22:05:09.0578 3464  TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
22:05:09.0625 3464  ============================================================
22:05:09.0625 3464  Current date / time: 2012/10/30 22:05:09.0625
22:05:09.0625 3464  SystemInfo:
22:05:09.0625 3464  
22:05:09.0625 3464  OS Version: 5.1.2600 ServicePack: 3.0
22:05:09.0625 3464  Product type: Workstation
22:05:09.0625 3464  ComputerName: USER-19BCDB647B
22:05:09.0625 3464  UserName: USER
22:05:09.0625 3464  Windows directory: C:\WINDOWS
22:05:09.0625 3464  System windows directory: C:\WINDOWS
22:05:09.0625 3464  Processor architecture: Intel x86
22:05:09.0625 3464  Number of processors: 4
22:05:09.0625 3464  Page size: 0x1000
22:05:09.0625 3464  Boot type: Normal boot
22:05:09.0625 3464  ============================================================
22:05:12.0109 3464  Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
22:05:12.0578 3464  Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000058
22:05:19.0531 3464  Drive \Device\Harddisk2\DR17 - Size: 0xE6A49000 (3.60 Gb), SectorSize: 0x200, Cylinders: 0x1D6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:05:25.0296 3464  ============================================================
22:05:25.0296 3464  \Device\Harddisk0\DR0:
22:05:25.0312 3464  MBR partitions:
22:05:25.0312 3464  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1DFF7E7
22:05:25.0312 3464  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1DFF826, BlocksNum 0x1DFF826
22:05:25.0312 3464  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x3BFF04C, BlocksNum 0x3201CC0
22:05:25.0359 3464  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x6E00D4B, BlocksNum 0x601749
22:05:25.0421 3464  \Device\Harddisk0\DR0\Partition5: MBR, Type 0x7, StartLBA 0x74024D3, BlocksNum 0x210BFEE
22:05:25.0421 3464  \Device\Harddisk1\DR1:
22:05:25.0421 3464  MBR partitions:
22:05:25.0421 3464  \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x2800A34
22:05:25.0421 3464  \Device\Harddisk1\DR1\Partition2: MBR, Type 0x7, StartLBA 0x2800A73, BlocksNum 0xC7FF57E
22:05:25.0421 3464  \Device\Harddisk1\DR1\Partition3: MBR, Type 0x7, StartLBA 0xEFFFFF1, BlocksNum 0xC7FF57E
22:05:25.0906 3464  \Device\Harddisk1\DR1\Partition4: MBR, Type 0x7, StartLBA 0x1B7FF5AE, BlocksNum 0xC7FF53F
22:05:25.0937 3464  \Device\Harddisk1\DR1\Partition5: MBR, Type 0x7, StartLBA 0x27FFEB2C, BlocksNum 0xC7FF53F
22:05:25.0953 3464  \Device\Harddisk1\DR1\Partition6: MBR, Type 0x7, StartLBA 0x347FE0AA, BlocksNum 0xC7FF53F
22:05:25.0968 3464  \Device\Harddisk1\DR1\Partition7: MBR, Type 0x7, StartLBA 0x40FFD628, BlocksNum 0xC7FF53F
22:05:26.0000 3464  \Device\Harddisk1\DR1\Partition8: MBR, Type 0x7, StartLBA 0x4D7FCBA6, BlocksNum 0xC7FF53F
22:05:26.0015 3464  \Device\Harddisk1\DR1\Partition9: MBR, Type 0x7, StartLBA 0x59FFC124, BlocksNum 0xC7FF53F
22:05:26.0031 3464  \Device\Harddisk1\DR1\Partition10: MBR, Type 0x7, StartLBA 0x667FB6A2, BlocksNum 0xDF0645E
22:05:26.0031 3464  \Device\Harddisk2\DR17:
22:05:34.0906 3464  MBR partitions:
22:05:34.0906 3464  ============================================================
22:05:35.0062 3464  C: <-> \Device\Harddisk0\DR0\Partition1
22:05:35.0421 3464  G: <-> \Device\Harddisk0\DR0\Partition5
22:05:35.0453 3464  H: <-> \Device\Harddisk0\DR0\Partition4
22:05:35.0500 3464  E: <-> \Device\Harddisk0\DR0\Partition2
