Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Music Playing infection


  • Please log in to reply
10 replies to this topic

#1 teratosis

teratosis

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin, TX
  • Local time:08:30 PM

Posted 21 January 2012 - 01:42 AM

Hi there, one of my XP systems is infected with some bug that randomly plays music. I did catch what caused it. It brought up a download window. That said:
"download warning"
"moogaloop_swf clip..........."
"vimeo.com".
The options were OPEN, SAVE and Cancel. I clicked cancel but even clicking cancel still enables it. Not sure where this came from. Any suggestions on what i can do? Searching google yielded no references or fixes.
Thank you.

BC AdBot (Login to Remove)

 


#2 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:30 PM

Posted 21 January 2012 - 01:37 PM

Download Security Check from HERE, and save it to your Desktop.

* Double-click SecurityCheck.exe
* Follow the onscreen instructions inside of the black box.
* A Notepad document should open automatically called checkup.txt; please post the contents of that document.

=============================================================================

Please download Farbar Service Scanner and run it on the computer with the issue.
  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

====================================================================================

Please download MiniToolBox and run it.

Checkmark following boxes:
  • Report IE Proxy Settings
  • Report FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size
Click Go and post the result.

=============================================================================

Download Malwarebytes' Anti-Malware (aka MBAM): https://www.bleepingcomputer.com/download/malwarebytes-anti-malware/ to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.
* Be sure that everything is checked, and click Remove Selected.
* When completed, a log will open in Notepad.
* Post the log back here.

Be sure to restart the computer.

The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\log-date.txt
Or at C:\Program Files\Malwarebytes' Anti-Malware\Logs\log-date.txt

=============================================================================

Download aswMBR to your desktop.
Double click the aswMBR.exe to run it.
If you see this question: Would you like to download latest Avast! virus definitions?" say "Yes".
Click the "Scan" button to start scan.
On completion of the scan click "Save log", save it to your desktop and post in your next reply.

NOTE. aswMBR will create MBR.dat file on your desktop. This is a copy of your MBR. Do NOT delete it.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#3 teratosis

teratosis
  • Topic Starter

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin, TX
  • Local time:08:30 PM

Posted 22 January 2012 - 02:12 AM

Thank you,

screen317's Security Check version 0.99.24
Windows XP Service Pack 3 x86
Internet Explorer 6 Out of date!
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
Windows Firewall Disabled!
ESET Online Scanner v3
```````````````````````````````
Anti-malware/Other Utilities Check:

Java™ 6 Update 16
Out of date Java installed!
Adobe Flash Player ( 10.0.45.2) Flash Player Out of Date!
Mozilla Firefox (3.0.18) Firefox Out of Date!
````````````````````````````````
Process Check:
objlist.exe by Laurent

