d) C:\Windows\system32\DRIVERS\yk60x86.sys
09:51:27.0446 2296 yukonwlh - ok
09:51:27.0492 2296 MBR (0x1B8) (cdb4de4bbd714f152979da2dcbef57eb) \Device\Harddisk0\DR0
09:51:27.0555 2296 \Device\Harddisk0\DR0 - ok
09:51:27.0570 2296 Boot (0x1200) (1c87bb41b794aa77b498067de1159056) \Device\Harddisk0\DR0\Partition0
09:51:27.0586 2296 \Device\Harddisk0\DR0\Partition0 - ok
09:51:27.0586 2296 Boot (0x1200) (f805fa144e726ceaa4cf9a250587b283) \Device\Harddisk0\DR0\Partition1
09:51:27.0586 2296 \Device\Harddisk0\DR0\Partition1 - ok
09:51:27.0586 2296 ============================================================
09:51:27.0586 2296 Scan finished
09:51:27.0586 2296 ============================================================
09:51:27.0617 2228 Detected object count: 0
09:51:27.0617 2228 Actual detected object count: 0
09:51:56.0717 3788 Deinitialize success

Thanks for your help,
Tony
Tlaptony is offline  
Old 02-27-2012, 08:25 AM   #5
TSF Team
Manager Emeritus
 
Join Date: Jun 2008
Location: London UK
Posts: 4,966
OS: Windows 7 SP1 x64



Hi Tlaptony, thanks for the logs.


If you haven't already, please Subscribe to this Thread to get immediate notification of replies as soon as they are posted. To do this click Thread Tools, then click Subscribe to this Thread. Make sure it is set to Instant notification by email, then click Add Subscription.

Please note that the forum is very busy and if I don't hear from you within three days this thread will be closed.

Before beginning the fix, read this post completely. If there's anything that you do not understand, kindly ask your questions before proceeding. Ensure that there aren't any opened browsers when you are carrying out the procedures below. You may want to print and/or save the following instructions in Notepad as this webpage will not be available when you're carrying out the fix.

It is IMPORTANT that you don't miss a step & perform everything in the correct order/sequence.

------------------------------------------------------

Please note that these fixes are not instantaneous. Most infections require more than one round to properly eradicate.

Please stay with me until given the 'all clear' even if symptoms seemingly abate.

Kindly follow my instructions and please do no fixing on your own or running of scanners unless requested by a helper.

------------------------------------------------------

If there are any personal files, pics, etc. on your computer you cannot live without, back it up now just as a precaution.

------------------------------------------------------

Due to the restrictions on Windows Vista, all tools should be started by right-click > Run as Administrator

------------------------------------------------------

Try to carry out the next set of instructions using Normal mode. If you cannot, be sure to boot into Safe Mode with Networking

**Read through these instructions in their entirety BEFORE executing them.** If you have any questions or are unsure about any of the following instructions PLEASE ASK for clarification before continuing. You may want to copy this page to notepad or print it as it will not be available while you run ComboFix.
  1. Download ComboFix from one of these locations:

    Link 1
    Link 2

    * IMPORTANT !!! Place combofix.exe on your Desktop
  2. Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with ComboFix.


    You can get help on disabling your protection programs here

  3. Double click on combofix.exe & follow the prompts.

  4. Your desktop may go blank. This is normal. It will return when ComboFix is done. ComboFix may reboot your machine. This is normal.

  5. When finished, it shall produce a log for you. Post that log in your next reply


    Note:
    Do not mouseclick combofix's window whilst it's running. That may cause it to stall.


    ---------------------------------------------------------------------------------------------

  6. Ensure your AntiVirus and AntiSpyware applications are re-enabled.

    ---------------------------------------------------------------------------------------------
Will Watts is offline  
Old 02-27-2012, 01:01 PM   #6
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista


I Followed the instructions for turning off mcafee but combo fix is telling me mcafee is still on and to proceed at my own risk. The real time scanning and firewall are definitely turned off. Is that normal and should I proceed with combo fix ?
Tlaptony is offline  
Old 02-27-2012, 02:03 PM   #7
TSF Team
Manager Emeritus
 
Join Date: Jun 2008
Location: London UK
Posts: 4,966
OS: Windows 7 SP1 x64



Hi Tlaptony, please proceed with Combofix if you're sure real time scanning are disabled.
Will Watts is offline  
Old 02-27-2012, 02:07 PM   #8
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



Thanks, to be sure I uninstalled Mcafee and ran combo fix. After about 30 minutes got the message
"freeware implementation of XCACLS has stopped working.
A problem caused the program to stop working correctly. Windows will close the program and notify you if a solution is available."

