Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

WD offline deleted Bamital.Q, now black screen on win boot


  • This topic is locked This topic is locked
31 replies to this topic

#1 mcsb

mcsb

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:41 AM

Posted 11 February 2012 - 06:49 PM

Hello & thanks in advance for all the help you may provide me, and have clearly already provided for many others!!

Dell XPS M1330 Running Windows 7 32 bit

Current status TL/DR: Windows Defender Offline detected and deleted Bamital.Q, now my comp when starting in any mode (safe/swn/normal) goes to a blank black screen after Windows splash.

Backstory:

I hit a "click fraud" trojan/virus bs "security" checker/antivirus off a link from Google, which BlueSOD'd my comp.

Upon infection, as everything began to go crazy on my screen, MS Security Essentials caught it as Bamital initially, tried to remove it, and then came a BSOD on reboot. Tried windows repair from Win 7 CD, no luck. I then Downloaded MS Offline Defender from another comp, burned it, and then ran it off the CD. It too detected Bamital, yet when it deleted it, my comp started rebooting into this blank black screen. No luck again from Windows Repair.

I have access to the Win 7 CD & recov console, and another laptop. I did some searching and I know this won't be easy, but I have several years of data I would like to save if at all possible. I should admit I experienced BSOD before due to virus, so my comp could possibly infected with other lingering vile things as well.

Please let me know what you need from my end, again many thanks!

BC AdBot (Login to Remove)

 


#2 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:41 PM

Posted 11 February 2012 - 11:42 PM

:welcome:

Lets give it a try. You will need a USB (Flash) pendrive.

For x32 (x86) bit systems download Farbar Recovery Scan Tool and save it to a flash drive.
For x64 bit systems download Farbar Recovery Scan Tool x64 and save it to a flash drive.

Plug the flashdrive into the infected PC.

Enter System Recovery Options.

To enter System Recovery Options from the Advanced Boot Options:
  • Restart the computer.
  • As soon as the BIOS is loaded begin tapping the F8 key until Advanced Boot Options appears.
  • Click on Repair your computer menu item.
  • Select US as the keyboard language settings, and then click Next.
  • Select the operating system you want to repair, and then click Next.
  • Select your user account and click Next.
On the System Recovery Options menu you will get the following options:

Startup Repair
System Restore
Windows Complete PC Restore
Windows Memory Diagnostic Tool
Command Prompt

  • Select Command Prompt
  • In the command window type in notepad and press Enter.
  • The notepad opens. Under File menu select Open.
  • Select "Computer" and find your flash drive letter and close the notepad.
  • In the command window type e:\frst.exe (for x64 bit version type e:\frst64) and press Enter
    Note: Replace letter e with the drive letter of your flash drive.
  • The tool will start to run.
  • When the tool opens click Yes to disclaimer.
  • Press Scan button.
  • It will make a log (FRST.txt) in the flash drive. Please copy and paste it to your reply.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#3 mcsb

mcsb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:41 AM

Posted 13 February 2012 - 10:47 AM

Sweet! :clapping: I am currently at work, will do this as soon as I get home tonight, around 5pm US CST.

#4 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:41 PM

Posted 13 February 2012 - 12:24 PM

:thumbup2:

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#5 mcsb

mcsb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:41 AM

Posted 13 February 2012 - 07:09 PM

OK, here is the log :)

Scan result of Farbar Recovery Scan Tool (FRST written by farbar) Version: 11-02-2012
Ran by SYSTEM at 2012-02-13 18:03:34
Running from E:\
Windows 7 Ultimate (X86) OS Language: English(US)
The current controlset is ControlSet001

========================== Registry (Whitelisted) =============

HKLM\...\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [857648 2007-04-27] (Synaptics, Inc.)
HKLM\...\Run: [OEM04Mon.exe] C:\Windows\OEM04Mon.exe [36864 2007-06-10] (Creative Technology Ltd.)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE [x]
HKLM\...\Run: [NVHotkey] rundll32.exe C:\Windows\system32\nvHotkey.dll,Start [301672 2011-05-20] (NVIDIA Corporation)
HKLM\...\Run: [QuickTime Task] "C:\Program Files\QuickTime\QTTask.exe" -atboottime [421888 2011-07-05] (Apple Inc.)
HKLM\...\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2011-09-27] (Apple Inc.)
HKLM\...\Run: [iTunesHelper] "C:\Program Files\iTunes\iTunesHelper.exe" [421736 2011-10-09] (Apple Inc.)
HKLM\...\Run: [MSC] "c:\Program Files\Microsoft Security Client\msseces.exe" -hide -runkey [997920 2011-06-15] (Microsoft Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [37296 2012-01-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [843712 2012-01-02] (Adobe Systems Incorporated)
HKU\Dan\...\Run: [ANT Agent] C:\Garmin\ANT Agent\ANT Agent.exe [8203352 2008-09-02] (GARMIN Corp.)
HKU\Dan\...\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun [369200 2009-10-30] (DT Soft Ltd)
HKU\Dan\...\Run: [Google Update] "C:\Users\Dan\AppData\Local\Google\Update\GoogleUpdate.exe" /c [133104 2008-10-19] (Google Inc.)
HKU\Dan\...\Run: [Desktop Software] "C:\Program Files\Common Files\SupportSoft\bin\bcont.exe" /ini "C:\Program Files\ComcastUI\Desktop Software\uinstaller.ini" /fromrun /starthidden [1073 2011-06-12] ()
HKU\Dan\...\Run: [Steam] "C:\Program Files\Steam\Steam.exe" -silent [1242448 2011-08-21] (Valve Corporation)
HKU\Default\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [x]
HKU\Default User\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [x]
HKU\UpdatusUser\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun [x]
Tcpip\Parameters: [DhcpNameServer] 75.75.76.76 75.75.75.75

================================ Services (Whitelisted) ==================

2 AESTFilters; C:\Windows\system32\aestsrv.exe [73728 2007-09-20] (Andrea Electronics Corporation)
2 EvtEng; C:\Program Files\Intel\Wireless\Bin\EvtEng.exe [643072 2007-02-21] (Intel Corporation)
3 FLEXnet Licensing Service; "C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe" [655624 2010-01-31] (Acresso Software Inc.)
3 IDriverT; "C:\Program Files\Roxio\Roxio MyDVD DE\InstallShield\Driver\1050\Intel 32\IDriverT.exe" [73728 2004-10-22] (Macrovision Corporation)
4 LBTServ; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [121360 2008-11-07] (Logitech, Inc.)
3 MsDepSvc; "C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe" -runService:MsDepSvc [42888 2009-03-13] (Microsoft Corporation)
2 nvUpdatusService; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2214504 2011-05-20] (NVIDIA Corporation)
2 RegSrvc; C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe [327680 2007-02-21] (Intel Corporation)
2 STacSV; C:\Windows\system32\STacSV.exe [102400 2007-09-13] (IDT, Inc.)
2 Stereo Service; C:\Program Files\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [378472 2011-05-20] (NVIDIA Corporation)
2 MsMpSvc; "c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe" [x]
3 NisSrv; "c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe" [x]
3 OracleDBConsoleorcl; C:\oracle\product\10.2.0\db_1\bin\nmesrvc.exe [x]

========================== Drivers (Whitelisted) =============

2 DLABMFSM; C:\Windows\System32\DLA\DLABMFSM.SYS [35096 2006-10-26] (Roxio)
2 DLABOIOM; C:\Windows\System32\DLA\DLABOIOM.SYS [32472 2006-10-26] (Roxio)
1 DLACDBHM; C:\Windows\System32\Drivers\DLACDBHM.SYS [12856 2007-02-08] (Roxio)
2 DLADResM; C:\Windows\System32\DLA\DLADResM.SYS [9400 2006-10-26] (Roxio)
2 DLAIFS_M; C:\Windows\System32\DLA\DLAIFS_M.SYS [104536 2006-10-26] (Roxio)
2 DLAOPIOM; C:\Windows\System32\DLA\DLAOPIOM.SYS [26296 2006-10-26] (Roxio)
2 DLAPoolM; C:\Windows\System32\DLA\DLAPoolM.SYS [14520 2006-10-26] (Roxio)
1 DLARTL_M; C:\Windows\System32\Drivers\DLARTL_M.SYS [28120 2007-02-08] (Roxio)
2 DLAUDFAM; C:\Windows\System32\DLA\DLAUDFAM.SYS [94648 2006-10-26] (Roxio)
2 DLAUDF_M; C:\Windows\System32\DLA\DLAUDF_M.SYS [97848 2006-10-26] (Roxio)
0 DRVMCDB; C:\Windows\System32\Drivers\DRVMCDB.SYS [99176 2006-07-21] (Sonic Solutions)
2 DRVNDDM; C:\Windows\System32\Drivers\DRVNDDM.SYS [51768 2007-02-09] (Roxio)
3 DSI_SiUSBXp_3_1; C:\Windows\System32\drivers\DSI_SiUSBXp_3_1.sys [14848 2007-09-06] (Silicon Laboratories)
3 LHidFilt; C:\Windows\System32\DRIVERS\LHidFilt.Sys [35472 2008-09-26] (Logitech, Inc.)
3 LMouFilt; C:\Windows\System32\DRIVERS\LMouFilt.Sys [37392 2008-09-26] (Logitech, Inc.)
1 MpFilter; C:\Windows\System32\DRIVERS\MpFilter.sys [165648 2011-04-18] (Microsoft Corporation)
1 MpKslc05935d6; \??\c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CBD87F6A-2C25-48BA-93D1-08B747C93C6F}\MpKslc05935d6.sys [29904 2012-01-29] (Microsoft Corporation)
3 MpNWMon; C:\Windows\System32\DRIVERS\MpNWMon.sys [43392 2011-04-18] (Microsoft Corporation)
3 netw5v32; C:\Windows\System32\DRIVERS\netw5v32.sys [4231168 2009-07-13] (Intel Corporation)
3 NisDrv; C:\Windows\System32\DRIVERS\NisDrvWFP.sys [65024 2011-04-27] (Microsoft Corporation)
3 OEM04Vfx; C:\Windows\System32\DRIVERS\OEM04Vfx.sys [7424 2007-03-05] (EyePower Games Pte. Ltd.)
3 OEM04Vid; C:\Windows\System32\DRIVERS\OEM04Vid.sys [234720 2007-10-10] (Creative Technology Ltd.)
3 rimmptsk; C:\Windows\System32\DRIVERS\rimmptsk.sys [28928 2005-11-16] (REDC)
3 rimsptsk; C:\Windows\System32\DRIVERS\rimsptsk.sys [51840 2005-12-22] (REDC)
2 rismxdp; C:\Windows\System32\DRIVERS\rixdptsk.sys [37376 2006-11-14] (REDC)
3 catchme; \??\C:\Users\Dan\AppData\Local\Temp\catchme.sys [x]
2 pnarp; C:\Windows\System32\DRIVERS\pnarp.sys [x]
2 purendis; C:\Windows\System32\DRIVERS\purendis.sys [x]

========================== NetSvcs (Whitelisted) ===========

============ One Month Created Files and Folders ==============

2012-02-11 12:26 - 2012-02-11 12:34 - 0272318 ____A C:\Windows\ntbtlog.txt
2012-01-31 20:07 - 2012-02-01 16:43 - 0014650 ____A C:\Windows\PFRO.log
2012-01-31 20:00 - 2012-01-31 20:00 - 0338944 ____A C:\Users\Dan\AppData\Local\pzpgkdic.exe
2012-01-31 20:00 - 2012-01-31 20:00 - 0073216 ___AH (Kaspersky Lab) C:\Windows\System32\BdeHhost.dll
2012-01-31 20:00 - 2012-01-31 20:00 - 0073216 ___AH (Kaspersky Lab) C:\Windows\BdeHhost.dll
2012-01-31 19:59 - 2012-01-31 19:59 - 0338944 ____A C:\Users\Dan\AppData\Local\jvdcogx.exe
2012-01-31 19:59 - 2009-07-13 17:16 - 0836608 ____A (Microsoft Corporation) C:\Users\Public\Documents\kbd32.dll
2012-01-27 22:33 - 2012-01-31 20:07 - 0000000 __SHD C:\Config.Msi
2012-01-27 22:33 - 2012-01-27 22:33 - 0001944 ____A C:\Users\Public\Desktop\Adobe Reader 9.lnk
2012-01-23 05:02 - 2012-01-23 05:03 - 0160448 ____A C:\Windows\Minidump\012312-24554-01.dmp


============ 3 Months Modified Files and Folders ===============

2012-02-11 14:36 - 2008-09-16 23:55 - 0000000 ____D C:\Users\All Users\NVIDIA
2012-02-11 14:36 - 2008-09-16 23:55 - 0000000 ____D C:\ProgramData\NVIDIA
2012-02-11 14:35 - 2010-01-07 22:06 - 2817032192 __ASH C:\hiberfil.sys
2012-02-11 12:34 - 2012-02-11 12:26 - 0272318 ____A C:\Windows\ntbtlog.txt
2012-02-01 20:40 - 2012-01-08 20:58 - 0000000 ____D C:\Windows\Microsoft Antimalware
2012-02-01 18:30 - 2009-07-13 18:37 - 0000000 ____D C:\Windows\System32\LogFiles
2012-02-01 16:43 - 2012-01-31 20:07 - 0014650 ____A C:\Windows\PFRO.log
2012-01-31 20:07 - 2012-01-27 22:33 - 0000000 __SHD C:\Config.Msi
2012-01-31 20:01 - 2009-11-29 19:25 - 0000880 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-01-31 20:01 - 2009-06-28 08:30 - 0000900 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-357968248-2747831191-786139263-1000UA.job
2012-01-31 20:00 - 2012-01-31 20:00 - 0338944 ____A C:\Users\Dan\AppData\Local\pzpgkdic.exe
2012-01-31 20:00 - 2012-01-31 20:00 - 0073216 ___AH (Kaspersky Lab) C:\Windows\System32\BdeHhost.dll
2012-01-31 20:00 - 2012-01-31 20:00 - 0073216 ___AH (Kaspersky Lab) C:\Windows\BdeHhost.dll
2012-01-31 20:00 - 2010-01-07 22:03 - 1322674 ____A C:\Windows\WindowsUpdate.log
2012-01-31 19:59 - 2012-01-31 19:59 - 0338944 ____A C:\Users\Dan\AppData\Local\jvdcogx.exe
2012-01-31 16:28 - 2008-12-29 13:48 - 0156494 ____A C:\Windows\System32\Device0.txt
2012-01-30 17:34 - 2009-06-28 08:30 - 0000848 ____A C:\Windows\Tasks\GoogleUpdateTaskUserS-1-5-21-357968248-2747831191-786139263-1000Core.job
2012-01-30 17:28 - 2009-11-29 19:25 - 0000876 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-01-27 22:33 - 2012-01-27 22:33 - 0001944 ____A C:\Users\Public\Desktop\Adobe Reader 9.lnk
2012-01-27 22:33 - 2010-10-29 14:48 - 0000000 ____D C:\Program Files\Common Files\Adobe
2012-01-27 22:33 - 2008-09-12 11:07 - 0000000 ____D C:\Users\Dan\AppData\Local\Adobe
2012-01-27 22:33 - 2008-09-12 11:07 - 0000000 ____D C:\Users\All Users\Adobe
2012-01-27 22:33 - 2008-09-12 11:07 - 0000000 ____D C:\ProgramData\Adobe
2012-01-24 16:23 - 2010-01-07 19:59 - 0009728 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
2012-01-24 16:23 - 2010-01-07 19:59 - 0009728 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
2012-01-24 16:18 - 2011-06-21 17:37 - 0000000 ____D C:\Program Files\Steam
2012-01-24 16:15 - 2012-01-10 19:24 - 0011967 ____A C:\Windows\setupact.log
2012-01-24 16:15 - 2009-07-13 20:53 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2012-01-23 05:05 - 2011-06-21 23:00 - 0000000 ____D C:\users\UpdatusUser
2012-01-23 05:03 - 2012-01-23 05:02 - 0160448 ____A C:\Windows\Minidump\012312-24554-01.dmp
2012-01-23 05:02 - 2010-01-22 15:50 - 0000000 ____D C:\Windows\Minidump
2012-01-22 09:35 - 2010-03-04 23:54 - 0000000 ____D C:\Users\Dan\AppData\Local\ElevatedDiagnostics
2012-01-10 19:24 - 2012-01-10 19:24 - 0000000 ____A C:\Windows\setuperr.log
2012-01-09 02:36 - 2010-03-17 00:22 - 0000000 ____D C:\Users\Dan\Desktop\meh
2012-01-09 02:27 - 2012-01-09 02:27 - 0000000 ____D C:\Windows\System32\EventProviders
2012-01-09 01:28 - 2008-09-11 23:14 - 0000000 ____D C:\Users\Dan\Downloads\App Source Files
2012-01-09 01:22 - 2012-01-09 01:19 - 0165222 ____A C:\TDSSKiller.2.6.25.0_09.01.2012_03.19.00_log.txt
2012-01-09 01:12 - 2012-01-09 01:11 - 1578288 ____A (Kaspersky Lab ZAO) C:\Users\Dan\Desktop\tdsskiller.exe
2012-01-09 01:03 - 2012-01-09 01:03 - 0000000 ____D C:\Program Files\Microsoft Security Client
2012-01-09 01:03 - 2010-12-21 23:06 - 0001945 ____A C:\Windows\epplauncher.mif
2012-01-09 01:03 - 2010-01-07 20:15 - 0823034 ____A C:\Windows\System32\PerfStringBackup.INI
2012-01-09 01:01 - 2009-07-13 18:37 - 0000000 ___HD C:\Windows\System32\GroupPolicy
2012-01-08 20:56 - 2012-01-08 20:56 - 0000000 ____D C:\Windows\Windows Defender Offline
2012-01-07 08:36 - 2008-10-20 08:09 - 0000000 ____D C:\Program Files\Mozilla Firefox
2011-12-19 15:21 - 2011-06-21 23:06 - 0414368 ____A (Adobe Systems Incorporated) C:\Windows\System32\FlashPlayerCPLApp.cpl
2011-11-17 10:38 - 2011-07-25 16:40 - 0000000 ____D C:\Users\Dan\Downloads\cindy
2011-11-17 08:14 - 2009-02-18 15:14 - 0000000 ____D C:\Program Files\Google