Malwarebytes' Anti-Malware mbamservice.exe
``````````End of Log````````````


FSS
Farbar Service Scanner Version: 18-01-2012 01
Ran by OL (administrator) on 21-01-2012 at 22:17:25
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall"=DWORD:0


System Restore:
============

System Restore Disabled Policy:
========================


Security Center:
============
wscsvc Service is not running. Checking service configuration:
Checking Start type: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ImagePath: Attention! Unable to open wscsvc registry key. The service key does not exist.
Checking ServiceDll: Attention! Unable to open wscsvc registry key. The service key does not exist.


Windows Update:
===========
BITS Service is not running. Checking service configuration:
The start type of BITS service is set to Demand. The default start type is Auto.
The ImagePath of BITS service is OK.
The ServiceDll of BITS service is OK.


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys => MD5 is legit
C:\WINDOWS\system32\dnsrslvr.dll => MD5 is legit
C:\WINDOWS\system32\ipnathlp.dll => MD5 is legit
C:\WINDOWS\system32\netman.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\srsvc.dll => MD5 is legit
C:\WINDOWS\system32\Drivers\sr.sys => MD5 is legit
C:\WINDOWS\system32\wscsvc.dll => MD5 is legit
C:\WINDOWS\system32\wbem\WMIsvc.dll => MD5 is legit
C:\WINDOWS\system32\wuauserv.dll => MD5 is legit
C:\WINDOWS\system32\qmgr.dll => MD5 is legit
C:\WINDOWS\system32\es.dll => MD5 is legit
C:\WINDOWS\system32\cryptsvc.dll => MD5 is legit
C:\WINDOWS\system32\svchost.exe => MD5 is legit
C:\WINDOWS\system32\rpcss.dll => MD5 is legit
C:\WINDOWS\system32\services.exe => MD5 is legit

Extra List:
=======
Gpc(3) IPSec(5) NetBT(6) PSched(7) Tcpip(4)
0x0700000005000000010000000200000003000000040000000600000007000000
IpSec Tag value is correct.

**** End of log ****

Edited by teratosis, 22 January 2012 - 02:53 AM.


#4 teratosis

teratosis
  • Topic Starter

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin, TX
  • Local time:08:30 PM

Posted 22 January 2012 - 02:35 AM

MINITOOLBOX part one

MiniToolBox by Farbar Version: 18-01-2012
Ran by OL (administrator) on 21-01-2012 at 22:19:09
Microsoft Windows XP Home Edition Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

========================= FF Proxy Settings: ==============================

Hosts file not detected in the default directory
========================= IP Configuration: ================================

1394 Net Adapter = 1394 Connection (Disconnected)
Intel® 82567LM-3 Gigabit Network Connection = Local Area Connection (Connected)
The following helper DLL cannot be loaded: IFMON.DLL.
The following command was not found: int ip dump.


Windows IP Configuration



Host Name . . . . . . . . . . . . : M-LXD-G5-0351

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Mixed

IP Routing Enabled. . . . . . . . : No

WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Intel® 82567LM-3 Gigabit Network Connection

Physical Address. . . . . . . . . : 00-1C-C0-8D-8A-1C

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 192.168.1.7

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 99.63.70.211

DNS Servers . . . . . . . . . . . : 192.168.0.1

192.168.0.2



Pinging google.com [74.125.227.113] with 32 bytes of data:



Reply from 74.125.227.113: bytes=32 time=37ms TTL=53

Reply from 74.125.227.113: bytes=32 time=23ms TTL=53



Ping statistics for 74.125.227.113:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 23ms, Maximum = 37ms, Average = 30ms



Pinging yahoo.com [98.137.149.56] with 32 bytes of data:



Reply from 98.137.149.56: bytes=32 time=143ms TTL=55

Reply from 98.137.149.56: bytes=32 time=56ms TTL=55



Ping statistics for 98.137.149.56:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 56ms, Maximum = 143ms, Average = 99ms



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

Edited by teratosis, 22 January 2012 - 02:37 AM.


#5 teratosis

teratosis
  • Topic Starter

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin, TX
  • Local time:08:30 PM

Posted 22 January 2012 - 02:42 AM

minitool part two
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 1c c0 8d 8a 1c ...... Intel® 82567LM-3 Gigabit Network Connection - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 99.63.70.211 192.168.1.7 10
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
192.168.1.0 255.255.255.0 192.168.1.7 192.168.1.7 10
192.168.1.7 255.255.255.255 127.0.0.1 127.0.0.1 10
192.168.1.255 255.255.255.255 192.168.1.7 192.168.1.7 10
224.0.0.0 240.0.0.0 192.168.1.7 192.168.1.7 10
255.255.255.255 255.255.255.255 192.168.1.7 192.168.1.7 1
Default Gateway: 99.63.70.211
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 mswsock.dll [File Not found] ()
Catalog5 02 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 mswsock.dll [File Not found] ()
Catalog9 01 mswsock.dll [File Not found] ()
Catalog9 02 mswsock.dll [File Not found] ()
Catalog9 03 mswsock.dll [File Not found] ()
Catalog9 04 mswsock.dll [File Not found] ()
Catalog9 05 mswsock.dll [File Not found] ()
Catalog9 06 mswsock.dll [File Not found] ()
Catalog9 07 mswsock.dll [File Not found] ()
Catalog9 08 mswsock.dll [File Not found] ()
Catalog9 09 mswsock.dll [File Not found] ()
Catalog9 10 mswsock.dll [File Not found] ()
Catalog9 11 mswsock.dll [File Not found] ()
Catalog9 12 mswsock.dll [File Not found] ()
Catalog9 13 mswsock.dll [File Not found] ()
Catalog9 14 mswsock.dll [File Not found] ()
Catalog9 15 mswsock.dll [File Not found] ()
Catalog9 16 mswsock.dll [File Not found] ()
Catalog9 17 mswsock.dll [File Not found] ()

Edited by teratosis, 22 January 2012 - 02:44 AM.


#6 teratosis

teratosis
  • Topic Starter

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin, TX
  • Local time:08:30 PM

Posted 22 January 2012 - 02:48 AM

minitool part three
minitool part three

Application errors:
==================
Error: (01/21/2012 11:12:40 PM) (Source: Application Error) (User: )
Description: Faulting application ping.exe, version 5.1.2600.5512, faulting module ntdll.dll, version 5.1.2600.5512, fault address 0x000429fa.
Processing media-specific event for [ping.exe!ws!]

Error: (01/21/2012 11:04:54 PM) (Source: Application Error) (User: )
Description: Faulting application ping.exe, version 5.1.2600.5512, faulting module AcroPDF.dll, version 8.1.3.0, fault address 0x00013c96.
Processing media-specific event for [ping.exe!ws!]

Error: (01/21/2012 03:10:02 AM) (Source: Application Error) (User: )
Description: Faulting application ping.exe, version 5.1.2600.5512, faulting module mshtml.dll, version 6.0.2900.5659, fault address 0x00081d87.
Processing media-specific event for [ping.exe!ws!]

Minitool part four
System errors:
=============
Error: (01/21/2012 10:19:12 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (01/21/2012 10:19:12 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (01/21/2012 10:19:12 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (01/21/2012 10:19:12 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (01/21/2012 10:19:11 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (01/21/2012 10:19:11 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (01/21/2012 10:19:11 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (01/21/2012 10:19:10 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (01/21/2012 10:19:10 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

Error: (01/21/2012 10:19:10 PM) (Source: Service Control Manager) (User: )
Description: The Network Location Awareness (NLA) service terminated with the following error:
%%127

#7 teratosis

teratosis
  • Topic Starter

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin, TX
  • Local time:08:30 PM

Posted 22 January 2012 - 02:52 AM

MBAM
Malwarebytes Anti-Malware (PRO) 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.22.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 6.0.2900.5512
OL :: M-LXD-G5-0351 [administrator]

Protection: Disabled

1/22/2012 12:12:03 AM
mbam-log-2012-01-22 (00-12-03).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 208328
Time elapsed: 4 minute(s), 15 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 7