22:05:35.0531 3464  F: <-> \Device\Harddisk0\DR0\Partition3
22:05:36.0015 3464  I: <-> \Device\Harddisk1\DR1\Partition1
22:05:36.0046 3464  J: <-> \Device\Harddisk1\DR1\Partition3
22:05:36.0109 3464  K: <-> \Device\Harddisk1\DR1\Partition6
22:05:36.0203 3464  L: <-> \Device\Harddisk1\DR1\Partition10
22:05:36.0234 3464  M: <-> \Device\Harddisk1\DR1\Partition2
22:05:36.0281 3464  N: <-> \Device\Harddisk1\DR1\Partition4
22:05:36.0296 3464  O: <-> \Device\Harddisk1\DR1\Partition5
22:05:36.0328 3464  P: <-> \Device\Harddisk1\DR1\Partition7
22:05:36.0468 3464  Q: <-> \Device\Harddisk1\DR1\Partition8
22:05:36.0515 3464  R: <-> \Device\Harddisk1\DR1\Partition9
22:05:36.0515 3464  ============================================================
22:05:36.0515 3464  Initialize success
22:05:36.0515 3464  ============================================================
22:05:56.0921 0872  ============================================================
22:05:56.0921 0872  Scan started
22:05:56.0921 0872  Mode: Manual; SigCheck; TDLFS; 
22:05:56.0921 0872  ============================================================
22:05:57.0875 0872  ================ Scan system memory ========================
22:05:57.0890 0872  System memory - ok
22:05:57.0890 0872  ================ Scan services =============================
22:05:58.0000 0872  Abiosdsk - ok
22:05:58.0015 0872  abp480n5 - ok
22:05:58.0031 0872  [ 05118282F5D039595A2B92B4A4AFE197 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:05:58.0859 0872  ACPI - ok
22:05:58.0890 0872  [ 66A42B7DB194E24B973BBCCE840A0F3F ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
22:05:59.0062 0872  ACPIEC - ok
22:05:59.0062 0872  adpu160m - ok
22:05:59.0093 0872  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys
22:05:59.0203 0872  aec - ok
22:05:59.0218 0872  [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD             C:\WINDOWS\System32\drivers\afd.sys
22:05:59.0390 0872  AFD - ok
22:05:59.0406 0872  Aha154x - ok
22:05:59.0406 0872  aic78u2 - ok
22:05:59.0421 0872  aic78xx - ok
22:05:59.0437 0872  [ 27AF056D8C42F0AB3CF1DFDCBBEB3243 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
22:05:59.0593 0872  Alerter - ok
22:05:59.0609 0872  [ D1738DDDFF196C5CEE6D867C136AF745 ] ALG             C:\WINDOWS\System32\alg.exe
22:05:59.0750 0872  ALG - ok
22:05:59.0765 0872  AliIde - ok
22:05:59.0796 0872  [ 033448D435E65C4BD72E70521FD05C76 ] AmdPPM          C:\WINDOWS\system32\DRIVERS\AmdPPM.sys
22:05:59.0828 0872  AmdPPM - ok
22:05:59.0843 0872  amsint - ok
22:05:59.0859 0872  [ 1561430DA2F2AB81CC0CE71AF95A778D ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
22:06:00.0000 0872  AppMgmt - ok
22:06:00.0000 0872  asc - ok
22:06:00.0015 0872  asc3350p - ok
22:06:00.0015 0872  asc3550 - ok
22:06:00.0109 0872  [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
22:06:00.0171 0872  aspnet_state - ok
22:06:00.0187 0872  AsrOcDrv - ok
22:06:00.0218 0872  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:06:00.0296 0872  AsyncMac - ok
22:06:00.0328 0872  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
22:06:00.0437 0872  atapi - ok
22:06:00.0437 0872  Atdisk - ok
22:06:00.0468 0872  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:06:00.0578 0872  Atmarpc - ok
22:06:00.0609 0872  [ 3A28D3E7BAD0EED3810CD918B2525B54 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