========================= Known DLLs (Whitelisted) ============


========================= Bamital & volsnap Check ============

C:\Windows\explorer.exe
[2010-01-27 05:41] - [2009-07-13 17:16] - 2639360 ____A (Microsoft Corporation) 807C08EEABC116927999E5F2C0BB53E6

C:\Windows\System32\winlogon.exe
[2010-01-27 05:41] - [2009-07-13 17:16] - 0310784 ____A (Microsoft Corporation) A789EE5CC6FF513213ABD75D28D08AE3

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ======================

Percentage of memory in use: 12%
Total physical RAM: 4094.04 MB
Available physical RAM: 3601.71 MB
Total Pagefile: 4092.31 MB
Available Pagefile: 3605.82 MB
Total Virtual: 2047.88 MB
Available Virtual: 1970.31 MB

======================= Partitions =========================

1 Drive c: () (Fixed) (Total:173.73 GB) (Free:2.78 GB) NTFS ==>[Drive with boot components (obtanied from BCD)]
2 Drive d: (GRMCULFRER_EN_DVD) (CDROM) (Total:2.33 GB) (Free:0 GB) UDF
3 Drive e: () (Removable) (Total:0.99 GB) (Free:0.99 GB) FAT
4 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

Disk ### Status Size Free Dyn Gpt
-------- ------------- ------- ------- --- ---
Disk 0 Online 186 GB 12 GB
Disk 1 Online 1010 MB 0 B

Partitions of Disk 0:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 OEM 78 MB 31 KB
Partition 2 Primary 173 GB 10 GB

Disk: 0
Partition 1
Type : DE
Hidden: Yes
Active: No

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 3 FAT Partition 78 MB Healthy Hidden

Disk: 0
Partition 2
Type : 07
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 1 C NTFS Partition 173 GB Healthy

Partitions of Disk 1:
===============

Partition ### Type Size Offset
------------- ---------------- ------- -------
Partition 1 Primary 1010 MB 16 KB

Disk: 1
Partition 1
Type : 06
Hidden: No
Active: Yes

Volume ### Ltr Label Fs Type Size Status Info
---------- --- ----------- ----- ---------- ------- --------- --------
* Volume 2 E FAT Removable 1010 MB Healthy



==========================================================

Last Boot: 2012-01-31 16:48

======================= End Of Log ==========================

#6 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:41 PM

Posted 13 February 2012 - 09:52 PM

Download the enclosed folder.

Save it in the USB drive.

Run FRST as you did before, except that this time around, click on the Fix button and wait.

The tool will make a log in the flashdrive (Fixlog.txt). Please post its contents in a reply.

This wont fix anything yet. It will provide me however, more information.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#7 mcsb

mcsb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:41 AM

Posted 13 February 2012 - 11:42 PM

The fixlog as you've requested. I received a "post is too long" message, so I broke it up into consecutive posts if that's OK. :)

Fix result of Farbar Recovery Tool (FRST written by farbar) Version: 11-02-2012
Ran by SYSTEM at 2012-02-13 22:30:20 R:1
Running from E:\

==============================================


========= type C:\TDSSKiller*.txt =========


C:\TDSSKiller.2.4.10.0_01.12.2010_20.23.57_log.txt


2010/12/01 20:23:57.0432 TDSS rootkit removing tool 2.4.10.0 Nov 28 2010 18:35:56
2010/12/01 20:23:57.0432 ================================================================================
2010/12/01 20:23:57.0432 SystemInfo:
2010/12/01 20:23:57.0432
2010/12/01 20:23:57.0432 OS Version: 6.1.7600 ServicePack: 0.0
2010/12/01 20:23:57.0433 Product type: Workstation
2010/12/01 20:23:57.0433 ComputerName: DAN-PC
2010/12/01 20:23:57.0434 UserName: Dan
2010/12/01 20:23:57.0434 Windows directory: C:\Windows
2010/12/01 20:23:57.0434 System windows directory: C:\Windows
2010/12/01 20:23:57.0434 Processor architecture: Intel x86
2010/12/01 20:23:57.0434 Number of processors: 2
2010/12/01 20:23:57.0434 Page size: 0x1000
2010/12/01 20:23:57.0434 Boot type: Normal boot
2010/12/01 20:23:57.0434 ================================================================================
2010/12/01 20:24:02.0187 Initialize success
2010/12/01 20:24:06.0340 ================================================================================
2010/12/01 20:24:06.0340 Scan started
2010/12/01 20:24:06.0340 Mode: Manual;
2010/12/01 20:24:06.0340 ================================================================================
2010/12/01 20:24:07.0272 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
2010/12/01 20:24:07.0327 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
2010/12/01 20:24:07.0386 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
2010/12/01 20:24:07.0449 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
2010/12/01 20:24:07.0513 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
2010/12/01 20:24:07.0563 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
2010/12/01 20:24:07.0661 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
2010/12/01 20:24:07.0710 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
2010/12/01 20:24:07.0810 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
2010/12/01 20:24:07.0890 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
2010/12/01 20:24:07.0928 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
2010/12/01 20:24:07.0969 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
2010/12/01 20:24:08.0022 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
2010/12/01 20:24:08.0071 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
2010/12/01 20:24:08.0110 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
2010/12/01 20:24:08.0159 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
2010/12/01 20:24:08.0199 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
2010/12/01 20:24:08.0248 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
2010/12/01 20:24:08.0332 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
2010/12/01 20:24:08.0361 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
2010/12/01 20:24:08.0447 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
2010/12/01 20:24:08.0473 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
2010/12/01 20:24:08.0547 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
2010/12/01 20:24:08.0619 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
2010/12/01 20:24:08.0671 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
2010/12/01 20:24:08.0914 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
2010/12/01 20:24:09.0033 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
2010/12/01 20:24:09.0122 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2010/12/01 20:24:09.0168 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2010/12/01 20:24:09.0226 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
2010/12/01 20:24:09.0280 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
2010/12/01 20:24:09.0333 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
2010/12/01 20:24:09.0366 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
2010/12/01 20:24:09.0396 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
2010/12/01 20:24:09.0611 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
2010/12/01 20:24:09.0662 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
2010/12/01 20:24:09.0711 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
2010/12/01 20:24:09.0782 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
2010/12/01 20:24:09.0843 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
2010/12/01 20:24:09.0880 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
2010/12/01 20:24:09.0937 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
2010/12/01 20:24:10.0004 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
2010/12/01 20:24:10.0110 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
2010/12/01 20:24:10.0192 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
2010/12/01 20:24:10.0298 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
2010/12/01 20:24:10.0396 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
2010/12/01 20:24:10.0464 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
2010/12/01 20:24:10.0513 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
2010/12/01 20:24:10.0644 DLABMFSM (a53723176d0002feb486eff8e17812f2) C:\Windows\system32\DLA\DLABMFSM.SYS
2010/12/01 20:24:10.0684 DLABOIOM (d4587063acea776699251e177d719586) C:\Windows\system32\DLA\DLABOIOM.SYS
2010/12/01 20:24:10.0719 DLACDBHM (5230cdb7e715f3a3b4a882e254cdd35d) C:\Windows\system32\Drivers\DLACDBHM.SYS
2010/12/01 20:24:10.0753 DLADResM (c950c2e7b9ed1a4fc4a2ac7ec044f1d6) C:\Windows\system32\DLA\DLADResM.SYS
2010/12/01 20:24:10.0797 DLAIFS_M (24400137e387a24410c52a591f3cfb4d) C:\Windows\system32\DLA\DLAIFS_M.SYS
2010/12/01 20:24:10.0832 DLAOPIOM (29a303feceb28641ecebdae89eb71c63) C:\Windows\system32\DLA\DLAOPIOM.SYS
2010/12/01 20:24:10.0865 DLAPoolM (c93e33a22a1ae0c5508f3fb1f6d0a50c) C:\Windows\system32\DLA\DLAPoolM.SYS
2010/12/01 20:24:10.0951 DLARTL_M (77fe51f0f8d86804cb81f6ef6bfb86dd) C:\Windows\system32\Drivers\DLARTL_M.SYS
2010/12/01 20:24:11.0031 DLAUDFAM (b953498c35a31e5ac98f49adbcf3e627) C:\Windows\system32\DLA\DLAUDFAM.SYS
2010/12/01 20:24:11.0081 DLAUDF_M (4897704c093c1f59ce58fc65e1e1ef1e) C:\Windows\system32\DLA\DLAUDF_M.SYS
2010/12/01 20:24:11.0229 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
2010/12/01 20:24:11.0258 DRVMCDB (c00440385cf9f3d142917c63f989e244) C:\Windows\system32\Drivers\DRVMCDB.SYS
2010/12/01 20:24:11.0298 DRVNDDM (ffc371525aa55d1bae18715ebcb8797c) C:\Windows\system32\Drivers\DRVNDDM.SYS
2010/12/01 20:24:11.0359 DSI_SiUSBXp_3_1 (bc9c2ef22ee0320c079e3ff9b4d29951) C:\Windows\system32\drivers\DSI_SiUSBXp_3_1.sys
2010/12/01 20:24:11.0433 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys
2010/12/01 20:24:11.0633 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
2010/12/01 20:24:11.0794 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
2010/12/01 20:24:11.0848 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
2010/12/01 20:24:11.0939 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
2010/12/01 20:24:11.0982 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
2010/12/01 20:24:12.0032 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
2010/12/01 20:24:12.0100 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
2010/12/01 20:24:12.0138 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
2010/12/01 20:24:12.0213 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
2010/12/01 20:24:12.0319 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
2010/12/01 20:24:12.0362 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
2010/12/01 20:24:12.0395 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
2010/12/01 20:24:12.0473 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
2010/12/01 20:24:12.0513 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
2010/12/01 20:24:12.0576 GEARAspiWDM (f2f431d1573ee632975c524418655b84) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2010/12/01 20:24:12.0627 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
2010/12/01 20:24:12.0720 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
2010/12/01 20:24:12.0784 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
2010/12/01 20:24:12.0823 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
2010/12/01 20:24:12.0862 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
2010/12/01 20:24:12.0904 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
2010/12/01 20:24:12.0997 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
2010/12/01 20:24:13.0071 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
2010/12/01 20:24:13.0155 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
2010/12/01 20:24:13.0236 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
2010/12/01 20:24:13.0310 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
2010/12/01 20:24:13.0426 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
2010/12/01 20:24:13.0512 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
2010/12/01 20:24:13.0583 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
2010/12/01 20:24:13.0617 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
2010/12/01 20:24:13.0667 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2010/12/01 20:24:13.0744 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
2010/12/01 20:24:13.0812 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
2010/12/01 20:24:13.0867 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
2010/12/01 20:24:13.0925 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
2010/12/01 20:24:13.0978 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
2010/12/01 20:24:14.0037 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
2010/12/01 20:24:14.0078 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
2010/12/01 20:24:14.0134 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
2010/12/01 20:24:14.0188 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
2010/12/01 20:24:14.0295 LHidFilt (dd83dc92463fce6324fd30a13d17d0da) C:\Windows\system32\DRIVERS\LHidFilt.Sys
2010/12/01 20:24:14.0392 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
2010/12/01 20:24:14.0509 LMouFilt (8fe0008e183ff0293a925b78a5581c5f) C:\Windows\system32\DRIVERS\LMouFilt.Sys
2010/12/01 20:24:14.0595 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
2010/12/01 20:24:14.0641 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
2010/12/01 20:24:14.0693 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2010/12/01 20:24:14.0737 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2010/12/01 20:24:14.0862 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
2010/12/01 20:24:14.0902 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
2010/12/01 20:24:14.0966 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
2010/12/01 20:24:15.0056 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
2010/12/01 20:24:15.0111 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
2010/12/01 20:24:15.0151 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
2010/12/01 20:24:15.0205 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
2010/12/01 20:24:15.0244 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
2010/12/01 20:24:15.0338 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
2010/12/01 20:24:15.0418 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
2010/12/01 20:24:15.0479 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
2010/12/01 20:24:15.0589 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys
2010/12/01 20:24:15.0645 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2010/12/01 20:24:15.0688 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2010/12/01 20:24:15.0771 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
2010/12/01 20:24:15.0828 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
2010/12/01 20:24:15.0899 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
2010/12/01 20:24:15.0934 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
2010/12/01 20:24:15.0983 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
2010/12/01 20:24:16.0045 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
2010/12/01 20:24:16.0107 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
2010/12/01 20:24:16.0160 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
2010/12/01 20:24:16.0200 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
2010/12/01 20:24:16.0261 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
2010/12/01 20:24:16.0317 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
2010/12/01 20:24:16.0371 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
2010/12/01 20:24:16.0426 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
2010/12/01 20:24:16.0498 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
2010/12/01 20:24:16.0581 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
2010/12/01 20:24:16.0694 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
2010/12/01 20:24:16.0795 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
2010/12/01 20:24:16.0833 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
2010/12/01 20:24:16.0868 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
2010/12/01 20:24:16.0904 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
2010/12/01 20:24:16.0956 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
2010/12/01 20:24:17.0002 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
2010/12/01 20:24:17.0227 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
2010/12/01 20:24:17.0414 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
2010/12/01 20:24:17.0462 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
2010/12/01 20:24:17.0542 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
2010/12/01 20:24:17.0657 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
2010/12/01 20:24:17.0730 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
2010/12/01 20:24:18.0087 nvlddmkm (64fa050c9ce122792eed58b275d07c55) C:\Windows\system32\DRIVERS\nvlddmkm.sys
2010/12/01 20:24:18.0525 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
2010/12/01 20:24:18.0569 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
2010/12/01 20:24:18.0622 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
2010/12/01 20:24:18.0718 OEM04Vfx (86326062a90494bdd79ce383511d7d69) C:\Windows\system32\DRIVERS\OEM04Vfx.sys
2010/12/01 20:24:18.0762 OEM04Vid (40e9bfd9f64dfb32c1eafbaa0576c55d) C:\Windows\system32\DRIVERS\OEM04Vid.sys
2010/12/01 20:24:18.0843 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
2010/12/01 20:24:18.0976 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
2010/12/01 20:24:19.0013 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
2010/12/01 20:24:19.0055 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
2010/12/01 20:24:19.0118 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
2010/12/01 20:24:19.0162 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
2010/12/01 20:24:19.0208 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
2010/12/01 20:24:19.0269 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
2010/12/01 20:24:19.0309 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
2010/12/01 20:24:19.0420 pfc (6c1618a07b49e3873582b6449e744088) C:\Windows\system32\drivers\pfc.sys
2010/12/01 20:24:19.0543 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
2010/12/01 20:24:19.0580 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
2010/12/01 20:24:19.0634 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
2010/12/01 20:24:19.0726 PxHelp20 (feffcfdc528764a04c8ed63d5fa6e711) C:\Windows\system32\Drivers\PxHelp20.sys
2010/12/01 20:24:19.0807 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
2010/12/01 20:24:19.0900 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
2010/12/01 20:24:19.0958 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
2010/12/01 20:24:20.0050 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
2010/12/01 20:24:20.0136 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
2010/12/01 20:24:20.0218 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
2010/12/01 20:24:20.0298 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
2010/12/01 20:24:20.0341 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
2010/12/01 20:24:20.0389 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
2010/12/01 20:24:20.0431 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
2010/12/01 20:24:20.0469 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
2010/12/01 20:24:20.0559 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
2010/12/01 20:24:20.0612 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
2010/12/01 20:24:20.0660 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
2010/12/01 20:24:20.0713 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
2010/12/01 20:24:20.0763 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
2010/12/01 20:24:20.0862 rimmptsk (7a6648b61661b1421ffab762e391e33f) C:\Windows\system32\DRIVERS\rimmptsk.sys
2010/12/01 20:24:20.0923 rimsptsk (d0a35b7670aa3558eaab483f64446496) C:\Windows\system32\DRIVERS\rimsptsk.sys
2010/12/01 20:24:20.0962 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\Windows\system32\DRIVERS\rixdptsk.sys
2010/12/01 20:24:21.0134 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
2010/12/01 20:24:21.0218 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
2010/12/01 20:24:21.0323 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
2010/12/01 20:24:21.0379 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
2010/12/01 20:24:21.0486 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
2010/12/01 20:24:21.0587 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2010/12/01 20:24:21.0662 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
2010/12/01 20:24:21.0700 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
2010/12/01 20:24:21.0741 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
2010/12/01 20:24:21.0822 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
2010/12/01 20:24:21.0857 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
2010/12/01 20:24:21.0889 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
2010/12/01 20:24:21.0926 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
2010/12/01 20:24:21.0976 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
2010/12/01 20:24:22.0017 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2010/12/01 20:24:22.0050 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
2010/12/01 20:24:22.0093 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
2010/12/01 20:24:22.0147 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
2010/12/01 20:24:22.0292 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
2010/12/01 20:24:22.0292 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
2010/12/01 20:24:22.0301 sptd - detected Locked file (1)
2010/12/01 20:24:22.0392 srv (dd0dd124d95390fdffa7fb6283923ed4) C:\Windows\system32\DRIVERS\srv.sys
2010/12/01 20:24:22.0432 srv2 (59ef6d9c690e89d51b0692ccb13a06fc) C:\Windows\system32\DRIVERS\srv2.sys
2010/12/01 20:24:22.0479 srvnet (08f28676802b58138e48a2b40caf6204) C:\Windows\system32\DRIVERS\srvnet.sys
2010/12/01 20:24:22.0584 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
2010/12/01 20:24:22.0674 STHDA (6a2a5e809c2c0178326d92b19ee4aad3) C:\Windows\system32\drivers\stwrt.sys
2010/12/01 20:24:22.0765 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
2010/12/01 20:24:22.0811 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
2010/12/01 20:24:22.0882 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
2010/12/01 20:24:22.0983 SynTP (dd17b63f26430e179ef6bdef5ac735bd) C:\Windows\system32\DRIVERS\SynTP.sys
2010/12/01 20:24:23.0131 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
2010/12/01 20:24:23.0280 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
2010/12/01 20:24:23.0393 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
2010/12/01 20:24:23.0444 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
2010/12/01 20:24:23.0478 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
2010/12/01 20:24:23.0523 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
2010/12/01 20:24:23.0560 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
2010/12/01 20:24:23.0664 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
2010/12/01 20:24:23.0712 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
2010/12/01 20:24:23.0754 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
2010/12/01 20:24:23.0814 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
2010/12/01 20:24:23.0876 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
2010/12/01 20:24:23.0923 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
2010/12/01 20:24:23.0954 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
2010/12/01 20:24:24.0025 USBAAPL (026f7f224f088ee11e383bca448fff81) C:\Windows\system32\Drivers\usbaapl.sys
2010/12/01 20:24:24.0113 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
2010/12/01 20:24:24.0148 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
2010/12/01 20:24:24.0185 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
2010/12/01 20:24:24.0217 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
2010/12/01 20:24:24.0274 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
2010/12/01 20:24:24.0321 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
2010/12/01 20:24:24.0411 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
2010/12/01 20:24:24.0480 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
2010/12/01 20:24:24.0523 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2010/12/01 20:24:24.0560 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
2010/12/01 20:24:24.0632 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
2010/12/01 20:24:24.0683 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
2010/12/01 20:24:24.0715 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
2010/12/01 20:24:24.0773 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
2010/12/01 20:24:24.0825 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
2010/12/01 20:24:24.0863 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
2010/12/01 20:24:24.0911 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
2010/12/01 20:24:24.0996 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
2010/12/01 20:24:25.0038 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
2010/12/01 20:24:25.0121 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
2010/12/01 20:24:25.0171 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
2010/12/01 20:24:25.0236 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
2010/12/01 20:24:25.0310 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
2010/12/01 20:24:25.0357 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
2010/12/01 20:24:25.0424 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
2010/12/01 20:24:25.0529 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/12/01 20:24:25.0612 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/12/01 20:24:25.0734 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
2010/12/01 20:24:25.0789 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
2010/12/01 20:24:25.0911 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
2010/12/01 20:24:25.0961 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
2010/12/01 20:24:26.0094 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
2010/12/01 20:24:26.0169 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2010/12/01 20:24:26.0237 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
2010/12/01 20:24:26.0298 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
2010/12/01 20:24:26.0329 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
2010/12/01 20:24:26.0416 \HardDisk0 - detected Rootkit.Win32.TDSS.tdl4 (0)
2010/12/01 20:24:26.0424 ================================================================================
2010/12/01 20:24:26.0424 Scan finished
2010/12/01 20:24:26.0424 ================================================================================
2010/12/01 20:24:26.0443 Detected object count: 2
2010/12/01 20:24:49.0874 Locked file(sptd) - User select action: Skip
2010/12/01 20:24:49.0951 \HardDisk0 - will be cured after reboot
2010/12/01 20:24:49.0953 Rootkit.Win32.TDSS.tdl4(\HardDisk0) - User select action: Cure
2010/12/01 20:24:54.0079 Deinitialize success