C:\WINDOWS\Temp\fka0.4648915389778908.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\tue0.9463279549113023.exe (Rogue.FakeHDD) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\mos0.3430090344967506.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\mxzlz.exe (Trojan.FakeAlert) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\p9pl3853502391017747126.tmp (Trojan.Agent) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\fka0.9790255136779654.exe (Exploit.Drop.7) -> Quarantined and deleted successfully.
C:\WINDOWS\Temp\mos0.5226823193293882.exe (Exploit.Drop.7) -> Quarantined and deleted successfully.

(end)


aswMBR
aswMBR version 0.9.9.1297 Copyright© 2011 AVAST Software
Run date: 2012-01-22 00:22:00
-----------------------------
00:22:00.125 OS Version: Windows 5.1.2600 Service Pack 3
00:22:00.125 Number of processors: 4 586 0x170A
00:22:00.125 ComputerName: M-LXD-G5-0351 UserName: OL
00:22:01.500 Initialize success
00:24:33.906 AVAST engine defs: 12012101
00:25:10.968 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-7
00:25:10.968 Disk 0 Vendor: WDC_WD1001FALS-00J7B0 05.00K05 Size: 953869MB BusType: 3
00:25:10.968 Disk 1 \Device\Harddisk1\DR1 -> \Device\Ide\IdeDeviceP3T0L0-12
00:25:10.968 Disk 1 Vendor: WDC_WD1001FALS-00J7B0 05.00K05 Size: 953869MB BusType: 3
00:25:11.000 Disk 0 MBR read successfully
00:25:11.000 Disk 0 MBR scan
00:25:11.046 Disk 0 Windows XP default MBR code
00:25:11.046 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 941661 MB offset 63
00:25:11.078 Disk 0 Partition 2 00 1C Hidd FAT32 LBA BOOTWIZ0 12205 MB offset 1928522925
00:25:11.078 Disk 0 scanning sectors +1953520065
00:25:11.140 Disk 0 scanning C:\WINDOWS\system32\drivers
00:25:19.265 File: C:\WINDOWS\system32\drivers\redbook.sys **INFECTED** Win32:Aluroot-B [Rtk]
00:25:21.625 Disk 0 trace - called modules:
00:25:21.640 NEWBOOT.EXE CLASSPNP.SYS disk.sys >>UNKNOWN [0x8a77fff0]<<
00:25:21.640 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8ad76ab8]
00:25:21.640 3 CLASSPNP.SYS[f7667fd7] -> nt!IofCallDriver -> [0x8a95b258]
00:25:21.640 \Driver\00001049[0x8abaccc0] -> IRP_MJ_CREATE -> 0x8a77fff0
00:25:23.234 AVAST engine scan C:\WINDOWS
00:25:28.734 AVAST engine scan C:\WINDOWS\system32
00:26:57.031 AVAST engine scan C:\WINDOWS\system32\drivers
00:27:07.546 File: C:\WINDOWS\system32\drivers\redbook.sys **INFECTED** Win32:Aluroot-B [Rtk]
00:27:27.328 AVAST engine scan C:\Documents and Settings\OL
00:38:48.843 AVAST engine scan C:\Documents and Settings\All Users
00:40:59.828 Scan finished successfully
01:05:04.578 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\OL\Desktop\MBR.dat"
01:05:04.578 The log file has been saved successfully to "C:\Documents and Settings\OL\Desktop\aswMBR.txt"

#8 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:30 PM

Posted 22 January 2012 - 02:49 PM

Download TDSSKiller and save it to your desktop.
  • Doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#9 teratosis

teratosis
  • Topic Starter

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin, TX
  • Local time:08:30 PM

Posted 22 January 2012 - 03:52 PM

Thanks again here goes...
14:49:51.0796 2644 TDSS rootkit removing tool 2.7.6.0 Jan 19 2012 13:09:04
14:49:52.0234 2644 ============================================================
14:49:52.0234 2644 Current date / time: 2012/01/22 14:49:52.0234
14:49:52.0234 2644 SystemInfo:
14:49:52.0234 2644
14:49:52.0234 2644 OS Version: 5.1.2600 ServicePack: 3.0
14:49:52.0234 2644 Product type: Workstation
14:49:52.0234 2644 ComputerName: M-LXD-G5-0351
14:49:52.0234 2644 UserName: Open Labs
14:49:52.0234 2644 Windows directory: C:\WINDOWS
14:49:52.0234 2644 System windows directory: C:\WINDOWS
14:49:52.0234 2644 Processor architecture: Intel x86
14:49:52.0234 2644 Number of processors: 4
14:49:52.0234 2644 Page size: 0x1000
14:49:52.0234 2644 Boot type: Normal boot
14:49:52.0234 2644 ============================================================
14:49:53.0437 2644 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:49:53.0437 2644 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
14:49:53.0515 2644 Initialize success
14:50:10.0546 2064 ============================================================
14:50:10.0546 2064 Scan started
14:50:10.0546 2064 Mode: Manual;
14:50:10.0546 2064 ============================================================
14:50:11.0218 2064 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys
14:50:11.0218 2064 61883 - ok
14:50:11.0234 2064 Abiosdsk - ok
14:50:11.0234 2064 abp480n5 - ok
14:50:11.0250 2064 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:50:11.0265 2064 ACPI - ok
14:50:11.0296 2064 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
14:50:11.0296 2064 ACPIEC - ok
14:50:11.0296 2064 adpu160m - ok
14:50:11.0328 2064 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:50:11.0328 2064 aec - ok
14:50:11.0375 2064 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
14:50:11.0375 2064 AFD - ok
14:50:11.0390 2064 Aha154x - ok
14:50:11.0390 2064 aic78u2 - ok
14:50:11.0390 2064 aic78xx - ok
14:50:11.0406 2064 AliIde - ok
14:50:11.0406 2064 amsint - ok
14:50:11.0453 2064 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
14:50:11.0453 2064 Arp1394 - ok
14:50:11.0453 2064 asc - ok
14:50:11.0453 2064 asc3350p - ok
14:50:11.0468 2064 asc3550 - ok
14:50:11.0515 2064 Aspi32 (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\system32\drivers\aspi32.sys
14:50:11.0515 2064 Aspi32 - ok
14:50:11.0546 2064 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:50:11.0546 2064 AsyncMac - ok
14:50:11.0562 2064 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:50:11.0562 2064 atapi - ok
14:50:11.0562 2064 Atdisk - ok
14:50:11.0578 2064 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:50:11.0578 2064 Atmarpc - ok
14:50:11.0609 2064 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:50:11.0609 2064 audstub - ok
14:50:11.0625 2064 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys
14:50:11.0625 2064 Avc - ok
14:50:11.0656 2064 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:50:11.0656 2064 Beep - ok
14:50:11.0781 2064 catchme - ok
14:50:11.0812 2064 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:50:11.0812 2064 cbidf2k - ok
14:50:11.0843 2064 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:50:11.0843 2064 CCDECODE - ok
14:50:11.0843 2064 cd20xrnt - ok
14:50:11.0875 2064 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:50:11.0875 2064 Cdaudio - ok
14:50:11.0875 2064 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:50:11.0875 2064 Cdfs - ok
14:50:11.0890 2064 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:50:11.0890 2064 Cdrom - ok
14:50:11.0890 2064 Changer - ok
14:50:11.0953 2064 CLEDX (b53f9635457b56dcffef750e18aec6cb) C:\WINDOWS\system32\DRIVERS\cledx.sys
14:50:11.0953 2064 CLEDX - ok
14:50:11.0953 2064 CmdIde - ok
14:50:11.0968 2064 Cpqarray - ok
14:50:12.0015 2064 cpudrv (d01f685f8b4598d144b0cce9ff95d8d5) C:\Program Files\SystemRequirementsLab\cpudrv.sys
14:50:12.0015 2064 cpudrv - ok
14:50:12.0031 2064 dac2w2k - ok
14:50:12.0031 2064 dac960nt - ok
14:50:12.0031 2064 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:50:12.0046 2064 Disk - ok
14:50:12.0062 2064 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
14:50:12.0078 2064 dmboot - ok
14:50:12.0093 2064 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
14:50:12.0093 2064 dmio - ok
14:50:12.0093 2064 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:50:12.0093 2064 dmload - ok
14:50:12.0125 2064 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:50:12.0140 2064 DMusic - ok
14:50:12.0140 2064 dpti2o - ok
14:50:12.0156 2064 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:50:12.0156 2064 drmkaud - ok
14:50:12.0187 2064 e1kexpress (90700eb149c8ee9fd8f61821e7d4b8fe) C:\WINDOWS\system32\DRIVERS\e1k5132.sys
14:50:12.0187 2064 e1kexpress - ok
14:50:12.0234 2064 EGXFilter (12b769b5d8fb009927eb0e22443dc2af) C:\WINDOWS\system32\drivers\egxfilter.sys
14:50:12.0250 2064 EGXFilter - ok
14:50:12.0250 2064 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:50:12.0250 2064 Fastfat - ok
14:50:12.0265 2064 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
14:50:12.0265 2064 Fdc - ok
14:50:12.0281 2064 FilterService (a75ddc492d2d1d6558ad8003a4adb73a) C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys
14:50:12.0281 2064 FilterService - ok
14:50:12.0296 2064 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
14:50:12.0296 2064 Fips - ok
14:50:12.0296 2064 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
14:50:12.0296 2064 Flpydisk - ok
14:50:12.0328 2064 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
14:50:12.0328 2064 FltMgr - ok
14:50:12.0343 2064 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:50:12.0343 2064 Fs_Rec - ok
14:50:12.0343 2064 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:50:12.0343 2064 Ftdisk - ok
14:50:12.0359 2064 GEARAspiWDM (f2f431d1573ee632975c524418655b84) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
14:50:12.0359 2064 GEARAspiWDM - ok
14:50:12.0390 2064 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:50:12.0390 2064 Gpc - ok
14:50:12.0421 2064 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
14:50:12.0421 2064 hamachi - ok
14:50:12.0453 2064 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:50:12.0453 2064 HDAudBus - ok
14:50:12.0500 2064 HECI (e4a123ad734a3731d29ebd3a01b3e535) C:\WINDOWS\system32\DRIVERS\HECI.sys
14:50:12.0500 2064 HECI - ok
14:50:12.0515 2064 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:50:12.0515 2064 hidusb - ok
14:50:12.0515 2064 hpn - ok
14:50:12.0562 2064 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
14:50:12.0562 2064 HTTP - ok
14:50:12.0562 2064 i2omgmt - ok
14:50:12.0578 2064 i2omp - ok
14:50:12.0578 2064 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\drivers\i8042prt.sys
14:50:12.0578 2064 i8042prt - ok
14:50:12.0656 2064 ialm (2f91ca49fb204262d234cae40e51c8cd) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:50:12.0687 2064 ialm - ok
14:50:12.0687 2064 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:50:12.0687 2064 Imapi - ok
14:50:12.0687 2064 ini910u - ok
14:50:12.0703 2064 IntelIde - ok
14:50:12.0718 2064 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:50:12.0718 2064 intelppm - ok
14:50:12.0750 2064 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
14:50:12.0750 2064 Ip6Fw - ok
14:50:12.0781 2064 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:50:12.0781 2064 IpFilterDriver - ok
14:50:12.0812 2064 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:50:12.0812 2064 IpInIp - ok
14:50:12.0843 2064 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:50:12.0843 2064 IpNat - ok
14:50:12.0843 2064 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:50:12.0843 2064 IPSec - ok
14:50:12.0875 2064 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:50:12.0875 2064 IRENUM - ok
14:50:12.0890 2064 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:50:12.0890 2064 isapnp - ok
14:50:12.0890 2064 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:50:12.0890 2064 Kbdclass - ok
14:50:12.0906 2064 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:50:12.0906 2064 kbdhid - ok
14:50:12.0921 2064 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:50:12.0921 2064 kmixer - ok
14:50:12.0937 2064 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
14:50:12.0937 2064 KSecDD - ok
14:50:12.0953 2064 lbrtfdc - ok
14:50:12.0984 2064 LVPr2Mon (c57c48fb9ae3efb9848af594e3123a63) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
14:50:12.0984 2064 LVPr2Mon - ok
14:50:13.0031 2064 LVRS (87ecce893d8aec5a9337b917742d339c) C:\WINDOWS\system32\DRIVERS\lvrs.sys
14:50:13.0031 2064 LVRS - ok
14:50:13.0062 2064 lvselsus (44d939eb9030e980d7fa7a208c7637af) C:\WINDOWS\system32\DRIVERS\lvselsus.sys
14:50:13.0062 2064 lvselsus - ok
14:50:13.0187 2064 LVUVC (291f69b3dda0f033d2490c5ba5179f7c) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
14:50:13.0281 2064 LVUVC - ok
14:50:13.0296 2064 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
14:50:13.0296 2064 MBAMProtector - ok
14:50:13.0312 2064 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:50:13.0312 2064 mnmdd - ok
14:50:13.0328 2064 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
14:50:13.0328 2064 Modem - ok
14:50:13.0328 2064 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:50:13.0328 2064 Mouclass - ok
14:50:13.0343 2064 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:50:13.0343 2064 mouhid - ok
14:50:13.0359 2064 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:50:13.0359 2064 MountMgr - ok
14:50:13.0359 2064 mraid35x - ok
14:50:13.0359 2064 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:50:13.0375 2064 MRxDAV - ok
14:50:13.0406 2064 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:50:13.0406 2064 MRxSmb - ok
14:50:13.0406 2064 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:50:13.0406 2064 Msfs - ok
14:50:13.0437 2064 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:50:13.0437 2064 MSKSSRV - ok
14:50:13.0437 2064 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:50:13.0437 2064 MSPCLOCK - ok
14:50:13.0453 2064 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:50:13.0453 2064 MSPQM - ok
14:50:13.0468 2064 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:50:13.0468 2064 mssmbios - ok
14:50:13.0484 2064 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
14:50:13.0500 2064 MSTEE - ok
14:50:13.0500 2064 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
14:50:13.0500 2064 Mup - ok
14:50:13.0515 2064 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:50:13.0515 2064 NABTSFEC - ok
14:50:13.0531 2064 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:50:13.0531 2064 NDIS - ok
14:50:13.0546 2064 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:50:13.0546 2064 NdisIP - ok
14:50:13.0562 2064 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:50:13.0562 2064 NdisTapi - ok
14:50:13.0578 2064 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:50:13.0578 2064 Ndisuio - ok
14:50:13.0578 2064 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:50:13.0578 2064 NdisWan - ok
14:50:13.0593 2064 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
14:50:13.0593 2064 NDProxy - ok
14:50:13.0640 2064 nekomidi (04047e786b6b2fdfc1d486b5a26cfcdd) C:\WINDOWS\system32\drivers\OLMidi.sys
14:50:13.0640 2064 nekomidi - ok
14:50:13.0640 2064 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:50:13.0640 2064 NetBIOS - ok
14:50:13.0656 2064 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:50:13.0656 2064 NetBT - ok
14:50:13.0703 2064 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
14:50:13.0703 2064 NIC1394 - ok
14:50:13.0734 2064 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:50:13.0734 2064 Npfs - ok
14:50:13.0765 2064 Nsynas32 (4b4a21e158c039ee0888741bfe1d24e0) C:\WINDOWS\system32\drivers\Nsynas32.sys
14:50:13.0765 2064 Nsynas32 - ok
14:50:13.0781 2064 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:50:13.0781 2064 Ntfs - ok
14:50:13.0812 2064 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:50:13.0812 2064 Null - ok
14:50:13.0828 2064 nuvaud2 (aa72993760cc3b42d55b41786b80da2c) C:\WINDOWS\system32\DRIVERS\nuvaud2.sys
14:50:13.0828 2064 nuvaud2 - ok
14:50:13.0890 2064 NUVision (013ed0371476ac2eb59d048d176abd8d) C:\WINDOWS\system32\DRIVERS\nuvvid2.sys
14:50:13.0890 2064 NUVision - ok
14:50:14.0078 2064 nv (cb0ce8de9f66a297cd86eb98921b8e58) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
14:50:14.0250 2064 nv - ok
14:50:14.0296 2064 NVR0Dev (61d6b1c71ad94f8485e966bebc36d092) C:\WINDOWS\nvoclock.sys
14:50:14.0296 2064 NVR0Dev - ok
14:50:14.0343 2064 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:50:14.0343 2064 NwlnkFlt - ok
14:50:14.0359 2064 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:50:14.0359 2064 NwlnkFwd - ok
14:50:14.0359 2064 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
14:50:14.0359 2064 ohci1394 - ok
14:50:14.0375 2064 OLUsbMidi (b285a9810b6abeb9aca53c1d6e5ecd48) C:\WINDOWS\system32\drivers\OLUsbMidi.sys
14:50:14.0375 2064 OLUsbMidi - ok
14:50:14.0390 2064 pae_1394 (f1ecdef495afebd39a342fe670fe0c70) C:\WINDOWS\system32\Drivers\pae_1394.sys
14:50:14.0390 2064 pae_1394 - ok
14:50:14.0406 2064 pae_avs (8ea42d40c74e23f94d33c79cdb24b107) C:\WINDOWS\system32\Drivers\pae_avs.sys
14:50:14.0406 2064 pae_avs - ok
14:50:14.0437 2064 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
14:50:14.0437 2064 Parport - ok
14:50:14.0453 2064 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:50:14.0453 2064 PartMgr - ok
