Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

win32?bamital.p virus


  • This topic is locked This topic is locked
10 replies to this topic

#1 4on4off

4on4off

  • Members
  • 402 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:55 AM

Posted 07 January 2012 - 03:35 PM

Hello,

Running a 2005 Media center edition pc with win xp. Had the xp internet security 2012 with associated rootkit. Took care of that as far as I can tell using TDSkiller and Malwarebytes. Using Microsoft security essentials. It finds the win32/bamital.p (which appears to be self replicating in some fashing) and removes all but two at this point and lists them as allowed.

Currently running a full scan with MSE and awaiting results. The main problem at this time is IE8 will continuously not respond shortly after running it. Did some research on the net and have found similar issues associated with IE8 and bamital.p

Thank you in advance if you can assist. Love this site always find useful information here.

4

BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:05:55 PM

Posted 07 January 2012 - 03:40 PM

Post the logs for TDSS Killer and Malwarebytes.

#3 4on4off

4on4off
  • Topic Starter

  • Members
  • 402 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:55 AM

Posted 07 January 2012 - 03:47 PM

Post the logs for TDSS Killer and Malwarebytes.


Do you want the scans for tds and mwb that showed the infections before removing them or the scans after they were removed that came up clean?

Does it matter if they were ran in safe mode or not? Just asking before I sift through them.

Thanks for reply.

4

#4 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:05:55 PM

Posted 07 January 2012 - 03:49 PM

Yes both of them would be beneficial.

#5 4on4off

4on4off
  • Topic Starter

  • Members
  • 402 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:55 AM

Posted 07 January 2012 - 04:08 PM

Here is the MWB that found the infection:

Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.04.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Joy :: HARRIS [administrator]

1/4/2012 12:23:10 AM
mbam-log-2012-01-04 (00-23-10).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 312902
Time elapsed: 1 hour(s), 13 minute(s), 56 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 2
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|winupd (Trojan.Zbot.CBCGen) -> Data: C:\DOCUME~1\Joy\LOCALS~1\Temp:winupd.exe -> Quarantined and deleted successfully.
HKCR\.exe\shell\open\command| (Hijack.ExeFile) -> Data: "C:\Documents and Settings\Joy\Local Settings\Application Data\jbe.exe" -a "%1" %* -> Quarantined and deleted successfully.

Registry Data Items Detected: 10
HKCR\.exe| (PUM.HijackExefiles) -> Bad: (HF) Good: (exefile) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowHelp (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowRun (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced|Start_ShowSearch (PUM.Hijack.StartMenu) -> Bad: (0) Good: (1) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer|NoDesktop (PUM.Hidden.Desktop) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System|DisableTaskMgr (PUM.Hijack.TaskManager) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Clients\StartMenuInternet\IEXPLORE.EXE\shell\open\command| (Hijack.StartMenuInternet) -> Bad: ("C:\Documents and Settings\Joy\Local Settings\Application Data\jbe.exe" -a "iexplore.exe") Good: (iexplore.exe) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Security Center|UpdatesDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Security Center|AntiVirusDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.
HKLM\SOFTWARE\Microsoft\Security Center|FirewallDisableNotify (PUM.Disabled.SecurityCenter) -> Bad: (1) Good: (0) -> Quarantined and repaired successfully.

Folders Detected: 0
(No malicious items detected)

Files Detected: 3
c:\documents and settings\joy\local settings\temp:winupd.exe (Trojan.Zbot.CBCGen) -> Quarantined and deleted successfully.
C:\Documents and Settings\Joy\Local Settings\Application Data\jbe.exe (Trojan.FakeAV) -> Delete on reboot.
C:\Documents and Settings\Joy\My Documents\q8xoIce1.exe (Trojan.FakeAV) -> Quarantined and deleted successfully.

(end)

Here is the MWB after it was cleaned:

Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.04.06

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Joy :: HARRIS [administrator]

1/4/2012 3:34:58 PM
mbam-log-2012-01-04 (15-34-58).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 321397
Time elapsed: 1 hour(s), 29 minute(s), 54 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Here is the TDS that found the infection:

02:10:37.0390 0296 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
02:10:37.0890 0296 ============================================================
02:10:37.0890 0296 Current date / time: 2012/01/04 02:10:37.0890
02:10:37.0890 0296 SystemInfo:
02:10:37.0890 0296
02:10:37.0890 0296 OS Version: 5.1.2600 ServicePack: 3.0
02:10:37.0890 0296 Product type: Workstation
02:10:37.0890 0296 ComputerName: HARRIS
02:10:37.0890 0296 UserName: Joy
02:10:37.0890 0296 Windows directory: C:\WINDOWS
02:10:37.0890 0296 System windows directory: C:\WINDOWS
02:10:37.0890 0296 Processor architecture: Intel x86
02:10:37.0890 0296 Number of processors: 2
02:10:37.0890 0296 Page size: 0x1000
02:10:37.0890 0296 Boot type: Normal boot
02:10:37.0890 0296 ============================================================
02:10:41.0125 0296 Initialize success
02:10:43.0000 0564 ============================================================
02:10:43.0000 0564 Scan started
02:10:43.0000 0564 Mode: Manual;
02:10:43.0000 0564 ============================================================
02:10:44.0859 0564 Abiosdsk - ok
02:10:44.0890 0564 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
02:10:44.0906 0564 abp480n5 - ok
02:10:44.0953 0564 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
02:10:44.0968 0564 ACPI - ok
02:10:45.0000 0564 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
02:10:45.0000 0564 ACPIEC - ok
02:10:45.0078 0564 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
02:10:45.0078 0564 adpu160m - ok
02:10:45.0203 0564 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
02:10:45.0203 0564 aec - ok
02:10:45.0281 0564 AFD (355556d9e580915118cd7ef736653a89) C:\WINDOWS\System32\drivers\afd.sys
02:10:45.0281 0564 AFD - ok
02:10:45.0328 0564 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
02:10:45.0328 0564 agp440 - ok
02:10:45.0359 0564 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
02:10:45.0359 0564 agpCPQ - ok
02:10:45.0390 0564 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
02:10:45.0390 0564 Aha154x - ok
02:10:45.0421 0564 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
02:10:45.0421 0564 aic78u2 - ok
02:10:45.0437 0564 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
02:10:45.0453 0564 aic78xx - ok
02:10:45.0468 0564 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
02:10:45.0484 0564 AliIde - ok
02:10:45.0578 0564 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
02:10:45.0578 0564 alim1541 - ok
02:10:45.0687 0564 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
02:10:45.0687 0564 amdagp - ok
02:10:45.0765 0564 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
02:10:45.0765 0564 amsint - ok
02:10:45.0796 0564 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
02:10:45.0796 0564 asc - ok
02:10:45.0828 0564 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
02:10:45.0828 0564 asc3350p - ok
02:10:45.0859 0564 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
02:10:45.0859 0564 asc3550 - ok
02:10:45.0921 0564 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
02:10:45.0921 0564 AsyncMac - ok
02:10:46.0062 0564 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
02:10:46.0062 0564 atapi - ok
02:10:46.0093 0564 Atdisk - ok
02:10:46.0140 0564 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
02:10:46.0156 0564 Atmarpc - ok
02:10:46.0218 0564 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
02:10:46.0218 0564 audstub - ok
02:10:46.0265 0564 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
02:10:46.0265 0564 Beep - ok
02:10:46.0296 0564 bvrp_pci - ok
02:10:46.0312 0564 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
02:10:46.0312 0564 cbidf - ok
02:10:46.0328 0564 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
02:10:46.0328 0564 cbidf2k - ok
02:10:46.0390 0564 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
02:10:46.0390 0564 CCDECODE - ok
02:10:46.0421 0564 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
02:10:46.0421 0564 cd20xrnt - ok
02:10:46.0437 0564 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
02:10:46.0453 0564 Cdaudio - ok
02:10:46.0468 0564 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
02:10:46.0468 0564 Cdfs - ok
02:10:46.0515 0564 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
02:10:46.0578 0564 Cdrom - ok
02:10:46.0609 0564 Changer - ok
02:10:46.0671 0564 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
02:10:46.0671 0564 CmdIde - ok
02:10:46.0765 0564 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
02:10:46.0765 0564 Cpqarray - ok
02:10:46.0796 0564 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
02:10:46.0796 0564 dac2w2k - ok
02:10:46.0812 0564 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
02:10:46.0812 0564 dac960nt - ok
02:10:46.0859 0564 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
02:10:46.0859 0564 Disk - ok
02:10:46.0937 0564 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
02:10:46.0968 0564 dmboot - ok
02:10:47.0015 0564 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
02:10:47.0015 0564 dmio - ok
02:10:47.0109 0564 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
02:10:47.0109 0564 dmload - ok
02:10:47.0265 0564 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
02:10:47.0265 0564 DMusic - ok
02:10:47.0343 0564 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
02:10:47.0359 0564 dpti2o - ok
02:10:47.0453 0564 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
02:10:47.0453 0564 drmkaud - ok
02:10:47.0656 0564 drvmcdb (e814854e6b246ccf498874839ab64d77) C:\WINDOWS\system32\drivers\drvmcdb.sys
02:10:47.0703 0564 drvmcdb - ok
02:10:47.0781 0564 drvnddm (ee83a4ebae70bc93cf14879d062f548b) C:\WINDOWS\system32\drivers\drvnddm.sys
02:10:48.0609 0564 drvnddm - ok
02:10:48.0796 0564 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
02:10:48.0796 0564 DSproct - ok
02:10:48.0953 0564 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
02:10:48.0953 0564 dsunidrv - ok
02:10:49.0015 0564 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
02:10:49.0031 0564 E100B - ok
02:10:49.0093 0564 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
02:10:49.0093 0564 Fastfat - ok
02:10:49.0171 0564 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
02:10:49.0171 0564 Fdc - ok
02:10:49.0234 0564 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
02:10:49.0234 0564 Fips - ok
02:10:49.0281 0564 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
02:10:49.0281 0564 Flpydisk - ok
02:10:49.0312 0564 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
02:10:49.0328 0564 FltMgr - ok
02:10:49.0375 0564 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
02:10:49.0375 0564 Fs_Rec - ok
02:10:49.0390 0564 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
02:10:49.0406 0564 Ftdisk - ok
02:10:49.0453 0564 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
02:10:49.0453 0564 Gpc - ok
02:10:49.0593 0564 GTNDIS5 (fc80052194d5708254a346568f0e77c0) C:\WINDOWS\system32\GTNDIS5.SYS
02:10:49.0593 0564 GTNDIS5 - ok
02:10:49.0671 0564 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
02:10:49.0671 0564 HDAudBus - ok
02:10:49.0734 0564 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
02:10:49.0750 0564 HidUsb - ok
02:10:49.0859 0564 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
02:10:49.0859 0564 hpn - ok
02:10:50.0078 0564 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
02:10:50.0093 0564 HPZid412 - ok
02:10:50.0187 0564 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
02:10:50.0187 0564 HPZipr12 - ok
02:10:50.0281 0564 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
02:10:50.0281 0564 HPZius12 - ok
02:10:50.0343 0564 HSFHWBS2 (77e4ff0b73bc0aeaaf39bf0c8104231f) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
02:10:50.0343 0564 HSFHWBS2 - ok
02:10:50.0437 0564 HSF_DP (60e1604729a15ef4a3b05f298427b3b1) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
02:10:50.0468 0564 HSF_DP - ok
02:10:50.0578 0564 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
02:10:50.0593 0564 HTTP - ok
02:10:50.0718 0564 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
02:10:50.0734 0564 i2omgmt - ok
02:10:50.0828 0564 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
02:10:50.0828 0564 i2omp - ok
02:10:51.0093 0564 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
02:10:51.0093 0564 i8042prt - ok
02:10:51.0218 0564 ialm (5a8e05f1d5c36abd58cffa111eb325ea) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
02:10:51.0265 0564 ialm - ok
02:10:51.0390 0564 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
02:10:51.0390 0564 Imapi - ok
02:10:51.0437 0564 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
02:10:51.0437 0564 ini910u - ok
02:10:51.0515 0564 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
02:10:51.0515 0564 IntelIde - ok
02:10:51.0593 0564 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
02:10:51.0593 0564 intelppm - ok
02:10:51.0640 0564 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
02:10:51.0734 0564 Ip6Fw - ok
02:10:51.0765 0564 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
02:10:51.0781 0564 IpFilterDriver - ok
02:10:51.0937 0564 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
02:10:51.0953 0564 IpInIp - ok
02:10:52.0031 0564 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
02:10:52.0031 0564 IpNat - ok
02:10:52.0109 0564 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
02:10:52.0171 0564 IPSec - ok
02:10:52.0328 0564 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
02:10:52.0343 0564 IRENUM - ok
02:10:52.0375 0564 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
02:10:52.0375 0564 isapnp - ok
02:10:52.0421 0564 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
02:10:52.0453 0564 Kbdclass - ok
02:10:52.0625 0564 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
02:10:52.0625 0564 kbdhid - ok
02:10:52.0765 0564 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
02:10:52.0796 0564 kmixer - ok
02:10:52.0875 0564 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
02:10:52.0906 0564 KSecDD - ok
02:10:52.0921 0564 lbrtfdc - ok
02:10:53.0031 0564 mdmxsdk (eeaea6514ba7c9d273b5e87c4e1aab30) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
02:10:53.0062 0564 mdmxsdk - ok
02:10:53.0109 0564 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
02:10:53.0109 0564 MHNDRV - ok
02:10:53.0140 0564 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
02:10:53.0156 0564 mnmdd - ok
02:10:53.0234 0564 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
02:10:53.0234 0564 Modem - ok
02:10:53.0312 0564 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
02:10:53.0328 0564 MODEMCSA - ok
02:10:53.0375 0564 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
02:10:53.0390 0564 Mouclass - ok
02:10:53.0468 0564 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
02:10:53.0500 0564 mouhid - ok
02:10:53.0593 0564 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
02:10:53.0593 0564 MountMgr - ok
02:10:53.0953 0564 MpFilter (7e34bfa1a7b60bba1da03d677f16cd63) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
02:10:54.0031 0564 MpFilter - ok
02:10:54.0234 0564 MpKsl24b9dff5 (a69630d039c38018689190234f866d77) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{5842AEC1-1293-428F-8D01-CCB28A60F920}\MpKsl24b9dff5.sys
02:10:54.0234 0564 MpKsl24b9dff5 - ok
02:10:54.0281 0564 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
02:10:54.0281 0564 mraid35x - ok
02:10:54.0359 0564 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
02:10:54.0359 0564 MRxDAV - ok
02:10:54.0453 0564 MRxSmb (0dc719e9b15e902346e87e9dcd5751fa) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
02:10:54.0484 0564 MRxSmb - ok
02:10:54.0593 0564 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
02:10:54.0593 0564 Msfs - ok
02:10:54.0640 0564 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
02:10:54.0640 0564 MSKSSRV - ok
02:10:54.0703 0564 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
02:10:54.0703 0564 MSPCLOCK - ok
02:10:54.0750 0564 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
02:10:54.0765 0564 MSPQM - ok
02:10:54.0796 0564 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
02:10:54.0796 0564 mssmbios - ok
02:10:54.0843 0564 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