C:\TDSSKiller.2.4.10.0_01.12.2010_21.40.30_log.txt


2010/12/01 21:40:30.0162 TDSS rootkit removing tool 2.4.10.0 Nov 28 2010 18:35:56
2010/12/01 21:40:30.0162 ================================================================================
2010/12/01 21:40:30.0162 SystemInfo:
2010/12/01 21:40:30.0162
2010/12/01 21:40:30.0162 OS Version: 6.1.7600 ServicePack: 0.0
2010/12/01 21:40:30.0162 Product type: Workstation
2010/12/01 21:40:30.0162 ComputerName: DAN-PC
2010/12/01 21:40:30.0162 UserName: Dan
2010/12/01 21:40:30.0162 Windows directory: C:\Windows
2010/12/01 21:40:30.0162 System windows directory: C:\Windows
2010/12/01 21:40:30.0162 Processor architecture: Intel x86
2010/12/01 21:40:30.0162 Number of processors: 2
2010/12/01 21:40:30.0162 Page size: 0x1000
2010/12/01 21:40:30.0162 Boot type: Normal boot
2010/12/01 21:40:30.0162 ================================================================================
2010/12/01 21:40:34.0218 Initialize success
2010/12/01 21:40:36.0558 ================================================================================
2010/12/01 21:40:36.0558 Scan started
2010/12/01 21:40:36.0558 Mode: Manual;
2010/12/01 21:40:36.0558 ================================================================================
2010/12/01 21:40:37.0073 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
2010/12/01 21:40:37.0136 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
2010/12/01 21:40:37.0198 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
2010/12/01 21:40:37.0276 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
2010/12/01 21:40:37.0338 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
2010/12/01 21:40:37.0416 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
2010/12/01 21:40:37.0510 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
2010/12/01 21:40:37.0572 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
2010/12/01 21:40:37.0666 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
2010/12/01 21:40:37.0713 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
2010/12/01 21:40:37.0760 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
2010/12/01 21:40:37.0806 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
2010/12/01 21:40:37.0853 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
2010/12/01 21:40:37.0884 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
2010/12/01 21:40:37.0931 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
2010/12/01 21:40:37.0978 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
2010/12/01 21:40:38.0009 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
2010/12/01 21:40:38.0056 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
2010/12/01 21:40:38.0181 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
2010/12/01 21:40:38.0259 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
2010/12/01 21:40:38.0352 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
2010/12/01 21:40:38.0384 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
2010/12/01 21:40:38.0477 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
2010/12/01 21:40:38.0555 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
2010/12/01 21:40:38.0602 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
2010/12/01 21:40:38.0680 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
2010/12/01 21:40:38.0727 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
2010/12/01 21:40:38.0758 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2010/12/01 21:40:38.0805 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2010/12/01 21:40:38.0852 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
2010/12/01 21:40:38.0898 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
2010/12/01 21:40:38.0945 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
2010/12/01 21:40:38.0976 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
2010/12/01 21:40:39.0008 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
2010/12/01 21:40:39.0304 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
2010/12/01 21:40:39.0366 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
2010/12/01 21:40:39.0444 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
2010/12/01 21:40:39.0522 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
2010/12/01 21:40:39.0569 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
2010/12/01 21:40:39.0616 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
2010/12/01 21:40:39.0663 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
2010/12/01 21:40:39.0725 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
2010/12/01 21:40:39.0772 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
2010/12/01 21:40:39.0819 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
2010/12/01 21:40:39.0928 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
2010/12/01 21:40:40.0006 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
2010/12/01 21:40:40.0068 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
2010/12/01 21:40:40.0115 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
2010/12/01 21:40:40.0240 DLABMFSM (a53723176d0002feb486eff8e17812f2) C:\Windows\system32\DLA\DLABMFSM.SYS
2010/12/01 21:40:40.0287 DLABOIOM (d4587063acea776699251e177d719586) C:\Windows\system32\DLA\DLABOIOM.SYS
2010/12/01 21:40:40.0318 DLACDBHM (5230cdb7e715f3a3b4a882e254cdd35d) C:\Windows\system32\Drivers\DLACDBHM.SYS
2010/12/01 21:40:40.0349 DLADResM (c950c2e7b9ed1a4fc4a2ac7ec044f1d6) C:\Windows\system32\DLA\DLADResM.SYS
2010/12/01 21:40:40.0396 DLAIFS_M (24400137e387a24410c52a591f3cfb4d) C:\Windows\system32\DLA\DLAIFS_M.SYS
2010/12/01 21:40:40.0427 DLAOPIOM (29a303feceb28641ecebdae89eb71c63) C:\Windows\system32\DLA\DLAOPIOM.SYS
2010/12/01 21:40:40.0458 DLAPoolM (c93e33a22a1ae0c5508f3fb1f6d0a50c) C:\Windows\system32\DLA\DLAPoolM.SYS
2010/12/01 21:40:40.0536 DLARTL_M (77fe51f0f8d86804cb81f6ef6bfb86dd) C:\Windows\system32\Drivers\DLARTL_M.SYS
2010/12/01 21:40:40.0583 DLAUDFAM (b953498c35a31e5ac98f49adbcf3e627) C:\Windows\system32\DLA\DLAUDFAM.SYS
2010/12/01 21:40:40.0614 DLAUDF_M (4897704c093c1f59ce58fc65e1e1ef1e) C:\Windows\system32\DLA\DLAUDF_M.SYS
2010/12/01 21:40:40.0739 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
2010/12/01 21:40:40.0786 DRVMCDB (c00440385cf9f3d142917c63f989e244) C:\Windows\system32\Drivers\DRVMCDB.SYS
2010/12/01 21:40:40.0817 DRVNDDM (ffc371525aa55d1bae18715ebcb8797c) C:\Windows\system32\Drivers\DRVNDDM.SYS
2010/12/01 21:40:40.0880 DSI_SiUSBXp_3_1 (bc9c2ef22ee0320c079e3ff9b4d29951) C:\Windows\system32\drivers\DSI_SiUSBXp_3_1.sys
2010/12/01 21:40:40.0958 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys
2010/12/01 21:40:41.0160 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
2010/12/01 21:40:41.0363 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
2010/12/01 21:40:41.0519 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
2010/12/01 21:40:41.0613 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
2010/12/01 21:40:41.0675 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
2010/12/01 21:40:41.0722 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
2010/12/01 21:40:41.0784 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
2010/12/01 21:40:41.0831 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
2010/12/01 21:40:41.0878 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
2010/12/01 21:40:41.0925 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
2010/12/01 21:40:41.0987 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
2010/12/01 21:40:42.0018 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
2010/12/01 21:40:42.0065 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
2010/12/01 21:40:42.0112 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
2010/12/01 21:40:42.0174 GEARAspiWDM (f2f431d1573ee632975c524418655b84) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2010/12/01 21:40:42.0237 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
2010/12/01 21:40:42.0330 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
2010/12/01 21:40:42.0408 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
2010/12/01 21:40:42.0455 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
2010/12/01 21:40:42.0502 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
2010/12/01 21:40:42.0549 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
2010/12/01 21:40:42.0611 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
2010/12/01 21:40:42.0689 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
2010/12/01 21:40:42.0752 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
2010/12/01 21:40:42.0798 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
2010/12/01 21:40:42.0845 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
2010/12/01 21:40:42.0923 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
2010/12/01 21:40:42.0986 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
2010/12/01 21:40:43.0095 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
2010/12/01 21:40:43.0126 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
2010/12/01 21:40:43.0220 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2010/12/01 21:40:43.0266 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
2010/12/01 21:40:43.0313 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
2010/12/01 21:40:43.0376 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
2010/12/01 21:40:43.0407 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
2010/12/01 21:40:43.0469 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
2010/12/01 21:40:43.0532 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
2010/12/01 21:40:43.0578 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
2010/12/01 21:40:43.0625 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
2010/12/01 21:40:43.0688 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
2010/12/01 21:40:43.0797 LHidFilt (dd83dc92463fce6324fd30a13d17d0da) C:\Windows\system32\DRIVERS\LHidFilt.Sys
2010/12/01 21:40:43.0875 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
2010/12/01 21:40:43.0937 LMouFilt (8fe0008e183ff0293a925b78a5581c5f) C:\Windows\system32\DRIVERS\LMouFilt.Sys
2010/12/01 21:40:44.0031 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
2010/12/01 21:40:44.0078 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
2010/12/01 21:40:44.0124 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2010/12/01 21:40:44.0171 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2010/12/01 21:40:44.0234 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
2010/12/01 21:40:44.0265 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
2010/12/01 21:40:44.0327 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
2010/12/01 21:40:44.0374 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
2010/12/01 21:40:44.0436 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
2010/12/01 21:40:44.0468 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
2010/12/01 21:40:44.0514 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
2010/12/01 21:40:44.0561 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
2010/12/01 21:40:44.0624 MpFilter (c98301ad8173a2235a9ab828955c32bb) C:\Windows\system32\DRIVERS\MpFilter.sys
2010/12/01 21:40:44.0670 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
2010/12/01 21:40:44.0717 MpNWMon (aeb186afff5d9cfed823c15d846aac3b) C:\Windows\system32\DRIVERS\MpNWMon.sys
2010/12/01 21:40:44.0764 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
2010/12/01 21:40:44.0826 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
2010/12/01 21:40:44.0920 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys
2010/12/01 21:40:44.0967 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2010/12/01 21:40:44.0998 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2010/12/01 21:40:45.0076 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
2010/12/01 21:40:45.0138 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
2010/12/01 21:40:45.0216 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
2010/12/01 21:40:45.0248 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
2010/12/01 21:40:45.0310 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
2010/12/01 21:40:45.0372 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
2010/12/01 21:40:45.0435 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
2010/12/01 21:40:45.0482 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
2010/12/01 21:40:45.0528 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
2010/12/01 21:40:45.0575 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
2010/12/01 21:40:45.0638 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
2010/12/01 21:40:45.0669 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
2010/12/01 21:40:45.0716 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
2010/12/01 21:40:45.0778 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
2010/12/01 21:40:45.0840 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
2010/12/01 21:40:45.0903 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
2010/12/01 21:40:45.0965 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
2010/12/01 21:40:45.0996 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
2010/12/01 21:40:46.0043 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
2010/12/01 21:40:46.0074 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
2010/12/01 21:40:46.0106 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
2010/12/01 21:40:46.0152 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
2010/12/01 21:40:46.0386 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
2010/12/01 21:40:46.0527 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
2010/12/01 21:40:46.0574 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
2010/12/01 21:40:46.0620 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
2010/12/01 21:40:46.0730 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
2010/12/01 21:40:46.0808 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
2010/12/01 21:40:47.0120 nvlddmkm (64fa050c9ce122792eed58b275d07c55) C:\Windows\system32\DRIVERS\nvlddmkm.sys
2010/12/01 21:40:47.0369 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
2010/12/01 21:40:47.0416 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
2010/12/01 21:40:47.0463 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
2010/12/01 21:40:47.0556 OEM04Vfx (86326062a90494bdd79ce383511d7d69) C:\Windows\system32\DRIVERS\OEM04Vfx.sys
2010/12/01 21:40:47.0603 OEM04Vid (40e9bfd9f64dfb32c1eafbaa0576c55d) C:\Windows\system32\DRIVERS\OEM04Vid.sys
2010/12/01 21:40:47.0681 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
2010/12/01 21:40:47.0759 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
2010/12/01 21:40:47.0806 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
2010/12/01 21:40:47.0853 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
2010/12/01 21:40:47.0900 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
2010/12/01 21:40:47.0946 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
2010/12/01 21:40:47.0993 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
2010/12/01 21:40:48.0040 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
2010/12/01 21:40:48.0087 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
2010/12/01 21:40:48.0227 pfc (6c1618a07b49e3873582b6449e744088) C:\Windows\system32\drivers\pfc.sys
2010/12/01 21:40:48.0399 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
2010/12/01 21:40:48.0430 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
2010/12/01 21:40:48.0492 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
2010/12/01 21:40:48.0586 PxHelp20 (feffcfdc528764a04c8ed63d5fa6e711) C:\Windows\system32\Drivers\PxHelp20.sys
2010/12/01 21:40:48.0664 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
2010/12/01 21:40:48.0789 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
2010/12/01 21:40:48.0851 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
2010/12/01 21:40:48.0882 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
2010/12/01 21:40:48.0976 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
2010/12/01 21:40:49.0054 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
2010/12/01 21:40:49.0116 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
2010/12/01 21:40:49.0163 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
2010/12/01 21:40:49.0210 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
2010/12/01 21:40:49.0241 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
2010/12/01 21:40:49.0304 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
2010/12/01 21:40:49.0366 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
2010/12/01 21:40:49.0413 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
2010/12/01 21:40:49.0475 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
2010/12/01 21:40:49.0538 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
2010/12/01 21:40:49.0600 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
2010/12/01 21:40:49.0694 rimmptsk (7a6648b61661b1421ffab762e391e33f) C:\Windows\system32\DRIVERS\rimmptsk.sys
2010/12/01 21:40:49.0756 rimsptsk (d0a35b7670aa3558eaab483f64446496) C:\Windows\system32\DRIVERS\rimsptsk.sys
2010/12/01 21:40:49.0818 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\Windows\system32\DRIVERS\rixdptsk.sys
2010/12/01 21:40:50.0006 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
2010/12/01 21:40:50.0068 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
2010/12/01 21:40:50.0130 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
2010/12/01 21:40:50.0193 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
2010/12/01 21:40:50.0302 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
2010/12/01 21:40:50.0396 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2010/12/01 21:40:50.0489 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
2010/12/01 21:40:50.0536 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
2010/12/01 21:40:50.0567 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
2010/12/01 21:40:50.0661 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
2010/12/01 21:40:50.0692 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
2010/12/01 21:40:50.0739 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
2010/12/01 21:40:50.0786 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
2010/12/01 21:40:50.0848 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
2010/12/01 21:40:50.0895 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2010/12/01 21:40:50.0926 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
2010/12/01 21:40:50.0973 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
2010/12/01 21:40:51.0020 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
2010/12/01 21:40:51.0160 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
2010/12/01 21:40:51.0160 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
2010/12/01 21:40:51.0160 sptd - detected Locked file (1)
2010/12/01 21:40:51.0238 srv (dd0dd124d95390fdffa7fb6283923ed4) C:\Windows\system32\DRIVERS\srv.sys
2010/12/01 21:40:51.0285 srv2 (59ef6d9c690e89d51b0692ccb13a06fc) C:\Windows\system32\DRIVERS\srv2.sys
2010/12/01 21:40:51.0332 srvnet (08f28676802b58138e48a2b40caf6204) C:\Windows\system32\DRIVERS\srvnet.sys
2010/12/01 21:40:51.0441 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
2010/12/01 21:40:51.0534 STHDA (6a2a5e809c2c0178326d92b19ee4aad3) C:\Windows\system32\drivers\stwrt.sys
2010/12/01 21:40:51.0800 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
2010/12/01 21:40:51.0862 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
2010/12/01 21:40:51.0924 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
2010/12/01 21:40:52.0034 SynTP (dd17b63f26430e179ef6bdef5ac735bd) C:\Windows\system32\DRIVERS\SynTP.sys
2010/12/01 21:40:52.0190 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
2010/12/01 21:40:52.0346 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
2010/12/01 21:40:52.0439 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
2010/12/01 21:40:52.0486 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
2010/12/01 21:40:52.0533 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
2010/12/01 21:40:52.0580 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
2010/12/01 21:40:52.0611 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
2010/12/01 21:40:52.0767 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
2010/12/01 21:40:52.0845 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
2010/12/01 21:40:52.0892 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
2010/12/01 21:40:52.0938 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
2010/12/01 21:40:53.0048 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
2010/12/01 21:40:53.0110 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
2010/12/01 21:40:53.0157 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
2010/12/01 21:40:53.0235 USBAAPL (026f7f224f088ee11e383bca448fff81) C:\Windows\system32\Drivers\usbaapl.sys
2010/12/01 21:40:53.0344 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
2010/12/01 21:40:53.0406 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
2010/12/01 21:40:53.0469 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
2010/12/01 21:40:53.0516 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
2010/12/01 21:40:53.0609 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
2010/12/01 21:40:53.0656 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
2010/12/01 21:40:53.0703 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
2010/12/01 21:40:53.0781 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
2010/12/01 21:40:53.0828 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2010/12/01 21:40:53.0874 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
2010/12/01 21:40:53.0952 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
2010/12/01 21:40:53.0999 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
2010/12/01 21:40:54.0030 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
2010/12/01 21:40:54.0077 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
2010/12/01 21:40:54.0124 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
2010/12/01 21:40:54.0171 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
2010/12/01 21:40:54.0202 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
2010/12/01 21:40:54.0280 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
2010/12/01 21:40:54.0342 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
2010/12/01 21:40:54.0405 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
2010/12/01 21:40:54.0467 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
2010/12/01 21:40:54.0514 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
2010/12/01 21:40:54.0576 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
2010/12/01 21:40:54.0623 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
2010/12/01 21:40:54.0686 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
2010/12/01 21:40:54.0748 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/12/01 21:40:54.0779 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/12/01 21:40:54.0888 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
2010/12/01 21:40:54.0951 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
2010/12/01 21:40:55.0076 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
2010/12/01 21:40:55.0154 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
2010/12/01 21:40:55.0294 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
2010/12/01 21:40:55.0403 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2010/12/01 21:40:55.0497 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
2010/12/01 21:40:55.0590 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
2010/12/01 21:40:55.0637 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
2010/12/01 21:40:55.0746 ================================================================================
2010/12/01 21:40:55.0746 Scan finished
2010/12/01 21:40:55.0746 ================================================================================
2010/12/01 21:40:55.0762 Detected object count: 1
2010/12/01 21:44:42.0543 HKLM\SYSTEM\ControlSet001\services\sptd - will be deleted after reboot
2010/12/01 21:44:42.0606 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted after reboot
2010/12/01 21:44:42.0606 C:\Windows\system32\Drivers\sptd.sys - will be deleted after reboot
2010/12/01 21:44:42.0606 Locked file(sptd) - User select action: Delete
2010/12/01 21:44:49.0563 Deinitialize success

