Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Nasty Google Redirect Issue


  • This topic is locked This topic is locked
14 replies to this topic

#1 drukore

drukore

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:12:52 PM

Posted 31 October 2011 - 10:24 PM

Been seeing a lot of this lately. Google redirect issue. Search for something, takes you elsewhere. Also noticing my Malware Bytes program keeps blocking an attack every few moments.

I attached the two files for DDS but the GMER program kept giving me an error when loading and wouldn't allow me to look for modules, system file or anything...so I'm not sure if this has something to do with my issue. But please do help. I've tried a few things but you know how it goes. Normal scans just don't do it for this sort of thing. Thanks!

Attached Files



BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:52 PM

Posted 02 November 2011 - 02:39 AM

Hello and Welcome to the forums!

My name is Gringo and I'll be glad to help you with your computer problems.

Somethings to remember while we are working together.

  • Do not run any other tool untill instructed to do so!
  • please Do not Attach logs or put in code boxes.
  • Tell me about any problems that have occurred during the fix.
  • Tell me of any other symptoms you may be having as these can help also.
  • Do not run anything while running a fix.
  • Do not run any other tool untill instructed to do so!


Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 drukore

drukore
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:12:52 PM

Posted 02 November 2011 - 09:51 PM

hey Gringo...

so I ran Combofix (attached the log) and went to Firefox to see if I still had the Google redirect. Yup. it redirected me elsewhere...so problem not fixed totally yet. I'll await further instructions.

ComboFix 11-11-02.03 - Andru Brozovich 11/02/2011 18:56:03.3.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.2046.1369 [GMT -7:00]
Running from: c:\documents and settings\Andru Brozovich\My Documents\Downloads\ComboFix.exe
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\program files\LP
c:\program files\LP\F39A\11.tmp
c:\program files\LP\F39A\2.tmp
c:\program files\LP\F39A\20EC.tmp
c:\program files\LP\F39A\2903.tmp
c:\program files\LP\F39A\29D2.tmp
c:\program files\LP\F39A\67E.tmp
c:\program files\LP\F39A\67F.tmp
c:\program files\LP\F39A\680.tmp
c:\program files\LP\F39A\681.tmp
c:\program files\LP\F39A\684.tmp
c:\program files\LP\F39A\C.tmp
c:\program files\LP\F39A\D.tmp
c:\program files\LP\F39A\E.exe
c:\program files\LP\F39A\E.tmp
c:\program files\LP\F39A\F.tmp
c:\windows\system32\d3d9caps.dat
.
.
((((((((((((((((((((((((( Files Created from 2011-10-03 to 2011-11-03 )))))))))))))))))))))))))))))))
.
.
2011-10-30 04:29 . 2011-10-30 04:29 -------- d-----w- c:\documents and settings\Andru Brozovich\Application Data\Malwarebytes
2011-10-30 04:29 . 2011-10-30 04:29 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-10-30 04:29 . 2011-10-30 04:29 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-10-30 04:29 . 2011-09-01 00:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-10-29 17:07 . 2011-10-29 17:08 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{AE4E9D9F-140B-4444-9F54-7EF88D1966D3}
2011-10-29 17:02 . 2011-10-29 17:02 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{C78336EC-F2EB-4640-99A4-DFE96581B90B}
2011-10-27 06:11 . 2011-10-27 06:11 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{F4FF7251-2B0F-48B9-A31D-1930EB197336}
2011-10-27 05:38 . 2011-10-27 05:38 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{6268CC84-62BB-4890-B980-FC891FC3470E}
2011-10-27 04:13 . 2011-10-27 04:13 -------- d-s---w- c:\documents and settings\Andru Brozovich\UserData
2011-10-27 03:37 . 2011-10-28 13:07 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{C1CF19B4-9194-417A-8B85-84F1471783CE}
2011-10-27 02:24 . 2011-10-28 12:52 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{4E79824D-D052-4F7D-A56B-075BC12942C0}
2011-10-27 01:49 . 2011-10-30 04:34 -------- d-----w- c:\program files\42492
2011-10-27 01:48 . 2011-10-30 04:34 -------- d-----w- c:\documents and settings\Andru Brozovich\Application Data\A5742
2011-10-26 06:20 . 2011-10-26 06:20 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{E6A5D1F3-568D-4BA2-B7B6-7B6E93D9DA97}
2011-10-26 05:16 . 2011-10-27 06:11 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{ECCA2E41-2653-4A28-BB8F-62B24E1A584D}
2011-10-26 05:04 . 2011-10-27 05:54 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{F7BFF4EE-E380-444D-BF91-DE4716D46130}
2011-10-26 05:00 . 2011-10-27 05:49 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{08BCEE1B-8DEC-401F-989A-111EE3AF2366}
2011-10-26 04:20 . 2011-10-26 04:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Toontrack
2011-10-26 04:13 . 2011-10-26 04:13 45056 ----a-r- c:\documents and settings\Andru Brozovich\Application Data\Microsoft\Installer\{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}\ARPPRODUCTICON.exe
2011-10-26 03:45 . 2011-10-26 03:45 -------- d-----w- c:\program files\Toontrack
2011-10-20 00:52 . 2011-10-20 01:03 -------- d-----w- c:\documents and settings\Andru Brozovich\Application Data\mIRC
2011-10-20 00:52 . 2011-10-20 00:52 -------- d-----w- c:\program files\mIRC
2011-10-05 03:48 . 2011-06-21 18:06 180224 ----a-w- c:\windows\system32\l6podhd3.dll
2011-10-05 03:48 . 2011-06-21 18:06 580480 ----a-w- c:\windows\system32\drivers\L6PODHD3.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2006-11-16 00:40 . 2011-03-06 00:56 20668485 ----a-w- c:\program files\Battery 3.exe
2001-11-05 16:30 . 2011-03-06 00:56 165376 ----a-w- c:\program files\UNWISE.EXE
2011-10-01 07:48 . 2011-05-08 06:01 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-10-28_19.48.04 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-02 04:18 . 2011-11-02 04:18 16384 c:\windows\temp\Perflib_Perfdata_66c.dat
+ 2011-10-29 17:07 . 2011-10-29 17:07 795648 c:\windows\Installer\1e574df.msi
+ 2011-10-29 17:02 . 2011-10-29 17:02 301568 c:\windows\Installer\1e56c17.msi
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"="c:\program files\Dell Support\DSAgnt.exe" [2005-05-15 332800]
"SetDefaultMIDI"="MIDIDef.exe" [2005-05-24 25088]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2011-03-02 3318784]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SigmatelSysTrayApp"="stsystra.exe" [2005-03-23 339968]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-08-06 344064]
"DMXLauncher"="c:\program files\Dell\Media Experience\DMXLauncher.exe" [2005-10-05 94208]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 249856]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 81920]
"DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-09-08 122940]
"CTHelper"="CTHELPER.EXE" [2005-05-24 16384]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"Memeo Instant Backup"="c:\program files\Memeo\AutoBackup\MemeoLauncher2.exe" [2010-07-08 136416]
"Memeo AutoSync"="c:\program files\Memeo\AutoSync\MemeoLauncher2.exe" [2010-04-16 144608]
"Seagate Dashboard"="c:\program files\Seagate\Seagate Dashboard\MemeoLauncher.exe" [2010-07-06 79112]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2011-03-02 2216960]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-07-06 421888]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-09-01 449608]
.
c:\documents and settings\Andru Brozovich\Start Menu\Programs\Startup\
Seagate Product Registration.lnk - c:\documents and settings\Andru Brozovich\Application Data\Leadertech\PowerRegister\Seagate Product Registration.exe [2011-3-8 1731736]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe"
"AdobeBridge"=
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"MSKDetectorExe"=c:\program files\McAfee\SpamKiller\MSKDetct.exe /uninstall
"RealTray"=c:\program files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
"SwitchBoard"=c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
"WinampAgent"="c:\program files\Winamp\winampa.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\BitComet\\BitComet.exe"=
"c:\\Program Files\\SoulseekNS\\slsk.exe"=
"c:\\Program Files\\Trillian\\trillian.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"18959:TCP"= 18959:TCP:BitComet 18959 TCP
"18959:UDP"= 18959:UDP:BitComet 18959 UDP
.
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [3/2/2011 12:42 AM 142592]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [10/29/2011 9:29 PM 366152]
R2 MemeoBackgroundService;MemeoBackgroundService;c:\program files\Memeo\AutoBackup\MemeoBackgroundService.exe [7/8/2010 11:21 AM 25824]
R2 NIHardwareService;NIHardwareService;c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [10/12/2011 2:50 AM 4176896]
R2 SeagateDashboardService;Seagate Dashboard Service;c:\program files\Seagate\Seagate Dashboard\SeagateDashboardService.exe [7/6/2010 12:32 PM 14088]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [10/29/2011 9:29 PM 22216]
S3 L6PODHD3;Service - Line 6 POD HD300;c:\windows\system32\drivers\L6PODHD3.sys [10/4/2011 8:48 PM 580480]
S3 MobileAdapter;Mobile Adapter USB Modem and USB Serial;c:\windows\system32\drivers\qscnusb.sys [6/4/2011 7:40 PM 103552]
S3 SwitchBoard;Adobe SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2/19/2010 2:37 PM 517096]
.
Contents of the 'Scheduled Tasks' folder
.
2011-10-27 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-02 00:57]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=60076
mStart Page = hxxp://www.dell.com
IE: &D&ownload &with BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload all with BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
IE: Crawler Search - tbr:iemenu
Trusted Zone: line6.net
TCP: DhcpNameServer = 192.168.15.1
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\ctbr.dll
FF - ProfilePath - c:\documents and settings\Andru Brozovich\Application Data\Mozilla\Firefox\Profiles\clygxa2x.default\
FF - prefs.js: browser.search.selectedEngine - Bing
FF - prefs.js: browser.startup.homepage - www.google.com
FF - prefs.js: keyword.URL - hxxp://www.startnow.com/s/?src=addrbar&provider=Bing&provider_code=Z064&partner_id=284&product_id=379&affiliate_id=&channel=sonic&toolbar_id=200&toolbar_version=2.0&install_country=US&install_date=20110626&user_guid=C2B3EE1591564F7ABBFA178987603701&machine_id=06056fe9b5fb585ce2a37accd6cb75bd&browser=FF&os=win&os_version=5.1-x86-SP2&q=
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-02 19:27
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3127288448-3616656131-18243365-1006\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**$%‘%]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-3127288448-3616656131-18243365-1006\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**$%‘%\OpenWithList]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-3127288448-3616656131-18243365-1006\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*¬*Æ**%\OpenWithList]
@Class="Shell"
.
Completion time: 2011-11-02 19:42:36
ComboFix-quarantined-files.txt 2011-11-03 02:42
ComboFix2.txt 2011-10-30 04:02
ComboFix3.txt 2011-10-28 20:04
.
Pre-Run: 100,417,048,576 bytes free
Post-Run: 100,430,426,112 bytes free
.
- - End Of File - - 2A7F19E319394BD353618AD36D461670

Attached Files

  • Attached File  log.txt   12.42KB   2 downloads

Edited by gringo_pr, 03 November 2011 - 12:45 AM.


#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:52 PM

Posted 02 November 2011 - 09:56 PM

Hello

I want you to run this tool for me next.

tdsskiller:

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 drukore

drukore
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:12:52 PM

Posted 02 November 2011 - 11:52 PM

cannot run exe. whenever I click it nothing happens. downloaded and tried in safe mode also.

#6 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:52 PM

Posted 03 November 2011 - 12:08 AM

Hello

I would like you to run this tool for me - fixTDSS

download it to your desktop and start the program

Follow the prompts and Ok any security prompts

when it is complete it will say the infection was cleared or no infection was found - let me know what it says

after it is complete I want you to restart the computer and try to rerun TDSSKiller for me and send me the report

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#7 drukore

drukore
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:12:52 PM

Posted 03 November 2011 - 12:40 AM

K the fix program found one bug and deleted it. TDSS ran a report and here is the goods.