02:10:54.0843 0564 MSTEE - ok
02:10:54.0875 0564 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
02:10:54.0875 0564 Mup - ok
02:10:54.0968 0564 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
02:10:54.0968 0564 NABTSFEC - ok
02:10:55.0140 0564 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
02:10:55.0140 0564 NDIS - ok
02:10:55.0203 0564 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
02:10:55.0203 0564 NdisIP - ok
02:10:55.0281 0564 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
02:10:55.0281 0564 NdisTapi - ok
02:10:55.0359 0564 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
02:10:55.0359 0564 Ndisuio - ok
02:10:55.0468 0564 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
02:10:55.0468 0564 NdisWan - ok
02:10:55.0562 0564 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
02:10:55.0562 0564 NDProxy - ok
02:10:55.0609 0564 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
02:10:55.0609 0564 NetBIOS - ok
02:10:55.0703 0564 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
02:10:55.0765 0564 NetBT - ok
02:10:55.0843 0564 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
02:10:55.0859 0564 Npfs - ok
02:10:55.0921 0564 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
02:10:55.0953 0564 Ntfs - ok
02:10:55.0984 0564 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
02:10:55.0984 0564 Null - ok
02:10:56.0078 0564 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
02:10:56.0125 0564 nv - ok
02:10:56.0218 0564 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
02:10:56.0218 0564 NwlnkFlt - ok
02:10:56.0234 0564 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
02:10:56.0250 0564 NwlnkFwd - ok
02:10:56.0312 0564 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
02:10:56.0312 0564 Parport - ok
02:10:56.0328 0564 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
02:10:56.0328 0564 PartMgr - ok
02:10:56.0359 0564 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
02:10:56.0359 0564 ParVdm - ok
02:10:56.0390 0564 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
02:10:56.0390 0564 PCI - ok
02:10:56.0421 0564 PCIDump - ok
02:10:56.0437 0564 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
02:10:56.0437 0564 PCIIde - ok
02:10:56.0640 0564 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
02:10:56.0640 0564 Pcmcia - ok
02:10:56.0796 0564 PDCOMP - ok
02:10:56.0828 0564 PDFRAME - ok
02:10:56.0843 0564 PDRELI - ok
02:10:56.0859 0564 PDRFRAME - ok
02:10:56.0890 0564 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
02:10:56.0890 0564 perc2 - ok
02:10:56.0921 0564 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
02:10:56.0953 0564 perc2hib - ok
02:10:57.0062 0564 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
02:10:57.0062 0564 PptpMiniport - ok
02:10:57.0140 0564 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
02:10:57.0140 0564 PSched - ok
02:10:57.0187 0564 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
02:10:57.0187 0564 Ptilink - ok
02:10:57.0250 0564 PxHelp20 (86724469cd077901706854974cd13c3e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
02:10:57.0281 0564 PxHelp20 - ok
02:10:57.0359 0564 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
02:10:57.0359 0564 ql1080 - ok
02:10:57.0484 0564 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
02:10:57.0484 0564 Ql10wnt - ok
02:10:57.0500 0564 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
02:10:57.0500 0564 ql12160 - ok
02:10:57.0531 0564 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
02:10:57.0531 0564 ql1240 - ok
02:10:57.0546 0564 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
02:10:57.0546 0564 ql1280 - ok
02:10:57.0593 0564 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
02:10:57.0593 0564 RasAcd - ok
02:10:57.0625 0564 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
02:10:57.0625 0564 Rasl2tp - ok
02:10:57.0656 0564 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
02:10:57.0656 0564 RasPppoe - ok
02:10:57.0671 0564 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
02:10:57.0671 0564 Raspti - ok
02:10:57.0734 0564 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
02:10:57.0875 0564 Rdbss - ok
02:10:58.0125 0564 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
02:10:58.0140 0564 RDPCDD - ok
02:10:58.0406 0564 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
02:10:58.0406 0564 rdpdr - ok
02:10:58.0468 0564 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
02:10:58.0578 0564 RDPWD - ok
02:10:58.0843 0564 redbook (6141fd30f24eaf69341058042e233c79) C:\WINDOWS\system32\DRIVERS\redbook.sys
02:10:58.0875 0564 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\redbook.sys. Real md5: 6141fd30f24eaf69341058042e233c79, Fake md5: f828dd7e1419b6653894a8f97a0094c5
02:10:58.0875 0564 redbook ( Rootkit.Win32.ZAccess.aml ) - infected
02:10:58.0875 0564 redbook - detected Rootkit.Win32.ZAccess.aml (0)
02:10:59.0015 0564 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
02:10:59.0015 0564 Secdrv - ok
02:10:59.0093 0564 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
02:10:59.0093 0564 serenum - ok
02:10:59.0171 0564 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
02:10:59.0171 0564 Serial - ok
02:10:59.0296 0564 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
02:10:59.0296 0564 Sfloppy - ok
02:10:59.0328 0564 Simbad - ok
02:10:59.0421 0564 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
02:10:59.0437 0564 sisagp - ok
02:10:59.0609 0564 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
02:10:59.0609 0564 SLIP - ok
02:10:59.0765 0564 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
02:10:59.0765 0564 Sparrow - ok
02:10:59.0937 0564 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
02:10:59.0953 0564 splitter - ok
02:11:00.0109 0564 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
02:11:00.0109 0564 sr - ok
02:11:00.0203 0564 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
02:11:00.0218 0564 Srv - ok
02:11:00.0281 0564 sscdbhk5 (d7968049be0adbb6a57cee3960320911) C:\WINDOWS\system32\drivers\sscdbhk5.sys
02:11:00.0296 0564 sscdbhk5 - ok
02:11:00.0390 0564 ssrtln (c3ffd65abfb6441e7606cf74f1155273) C:\WINDOWS\system32\drivers\ssrtln.sys
02:11:00.0437 0564 ssrtln - ok
02:11:00.0593 0564 STHDA (26eb7acf476a3461b85f5bce9a677a4a) C:\WINDOWS\system32\drivers\sthda.sys
02:11:00.0593 0564 STHDA - ok
02:11:00.0718 0564 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
02:11:00.0718 0564 streamip - ok
02:11:00.0781 0564 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
02:11:00.0781 0564 swenum - ok
02:11:00.0859 0564 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
02:11:00.0859 0564 swmidi - ok
02:11:00.0890 0564 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
02:11:00.0906 0564 symc810 - ok
02:11:00.0937 0564 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
02:11:00.0937 0564 symc8xx - ok
02:11:00.0968 0564 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
02:11:00.0968 0564 sym_hi - ok
02:11:01.0031 0564 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
02:11:01.0031 0564 sym_u3 - ok
02:11:01.0078 0564 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
02:11:01.0093 0564 sysaudio - ok
02:11:01.0171 0564 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
02:11:01.0187 0564 Tcpip - ok
02:11:01.0234 0564 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
02:11:01.0234 0564 TDPIPE - ok
02:11:01.0265 0564 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
02:11:01.0265 0564 TDTCP - ok
02:11:01.0328 0564 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
02:11:01.0328 0564 TermDD - ok
02:11:01.0406 0564 tfsnboio (30698355067d07da5f9eb81132c9fdd6) C:\WINDOWS\system32\dla\tfsnboio.sys
02:11:01.0437 0564 tfsnboio - ok
02:11:01.0453 0564 tfsncofs (fb9d825bb4a2abdf24600f7505050e2b) C:\WINDOWS\system32\dla\tfsncofs.sys
02:11:01.0500 0564 tfsncofs - ok
02:11:01.0546 0564 tfsndrct (cafd8cca11aa1e8b6d2ea1ba8f70ec33) C:\WINDOWS\system32\dla\tfsndrct.sys
02:11:01.0562 0564 tfsndrct - ok
02:11:01.0625 0564 tfsndres (8db1e78fbf7c426d8ec3d8f1a33d6485) C:\WINDOWS\system32\dla\tfsndres.sys
02:11:01.0640 0564 tfsndres - ok
02:11:01.0687 0564 tfsnifs (b92f67a71cc8176f331b8aa8d9f555ad) C:\WINDOWS\system32\dla\tfsnifs.sys
02:11:01.0765 0564 tfsnifs - ok
02:11:01.0812 0564 tfsnopio (85985faa9a71e2358fcc2edefc2a3c5c) C:\WINDOWS\system32\dla\tfsnopio.sys
02:11:01.0843 0564 tfsnopio - ok
02:11:01.0859 0564 tfsnpool (bba22094f0f7c210567efdaf11f64495) C:\WINDOWS\system32\dla\tfsnpool.sys
02:11:01.0890 0564 tfsnpool - ok
02:11:01.0953 0564 tfsnudf (81340bef80b9811e98ce64611e67e3ff) C:\WINDOWS\system32\dla\tfsnudf.sys
02:11:02.0031 0564 tfsnudf - ok
02:11:02.0125 0564 tfsnudfa (c035fd116224ccc8325f384776b6a8bb) C:\WINDOWS\system32\dla\tfsnudfa.sys
02:11:02.0203 0564 tfsnudfa - ok
02:11:02.0281 0564 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
02:11:02.0281 0564 TosIde - ok
02:11:02.0375 0564 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
02:11:02.0375 0564 Udfs - ok
02:11:02.0406 0564 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
02:11:02.0421 0564 ultra - ok
02:11:02.0484 0564 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
02:11:02.0500 0564 Update - ok
02:11:02.0593 0564 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
02:11:02.0593 0564 usbaudio - ok
02:11:02.0656 0564 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
02:11:02.0656 0564 usbccgp - ok
02:11:02.0750 0564 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
02:11:02.0750 0564 usbehci - ok
02:11:02.0781 0564 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
02:11:02.0781 0564 usbhub - ok
02:11:02.0828 0564 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
02:11:02.0828 0564 usbprint - ok
02:11:02.0984 0564 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
02:11:02.0984 0564 usbscan - ok
02:11:03.0000 0564 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
02:11:03.0000 0564 USBSTOR - ok
02:11:03.0062 0564 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
02:11:03.0062 0564 usbuhci - ok
02:11:03.0093 0564 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
02:11:03.0093 0564 usbvideo - ok
02:11:03.0125 0564 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
02:11:03.0125 0564 VgaSave - ok
02:11:03.0312 0564 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
02:11:03.0312 0564 viaagp - ok
02:11:03.0406 0564 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
02:11:03.0406 0564 ViaIde - ok
02:11:03.0453 0564 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
02:11:03.0468 0564 VolSnap - ok
02:11:03.0562 0564 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
02:11:03.0578 0564 Wanarp - ok
02:11:03.0593 0564 wanatw - ok
02:11:03.0609 0564 WDICA - ok
02:11:03.0656 0564 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
02:11:03.0656 0564 wdmaud - ok
02:11:03.0812 0564 winachsf (f59ed5a43b988a18ef582bb07b2327a7) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
02:11:03.0859 0564 winachsf - ok
02:11:04.0046 0564 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
02:11:04.0046 0564 WSTCODEC - ok
02:11:04.0093 0564 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
02:11:04.0093 0564 WudfPf - ok
02:11:04.0125 0564 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
02:11:04.0125 0564 WudfRd - ok
02:11:04.0187 0564 WUSB54GPV4SRV (70aeec67e87a2002e6b2cc353d56e222) C:\WINDOWS\system32\DRIVERS\rt2500usb.sys
02:11:04.0203 0564 WUSB54GPV4SRV - ok
02:11:04.0250 0564 MBR (0x1B8) (5cb90281d1a59b251f6603134774eec3) \Device\Harddisk0\DR0
02:11:04.0296 0564 \Device\Harddisk0\DR0 - ok
02:11:04.0328 0564 Boot (0x1200) (ea3b843b8194640e612e6774ed8f5755) \Device\Harddisk0\DR0\Partition0
02:11:04.0343 0564 \Device\Harddisk0\DR0\Partition0 - ok
02:11:04.0343 0564 ============================================================
02:11:04.0343 0564 Scan finished
02:11:04.0343 0564 ============================================================
02:11:04.0359 3124 Detected object count: 1
02:11:04.0359 3124 Actual detected object count: 1
02:11:30.0265 3124 Backup copy found, using it..
02:11:30.0359 3124 C:\WINDOWS\system32\DRIVERS\redbook.sys - will be cured on reboot
02:11:33.0140 3124 redbook ( Rootkit.Win32.ZAccess.aml ) - User select action: Cure
02:11:42.0171 1112 Deinitialize success