C:\TDSSKiller.2.4.10.0_01.12.2010_22.01.04_log.txt


2010/12/01 22:01:04.0180 TDSS rootkit removing tool 2.4.10.0 Nov 28 2010 18:35:56
2010/12/01 22:01:04.0180 ================================================================================
2010/12/01 22:01:04.0180 SystemInfo:
2010/12/01 22:01:04.0180
2010/12/01 22:01:04.0180 OS Version: 6.1.7600 ServicePack: 0.0
2010/12/01 22:01:04.0180 Product type: Workstation
2010/12/01 22:01:04.0180 ComputerName: DAN-PC
2010/12/01 22:01:04.0180 UserName: Dan
2010/12/01 22:01:04.0180 Windows directory: C:\Windows
2010/12/01 22:01:04.0180 System windows directory: C:\Windows
2010/12/01 22:01:04.0180 Processor architecture: Intel x86
2010/12/01 22:01:04.0180 Number of processors: 2
2010/12/01 22:01:04.0180 Page size: 0x1000
2010/12/01 22:01:04.0180 Boot type: Normal boot
2010/12/01 22:01:04.0180 ================================================================================
2010/12/01 22:01:05.0194 Initialize success
2010/12/01 22:01:06.0956 ================================================================================
2010/12/01 22:01:06.0956 Scan started
2010/12/01 22:01:06.0956 Mode: Manual;
2010/12/01 22:01:06.0956 ================================================================================
2010/12/01 22:01:07.0814 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
2010/12/01 22:01:07.0877 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
2010/12/01 22:01:07.0970 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
2010/12/01 22:01:08.0033 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
2010/12/01 22:01:08.0095 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
2010/12/01 22:01:08.0142 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
2010/12/01 22:01:08.0236 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
2010/12/01 22:01:08.0282 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
2010/12/01 22:01:08.0360 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
2010/12/01 22:01:08.0407 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
2010/12/01 22:01:08.0454 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
2010/12/01 22:01:08.0485 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
2010/12/01 22:01:08.0532 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
2010/12/01 22:01:08.0579 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
2010/12/01 22:01:08.0626 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
2010/12/01 22:01:08.0657 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
2010/12/01 22:01:08.0688 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
2010/12/01 22:01:08.0719 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
2010/12/01 22:01:08.0797 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
2010/12/01 22:01:08.0828 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
2010/12/01 22:01:08.0891 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
2010/12/01 22:01:08.0922 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
2010/12/01 22:01:08.0984 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
2010/12/01 22:01:09.0062 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
2010/12/01 22:01:09.0109 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
2010/12/01 22:01:09.0156 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
2010/12/01 22:01:09.0187 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
2010/12/01 22:01:09.0234 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2010/12/01 22:01:09.0265 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2010/12/01 22:01:09.0312 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
2010/12/01 22:01:09.0359 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
2010/12/01 22:01:09.0390 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
2010/12/01 22:01:09.0406 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
2010/12/01 22:01:09.0437 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
2010/12/01 22:01:09.0718 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
2010/12/01 22:01:09.0780 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
2010/12/01 22:01:09.0858 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
2010/12/01 22:01:09.0936 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
2010/12/01 22:01:09.0983 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
2010/12/01 22:01:10.0030 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
2010/12/01 22:01:10.0076 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
2010/12/01 22:01:10.0154 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
2010/12/01 22:01:10.0201 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
2010/12/01 22:01:10.0248 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
2010/12/01 22:01:10.0357 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
2010/12/01 22:01:10.0451 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
2010/12/01 22:01:10.0513 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
2010/12/01 22:01:10.0576 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
2010/12/01 22:01:10.0669 DLABMFSM (a53723176d0002feb486eff8e17812f2) C:\Windows\system32\DLA\DLABMFSM.SYS
2010/12/01 22:01:10.0700 DLABOIOM (d4587063acea776699251e177d719586) C:\Windows\system32\DLA\DLABOIOM.SYS
2010/12/01 22:01:10.0732 DLACDBHM (5230cdb7e715f3a3b4a882e254cdd35d) C:\Windows\system32\Drivers\DLACDBHM.SYS
2010/12/01 22:01:10.0778 DLADResM (c950c2e7b9ed1a4fc4a2ac7ec044f1d6) C:\Windows\system32\DLA\DLADResM.SYS
2010/12/01 22:01:10.0810 DLAIFS_M (24400137e387a24410c52a591f3cfb4d) C:\Windows\system32\DLA\DLAIFS_M.SYS
2010/12/01 22:01:10.0841 DLAOPIOM (29a303feceb28641ecebdae89eb71c63) C:\Windows\system32\DLA\DLAOPIOM.SYS
2010/12/01 22:01:10.0872 DLAPoolM (c93e33a22a1ae0c5508f3fb1f6d0a50c) C:\Windows\system32\DLA\DLAPoolM.SYS
2010/12/01 22:01:10.0934 DLARTL_M (77fe51f0f8d86804cb81f6ef6bfb86dd) C:\Windows\system32\Drivers\DLARTL_M.SYS
2010/12/01 22:01:11.0012 DLAUDFAM (b953498c35a31e5ac98f49adbcf3e627) C:\Windows\system32\DLA\DLAUDFAM.SYS
2010/12/01 22:01:11.0044 DLAUDF_M (4897704c093c1f59ce58fc65e1e1ef1e) C:\Windows\system32\DLA\DLAUDF_M.SYS
2010/12/01 22:01:11.0153 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
2010/12/01 22:01:11.0184 DRVMCDB (c00440385cf9f3d142917c63f989e244) C:\Windows\system32\Drivers\DRVMCDB.SYS
2010/12/01 22:01:11.0231 DRVNDDM (ffc371525aa55d1bae18715ebcb8797c) C:\Windows\system32\Drivers\DRVNDDM.SYS
2010/12/01 22:01:11.0293 DSI_SiUSBXp_3_1 (bc9c2ef22ee0320c079e3ff9b4d29951) C:\Windows\system32\drivers\DSI_SiUSBXp_3_1.sys
2010/12/01 22:01:11.0356 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys
2010/12/01 22:01:11.0543 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
2010/12/01 22:01:11.0730 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
2010/12/01 22:01:11.0777 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
2010/12/01 22:01:11.0870 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
2010/12/01 22:01:12.0073 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
2010/12/01 22:01:12.0182 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
2010/12/01 22:01:12.0229 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
2010/12/01 22:01:12.0276 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
2010/12/01 22:01:12.0338 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
2010/12/01 22:01:12.0385 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
2010/12/01 22:01:12.0432 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
2010/12/01 22:01:12.0463 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
2010/12/01 22:01:12.0510 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
2010/12/01 22:01:12.0557 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
2010/12/01 22:01:12.0619 GEARAspiWDM (f2f431d1573ee632975c524418655b84) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2010/12/01 22:01:12.0666 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
2010/12/01 22:01:12.0744 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
2010/12/01 22:01:12.0822 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
2010/12/01 22:01:12.0853 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
2010/12/01 22:01:12.0900 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
2010/12/01 22:01:12.0947 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
2010/12/01 22:01:13.0009 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
2010/12/01 22:01:13.0087 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
2010/12/01 22:01:13.0165 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
2010/12/01 22:01:13.0259 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
2010/12/01 22:01:13.0306 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
2010/12/01 22:01:13.0384 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
2010/12/01 22:01:13.0462 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
2010/12/01 22:01:13.0524 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
2010/12/01 22:01:13.0571 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
2010/12/01 22:01:13.0633 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2010/12/01 22:01:13.0680 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
2010/12/01 22:01:13.0711 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
2010/12/01 22:01:13.0774 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
2010/12/01 22:01:13.0805 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
2010/12/01 22:01:13.0852 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
2010/12/01 22:01:13.0898 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
2010/12/01 22:01:13.0930 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
2010/12/01 22:01:13.0976 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
2010/12/01 22:01:14.0023 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
2010/12/01 22:01:14.0117 LHidFilt (dd83dc92463fce6324fd30a13d17d0da) C:\Windows\system32\DRIVERS\LHidFilt.Sys
2010/12/01 22:01:14.0164 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
2010/12/01 22:01:14.0226 LMouFilt (8fe0008e183ff0293a925b78a5581c5f) C:\Windows\system32\DRIVERS\LMouFilt.Sys
2010/12/01 22:01:14.0273 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
2010/12/01 22:01:14.0304 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
2010/12/01 22:01:14.0351 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2010/12/01 22:01:14.0382 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2010/12/01 22:01:14.0444 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
2010/12/01 22:01:14.0476 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
2010/12/01 22:01:14.0538 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
2010/12/01 22:01:14.0600 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
2010/12/01 22:01:14.0678 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
2010/12/01 22:01:14.0756 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
2010/12/01 22:01:14.0803 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
2010/12/01 22:01:14.0834 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
2010/12/01 22:01:14.0912 MpFilter (c98301ad8173a2235a9ab828955c32bb) C:\Windows\system32\DRIVERS\MpFilter.sys
2010/12/01 22:01:14.0959 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
2010/12/01 22:01:15.0006 MpNWMon (aeb186afff5d9cfed823c15d846aac3b) C:\Windows\system32\DRIVERS\MpNWMon.sys
2010/12/01 22:01:15.0053 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
2010/12/01 22:01:15.0115 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
2010/12/01 22:01:15.0193 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys
2010/12/01 22:01:15.0240 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2010/12/01 22:01:15.0287 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2010/12/01 22:01:15.0365 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
2010/12/01 22:01:15.0427 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
2010/12/01 22:01:15.0490 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
2010/12/01 22:01:15.0536 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
2010/12/01 22:01:15.0583 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
2010/12/01 22:01:15.0661 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
2010/12/01 22:01:15.0724 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
2010/12/01 22:01:15.0770 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
2010/12/01 22:01:15.0817 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
2010/12/01 22:01:15.0864 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
2010/12/01 22:01:15.0911 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
2010/12/01 22:01:15.0942 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
2010/12/01 22:01:15.0973 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
2010/12/01 22:01:16.0036 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
2010/12/01 22:01:16.0098 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
2010/12/01 22:01:16.0145 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
2010/12/01 22:01:16.0176 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
2010/12/01 22:01:16.0223 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
2010/12/01 22:01:16.0270 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
2010/12/01 22:01:16.0301 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
2010/12/01 22:01:16.0348 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
2010/12/01 22:01:16.0394 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
2010/12/01 22:01:16.0628 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
2010/12/01 22:01:16.0831 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
2010/12/01 22:01:16.0878 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
2010/12/01 22:01:16.0925 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
2010/12/01 22:01:17.0003 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
2010/12/01 22:01:17.0065 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
2010/12/01 22:01:17.0424 nvlddmkm (64fa050c9ce122792eed58b275d07c55) C:\Windows\system32\DRIVERS\nvlddmkm.sys
2010/12/01 22:01:17.0689 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
2010/12/01 22:01:17.0752 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
2010/12/01 22:01:17.0798 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
2010/12/01 22:01:17.0892 OEM04Vfx (86326062a90494bdd79ce383511d7d69) C:\Windows\system32\DRIVERS\OEM04Vfx.sys
2010/12/01 22:01:17.0939 OEM04Vid (40e9bfd9f64dfb32c1eafbaa0576c55d) C:\Windows\system32\DRIVERS\OEM04Vid.sys
2010/12/01 22:01:18.0017 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
2010/12/01 22:01:18.0095 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
2010/12/01 22:01:18.0126 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
2010/12/01 22:01:18.0173 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
2010/12/01 22:01:18.0235 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
2010/12/01 22:01:18.0282 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
2010/12/01 22:01:18.0313 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
2010/12/01 22:01:18.0376 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
2010/12/01 22:01:18.0422 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
2010/12/01 22:01:18.0547 pfc (6c1618a07b49e3873582b6449e744088) C:\Windows\system32\drivers\pfc.sys
2010/12/01 22:01:18.0703 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
2010/12/01 22:01:18.0734 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
2010/12/01 22:01:18.0828 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
2010/12/01 22:01:18.0922 PxHelp20 (feffcfdc528764a04c8ed63d5fa6e711) C:\Windows\system32\Drivers\PxHelp20.sys
2010/12/01 22:01:19.0046 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
2010/12/01 22:01:19.0156 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
2010/12/01 22:01:19.0218 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
2010/12/01 22:01:19.0249 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
2010/12/01 22:01:19.0343 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
2010/12/01 22:01:19.0390 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
2010/12/01 22:01:19.0468 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
2010/12/01 22:01:19.0514 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
2010/12/01 22:01:19.0546 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
2010/12/01 22:01:19.0592 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
2010/12/01 22:01:19.0624 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
2010/12/01 22:01:19.0717 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
2010/12/01 22:01:19.0811 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
2010/12/01 22:01:19.0858 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
2010/12/01 22:01:19.0904 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
2010/12/01 22:01:19.0982 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
2010/12/01 22:01:20.0076 rimmptsk (7a6648b61661b1421ffab762e391e33f) C:\Windows\system32\DRIVERS\rimmptsk.sys
2010/12/01 22:01:20.0170 rimsptsk (d0a35b7670aa3558eaab483f64446496) C:\Windows\system32\DRIVERS\rimsptsk.sys
2010/12/01 22:01:20.0248 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\Windows\system32\DRIVERS\rixdptsk.sys
2010/12/01 22:01:20.0435 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
2010/12/01 22:01:20.0497 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
2010/12/01 22:01:20.0560 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
2010/12/01 22:01:20.0622 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
2010/12/01 22:01:20.0716 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
2010/12/01 22:01:20.0825 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2010/12/01 22:01:20.0903 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
2010/12/01 22:01:20.0950 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
2010/12/01 22:01:20.0981 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
2010/12/01 22:01:21.0074 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
2010/12/01 22:01:21.0106 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
2010/12/01 22:01:21.0137 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
2010/12/01 22:01:21.0184 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
2010/12/01 22:01:21.0230 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
2010/12/01 22:01:21.0277 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2010/12/01 22:01:21.0308 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
2010/12/01 22:01:21.0340 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
2010/12/01 22:01:21.0402 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
2010/12/01 22:01:21.0496 srv (dd0dd124d95390fdffa7fb6283923ed4) C:\Windows\system32\DRIVERS\srv.sys
2010/12/01 22:01:21.0542 srv2 (59ef6d9c690e89d51b0692ccb13a06fc) C:\Windows\system32\DRIVERS\srv2.sys
2010/12/01 22:01:21.0589 srvnet (08f28676802b58138e48a2b40caf6204) C:\Windows\system32\DRIVERS\srvnet.sys
2010/12/01 22:01:21.0683 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
2010/12/01 22:01:21.0776 STHDA (6a2a5e809c2c0178326d92b19ee4aad3) C:\Windows\system32\drivers\stwrt.sys
2010/12/01 22:01:21.0886 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
2010/12/01 22:01:21.0932 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
2010/12/01 22:01:21.0995 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
2010/12/01 22:01:22.0088 SynTP (dd17b63f26430e179ef6bdef5ac735bd) C:\Windows\system32\DRIVERS\SynTP.sys
2010/12/01 22:01:22.0244 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
2010/12/01 22:01:22.0385 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
2010/12/01 22:01:22.0478 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
2010/12/01 22:01:22.0525 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
2010/12/01 22:01:22.0572 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
2010/12/01 22:01:22.0619 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
2010/12/01 22:01:22.0650 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
2010/12/01 22:01:22.0775 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
2010/12/01 22:01:22.0822 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
2010/12/01 22:01:22.0853 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
2010/12/01 22:01:22.0884 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
2010/12/01 22:01:22.0962 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
2010/12/01 22:01:23.0009 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
2010/12/01 22:01:23.0040 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
2010/12/01 22:01:23.0102 USBAAPL (026f7f224f088ee11e383bca448fff81) C:\Windows\system32\Drivers\usbaapl.sys
2010/12/01 22:01:23.0196 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
2010/12/01 22:01:23.0258 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
2010/12/01 22:01:23.0290 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
2010/12/01 22:01:23.0321 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
2010/12/01 22:01:23.0383 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
2010/12/01 22:01:23.0446 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
2010/12/01 22:01:23.0492 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
2010/12/01 22:01:23.0555 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
2010/12/01 22:01:23.0586 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2010/12/01 22:01:23.0633 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
2010/12/01 22:01:23.0695 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
2010/12/01 22:01:23.0758 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
2010/12/01 22:01:23.0789 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
2010/12/01 22:01:23.0836 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
2010/12/01 22:01:23.0898 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
2010/12/01 22:01:23.0929 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
2010/12/01 22:01:23.0976 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
2010/12/01 22:01:24.0054 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
2010/12/01 22:01:24.0085 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
2010/12/01 22:01:24.0163 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
2010/12/01 22:01:24.0257 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
2010/12/01 22:01:24.0304 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
2010/12/01 22:01:24.0350 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
2010/12/01 22:01:24.0413 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
2010/12/01 22:01:24.0475 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
2010/12/01 22:01:24.0522 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/12/01 22:01:24.0553 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/12/01 22:01:24.0678 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
2010/12/01 22:01:24.0725 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
2010/12/01 22:01:24.0850 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
2010/12/01 22:01:24.0896 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
2010/12/01 22:01:25.0037 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
2010/12/01 22:01:25.0130 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2010/12/01 22:01:25.0208 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
2010/12/01 22:01:25.0302 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
2010/12/01 22:01:25.0349 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
2010/12/01 22:01:25.0458 ================================================================================
2010/12/01 22:01:25.0458 Scan finished
2010/12/01 22:01:25.0458 ================================================================================