22:06:00.0781 0872  AudioSrv - ok
22:06:00.0812 0872  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
22:06:00.0890 0872  audstub - ok
22:06:00.0937 0872  [ 303BDE0DCDC04CE597C6C1CD06C6F186 ] AVGIDSHX        C:\WINDOWS\system32\DRIVERS\avgidshx.sys
22:06:01.0203 0872  AVGIDSHX - ok
22:06:01.0218 0872  [ 95889A9D23F3133250FA8AD13C982D58 ] Avglogx         C:\WINDOWS\system32\DRIVERS\avglogx.sys
22:06:01.0343 0872  Avglogx - ok
22:06:01.0375 0872  [ BA73B38E9033FC6018DB736B635706AE ] Avgtdix         C:\WINDOWS\system32\DRIVERS\avgtdix.sys
22:06:01.0484 0872  Avgtdix - ok
22:06:01.0578 0872  [ 0D2EB149AFF89A307E5D82D0A2B78439 ] avgwd           C:\Program Files\AVG\AVG2013\avgwdsvc.exe
22:06:01.0703 0872  avgwd - ok
22:06:01.0734 0872  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
22:06:01.0828 0872  Beep - ok
22:06:01.0875 0872  [ 78200FAA6FD9C69394134C238C87FB7F ] BITS            C:\WINDOWS\system32\qmgr.dll
22:06:02.0078 0872  BITS - ok
22:06:02.0093 0872  [ 28CF58E8E2967275ECCCA577A4F2FEEF ] Browser         C:\WINDOWS\System32\browser.dll
22:06:02.0203 0872  Browser - ok
22:06:02.0281 0872  catchme - ok
22:06:02.0296 0872  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
22:06:02.0421 0872  cbidf2k - ok
22:06:02.0421 0872  cd20xrnt - ok
22:06:02.0453 0872  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
22:06:02.0562 0872  Cdaudio - ok
22:06:02.0593 0872  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
22:06:02.0703 0872  Cdfs - ok
22:06:02.0718 0872  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:06:02.0843 0872  Cdrom - ok
22:06:02.0890 0872  [ D55E3B95DE489C1B039DB854924B0CDC ] cFosSpeed       C:\WINDOWS\system32\DRIVERS\cfosspeed.sys
22:06:03.0093 0872  cFosSpeed - ok
22:06:03.0140 0872  [ C1CB3C324114614C7B7DCA2BA600F23B ] cFosSpeedS      C:\Program Files\ASRock\XFast LAN\spd.exe
22:06:03.0265 0872  cFosSpeedS - ok
22:06:03.0265 0872  Changer - ok
22:06:03.0281 0872  [ 45B63DF2FB498D219FCBB4425CADE676 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
22:06:03.0484 0872  CiSvc - ok
22:06:03.0500 0872  [ C94F1B6F61858D6389C0FA06954FB9C4 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
22:06:03.0671 0872  ClipSrv - ok
22:06:03.0703 0872  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:06:03.0734 0872  clr_optimization_v2.0.50727_32 - ok
22:06:03.0765 0872  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
22:06:03.0875 0872  clr_optimization_v4.0.30319_32 - ok
22:06:03.0937 0872  [ 907324001AE25AC5959C91EAA34CABAE ] cmdAgent        C:\Program Files\COMODO\COMODO Internet Security\cmdagent.exe
22:06:04.0062 0872  cmdAgent - ok
22:06:04.0078 0872  [ 0EC8D44534D96776B04C6908E0B5F4B3 ] cmderd          C:\WINDOWS\system32\DRIVERS\cmderd.sys
22:06:04.0093 0872  cmderd - ok
22:06:04.0250 0872  [ BEE235831F8E3F0BAACA18B39D285CF5 ] cmdGuard        C:\WINDOWS\system32\DRIVERS\cmdguard.sys
22:06:04.0500 0872  cmdGuard - ok
22:06:04.0515 0872  [ DE548946F36CAB62FEC2E6AA0149A619 ] cmdHlp          C:\WINDOWS\system32\DRIVERS\cmdhlp.sys
22:06:04.0531 0872  cmdHlp - ok
22:06:04.0546 0872  CmdIde - ok
22:06:04.0546 0872  COMSysApp - ok
22:06:04.0562 0872  Cpqarray - ok
22:06:04.0593 0872  [ 6B105FE95F2E9F0B6346044BA59D41C9 ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
22:06:04.0781 0872  CryptSvc - ok
22:06:04.0781 0872  dac2w2k - ok