22:35:45.0078 1376 TDSS rootkit removing tool 2.6.14.0 Oct 28 2011 11:11:01
22:35:45.0859 1376 ============================================================
22:35:45.0859 1376 Current date / time: 2011/11/02 22:35:45.0859
22:35:45.0859 1376 SystemInfo:
22:35:45.0859 1376
22:35:45.0875 1376 OS Version: 5.1.2600 ServicePack: 2.0
22:35:45.0875 1376 Product type: Workstation
22:35:45.0875 1376 ComputerName: KORE1
22:35:45.0875 1376 UserName: Andru Brozovich
22:35:45.0875 1376 Windows directory: C:\WINDOWS
22:35:45.0875 1376 System windows directory: C:\WINDOWS
22:35:45.0875 1376 Processor architecture: Intel x86
22:35:45.0875 1376 Number of processors: 2
22:35:45.0875 1376 Page size: 0x1000
22:35:45.0875 1376 Boot type: Normal boot
22:35:45.0875 1376 ============================================================
22:35:57.0156 1376 Initialize success
22:35:58.0328 2128 ============================================================
22:35:58.0328 2128 Scan started
22:35:58.0328 2128 Mode: Manual;
22:35:58.0328 2128 ============================================================
22:35:58.0953 2128 Abiosdsk - ok
22:35:59.0015 2128 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
22:35:59.0015 2128 abp480n5 - ok
22:35:59.0062 2128 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:35:59.0062 2128 ACPI - ok
22:35:59.0109 2128 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:35:59.0109 2128 ACPIEC - ok
22:35:59.0171 2128 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:35:59.0171 2128 adpu160m - ok
22:35:59.0250 2128 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
22:35:59.0250 2128 aec - ok
22:35:59.0312 2128 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:35:59.0312 2128 AFD - ok
22:35:59.0343 2128 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
22:35:59.0359 2128 agp440 - ok
22:35:59.0359 2128 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
22:35:59.0359 2128 agpCPQ - ok
22:35:59.0390 2128 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
22:35:59.0390 2128 Aha154x - ok
22:35:59.0406 2128 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:35:59.0406 2128 aic78u2 - ok
22:35:59.0453 2128 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:35:59.0453 2128 aic78xx - ok
22:35:59.0484 2128 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
22:35:59.0484 2128 AliIde - ok
22:35:59.0500 2128 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
22:35:59.0500 2128 alim1541 - ok
22:35:59.0531 2128 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
22:35:59.0531 2128 amdagp - ok
22:35:59.0578 2128 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
22:35:59.0578 2128 amsint - ok
22:35:59.0593 2128 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
22:35:59.0593 2128 asc - ok
22:35:59.0609 2128 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22:35:59.0609 2128 asc3350p - ok
22:35:59.0609 2128 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
22:35:59.0609 2128 asc3550 - ok
22:35:59.0656 2128 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
22:35:59.0656 2128 ASCTRM - ok
22:35:59.0703 2128 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:35:59.0703 2128 AsyncMac - ok
22:35:59.0734 2128 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:35:59.0734 2128 atapi - ok
22:35:59.0734 2128 Atdisk - ok
22:35:59.0812 2128 ati2mtag (03621f7f968ff63713943405deb777f9) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:35:59.0812 2128 ati2mtag - ok
22:35:59.0843 2128 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:35:59.0843 2128 Atmarpc - ok
22:35:59.0875 2128 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:35:59.0875 2128 audstub - ok
22:35:59.0890 2128 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:35:59.0890 2128 Beep - ok
22:36:00.0015 2128 catchme - ok
22:36:00.0046 2128 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
22:36:00.0046 2128 cbidf - ok
22:36:00.0046 2128 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:36:00.0046 2128 cbidf2k - ok
22:36:00.0078 2128 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
22:36:00.0093 2128 cd20xrnt - ok
22:36:00.0109 2128 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:36:00.0109 2128 Cdaudio - ok
22:36:00.0125 2128 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:36:00.0125 2128 Cdfs - ok
22:36:00.0156 2128 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:36:00.0156 2128 Cdrom - ok
22:36:00.0218 2128 Changer - ok
22:36:00.0296 2128 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
22:36:00.0296 2128 CmdIde - ok
22:36:00.0328 2128 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
22:36:00.0328 2128 Cpqarray - ok
22:36:00.0421 2128 ctac32k (79c819e2da176e1d4d549874f64052bd) C:\WINDOWS\system32\drivers\ctac32k.sys
22:36:00.0421 2128 ctac32k - ok
22:36:00.0468 2128 ctaud2k (d44041cc1ab0e755b63f4d2bfd132f2a) C:\WINDOWS\system32\drivers\ctaud2k.sys
22:36:00.0468 2128 ctaud2k - ok
22:36:00.0531 2128 ctprxy2k (c4b2cd6fd84618ceaf5fed03793bfc94) C:\WINDOWS\system32\drivers\ctprxy2k.sys
22:36:00.0531 2128 ctprxy2k - ok
22:36:00.0562 2128 ctsfm2k (3206a3e7459fe5613dc46279c5242cec) C:\WINDOWS\system32\drivers\ctsfm2k.sys
22:36:00.0562 2128 ctsfm2k - ok
22:36:00.0593 2128 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
22:36:00.0593 2128 dac2w2k - ok
22:36:00.0593 2128 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
22:36:00.0609 2128 dac960nt - ok
22:36:00.0625 2128 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:36:00.0625 2128 Disk - ok
22:36:00.0671 2128 DLABOIOM (e2d0de31442390c35e3163c87cb6a9eb) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
22:36:00.0671 2128 DLABOIOM - ok
22:36:00.0687 2128 DLACDBHM (d979bebcf7edcc9c9ee1857d1a68c67b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
22:36:00.0687 2128 DLACDBHM - ok
22:36:00.0687 2128 DLADResN (83545593e297f50a8e2524b4c071a153) C:\WINDOWS\system32\DLA\DLADResN.SYS
22:36:00.0687 2128 DLADResN - ok
22:36:00.0703 2128 DLAIFS_M (96e01d901cdc98c7817155cc057001bf) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
22:36:00.0703 2128 DLAIFS_M - ok
22:36:00.0718 2128 DLAOPIOM (0a60a39cc5e767980a31ca5d7238dfa9) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
22:36:00.0718 2128 DLAOPIOM - ok
22:36:00.0718 2128 DLAPoolM (9fe2b72558fc808357f427fd83314375) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
22:36:00.0718 2128 DLAPoolM - ok
22:36:00.0734 2128 DLARTL_N (7ee0852ae8907689df25049dcd2342e8) C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
22:36:00.0734 2128 DLARTL_N - ok
22:36:00.0796 2128 DLAUDFAM (f08e1dafac457893399e03430a6a1397) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
22:36:00.0796 2128 DLAUDFAM - ok
22:36:00.0828 2128 DLAUDF_M (e7d105ed1e694449d444a9933df8e060) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
22:36:00.0828 2128 DLAUDF_M - ok
22:36:00.0875 2128 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
22:36:00.0890 2128 dmboot - ok
22:36:00.0937 2128 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
22:36:00.0937 2128 dmio - ok
22:36:00.0984 2128 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:36:00.0984 2128 dmload - ok
22:36:01.0015 2128 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:36:01.0015 2128 DMusic - ok
22:36:01.0062 2128 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:36:01.0062 2128 dpti2o - ok
22:36:01.0062 2128 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:36:01.0062 2128 drmkaud - ok
22:36:01.0140 2128 DRVMCDB (fd0f95981fef9073659d8ec58e40aa3c) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
22:36:01.0140 2128 DRVMCDB - ok
22:36:01.0156 2128 DRVNDDM (b4869d320428cdc5ec4d7f5e808e99b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
22:36:01.0156 2128 DRVNDDM - ok
22:36:01.0171 2128 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:36:01.0171 2128 E100B - ok
22:36:01.0234 2128 emupia (7b59ec5a09434cdd64e99f62932d54cb) C:\WINDOWS\system32\drivers\emupia2k.sys
22:36:01.0234 2128 emupia - ok
22:36:01.0296 2128 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:36:01.0312 2128 Fastfat - ok
22:36:01.0343 2128 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:36:01.0343 2128 Fdc - ok
22:36:01.0359 2128 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
22:36:01.0359 2128 Fips - ok
22:36:01.0390 2128 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:36:01.0390 2128 Flpydisk - ok
22:36:01.0406 2128 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:36:01.0406 2128 FltMgr - ok
22:36:01.0421 2128 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:36:01.0421 2128 Fs_Rec - ok
22:36:01.0421 2128 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:36:01.0421 2128 Ftdisk - ok
22:36:01.0437 2128 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:36:01.0437 2128 Gpc - ok
22:36:01.0515 2128 ha10kx2k (f2e372643258db228a5961485380d4d0) C:\WINDOWS\system32\drivers\ha10kx2k.sys
22:36:01.0515 2128 ha10kx2k - ok
22:36:01.0562 2128 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:36:01.0562 2128 HDAudBus - ok
22:36:01.0625 2128 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:36:01.0625 2128 HidUsb - ok
22:36:01.0640 2128 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
22:36:01.0640 2128 hpn - ok
22:36:01.0687 2128 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:36:01.0687 2128 HTTP - ok
22:36:01.0718 2128 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
22:36:01.0718 2128 i2omgmt - ok
22:36:01.0734 2128 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
22:36:01.0734 2128 i2omp - ok
22:36:01.0781 2128 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:36:01.0781 2128 i8042prt - ok
22:36:01.0812 2128 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:36:01.0812 2128 Imapi - ok
22:36:01.0859 2128 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
22:36:01.0859 2128 ini910u - ok
22:36:01.0906 2128 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:36:01.0906 2128 IntelIde - ok
22:36:02.0031 2128 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:36:02.0078 2128 intelppm - ok
22:36:02.0234 2128 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:36:02.0234 2128 Ip6Fw - ok
22:36:02.0328 2128 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:36:02.0328 2128 IpFilterDriver - ok
22:36:02.0359 2128 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:36:02.0359 2128 IpInIp - ok
22:36:02.0421 2128 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:36:02.0421 2128 IpNat - ok
22:36:02.0453 2128 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:36:02.0453 2128 IPSec - ok
22:36:02.0500 2128 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:36:02.0500 2128 IRENUM - ok
22:36:02.0546 2128 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:36:02.0546 2128 isapnp - ok
22:36:02.0578 2128 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:36:02.0578 2128 Kbdclass - ok
22:36:02.0625 2128 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:36:02.0625 2128 kbdhid - ok
22:36:02.0718 2128 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
22:36:02.0718 2128 kmixer - ok
22:36:02.0765 2128 KSecDD (1be7cc2535d760ae4d481576eb789f24) C:\WINDOWS\system32\drivers\KSecDD.sys
22:36:02.0765 2128 KSecDD - ok
22:36:02.0859 2128 L6PODHD3 (363241562a1610b80fbf4d1b194d04cf) C:\WINDOWS\system32\Drivers\L6PODHD3.sys
22:36:02.0859 2128 L6PODHD3 - ok
22:36:02.0906 2128 lbrtfdc - ok
22:36:02.0984 2128 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
22:36:02.0984 2128 MBAMProtector - ok
22:36:03.0000 2128 MBAMSwissArmy - ok
22:36:03.0046 2128 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:36:03.0046 2128 mnmdd - ok
22:36:03.0109 2128 MobileAdapter (83c97f6d9feb37af9d785ac099e41a42) C:\WINDOWS\system32\DRIVERS\qscnusb.sys
22:36:03.0109 2128 MobileAdapter - ok
22:36:03.0156 2128 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
22:36:03.0156 2128 Modem - ok
22:36:03.0203 2128 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:36:03.0203 2128 Mouclass - ok
22:36:03.0265 2128 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:36:03.0265 2128 mouhid - ok