Here is the TDS after it was cleaned: NOTE( when i ran it after cleaning the rootkit I selected the verify drivers options and it found several unsigned which I went with the skip option so they are still there)

15:31:37.0593 13320 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
15:31:38.0062 13320 ============================================================
15:31:38.0062 13320 Current date / time: 2012/01/04 15:31:38.0062
15:31:38.0062 13320 SystemInfo:
15:31:38.0062 13320
15:31:38.0062 13320 OS Version: 5.1.2600 ServicePack: 3.0
15:31:38.0062 13320 Product type: Workstation
15:31:38.0062 13320 ComputerName: HARRIS
15:31:38.0062 13320 UserName: Joy
15:31:38.0062 13320 Windows directory: C:\WINDOWS
15:31:38.0062 13320 System windows directory: C:\WINDOWS
15:31:38.0062 13320 Processor architecture: Intel x86
15:31:38.0062 13320 Number of processors: 2
15:31:38.0062 13320 Page size: 0x1000
15:31:38.0062 13320 Boot type: Normal boot
15:31:38.0062 13320 ============================================================
15:31:40.0234 13320 Initialize success
15:31:45.0156 14712 ============================================================
15:31:45.0156 14712 Scan started
15:31:45.0156 14712 Mode: Manual;
15:31:45.0156 14712 ============================================================
15:31:46.0656 14712 Abiosdsk - ok
15:31:46.0703 14712 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
15:31:46.0703 14712 abp480n5 - ok
15:31:46.0765 14712 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:31:46.0765 14712 ACPI - ok
15:31:46.0812 14712 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
15:31:46.0812 14712 ACPIEC - ok
15:31:46.0843 14712 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
15:31:46.0843 14712 adpu160m - ok
15:31:46.0890 14712 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
15:31:46.0890 14712 aec - ok
15:31:46.0953 14712 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
15:31:46.0953 14712 AFD - ok
15:31:47.0000 14712 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
15:31:47.0000 14712 agp440 - ok
15:31:47.0015 14712 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
15:31:47.0015 14712 agpCPQ - ok
15:31:47.0031 14712 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
15:31:47.0046 14712 Aha154x - ok
15:31:47.0062 14712 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
15:31:47.0062 14712 aic78u2 - ok
15:31:47.0078 14712 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
15:31:47.0078 14712 aic78xx - ok
15:31:47.0109 14712 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
15:31:47.0109 14712 AliIde - ok
15:31:47.0171 14712 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
15:31:47.0171 14712 alim1541 - ok
15:31:47.0218 14712 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
15:31:47.0218 14712 amdagp - ok
15:31:47.0312 14712 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
15:31:47.0328 14712 amsint - ok
15:31:47.0406 14712 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
15:31:47.0406 14712 asc - ok
15:31:47.0484 14712 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
15:31:47.0484 14712 asc3350p - ok
15:31:47.0500 14712 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
15:31:47.0515 14712 asc3550 - ok
15:31:47.0687 14712 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:31:47.0687 14712 AsyncMac - ok
15:31:47.0718 14712 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
15:31:47.0718 14712 atapi - ok
15:31:47.0734 14712 Atdisk - ok
15:31:47.0796 14712 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:31:47.0796 14712 Atmarpc - ok
15:31:47.0859 14712 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
15:31:47.0859 14712 audstub - ok
15:31:47.0921 14712 BANTExt (5d7be7b19e827125e016325334e58ff1) C:\WINDOWS\System32\Drivers\BANTExt.sys
15:31:47.0921 14712 BANTExt - ok
15:31:47.0968 14712 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
15:31:47.0968 14712 Beep - ok
15:31:47.0984 14712 bvrp_pci - ok
15:31:48.0000 14712 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
15:31:48.0000 14712 cbidf - ok
15:31:48.0015 14712 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
15:31:48.0015 14712 cbidf2k - ok
15:31:48.0078 14712 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
15:31:48.0078 14712 CCDECODE - ok
15:31:48.0109 14712 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
15:31:48.0109 14712 cd20xrnt - ok
15:31:48.0125 14712 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
15:31:48.0125 14712 Cdaudio - ok
15:31:48.0140 14712 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
15:31:48.0140 14712 Cdfs - ok
15:31:48.0187 14712 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:31:48.0187 14712 Cdrom - ok
15:31:48.0203 14712 Changer - ok
15:31:48.0250 14712 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
15:31:48.0250 14712 CmdIde - ok
15:31:48.0281 14712 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
15:31:48.0281 14712 Cpqarray - ok
15:31:48.0328 14712 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
15:31:48.0328 14712 dac2w2k - ok
15:31:48.0343 14712 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
15:31:48.0343 14712 dac960nt - ok
15:31:48.0375 14712 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
15:31:48.0390 14712 Disk - ok
15:31:48.0453 14712 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
15:31:48.0484 14712 dmboot - ok
15:31:48.0515 14712 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
15:31:48.0531 14712 dmio - ok
15:31:48.0593 14712 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
15:31:48.0593 14712 dmload - ok
15:31:48.0625 14712 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
15:31:48.0625 14712 DMusic - ok
15:31:48.0703 14712 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
15:31:48.0703 14712 dpti2o - ok
15:31:48.0765 14712 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
15:31:48.0765 14712 drmkaud - ok
15:31:48.0843 14712 drvmcdb (e814854e6b246ccf498874839ab64d77) C:\WINDOWS\system32\drivers\drvmcdb.sys
15:31:48.0859 14712 drvmcdb - ok
15:31:48.0984 14712 drvnddm (ee83a4ebae70bc93cf14879d062f548b) C:\WINDOWS\system32\drivers\drvnddm.sys
15:31:49.0953 14712 drvnddm - ok
15:31:50.0125 14712 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
15:31:50.0125 14712 DSproct - ok
15:31:50.0187 14712 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
15:31:50.0187 14712 dsunidrv - ok
15:31:50.0250 14712 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
15:31:50.0250 14712 E100B - ok
15:31:50.0296 14712 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
15:31:50.0296 14712 Fastfat - ok
15:31:50.0359 14712 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
15:31:50.0359 14712 Fdc - ok
15:31:50.0406 14712 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
15:31:50.0406 14712 Fips - ok
15:31:50.0453 14712 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:31:50.0453 14712 Flpydisk - ok
15:31:50.0484 14712 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
15:31:50.0484 14712 FltMgr - ok
15:31:50.0546 14712 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:31:50.0546 14712 Fs_Rec - ok
15:31:50.0562 14712 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:31:50.0562 14712 Ftdisk - ok
15:31:50.0640 14712 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:31:50.0640 14712 Gpc - ok
15:31:50.0734 14712 GTNDIS5 (fc80052194d5708254a346568f0e77c0) C:\WINDOWS\system32\GTNDIS5.SYS
15:31:50.0734 14712 GTNDIS5 - ok
15:31:50.0890 14712 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
15:31:50.0890 14712 HDAudBus - ok
15:31:50.0937 14712 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:31:50.0937 14712 HidUsb - ok
15:31:51.0000 14712 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
15:31:51.0000 14712 hpn - ok
15:31:51.0078 14712 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
15:31:51.0078 14712 HPZid412 - ok
15:31:51.0203 14712 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
15:31:51.0203 14712 HPZipr12 - ok
15:31:51.0328 14712 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
15:31:51.0328 14712 HPZius12 - ok
15:31:51.0390 14712 HSFHWBS2 (77e4ff0b73bc0aeaaf39bf0c8104231f) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
15:31:51.0406 14712 HSFHWBS2 - ok
15:31:51.0453 14712 HSF_DP (60e1604729a15ef4a3b05f298427b3b1) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
15:31:51.0500 14712 HSF_DP - ok
15:31:51.0562 14712 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
15:31:51.0578 14712 HTTP - ok
15:31:51.0593 14712 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
15:31:51.0593 14712 i2omgmt - ok
15:31:51.0640 14712 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
15:31:51.0640 14712 i2omp - ok
15:31:51.0687 14712 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:31:51.0687 14712 i8042prt - ok
15:31:51.0781 14712 ialm (5a8e05f1d5c36abd58cffa111eb325ea) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
15:31:51.0843 14712 ialm - ok
15:31:52.0015 14712 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
15:31:52.0031 14712 Imapi - ok
15:31:52.0109 14712 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
15:31:52.0109 14712 ini910u - ok
15:31:52.0156 14712 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
15:31:52.0171 14712 IntelIde - ok
15:31:52.0234 14712 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:31:52.0234 14712 intelppm - ok
15:31:52.0375 14712 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
15:31:52.0375 14712 Ip6Fw - ok
15:31:52.0484 14712 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:31:52.0484 14712 IpFilterDriver - ok
15:31:52.0515 14712 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:31:52.0531 14712 IpInIp - ok
15:31:52.0578 14712 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:31:52.0578 14712 IpNat - ok
15:31:52.0625 14712 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:31:52.0625 14712 IPSec - ok
15:31:52.0671 14712 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
15:31:52.0671 14712 IRENUM - ok
15:31:52.0687 14712 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:31:52.0687 14712 isapnp - ok
15:31:52.0734 14712 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:31:52.0734 14712 Kbdclass - ok
15:31:52.0828 14712 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:31:52.0828 14712 kbdhid - ok
15:31:52.0890 14712 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
15:31:52.0890 14712 kmixer - ok
15:31:52.0937 14712 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
15:31:52.0937 14712 KSecDD - ok
15:31:52.0968 14712 lbrtfdc - ok
15:31:53.0031 14712 mdmxsdk (eeaea6514ba7c9d273b5e87c4e1aab30) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
15:31:53.0031 14712 mdmxsdk - ok
15:31:53.0078 14712 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
15:31:53.0078 14712 MHNDRV - ok
15:31:53.0109 14712 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
15:31:53.0125 14712 mnmdd - ok
15:31:53.0171 14712 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
15:31:53.0171 14712 Modem - ok
15:31:53.0187 14712 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
15:31:53.0187 14712 MODEMCSA - ok
15:31:53.0218 14712 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:31:53.0218 14712 Mouclass - ok
15:31:53.0281 14712 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:31:53.0281 14712 mouhid - ok
15:31:53.0312 14712 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
15:31:53.0312 14712 MountMgr - ok
15:31:53.0453 14712 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
15:31:53.0453 14712 MpFilter - ok
15:31:53.0687 14712 MpKsl013b5cb6 (a69630d039c38018689190234f866d77) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6F508446-E9C7-40CC-A055-2009B9F9EC87}\MpKsl013b5cb6.sys
15:31:53.0687 14712 MpKsl013b5cb6 - ok
15:31:53.0812 14712 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
15:31:53.0812 14712 mraid35x - ok
15:31:53.0859 14712 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:31:53.0859 14712 MRxDAV - ok
15:31:53.0937 14712 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:31:53.0953 14712 MRxSmb - ok
15:31:54.0031 14712 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
15:31:54.0031 14712 Msfs - ok
15:31:54.0078 14712 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:31:54.0078 14712 MSKSSRV - ok
15:31:54.0125 14712 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:31:54.0125 14712 MSPCLOCK - ok
15:31:54.0171 14712 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
15:31:54.0187 14712 MSPQM - ok
15:31:54.0234 14712 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:31:54.0234 14712 mssmbios - ok
15:31:54.0281 14712 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
15:31:54.0281 14712 MSTEE - ok
15:31:54.0312 14712 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
15:31:54.0328 14712 Mup - ok
15:31:54.0359 14712 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
15:31:54.0375 14712 NABTSFEC - ok
15:31:54.0531 14712 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
15:31:54.0531 14712 NDIS - ok
15:31:54.0578 14712 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
15:31:54.0578 14712 NdisIP - ok