#8 mcsb

mcsb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:41 AM

Posted 13 February 2012 - 11:43 PM

The remainder of the fixlog :)

C:\TDSSKiller.2.6.25.0_09.01.2012_03.19.00_log.txt


03:19:00.0684 1208 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
03:19:02.0260 1208 ============================================================
03:19:02.0260 1208 Current date / time: 2012/01/09 03:19:02.0260
03:19:02.0260 1208 SystemInfo:
03:19:02.0260 1208
03:19:02.0260 1208 OS Version: 6.1.7600 ServicePack: 0.0
03:19:02.0260 1208 Product type: Workstation
03:19:02.0260 1208 ComputerName: DAN-PC
03:19:02.0260 1208 UserName: Dan
03:19:02.0260 1208 Windows directory: C:\Windows
03:19:02.0260 1208 System windows directory: C:\Windows
03:19:02.0260 1208 Processor architecture: Intel x86
03:19:02.0260 1208 Number of processors: 2
03:19:02.0260 1208 Page size: 0x1000
03:19:02.0260 1208 Boot type: Normal boot
03:19:02.0260 1208 ============================================================
03:19:05.0302 1208 Initialize success
03:19:15.0598 1856 ============================================================
03:19:15.0598 1856 Scan started
03:19:15.0598 1856 Mode: Manual;
03:19:15.0598 1856 ============================================================
03:19:16.0737 1856 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
03:19:16.0768 1856 1394ohci - ok
03:19:16.0799 1856 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
03:19:16.0846 1856 ACPI - ok
03:19:16.0877 1856 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
03:19:16.0893 1856 AcpiPmi - ok
03:19:16.0940 1856 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
03:19:16.0986 1856 adp94xx - ok
03:19:17.0018 1856 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
03:19:17.0049 1856 adpahci - ok
03:19:17.0080 1856 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
03:19:17.0127 1856 adpu320 - ok
03:19:17.0189 1856 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
03:19:17.0252 1856 AFD - ok
03:19:17.0283 1856 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
03:19:17.0314 1856 agp440 - ok
03:19:17.0376 1856 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
03:19:17.0408 1856 aic78xx - ok
03:19:17.0423 1856 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
03:19:17.0439 1856 aliide - ok
03:19:17.0470 1856 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
03:19:17.0501 1856 amdagp - ok
03:19:17.0532 1856 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
03:19:17.0548 1856 amdide - ok
03:19:17.0579 1856 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
03:19:17.0595 1856 AmdK8 - ok
03:19:17.0626 1856 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
03:19:17.0642 1856 AmdPPM - ok
03:19:17.0688 1856 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
03:19:17.0720 1856 amdsata - ok
03:19:17.0751 1856 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
03:19:17.0782 1856 amdsbs - ok
03:19:17.0813 1856 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
03:19:17.0829 1856 amdxata - ok
03:19:17.0876 1856 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
03:19:17.0891 1856 AppID - ok
03:19:17.0969 1856 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
03:19:18.0000 1856 arc - ok
03:19:18.0032 1856 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
03:19:18.0063 1856 arcsas - ok
03:19:18.0125 1856 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
03:19:18.0141 1856 AsyncMac - ok
03:19:18.0156 1856 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
03:19:18.0156 1856 atapi - ok
03:19:18.0234 1856 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
03:19:18.0312 1856 b06bdrv - ok
03:19:18.0359 1856 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
03:19:18.0390 1856 b57nd60x - ok
03:19:18.0422 1856 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
03:19:18.0437 1856 Beep - ok
03:19:18.0484 1856 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
03:19:18.0515 1856 blbdrive - ok
03:19:18.0562 1856 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
03:19:18.0593 1856 bowser - ok
03:19:18.0624 1856 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
03:19:18.0656 1856 BrFiltLo - ok
03:19:18.0671 1856 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
03:19:18.0687 1856 BrFiltUp - ok
03:19:18.0749 1856 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
03:19:18.0827 1856 Brserid - ok
03:19:18.0858 1856 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
03:19:18.0921 1856 BrSerWdm - ok
03:19:18.0952 1856 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
03:19:18.0968 1856 BrUsbMdm - ok
03:19:18.0983 1856 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
03:19:19.0014 1856 BrUsbSer - ok
03:19:19.0030 1856 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
03:19:19.0061 1856 BTHMODEM - ok
03:19:19.0295 1856 catchme - ok
03:19:19.0498 1856 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
03:19:19.0529 1856 cdfs - ok
03:19:19.0560 1856 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
03:19:19.0592 1856 cdrom - ok
03:19:19.0638 1856 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
03:19:19.0654 1856 circlass - ok
03:19:19.0716 1856 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
03:19:19.0763 1856 CLFS - ok
03:19:19.0810 1856 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
03:19:19.0826 1856 CmBatt - ok
03:19:19.0857 1856 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
03:19:19.0872 1856 cmdide - ok
03:19:19.0904 1856 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
03:19:19.0982 1856 CNG - ok
03:19:20.0013 1856 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
03:19:20.0028 1856 Compbatt - ok
03:19:20.0060 1856 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
03:19:20.0091 1856 CompositeBus - ok
03:19:20.0122 1856 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
03:19:20.0138 1856 crcdisk - ok
03:19:20.0231 1856 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
03:19:20.0340 1856 CSC - ok
03:19:20.0481 1856 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
03:19:20.0496 1856 DfsC - ok
03:19:20.0590 1856 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
03:19:20.0621 1856 discache - ok
03:19:20.0652 1856 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
03:19:20.0684 1856 Disk - ok
03:19:20.0793 1856 DLABMFSM (a53723176d0002feb486eff8e17812f2) C:\Windows\system32\DLA\DLABMFSM.SYS
03:19:20.0824 1856 DLABMFSM - ok
03:19:20.0840 1856 DLABOIOM (d4587063acea776699251e177d719586) C:\Windows\system32\DLA\DLABOIOM.SYS
03:19:20.0871 1856 DLABOIOM - ok
03:19:20.0886 1856 DLACDBHM (5230cdb7e715f3a3b4a882e254cdd35d) C:\Windows\system32\Drivers\DLACDBHM.SYS
03:19:20.0902 1856 DLACDBHM - ok
03:19:20.0918 1856 DLADResM (c950c2e7b9ed1a4fc4a2ac7ec044f1d6) C:\Windows\system32\DLA\DLADResM.SYS
03:19:20.0949 1856 DLADResM - ok
03:19:20.0964 1856 DLAIFS_M (24400137e387a24410c52a591f3cfb4d) C:\Windows\system32\DLA\DLAIFS_M.SYS
03:19:21.0042 1856 DLAIFS_M - ok
03:19:21.0074 1856 DLAOPIOM (29a303feceb28641ecebdae89eb71c63) C:\Windows\system32\DLA\DLAOPIOM.SYS
03:19:21.0105 1856 DLAOPIOM - ok
03:19:21.0120 1856 DLAPoolM (c93e33a22a1ae0c5508f3fb1f6d0a50c) C:\Windows\system32\DLA\DLAPoolM.SYS
03:19:21.0136 1856 DLAPoolM - ok
03:19:21.0230 1856 DLARTL_M (77fe51f0f8d86804cb81f6ef6bfb86dd) C:\Windows\system32\Drivers\DLARTL_M.SYS
03:19:21.0230 1856 DLARTL_M - ok
03:19:21.0245 1856 DLAUDFAM (b953498c35a31e5ac98f49adbcf3e627) C:\Windows\system32\DLA\DLAUDFAM.SYS
03:19:21.0308 1856 DLAUDFAM - ok
03:19:21.0339 1856 DLAUDF_M (4897704c093c1f59ce58fc65e1e1ef1e) C:\Windows\system32\DLA\DLAUDF_M.SYS
03:19:21.0401 1856 DLAUDF_M - ok
03:19:21.0479 1856 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
03:19:21.0495 1856 drmkaud - ok
03:19:21.0526 1856 DRVMCDB (c00440385cf9f3d142917c63f989e244) C:\Windows\system32\Drivers\DRVMCDB.SYS
03:19:21.0604 1856 DRVMCDB - ok
03:19:21.0620 1856 DRVNDDM (ffc371525aa55d1bae18715ebcb8797c) C:\Windows\system32\Drivers\DRVNDDM.SYS
03:19:22.0587 1856 DRVNDDM - ok
03:19:22.0665 1856 DSI_SiUSBXp_3_1 (bc9c2ef22ee0320c079e3ff9b4d29951) C:\Windows\system32\drivers\DSI_SiUSBXp_3_1.sys
03:19:22.0680 1856 DSI_SiUSBXp_3_1 - ok
03:19:22.0743 1856 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys
03:19:22.0774 1856 DXGKrnl - ok
03:19:22.0961 1856 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
03:19:23.0133 1856 ebdrv - ok
03:19:23.0180 1856 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
03:19:23.0242 1856 elxstor - ok
03:19:23.0273 1856 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
03:19:23.0289 1856 ErrDev - ok
03:19:23.0382 1856 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
03:19:23.0414 1856 exfat - ok
03:19:23.0445 1856 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
03:19:23.0476 1856 fastfat - ok
03:19:23.0523 1856 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
03:19:23.0538 1856 fdc - ok
03:19:23.0585 1856 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
03:19:23.0616 1856 FileInfo - ok
03:19:23.0632 1856 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
03:19:23.0648 1856 Filetrace - ok
03:19:23.0694 1856 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
03:19:23.0710 1856 flpydisk - ok
03:19:23.0741 1856 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
03:19:23.0788 1856 FltMgr - ok
03:19:23.0835 1856 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
03:19:23.0850 1856 FsDepends - ok
03:19:23.0882 1856 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
03:19:23.0897 1856 Fs_Rec - ok
03:19:23.0944 1856 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
03:19:24.0006 1856 fvevol - ok
03:19:24.0038 1856 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
03:19:24.0069 1856 gagp30kx - ok
03:19:24.0116 1856 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
03:19:24.0162 1856 GEARAspiWDM - ok
03:19:24.0225 1856 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
03:19:24.0240 1856 hcw85cir - ok
03:19:24.0318 1856 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
03:19:24.0350 1856 HdAudAddService - ok
03:19:24.0396 1856 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
03:19:24.0412 1856 HDAudBus - ok
03:19:24.0459 1856 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
03:19:24.0474 1856 HidBatt - ok
03:19:24.0521 1856 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
03:19:24.0552 1856 HidBth - ok
03:19:24.0584 1856 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
03:19:24.0615 1856 HidIr - ok
03:19:24.0662 1856 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
03:19:24.0677 1856 HidUsb - ok
03:19:24.0724 1856 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
03:19:24.0755 1856 HpSAMD - ok
03:19:24.0833 1856 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
03:19:24.0911 1856 HTTP - ok
03:19:24.0958 1856 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
03:19:24.0974 1856 hwpolicy - ok
03:19:25.0020 1856 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
03:19:25.0067 1856 i8042prt - ok
03:19:25.0098 1856 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
03:19:25.0176 1856 iaStorV - ok
03:19:25.0239 1856 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
03:19:25.0254 1856 iirsp - ok
03:19:25.0301 1856 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
03:19:25.0317 1856 intelide - ok
03:19:25.0348 1856 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
03:19:25.0364 1856 intelppm - ok
03:19:25.0395 1856 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
03:19:25.0426 1856 IpFilterDriver - ok
03:19:25.0488 1856 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
03:19:25.0520 1856 IPMIDRV - ok
03:19:25.0535 1856 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
03:19:25.0582 1856 IPNAT - ok
03:19:25.0644 1856 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
03:19:25.0660 1856 IRENUM - ok
03:19:25.0691 1856 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
03:19:25.0707 1856 isapnp - ok
03:19:25.0738 1856 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
03:19:25.0785 1856 iScsiPrt - ok
03:19:25.0832 1856 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
03:19:25.0847 1856 kbdclass - ok
03:19:25.0894 1856 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
03:19:25.0925 1856 kbdhid - ok
03:19:25.0956 1856 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
03:19:25.0988 1856 KSecDD - ok
03:19:26.0034 1856 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
03:19:26.0066 1856 KSecPkg - ok
03:19:26.0128 1856 LHidFilt (dd83dc92463fce6324fd30a13d17d0da) C:\Windows\system32\DRIVERS\LHidFilt.Sys
03:19:26.0159 1856 LHidFilt - ok
03:19:26.0237 1856 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
03:19:26.0253 1856 lltdio - ok
03:19:26.0300 1856 LMouFilt (8fe0008e183ff0293a925b78a5581c5f) C:\Windows\system32\DRIVERS\LMouFilt.Sys
03:19:26.0331 1856 LMouFilt - ok
03:19:26.0378 1856 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
03:19:26.0409 1856 LSI_FC - ok
03:19:26.0440 1856 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
03:19:26.0456 1856 LSI_SAS - ok
03:19:26.0487 1856 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
03:19:26.0502 1856 LSI_SAS2 - ok
03:19:26.0534 1856 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
03:19:26.0549 1856 LSI_SCSI - ok
03:19:26.0596 1856 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
03:19:26.0627 1856 luafv - ok
03:19:26.0658 1856 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
03:19:26.0690 1856 megasas - ok
03:19:26.0736 1856 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
03:19:26.0783 1856 MegaSR - ok
03:19:26.0814 1856 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
03:19:26.0846 1856 Modem - ok
03:19:26.0877 1856 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
03:19:26.0892 1856 monitor - ok
03:19:26.0924 1856 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
03:19:26.0955 1856 mouclass - ok
03:19:26.0986 1856 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
03:19:27.0017 1856 mouhid - ok
03:19:27.0033 1856 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
03:19:27.0080 1856 mountmgr - ok
03:19:27.0142 1856 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
03:19:27.0204 1856 MpFilter - ok
03:19:27.0220 1856 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
03:19:27.0267 1856 mpio - ok
03:19:27.0423 1856 MpKsl4221f094 - ok
03:19:27.0485 1856 MpKsl5afd5cc5 - ok
03:19:27.0516 1856 MpKsla6bb7dc1 - ok
03:19:27.0563 1856 MpKslaab0231d - ok
03:19:27.0657 1856 MpKslcb8a1a4f (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F25357B-773F-409D-86AF-DC81A7999956}\MpKslcb8a1a4f.sys
03:19:27.0704 1856 MpKslcb8a1a4f - ok
03:19:27.0719 1856 MpKsld6fef2a2 - ok
03:19:27.0875 1856 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
03:19:27.0875 1856 MpNWMon - ok
03:19:27.0969 1856 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
03:19:27.0984 1856 mpsdrv - ok
03:19:28.0031 1856 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
03:19:28.0062 1856 MRxDAV - ok
03:19:28.0140 1856 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys
03:19:28.0187 1856 mrxsmb - ok
03:19:28.0203 1856 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
03:19:28.0265 1856 mrxsmb10 - ok
03:19:28.0281 1856 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
03:19:28.0312 1856 mrxsmb20 - ok
03:19:28.0359 1856 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
03:19:28.0390 1856 msahci - ok
03:19:28.0437 1856 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
03:19:28.0468 1856 msdsm - ok
03:19:28.0515 1856 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
03:19:28.0530 1856 Msfs - ok
03:19:28.0562 1856 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
03:19:28.0577 1856 mshidkmdf - ok
03:19:28.0608 1856 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
03:19:28.0624 1856 msisadrv - ok
03:19:28.0671 1856 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
03:19:28.0702 1856 MSKSSRV - ok
03:19:28.0749 1856 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
03:19:28.0764 1856 MSPCLOCK - ok
03:19:28.0796 1856 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
03:19:28.0811 1856 MSPQM - ok
03:19:28.0842 1856 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
03:19:28.0858 1856 MsRPC - ok
03:19:28.0889 1856 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
03:19:28.0920 1856 mssmbios - ok
03:19:28.0952 1856 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
03:19:28.0967 1856 MSTEE - ok
03:19:28.0998 1856 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
03:19:29.0014 1856 MTConfig - ok
03:19:29.0045 1856 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
03:19:29.0061 1856 Mup - ok
03:19:29.0123 1856 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
03:19:29.0170 1856 NativeWifiP - ok
03:19:29.0248 1856 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
03:19:29.0342 1856 NDIS - ok
03:19:29.0404 1856 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
03:19:29.0435 1856 NdisCap - ok
03:19:29.0482 1856 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
03:19:29.0498 1856 NdisTapi - ok
03:19:29.0513 1856 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
03:19:29.0544 1856 Ndisuio - ok
03:19:29.0576 1856 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
03:19:29.0607 1856 NdisWan - ok
03:19:29.0622 1856 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
03:19:29.0654 1856 NDProxy - ok
03:19:29.0700 1856 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
03:19:29.0716 1856 NetBIOS - ok
03:19:29.0747 1856 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
03:19:29.0810 1856 NetBT - ok
03:19:30.0028 1856 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
03:19:30.0200 1856 netw5v32 - ok
03:19:30.0262 1856 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
03:19:30.0293 1856 nfrd960 - ok
03:19:30.0340 1856 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
03:19:30.0356 1856 NisDrv - ok
03:19:30.0387 1856 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
03:19:30.0418 1856 Npfs - ok
03:19:30.0449 1856 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
03:19:30.0480 1856 nsiproxy - ok
03:19:30.0683 1856 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
03:19:30.0980 1856 Ntfs - ok
03:19:31.0011 1856 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
03:19:31.0011 1856 Null - ok
03:19:31.0432 1856 nvlddmkm (847b1755f7757f825305a1ffe6dac3e9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
03:19:33.0819 1856 nvlddmkm - ok
03:19:33.0912 1856 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
03:19:33.0944 1856 nvraid - ok
03:19:33.0975 1856 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
03:19:34.0006 1856 nvstor - ok
03:19:34.0053 1856 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
03:19:34.0084 1856 nv_agp - ok
03:19:34.0146 1856 OEM04Vfx (86326062a90494bdd79ce383511d7d69) C:\Windows\system32\DRIVERS\OEM04Vfx.sys
03:19:34.0162 1856 OEM04Vfx - ok
03:19:34.0193 1856 OEM04Vid (40e9bfd9f64dfb32c1eafbaa0576c55d) C:\Windows\system32\DRIVERS\OEM04Vid.sys
03:19:34.0224 1856 OEM04Vid - ok
03:19:34.0256 1856 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
03:19:34.0302 1856 ohci1394 - ok
03:19:34.0349 1856 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
03:19:34.0380 1856 Parport - ok
03:19:34.0412 1856 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
03:19:34.0427 1856 partmgr - ok
03:19:34.0458 1856 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
03:19:34.0474 1856 Parvdm - ok
03:19:34.0505 1856 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
03:19:34.0552 1856 pci - ok
03:19:34.0568 1856 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
03:19:34.0583 1856 pciide - ok
03:19:34.0614 1856 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
03:19:34.0661 1856 pcmcia - ok
03:19:34.0677 1856 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
03:19:34.0708 1856 pcw - ok
03:19:34.0755 1856 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
03:19:34.0817 1856 PEAUTH - ok
03:19:34.0895 1856 pfc (6c1618a07b49e3873582b6449e744088) C:\Windows\system32\drivers\pfc.sys
03:19:34.0926 1856 pfc - ok
03:19:34.0958 1856 pnarp - ok
03:19:35.0067 1856 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
03:19:35.0098 1856 PptpMiniport - ok
03:19:35.0129 1856 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
03:19:35.0145 1856 Processor - ok
03:19:35.0192 1856 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
03:19:35.0223 1856 Psched - ok
03:19:35.0254 1856 purendis - ok
03:19:35.0301 1856 PxHelp20 (feffcfdc528764a04c8ed63d5fa6e711) C:\Windows\system32\Drivers\PxHelp20.sys
03:19:35.0348 1856 PxHelp20 - ok
03:19:35.0426 1856 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
03:19:35.0550 1856 ql2300 - ok
03:19:35.0597 1856 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
03:19:35.0706 1856 ql40xx - ok
03:19:35.0738 1856 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
03:19:35.0769 1856 QWAVEdrv - ok
03:19:35.0800 1856 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
03:19:35.0831 1856 RasAcd - ok
03:19:35.0894 1856 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