22:36:03.0312 2128 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
22:36:03.0312 2128 MountMgr - ok
22:36:03.0359 2128 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
22:36:03.0359 2128 mraid35x - ok
22:36:03.0406 2128 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:36:03.0406 2128 MRxDAV - ok
22:36:03.0468 2128 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:36:03.0468 2128 MRxSmb - ok
22:36:03.0500 2128 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
22:36:03.0500 2128 Msfs - ok
22:36:03.0546 2128 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:36:03.0546 2128 MSKSSRV - ok
22:36:03.0578 2128 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:36:03.0578 2128 MSPCLOCK - ok
22:36:03.0625 2128 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
22:36:03.0640 2128 MSPQM - ok
22:36:03.0687 2128 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:36:03.0687 2128 mssmbios - ok
22:36:03.0718 2128 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
22:36:03.0718 2128 Mup - ok
22:36:03.0765 2128 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
22:36:03.0765 2128 NDIS - ok
22:36:03.0796 2128 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:36:03.0796 2128 NdisTapi - ok
22:36:03.0828 2128 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:36:03.0828 2128 Ndisuio - ok
22:36:03.0859 2128 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:36:03.0859 2128 NdisWan - ok
22:36:03.0890 2128 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
22:36:03.0890 2128 NDProxy - ok
22:36:03.0921 2128 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:36:03.0921 2128 NetBIOS - ok
22:36:03.0968 2128 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:36:03.0968 2128 NetBT - ok
22:36:04.0031 2128 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
22:36:04.0031 2128 Npfs - ok
22:36:04.0078 2128 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
22:36:04.0093 2128 Ntfs - ok
22:36:04.0125 2128 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:36:04.0125 2128 Null - ok
22:36:04.0203 2128 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:36:04.0250 2128 nv - ok
22:36:04.0281 2128 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:36:04.0281 2128 NwlnkFlt - ok
22:36:04.0296 2128 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:36:04.0296 2128 NwlnkFwd - ok
22:36:04.0359 2128 ossrv (f9d4029ed95758cb1e17ad6eeb4cbea1) C:\WINDOWS\system32\drivers\ctoss2k.sys
22:36:04.0359 2128 ossrv - ok
22:36:04.0421 2128 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
22:36:04.0421 2128 Parport - ok
22:36:04.0468 2128 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
22:36:04.0468 2128 PartMgr - ok
22:36:04.0515 2128 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
22:36:04.0515 2128 ParVdm - ok
22:36:04.0562 2128 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
22:36:04.0562 2128 PCI - ok
22:36:04.0609 2128 PCIDump - ok
22:36:04.0671 2128 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:36:04.0671 2128 PCIIde - ok
22:36:04.0750 2128 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:36:04.0750 2128 Pcmcia - ok
22:36:04.0765 2128 PDCOMP - ok
22:36:04.0781 2128 PDFRAME - ok
22:36:04.0781 2128 PDRELI - ok
22:36:04.0796 2128 PDRFRAME - ok
22:36:04.0812 2128 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
22:36:04.0812 2128 perc2 - ok
22:36:04.0828 2128 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
22:36:04.0828 2128 perc2hib - ok
22:36:04.0875 2128 PfModNT (460cf47c7e2b8886d93b979fc5e5d0b6) C:\WINDOWS\system32\drivers\PfModNT.sys
22:36:04.0875 2128 PfModNT - ok
22:36:04.0906 2128 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:36:04.0906 2128 PptpMiniport - ok
22:36:04.0921 2128 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
22:36:04.0921 2128 PSched - ok
22:36:04.0937 2128 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:36:04.0937 2128 Ptilink - ok
22:36:05.0000 2128 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:36:05.0000 2128 PxHelp20 - ok
22:36:05.0046 2128 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
22:36:05.0046 2128 ql1080 - ok
22:36:05.0078 2128 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
22:36:05.0078 2128 Ql10wnt - ok
22:36:05.0125 2128 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
22:36:05.0140 2128 ql12160 - ok
22:36:05.0203 2128 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
22:36:05.0203 2128 ql1240 - ok
22:36:05.0250 2128 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
22:36:05.0250 2128 ql1280 - ok
22:36:05.0312 2128 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:36:05.0312 2128 RasAcd - ok
22:36:05.0359 2128 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:36:05.0359 2128 Rasl2tp - ok
22:36:05.0375 2128 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:36:05.0390 2128 RasPppoe - ok
22:36:05.0421 2128 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:36:05.0421 2128 Raspti - ok
22:36:05.0468 2128 Rdbss (809ca45caa9072b3176ad44579d7f688) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:36:05.0468 2128 Rdbss - ok
22:36:05.0515 2128 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:36:05.0531 2128 RDPCDD - ok
22:36:05.0593 2128 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:36:05.0609 2128 rdpdr - ok
22:36:05.0671 2128 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
22:36:05.0687 2128 RDPWD - ok
22:36:05.0734 2128 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:36:05.0734 2128 redbook - ok
22:36:05.0796 2128 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:36:05.0812 2128 Secdrv - ok
22:36:05.0859 2128 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
22:36:05.0859 2128 serenum - ok
22:36:05.0875 2128 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
22:36:05.0875 2128 Serial - ok
22:36:05.0906 2128 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:36:05.0921 2128 Sfloppy - ok
22:36:05.0921 2128 Simbad - ok
22:36:05.0953 2128 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
22:36:05.0968 2128 sisagp - ok
22:36:05.0968 2128 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
22:36:05.0968 2128 Sparrow - ok
22:36:06.0031 2128 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
22:36:06.0031 2128 splitter - ok
22:36:06.0093 2128 sp_rsdrv2 (8831252bcf05fcfb5abd116a22e552d8) C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
22:36:06.0093 2128 sp_rsdrv2 - ok
22:36:06.0109 2128 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
22:36:06.0109 2128 sr - ok
22:36:06.0156 2128 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
22:36:06.0156 2128 Srv - ok
22:36:06.0234 2128 STHDA (2a2dc39623adef8ab3703ab9fac4b440) C:\WINDOWS\system32\drivers\sthda.sys
22:36:06.0234 2128 STHDA - ok
22:36:06.0265 2128 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:36:06.0265 2128 swenum - ok
22:36:06.0312 2128 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
22:36:06.0312 2128 swmidi - ok
22:36:06.0328 2128 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
22:36:06.0328 2128 symc810 - ok
22:36:06.0343 2128 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:36:06.0343 2128 symc8xx - ok
22:36:06.0359 2128 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:36:06.0359 2128 sym_hi - ok
22:36:06.0359 2128 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:36:06.0359 2128 sym_u3 - ok
22:36:06.0406 2128 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
22:36:06.0406 2128 sysaudio - ok
22:36:06.0484 2128 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:36:06.0484 2128 Tcpip - ok
22:36:06.0546 2128 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:36:06.0546 2128 TDPIPE - ok
22:36:06.0593 2128 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
22:36:06.0593 2128 TDTCP - ok
22:36:06.0656 2128 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:36:06.0656 2128 TermDD - ok
22:36:06.0734 2128 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
22:36:06.0734 2128 TosIde - ok
22:36:06.0781 2128 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
22:36:06.0781 2128 Udfs - ok
22:36:06.0812 2128 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
22:36:06.0812 2128 ultra - ok
22:36:06.0859 2128 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
22:36:06.0859 2128 Update - ok
22:36:06.0937 2128 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
22:36:06.0937 2128 usbaudio - ok
22:36:07.0015 2128 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:36:07.0015 2128 usbccgp - ok
22:36:07.0078 2128 usbehci (708579b01fed227aadb393cb0c3b4a2c) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:36:07.0078 2128 usbehci - ok
22:36:07.0109 2128 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:36:07.0109 2128 usbhub - ok
22:36:07.0156 2128 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:36:07.0156 2128 usbscan - ok
22:36:07.0218 2128 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:36:07.0218 2128 USBSTOR - ok
22:36:07.0234 2128 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:36:07.0234 2128 usbuhci - ok
22:36:07.0250 2128 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
22:36:07.0250 2128 VgaSave - ok
22:36:07.0265 2128 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
22:36:07.0265 2128 viaagp - ok
22:36:07.0265 2128 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
22:36:07.0281 2128 ViaIde - ok
22:36:07.0296 2128 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
22:36:07.0296 2128 VolSnap - ok
22:36:07.0343 2128 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:36:07.0343 2128 Wanarp - ok
22:36:07.0359 2128 wanatw - ok
22:36:07.0375 2128 WDICA - ok
22:36:07.0468 2128 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
22:36:07.0468 2128 wdmaud - ok
22:36:07.0578 2128 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:36:07.0578 2128 WudfPf - ok
22:36:07.0640 2128 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:36:07.0640 2128 WudfRd - ok
22:36:07.0671 2128 MBR (0x1B8) (91722e6bc3a2b40ff00222dca4a3db3e) \Device\Harddisk0\DR0
22:36:07.0671 2128 \Device\Harddisk0\DR0 - ok
22:36:07.0671 2128 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR4
22:36:07.0687 2128 \Device\Harddisk1\DR4 - ok
22:36:07.0687 2128 Boot (0x1200) (b0f719ccd57686996716c5b77af55737) \Device\Harddisk0\DR0\Partition0
22:36:07.0703 2128 \Device\Harddisk0\DR0\Partition0 - ok
22:36:07.0703 2128 Boot (0x1200) (b636517ca5b3abddad15f96c65f8a663) \Device\Harddisk1\DR4\Partition0
22:36:07.0703 2128 \Device\Harddisk1\DR4\Partition0 - ok
22:36:07.0703 2128 ============================================================
22:36:07.0703 2128 Scan finished
22:36:07.0703 2128 ============================================================
22:36:07.0703 2184 Detected object count: 0
22:36:07.0703 2184 Actual detected object count: 0
22:36:25.0390 3368 ============================================================
22:36:25.0390 3368 Scan started
22:36:25.0390 3368 Mode: Manual;
22:36:25.0390 3368 ============================================================
22:36:25.0562 3368 Abiosdsk - ok
22:36:25.0609 3368 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
22:36:25.0609 3368 abp480n5 - ok
22:36:25.0656 3368 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:36:25.0656 3368 ACPI - ok
22:36:25.0703 3368 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:36:25.0703 3368 ACPIEC - ok
22:36:25.0765 3368 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:36:25.0765 3368 adpu160m - ok
22:36:25.0843 3368 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
22:36:25.0843 3368 aec - ok
22:36:25.0921 3368 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:36:25.0921 3368 AFD - ok
22:36:25.0968 3368 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
22:36:25.0968 3368 agp440 - ok
22:36:26.0031 3368 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
22:36:26.0031 3368 agpCPQ - ok
22:36:26.0078 3368 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
22:36:26.0078 3368 Aha154x - ok
22:36:26.0140 3368 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:36:26.0140 3368 aic78u2 - ok