15:31:54.0609 14712 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:31:54.0609 14712 NdisTapi - ok
15:31:54.0656 14712 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:31:54.0656 14712 Ndisuio - ok
15:31:54.0671 14712 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:31:54.0687 14712 NdisWan - ok
15:31:54.0718 14712 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
15:31:54.0718 14712 NDProxy - ok
15:31:54.0796 14712 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
15:31:54.0796 14712 NetBIOS - ok
15:31:54.0890 14712 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
15:31:54.0890 14712 NetBT - ok
15:31:54.0968 14712 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
15:31:54.0968 14712 Npfs - ok
15:31:55.0000 14712 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
15:31:55.0015 14712 Ntfs - ok
15:31:55.0046 14712 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
15:31:55.0062 14712 Null - ok
15:31:55.0140 14712 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
15:31:55.0203 14712 nv - ok
15:31:55.0234 14712 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:31:55.0234 14712 NwlnkFlt - ok
15:31:55.0250 14712 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:31:55.0250 14712 NwlnkFwd - ok
15:31:55.0312 14712 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
15:31:55.0312 14712 Parport - ok
15:31:55.0375 14712 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
15:31:55.0375 14712 PartMgr - ok
15:31:55.0406 14712 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
15:31:55.0406 14712 ParVdm - ok
15:31:55.0437 14712 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
15:31:55.0453 14712 PCI - ok
15:31:55.0468 14712 PCIDump - ok
15:31:55.0484 14712 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
15:31:55.0484 14712 PCIIde - ok
15:31:55.0515 14712 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
15:31:55.0515 14712 Pcmcia - ok
15:31:55.0640 14712 PDCOMP - ok
15:31:55.0671 14712 PDFRAME - ok
15:31:55.0687 14712 PDRELI - ok
15:31:55.0703 14712 PDRFRAME - ok
15:31:55.0734 14712 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
15:31:55.0734 14712 perc2 - ok
15:31:55.0765 14712 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
15:31:55.0765 14712 perc2hib - ok
15:31:55.0843 14712 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:31:55.0843 14712 PptpMiniport - ok
15:31:55.0859 14712 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
15:31:55.0859 14712 PSched - ok
15:31:55.0906 14712 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:31:55.0906 14712 Ptilink - ok
15:31:55.0968 14712 PxHelp20 (86724469cd077901706854974cd13c3e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:31:55.0968 14712 PxHelp20 - ok
15:31:55.0984 14712 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
15:31:56.0000 14712 ql1080 - ok
15:31:56.0062 14712 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
15:31:56.0078 14712 Ql10wnt - ok
15:31:56.0140 14712 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
15:31:56.0140 14712 ql12160 - ok
15:31:56.0171 14712 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
15:31:56.0171 14712 ql1240 - ok
15:31:56.0187 14712 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
15:31:56.0187 14712 ql1280 - ok
15:31:56.0234 14712 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:31:56.0250 14712 RasAcd - ok
15:31:56.0265 14712 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:31:56.0265 14712 Rasl2tp - ok
15:31:56.0296 14712 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:31:56.0296 14712 RasPppoe - ok
15:31:56.0312 14712 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
15:31:56.0312 14712 Raspti - ok
15:31:56.0343 14712 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:31:56.0343 14712 Rdbss - ok
15:31:56.0421 14712 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:31:56.0421 14712 RDPCDD - ok
15:31:56.0500 14712 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:31:56.0500 14712 rdpdr - ok
15:31:56.0562 14712 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
15:31:56.0562 14712 RDPWD - ok
15:31:56.0593 14712 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
15:31:56.0609 14712 redbook - ok
15:31:56.0703 14712 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:31:56.0718 14712 Secdrv - ok
15:31:56.0765 14712 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
15:31:56.0812 14712 serenum - ok
15:31:56.0859 14712 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
15:31:56.0859 14712 Serial - ok
15:31:57.0031 14712 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
15:31:57.0031 14712 Sfloppy - ok
15:31:57.0062 14712 Simbad - ok
15:31:57.0109 14712 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
15:31:57.0109 14712 sisagp - ok
15:31:57.0156 14712 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:31:57.0156 14712 SLIP - ok
15:31:57.0203 14712 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
15:31:57.0203 14712 Sparrow - ok
15:31:57.0265 14712 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
15:31:57.0265 14712 splitter - ok
15:31:57.0343 14712 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
15:31:57.0343 14712 sr - ok
15:31:57.0468 14712 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
15:31:57.0484 14712 Srv - ok
15:31:57.0531 14712 sscdbhk5 (d7968049be0adbb6a57cee3960320911) C:\WINDOWS\system32\drivers\sscdbhk5.sys
15:31:57.0546 14712 sscdbhk5 - ok
15:31:57.0578 14712 ssrtln (c3ffd65abfb6441e7606cf74f1155273) C:\WINDOWS\system32\drivers\ssrtln.sys
15:31:57.0625 14712 ssrtln - ok
15:31:57.0718 14712 STHDA (26eb7acf476a3461b85f5bce9a677a4a) C:\WINDOWS\system32\drivers\sthda.sys
15:31:57.0750 14712 STHDA - ok
15:31:57.0921 14712 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:31:57.0921 14712 streamip - ok
15:31:57.0984 14712 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
15:31:57.0984 14712 swenum - ok
15:31:58.0062 14712 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
15:31:58.0062 14712 swmidi - ok
15:31:58.0109 14712 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
15:31:58.0109 14712 symc810 - ok
15:31:58.0140 14712 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
15:31:58.0140 14712 symc8xx - ok
15:31:58.0156 14712 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
15:31:58.0171 14712 sym_hi - ok
15:31:58.0187 14712 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
15:31:58.0187 14712 sym_u3 - ok
15:31:58.0234 14712 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
15:31:58.0250 14712 sysaudio - ok
15:31:58.0406 14712 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:31:58.0421 14712 Tcpip - ok
15:31:58.0484 14712 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
15:31:58.0484 14712 TDPIPE - ok
15:31:58.0515 14712 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
15:31:58.0515 14712 TDTCP - ok
15:31:58.0562 14712 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
15:31:58.0562 14712 TermDD - ok
15:31:58.0656 14712 tfsnboio (30698355067d07da5f9eb81132c9fdd6) C:\WINDOWS\system32\dla\tfsnboio.sys
15:31:58.0671 14712 tfsnboio - ok
15:31:58.0703 14712 tfsncofs (fb9d825bb4a2abdf24600f7505050e2b) C:\WINDOWS\system32\dla\tfsncofs.sys
15:31:58.0734 14712 tfsncofs - ok
15:31:58.0750 14712 tfsndrct (cafd8cca11aa1e8b6d2ea1ba8f70ec33) C:\WINDOWS\system32\dla\tfsndrct.sys
15:31:58.0765 14712 tfsndrct - ok
15:31:58.0890 14712 tfsndres (8db1e78fbf7c426d8ec3d8f1a33d6485) C:\WINDOWS\system32\dla\tfsndres.sys
15:31:58.0890 14712 tfsndres - ok
15:31:58.0921 14712 tfsnifs (b92f67a71cc8176f331b8aa8d9f555ad) C:\WINDOWS\system32\dla\tfsnifs.sys
15:31:59.0000 14712 tfsnifs - ok
15:31:59.0015 14712 tfsnopio (85985faa9a71e2358fcc2edefc2a3c5c) C:\WINDOWS\system32\dla\tfsnopio.sys
15:31:59.0046 14712 tfsnopio - ok
15:31:59.0078 14712 tfsnpool (bba22094f0f7c210567efdaf11f64495) C:\WINDOWS\system32\dla\tfsnpool.sys
15:31:59.0093 14712 tfsnpool - ok
15:31:59.0171 14712 tfsnudf (81340bef80b9811e98ce64611e67e3ff) C:\WINDOWS\system32\dla\tfsnudf.sys
15:31:59.0234 14712 tfsnudf - ok
15:31:59.0250 14712 tfsnudfa (c035fd116224ccc8325f384776b6a8bb) C:\WINDOWS\system32\dla\tfsnudfa.sys
15:31:59.0296 14712 tfsnudfa - ok
15:31:59.0375 14712 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
15:31:59.0375 14712 TosIde - ok
15:31:59.0406 14712 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
15:31:59.0406 14712 Udfs - ok
15:31:59.0437 14712 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
15:31:59.0437 14712 ultra - ok
15:31:59.0515 14712 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
15:31:59.0531 14712 Update - ok
15:31:59.0687 14712 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
15:31:59.0687 14712 usbaudio - ok
15:31:59.0765 14712 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:31:59.0765 14712 usbccgp - ok
15:31:59.0890 14712 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:31:59.0890 14712 usbehci - ok
15:31:59.0953 14712 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:31:59.0953 14712 usbhub - ok
15:32:00.0031 14712 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:32:00.0031 14712 usbprint - ok
15:32:00.0109 14712 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:32:00.0109 14712 usbscan - ok
15:32:00.0171 14712 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:32:00.0171 14712 USBSTOR - ok
15:32:00.0234 14712 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:32:00.0234 14712 usbuhci - ok
15:32:00.0359 14712 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
15:32:00.0421 14712 usbvideo - ok
15:32:00.0453 14712 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
15:32:00.0453 14712 VgaSave - ok
15:32:00.0500 14712 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
15:32:00.0500 14712 viaagp - ok
15:32:00.0593 14712 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
15:32:00.0609 14712 ViaIde - ok
15:32:00.0640 14712 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
15:32:00.0656 14712 VolSnap - ok
15:32:00.0687 14712 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:32:00.0703 14712 Wanarp - ok
15:32:00.0718 14712 wanatw - ok
15:32:00.0734 14712 WDICA - ok
15:32:00.0843 14712 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
15:32:00.0843 14712 wdmaud - ok
15:32:00.0906 14712 winachsf (f59ed5a43b988a18ef582bb07b2327a7) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
15:32:00.0937 14712 winachsf - ok
15:32:01.0078 14712 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:32:01.0078 14712 WSTCODEC - ok
15:32:01.0265 14712 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:32:01.0281 14712 WudfPf - ok
15:32:01.0390 14712 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:32:01.0406 14712 WudfRd - ok
15:32:01.0515 14712 WUSB54GPV4SRV (70aeec67e87a2002e6b2cc353d56e222) C:\WINDOWS\system32\DRIVERS\rt2500usb.sys
15:32:01.0515 14712 WUSB54GPV4SRV - ok
15:32:01.0562 14712 MBR (0x1B8) (5cb90281d1a59b251f6603134774eec3) \Device\Harddisk0\DR0
15:32:01.0609 14712 \Device\Harddisk0\DR0 - ok
15:32:01.0640 14712 Boot (0x1200) (ea3b843b8194640e612e6774ed8f5755) \Device\Harddisk0\DR0\Partition0
15:32:01.0640 14712 \Device\Harddisk0\DR0\Partition0 - ok
15:32:01.0640 14712 ============================================================
15:32:01.0640 14712 Scan finished
15:32:01.0640 14712 ============================================================
15:32:01.0703 3920 Detected object count: 0
15:32:01.0703 3920 Actual detected object count: 0
15:32:08.0421 15040 ============================================================
15:32:08.0421 15040 Scan started
15:32:08.0421 15040 Mode: Manual; SigCheck; TDLFS;
15:32:08.0421 15040 ============================================================
15:32:10.0390 15040 Abiosdsk - ok
15:32:10.0453 15040 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
15:32:12.0625 15040 abp480n5 - ok
15:32:13.0015 15040 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:32:13.0828 15040 ACPI - ok
15:32:13.0875 15040 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
15:32:14.0140 15040 ACPIEC - ok
15:32:14.0234 15040 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
15:32:14.0531 15040 adpu160m - ok
15:32:14.0578 15040 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
15:32:14.0921 15040 aec - ok
15:32:14.0984 15040 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
15:32:15.0062 15040 AFD - ok
15:32:15.0109 15040 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
15:32:15.0468 15040 agp440 - ok
15:32:15.0500 15040 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
15:32:15.0890 15040 agpCPQ - ok
15:32:15.0984 15040 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
15:32:16.0281 15040 Aha154x - ok
15:32:16.0484 15040 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
15:32:16.0812 15040 aic78u2 - ok
15:32:16.0828 15040 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
15:32:17.0140 15040 aic78xx - ok
15:32:17.0187 15040 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
15:32:17.0421 15040 AliIde - ok
15:32:17.0468 15040 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
15:32:17.0828 15040 alim1541 - ok
15:32:17.0921 15040 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
15:32:18.0203 15040 amdagp - ok