14:50:14.0484 2064 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
14:50:14.0484 2064 ParVdm - ok
14:50:14.0484 2064 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
14:50:14.0484 2064 PCI - ok
14:50:14.0500 2064 PCIDump - ok
14:50:14.0515 2064 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:50:14.0515 2064 PCIIde - ok
14:50:14.0531 2064 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
14:50:14.0531 2064 Pcmcia - ok
14:50:14.0531 2064 PDCOMP - ok
14:50:14.0546 2064 PDFRAME - ok
14:50:14.0546 2064 PDRELI - ok
14:50:14.0546 2064 PDRFRAME - ok
14:50:14.0562 2064 perc2 - ok
14:50:14.0562 2064 perc2hib - ok
14:50:14.0609 2064 PnkBstrK (5d980bb21803bd3b7a6c73b245ce5133) C:\WINDOWS\system32\drivers\PnkBstrK.sys
14:50:14.0609 2064 PnkBstrK - ok
14:50:14.0625 2064 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:50:14.0640 2064 PptpMiniport - ok
14:50:14.0640 2064 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:50:14.0640 2064 PSched - ok
14:50:14.0687 2064 ps_1394 (7c83ca0fd06da7878e01b547cd33cfeb) C:\WINDOWS\system32\Drivers\ps_1394.sys
14:50:14.0687 2064 ps_1394 - ok
14:50:14.0703 2064 ps_avs (6fc7292ae311fe1b2fff09b7f6ae5220) C:\WINDOWS\system32\Drivers\ps_avs.sys
14:50:14.0703 2064 ps_avs - ok
14:50:14.0734 2064 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:50:14.0734 2064 Ptilink - ok
14:50:14.0750 2064 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
14:50:14.0750 2064 PxHelp20 - ok
14:50:14.0750 2064 ql1080 - ok
14:50:14.0750 2064 Ql10wnt - ok
14:50:14.0765 2064 ql12160 - ok
14:50:14.0765 2064 ql1240 - ok
14:50:14.0765 2064 ql1280 - ok
14:50:14.0796 2064 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:50:14.0796 2064 RasAcd - ok
14:50:14.0796 2064 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:50:14.0796 2064 Rasl2tp - ok
14:50:14.0812 2064 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:50:14.0812 2064 RasPppoe - ok
14:50:14.0828 2064 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:50:14.0828 2064 Raspti - ok
14:50:14.0828 2064 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:50:14.0828 2064 Rdbss - ok
14:50:14.0843 2064 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:50:14.0843 2064 RDPCDD - ok
14:50:14.0875 2064 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
14:50:14.0875 2064 RDPWD - ok
14:50:14.0890 2064 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
14:50:14.0890 2064 redbook - ok
14:50:14.0953 2064 rig3avs (28155d02eeb9c38e6ede7bde53b824a8) C:\WINDOWS\system32\Drivers\rig3avs.sys
14:50:14.0953 2064 rig3avs - ok
14:50:14.0984 2064 rig3usb (31358f8a8e6722ebb10bf3bf160d3076) C:\WINDOWS\system32\Drivers\rig3usb.sys
14:50:14.0984 2064 rig3usb - ok
14:50:15.0031 2064 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:50:15.0031 2064 Secdrv - ok
14:50:15.0062 2064 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
14:50:15.0062 2064 Serenum - ok
14:50:15.0078 2064 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
14:50:15.0078 2064 Serial - ok
14:50:15.0093 2064 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:50:15.0093 2064 Sfloppy - ok
14:50:15.0093 2064 Simbad - ok
14:50:15.0140 2064 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
14:50:15.0140 2064 SLIP - ok
14:50:15.0156 2064 snapman (bcc773872041aa59bc9a6cf770fb32e2) C:\WINDOWS\system32\DRIVERS\snapman.sys
14:50:15.0156 2064 snapman - ok
14:50:15.0156 2064 Sparrow - ok
14:50:15.0187 2064 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:50:15.0187 2064 splitter - ok
14:50:15.0250 2064 sptd (7f1b7c4d446cd3f926af45b8c48bd593) C:\WINDOWS\system32\Drivers\sptd.sys
14:50:15.0250 2064 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 7f1b7c4d446cd3f926af45b8c48bd593
14:50:15.0250 2064 sptd ( LockedFile.Multi.Generic ) - warning
14:50:15.0250 2064 sptd - detected LockedFile.Multi.Generic (1)
14:50:15.0250 2064 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
14:50:15.0250 2064 sr - ok
14:50:15.0281 2064 Srv (4f8a43adef66f135564085a9dca96a26) C:\WINDOWS\system32\DRIVERS\srv.sys
14:50:15.0281 2064 Srv - ok
14:50:15.0296 2064 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
14:50:15.0296 2064 streamip - ok
14:50:15.0328 2064 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:50:15.0328 2064 swenum - ok
14:50:15.0328 2064 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:50:15.0328 2064 swmidi - ok
14:50:15.0343 2064 symc810 - ok
14:50:15.0343 2064 symc8xx - ok
14:50:15.0343 2064 sym_hi - ok
14:50:15.0359 2064 sym_u3 - ok
14:50:15.0375 2064 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:50:15.0375 2064 sysaudio - ok
14:50:15.0421 2064 T1PExGrp (a657c455314d2f44c45c356d25a7592d) C:\WINDOWS\system32\DRIVERS\T1PExGrp.sys
14:50:15.0421 2064 T1PExGrp - ok
14:50:15.0421 2064 T1PMrGrp (92285799050065970ccc2fb5093e7ab9) C:\WINDOWS\system32\drivers\T1PMrGrp.sys
14:50:15.0437 2064 T1PMrGrp - ok
14:50:15.0468 2064 t1pusb (17e147d9974f0a7a2b5dd75c201ec4c1) C:\WINDOWS\system32\drivers\t1pusb.sys
14:50:15.0468 2064 t1pusb - ok
14:50:15.0484 2064 Tcpip (93ea8d04ec73a85db02eb8805988f733) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:50:15.0500 2064 Tcpip - ok
14:50:15.0515 2064 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:50:15.0515 2064 TDPIPE - ok
14:50:15.0531 2064 tdrpman (3b7b6779eb231f731bba8f9fe67aadfc) C:\WINDOWS\system32\DRIVERS\tdrpman.sys
14:50:15.0531 2064 tdrpman - ok
14:50:15.0546 2064 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:50:15.0546 2064 TDTCP - ok
14:50:15.0546 2064 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:50:15.0562 2064 TermDD - ok
14:50:15.0562 2064 tifsfilter (b0b3122bff3910e0ba97014045467778) C:\WINDOWS\system32\DRIVERS\tifsfilt.sys
14:50:15.0562 2064 tifsfilter - ok
14:50:15.0578 2064 timounter (13bfe330880ac0ce8672d00aa5aff738) C:\WINDOWS\system32\DRIVERS\timntr.sys
14:50:15.0578 2064 timounter - ok
14:50:15.0578 2064 TosIde - ok
14:50:15.0625 2064 tpm (298572a7e0d5a63a90e134bb34ccaceb) C:\WINDOWS\system32\DRIVERS\tpm.sys
14:50:15.0625 2064 tpm - ok
14:50:15.0625 2064 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:50:15.0625 2064 Udfs - ok
14:50:15.0640 2064 ultra - ok
14:50:15.0671 2064 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:50:15.0687 2064 Update - ok
14:50:15.0703 2064 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
14:50:15.0703 2064 usbaudio - ok
14:50:15.0718 2064 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:50:15.0718 2064 usbccgp - ok
14:50:15.0781 2064 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:50:15.0781 2064 usbehci - ok
14:50:15.0796 2064 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:50:15.0796 2064 usbhub - ok
14:50:15.0843 2064 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:50:15.0843 2064 usbscan - ok
14:50:15.0859 2064 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:50:15.0859 2064 USBSTOR - ok
14:50:15.0875 2064 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:50:15.0875 2064 usbuhci - ok
14:50:15.0906 2064 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
14:50:15.0906 2064 usbvideo - ok
14:50:15.0906 2064 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:50:15.0906 2064 VgaSave - ok
14:50:15.0906 2064 ViaIde - ok
14:50:15.0921 2064 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
14:50:15.0921 2064 VolSnap - ok
14:50:15.0937 2064 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:50:15.0937 2064 Wanarp - ok
14:50:15.0953 2064 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\WINDOWS\system32\DRIVERS\wdcsam.sys
14:50:15.0953 2064 WDC_SAM - ok
14:50:15.0968 2064 Wdf01000 (060e8cb99cc0a6751db5810c042b0d45) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
14:50:15.0968 2064 Wdf01000 - ok
14:50:15.0968 2064 WDICA - ok
14:50:16.0015 2064 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:50:16.0015 2064 wdmaud - ok
14:50:16.0093 2064 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:50:16.0093 2064 WS2IFSL - ok
14:50:16.0140 2064 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
14:50:16.0140 2064 WSTCODEC - ok
14:50:16.0171 2064 xTouch (5a15ae65a63a760255e6f29c01761fd1) C:\WINDOWS\system32\DRIVERS\xtouch.sys
14:50:16.0171 2064 xTouch - ok
14:50:16.0218 2064 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