22:36:26.0187 3368 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:36:26.0187 3368 aic78xx - ok
22:36:26.0250 3368 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
22:36:26.0250 3368 AliIde - ok
22:36:26.0296 3368 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
22:36:26.0296 3368 alim1541 - ok
22:36:26.0359 3368 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
22:36:26.0359 3368 amdagp - ok
22:36:26.0406 3368 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
22:36:26.0406 3368 amsint - ok
22:36:26.0468 3368 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
22:36:26.0468 3368 asc - ok
22:36:26.0515 3368 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22:36:26.0515 3368 asc3350p - ok
22:36:26.0562 3368 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
22:36:26.0562 3368 asc3550 - ok
22:36:26.0640 3368 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
22:36:26.0656 3368 ASCTRM - ok
22:36:26.0703 3368 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:36:26.0703 3368 AsyncMac - ok
22:36:26.0765 3368 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:36:26.0765 3368 atapi - ok
22:36:26.0796 3368 Atdisk - ok
22:36:26.0921 3368 ati2mtag (03621f7f968ff63713943405deb777f9) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:36:26.0937 3368 ati2mtag - ok
22:36:26.0968 3368 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:36:26.0968 3368 Atmarpc - ok
22:36:27.0015 3368 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:36:27.0031 3368 audstub - ok
22:36:27.0062 3368 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:36:27.0062 3368 Beep - ok
22:36:27.0187 3368 catchme - ok
22:36:27.0250 3368 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
22:36:27.0250 3368 cbidf - ok
22:36:27.0281 3368 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:36:27.0281 3368 cbidf2k - ok
22:36:27.0343 3368 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
22:36:27.0343 3368 cd20xrnt - ok
22:36:27.0375 3368 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:36:27.0375 3368 Cdaudio - ok
22:36:27.0406 3368 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:36:27.0406 3368 Cdfs - ok
22:36:27.0421 3368 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:36:27.0421 3368 Cdrom - ok
22:36:27.0421 3368 Changer - ok
22:36:27.0468 3368 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
22:36:27.0468 3368 CmdIde - ok
22:36:27.0515 3368 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
22:36:27.0515 3368 Cpqarray - ok
22:36:27.0609 3368 ctac32k (79c819e2da176e1d4d549874f64052bd) C:\WINDOWS\system32\drivers\ctac32k.sys
22:36:27.0609 3368 ctac32k - ok
22:36:27.0656 3368 ctaud2k (d44041cc1ab0e755b63f4d2bfd132f2a) C:\WINDOWS\system32\drivers\ctaud2k.sys
22:36:27.0656 3368 ctaud2k - ok
22:36:27.0687 3368 ctprxy2k (c4b2cd6fd84618ceaf5fed03793bfc94) C:\WINDOWS\system32\drivers\ctprxy2k.sys
22:36:27.0687 3368 ctprxy2k - ok
22:36:27.0718 3368 ctsfm2k (3206a3e7459fe5613dc46279c5242cec) C:\WINDOWS\system32\drivers\ctsfm2k.sys
22:36:27.0718 3368 ctsfm2k - ok
22:36:27.0781 3368 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
22:36:27.0781 3368 dac2w2k - ok
22:36:27.0812 3368 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
22:36:27.0812 3368 dac960nt - ok
22:36:27.0875 3368 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:36:27.0875 3368 Disk - ok
22:36:27.0921 3368 DLABOIOM (e2d0de31442390c35e3163c87cb6a9eb) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
22:36:27.0921 3368 DLABOIOM - ok
22:36:27.0953 3368 DLACDBHM (d979bebcf7edcc9c9ee1857d1a68c67b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
22:36:27.0953 3368 DLACDBHM - ok
22:36:28.0000 3368 DLADResN (83545593e297f50a8e2524b4c071a153) C:\WINDOWS\system32\DLA\DLADResN.SYS
22:36:28.0000 3368 DLADResN - ok
22:36:28.0046 3368 DLAIFS_M (96e01d901cdc98c7817155cc057001bf) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
22:36:28.0062 3368 DLAIFS_M - ok
22:36:28.0078 3368 DLAOPIOM (0a60a39cc5e767980a31ca5d7238dfa9) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
22:36:28.0078 3368 DLAOPIOM - ok
22:36:28.0093 3368 DLAPoolM (9fe2b72558fc808357f427fd83314375) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
22:36:28.0093 3368 DLAPoolM - ok
22:36:28.0125 3368 DLARTL_N (7ee0852ae8907689df25049dcd2342e8) C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
22:36:28.0125 3368 DLARTL_N - ok
22:36:28.0140 3368 DLAUDFAM (f08e1dafac457893399e03430a6a1397) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
22:36:28.0140 3368 DLAUDFAM - ok
22:36:28.0187 3368 DLAUDF_M (e7d105ed1e694449d444a9933df8e060) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
22:36:28.0187 3368 DLAUDF_M - ok
22:36:28.0250 3368 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
22:36:28.0265 3368 dmboot - ok
22:36:28.0328 3368 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
22:36:28.0328 3368 dmio - ok
22:36:28.0375 3368 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:36:28.0375 3368 dmload - ok
22:36:28.0437 3368 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:36:28.0437 3368 DMusic - ok
22:36:28.0484 3368 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:36:28.0484 3368 dpti2o - ok
22:36:28.0531 3368 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:36:28.0531 3368 drmkaud - ok
22:36:28.0578 3368 DRVMCDB (fd0f95981fef9073659d8ec58e40aa3c) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
22:36:28.0578 3368 DRVMCDB - ok
22:36:28.0609 3368 DRVNDDM (b4869d320428cdc5ec4d7f5e808e99b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
22:36:28.0609 3368 DRVNDDM - ok
22:36:28.0640 3368 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:36:28.0640 3368 E100B - ok
22:36:28.0734 3368 emupia (7b59ec5a09434cdd64e99f62932d54cb) C:\WINDOWS\system32\drivers\emupia2k.sys
22:36:28.0734 3368 emupia - ok
22:36:28.0796 3368 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:36:28.0796 3368 Fastfat - ok
22:36:28.0828 3368 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:36:28.0828 3368 Fdc - ok
22:36:28.0875 3368 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
22:36:28.0875 3368 Fips - ok
22:36:28.0921 3368 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:36:28.0921 3368 Flpydisk - ok
22:36:28.0953 3368 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:36:28.0953 3368 FltMgr - ok
22:36:29.0000 3368 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:36:29.0000 3368 Fs_Rec - ok
22:36:29.0015 3368 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:36:29.0015 3368 Ftdisk - ok
22:36:29.0031 3368 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:36:29.0031 3368 Gpc - ok
22:36:29.0078 3368 ha10kx2k (f2e372643258db228a5961485380d4d0) C:\WINDOWS\system32\drivers\ha10kx2k.sys
22:36:29.0093 3368 ha10kx2k - ok
22:36:29.0140 3368 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:36:29.0140 3368 HDAudBus - ok
22:36:29.0187 3368 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:36:29.0187 3368 HidUsb - ok
22:36:29.0203 3368 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
22:36:29.0203 3368 hpn - ok
22:36:29.0265 3368 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:36:29.0265 3368 HTTP - ok
22:36:29.0281 3368 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
22:36:29.0281 3368 i2omgmt - ok
22:36:29.0312 3368 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
22:36:29.0312 3368 i2omp - ok
22:36:29.0328 3368 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:36:29.0328 3368 i8042prt - ok
22:36:29.0343 3368 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:36:29.0343 3368 Imapi - ok
22:36:29.0359 3368 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
22:36:29.0359 3368 ini910u - ok
22:36:29.0375 3368 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:36:29.0375 3368 IntelIde - ok
22:36:29.0390 3368 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:36:29.0390 3368 intelppm - ok
22:36:29.0437 3368 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:36:29.0437 3368 Ip6Fw - ok
22:36:29.0453 3368 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:36:29.0453 3368 IpFilterDriver - ok
22:36:29.0500 3368 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:36:29.0500 3368 IpInIp - ok
22:36:29.0515 3368 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:36:29.0515 3368 IpNat - ok
22:36:29.0562 3368 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:36:29.0562 3368 IPSec - ok
22:36:29.0609 3368 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:36:29.0609 3368 IRENUM - ok
22:36:29.0656 3368 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:36:29.0656 3368 isapnp - ok
22:36:29.0687 3368 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:36:29.0687 3368 Kbdclass - ok
22:36:29.0734 3368 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:36:29.0734 3368 kbdhid - ok
22:36:29.0796 3368 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
22:36:29.0796 3368 kmixer - ok
22:36:29.0843 3368 KSecDD (1be7cc2535d760ae4d481576eb789f24) C:\WINDOWS\system32\drivers\KSecDD.sys
22:36:29.0859 3368 KSecDD - ok
22:36:29.0890 3368 L6PODHD3 (363241562a1610b80fbf4d1b194d04cf) C:\WINDOWS\system32\Drivers\L6PODHD3.sys
22:36:29.0890 3368 L6PODHD3 - ok
22:36:29.0906 3368 lbrtfdc - ok
22:36:29.0968 3368 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
22:36:29.0968 3368 MBAMProtector - ok
22:36:30.0000 3368 MBAMSwissArmy - ok
22:36:30.0031 3368 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:36:30.0046 3368 mnmdd - ok
22:36:30.0109 3368 MobileAdapter (83c97f6d9feb37af9d785ac099e41a42) C:\WINDOWS\system32\DRIVERS\qscnusb.sys
22:36:30.0109 3368 MobileAdapter - ok
22:36:30.0156 3368 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
22:36:30.0156 3368 Modem - ok
22:36:30.0203 3368 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:36:30.0203 3368 Mouclass - ok
22:36:30.0265 3368 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:36:30.0265 3368 mouhid - ok
22:36:30.0296 3368 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
22:36:30.0296 3368 MountMgr - ok
22:36:30.0343 3368 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
22:36:30.0343 3368 mraid35x - ok
22:36:30.0343 3368 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:36:30.0343 3368 MRxDAV - ok
22:36:30.0437 3368 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:36:30.0437 3368 MRxSmb - ok
22:36:30.0468 3368 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
22:36:30.0468 3368 Msfs - ok
22:36:30.0531 3368 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:36:30.0531 3368 MSKSSRV - ok
22:36:30.0593 3368 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:36:30.0593 3368 MSPCLOCK - ok
22:36:30.0640 3368 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
22:36:30.0640 3368 MSPQM - ok
22:36:30.0703 3368 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:36:30.0703 3368 mssmbios - ok
22:36:30.0718 3368 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
22:36:30.0718 3368 Mup - ok
22:36:30.0734 3368 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
22:36:30.0734 3368 NDIS - ok
22:36:30.0750 3368 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:36:30.0750 3368 NdisTapi - ok
22:36:30.0765 3368 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:36:30.0765 3368 Ndisuio - ok
22:36:30.0765 3368 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:36:30.0765 3368 NdisWan - ok
22:36:30.0781 3368 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
22:36:30.0781 3368 NDProxy - ok
22:36:30.0796 3368 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:36:30.0796 3368 NetBIOS - ok
22:36:30.0812 3368 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:36:30.0812 3368 NetBT - ok
22:36:30.0843 3368 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
22:36:30.0843 3368 Npfs - ok
22:36:30.0875 3368 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
22:36:30.0875 3368 Ntfs - ok
22:36:30.0921 3368 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:36:30.0921 3368 Null - ok
22:36:31.0000 3368 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:36:31.0015 3368 nv - ok
22:36:31.0078 3368 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:36:31.0078 3368 NwlnkFlt - ok