15:32:18.0281 15040 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
15:32:18.0468 15040 amsint - ok
15:32:18.0531 15040 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
15:32:18.0796 15040 asc - ok
15:32:18.0843 15040 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
15:32:19.0046 15040 asc3350p - ok
15:32:19.0109 15040 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
15:32:19.0500 15040 asc3550 - ok
15:32:19.0687 15040 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:32:19.0984 15040 AsyncMac - ok
15:32:20.0171 15040 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
15:32:20.0468 15040 atapi - ok
15:32:20.0484 15040 Atdisk - ok
15:32:20.0562 15040 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:32:20.0906 15040 Atmarpc - ok
15:32:20.0953 15040 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
15:32:21.0250 15040 audstub - ok
15:32:21.0312 15040 BANTExt (5d7be7b19e827125e016325334e58ff1) C:\WINDOWS\System32\Drivers\BANTExt.sys
15:32:21.0359 15040 BANTExt ( UnsignedFile.Multi.Generic ) - warning
15:32:21.0359 15040 BANTExt - detected UnsignedFile.Multi.Generic (1)
15:32:21.0390 15040 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
15:32:21.0687 15040 Beep - ok
15:32:21.0734 15040 bvrp_pci - ok
15:32:21.0781 15040 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
15:32:22.0062 15040 cbidf - ok
15:32:22.0078 15040 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
15:32:22.0343 15040 cbidf2k - ok
15:32:22.0390 15040 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
15:32:22.0718 15040 CCDECODE - ok
15:32:22.0781 15040 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
15:32:23.0046 15040 cd20xrnt - ok
15:32:23.0062 15040 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
15:32:23.0421 15040 Cdaudio - ok
15:32:23.0468 15040 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
15:32:23.0906 15040 Cdfs - ok
15:32:23.0953 15040 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:32:24.0421 15040 Cdrom - ok
15:32:24.0453 15040 Changer - ok
15:32:24.0546 15040 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
15:32:24.0984 15040 CmdIde - ok
15:32:25.0062 15040 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
15:32:25.0453 15040 Cpqarray - ok
15:32:25.0656 15040 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
15:32:26.0140 15040 dac2w2k - ok
15:32:26.0234 15040 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
15:32:26.0593 15040 dac960nt - ok
15:32:26.0734 15040 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
15:32:27.0218 15040 Disk - ok
15:32:27.0359 15040 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
15:32:27.0750 15040 dmboot - ok
15:32:27.0859 15040 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
15:32:28.0156 15040 dmio - ok
15:32:28.0171 15040 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
15:32:28.0437 15040 dmload - ok
15:32:28.0515 15040 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
15:32:28.0828 15040 DMusic - ok
15:32:28.0906 15040 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
15:32:29.0218 15040 dpti2o - ok
15:32:29.0281 15040 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
15:32:29.0562 15040 drmkaud - ok
15:32:29.0609 15040 drvmcdb (e814854e6b246ccf498874839ab64d77) C:\WINDOWS\system32\drivers\drvmcdb.sys
15:32:29.0687 15040 drvmcdb ( UnsignedFile.Multi.Generic ) - warning
15:32:29.0687 15040 drvmcdb - detected UnsignedFile.Multi.Generic (1)
15:32:29.0703 15040 drvnddm (ee83a4ebae70bc93cf14879d062f548b) C:\WINDOWS\system32\drivers\drvnddm.sys
15:32:30.0796 15040 drvnddm ( UnsignedFile.Multi.Generic ) - warning
15:32:30.0796 15040 drvnddm - detected UnsignedFile.Multi.Generic (1)
15:32:30.0984 15040 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
15:32:31.0015 15040 DSproct ( UnsignedFile.Multi.Generic ) - warning
15:32:31.0015 15040 DSproct - detected UnsignedFile.Multi.Generic (1)
15:32:31.0171 15040 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
15:32:31.0265 15040 dsunidrv - ok
15:32:31.0468 15040 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
15:32:31.0625 15040 E100B - ok
15:32:31.0718 15040 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
15:32:31.0984 15040 Fastfat - ok
15:32:32.0078 15040 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
15:32:32.0390 15040 Fdc - ok
15:32:32.0453 15040 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
15:32:32.0765 15040 Fips - ok
15:32:32.0843 15040 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
15:32:33.0140 15040 Flpydisk - ok
15:32:33.0203 15040 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
15:32:33.0703 15040 FltMgr - ok
15:32:33.0781 15040 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:32:34.0343 15040 Fs_Rec - ok
15:32:34.0375 15040 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:32:34.0828 15040 Ftdisk - ok
15:32:34.0890 15040 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:32:35.0375 15040 Gpc - ok
15:32:35.0437 15040 GTNDIS5 (fc80052194d5708254a346568f0e77c0) C:\WINDOWS\system32\GTNDIS5.SYS
15:32:35.0515 15040 GTNDIS5 ( UnsignedFile.Multi.Generic ) - warning
15:32:35.0515 15040 GTNDIS5 - detected UnsignedFile.Multi.Generic (1)
15:32:35.0718 15040 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
15:32:36.0171 15040 HDAudBus - ok
15:32:36.0390 15040 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:32:36.0765 15040 HidUsb - ok
15:32:36.0812 15040 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
15:32:37.0312 15040 hpn - ok
15:32:37.0437 15040 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
15:32:37.0937 15040 HPZid412 - ok
15:32:38.0000 15040 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
15:32:38.0203 15040 HPZipr12 - ok
15:32:38.0281 15040 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
15:32:38.0421 15040 HPZius12 - ok
15:32:38.0453 15040 HSFHWBS2 (77e4ff0b73bc0aeaaf39bf0c8104231f) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
15:32:38.0609 15040 HSFHWBS2 - ok
15:32:38.0843 15040 HSF_DP (60e1604729a15ef4a3b05f298427b3b1) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
15:32:39.0046 15040 HSF_DP - ok
15:32:39.0265 15040 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
15:32:39.0453 15040 HTTP - ok
15:32:39.0531 15040 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
15:32:39.0953 15040 i2omgmt - ok
15:32:40.0015 15040 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
15:32:40.0468 15040 i2omp - ok
15:32:40.0531 15040 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:32:41.0062 15040 i8042prt - ok
15:32:41.0156 15040 ialm (5a8e05f1d5c36abd58cffa111eb325ea) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
15:32:41.0343 15040 ialm - ok
15:32:41.0468 15040 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
15:32:41.0796 15040 Imapi - ok
15:32:41.0937 15040 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
15:32:42.0187 15040 ini910u - ok
15:32:42.0250 15040 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
15:32:42.0531 15040 IntelIde - ok
15:32:42.0734 15040 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:32:43.0078 15040 intelppm - ok
15:32:43.0109 15040 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
15:32:43.0390 15040 Ip6Fw - ok
15:32:43.0453 15040 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:32:43.0796 15040 IpFilterDriver - ok
15:32:43.0843 15040 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:32:44.0187 15040 IpInIp - ok
15:32:44.0250 15040 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:32:44.0656 15040 IpNat - ok
15:32:44.0750 15040 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:32:45.0125 15040 IPSec - ok
15:32:45.0171 15040 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
15:32:45.0343 15040 IRENUM - ok
15:32:45.0406 15040 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:32:45.0656 15040 isapnp - ok
15:32:45.0765 15040 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:32:46.0890 15040 Kbdclass - ok
15:32:46.0984 15040 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:32:47.0281 15040 kbdhid - ok
15:32:47.0359 15040 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
15:32:47.0609 15040 kmixer - ok
15:32:47.0812 15040 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
15:32:47.0937 15040 KSecDD - ok
15:32:47.0968 15040 lbrtfdc - ok
15:32:48.0046 15040 mdmxsdk (eeaea6514ba7c9d273b5e87c4e1aab30) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
15:32:48.0109 15040 mdmxsdk - ok
15:32:48.0187 15040 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
15:32:48.0250 15040 MHNDRV ( UnsignedFile.Multi.Generic ) - warning
15:32:48.0250 15040 MHNDRV - detected UnsignedFile.Multi.Generic (1)
15:32:48.0281 15040 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
15:32:48.0625 15040 mnmdd - ok
15:32:48.0718 15040 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
15:32:49.0015 15040 Modem - ok
15:32:49.0031 15040 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
15:32:49.0281 15040 MODEMCSA - ok
15:32:49.0328 15040 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:32:49.0796 15040 Mouclass - ok
15:32:49.0859 15040 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:32:50.0312 15040 mouhid - ok
15:32:50.0343 15040 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
15:32:50.0796 15040 MountMgr - ok
15:32:50.0953 15040 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
15:32:51.0093 15040 MpFilter - ok
15:32:51.0343 15040 MpKsl013b5cb6 (a69630d039c38018689190234f866d77) c:\Documents and Settings\All Users\Application Data\Microsoft\Microsoft Antimalware\Definition Updates\{6F508446-E9C7-40CC-A055-2009B9F9EC87}\MpKsl013b5cb6.sys
15:32:51.0500 15040 MpKsl013b5cb6 - ok
15:32:51.0687 15040 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
15:32:52.0156 15040 mraid35x - ok
15:32:52.0281 15040 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:32:52.0765 15040 MRxDAV - ok
15:32:52.0843 15040 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:32:53.0015 15040 MRxSmb - ok
15:32:53.0234 15040 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
15:32:53.0609 15040 Msfs - ok
15:32:53.0656 15040 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:32:54.0046 15040 MSKSSRV - ok
15:32:54.0109 15040 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:32:54.0468 15040 MSPCLOCK - ok
15:32:54.0515 15040 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
15:32:55.0000 15040 MSPQM - ok
15:32:55.0031 15040 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:32:55.0296 15040 mssmbios - ok
15:32:55.0328 15040 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
15:32:55.0687 15040 MSTEE - ok
15:32:55.0734 15040 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
15:32:55.0812 15040 Mup - ok
15:32:55.0890 15040 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
15:32:56.0234 15040 NABTSFEC - ok
15:32:56.0375 15040 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
15:32:56.0671 15040 NDIS - ok
15:32:56.0765 15040 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
15:32:57.0031 15040 NdisIP - ok
15:32:57.0078 15040 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:32:57.0156 15040 NdisTapi - ok
15:32:57.0203 15040 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:32:57.0546 15040 Ndisuio - ok
15:32:57.0625 15040 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:32:57.0984 15040 NdisWan - ok
15:32:58.0093 15040 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
15:32:58.0359 15040 NDProxy - ok
15:32:58.0453 15040 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
15:32:58.0984 15040 NetBIOS - ok
15:32:59.0093 15040 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
15:32:59.0500 15040 NetBT - ok
15:32:59.0937 15040 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
15:33:00.0593 15040 Npfs - ok
15:33:00.0703 15040 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
15:33:01.0171 15040 Ntfs - ok
15:33:01.0234 15040 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
15:33:01.0625 15040 Null - ok
15:33:01.0781 15040 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
15:33:02.0203 15040 nv - ok
15:33:02.0359 15040 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:33:02.0593 15040 NwlnkFlt - ok
15:33:02.0625 15040 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:33:02.0859 15040 NwlnkFwd - ok
15:33:02.0937 15040 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
15:33:03.0265 15040 Parport - ok
15:33:03.0296 15040 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
15:33:03.0531 15040 PartMgr - ok
15:33:03.0562 15040 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
15:33:03.0812 15040 ParVdm - ok
15:33:03.0843 15040 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
15:33:04.0078 15040 PCI - ok
15:33:04.0093 15040 PCIDump - ok
15:33:04.0140 15040 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
15:33:04.0375 15040 PCIIde - ok
15:33:04.0453 15040 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
15:33:04.0671 15040 Pcmcia - ok
15:33:04.0734 15040 PDCOMP - ok
15:33:04.0750 15040 PDFRAME - ok
15:33:04.0765 15040 PDRELI - ok
15:33:04.0781 15040 PDRFRAME - ok
15:33:04.0812 15040 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
15:33:05.0046 15040 perc2 - ok