03:19:35.0925 1856 RasAgileVpn - ok
03:19:35.0956 1856 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
03:19:35.0972 1856 Rasl2tp - ok
03:19:36.0018 1856 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
03:19:36.0050 1856 RasPppoe - ok
03:19:36.0096 1856 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
03:19:36.0128 1856 RasSstp - ok
03:19:36.0143 1856 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
03:19:36.0190 1856 rdbss - ok
03:19:36.0237 1856 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
03:19:36.0252 1856 rdpbus - ok
03:19:36.0284 1856 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
03:19:36.0299 1856 RDPCDD - ok
03:19:36.0362 1856 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
03:19:36.0408 1856 RDPDR - ok
03:19:36.0440 1856 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
03:19:36.0455 1856 RDPENCDD - ok
03:19:36.0471 1856 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
03:19:36.0486 1856 RDPREFMP - ok
03:19:36.0549 1856 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
03:19:36.0596 1856 RDPWD - ok
03:19:36.0674 1856 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
03:19:36.0720 1856 rdyboost - ok
03:19:36.0798 1856 rimmptsk (7a6648b61661b1421ffab762e391e33f) C:\Windows\system32\DRIVERS\rimmptsk.sys
03:19:36.0845 1856 rimmptsk - ok
03:19:36.0892 1856 rimsptsk (d0a35b7670aa3558eaab483f64446496) C:\Windows\system32\DRIVERS\rimsptsk.sys
03:19:36.0939 1856 rimsptsk - ok
03:19:37.0001 1856 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\Windows\system32\DRIVERS\rixdptsk.sys
03:19:37.0017 1856 rismxdp - ok
03:19:37.0126 1856 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
03:19:37.0142 1856 rspndr - ok
03:19:37.0188 1856 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
03:19:37.0204 1856 s3cap - ok
03:19:37.0266 1856 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
03:19:37.0298 1856 sbp2port - ok
03:19:37.0329 1856 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
03:19:37.0344 1856 scfilter - ok
03:19:37.0422 1856 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
03:19:37.0454 1856 sdbus - ok
03:19:37.0532 1856 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
03:19:37.0563 1856 secdrv - ok
03:19:37.0610 1856 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
03:19:37.0625 1856 Serenum - ok
03:19:37.0672 1856 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
03:19:37.0750 1856 Serial - ok
03:19:37.0781 1856 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
03:19:37.0828 1856 sermouse - ok
03:19:37.0859 1856 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
03:19:37.0890 1856 sffdisk - ok
03:19:37.0906 1856 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
03:19:37.0922 1856 sffp_mmc - ok
03:19:37.0953 1856 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
03:19:37.0968 1856 sffp_sd - ok
03:19:38.0000 1856 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
03:19:38.0015 1856 sfloppy - ok
03:19:38.0046 1856 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
03:19:38.0078 1856 sisagp - ok
03:19:38.0124 1856 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
03:19:38.0140 1856 SiSRaid2 - ok
03:19:38.0171 1856 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
03:19:38.0218 1856 SiSRaid4 - ok
03:19:38.0265 1856 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
03:19:38.0312 1856 Smb - ok
03:19:38.0358 1856 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
03:19:38.0374 1856 spldr - ok
03:19:38.0499 1856 srv (dd0dd124d95390fdffa7fb6283923ed4) C:\Windows\system32\DRIVERS\srv.sys
03:19:38.0577 1856 srv - ok
03:19:38.0639 1856 srv2 (59ef6d9c690e89d51b0692ccb13a06fc) C:\Windows\system32\DRIVERS\srv2.sys
03:19:38.0717 1856 srv2 - ok
03:19:38.0748 1856 srvnet (08f28676802b58138e48a2b40caf6204) C:\Windows\system32\DRIVERS\srvnet.sys
03:19:38.0795 1856 srvnet - ok
03:19:38.0936 1856 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
03:19:38.0951 1856 stexstor - ok
03:19:39.0029 1856 STHDA (6a2a5e809c2c0178326d92b19ee4aad3) C:\Windows\system32\drivers\stwrt.sys
03:19:39.0060 1856 STHDA - ok
03:19:39.0170 1856 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
03:19:39.0216 1856 storflt - ok
03:19:39.0248 1856 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
03:19:39.0279 1856 storvsc - ok
03:19:39.0326 1856 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
03:19:39.0357 1856 swenum - ok
03:19:39.0450 1856 SynTP (dd17b63f26430e179ef6bdef5ac735bd) C:\Windows\system32\DRIVERS\SynTP.sys
03:19:39.0482 1856 SynTP - ok
03:19:39.0606 1856 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
03:19:39.0700 1856 Tcpip - ok
03:19:39.0840 1856 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
03:19:39.0856 1856 TCPIP6 - ok
03:19:39.0918 1856 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
03:19:39.0950 1856 tcpipreg - ok
03:19:39.0965 1856 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
03:19:39.0996 1856 TDPIPE - ok
03:19:40.0028 1856 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
03:19:40.0043 1856 TDTCP - ok
03:19:40.0090 1856 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
03:19:40.0121 1856 tdx - ok
03:19:40.0152 1856 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
03:19:40.0184 1856 TermDD - ok
03:19:40.0308 1856 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
03:19:40.0340 1856 tssecsrv - ok
03:19:40.0402 1856 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
03:19:40.0433 1856 tunnel - ok
03:19:40.0449 1856 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
03:19:40.0480 1856 uagp35 - ok
03:19:40.0527 1856 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
03:19:40.0558 1856 udfs - ok
03:19:40.0620 1856 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
03:19:40.0652 1856 uliagpkx - ok
03:19:40.0683 1856 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
03:19:40.0698 1856 umbus - ok
03:19:40.0745 1856 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
03:19:40.0761 1856 UmPass - ok
03:19:40.0839 1856 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
03:19:40.0870 1856 USBAAPL - ok
03:19:40.0948 1856 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
03:19:41.0026 1856 usbaudio - ok
03:19:41.0088 1856 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
03:19:41.0120 1856 usbccgp - ok
03:19:41.0151 1856 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
03:19:41.0182 1856 usbcir - ok
03:19:41.0213 1856 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
03:19:41.0229 1856 usbehci - ok
03:19:41.0276 1856 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
03:19:41.0322 1856 usbhub - ok
03:19:41.0354 1856 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
03:19:41.0369 1856 usbohci - ok
03:19:41.0416 1856 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
03:19:41.0447 1856 usbprint - ok
03:19:41.0478 1856 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
03:19:41.0510 1856 usbscan - ok
03:19:41.0525 1856 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
03:19:41.0556 1856 USBSTOR - ok
03:19:41.0588 1856 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
03:19:41.0603 1856 usbuhci - ok
03:19:41.0650 1856 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
03:19:41.0666 1856 vdrvroot - ok
03:19:41.0712 1856 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
03:19:41.0728 1856 vga - ok
03:19:41.0744 1856 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
03:19:41.0775 1856 VgaSave - ok
03:19:41.0806 1856 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
03:19:41.0837 1856 vhdmp - ok
03:19:41.0868 1856 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
03:19:41.0900 1856 viaagp - ok
03:19:41.0915 1856 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
03:19:41.0946 1856 ViaC7 - ok
03:19:41.0978 1856 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
03:19:41.0993 1856 viaide - ok
03:19:42.0056 1856 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
03:19:42.0102 1856 vmbus - ok
03:19:42.0134 1856 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
03:19:42.0165 1856 VMBusHID - ok
03:19:42.0227 1856 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
03:19:42.0258 1856 volmgr - ok
03:19:42.0290 1856 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
03:19:42.0336 1856 volmgrx - ok
03:19:42.0368 1856 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
03:19:42.0399 1856 volsnap - ok
03:19:42.0446 1856 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
03:19:42.0477 1856 vsmraid - ok
03:19:42.0508 1856 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
03:19:42.0539 1856 vwifibus - ok
03:19:42.0570 1856 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
03:19:42.0602 1856 WacomPen - ok
03:19:42.0633 1856 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
03:19:42.0680 1856 WANARP - ok
03:19:42.0695 1856 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
03:19:42.0695 1856 Wanarpv6 - ok
03:19:42.0820 1856 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
03:19:42.0836 1856 Wd - ok
03:19:42.0882 1856 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
03:19:42.0945 1856 Wdf01000 - ok
03:19:43.0023 1856 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
03:19:43.0038 1856 WfpLwf - ok
03:19:43.0070 1856 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
03:19:43.0085 1856 WIMMount - ok
03:19:43.0179 1856 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
03:19:43.0226 1856 WinUsb - ok
03:19:43.0288 1856 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
03:19:43.0319 1856 WmiAcpi - ok
03:19:43.0366 1856 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
03:19:43.0397 1856 ws2ifsl - ok
03:19:43.0444 1856 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
03:19:43.0475 1856 WudfPf - ok
03:19:43.0491 1856 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
03:19:43.0538 1856 WUDFRd - ok
03:19:43.0584 1856 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
03:19:43.0647 1856 \Device\Harddisk0\DR0 - ok
03:19:43.0647 1856 Boot (0x1200) (726ab51870ea2d43d958a7250cc8491e) \Device\Harddisk0\DR0\Partition0
03:19:43.0647 1856 \Device\Harddisk0\DR0\Partition0 - ok
03:19:43.0662 1856 ============================================================
03:19:43.0662 1856 Scan finished
03:19:43.0662 1856 ============================================================
03:19:43.0678 3228 Detected object count: 0
03:19:43.0678 3228 Actual detected object count: 0
03:19:58.0155 1616 ============================================================
03:19:58.0155 1616 Scan started
03:19:58.0155 1616 Mode: Manual; SigCheck; TDLFS;
03:19:58.0155 1616 ============================================================
03:19:58.0841 1616 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
03:19:58.0997 1616 1394ohci - ok
03:19:59.0028 1616 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
03:19:59.0091 1616 ACPI - ok
03:19:59.0122 1616 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
03:19:59.0200 1616 AcpiPmi - ok
03:19:59.0247 1616 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
03:19:59.0294 1616 adp94xx - ok
03:19:59.0325 1616 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
03:19:59.0387 1616 adpahci - ok
03:19:59.0418 1616 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
03:19:59.0465 1616 adpu320 - ok
03:19:59.0559 1616 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
03:19:59.0699 1616 AFD - ok
03:19:59.0730 1616 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
03:19:59.0777 1616 agp440 - ok
03:19:59.0840 1616 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
03:19:59.0886 1616 aic78xx - ok
03:19:59.0918 1616 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
03:19:59.0949 1616 aliide - ok
03:19:59.0980 1616 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
03:20:00.0027 1616 amdagp - ok
03:20:00.0058 1616 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
03:20:00.0089 1616 amdide - ok
03:20:00.0105 1616 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
03:20:00.0167 1616 AmdK8 - ok
03:20:00.0183 1616 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
03:20:00.0245 1616 AmdPPM - ok
03:20:00.0276 1616 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
03:20:00.0339 1616 amdsata - ok
03:20:00.0370 1616 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
03:20:00.0417 1616 amdsbs - ok
03:20:00.0448 1616 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
03:20:00.0495 1616 amdxata - ok
03:20:00.0510 1616 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
03:20:00.0573 1616 AppID - ok
03:20:00.0651 1616 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
03:20:00.0698 1616 arc - ok
03:20:00.0744 1616 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
03:20:00.0807 1616 arcsas - ok
03:20:00.0838 1616 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
03:20:00.0947 1616 AsyncMac - ok
03:20:00.0994 1616 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
03:20:01.0025 1616 atapi - ok
03:20:01.0072 1616 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
03:20:01.0134 1616 b06bdrv - ok
03:20:01.0181 1616 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
03:20:01.0228 1616 b57nd60x - ok
03:20:01.0259 1616 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
03:20:01.0353 1616 Beep - ok
03:20:01.0400 1616 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
03:20:01.0478 1616 blbdrive - ok
03:20:01.0524 1616 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
03:20:01.0618 1616 bowser - ok
03:20:01.0634 1616 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
03:20:01.0696 1616 BrFiltLo - ok
03:20:01.0743 1616 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
03:20:01.0774 1616 BrFiltUp - ok
03:20:01.0836 1616 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
03:20:01.0977 1616 Brserid - ok
03:20:02.0039 1616 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
03:20:02.0148 1616 BrSerWdm - ok
03:20:02.0195 1616 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
03:20:02.0258 1616 BrUsbMdm - ok
03:20:02.0304 1616 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
03:20:02.0367 1616 BrUsbSer - ok
03:20:02.0398 1616 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
03:20:02.0460 1616 BTHMODEM - ok
03:20:02.0726 1616 catchme - ok
03:20:02.0928 1616 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
03:20:03.0053 1616 cdfs - ok
03:20:03.0084 1616 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
03:20:03.0131 1616 cdrom - ok
03:20:03.0162 1616 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
03:20:03.0240 1616 circlass - ok
03:20:03.0303 1616 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
03:20:03.0381 1616 CLFS - ok
03:20:03.0459 1616 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
03:20:03.0521 1616 CmBatt - ok
03:20:03.0584 1616 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
03:20:03.0630 1616 cmdide - ok
03:20:03.0693 1616 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
03:20:03.0755 1616 CNG - ok
03:20:03.0771 1616 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
03:20:03.0802 1616 Compbatt - ok
03:20:03.0818 1616 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
03:20:03.0864 1616 CompositeBus - ok
03:20:03.0896 1616 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
03:20:03.0942 1616 crcdisk - ok
03:20:04.0036 1616 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
03:20:04.0114 1616 CSC - ok
03:20:04.0176 1616 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
03:20:04.0254 1616 DfsC - ok
03:20:04.0317 1616 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
03:20:04.0395 1616 discache - ok
03:20:04.0426 1616 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
03:20:04.0473 1616 Disk - ok
03:20:04.0566 1616 DLABMFSM (a53723176d0002feb486eff8e17812f2) C:\Windows\system32\DLA\DLABMFSM.SYS
03:20:04.0660 1616 DLABMFSM - ok
03:20:04.0676 1616 DLABOIOM (d4587063acea776699251e177d719586) C:\Windows\system32\DLA\DLABOIOM.SYS
03:20:04.0707 1616 DLABOIOM - ok
03:20:04.0738 1616 DLACDBHM (5230cdb7e715f3a3b4a882e254cdd35d) C:\Windows\system32\Drivers\DLACDBHM.SYS
03:20:04.0769 1616 DLACDBHM - ok
03:20:04.0832 1616 DLADResM (c950c2e7b9ed1a4fc4a2ac7ec044f1d6) C:\Windows\system32\DLA\DLADResM.SYS
03:20:04.0878 1616 DLADResM - ok
03:20:04.0894 1616 DLAIFS_M (24400137e387a24410c52a591f3cfb4d) C:\Windows\system32\DLA\DLAIFS_M.SYS
03:20:04.0988 1616 DLAIFS_M - ok
03:20:05.0019 1616 DLAOPIOM (29a303feceb28641ecebdae89eb71c63) C:\Windows\system32\DLA\DLAOPIOM.SYS
03:20:05.0066 1616 DLAOPIOM - ok
03:20:05.0128 1616 DLAPoolM (c93e33a22a1ae0c5508f3fb1f6d0a50c) C:\Windows\system32\DLA\DLAPoolM.SYS
03:20:05.0159 1616 DLAPoolM - ok
03:20:05.0268 1616 DLARTL_M (77fe51f0f8d86804cb81f6ef6bfb86dd) C:\Windows\system32\Drivers\DLARTL_M.SYS
03:20:05.0284 1616 DLARTL_M - ok
03:20:05.0456 1616 DLAUDFAM (b953498c35a31e5ac98f49adbcf3e627) C:\Windows\system32\DLA\DLAUDFAM.SYS
03:20:05.0534 1616 DLAUDFAM - ok
03:20:05.0565 1616 DLAUDF_M (4897704c093c1f59ce58fc65e1e1ef1e) C:\Windows\system32\DLA\DLAUDF_M.SYS
03:20:05.0643 1616 DLAUDF_M - ok
03:20:05.0736 1616 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
03:20:05.0768 1616 drmkaud - ok
03:20:05.0799 1616 DRVMCDB (c00440385cf9f3d142917c63f989e244) C:\Windows\system32\Drivers\DRVMCDB.SYS
03:20:05.0892 1616 DRVMCDB - ok
03:20:05.0939 1616 DRVNDDM (ffc371525aa55d1bae18715ebcb8797c) C:\Windows\system32\Drivers\DRVNDDM.SYS
03:20:06.0797 1616 DRVNDDM - ok
03:20:06.0875 1616 DSI_SiUSBXp_3_1 (bc9c2ef22ee0320c079e3ff9b4d29951) C:\Windows\system32\drivers\DSI_SiUSBXp_3_1.sys
03:20:06.0953 1616 DSI_SiUSBXp_3_1 - ok
03:20:07.0000 1616 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys
03:20:07.0062 1616 DXGKrnl - ok
03:20:07.0187 1616 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
03:20:07.0328 1616 ebdrv - ok
03:20:07.0437 1616 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
03:20:07.0515 1616 elxstor - ok
03:20:07.0562 1616 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
03:20:07.0608 1616 ErrDev - ok
03:20:07.0671 1616 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
03:20:07.0780 1616 exfat - ok
03:20:07.0796 1616 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
03:20:07.0920 1616 fastfat - ok
03:20:07.0983 1616 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
03:20:08.0045 1616 fdc - ok
03:20:08.0139 1616 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
03:20:08.0186 1616 FileInfo - ok
03:20:08.0217 1616 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
03:20:08.0279 1616 Filetrace - ok
03:20:08.0295 1616 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
03:20:08.0357 1616 flpydisk - ok
03:20:08.0404 1616 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
03:20:08.0435 1616 FltMgr - ok
03:20:08.0466 1616 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
03:20:08.0498 1616 FsDepends - ok
03:20:08.0560 1616 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
03:20:08.0591 1616 Fs_Rec - ok
03:20:08.0622 1616 fvevol (5592f5dba26282d24d2b080eb438a4d7) C:\Windows\system32\DRIVERS\fvevol.sys
03:20:08.0685 1616 fvevol - ok
03:20:08.0732 1616 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
03:20:08.0763 1616 gagp30kx - ok
03:20:08.0825 1616 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
03:20:08.0872 1616 GEARAspiWDM - ok
03:20:08.0919 1616 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
03:20:09.0012 1616 hcw85cir - ok
03:20:09.0075 1616 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
03:20:09.0153 1616 HdAudAddService - ok
03:20:09.0200 1616 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
03:20:09.0262 1616 HDAudBus - ok
03:20:09.0293 1616 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
03:20:09.0324 1616 HidBatt - ok
03:20:09.0356 1616 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
03:20:09.0418 1616 HidBth - ok
03:20:09.0449 1616 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
03:20:09.0512 1616 HidIr - ok
03:20:09.0574 1616 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
03:20:09.0636 1616 HidUsb - ok
03:20:09.0714 1616 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
03:20:09.0761 1616 HpSAMD - ok
03:20:09.0824 1616 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
03:20:09.0964 1616 HTTP - ok
03:20:10.0042 1616 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
03:20:10.0073 1616 hwpolicy - ok
03:20:10.0136 1616 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
03:20:10.0198 1616 i8042prt - ok
03:20:10.0260 1616 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
03:20:10.0323 1616 iaStorV - ok
03:20:10.0401 1616 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
03:20:10.0432 1616 iirsp - ok
03:20:10.0510 1616 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
03:20:10.0541 1616 intelide - ok
03:20:10.0557 1616 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
03:20:10.0604 1616 intelppm - ok
03:20:10.0650 1616 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
03:20:10.0728 1616 IpFilterDriver - ok
03:20:10.0806 1616 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
03:20:10.0884 1616 IPMIDRV - ok
03:20:10.0962 1616 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