22:36:31.0093 3368 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:36:31.0093 3368 NwlnkFwd - ok
22:36:31.0125 3368 ossrv (f9d4029ed95758cb1e17ad6eeb4cbea1) C:\WINDOWS\system32\drivers\ctoss2k.sys
22:36:31.0125 3368 ossrv - ok
22:36:31.0156 3368 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
22:36:31.0156 3368 Parport - ok
22:36:31.0171 3368 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
22:36:31.0171 3368 PartMgr - ok
22:36:31.0203 3368 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
22:36:31.0203 3368 ParVdm - ok
22:36:31.0218 3368 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
22:36:31.0218 3368 PCI - ok
22:36:31.0234 3368 PCIDump - ok
22:36:31.0250 3368 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:36:31.0250 3368 PCIIde - ok
22:36:31.0281 3368 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:36:31.0281 3368 Pcmcia - ok
22:36:31.0281 3368 PDCOMP - ok
22:36:31.0312 3368 PDFRAME - ok
22:36:31.0343 3368 PDRELI - ok
22:36:31.0343 3368 PDRFRAME - ok
22:36:31.0406 3368 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
22:36:31.0406 3368 perc2 - ok
22:36:31.0453 3368 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
22:36:31.0453 3368 perc2hib - ok
22:36:31.0531 3368 PfModNT (460cf47c7e2b8886d93b979fc5e5d0b6) C:\WINDOWS\system32\drivers\PfModNT.sys
22:36:31.0531 3368 PfModNT - ok
22:36:31.0578 3368 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:36:31.0578 3368 PptpMiniport - ok
22:36:31.0609 3368 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
22:36:31.0609 3368 PSched - ok
22:36:31.0656 3368 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:36:31.0656 3368 Ptilink - ok
22:36:31.0703 3368 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:36:31.0703 3368 PxHelp20 - ok
22:36:31.0718 3368 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
22:36:31.0718 3368 ql1080 - ok
22:36:31.0734 3368 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
22:36:31.0734 3368 Ql10wnt - ok
22:36:31.0750 3368 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
22:36:31.0750 3368 ql12160 - ok
22:36:31.0765 3368 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
22:36:31.0781 3368 ql1240 - ok
22:36:31.0781 3368 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
22:36:31.0781 3368 ql1280 - ok
22:36:31.0812 3368 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:36:31.0812 3368 RasAcd - ok
22:36:31.0828 3368 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:36:31.0828 3368 Rasl2tp - ok
22:36:31.0828 3368 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:36:31.0843 3368 RasPppoe - ok
22:36:31.0843 3368 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:36:31.0843 3368 Raspti - ok
22:36:31.0890 3368 Rdbss (809ca45caa9072b3176ad44579d7f688) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:36:31.0890 3368 Rdbss - ok
22:36:31.0906 3368 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:36:31.0906 3368 RDPCDD - ok
22:36:31.0937 3368 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:36:31.0937 3368 rdpdr - ok
22:36:32.0000 3368 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
22:36:32.0000 3368 RDPWD - ok
22:36:32.0031 3368 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:36:32.0031 3368 redbook - ok
22:36:32.0078 3368 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:36:32.0078 3368 Secdrv - ok
22:36:32.0093 3368 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
22:36:32.0093 3368 serenum - ok
22:36:32.0125 3368 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
22:36:32.0125 3368 Serial - ok
22:36:32.0140 3368 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:36:32.0140 3368 Sfloppy - ok
22:36:32.0156 3368 Simbad - ok
22:36:32.0187 3368 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
22:36:32.0187 3368 sisagp - ok
22:36:32.0250 3368 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
22:36:32.0250 3368 Sparrow - ok
22:36:32.0328 3368 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
22:36:32.0328 3368 splitter - ok
22:36:32.0375 3368 sp_rsdrv2 (8831252bcf05fcfb5abd116a22e552d8) C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
22:36:32.0375 3368 sp_rsdrv2 - ok
22:36:32.0421 3368 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
22:36:32.0421 3368 sr - ok
22:36:32.0484 3368 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
22:36:32.0484 3368 Srv - ok
22:36:32.0562 3368 STHDA (2a2dc39623adef8ab3703ab9fac4b440) C:\WINDOWS\system32\drivers\sthda.sys
22:36:32.0578 3368 STHDA - ok
22:36:32.0593 3368 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:36:32.0593 3368 swenum - ok
22:36:32.0640 3368 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
22:36:32.0640 3368 swmidi - ok
22:36:32.0656 3368 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
22:36:32.0656 3368 symc810 - ok
22:36:32.0671 3368 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:36:32.0671 3368 symc8xx - ok
22:36:32.0687 3368 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:36:32.0687 3368 sym_hi - ok
22:36:32.0703 3368 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:36:32.0703 3368 sym_u3 - ok
22:36:32.0734 3368 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
22:36:32.0734 3368 sysaudio - ok
22:36:32.0781 3368 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:36:32.0796 3368 Tcpip - ok
22:36:32.0796 3368 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:36:32.0796 3368 TDPIPE - ok
22:36:32.0828 3368 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
22:36:32.0828 3368 TDTCP - ok
22:36:32.0859 3368 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:36:32.0859 3368 TermDD - ok
22:36:32.0890 3368 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
22:36:32.0890 3368 TosIde - ok
22:36:32.0921 3368 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
22:36:32.0921 3368 Udfs - ok
22:36:32.0921 3368 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
22:36:32.0921 3368 ultra - ok
22:36:32.0937 3368 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
22:36:32.0937 3368 Update - ok
22:36:33.0000 3368 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
22:36:33.0000 3368 usbaudio - ok
22:36:33.0031 3368 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:36:33.0031 3368 usbccgp - ok
22:36:33.0062 3368 usbehci (708579b01fed227aadb393cb0c3b4a2c) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:36:33.0062 3368 usbehci - ok
22:36:33.0109 3368 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:36:33.0109 3368 usbhub - ok
22:36:33.0140 3368 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:36:33.0156 3368 usbscan - ok
22:36:33.0187 3368 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:36:33.0187 3368 USBSTOR - ok
22:36:33.0203 3368 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:36:33.0203 3368 usbuhci - ok
22:36:33.0218 3368 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
22:36:33.0218 3368 VgaSave - ok
22:36:33.0250 3368 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
22:36:33.0250 3368 viaagp - ok
22:36:33.0250 3368 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
22:36:33.0250 3368 ViaIde - ok
22:36:33.0281 3368 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
22:36:33.0281 3368 VolSnap - ok
22:36:33.0312 3368 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:36:33.0312 3368 Wanarp - ok
22:36:33.0328 3368 wanatw - ok
22:36:33.0328 3368 WDICA - ok
22:36:33.0375 3368 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
22:36:33.0375 3368 wdmaud - ok
22:36:33.0437 3368 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:36:33.0437 3368 WudfPf - ok
22:36:33.0468 3368 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:36:33.0468 3368 WudfRd - ok
22:36:33.0484 3368 MBR (0x1B8) (91722e6bc3a2b40ff00222dca4a3db3e) \Device\Harddisk0\DR0
22:36:33.0500 3368 \Device\Harddisk0\DR0 - ok
22:36:33.0500 3368 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR4
22:36:33.0500 3368 \Device\Harddisk1\DR4 - ok
22:36:33.0546 3368 Boot (0x1200) (b0f719ccd57686996716c5b77af55737) \Device\Harddisk0\DR0\Partition0
22:36:33.0546 3368 \Device\Harddisk0\DR0\Partition0 - ok
22:36:33.0546 3368 Boot (0x1200) (b636517ca5b3abddad15f96c65f8a663) \Device\Harddisk1\DR4\Partition0
22:36:33.0546 3368 \Device\Harddisk1\DR4\Partition0 - ok
22:36:33.0546 3368 ============================================================
22:36:33.0546 3368 Scan finished
22:36:33.0546 3368 ============================================================
22:36:33.0562 3348 Detected object count: 0
22:36:33.0562 3348 Actual detected object count: 0
22:37:35.0578 3520 ============================================================
22:37:35.0578 3520 Scan started
22:37:35.0578 3520 Mode: Manual; SigCheck; TDLFS;
22:37:35.0578 3520 ============================================================
22:37:35.0781 3520 Abiosdsk - ok
22:37:35.0843 3520 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
22:37:37.0281 3520 abp480n5 - ok
22:37:37.0406 3520 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:37:37.0578 3520 ACPI - ok
22:37:37.0625 3520 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:37:37.0765 3520 ACPIEC - ok
22:37:37.0828 3520 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
22:37:37.0968 3520 adpu160m - ok
22:37:38.0093 3520 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys
22:37:38.0218 3520 aec - ok
22:37:38.0296 3520 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
22:37:38.0359 3520 AFD - ok
22:37:38.0421 3520 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
22:37:38.0562 3520 agp440 - ok
22:37:38.0609 3520 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
22:37:38.0750 3520 agpCPQ - ok
22:37:38.0828 3520 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
22:37:38.0890 3520 Aha154x - ok
22:37:38.0921 3520 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
22:37:39.0046 3520 aic78u2 - ok
22:37:39.0078 3520 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
22:37:39.0187 3520 aic78xx - ok
22:37:39.0218 3520 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
22:37:39.0359 3520 AliIde - ok
22:37:39.0375 3520 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
22:37:39.0500 3520 alim1541 - ok
22:37:39.0562 3520 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
22:37:39.0671 3520 amdagp - ok
22:37:39.0734 3520 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
22:37:39.0812 3520 amsint - ok
22:37:39.0859 3520 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
22:37:40.0015 3520 asc - ok
22:37:40.0062 3520 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
22:37:40.0125 3520 asc3350p - ok
22:37:40.0250 3520 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
22:37:40.0375 3520 asc3550 - ok
22:37:40.0453 3520 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
22:37:40.0468 3520 ASCTRM ( UnsignedFile.Multi.Generic ) - warning
22:37:40.0468 3520 ASCTRM - detected UnsignedFile.Multi.Generic (1)
22:37:40.0515 3520 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:37:40.0656 3520 AsyncMac - ok
22:37:40.0718 3520 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:37:40.0843 3520 atapi - ok
22:37:40.0890 3520 Atdisk - ok
22:37:41.0000 3520 ati2mtag (03621f7f968ff63713943405deb777f9) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
22:37:41.0078 3520 ati2mtag - ok
22:37:41.0125 3520 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:37:41.0250 3520 Atmarpc - ok
22:37:41.0375 3520 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:37:41.0500 3520 audstub - ok
22:37:41.0562 3520 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:37:41.0703 3520 Beep - ok
22:37:41.0828 3520 catchme - ok
22:37:41.0875 3520 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
22:37:42.0015 3520 cbidf - ok
22:37:42.0062 3520 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:37:42.0187 3520 cbidf2k - ok
22:37:42.0218 3520 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
22:37:42.0296 3520 cd20xrnt - ok
22:37:42.0328 3520 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:37:42.0453 3520 Cdaudio - ok