15:33:05.0093 15040 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
15:33:05.0296 15040 perc2hib - ok
15:33:05.0421 15040 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:33:05.0765 15040 PptpMiniport - ok
15:33:05.0828 15040 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
15:33:06.0484 15040 PSched - ok
15:33:06.0578 15040 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:33:07.0046 15040 Ptilink - ok
15:33:07.0093 15040 PxHelp20 (86724469cd077901706854974cd13c3e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
15:33:07.0140 15040 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
15:33:07.0140 15040 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
15:33:07.0203 15040 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
15:33:07.0468 15040 ql1080 - ok
15:33:07.0500 15040 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
15:33:07.0828 15040 Ql10wnt - ok
15:33:07.0984 15040 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
15:33:08.0187 15040 ql12160 - ok
15:33:08.0203 15040 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
15:33:08.0453 15040 ql1240 - ok
15:33:08.0484 15040 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
15:33:08.0671 15040 ql1280 - ok
15:33:08.0718 15040 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:33:08.0906 15040 RasAcd - ok
15:33:08.0968 15040 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:33:09.0203 15040 Rasl2tp - ok
15:33:09.0234 15040 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:33:09.0437 15040 RasPppoe - ok
15:33:09.0468 15040 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
15:33:09.0718 15040 Raspti - ok
15:33:09.0812 15040 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:33:10.0125 15040 Rdbss - ok
15:33:10.0218 15040 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:33:10.0484 15040 RDPCDD - ok
15:33:10.0578 15040 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:33:10.0859 15040 rdpdr - ok
15:33:10.0953 15040 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
15:33:11.0062 15040 RDPWD - ok
15:33:11.0109 15040 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
15:33:11.0390 15040 redbook - ok
15:33:11.0484 15040 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:33:11.0687 15040 Secdrv - ok
15:33:11.0859 15040 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
15:33:12.0046 15040 serenum - ok
15:33:12.0093 15040 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
15:33:12.0343 15040 Serial - ok
15:33:12.0406 15040 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
15:33:12.0718 15040 Sfloppy - ok
15:33:12.0765 15040 Simbad - ok
15:33:12.0828 15040 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
15:33:13.0250 15040 sisagp - ok
15:33:13.0312 15040 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:33:13.0562 15040 SLIP - ok
15:33:13.0671 15040 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
15:33:13.0843 15040 Sparrow - ok
15:33:13.0890 15040 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
15:33:14.0187 15040 splitter - ok
15:33:14.0265 15040 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
15:33:14.0453 15040 sr - ok
15:33:14.0546 15040 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
15:33:14.0640 15040 Srv - ok
15:33:14.0796 15040 sscdbhk5 (d7968049be0adbb6a57cee3960320911) C:\WINDOWS\system32\drivers\sscdbhk5.sys
15:33:14.0828 15040 sscdbhk5 ( UnsignedFile.Multi.Generic ) - warning
15:33:14.0828 15040 sscdbhk5 - detected UnsignedFile.Multi.Generic (1)
15:33:14.0984 15040 ssrtln (c3ffd65abfb6441e7606cf74f1155273) C:\WINDOWS\system32\drivers\ssrtln.sys
15:33:15.0062 15040 ssrtln ( UnsignedFile.Multi.Generic ) - warning
15:33:15.0062 15040 ssrtln - detected UnsignedFile.Multi.Generic (1)
15:33:15.0171 15040 STHDA (26eb7acf476a3461b85f5bce9a677a4a) C:\WINDOWS\system32\drivers\sthda.sys
15:33:15.0296 15040 STHDA - ok
15:33:15.0375 15040 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:33:15.0656 15040 streamip - ok
15:33:15.0750 15040 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
15:33:16.0046 15040 swenum - ok
15:33:16.0140 15040 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
15:33:16.0359 15040 swmidi - ok
15:33:16.0421 15040 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
15:33:16.0625 15040 symc810 - ok
15:33:16.0687 15040 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
15:33:16.0906 15040 symc8xx - ok
15:33:16.0968 15040 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
15:33:17.0234 15040 sym_hi - ok
15:33:17.0281 15040 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
15:33:17.0593 15040 sym_u3 - ok
15:33:17.0828 15040 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
15:33:18.0062 15040 sysaudio - ok
15:33:18.0187 15040 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:33:18.0312 15040 Tcpip - ok
15:33:18.0343 15040 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
15:33:18.0562 15040 TDPIPE - ok
15:33:18.0640 15040 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
15:33:18.0859 15040 TDTCP - ok
15:33:18.0921 15040 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
15:33:19.0140 15040 TermDD - ok
15:33:19.0218 15040 tfsnboio (30698355067d07da5f9eb81132c9fdd6) C:\WINDOWS\system32\dla\tfsnboio.sys
15:33:19.0250 15040 tfsnboio ( UnsignedFile.Multi.Generic ) - warning
15:33:19.0250 15040 tfsnboio - detected UnsignedFile.Multi.Generic (1)
15:33:19.0281 15040 tfsncofs (fb9d825bb4a2abdf24600f7505050e2b) C:\WINDOWS\system32\dla\tfsncofs.sys
15:33:19.0328 15040 tfsncofs ( UnsignedFile.Multi.Generic ) - warning
15:33:19.0328 15040 tfsncofs - detected UnsignedFile.Multi.Generic (1)
15:33:19.0359 15040 tfsndrct (cafd8cca11aa1e8b6d2ea1ba8f70ec33) C:\WINDOWS\system32\dla\tfsndrct.sys
15:33:19.0390 15040 tfsndrct ( UnsignedFile.Multi.Generic ) - warning
15:33:19.0390 15040 tfsndrct - detected UnsignedFile.Multi.Generic (1)
15:33:19.0406 15040 tfsndres (8db1e78fbf7c426d8ec3d8f1a33d6485) C:\WINDOWS\system32\dla\tfsndres.sys
15:33:19.0421 15040 tfsndres ( UnsignedFile.Multi.Generic ) - warning
15:33:19.0421 15040 tfsndres - detected UnsignedFile.Multi.Generic (1)
15:33:19.0468 15040 tfsnifs (b92f67a71cc8176f331b8aa8d9f555ad) C:\WINDOWS\system32\dla\tfsnifs.sys
15:33:19.0546 15040 tfsnifs ( UnsignedFile.Multi.Generic ) - warning
15:33:19.0546 15040 tfsnifs - detected UnsignedFile.Multi.Generic (1)
15:33:19.0609 15040 tfsnopio (85985faa9a71e2358fcc2edefc2a3c5c) C:\WINDOWS\system32\dla\tfsnopio.sys
15:33:19.0640 15040 tfsnopio ( UnsignedFile.Multi.Generic ) - warning
15:33:19.0656 15040 tfsnopio - detected UnsignedFile.Multi.Generic (1)
15:33:19.0703 15040 tfsnpool (bba22094f0f7c210567efdaf11f64495) C:\WINDOWS\system32\dla\tfsnpool.sys
15:33:19.0718 15040 tfsnpool ( UnsignedFile.Multi.Generic ) - warning
15:33:19.0718 15040 tfsnpool - detected UnsignedFile.Multi.Generic (1)
15:33:19.0750 15040 tfsnudf (81340bef80b9811e98ce64611e67e3ff) C:\WINDOWS\system32\dla\tfsnudf.sys
15:33:19.0843 15040 tfsnudf ( UnsignedFile.Multi.Generic ) - warning
15:33:19.0843 15040 tfsnudf - detected UnsignedFile.Multi.Generic (1)
15:33:20.0046 15040 tfsnudfa (c035fd116224ccc8325f384776b6a8bb) C:\WINDOWS\system32\dla\tfsnudfa.sys
15:33:20.0156 15040 tfsnudfa ( UnsignedFile.Multi.Generic ) - warning
15:33:20.0156 15040 tfsnudfa - detected UnsignedFile.Multi.Generic (1)
15:33:20.0265 15040 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
15:33:20.0515 15040 TosIde - ok
15:33:20.0609 15040 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
15:33:20.0890 15040 Udfs - ok
15:33:20.0984 15040 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
15:33:22.0140 15040 ultra - ok
15:33:22.0203 15040 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
15:33:22.0468 15040 Update - ok
15:33:22.0593 15040 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
15:33:22.0843 15040 usbaudio - ok
15:33:22.0906 15040 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:33:23.0125 15040 usbccgp - ok
15:33:23.0187 15040 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:33:23.0453 15040 usbehci - ok
15:33:23.0500 15040 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:33:23.0734 15040 usbhub - ok
15:33:23.0859 15040 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
15:33:24.0234 15040 usbprint - ok
15:33:24.0484 15040 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
15:33:24.0906 15040 usbscan - ok
15:33:24.0968 15040 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:33:25.0328 15040 USBSTOR - ok
15:33:25.0390 15040 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:33:25.0718 15040 usbuhci - ok
15:33:25.0750 15040 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
15:33:26.0046 15040 usbvideo - ok
15:33:26.0109 15040 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
15:33:26.0453 15040 VgaSave - ok
15:33:26.0484 15040 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
15:33:26.0796 15040 viaagp - ok
15:33:26.0843 15040 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
15:33:27.0203 15040 ViaIde - ok
15:33:27.0296 15040 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
15:33:27.0578 15040 VolSnap - ok
15:33:27.0625 15040 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:33:27.0859 15040 Wanarp - ok
15:33:27.0875 15040 wanatw - ok
15:33:27.0890 15040 WDICA - ok
15:33:27.0937 15040 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
15:33:28.0234 15040 wdmaud - ok
15:33:28.0375 15040 winachsf (f59ed5a43b988a18ef582bb07b2327a7) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
15:33:28.0437 15040 winachsf - ok
15:33:28.0625 15040 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:33:28.0875 15040 WSTCODEC - ok
15:33:28.0937 15040 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
15:33:29.0140 15040 WudfPf - ok
15:33:29.0359 15040 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
15:33:29.0468 15040 WudfRd - ok
15:33:29.0546 15040 WUSB54GPV4SRV (70aeec67e87a2002e6b2cc353d56e222) C:\WINDOWS\system32\DRIVERS\rt2500usb.sys
15:33:29.0671 15040 WUSB54GPV4SRV - ok
15:33:29.0718 15040 MBR (0x1B8) (5cb90281d1a59b251f6603134774eec3) \Device\Harddisk0\DR0
15:33:29.0828 15040 \Device\Harddisk0\DR0 - ok
15:33:29.0859 15040 Boot (0x1200) (ea3b843b8194640e612e6774ed8f5755) \Device\Harddisk0\DR0\Partition0
15:33:29.0859 15040 \Device\Harddisk0\DR0\Partition0 - ok
15:33:29.0859 15040 ============================================================
15:33:29.0859 15040 Scan finished
15:33:29.0859 15040 ============================================================
15:33:29.0968 14968 Detected object count: 18
15:33:29.0968 14968 Actual detected object count: 18
15:33:53.0484 14968 BANTExt ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0484 14968 BANTExt ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0484 14968 drvmcdb ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0484 14968 drvmcdb ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0484 14968 drvnddm ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0484 14968 drvnddm ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0484 14968 DSproct ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0484 14968 DSproct ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0484 14968 GTNDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0484 14968 GTNDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0484 14968 MHNDRV ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0484 14968 MHNDRV ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0484 14968 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0484 14968 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0484 14968 sscdbhk5 ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0484 14968 sscdbhk5 ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0484 14968 ssrtln ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0484 14968 ssrtln ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0500 14968 tfsnboio ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0500 14968 tfsnboio ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0500 14968 tfsncofs ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0500 14968 tfsncofs ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0500 14968 tfsndrct ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0500 14968 tfsndrct ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0500 14968 tfsndres ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0500 14968 tfsndres ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0500 14968 tfsnifs ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0500 14968 tfsnifs ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0500 14968 tfsnopio ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0500 14968 tfsnopio ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0500 14968 tfsnpool ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0500 14968 tfsnpool ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0500 14968 tfsnudf ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0500 14968 tfsnudf ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:53.0515 14968 tfsnudfa ( UnsignedFile.Multi.Generic ) - skipped by user
15:33:53.0515 14968 tfsnudfa ( UnsignedFile.Multi.Generic ) - User select action: Skip
15:33:56.0828 16120 Deinitialize success