14:50:16.0375 2064 \Device\Harddisk0\DR0 - ok
14:50:16.0390 2064 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
14:50:16.0390 2064 \Device\Harddisk1\DR1 - ok
14:50:16.0390 2064 Boot (0x1200) (7a7df2234814b9e1de41bf9393cf98a8) \Device\Harddisk0\DR0\Partition0
14:50:16.0390 2064 \Device\Harddisk0\DR0\Partition0 - ok
14:50:16.0390 2064 Boot (0x1200) (1e7284380cf9ec38b3fa5bd7f4a7f4bc) \Device\Harddisk1\DR1\Partition0
14:50:16.0390 2064 \Device\Harddisk1\DR1\Partition0 - ok
14:50:16.0390 2064 ============================================================
14:50:16.0390 2064 Scan finished
14:50:16.0390 2064 ============================================================
14:50:16.0406 3108 Detected object count: 1
14:50:16.0406 3108 Actual detected object count: 1
14:51:13.0140 3108 sptd ( LockedFile.Multi.Generic ) - skipped by user
14:51:13.0140 3108 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
14:51:41.0921 2200 ============================================================
14:51:41.0921 2200 Scan started
14:51:41.0921 2200 Mode: Manual;
14:51:41.0921 2200 ============================================================
14:51:42.0312 2200 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys
14:51:42.0312 2200 61883 - ok
14:51:42.0312 2200 Abiosdsk - ok
14:51:42.0328 2200 abp480n5 - ok
14:51:42.0343 2200 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
14:51:42.0343 2200 ACPI - ok
14:51:42.0375 2200 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
14:51:42.0375 2200 ACPIEC - ok
14:51:42.0390 2200 adpu160m - ok
14:51:42.0421 2200 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
14:51:42.0421 2200 aec - ok
14:51:42.0468 2200 AFD (7e775010ef291da96ad17ca4b17137d7) C:\WINDOWS\System32\drivers\afd.sys
14:51:42.0468 2200 AFD - ok
14:51:42.0468 2200 Aha154x - ok
14:51:42.0468 2200 aic78u2 - ok
14:51:42.0484 2200 aic78xx - ok
14:51:42.0484 2200 AliIde - ok
14:51:42.0500 2200 amsint - ok
14:51:42.0546 2200 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
14:51:42.0546 2200 Arp1394 - ok
14:51:42.0546 2200 asc - ok
14:51:42.0546 2200 asc3350p - ok
14:51:42.0562 2200 asc3550 - ok
14:51:42.0593 2200 Aspi32 (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\system32\drivers\aspi32.sys
14:51:42.0593 2200 Aspi32 - ok
14:51:42.0625 2200 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
14:51:42.0625 2200 AsyncMac - ok
14:51:42.0640 2200 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
14:51:42.0640 2200 atapi - ok
14:51:42.0640 2200 Atdisk - ok
14:51:42.0656 2200 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
14:51:42.0656 2200 Atmarpc - ok
14:51:42.0687 2200 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
14:51:42.0687 2200 audstub - ok
14:51:42.0703 2200 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys
14:51:42.0703 2200 Avc - ok
14:51:42.0750 2200 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
14:51:42.0750 2200 Beep - ok
14:51:42.0875 2200 catchme - ok
14:51:42.0906 2200 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
14:51:42.0906 2200 cbidf2k - ok
14:51:42.0937 2200 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
14:51:42.0937 2200 CCDECODE - ok
14:51:42.0937 2200 cd20xrnt - ok
14:51:42.0968 2200 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
14:51:42.0968 2200 Cdaudio - ok
14:51:42.0968 2200 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
14:51:42.0968 2200 Cdfs - ok
14:51:42.0984 2200 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
14:51:42.0984 2200 Cdrom - ok
14:51:43.0000 2200 Changer - ok
14:51:43.0046 2200 CLEDX (b53f9635457b56dcffef750e18aec6cb) C:\WINDOWS\system32\DRIVERS\cledx.sys
14:51:43.0046 2200 CLEDX - ok
14:51:43.0046 2200 CmdIde - ok
14:51:43.0062 2200 Cpqarray - ok
14:51:43.0109 2200 cpudrv (d01f685f8b4598d144b0cce9ff95d8d5) C:\Program Files\SystemRequirementsLab\cpudrv.sys
14:51:43.0109 2200 cpudrv - ok
14:51:43.0125 2200 dac2w2k - ok
14:51:43.0125 2200 dac960nt - ok
14:51:43.0140 2200 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
14:51:43.0140 2200 Disk - ok
14:51:43.0156 2200 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
14:51:43.0156 2200 dmboot - ok
14:51:43.0171 2200 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
14:51:43.0171 2200 dmio - ok
14:51:43.0187 2200 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
14:51:43.0187 2200 dmload - ok
14:51:43.0218 2200 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
14:51:43.0218 2200 DMusic - ok
14:51:43.0234 2200 dpti2o - ok
14:51:43.0234 2200 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
14:51:43.0234 2200 drmkaud - ok
14:51:43.0281 2200 e1kexpress (90700eb149c8ee9fd8f61821e7d4b8fe) C:\WINDOWS\system32\DRIVERS\e1k5132.sys
14:51:43.0281 2200 e1kexpress - ok
14:51:43.0328 2200 EGXFilter (12b769b5d8fb009927eb0e22443dc2af) C:\WINDOWS\system32\drivers\egxfilter.sys
14:51:43.0328 2200 EGXFilter - ok
14:51:43.0328 2200 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
14:51:43.0328 2200 Fastfat - ok
14:51:43.0343 2200 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
14:51:43.0343 2200 Fdc - ok
14:51:43.0359 2200 FilterService (a75ddc492d2d1d6558ad8003a4adb73a) C:\WINDOWS\system32\DRIVERS\lvuvcflt.sys
14:51:43.0359 2200 FilterService - ok
14:51:43.0375 2200 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
14:51:43.0375 2200 Fips - ok
14:51:43.0375 2200 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
14:51:43.0375 2200 Flpydisk - ok
14:51:43.0406 2200 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
14:51:43.0421 2200 FltMgr - ok
14:51:43.0421 2200 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
14:51:43.0421 2200 Fs_Rec - ok
14:51:43.0421 2200 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
14:51:43.0421 2200 Ftdisk - ok
14:51:43.0437 2200 GEARAspiWDM (f2f431d1573ee632975c524418655b84) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
14:51:43.0437 2200 GEARAspiWDM - ok
14:51:43.0468 2200 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
14:51:43.0468 2200 Gpc - ok
14:51:43.0500 2200 hamachi (833051c6c6c42117191935f734cfbd97) C:\WINDOWS\system32\DRIVERS\hamachi.sys
14:51:43.0500 2200 hamachi - ok
14:51:43.0515 2200 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
14:51:43.0515 2200 HDAudBus - ok
14:51:43.0562 2200 HECI (e4a123ad734a3731d29ebd3a01b3e535) C:\WINDOWS\system32\DRIVERS\HECI.sys
14:51:43.0562 2200 HECI - ok
14:51:43.0578 2200 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
14:51:43.0578 2200 hidusb - ok
14:51:43.0578 2200 hpn - ok
14:51:43.0625 2200 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) C:\WINDOWS\system32\Drivers\HTTP.sys
14:51:43.0625 2200 HTTP - ok
14:51:43.0625 2200 i2omgmt - ok
14:51:43.0640 2200 i2omp - ok
14:51:43.0640 2200 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\drivers\i8042prt.sys
14:51:43.0640 2200 i8042prt - ok
14:51:43.0718 2200 ialm (2f91ca49fb204262d234cae40e51c8cd) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
14:51:43.0718 2200 ialm - ok
14:51:43.0734 2200 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
14:51:43.0734 2200 Imapi - ok
14:51:43.0734 2200 ini910u - ok
14:51:43.0750 2200 IntelIde - ok
14:51:43.0765 2200 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
14:51:43.0765 2200 intelppm - ok
14:51:43.0796 2200 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
14:51:43.0796 2200 Ip6Fw - ok
14:51:43.0828 2200 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
14:51:43.0828 2200 IpFilterDriver - ok
14:51:43.0859 2200 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
14:51:43.0859 2200 IpInIp - ok
14:51:43.0875 2200 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
14:51:43.0875 2200 IpNat - ok
14:51:43.0890 2200 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
14:51:43.0890 2200 IPSec - ok
14:51:43.0906 2200 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
14:51:43.0906 2200 IRENUM - ok
14:51:43.0937 2200 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
14:51:43.0937 2200 isapnp - ok
14:51:43.0937 2200 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
14:51:43.0937 2200 Kbdclass - ok
14:51:43.0953 2200 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
14:51:43.0953 2200 kbdhid - ok
14:51:44.0000 2200 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