Combofix appears to still be running.
Tlaptony is offline  
Old 02-27-2012, 02:13 PM   #9
TSF Team
Manager Emeritus
 
Join Date: Jun 2008
Location: London UK
Posts: 4,966
OS: Windows 7 SP1 x64



Hi Tlaptony,

Is Combofix still progressing, or has it stayed stuck on a particular stage for some time?
Will Watts is offline  
Old 02-27-2012, 02:16 PM   #10
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



It has been in the same spot since it started. It says

"Scanning for infected files...
This typically doesn't take more that 10 minutes
However, scan times for badly infected machines can easily double"
_ flashing underscore
Tlaptony is offline  
Old 02-27-2012, 02:33 PM   #11
TSF Team
Manager Emeritus
 
Join Date: Jun 2008
Location: London UK
Posts: 4,966
OS: Windows 7 SP1 x64



Okay, please exit Combofix and reboot your computer into Safe Mode with Networking.

Restart your computer and boot into Safe Mode with Networking by hitting the F8 key repeatedly until a menu shows up (and choose Safe Mode with Networking from the list). In some systems, this may be the F5 key, so try that if F8 doesn't work. Login on your usual account.

Please try running Combofix.exe again. If after 10 minutes, you are still stuck at the same point, please post up here for new instructions.
Will Watts is offline  
Old 02-27-2012, 02:51 PM   #12
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



here's what I am seeing;


Please Wait
combofix is preparing to run.
Access denied.
Admistrative permissions are needed to use the selected options.
Use administrator command prompt to complete these tasks

Attempting to create a new System restore point.

Then a message box poped up saying "the recycle bin for the c:/ is corrupted
do you want to empty the recycle bin for this drive?
Tlaptony is offline  
Old 02-27-2012, 02:54 PM   #13
TSF Team
Manager Emeritus
 
Join Date: Jun 2008
Location: London UK
Posts: 4,966
OS: Windows 7 SP1 x64



Hi Tlaptony, the malware on your system is interfering with Combofix.

Please reboot your computer into normal mode, and delete your existing copy of Combofix. Download a new copy of Combofix from[list][*] here . Before you save the file, rename the file svchost.exe and save it directly to your C:\ Drive.

There is no need to empty your recycle bin at the moment, please now try running Combofix (C:\svchost.exe)
Will Watts is offline  
Old 02-27-2012, 03:29 PM   #14
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



Still in the same spot since it started. It says

"Scanning for infected files...
This typically doesn't take more that 10 minutes
However, scan times for badly infected machines can easily double"
_ flashing underscore

I don't know if this matters but I am doing all of this by flash drive as the infected laptop is not able to go online.

I donloaded combofix from your last post, saved it to the flash drive, changed the name and saved it onto the c drive on the laptop and the ran it from the c drive. and it sits as above.
Tlaptony is offline  
Old 02-27-2012, 03:36 PM   #15
TSF Team
Manager Emeritus
 
Join Date: Jun 2008
Location: London UK
Posts: 4,966
OS: Windows 7 SP1 x64



Hi Tlaptony, thanks for the info. Using your Flash drive shouldn't make a difference providing the tools are saved to the computer. You've been infected with the latest version of a nasty rootkit known as ZeroAccess. This is known to cause issues with connections, and in some cases has required a full reinstall to repair all issues.

We need to run a different tool, to try and take out the active components of the rootkit. Exit Combofix, and save the following tool to your desktop.
  • Download The Avenger by Swandog46 from here.
  • Unzip/extract it to a folder on your desktop.
  • Double click on avenger.exe to run The Avenger.
  • Click OK.
  • Make sure that the box next to Scan for rootkits has a tick in it and that the box next to Automatically disable any rootkits found does not have a tick in it.
  • Copy all of the text in the below textbox to the clibpboard by highlighting it and then pressing Ctrl+C.
    Code:
    Folders to delete:
    C:\Windows\$NtUninstallKB60278$
  • In the avenger window, click the Paste Script from Clipboard, button.
  • Click the Execute button.
  • You will be asked Are you sure you want to execute the current script?.
  • Click Yes.
  • You will now be asked First step completed --- The Avenger has been successfully set up to run on next boot. Reboot now?.
  • Click Yes.
  • Your PC will now be rebooted.
  • Note: If the above script contains Drivers to delete: or Drivers to disable:, then The Avenger will require two reboots to complete its operation.
  • If that is the case, it will force a BSOD on the first reboot. This is normal & expected behaviour.
  • After your PC has completed the necessary reboots, a log should automatically open. If it does not automatically open, then the log can be found at %systemdrive%\avenger.txt (typically C:\avenger.txt).
  • Please post this log.
Will Watts is offline  
Old 02-27-2012, 03:54 PM   #16
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



Logfile of The Avenger Version 2.0, (c) by Swandog46
Swandog46's Public Anti-Malware Tools
Platform: Windows Vista
*******************
Script file opened successfully.
Script file read successfully.
Backups directory opened successfully at C:\Avenger
*******************
Beginning to process script file:
Rootkit scan active.
No rootkits found!

Error: could not open folder "C:\Windows\$NtUninstallKB60278$"
Deletion of folder "C:\Windows\$NtUninstallKB60278$" failed!
Status: 0xc0000715

Completed script processing.
*******************
Finished! Terminate.