22:06:04.0781 0872  dac960nt - ok
22:06:04.0828 0872  [ C9E5AC78D9A00B1DE8CE2AD1BDDE7E42 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
22:06:04.0875 0872  DcomLaunch - ok
22:06:04.0906 0872  [ 1C420FBB33FDF3CE282B39E0C20B0E82 ] DefragFS        C:\WINDOWS\system32\drivers\DefragFS.sys
22:06:04.0921 0872  DefragFS - ok
22:06:04.0953 0872  [ 6B4AFE7C676CFF3EFF2DC06A4EE945F7 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
22:06:05.0062 0872  Dhcp - ok
22:06:05.0078 0872  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
22:06:05.0281 0872  Disk - ok
22:06:05.0281 0872  dmadmin - ok
22:06:05.0312 0872  [ BC9219ABC5696942E6F9AC8A9B28670F ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
22:06:05.0656 0872  dmboot - ok
22:06:05.0671 0872  [ 5FA232E3BA6E1346F9F5A7E519320CB0 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
22:06:05.0875 0872  dmio - ok
22:06:05.0906 0872  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
22:06:06.0015 0872  dmload - ok
22:06:06.0062 0872  [ D858920A05076914D34B0388E8D96CC0 ] dmserver        C:\WINDOWS\System32\dmserver.dll
22:06:06.0218 0872  dmserver - ok
22:06:06.0250 0872  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
22:06:06.0359 0872  DMusic - ok
22:06:06.0390 0872  [ 4CE42967710BEB87AE805D9DA7A87499 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
22:06:06.0484 0872  Dnscache - ok
22:06:06.0500 0872  [ E0B7D66CF29D9ADCCF873C77821CD4CA ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll
22:06:06.0703 0872  Dot3svc - ok
22:06:06.0703 0872  dpti2o - ok
22:06:06.0734 0872  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
22:06:06.0843 0872  drmkaud - ok
22:06:06.0859 0872  [ 5F256C1AD50FEFDC442CD5AAB58C7DD8 ] EapHost         C:\WINDOWS\System32\eapsvc.dll
22:06:07.0046 0872  EapHost - ok
22:06:07.0062 0872  [ ED1B71382C31FD2CF3CDC4672EFAD6EA ] ERSvc           C:\WINDOWS\System32\ersvc.dll
22:06:07.0234 0872  ERSvc - ok
22:06:07.0250 0872  [ 8816E60BF654353E8E0D35ED98875445 ] Eventlog        C:\WINDOWS\system32\services.exe
22:06:07.0359 0872  Eventlog - ok
22:06:07.0390 0872  [ 5BB3E442E43C7BB0F38203F23C920D3C ] EventSystem     C:\WINDOWS\system32\es.dll
22:06:07.0531 0872  EventSystem - ok
22:06:07.0546 0872  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
22:06:07.0625 0872  Fastfat - ok
22:06:07.0640 0872  [ 232D5719F86E05B7FE34F038D4FC84B2 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
22:06:07.0781 0872  FastUserSwitchingCompatibility - ok
22:06:07.0796 0872  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
22:06:07.0921 0872  Fdc - ok
22:06:07.0953 0872  [ 09E2A4D33F81A06A8AAB2BA0A0B5D235 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
22:06:08.0125 0872  Fips - ok
22:06:08.0140 0872  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
22:06:08.0250 0872  Flpydisk - ok
22:06:08.0265 0872  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
22:06:08.0375 0872  FltMgr - ok
22:06:08.0390 0872  [ 4BD9964632325802F8DC971F6987CD1B ] FNETTBOH_305    C:\WINDOWS\system32\drivers\FNETTBOH_305.SYS
22:06:08.0500 0872  FNETTBOH_305 - ok
22:06:08.0515 0872  [ 47BDA10316324CFA540F25AB7021F0D8 ] FNETURPX        C:\WINDOWS\system32\drivers\FNETURPX.SYS
22:06:08.0609 0872  FNETURPX - ok
22:06:08.0656 0872  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:06:08.0671 0872  FontCache3.0.0.0 - ok