14:51:44.0000 2200 kmixer - ok
14:51:44.0000 2200 KSecDD (1705745d900dabf2d89f90ebaddc7517) C:\WINDOWS\system32\drivers\KSecDD.sys
14:51:44.0000 2200 KSecDD - ok
14:51:44.0015 2200 lbrtfdc - ok
14:51:44.0031 2200 LVPr2Mon (c57c48fb9ae3efb9848af594e3123a63) C:\WINDOWS\system32\DRIVERS\LVPr2Mon.sys
14:51:44.0031 2200 LVPr2Mon - ok
14:51:44.0046 2200 LVRS (87ecce893d8aec5a9337b917742d339c) C:\WINDOWS\system32\DRIVERS\lvrs.sys
14:51:44.0062 2200 LVRS - ok
14:51:44.0078 2200 lvselsus (44d939eb9030e980d7fa7a208c7637af) C:\WINDOWS\system32\DRIVERS\lvselsus.sys
14:51:44.0078 2200 lvselsus - ok
14:51:44.0187 2200 LVUVC (291f69b3dda0f033d2490c5ba5179f7c) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
14:51:44.0218 2200 LVUVC - ok
14:51:44.0234 2200 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
14:51:44.0234 2200 MBAMProtector - ok
14:51:44.0250 2200 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
14:51:44.0250 2200 mnmdd - ok
14:51:44.0265 2200 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
14:51:44.0265 2200 Modem - ok
14:51:44.0265 2200 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
14:51:44.0265 2200 Mouclass - ok
14:51:44.0281 2200 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
14:51:44.0281 2200 mouhid - ok
14:51:44.0296 2200 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
14:51:44.0296 2200 MountMgr - ok
14:51:44.0296 2200 mraid35x - ok
14:51:44.0312 2200 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
14:51:44.0312 2200 MRxDAV - ok
14:51:44.0343 2200 MRxSmb (60ae98742484e7ab80c3c1450e708148) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
14:51:44.0343 2200 MRxSmb - ok
14:51:44.0343 2200 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
14:51:44.0343 2200 Msfs - ok
14:51:44.0390 2200 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
14:51:44.0390 2200 MSKSSRV - ok
14:51:44.0390 2200 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
14:51:44.0390 2200 MSPCLOCK - ok
14:51:44.0390 2200 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
14:51:44.0390 2200 MSPQM - ok
14:51:44.0421 2200 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
14:51:44.0421 2200 mssmbios - ok
14:51:44.0437 2200 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
14:51:44.0437 2200 MSTEE - ok
14:51:44.0453 2200 Mup (2f625d11385b1a94360bfc70aaefdee1) C:\WINDOWS\system32\drivers\Mup.sys
14:51:44.0453 2200 Mup - ok
14:51:44.0468 2200 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
14:51:44.0468 2200 NABTSFEC - ok
14:51:44.0468 2200 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
14:51:44.0468 2200 NDIS - ok
14:51:44.0484 2200 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
14:51:44.0484 2200 NdisIP - ok
14:51:44.0515 2200 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
14:51:44.0515 2200 NdisTapi - ok
14:51:44.0515 2200 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
14:51:44.0515 2200 Ndisuio - ok
14:51:44.0531 2200 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
14:51:44.0531 2200 NdisWan - ok
14:51:44.0546 2200 NDProxy (6215023940cfd3702b46abc304e1d45a) C:\WINDOWS\system32\drivers\NDProxy.sys
14:51:44.0546 2200 NDProxy - ok
14:51:44.0593 2200 nekomidi (04047e786b6b2fdfc1d486b5a26cfcdd) C:\WINDOWS\system32\drivers\OLMidi.sys
14:51:44.0593 2200 nekomidi - ok
14:51:44.0593 2200 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
14:51:44.0593 2200 NetBIOS - ok
14:51:44.0640 2200 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
14:51:44.0640 2200 NetBT - ok
14:51:44.0687 2200 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
14:51:44.0687 2200 NIC1394 - ok
14:51:44.0703 2200 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
14:51:44.0703 2200 Npfs - ok
14:51:44.0718 2200 Nsynas32 (4b4a21e158c039ee0888741bfe1d24e0) C:\WINDOWS\system32\drivers\Nsynas32.sys
14:51:44.0718 2200 Nsynas32 - ok
14:51:44.0734 2200 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
14:51:44.0734 2200 Ntfs - ok
14:51:44.0765 2200 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
14:51:44.0765 2200 Null - ok
14:51:44.0781 2200 nuvaud2 (aa72993760cc3b42d55b41786b80da2c) C:\WINDOWS\system32\DRIVERS\nuvaud2.sys
14:51:44.0781 2200 nuvaud2 - ok
14:51:44.0812 2200 NUVision (013ed0371476ac2eb59d048d176abd8d) C:\WINDOWS\system32\DRIVERS\nuvvid2.sys
14:51:44.0812 2200 NUVision - ok
14:51:45.0000 2200 nv (cb0ce8de9f66a297cd86eb98921b8e58) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
14:51:45.0046 2200 nv - ok
14:51:45.0078 2200 NVR0Dev (61d6b1c71ad94f8485e966bebc36d092) C:\WINDOWS\nvoclock.sys
14:51:45.0078 2200 NVR0Dev - ok
14:51:45.0125 2200 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
14:51:45.0125 2200 NwlnkFlt - ok
14:51:45.0140 2200 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
14:51:45.0140 2200 NwlnkFwd - ok
14:51:45.0140 2200 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
14:51:45.0140 2200 ohci1394 - ok
14:51:45.0140 2200 OLUsbMidi (b285a9810b6abeb9aca53c1d6e5ecd48) C:\WINDOWS\system32\drivers\OLUsbMidi.sys
14:51:45.0140 2200 OLUsbMidi - ok
14:51:45.0171 2200 pae_1394 (f1ecdef495afebd39a342fe670fe0c70) C:\WINDOWS\system32\Drivers\pae_1394.sys
14:51:45.0171 2200 pae_1394 - ok
14:51:45.0187 2200 pae_avs (8ea42d40c74e23f94d33c79cdb24b107) C:\WINDOWS\system32\Drivers\pae_avs.sys
14:51:45.0187 2200 pae_avs - ok
14:51:45.0218 2200 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
14:51:45.0218 2200 Parport - ok
14:51:45.0218 2200 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
14:51:45.0218 2200 PartMgr - ok
14:51:45.0250 2200 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
14:51:45.0250 2200 ParVdm - ok
14:51:45.0250 2200 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
14:51:45.0250 2200 PCI - ok
14:51:45.0265 2200 PCIDump - ok
14:51:45.0281 2200 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
14:51:45.0281 2200 PCIIde - ok
14:51:45.0296 2200 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
14:51:45.0296 2200 Pcmcia - ok
14:51:45.0296 2200 PDCOMP - ok
14:51:45.0296 2200 PDFRAME - ok
14:51:45.0312 2200 PDRELI - ok
14:51:45.0312 2200 PDRFRAME - ok
14:51:45.0328 2200 perc2 - ok
14:51:45.0328 2200 perc2hib - ok
14:51:45.0375 2200 PnkBstrK (5d980bb21803bd3b7a6c73b245ce5133) C:\WINDOWS\system32\drivers\PnkBstrK.sys
14:51:45.0375 2200 PnkBstrK - ok
14:51:45.0390 2200 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
14:51:45.0390 2200 PptpMiniport - ok
14:51:45.0406 2200 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
14:51:45.0406 2200 PSched - ok
14:51:45.0453 2200 ps_1394 (7c83ca0fd06da7878e01b547cd33cfeb) C:\WINDOWS\system32\Drivers\ps_1394.sys
14:51:45.0453 2200 ps_1394 - ok
14:51:45.0468 2200 ps_avs (6fc7292ae311fe1b2fff09b7f6ae5220) C:\WINDOWS\system32\Drivers\ps_avs.sys
14:51:45.0468 2200 ps_avs - ok
14:51:45.0484 2200 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
14:51:45.0484 2200 Ptilink - ok
14:51:45.0500 2200 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
14:51:45.0500 2200 PxHelp20 - ok
14:51:45.0500 2200 ql1080 - ok
14:51:45.0515 2200 Ql10wnt - ok
14:51:45.0515 2200 ql12160 - ok
14:51:45.0515 2200 ql1240 - ok
14:51:45.0531 2200 ql1280 - ok
14:51:45.0546 2200 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
14:51:45.0546 2200 RasAcd - ok
14:51:45.0562 2200 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
14:51:45.0562 2200 Rasl2tp - ok
14:51:45.0578 2200 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
14:51:45.0578 2200 RasPppoe - ok
14:51:45.0578 2200 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
14:51:45.0578 2200 Raspti - ok
14:51:45.0609 2200 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
14:51:45.0609 2200 Rdbss - ok
14:51:45.0703 2200 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
14:51:45.0703 2200 RDPCDD - ok
14:51:45.0859 2200 RDPWD (6728e45b66f93c08f11de2e316fc70dd) C:\WINDOWS\system32\drivers\RDPWD.sys
14:51:45.0859 2200 RDPWD - ok
14:51:45.0937 2200 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
14:51:45.0937 2200 redbook - ok
14:51:45.0953 2200 rig3avs (28155d02eeb9c38e6ede7bde53b824a8) C:\WINDOWS\system32\Drivers\rig3avs.sys
14:51:45.0953 2200 rig3avs - ok
14:51:45.0984 2200 rig3usb (31358f8a8e6722ebb10bf3bf160d3076) C:\WINDOWS\system32\Drivers\rig3usb.sys
14:51:45.0984 2200 rig3usb - ok