#6 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:05:55 PM

Posted 07 January 2012 - 04:12 PM

Continue the scans, then Please follow the instructions in ==>Malware Removal and Log Section Preparation Guide<==.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include the link to this topic in your new topic and a description of your computer issues and what you have done to resolve them.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

Once you have created the new topic, please reply back here with a link to the new topic.

Most importantly please be patient till you get a reply to your topic.

Post the logs above in the new topic. This particular type of infection is bad.

#7 4on4off

4on4off
  • Topic Starter

  • Members
  • 402 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:55 AM

Posted 07 January 2012 - 04:20 PM

Continue the scans, then Please follow the instructions in ==>Malware Removal and Log Section Preparation Guide<==.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include the link to this topic in your new topic and a description of your computer issues and what you have done to resolve them.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

Once you have created the new topic, please reply back here with a link to the new topic.

Most importantly please be patient till you get a reply to your topic.

Post the logs above in the new topic. This particular type of infection is bad.



Sorry to ask but just so I am clear.

Were these not the logs you wanted?

By continue the scans do you mean you want me to run them again to obtain logs to post?

Just want to be clear and i will follow you instructions for the new topic and guide you linked.

Thanks for the help.

4

#8 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:05:55 PM

Posted 07 January 2012 - 04:22 PM

Yes they were the logs I wanted to see, but this type of infection can leave bits and pieces behind. Our team of malware removal experts will use special tools to help make sure the infection is truly gone.

#9 4on4off

4on4off
  • Topic Starter

  • Members
  • 402 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:55 AM

Posted 07 January 2012 - 04:27 PM

Okay , thank you. I am currently going over the link you provided and will do my best to follow the guide.

4

#10 4on4off

4on4off
  • Topic Starter

  • Members
  • 402 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:55 AM

Posted 07 January 2012 - 09:19 PM

Thank you again for your assistance. I have completed the steps in the guide to the best of my ability and posted a new topic via the link in the guide here:

http://www.bleepingcomputer.com/forums/topic436885.html

Thanks again.

4

#11 Queen-Evie

Queen-Evie

    Official Bleepin' G.R.I.T.S. (and proud of it)


  • Staff Emeritus
  • 16,485 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:My own little corner of the universe (somewhere in Alabama). It's OK, they know me here
  • Local time:12:55 PM

Posted 08 January 2012 - 12:34 AM

Now that you have posted your logs: Please refrain from asking for further help from other members or staff until the Malware Removal Team has checked your posted log. The Malware Removal Team work very hard to investigate a unique solution to your problem and you will receive individual expert assistance. This takes time and effort so we ask you to please be patient while waiting for assistance and NOT to make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member. Any modifications you make on your own can result in system changes which may not show it the log you already posted. Further, following advice outside of that post may cause confusion for the team member assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

The Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean. If you followed any other advice already, please ensure you inform the Malware Removal Team Team Helper when they respond to assist you with your log. This will help them know what has been done and they probably will ask for an updated log.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT "bump" your post or make another reply until it has been responded to by a member of the HJT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another Malware Removal Team member is already assisting you and not open the thread to respond.

This topic is now closed.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users