03:20:11.0072 1616 IPNAT - ok
03:20:11.0134 1616 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
03:20:11.0181 1616 IRENUM - ok
03:20:11.0212 1616 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
03:20:11.0259 1616 isapnp - ok
03:20:11.0321 1616 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
03:20:11.0368 1616 iScsiPrt - ok
03:20:11.0430 1616 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
03:20:11.0477 1616 kbdclass - ok
03:20:11.0508 1616 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
03:20:11.0571 1616 kbdhid - ok
03:20:11.0602 1616 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
03:20:11.0664 1616 KSecDD - ok
03:20:11.0696 1616 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
03:20:11.0742 1616 KSecPkg - ok
03:20:11.0805 1616 LHidFilt (dd83dc92463fce6324fd30a13d17d0da) C:\Windows\system32\DRIVERS\LHidFilt.Sys
03:20:11.0852 1616 LHidFilt - ok
03:20:11.0883 1616 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
03:20:11.0976 1616 lltdio - ok
03:20:12.0008 1616 LMouFilt (8fe0008e183ff0293a925b78a5581c5f) C:\Windows\system32\DRIVERS\LMouFilt.Sys
03:20:12.0054 1616 LMouFilt - ok
03:20:12.0117 1616 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
03:20:12.0179 1616 LSI_FC - ok
03:20:12.0210 1616 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
03:20:12.0242 1616 LSI_SAS - ok
03:20:12.0273 1616 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
03:20:12.0320 1616 LSI_SAS2 - ok
03:20:12.0335 1616 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
03:20:12.0382 1616 LSI_SCSI - ok
03:20:12.0413 1616 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
03:20:12.0522 1616 luafv - ok
03:20:12.0585 1616 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
03:20:12.0616 1616 megasas - ok
03:20:12.0647 1616 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
03:20:12.0710 1616 MegaSR - ok
03:20:12.0741 1616 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
03:20:12.0850 1616 Modem - ok
03:20:12.0897 1616 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
03:20:12.0959 1616 monitor - ok
03:20:13.0006 1616 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
03:20:13.0068 1616 mouclass - ok
03:20:13.0115 1616 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
03:20:13.0178 1616 mouhid - ok
03:20:13.0271 1616 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
03:20:13.0318 1616 mountmgr - ok
03:20:13.0380 1616 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
03:20:13.0458 1616 MpFilter - ok
03:20:13.0521 1616 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
03:20:13.0552 1616 mpio - ok
03:20:13.0692 1616 MpKsl4221f094 - ok
03:20:13.0708 1616 MpKsl5afd5cc5 - ok
03:20:13.0724 1616 MpKsla6bb7dc1 - ok
03:20:13.0755 1616 MpKslaab0231d - ok
03:20:13.0864 1616 MpKslcb8a1a4f (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F25357B-773F-409D-86AF-DC81A7999956}\MpKslcb8a1a4f.sys
03:20:13.0895 1616 MpKslcb8a1a4f - ok
03:20:13.0911 1616 MpKsld6fef2a2 - ok
03:20:14.0114 1616 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
03:20:14.0145 1616 MpNWMon - ok
03:20:14.0207 1616 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
03:20:14.0285 1616 mpsdrv - ok
03:20:14.0332 1616 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
03:20:14.0410 1616 MRxDAV - ok
03:20:14.0472 1616 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys
03:20:14.0535 1616 mrxsmb - ok
03:20:14.0582 1616 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
03:20:14.0644 1616 mrxsmb10 - ok
03:20:14.0722 1616 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
03:20:14.0800 1616 mrxsmb20 - ok
03:20:14.0847 1616 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
03:20:14.0878 1616 msahci - ok
03:20:14.0925 1616 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
03:20:14.0972 1616 msdsm - ok
03:20:15.0050 1616 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
03:20:15.0143 1616 Msfs - ok
03:20:15.0206 1616 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
03:20:15.0268 1616 mshidkmdf - ok
03:20:15.0330 1616 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
03:20:15.0362 1616 msisadrv - ok
03:20:15.0408 1616 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
03:20:15.0518 1616 MSKSSRV - ok
03:20:15.0596 1616 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
03:20:15.0658 1616 MSPCLOCK - ok
03:20:15.0689 1616 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
03:20:15.0752 1616 MSPQM - ok
03:20:15.0798 1616 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
03:20:15.0845 1616 MsRPC - ok
03:20:15.0861 1616 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
03:20:15.0892 1616 mssmbios - ok
03:20:15.0923 1616 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
03:20:15.0986 1616 MSTEE - ok
03:20:16.0017 1616 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
03:20:16.0048 1616 MTConfig - ok
03:20:16.0079 1616 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
03:20:16.0110 1616 Mup - ok
03:20:16.0142 1616 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
03:20:16.0188 1616 NativeWifiP - ok
03:20:16.0329 1616 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
03:20:16.0422 1616 NDIS - ok
03:20:16.0485 1616 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
03:20:16.0563 1616 NdisCap - ok
03:20:16.0594 1616 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
03:20:16.0688 1616 NdisTapi - ok
03:20:16.0750 1616 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
03:20:16.0844 1616 Ndisuio - ok
03:20:16.0922 1616 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
03:20:17.0031 1616 NdisWan - ok
03:20:17.0093 1616 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
03:20:17.0156 1616 NDProxy - ok
03:20:17.0218 1616 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
03:20:17.0280 1616 NetBIOS - ok
03:20:17.0312 1616 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
03:20:17.0390 1616 NetBT - ok
03:20:17.0561 1616 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
03:20:17.0717 1616 netw5v32 - ok
03:20:17.0780 1616 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
03:20:17.0826 1616 nfrd960 - ok
03:20:17.0889 1616 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
03:20:17.0967 1616 NisDrv - ok
03:20:18.0014 1616 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
03:20:18.0123 1616 Npfs - ok
03:20:18.0154 1616 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
03:20:18.0248 1616 nsiproxy - ok
03:20:18.0326 1616 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
03:20:18.0606 1616 Ntfs - ok
03:20:18.0669 1616 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
03:20:18.0762 1616 Null - ok
03:20:19.0168 1616 nvlddmkm (847b1755f7757f825305a1ffe6dac3e9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
03:20:21.0149 1616 nvlddmkm - ok
03:20:21.0243 1616 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
03:20:21.0290 1616 nvraid - ok
03:20:21.0336 1616 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
03:20:21.0383 1616 nvstor - ok
03:20:21.0446 1616 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
03:20:21.0508 1616 nv_agp - ok
03:20:21.0570 1616 OEM04Vfx (86326062a90494bdd79ce383511d7d69) C:\Windows\system32\DRIVERS\OEM04Vfx.sys
03:20:21.0648 1616 OEM04Vfx - ok
03:20:21.0680 1616 OEM04Vid (40e9bfd9f64dfb32c1eafbaa0576c55d) C:\Windows\system32\DRIVERS\OEM04Vid.sys
03:20:21.0758 1616 OEM04Vid - ok
03:20:21.0789 1616 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
03:20:21.0867 1616 ohci1394 - ok
03:20:21.0929 1616 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
03:20:21.0976 1616 Parport - ok
03:20:22.0007 1616 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
03:20:22.0054 1616 partmgr - ok
03:20:22.0085 1616 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
03:20:22.0132 1616 Parvdm - ok
03:20:22.0163 1616 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
03:20:22.0210 1616 pci - ok
03:20:22.0241 1616 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
03:20:22.0288 1616 pciide - ok
03:20:22.0319 1616 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
03:20:22.0382 1616 pcmcia - ok
03:20:22.0397 1616 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
03:20:22.0444 1616 pcw - ok
03:20:22.0491 1616 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
03:20:22.0600 1616 PEAUTH - ok
03:20:22.0709 1616 pfc (6c1618a07b49e3873582b6449e744088) C:\Windows\system32\drivers\pfc.sys
03:20:22.0756 1616 pfc ( UnsignedFile.Multi.Generic ) - warning
03:20:22.0756 1616 pfc - detected UnsignedFile.Multi.Generic (1)
03:20:22.0772 1616 pnarp - ok
03:20:22.0865 1616 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
03:20:22.0974 1616 PptpMiniport - ok
03:20:23.0021 1616 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
03:20:23.0099 1616 Processor - ok
03:20:23.0162 1616 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
03:20:23.0271 1616 Psched - ok
03:20:23.0286 1616 purendis - ok
03:20:23.0349 1616 PxHelp20 (feffcfdc528764a04c8ed63d5fa6e711) C:\Windows\system32\Drivers\PxHelp20.sys
03:20:23.0396 1616 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
03:20:23.0396 1616 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
03:20:23.0489 1616 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
03:20:23.0630 1616 ql2300 - ok
03:20:23.0676 1616 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
03:20:23.0739 1616 ql40xx - ok
03:20:23.0801 1616 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
03:20:23.0864 1616 QWAVEdrv - ok
03:20:23.0910 1616 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
03:20:24.0051 1616 RasAcd - ok
03:20:24.0113 1616 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
03:20:24.0191 1616 RasAgileVpn - ok
03:20:24.0238 1616 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
03:20:24.0300 1616 Rasl2tp - ok
03:20:24.0332 1616 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
03:20:24.0394 1616 RasPppoe - ok
03:20:24.0410 1616 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
03:20:24.0503 1616 RasSstp - ok
03:20:24.0534 1616 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
03:20:24.0612 1616 rdbss - ok
03:20:24.0628 1616 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
03:20:24.0659 1616 rdpbus - ok
03:20:24.0706 1616 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
03:20:24.0753 1616 RDPCDD - ok
03:20:24.0800 1616 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
03:20:24.0862 1616 RDPDR - ok
03:20:24.0893 1616 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
03:20:24.0956 1616 RDPENCDD - ok
03:20:24.0987 1616 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
03:20:25.0065 1616 RDPREFMP - ok
03:20:25.0112 1616 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
03:20:25.0205 1616 RDPWD - ok
03:20:25.0283 1616 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
03:20:25.0346 1616 rdyboost - ok
03:20:25.0455 1616 rimmptsk (7a6648b61661b1421ffab762e391e33f) C:\Windows\system32\DRIVERS\rimmptsk.sys
03:20:25.0533 1616 rimmptsk - ok
03:20:25.0595 1616 rimsptsk (d0a35b7670aa3558eaab483f64446496) C:\Windows\system32\DRIVERS\rimsptsk.sys
03:20:25.0658 1616 rimsptsk - ok
03:20:25.0689 1616 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\Windows\system32\DRIVERS\rixdptsk.sys
03:20:25.0751 1616 rismxdp - ok
03:20:25.0829 1616 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
03:20:25.0907 1616 rspndr - ok
03:20:25.0970 1616 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
03:20:26.0016 1616 s3cap - ok
03:20:26.0063 1616 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
03:20:26.0094 1616 sbp2port - ok
03:20:26.0126 1616 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
03:20:26.0188 1616 scfilter - ok
03:20:26.0266 1616 sdbus (7b48cff3a475fe849dea65ec4d35c425) C:\Windows\system32\DRIVERS\sdbus.sys
03:20:26.0328 1616 sdbus - ok
03:20:26.0375 1616 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
03:20:26.0469 1616 secdrv - ok
03:20:26.0516 1616 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
03:20:26.0547 1616 Serenum - ok
03:20:26.0578 1616 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
03:20:26.0656 1616 Serial - ok
03:20:26.0703 1616 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
03:20:26.0734 1616 sermouse - ok
03:20:26.0796 1616 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
03:20:26.0859 1616 sffdisk - ok
03:20:26.0890 1616 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
03:20:26.0952 1616 sffp_mmc - ok
03:20:26.0999 1616 sffp_sd (4f1e5b0fe7c8050668dbfade8999aefb) C:\Windows\system32\DRIVERS\sffp_sd.sys
03:20:27.0046 1616 sffp_sd - ok
03:20:27.0077 1616 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
03:20:27.0108 1616 sfloppy - ok
03:20:27.0171 1616 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
03:20:27.0218 1616 sisagp - ok
03:20:27.0280 1616 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
03:20:27.0311 1616 SiSRaid2 - ok
03:20:27.0374 1616 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
03:20:27.0405 1616 SiSRaid4 - ok
03:20:27.0452 1616 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
03:20:27.0545 1616 Smb - ok
03:20:27.0592 1616 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
03:20:27.0623 1616 spldr - ok
03:20:27.0717 1616 srv (dd0dd124d95390fdffa7fb6283923ed4) C:\Windows\system32\DRIVERS\srv.sys
03:20:27.0779 1616 srv - ok
03:20:27.0842 1616 srv2 (59ef6d9c690e89d51b0692ccb13a06fc) C:\Windows\system32\DRIVERS\srv2.sys
03:20:27.0904 1616 srv2 - ok
03:20:27.0966 1616 srvnet (08f28676802b58138e48a2b40caf6204) C:\Windows\system32\DRIVERS\srvnet.sys
03:20:28.0013 1616 srvnet - ok
03:20:28.0107 1616 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
03:20:28.0122 1616 stexstor - ok
03:20:28.0200 1616 STHDA (6a2a5e809c2c0178326d92b19ee4aad3) C:\Windows\system32\drivers\stwrt.sys
03:20:28.0232 1616 STHDA - ok
03:20:28.0294 1616 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
03:20:28.0341 1616 storflt - ok
03:20:28.0372 1616 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
03:20:28.0403 1616 storvsc - ok
03:20:28.0466 1616 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
03:20:28.0528 1616 swenum - ok
03:20:28.0622 1616 SynTP (dd17b63f26430e179ef6bdef5ac735bd) C:\Windows\system32\DRIVERS\SynTP.sys
03:20:28.0668 1616 SynTP - ok
03:20:28.0840 1616 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
03:20:28.0996 1616 Tcpip - ok
03:20:29.0105 1616 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
03:20:29.0199 1616 TCPIP6 - ok
03:20:29.0277 1616 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
03:20:29.0339 1616 tcpipreg - ok
03:20:29.0417 1616 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
03:20:29.0495 1616 TDPIPE - ok
03:20:29.0542 1616 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
03:20:29.0651 1616 TDTCP - ok
03:20:29.0698 1616 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
03:20:29.0807 1616 tdx - ok
03:20:29.0854 1616 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
03:20:29.0916 1616 TermDD - ok
03:20:30.0010 1616 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
03:20:30.0072 1616 tssecsrv - ok
03:20:30.0104 1616 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
03:20:30.0182 1616 tunnel - ok
03:20:30.0213 1616 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
03:20:30.0260 1616 uagp35 - ok
03:20:30.0291 1616 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
03:20:30.0384 1616 udfs - ok
03:20:30.0416 1616 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
03:20:30.0462 1616 uliagpkx - ok
03:20:30.0494 1616 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
03:20:30.0540 1616 umbus - ok
03:20:30.0603 1616 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
03:20:30.0634 1616 UmPass - ok
03:20:30.0712 1616 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
03:20:30.0774 1616 USBAAPL - ok
03:20:30.0868 1616 usbaudio (2436a42aab4ad48a9b714e5b0f344627) C:\Windows\system32\drivers\usbaudio.sys
03:20:30.0977 1616 usbaudio - ok
03:20:31.0040 1616 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
03:20:31.0118 1616 usbccgp - ok
03:20:31.0164 1616 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
03:20:31.0242 1616 usbcir - ok
03:20:31.0274 1616 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
03:20:31.0320 1616 usbehci - ok
03:20:31.0398 1616 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
03:20:31.0476 1616 usbhub - ok
03:20:31.0539 1616 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
03:20:31.0601 1616 usbohci - ok
03:20:31.0648 1616 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
03:20:31.0710 1616 usbprint - ok
03:20:31.0757 1616 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
03:20:31.0804 1616 usbscan - ok
03:20:31.0851 1616 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
03:20:31.0913 1616 USBSTOR - ok
03:20:31.0944 1616 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
03:20:32.0007 1616 usbuhci - ok
03:20:32.0069 1616 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
03:20:32.0100 1616 vdrvroot - ok
03:20:32.0163 1616 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
03:20:32.0210 1616 vga - ok
03:20:32.0303 1616 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
03:20:32.0381 1616 VgaSave - ok
03:20:32.0444 1616 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
03:20:32.0506 1616 vhdmp - ok
03:20:32.0537 1616 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
03:20:32.0584 1616 viaagp - ok
03:20:32.0600 1616 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
03:20:32.0678 1616 ViaC7 - ok
03:20:32.0709 1616 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
03:20:32.0740 1616 viaide - ok
03:20:32.0802 1616 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
03:20:32.0865 1616 vmbus - ok
03:20:32.0958 1616 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
03:20:33.0005 1616 VMBusHID - ok
03:20:33.0083 1616 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
03:20:33.0130 1616 volmgr - ok
03:20:33.0208 1616 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
03:20:33.0270 1616 volmgrx - ok
03:20:33.0302 1616 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
03:20:33.0364 1616 volsnap - ok
03:20:33.0411 1616 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
03:20:33.0473 1616 vsmraid - ok
03:20:33.0520 1616 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
03:20:33.0567 1616 vwifibus - ok
03:20:33.0629 1616 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
03:20:33.0707 1616 WacomPen - ok
03:20:33.0754 1616 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
03:20:33.0863 1616 WANARP - ok
03:20:33.0910 1616 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
03:20:34.0019 1616 Wanarpv6 - ok
03:20:34.0128 1616 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
03:20:34.0160 1616 Wd - ok
03:20:34.0206 1616 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
03:20:34.0284 1616 Wdf01000 - ok
03:20:34.0331 1616 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
03:20:34.0440 1616 WfpLwf - ok
03:20:34.0472 1616 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
03:20:34.0518 1616 WIMMount - ok
03:20:34.0581 1616 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
03:20:34.0659 1616 WinUsb - ok
03:20:34.0690 1616 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
03:20:34.0752 1616 WmiAcpi - ok
03:20:34.0815 1616 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
03:20:34.0924 1616 ws2ifsl - ok
03:20:34.0986 1616 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
03:20:35.0080 1616 WudfPf - ok
03:20:35.0096 1616 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
03:20:35.0220 1616 WUDFRd - ok
03:20:35.0283 1616 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
03:20:35.0361 1616 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
03:20:35.0361 1616 \Device\Harddisk0\DR0 - detected TDSS File System (1)
03:20:35.0361 1616 Boot (0x1200) (726ab51870ea2d43d958a7250cc8491e) \Device\Harddisk0\DR0\Partition0
03:20:35.0376 1616 \Device\Harddisk0\DR0\Partition0 - ok
03:20:35.0376 1616 ============================================================
03:20:35.0376 1616 Scan finished
03:20:35.0376 1616 ============================================================
03:20:35.0392 0968 Detected object count: 3
03:20:35.0392 0968 Actual detected object count: 3
03:21:58.0431 0968 HKLM\SYSTEM\ControlSet001\services\pfc - will be deleted on reboot
03:21:58.0571 0968 HKLM\SYSTEM\ControlSet002\services\pfc - will be deleted on reboot
03:21:58.0587 0968 C:\Windows\system32\drivers\pfc.sys - will be deleted on reboot
03:21:58.0587 0968 pfc ( UnsignedFile.Multi.Generic ) - User select action: Delete
03:21:58.0587 0968 HKLM\SYSTEM\ControlSet001\services\PxHelp20 - will be deleted on reboot
03:21:58.0587 0968 HKLM\SYSTEM\ControlSet002\services\PxHelp20 - will be deleted on reboot
03:21:58.0587 0968 C:\Windows\system32\Drivers\PxHelp20.sys - will be deleted on reboot
03:21:58.0587 0968 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Delete
03:21:58.0603 0968 \Device\Harddisk0\DR0\TDLFS - deleted
03:21:58.0603 0968 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
03:22:05.0623 2852 Deinitialize success