22:37:42.0500 3520 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
22:37:42.0671 3520 Cdfs - ok
22:37:42.0734 3520 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:37:42.0859 3520 Cdrom - ok
22:37:42.0890 3520 Changer - ok
22:37:42.0968 3520 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
22:37:43.0109 3520 CmdIde - ok
22:37:43.0171 3520 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
22:37:43.0281 3520 Cpqarray - ok
22:37:43.0375 3520 ctac32k (79c819e2da176e1d4d549874f64052bd) C:\WINDOWS\system32\drivers\ctac32k.sys
22:37:43.0390 3520 ctac32k ( UnsignedFile.Multi.Generic ) - warning
22:37:43.0390 3520 ctac32k - detected UnsignedFile.Multi.Generic (1)
22:37:43.0437 3520 ctaud2k (d44041cc1ab0e755b63f4d2bfd132f2a) C:\WINDOWS\system32\drivers\ctaud2k.sys
22:37:43.0453 3520 ctaud2k ( UnsignedFile.Multi.Generic ) - warning
22:37:43.0453 3520 ctaud2k - detected UnsignedFile.Multi.Generic (1)
22:37:43.0468 3520 ctprxy2k (c4b2cd6fd84618ceaf5fed03793bfc94) C:\WINDOWS\system32\drivers\ctprxy2k.sys
22:37:43.0468 3520 ctprxy2k ( UnsignedFile.Multi.Generic ) - warning
22:37:43.0468 3520 ctprxy2k - detected UnsignedFile.Multi.Generic (1)
22:37:43.0500 3520 ctsfm2k (3206a3e7459fe5613dc46279c5242cec) C:\WINDOWS\system32\drivers\ctsfm2k.sys
22:37:43.0515 3520 ctsfm2k ( UnsignedFile.Multi.Generic ) - warning
22:37:43.0515 3520 ctsfm2k - detected UnsignedFile.Multi.Generic (1)
22:37:43.0546 3520 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
22:37:43.0671 3520 dac2w2k - ok
22:37:43.0671 3520 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
22:37:43.0796 3520 dac960nt - ok
22:37:43.0859 3520 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
22:37:44.0000 3520 Disk - ok
22:37:44.0078 3520 DLABOIOM (e2d0de31442390c35e3163c87cb6a9eb) C:\WINDOWS\system32\DLA\DLABOIOM.SYS
22:37:44.0093 3520 DLABOIOM ( UnsignedFile.Multi.Generic ) - warning
22:37:44.0093 3520 DLABOIOM - detected UnsignedFile.Multi.Generic (1)
22:37:44.0109 3520 DLACDBHM (d979bebcf7edcc9c9ee1857d1a68c67b) C:\WINDOWS\system32\Drivers\DLACDBHM.SYS
22:37:44.0125 3520 DLACDBHM ( UnsignedFile.Multi.Generic ) - warning
22:37:44.0125 3520 DLACDBHM - detected UnsignedFile.Multi.Generic (1)
22:37:44.0140 3520 DLADResN (83545593e297f50a8e2524b4c071a153) C:\WINDOWS\system32\DLA\DLADResN.SYS
22:37:44.0156 3520 DLADResN ( UnsignedFile.Multi.Generic ) - warning
22:37:44.0156 3520 DLADResN - detected UnsignedFile.Multi.Generic (1)
22:37:44.0171 3520 DLAIFS_M (96e01d901cdc98c7817155cc057001bf) C:\WINDOWS\system32\DLA\DLAIFS_M.SYS
22:37:44.0187 3520 DLAIFS_M ( UnsignedFile.Multi.Generic ) - warning
22:37:44.0187 3520 DLAIFS_M - detected UnsignedFile.Multi.Generic (1)
22:37:44.0203 3520 DLAOPIOM (0a60a39cc5e767980a31ca5d7238dfa9) C:\WINDOWS\system32\DLA\DLAOPIOM.SYS
22:37:44.0203 3520 DLAOPIOM ( UnsignedFile.Multi.Generic ) - warning
22:37:44.0203 3520 DLAOPIOM - detected UnsignedFile.Multi.Generic (1)
22:37:44.0218 3520 DLAPoolM (9fe2b72558fc808357f427fd83314375) C:\WINDOWS\system32\DLA\DLAPoolM.SYS
22:37:44.0234 3520 DLAPoolM ( UnsignedFile.Multi.Generic ) - warning
22:37:44.0234 3520 DLAPoolM - detected UnsignedFile.Multi.Generic (1)
22:37:44.0265 3520 DLARTL_N (7ee0852ae8907689df25049dcd2342e8) C:\WINDOWS\system32\Drivers\DLARTL_N.SYS
22:37:44.0281 3520 DLARTL_N ( UnsignedFile.Multi.Generic ) - warning
22:37:44.0281 3520 DLARTL_N - detected UnsignedFile.Multi.Generic (1)
22:37:44.0296 3520 DLAUDFAM (f08e1dafac457893399e03430a6a1397) C:\WINDOWS\system32\DLA\DLAUDFAM.SYS
22:37:44.0312 3520 DLAUDFAM ( UnsignedFile.Multi.Generic ) - warning
22:37:44.0312 3520 DLAUDFAM - detected UnsignedFile.Multi.Generic (1)
22:37:44.0328 3520 DLAUDF_M (e7d105ed1e694449d444a9933df8e060) C:\WINDOWS\system32\DLA\DLAUDF_M.SYS
22:37:44.0328 3520 DLAUDF_M ( UnsignedFile.Multi.Generic ) - warning
22:37:44.0328 3520 DLAUDF_M - detected UnsignedFile.Multi.Generic (1)
22:37:44.0375 3520 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
22:37:44.0515 3520 dmboot - ok
22:37:44.0593 3520 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
22:37:44.0718 3520 dmio - ok
22:37:44.0781 3520 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:37:44.0906 3520 dmload - ok
22:37:44.0984 3520 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:37:45.0109 3520 DMusic - ok
22:37:45.0171 3520 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
22:37:45.0312 3520 dpti2o - ok
22:37:45.0406 3520 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:37:45.0531 3520 drmkaud - ok
22:37:45.0609 3520 DRVMCDB (fd0f95981fef9073659d8ec58e40aa3c) C:\WINDOWS\system32\Drivers\DRVMCDB.SYS
22:37:45.0609 3520 DRVMCDB ( UnsignedFile.Multi.Generic ) - warning
22:37:45.0609 3520 DRVMCDB - detected UnsignedFile.Multi.Generic (1)
22:37:45.0640 3520 DRVNDDM (b4869d320428cdc5ec4d7f5e808e99b5) C:\WINDOWS\system32\Drivers\DRVNDDM.SYS
22:37:45.0656 3520 DRVNDDM ( UnsignedFile.Multi.Generic ) - warning
22:37:45.0656 3520 DRVNDDM - detected UnsignedFile.Multi.Generic (1)
22:37:45.0687 3520 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:37:45.0734 3520 E100B - ok
22:37:45.0796 3520 emupia (7b59ec5a09434cdd64e99f62932d54cb) C:\WINDOWS\system32\drivers\emupia2k.sys
22:37:45.0828 3520 emupia ( UnsignedFile.Multi.Generic ) - warning
22:37:45.0828 3520 emupia - detected UnsignedFile.Multi.Generic (1)
22:37:45.0875 3520 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
22:37:46.0015 3520 Fastfat - ok
22:37:46.0062 3520 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:37:46.0203 3520 Fdc - ok
22:37:46.0234 3520 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
22:37:46.0359 3520 Fips - ok
22:37:46.0421 3520 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:37:46.0578 3520 Flpydisk - ok
22:37:46.0625 3520 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:37:46.0765 3520 FltMgr - ok
22:37:46.0828 3520 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:37:46.0968 3520 Fs_Rec - ok
22:37:47.0015 3520 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:37:47.0140 3520 Ftdisk - ok
22:37:47.0187 3520 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:37:47.0328 3520 Gpc - ok
22:37:47.0375 3520 ha10kx2k (f2e372643258db228a5961485380d4d0) C:\WINDOWS\system32\drivers\ha10kx2k.sys
22:37:47.0406 3520 ha10kx2k ( UnsignedFile.Multi.Generic ) - warning
22:37:47.0406 3520 ha10kx2k - detected UnsignedFile.Multi.Generic (1)
22:37:47.0453 3520 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:37:47.0484 3520 HDAudBus - ok
22:37:47.0531 3520 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:37:47.0656 3520 HidUsb - ok
22:37:47.0687 3520 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
22:37:47.0812 3520 hpn - ok
22:37:47.0843 3520 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
22:37:47.0906 3520 HTTP - ok
22:37:47.0937 3520 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
22:37:48.0078 3520 i2omgmt - ok
22:37:48.0093 3520 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
22:37:48.0218 3520 i2omp - ok
22:37:48.0265 3520 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:37:48.0406 3520 i8042prt - ok
22:37:48.0468 3520 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:37:48.0625 3520 Imapi - ok
22:37:48.0687 3520 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
22:37:48.0812 3520 ini910u - ok
22:37:48.0875 3520 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
22:37:49.0015 3520 IntelIde - ok
22:37:49.0062 3520 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:37:49.0203 3520 intelppm - ok
22:37:49.0281 3520 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:37:49.0406 3520 Ip6Fw - ok
22:37:49.0468 3520 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:37:49.0593 3520 IpFilterDriver - ok
22:37:49.0703 3520 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:37:49.0828 3520 IpInIp - ok
22:37:49.0875 3520 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:37:50.0015 3520 IpNat - ok
22:37:50.0078 3520 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:37:50.0203 3520 IPSec - ok
22:37:50.0265 3520 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:37:50.0343 3520 IRENUM - ok
22:37:50.0406 3520 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:37:50.0531 3520 isapnp - ok
22:37:50.0625 3520 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:37:50.0750 3520 Kbdclass - ok
22:37:50.0828 3520 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:37:50.0953 3520 kbdhid - ok
22:37:51.0062 3520 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys
22:37:51.0187 3520 kmixer - ok
22:37:51.0328 3520 KSecDD (1be7cc2535d760ae4d481576eb789f24) C:\WINDOWS\system32\drivers\KSecDD.sys
22:37:51.0375 3520 KSecDD - ok
22:37:51.0453 3520 L6PODHD3 (363241562a1610b80fbf4d1b194d04cf) C:\WINDOWS\system32\Drivers\L6PODHD3.sys
22:37:51.0484 3520 L6PODHD3 ( UnsignedFile.Multi.Generic ) - warning
22:37:51.0484 3520 L6PODHD3 - detected UnsignedFile.Multi.Generic (1)
22:37:51.0515 3520 lbrtfdc - ok
22:37:51.0593 3520 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
22:37:51.0656 3520 MBAMProtector - ok
22:37:51.0687 3520 MBAMSwissArmy - ok
22:37:51.0765 3520 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:37:51.0890 3520 mnmdd - ok
22:37:51.0984 3520 MobileAdapter (83c97f6d9feb37af9d785ac099e41a42) C:\WINDOWS\system32\DRIVERS\qscnusb.sys
22:37:52.0031 3520 MobileAdapter - ok
22:37:52.0093 3520 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
22:37:52.0234 3520 Modem - ok
22:37:52.0312 3520 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:37:52.0437 3520 Mouclass - ok
22:37:52.0500 3520 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:37:52.0656 3520 mouhid - ok
22:37:52.0703 3520 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
22:37:52.0828 3520 MountMgr - ok
22:37:52.0906 3520 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
22:37:53.0015 3520 mraid35x - ok
22:37:53.0078 3520 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:37:53.0218 3520 MRxDAV - ok
22:37:53.0296 3520 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:37:53.0343 3520 MRxSmb - ok
22:37:53.0390 3520 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
22:37:53.0515 3520 Msfs - ok
22:37:53.0609 3520 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:37:53.0734 3520 MSKSSRV - ok
22:37:53.0796 3520 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:37:53.0921 3520 MSPCLOCK - ok
22:37:54.0000 3520 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
22:37:54.0140 3520 MSPQM - ok
22:37:54.0203 3520 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:37:54.0312 3520 mssmbios - ok
22:37:54.0375 3520 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
22:37:54.0500 3520 Mup - ok
22:37:54.0562 3520 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
22:37:54.0703 3520 NDIS - ok
22:37:54.0750 3520 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:37:54.0859 3520 NdisTapi - ok
22:37:55.0000 3520 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:37:55.0109 3520 Ndisuio - ok
22:37:55.0218 3520 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:37:55.0343 3520 NdisWan - ok
22:37:55.0406 3520 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
22:37:55.0515 3520 NDProxy - ok
22:37:55.0578 3520 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:37:55.0703 3520 NetBIOS - ok
22:37:55.0765 3520 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:37:55.0890 3520 NetBT - ok
22:37:55.0953 3520 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
22:37:56.0078 3520 Npfs - ok
22:37:56.0125 3520 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys
22:37:56.0265 3520 Ntfs - ok
22:37:56.0328 3520 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:37:56.0453 3520 Null - ok
22:37:56.0562 3520 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:37:56.0781 3520 nv - ok
22:37:56.0890 3520 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:37:57.0015 3520 NwlnkFlt - ok
22:37:57.0062 3520 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:37:57.0187 3520 NwlnkFwd - ok
22:37:57.0296 3520 ossrv (f9d4029ed95758cb1e17ad6eeb4cbea1) C:\WINDOWS\system32\drivers\ctoss2k.sys