14:51:46.0000 2200 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
14:51:46.0000 2200 Secdrv - ok
14:51:46.0031 2200 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
14:51:46.0031 2200 Serenum - ok
14:51:46.0046 2200 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
14:51:46.0046 2200 Serial - ok
14:51:46.0062 2200 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
14:51:46.0078 2200 Sfloppy - ok
14:51:46.0078 2200 Simbad - ok
14:51:46.0109 2200 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
14:51:46.0109 2200 SLIP - ok
14:51:46.0125 2200 snapman (bcc773872041aa59bc9a6cf770fb32e2) C:\WINDOWS\system32\DRIVERS\snapman.sys
14:51:46.0125 2200 snapman - ok
14:51:46.0140 2200 Sparrow - ok
14:51:46.0171 2200 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
14:51:46.0171 2200 splitter - ok
14:51:46.0203 2200 sptd (7f1b7c4d446cd3f926af45b8c48bd593) C:\WINDOWS\system32\Drivers\sptd.sys
14:51:46.0203 2200 Suspicious file (NoAccess): C:\WINDOWS\system32\Drivers\sptd.sys. md5: 7f1b7c4d446cd3f926af45b8c48bd593
14:51:46.0203 2200 sptd ( LockedFile.Multi.Generic ) - warning
14:51:46.0203 2200 sptd - detected LockedFile.Multi.Generic (1)
14:51:46.0218 2200 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
14:51:46.0218 2200 sr - ok
14:51:46.0265 2200 Srv (4f8a43adef66f135564085a9dca96a26) C:\WINDOWS\system32\DRIVERS\srv.sys
14:51:46.0265 2200 Srv - ok
14:51:46.0296 2200 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
14:51:46.0296 2200 streamip - ok
14:51:46.0312 2200 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
14:51:46.0312 2200 swenum - ok
14:51:46.0312 2200 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
14:51:46.0312 2200 swmidi - ok
14:51:46.0328 2200 symc810 - ok
14:51:46.0343 2200 symc8xx - ok
14:51:46.0359 2200 sym_hi - ok
14:51:46.0375 2200 sym_u3 - ok
14:51:46.0390 2200 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
14:51:46.0390 2200 sysaudio - ok
14:51:46.0437 2200 T1PExGrp (a657c455314d2f44c45c356d25a7592d) C:\WINDOWS\system32\DRIVERS\T1PExGrp.sys
14:51:46.0437 2200 T1PExGrp - ok
14:51:46.0437 2200 T1PMrGrp (92285799050065970ccc2fb5093e7ab9) C:\WINDOWS\system32\drivers\T1PMrGrp.sys
14:51:46.0437 2200 T1PMrGrp - ok
14:51:46.0500 2200 t1pusb (17e147d9974f0a7a2b5dd75c201ec4c1) C:\WINDOWS\system32\drivers\t1pusb.sys
14:51:46.0500 2200 t1pusb - ok
14:51:46.0515 2200 Tcpip (93ea8d04ec73a85db02eb8805988f733) C:\WINDOWS\system32\DRIVERS\tcpip.sys
14:51:46.0515 2200 Tcpip - ok
14:51:46.0546 2200 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
14:51:46.0546 2200 TDPIPE - ok
14:51:46.0578 2200 tdrpman (3b7b6779eb231f731bba8f9fe67aadfc) C:\WINDOWS\system32\DRIVERS\tdrpman.sys
14:51:46.0578 2200 tdrpman - ok
14:51:46.0593 2200 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
14:51:46.0593 2200 TDTCP - ok
14:51:46.0593 2200 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
14:51:46.0593 2200 TermDD - ok
14:51:46.0609 2200 tifsfilter (b0b3122bff3910e0ba97014045467778) C:\WINDOWS\system32\DRIVERS\tifsfilt.sys
14:51:46.0609 2200 tifsfilter - ok
14:51:46.0609 2200 timounter (13bfe330880ac0ce8672d00aa5aff738) C:\WINDOWS\system32\DRIVERS\timntr.sys
14:51:46.0609 2200 timounter - ok
14:51:46.0625 2200 TosIde - ok
14:51:46.0656 2200 tpm (298572a7e0d5a63a90e134bb34ccaceb) C:\WINDOWS\system32\DRIVERS\tpm.sys
14:51:46.0656 2200 tpm - ok
14:51:46.0656 2200 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
14:51:46.0656 2200 Udfs - ok
14:51:46.0671 2200 ultra - ok
14:51:46.0703 2200 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
14:51:46.0703 2200 Update - ok
14:51:46.0734 2200 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
14:51:46.0734 2200 usbaudio - ok
14:51:46.0750 2200 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
14:51:46.0750 2200 usbccgp - ok
14:51:46.0781 2200 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
14:51:46.0781 2200 usbehci - ok
14:51:46.0796 2200 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
14:51:46.0796 2200 usbhub - ok
14:51:46.0843 2200 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
14:51:46.0843 2200 usbscan - ok
14:51:46.0859 2200 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
14:51:46.0859 2200 USBSTOR - ok
14:51:46.0875 2200 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
14:51:46.0875 2200 usbuhci - ok
14:51:46.0906 2200 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
14:51:46.0906 2200 usbvideo - ok
14:51:46.0906 2200 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
14:51:46.0906 2200 VgaSave - ok
14:51:46.0921 2200 ViaIde - ok
14:51:46.0921 2200 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
14:51:46.0921 2200 VolSnap - ok
14:51:46.0937 2200 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
14:51:46.0937 2200 Wanarp - ok
14:51:46.0953 2200 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\WINDOWS\system32\DRIVERS\wdcsam.sys
14:51:46.0953 2200 WDC_SAM - ok
14:51:46.0968 2200 Wdf01000 (060e8cb99cc0a6751db5810c042b0d45) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
14:51:46.0968 2200 Wdf01000 - ok
14:51:46.0984 2200 WDICA - ok
14:51:47.0015 2200 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
14:51:47.0015 2200 wdmaud - ok
14:51:47.0078 2200 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
14:51:47.0078 2200 WS2IFSL - ok
14:51:47.0109 2200 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
14:51:47.0109 2200 WSTCODEC - ok
14:51:47.0125 2200 xTouch (5a15ae65a63a760255e6f29c01761fd1) C:\WINDOWS\system32\DRIVERS\xtouch.sys
14:51:47.0125 2200 xTouch - ok
14:51:47.0171 2200 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
14:51:47.0328 2200 \Device\Harddisk0\DR0 - ok
14:51:47.0328 2200 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
14:51:47.0328 2200 \Device\Harddisk1\DR1 - ok
14:51:47.0328 2200 Boot (0x1200) (7a7df2234814b9e1de41bf9393cf98a8) \Device\Harddisk0\DR0\Partition0
14:51:47.0328 2200 \Device\Harddisk0\DR0\Partition0 - ok
14:51:47.0343 2200 Boot (0x1200) (1e7284380cf9ec38b3fa5bd7f4a7f4bc) \Device\Harddisk1\DR1\Partition0
14:51:47.0343 2200 \Device\Harddisk1\DR1\Partition0 - ok
14:51:47.0343 2200 ============================================================
14:51:47.0343 2200 Scan finished
14:51:47.0343 2200 ============================================================
14:51:47.0343 2900 Detected object count: 1
14:51:47.0343 2900 Actual detected object count: 1
14:51:52.0765 2900 sptd ( LockedFile.Multi.Generic ) - skipped by user
14:51:52.0765 2900 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

#10 Broni

Broni

    The Coolest BC Computer


  • BC Advisor
  • 42,707 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Daly City, CA
  • Local time:07:30 PM

Posted 22 January 2012 - 04:34 PM

00:25:19.265 File: C:\WINDOWS\system32\drivers\redbook.sys **INFECTED** Win32:Aluroot-B [Rtk]

This is very important and sensitive system file.
You'll need more advanced help.


Please follow the instructions in ==>This Guide<== starting at Step 6. If you cannot complete a step, skip it and continue.

Once the proper logs are created, then make a NEW TOPIC and post it ==>HERE<== Please include a description of your computer issues, what you have done to resolve them, and a link to this topic.

If you can produce at least some of the logs, then please create the new topic and explain what happens when you try to create the log(s) that you couldn't get. If you cannot produce any of the logs, then still post the topic and explain that you followed the Prep. Guide, were unable to create the logs, and describe what happens when you try to create the logs.

It would be helpful if you post a note here once you have completed the steps in the guide and have started your topic in malware removal. Good luck and be patient.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

My Website

p4433470.gif

My help doesn't cost a penny, but if you'd like to consider a donation, click p22001735.gif


 


#11 teratosis

teratosis
  • Topic Starter

  • Members
  • 64 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Austin, TX
  • Local time:08:30 PM

Posted 22 January 2012 - 10:01 PM

Thanks again I posted here http://www.bleepingcomputer.com/forums/topic439495.html#entry2567318




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users