========= End of CMD: =========

C:\Users\Dan\AppData\Local\pzpgkdic.exe moved successfully.
C:\Users\Dan\AppData\Local\jvdcogx.exe moved successfully.

==== End of Fixlog ====

#9 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:41 PM

Posted 14 February 2012 - 01:02 AM

There was something missing in the report. Lets try this:

Run FRST as you did before.

Type the following in the edit box after "Search:".

winlogon.exe;explorer.exe

Note: The file names should be separated by semicolon (;). Also leave a space between Search: and winlogon.exe;explorer.exe

It then should look like:

Search: winlogon.exe;explorer.exe

Click the Search button and post the log (Search.txt) it will make in the USB, in your next reply.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#10 mcsb

mcsb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:41 AM

Posted 14 February 2012 - 06:34 PM

Here is the Search.txt :)

Farbar Recovery Scan Tool Version: 11-02-2012
Ran by SYSTEM at 2012-02-14 17:24:54
Running from E:\

================== Search: "winlogon.exe;explorer.exe" ===================

C:\Windows\explorer.exe
[2010-01-27 05:41] - [2009-07-13 17:16] - 2639360 ____A (Microsoft Corporation) 807C08EEABC116927999E5F2C0BB53E6

C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.20560_none_703394514f56f7c2\winlogon.exe
[2010-01-27 05:41] - [2009-10-27 21:52] - 0285696 ____A (Microsoft Corporation) 3BABE6767C78FBF5FB8435FEED187F30

C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16447_none_6fc699643622d177\winlogon.exe
[2010-01-27 05:41] - [2009-10-27 22:17] - 0285696 ____A (Microsoft Corporation) 37CDB7E72EB66BA85A87CBE37E7F03FD

C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7600.16385_none_6f99573a36451166\winlogon.exe
[2009-07-13 15:37] - [2009-07-13 17:14] - 0285696 ____A (Microsoft Corporation) 8EC6A4AB12B8F3759E21F8E3A388F2CF

C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20563_none_52283b2af41f3691\explorer.exe
[2010-01-27 05:41] - [2009-10-30 22:00] - 2614272 ____A (Microsoft Corporation) C76153C7ECA00FA852BB0C193378F917

C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.20500_none_526619d4f3f142e6\explorer.exe
[2010-01-08 18:02] - [2009-08-02 21:49] - 2613248 ____A (Microsoft Corporation) 9FF6C4C91A3711C0A3B18F87B08B518D

C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16450_none_51a66d6ddafc2ed1\explorer.exe
[2010-01-27 05:41] - [2009-10-30 21:45] - 2614272 ____A (Microsoft Corporation) 2626FC9755BE22F805D3CFA0CE3EE727

C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16404_none_51e07e31dad00878\explorer.exe
[2010-01-08 18:02] - [2009-08-02 21:35] - 2613248 ____A (Microsoft Corporation) B95EEB0F4E5EFBF1038A35B3351CF047

C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7600.16385_none_518afd35db100430\explorer.exe
[2009-07-13 15:41] - [2009-07-13 17:14] - 2613248 ____A (Microsoft Corporation) 15BC38A7492BEFE831966ADB477CF76F

C:\Windows\System32\winlogon.exe
[2010-01-27 05:41] - [2009-07-13 17:16] - 0310784 ____A (Microsoft Corporation) A789EE5CC6FF513213ABD75D28D08AE3

C:\Windows\Resources\Themes\Explorer\x86\explorer.exe
[2010-06-24 22:44] - [2010-02-19 15:29] - 2613248 ____A (Microsoft Corporation) AB377EC54993D9C769A0E1AC22AC5457

C:\Windows\Resources\Themes\Explorer\x64\explorer.exe
[2010-06-24 22:44] - [2010-02-18 12:42] - 2868224 ____A (Microsoft Corporation) C9141B564AE03A5B9A9F062395DB6AE5

C:\Windows\ERDNT\cache\explorer.exe
[2010-11-24 10:26] - [2009-10-30 21:45] - 2614272 ____A (Microsoft Corporation) 2626FC9755BE22F805D3CFA0CE3EE727

C:\Windows\ERDNT\cache\winlogon.exe
[2010-11-24 10:26] - [2009-10-27 22:17] - 0285696 ____A (Microsoft Corporation) 37CDB7E72EB66BA85A87CBE37E7F03FD

C:\Users\Dan\Downloads\App Source Files\SlanXPforWin7\SlanXP_2_0_For_7_by_mini_slash\Explorer\x86\explorer.exe
[2010-06-24 22:39] - [2010-02-19 15:29] - 2613248 ____A (Microsoft Corporation) AB377EC54993D9C769A0E1AC22AC5457

C:\Users\Dan\Downloads\App Source Files\SlanXPforWin7\SlanXP_2_0_For_7_by_mini_slash\Explorer\x64\explorer.exe
[2010-06-24 22:39] - [2010-02-18 12:42] - 2868224 ____A (Microsoft Corporation) C9141B564AE03A5B9A9F062395DB6AE5

=== End Of Search ===

#11 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:41 PM

Posted 14 February 2012 - 07:43 PM

Download the enclosed folder.

Save it in the USB drive.

Run FRST as you did before, except that this time around, click on the Fix button and wait.

The tool will make a log in the flashdrive (Fixlog.txt). Please post its contents in a reply.

If successful, attempt to boot in Normal Mode. If able to boot, run Combofix as follows:

Please download ComboFix from Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
  • Please, never rename Combofix unless instructed.
  • Close any open browsers.
  • Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

    -----------------------------------------------------------

    • Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
    • Click on this link or this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.

      If AVG or CA Internet Security Suite is installed, you must remove these programs before using Combofix. If any of these applications will not uninstall, it is first recommended to uninstall it with AppRemover by Opswat. http://www.appremover.com/supported-applications. Do not use AppRemover on Norton

      -----------------------------------------------------------

    • Close any open browsers.
    • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
    • Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
    • If there is no internet connection after running Combofix, then restart your computer to restore back your connection.

    -----------------------------------------------------------

  • Double click on combofix.exe & follow the prompts.
  • Install the Recovery Console if prompted.
  • When finished, it will produce a report for you.
  • Please post the "C:\ComboFix.txt" .
**Note: Do not mouseclick combofix's window while it's running. That may cause it to stall**

Note: ComboFix may reset a number of Internet Explorer's settings, including making it the default browser.
Note: Combofix prevents autorun of ALL CDs, floppies and USB devices to assist with malware removal & increase security.

Please do not install any new programs or update anything (always allow your antivirus/antispyware to update) unless told to do so while we are fixing your problem. If combofix alerts to a new version and offers to update, please let it. It is essential we always use the latest version.

If unable to boot in Normal mode, let me know of any error message.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#12 mcsb

mcsb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:41 AM

Posted 14 February 2012 - 08:33 PM

Here is the fixlog, unfortunately I was not able to boot in normal mode after running fix. :( However, there was a mouse present on the screen after the windows splash went away, rather than a completely black screen. So some progress :P

Fix result of Farbar Recovery Tool (FRST written by farbar) Version: 11-02-2012
Ran by SYSTEM at 2012-02-14 19:23:08 R:2
Running from E:\

==============================================

C:\Windows\explorer.exe moved successfully.
C:\Windows\ERDNT\cache\explorer.exe copied successfully to C:\Windows\explorer.exe
C:\Windows\System32\winlogon.exe moved successfully.
C:\Windows\ERDNT\cache\winlogon.exe copied successfully to C:\Windows\System32\winlogon.exe

==== End of Fixlog ====

#13 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:41 PM

Posted 15 February 2012 - 12:01 AM

Perform another FRST scan. This time-around, remove all check-marks except for "List driver MD5", where I want you to put a check-mark. The log may be huge. If so, attach the report.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif


#14 mcsb

mcsb
  • Topic Starter

  • Members
  • 17 posts
  • OFFLINE
  •  
  • Local time:11:41 AM

Posted 15 February 2012 - 09:53 AM

I brought the comp into work. The FRST report is attached, ran per your instructions. :)

Attached Files

  • Attached File  FRST.txt   65.56KB   3 downloads


#15 JSntgRvr

JSntgRvr

    Master Surgeon General


  • Malware Response Team
  • 11,635 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto Rico
  • Local time:12:41 PM

Posted 15 February 2012 - 11:17 AM

Lets take a look at the Master Boot Record. See if you can follow these instructions:

Download MBRFix from here.

Save and extract its contents to the desktop.

There are three files in the MBRFix folder. From these, only copy the MBRFix.exe to the root directory of the USB Drive.

Also download the enclosed file.

Save it in the USB drive, overwriting the existing one.

Insert the USB drive into the ailing computer. Run FRST as before, except that this time-around, click on the Fix button.

The tool will make a log in the flashdrive (Fixlog.txt). Please post its contents in a reply.

It will also create a file (MBRDUMP.txt). Please attach this report as it is a hex file.

No request for help throughout private messaging will be attended.

If I have helped you, consider making a donation to help me continue the fight against Malware!
btn_donate_SM.gif





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users