22:37:57.0312 3520 ossrv ( UnsignedFile.Multi.Generic ) - warning
22:37:57.0312 3520 ossrv - detected UnsignedFile.Multi.Generic (1)
22:37:57.0375 3520 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
22:37:57.0515 3520 Parport - ok
22:37:57.0578 3520 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
22:37:57.0687 3520 PartMgr - ok
22:37:57.0750 3520 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
22:37:57.0859 3520 ParVdm - ok
22:37:57.0937 3520 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
22:37:58.0062 3520 PCI - ok
22:37:58.0109 3520 PCIDump - ok
22:37:58.0109 3520 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:37:58.0234 3520 PCIIde - ok
22:37:58.0296 3520 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:37:58.0437 3520 Pcmcia - ok
22:37:58.0484 3520 PDCOMP - ok
22:37:58.0500 3520 PDFRAME - ok
22:37:58.0515 3520 PDRELI - ok
22:37:58.0562 3520 PDRFRAME - ok
22:37:58.0609 3520 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
22:37:58.0750 3520 perc2 - ok
22:37:58.0812 3520 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
22:37:58.0953 3520 perc2hib - ok
22:37:59.0031 3520 PfModNT (460cf47c7e2b8886d93b979fc5e5d0b6) C:\WINDOWS\system32\drivers\PfModNT.sys
22:37:59.0046 3520 PfModNT ( UnsignedFile.Multi.Generic ) - warning
22:37:59.0046 3520 PfModNT - detected UnsignedFile.Multi.Generic (1)
22:37:59.0125 3520 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:37:59.0265 3520 PptpMiniport - ok
22:37:59.0312 3520 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
22:37:59.0453 3520 PSched - ok
22:37:59.0484 3520 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:37:59.0609 3520 Ptilink - ok
22:37:59.0640 3520 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:37:59.0656 3520 PxHelp20 - ok
22:37:59.0687 3520 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
22:37:59.0812 3520 ql1080 - ok
22:37:59.0859 3520 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
22:38:00.0015 3520 Ql10wnt - ok
22:38:00.0046 3520 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
22:38:00.0187 3520 ql12160 - ok
22:38:00.0234 3520 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
22:38:00.0359 3520 ql1240 - ok
22:38:00.0406 3520 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
22:38:00.0546 3520 ql1280 - ok
22:38:00.0609 3520 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:38:00.0750 3520 RasAcd - ok
22:38:00.0812 3520 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:38:00.0937 3520 Rasl2tp - ok
22:38:01.0031 3520 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:38:01.0171 3520 RasPppoe - ok
22:38:01.0234 3520 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:38:01.0359 3520 Raspti - ok
22:38:01.0453 3520 Rdbss (809ca45caa9072b3176ad44579d7f688) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:38:01.0859 3520 Rdbss - ok
22:38:01.0984 3520 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:38:02.0109 3520 RDPCDD - ok
22:38:02.0140 3520 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:38:02.0265 3520 rdpdr - ok
22:38:02.0359 3520 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
22:38:02.0765 3520 RDPWD - ok
22:38:02.0828 3520 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:38:02.0953 3520 redbook - ok
22:38:03.0015 3520 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:38:03.0093 3520 Secdrv - ok
22:38:03.0156 3520 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
22:38:03.0281 3520 serenum - ok
22:38:03.0343 3520 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
22:38:03.0484 3520 Serial - ok
22:38:03.0546 3520 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:38:03.0671 3520 Sfloppy - ok
22:38:03.0718 3520 Simbad - ok
22:38:03.0750 3520 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
22:38:03.0875 3520 sisagp - ok
22:38:03.0953 3520 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
22:38:04.0015 3520 Sparrow - ok
22:38:04.0078 3520 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys
22:38:04.0203 3520 splitter - ok
22:38:04.0296 3520 sp_rsdrv2 (8831252bcf05fcfb5abd116a22e552d8) C:\WINDOWS\system32\drivers\sp_rsdrv2.sys
22:38:04.0296 3520 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - warning
22:38:04.0296 3520 sp_rsdrv2 - detected UnsignedFile.Multi.Generic (1)
22:38:04.0328 3520 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
22:38:04.0406 3520 sr - ok
22:38:04.0484 3520 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
22:38:04.0531 3520 Srv - ok
22:38:04.0625 3520 STHDA (2a2dc39623adef8ab3703ab9fac4b440) C:\WINDOWS\system32\drivers\sthda.sys
22:38:04.0718 3520 STHDA - ok
22:38:04.0765 3520 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:38:04.0906 3520 swenum - ok
22:38:05.0000 3520 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
22:38:05.0109 3520 swmidi - ok
22:38:05.0187 3520 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
22:38:05.0312 3520 symc810 - ok
22:38:05.0359 3520 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
22:38:05.0500 3520 symc8xx - ok
22:38:05.0562 3520 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
22:38:05.0703 3520 sym_hi - ok
22:38:05.0750 3520 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
22:38:05.0875 3520 sym_u3 - ok
22:38:05.0968 3520 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
22:38:06.0093 3520 sysaudio - ok
22:38:06.0171 3520 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:38:06.0250 3520 Tcpip - ok
22:38:06.0265 3520 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:38:06.0406 3520 TDPIPE - ok
22:38:06.0406 3520 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
22:38:06.0531 3520 TDTCP - ok
22:38:06.0625 3520 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:38:06.0750 3520 TermDD - ok
22:38:06.0812 3520 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
22:38:06.0937 3520 TosIde - ok
22:38:07.0062 3520 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
22:38:07.0187 3520 Udfs - ok
22:38:07.0265 3520 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
22:38:07.0328 3520 ultra - ok
22:38:07.0390 3520 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys
22:38:07.0515 3520 Update - ok
22:38:07.0593 3520 usbaudio (45a0d14b26c35497ad93bce7e15c9941) C:\WINDOWS\system32\drivers\usbaudio.sys
22:38:07.0734 3520 usbaudio - ok
22:38:07.0812 3520 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:38:07.0937 3520 usbccgp - ok
22:38:07.0984 3520 usbehci (708579b01fed227aadb393cb0c3b4a2c) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:38:08.0359 3520 usbehci - ok
22:38:08.0406 3520 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:38:08.0546 3520 usbhub - ok
22:38:08.0609 3520 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:38:08.0734 3520 usbscan - ok
22:38:08.0828 3520 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:38:08.0953 3520 USBSTOR - ok
22:38:09.0000 3520 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:38:09.0125 3520 usbuhci - ok
22:38:09.0171 3520 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
22:38:09.0296 3520 VgaSave - ok
22:38:09.0375 3520 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
22:38:09.0500 3520 viaagp - ok
22:38:09.0546 3520 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
22:38:09.0671 3520 ViaIde - ok
22:38:09.0734 3520 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
22:38:09.0859 3520 VolSnap - ok
22:38:09.0921 3520 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:38:10.0046 3520 Wanarp - ok
22:38:10.0093 3520 wanatw - ok
22:38:10.0109 3520 WDICA - ok
22:38:10.0171 3520 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys
22:38:10.0296 3520 wdmaud - ok
22:38:10.0421 3520 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:38:10.0453 3520 WudfPf - ok
22:38:10.0515 3520 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:38:10.0531 3520 WudfRd - ok
22:38:10.0562 3520 MBR (0x1B8) (91722e6bc3a2b40ff00222dca4a3db3e) \Device\Harddisk0\DR0
22:38:10.0656 3520 \Device\Harddisk0\DR0 - ok
22:38:10.0656 3520 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR4
22:38:10.0765 3520 \Device\Harddisk1\DR4 - ok
22:38:10.0796 3520 Boot (0x1200) (b0f719ccd57686996716c5b77af55737) \Device\Harddisk0\DR0\Partition0
22:38:10.0796 3520 \Device\Harddisk0\DR0\Partition0 - ok
22:38:10.0796 3520 Boot (0x1200) (b636517ca5b3abddad15f96c65f8a663) \Device\Harddisk1\DR4\Partition0
22:38:10.0796 3520 \Device\Harddisk1\DR4\Partition0 - ok
22:38:10.0796 3520 ============================================================
22:38:10.0796 3520 Scan finished
22:38:10.0796 3520 ============================================================
22:38:10.0906 0452 Detected object count: 22
22:38:10.0906 0452 Actual detected object count: 22
22:38:36.0218 0452 C:\WINDOWS\system32\drivers\ASCTRM.sys - copied to quarantine
22:38:36.0218 0452 ASCTRM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0296 0452 C:\WINDOWS\system32\drivers\ctac32k.sys - copied to quarantine
22:38:36.0296 0452 ctac32k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0343 0452 C:\WINDOWS\system32\drivers\ctaud2k.sys - copied to quarantine
22:38:36.0343 0452 ctaud2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0437 0452 C:\WINDOWS\system32\drivers\ctprxy2k.sys - copied to quarantine
22:38:36.0437 0452 ctprxy2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0484 0452 C:\WINDOWS\system32\drivers\ctsfm2k.sys - copied to quarantine
22:38:36.0484 0452 ctsfm2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0578 0452 C:\WINDOWS\system32\DLA\DLABOIOM.SYS - copied to quarantine
22:38:36.0578 0452 DLABOIOM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0625 0452 C:\WINDOWS\system32\Drivers\DLACDBHM.SYS - copied to quarantine
22:38:36.0625 0452 DLACDBHM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0671 0452 C:\WINDOWS\system32\DLA\DLADResN.SYS - copied to quarantine
22:38:36.0671 0452 DLADResN ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0718 0452 C:\WINDOWS\system32\DLA\DLAIFS_M.SYS - copied to quarantine
22:38:36.0718 0452 DLAIFS_M ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0765 0452 C:\WINDOWS\system32\DLA\DLAOPIOM.SYS - copied to quarantine
22:38:36.0765 0452 DLAOPIOM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0796 0452 C:\WINDOWS\system32\DLA\DLAPoolM.SYS - copied to quarantine
22:38:36.0796 0452 DLAPoolM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0859 0452 C:\WINDOWS\system32\Drivers\DLARTL_N.SYS - copied to quarantine
22:38:36.0859 0452 DLARTL_N ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:36.0921 0452 C:\WINDOWS\system32\DLA\DLAUDFAM.SYS - copied to quarantine
22:38:36.0921 0452 DLAUDFAM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:37.0062 0452 C:\WINDOWS\system32\DLA\DLAUDF_M.SYS - copied to quarantine
22:38:37.0062 0452 DLAUDF_M ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:37.0109 0452 C:\WINDOWS\system32\Drivers\DRVMCDB.SYS - copied to quarantine
22:38:37.0109 0452 DRVMCDB ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:37.0171 0452 C:\WINDOWS\system32\Drivers\DRVNDDM.SYS - copied to quarantine
22:38:37.0171 0452 DRVNDDM ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:37.0218 0452 C:\WINDOWS\system32\drivers\emupia2k.sys - copied to quarantine
22:38:37.0218 0452 emupia ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:37.0328 0452 C:\WINDOWS\system32\drivers\ha10kx2k.sys - copied to quarantine
22:38:37.0328 0452 ha10kx2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:37.0437 0452 C:\WINDOWS\system32\Drivers\L6PODHD3.sys - copied to quarantine
22:38:37.0437 0452 L6PODHD3 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:37.0562 0452 C:\WINDOWS\system32\drivers\ctoss2k.sys - copied to quarantine
22:38:37.0562 0452 ossrv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:37.0625 0452 C:\WINDOWS\system32\drivers\PfModNT.sys - copied to quarantine
22:38:37.0625 0452 PfModNT ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
22:38:37.0734 0452 C:\WINDOWS\system32\drivers\sp_rsdrv2.sys - copied to quarantine
22:38:37.0734 0452 sp_rsdrv2 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine

#8 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:52 PM

Posted 03 November 2011 - 12:47 AM

Greetings

Good That cleaned up some bad guys but I see some other stuff that we need to go after, so I want you to run this custom script for me.

:Run CFScript:

Open Notepad and copy/paste the text in the box into the window:

ClearJavaCache::


Save it to your desktop as CFScript.txt

Refering to the picture above, drag CFScript.txt into ComboFix.exe
Posted Image
This will let ComboFix run again.
Restart if you have to.
Save the produced logfile to your desktop.

Note: Do not mouseclick combofix's window whilst it's running. That may cause it to stall

"information and logs"

  • In your next post I need the following

  • report from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now after running the script?

Gringo

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#9 drukore

drukore
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:12:52 PM

Posted 03 November 2011 - 08:01 AM

here is the new one. still not sure if that did the trick. gonna check after work, malware bytes is still saying there is an outgoing threat. here is the report:

ComboFix 11-11-02.03 - Andru Brozovich 11/02/2011 23:16:20.4.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.2046.1315 [GMT -7:00]
Running from: c:\documents and settings\Andru Brozovich\My Documents\Downloads\ComboFix.exe
Command switches used :: c:\documents and settings\Andru Brozovich\Desktop\CFScript.txt
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\windows\system32\d3d9caps.dat
.
.
((((((((((((((((((((((((( Files Created from 2011-10-03 to 2011-11-03 )))))))))))))))))))))))))))))))
.
.
2011-11-03 05:38 . 2011-11-03 05:38 -------- d-----w- C:\TDSSKiller_Quarantine
2011-10-30 04:29 . 2011-10-30 04:29 -------- d-----w- c:\documents and settings\Andru Brozovich\Application Data\Malwarebytes
2011-10-30 04:29 . 2011-10-30 04:29 -------- d-----w- c:\documents and settings\All Users\Application Data\Malwarebytes
2011-10-30 04:29 . 2011-10-30 04:29 -------- d-----w- c:\program files\Malwarebytes' Anti-Malware
2011-10-30 04:29 . 2011-09-01 00:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-10-29 17:07 . 2011-10-29 17:08 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{AE4E9D9F-140B-4444-9F54-7EF88D1966D3}
2011-10-29 17:02 . 2011-10-29 17:02 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{C78336EC-F2EB-4640-99A4-DFE96581B90B}
2011-10-27 06:11 . 2011-10-27 06:11 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{F4FF7251-2B0F-48B9-A31D-1930EB197336}
2011-10-27 05:38 . 2011-10-27 05:38 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{6268CC84-62BB-4890-B980-FC891FC3470E}
2011-10-27 04:13 . 2011-10-27 04:13 -------- d-s---w- c:\documents and settings\Andru Brozovich\UserData
2011-10-27 03:37 . 2011-10-28 13:07 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{C1CF19B4-9194-417A-8B85-84F1471783CE}
2011-10-27 02:24 . 2011-10-28 12:52 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{4E79824D-D052-4F7D-A56B-075BC12942C0}
2011-10-27 01:49 . 2011-10-30 04:34 -------- d-----w- c:\program files\42492
2011-10-27 01:48 . 2011-10-30 04:34 -------- d-----w- c:\documents and settings\Andru Brozovich\Application Data\A5742
2011-10-26 06:20 . 2011-10-26 06:20 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{E6A5D1F3-568D-4BA2-B7B6-7B6E93D9DA97}
2011-10-26 05:16 . 2011-10-27 06:11 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{ECCA2E41-2653-4A28-BB8F-62B24E1A584D}
2011-10-26 05:04 . 2011-10-27 05:54 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{F7BFF4EE-E380-444D-BF91-DE4716D46130}
2011-10-26 05:00 . 2011-10-27 05:49 -------- dc-h--w- c:\documents and settings\All Users\Application Data\{08BCEE1B-8DEC-401F-989A-111EE3AF2366}
2011-10-26 04:20 . 2011-10-26 04:20 -------- d-----w- c:\documents and settings\All Users\Application Data\Toontrack
2011-10-26 04:13 . 2011-10-26 04:13 45056 ----a-r- c:\documents and settings\Andru Brozovich\Application Data\Microsoft\Installer\{43E8D9E7-AFC9-4BA3-8106-B95E02B87AB7}\ARPPRODUCTICON.exe
2011-10-26 03:45 . 2011-10-26 03:45 -------- d-----w- c:\program files\Toontrack
2011-10-20 00:52 . 2011-10-20 01:03 -------- d-----w- c:\documents and settings\Andru Brozovich\Application Data\mIRC
2011-10-20 00:52 . 2011-10-20 00:52 -------- d-----w- c:\program files\mIRC
2011-10-05 03:48 . 2011-06-21 18:06 180224 ----a-w- c:\windows\system32\l6podhd3.dll
2011-10-05 03:48 . 2011-06-21 18:06 580480 ----a-w- c:\windows\system32\drivers\L6PODHD3.sys
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2006-11-16 00:40 . 2011-03-06 00:56 20668485 ----a-w- c:\program files\Battery 3.exe
2001-11-05 16:30 . 2011-03-06 00:56 165376 ----a-w- c:\program files\UNWISE.EXE
2011-10-01 07:48 . 2011-05-08 06:01 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((( SnapShot@2011-10-28_19.48.04 )))))))))))))))))))))))))))))))))))))))))
.
+ 2011-11-03 05:30 . 2011-11-03 05:30 16384 c:\windows\temp\Perflib_Perfdata_5f4.dat
+ 2011-10-29 17:07 . 2011-10-29 17:07 795648 c:\windows\Installer\1e574df.msi
+ 2011-10-29 17:02 . 2011-10-29 17:02 301568 c:\windows\Installer\1e56c17.msi
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DellSupport"="c:\program files\Dell Support\DSAgnt.exe" [2005-05-15 332800]
"SetDefaultMIDI"="MIDIDef.exe" [2005-05-24 25088]
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe" [2011-03-02 3318784]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SigmatelSysTrayApp"="stsystra.exe" [2005-03-23 339968]
"ATIPTA"="c:\program files\ATI Technologies\ATI Control Panel\atiptaxx.exe" [2005-08-06 344064]
"DMXLauncher"="c:\program files\Dell\Media Experience\DMXLauncher.exe" [2005-10-05 94208]
"ISUSPM Startup"="c:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2005-06-10 249856]
"ISUSScheduler"="c:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2005-06-10 81920]
"DLA"="c:\windows\System32\DLA\DLACTRLW.EXE" [2005-09-08 122940]
"CTHelper"="CTHELPER.EXE" [2005-05-24 16384]
"UpdReg"="c:\windows\UpdReg.EXE" [2000-05-11 90112]
"AdobeAAMUpdater-1.0"="c:\program files\Common Files\Adobe\OOBE\PDApp\UWA\UpdaterStartupUtility.exe" [2010-03-06 500208]
"AdobeCS5ServiceManager"="c:\program files\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" [2010-02-22 406992]
"Memeo Instant Backup"="c:\program files\Memeo\AutoBackup\MemeoLauncher2.exe" [2010-07-08 136416]
"Memeo AutoSync"="c:\program files\Memeo\AutoSync\MemeoLauncher2.exe" [2010-04-16 144608]
"Seagate Dashboard"="c:\program files\Seagate\Seagate Dashboard\MemeoLauncher.exe" [2010-07-06 79112]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-03-21 1230704]
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe" [2011-03-02 2216960]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2011-07-06 421888]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2011-06-06 937920]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-09-01 449608]
.
c:\documents and settings\Andru Brozovich\Start Menu\Programs\Startup\
Seagate Product Registration.lnk - c:\documents and settings\Andru Brozovich\Application Data\Leadertech\PowerRegister\Seagate Product Registration.exe [2011-3-8 1731736]
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"Skype"="c:\program files\Skype\Phone\Skype.exe" /nosplash /minimized
"SpywareTerminatorUpdate"="c:\program files\Spyware Terminator\SpywareTerminatorUpdate.exe"
"AdobeBridge"=
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"MSKDetectorExe"=c:\program files\McAfee\SpamKiller\MSKDetct.exe /uninstall
"RealTray"=c:\program files\Real\RealPlayer\RealPlay.exe SYSTEMBOOTHIDEPLAYER
"SwitchBoard"=c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe
"WinampAgent"="c:\program files\Winamp\winampa.exe"
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe"
"SpywareTerminator"="c:\program files\Spyware Terminator\SpywareTerminatorShield.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center]
"AntiVirusOverride"=dword:00000001
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\BitComet\\BitComet.exe"=
"c:\\Program Files\\SoulseekNS\\slsk.exe"=
"c:\\Program Files\\Trillian\\trillian.exe"=
"c:\\Program Files\\Spyware Terminator\\SpywareTerminatorUpdate.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\Program Files\\Java\\jre6\\bin\\java.exe"=
"c:\\Program Files\\Skype\\Phone\\Skype.exe"=
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\GloballyOpenPorts\List]
"18959:TCP"= 18959:TCP:BitComet 18959 TCP
"18959:UDP"= 18959:UDP:BitComet 18959 UDP
.
R1 sp_rsdrv2;Spyware Terminator Driver 2;c:\windows\system32\drivers\sp_rsdrv2.sys [3/2/2011 12:42 AM 142592]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [10/29/2011 9:29 PM 366152]
R2 MemeoBackgroundService;MemeoBackgroundService;c:\program files\Memeo\AutoBackup\MemeoBackgroundService.exe [7/8/2010 11:21 AM 25824]
R2 NIHardwareService;NIHardwareService;c:\program files\Common Files\Native Instruments\Hardware\NIHardwareService.exe [10/12/2011 2:50 AM 4176896]
R2 SeagateDashboardService;Seagate Dashboard Service;c:\program files\Seagate\Seagate Dashboard\SeagateDashboardService.exe [7/6/2010 12:32 PM 14088]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [10/29/2011 9:29 PM 22216]
S3 L6PODHD3;Service - Line 6 POD HD300;c:\windows\system32\drivers\L6PODHD3.sys [10/4/2011 8:48 PM 580480]
S3 MBAMSwissArmy;MBAMSwissArmy;\??\c:\windows\system32\drivers\mbamswissarmy.sys --> c:\windows\system32\drivers\mbamswissarmy.sys [?]
S3 MobileAdapter;Mobile Adapter USB Modem and USB Serial;c:\windows\system32\drivers\qscnusb.sys [6/4/2011 7:40 PM 103552]
S3 SwitchBoard;Adobe SwitchBoard;c:\program files\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2/19/2010 2:37 PM 517096]
.
--- Other Services/Drivers In Memory ---
.
*NewlyCreated* - 16707834
*Deregistered* - 16707834
.
Contents of the 'Scheduled Tasks' folder
.
2011-10-27 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\program files\Apple Software Update\SoftwareUpdate.exe [2011-06-02 00:57]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.crawler.com/homepage.aspx?tbid=60076
mStart Page = hxxp://www.dell.com
IE: &D&ownload &with BitComet - c:\program files\BitComet\BitComet.exe/AddLink.htm
IE: &D&ownload all with BitComet - c:\program files\BitComet\BitComet.exe/AddAllLink.htm
IE: Crawler Search - tbr:iemenu
Trusted Zone: line6.net
TCP: DhcpNameServer = 192.168.15.1
Handler: tbr - {4D25FB7A-8902-4291-960E-9ADA051CFBBF} - c:\progra~1\Crawler\ctbr.dll
FF - ProfilePath - c:\documents and settings\Andru Brozovich\Application Data\Mozilla\Firefox\Profiles\clygxa2x.default\
FF - prefs.js: browser.search.selectedEngine - Bing
FF - prefs.js: browser.startup.homepage - www.google.com
FF - prefs.js: keyword.URL - hxxp://www.startnow.com/s/?src=addrbar&provider=Bing&provider_code=Z064&partner_id=284&product_id=379&affiliate_id=&channel=sonic&toolbar_id=200&toolbar_version=2.0&install_country=US&install_date=20110626&user_guid=C2B3EE1591564F7ABBFA178987603701&machine_id=06056fe9b5fb585ce2a37accd6cb75bd&browser=FF&os=win&os_version=5.1-x86-SP2&q=
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2011-11-02 23:22
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\S-1-5-21-3127288448-3616656131-18243365-1006\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**$%Ď%]
@Class="Shell"
@Allowed: (Read) (RestrictedCode)
@Allowed: (Read) (RestrictedCode)
.
[HKEY_USERS\S-1-5-21-3127288448-3616656131-18243365-1006\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.**$%Ď%\OpenWithList]
@Class="Shell"
.
[HKEY_USERS\S-1-5-21-3127288448-3616656131-18243365-1006\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.*¨*∆**%\OpenWithList]
@Class="Shell"
.
Completion time: 2011-11-02 23:23:45
ComboFix-quarantined-files.txt 2011-11-03 06:23
ComboFix2.txt 2011-11-03 02:42
ComboFix3.txt 2011-10-30 04:02
ComboFix4.txt 2011-10-28 20:04
.
Pre-Run: 101,691,842,560 bytes free
Post-Run: 101,686,657,024 bytes free
.
- - End Of File - - 7FFE31BDF8EEDE19E491052E2BAF1EFD

#10 drukore

drukore
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:12:52 PM

Posted 04 November 2011 - 08:00 AM

apologies I'm working a double shift again today. after work I'll sit down and see how it's running. thanks for your patience.

#11 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:52 PM

Posted 04 November 2011 - 04:45 PM

Create and Run Batch File
Open Notepad and copy/paste the entire contents of the codebox below, into Notepad:
@echo off
>Log1.txt (
ipconfig /all
nslookup google.com
nslookup yahoo.com
ping -n 2 google.com
ping -n 2 yahoo.com
route print
)
start Log1.txt
del %0
Save this as router.bat Choose to Save type as - All Files and where to save - Desktop - then close the Notepad file.

It should look like this: Posted Image <--XP
Double-click on router.bat to run it. it will open notepad when done please post back the results
gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#12 drukore

drukore
  • Topic Starter

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Local time:12:52 PM

Posted 04 November 2011 - 09:20 PM

hey there....not sure what that was supposed to do... but here! :)

I just got home so I'm going to check to see if this worked...run some programs and such...

Attached Files



#13 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:52 PM

Posted 04 November 2011 - 09:28 PM

The last one was just checking didn't do anything

I want you to try this and let me know



Resetting Router


  • This can be done by inserting something tiny like a paper clip end or pencil tip into a small hole labeled "reset" located on the back of the router.
  • Press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds).
  • If you donít know the router's default password, you can look it up. Here
  • You also need to reconfigure any security settings you had in place prior to the reset.
  • You may also need to consult with your Internet service provider to find out which DNS servers your network should be using or you can use OpenDNS
Note: After resetting your router, it is important to set a non-default password, and if possible, username, on the router. This will assist in eliminating the possibility of the router being hijacked again.

flush the DNS:

Now lets flush the DNS on the computer:

  • click on Start
  • select run
  • enter cmd and hit enter
  • a black window will open.
  • please enter the following text into that window and hit enter:


    ipconfig /flushdns

Now lets check the router again

Create and Run Batch File
Open Notepad and copy/paste the entire contents of the codebox below, into Notepad:
@echo off
>Log1.txt (
ipconfig /all
nslookup google.com
nslookup yahoo.com
ping -n 2 google.com
ping -n 2 yahoo.com
route print
)
start Log1.txt
del %0
Save this as router.bat Choose to Save type as - All Files and where to save - Desktop - then close the Notepad file.

It should look like this: Posted Image <--XP
Double-click on router.bat to run it. it will open notepad when done please post back the results

gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#14 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:52 PM

Posted 07 November 2011 - 01:59 AM

Hello

48 Hour bump

It has been more than 48 hours since my last post.

  • do you still need help with this?
  • do you need more time?
  • are you having problems following my instructions?
  • if after 48hrs you have not replied to this thread then it will have to be closed!

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#15 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:01:52 PM

Posted 09 November 2011 - 11:58 PM

Due to the lack of feedback, this topic is now closed.In the event you still have problems, please send me or any Moderator a Private Message and ask them to reopen this topic within the next 5 days. Please include a link to your topic in the Private Message. Thank you.
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users