It also got the pop up message again that "the Recycle bin on C:\ is corrupted. Do you want to empty the recycle bin for this drive?"

The recycle bin is already empty
Thanks again,
Tony
Tlaptony is offline  
Old 02-27-2012, 04:00 PM   #17
TSF Team
Manager Emeritus
 
Join Date: Jun 2008
Location: London UK
Posts: 4,966
OS: Windows 7 SP1 x64



Hi Tlaptony, this infection is proving evasive. We may have to try more manual methods.

Download junction.zip from this link and extract junction.exe to your desktop.

Open notepad and copy/paste the contents of the codebox below into it:

Code:
cd /d %~dp0
junction -s c:>log.txt
notepad log.txt
Save this as peek.bat Choose to "Save type as - All Files" save it next to junction.exe

Right click the peek.bat and select Run As administrator allow it to run. It will take some time to complete, so please be patient and wait until it finishes. A log should open, log.txt will be created on your desktop. Please attach that log in your next reply.
Will Watts is offline  
Old 02-27-2012, 04:10 PM   #18
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



"Save this as peek.bat Choose to "Save type as - All Files" save it next to junction.exe"
I do not understand what to do. I am doing this by flash drive. Do I do the notepad copy on this computer and then save it to the flashdrive and then save it to the desktop next to the extracted junction file. or open notebook on the other computer and type
cd /d %~dp0
junction -s c:>log.txt
notepad log.txt

and then save as peek.bat on the desktop next to extracted junction
Thanks,
I just do not want to mess it up worse
Tlaptony is offline  
Old 02-27-2012, 04:13 PM   #19
TSF Team
Manager Emeritus
 
Join Date: Jun 2008
Location: London UK
Posts: 4,966
OS: Windows 7 SP1 x64



Hi Tlaptony, as long as peek.bat is saved in the same location as junction.exe it does not matter on which computer it is created.

For ease, I suggest you create the notepad file on the computer you're using to view this thread, where you can copy and paste the commands, and then save as peek.bat.

Copy both peek.bat and junction.exe to the desktop of the infected computer, and run peek.bat as Administrator.
Will Watts is offline  
Old 02-27-2012, 04:18 PM   #20
Registered Member
 
Join Date: Feb 2012
Posts: 80
OS: Vista



Junction v1.06 - Windows junction creator and reparse point viewer
Copyright (C) 2000-2010 Mark Russinovich
Sysinternals - www.sysinternals.com
.No reparse points found.
Tlaptony is offline  
 

Thread Tools Search this Thread
Search this Thread:

Advanced Search

Similar Threads
Thread Thread Starter Forum Replies Last Post
Google redirect on Vista- Total novice
Computer been running slow for a while. iTunes not synching properly. Now have Google redirect. Please help. . DDS (Ver_2011-08-26.01) - NTFSx86 Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.5.0_14 Run by Thompson at 12:06:35 on 2012-02-03
andrew7hompson Resolved HJT Threads 65 03-04-2012 11:34 AM
virus removal help
:smile::smile: thanks in advance for any help you can provide. i have been a member on the forum for a number of yrs, and you have helped me in the past. i started to see my pc slow down so i did all the standard (cleaning, delete all tmp files, etc) it did not help. then i notice that i was...
stroh Resolved HJT Threads 50 03-04-2012 07:06 AM
help please
i shut the lid on my laptop a little hard. Itwas still logged on the internet when i opened it.I closed the window and shut the laptop down. the next time i turned it on an error message popped up and said something about installing a new hard drive
sterlingcurtis Laptop Support 6 03-01-2012 06:35 PM
[SOLVED] Help with Nasty Virus; Computer Completely Unusable
Hello, I am hoping someone might be able to help me deal with this really nasty virus I'm dealing with. The computer runs Windows XP (and I'm typing now from a different computer). The other night, I was browsing and chatting on the web. Everything was fine with the computer, and I...
SCSM2650 Windows XP Support 4 02-27-2012 09:58 AM
Virus malware " this programme cannot dispaly webpage "
Hi Each time i boot my laptop running windowa 7 I get the message above.I dont have any asscess to anytning on the destop or task manager . Help please ???
jimjojn Inactive Malware Help Topics 2 02-25-2012 08:40 PM

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is on
Smilies are on
[IMG] code is on
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


Post a Question


» Site Navigation
 > FAQ
  > 10.0.0.2
Powered by vBadvanced CMPS v3.2.3


All times are GMT -7. The time now is 01:01 AM.


Powered by vBulletin® Version 3.8.8
Copyright ©2000 - 2020, vBulletin Solutions, Inc.
vBulletin Security provided by vBSecurity v2.2.2 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
User Alert System provided by Advanced User Tagging v3.1.0 (Pro) - vBulletin Mods & Addons Copyright © 2020 DragonByte Technologies Ltd.
Copyright 2001 - 2018, Tech Support Forum

Windows 10 - Windows 7 - Windows XP - Windows Vista - Trojan Removal - Spyware Removal - Virus Removal - Networking - Security - Top Web Hosts