22:06:08.0703 0872  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:06:08.0796 0872  Fs_Rec - ok
22:06:08.0828 0872  [ ED6D921D8AB423138FB35BEEE6D6A6CB ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:06:09.0015 0872  Ftdisk - ok
22:06:09.0046 0872  [ 77EBF3E9386DAA51551AF429052D88D0 ] giveio          C:\WINDOWS\system32\giveio.sys
22:06:09.0062 0872  giveio ( UnsignedFile.Multi.Generic ) - warning
22:06:09.0062 0872  giveio - detected UnsignedFile.Multi.Generic (1)
22:06:09.0078 0872  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:06:09.0187 0872  Gpc - ok
22:06:09.0218 0872  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
22:06:09.0328 0872  HDAudBus - ok
22:06:09.0359 0872  [ AF752014F7EB61542E3F35B9374D7E76 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:06:09.0546 0872  helpsvc - ok
22:06:09.0546 0872  HidServ - ok
22:06:09.0578 0872  [ F0273916DA6FB64CC88E0BD77619554F ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll
22:06:09.0781 0872  hkmsvc - ok
22:06:09.0796 0872  hpn - ok
22:06:09.0828 0872  [ 937031C085718C1C04A9C0864625EC6B ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
22:06:09.0875 0872  HTTP - ok
22:06:09.0890 0872  [ AA268079AC119F3A596E5E27AEE4BD17 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
22:06:10.0046 0872  HTTPFilter - ok
22:06:10.0046 0872  i2omgmt - ok
22:06:10.0062 0872  i2omp - ok
22:06:10.0078 0872  [ 177B372AF55C4460D0968B5F1D02AA1C ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:06:10.0250 0872  i8042prt - ok
22:06:10.0312 0872  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:06:10.0390 0872  idsvc - ok
22:06:10.0421 0872  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
22:06:10.0531 0872  Imapi - ok
22:06:10.0562 0872  [ 9125AF650608A921F98A789E5C5BA864 ] ImapiService    C:\WINDOWS\system32\imapi.exe
22:06:10.0734 0872  ImapiService - ok
22:06:10.0734 0872  ini910u - ok
22:06:10.0765 0872  [ F89849CF13805EF49DA64A8A63193AF7 ] Inspect         C:\WINDOWS\system32\DRIVERS\inspect.sys
22:06:10.0796 0872  Inspect - ok
22:06:10.0796 0872  IntelIde - ok
22:06:10.0828 0872  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
22:06:10.0937 0872  Ip6Fw - ok
22:06:10.0953 0872  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:06:11.0062 0872  IpFilterDriver - ok
22:06:11.0093 0872  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:06:11.0203 0872  IpInIp - ok
22:06:11.0234 0872  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:06:11.0343 0872  IpNat - ok
22:06:11.0375 0872  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:06:11.0484 0872  IPSec - ok
22:06:11.0515 0872  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
22:06:11.0562 0872  IRENUM - ok
22:06:11.0578 0872  [ C8EEF2E93835B81BD335DE2123121283 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:06:11.0765 0872  isapnp - ok
22:06:11.0796 0872  [ 2AECA45D4AEAACBDCB77AD11184E4601 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:06:11.0984 0872  Kbdclass - ok
22:06:12.0000 0872  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
22:06:12.0109 0872  kmixer - ok
22:06:12.0140 0872  [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
22:06:12.0203 0872  KSecDD - ok
22:06:12.0218 0872  [ 005A9AE1D43CB7E28036637C094D7D7D ] LanmanServer    C:\WINDOWS\System32\srvsvc.dll
22:06:12.0328 0872  LanmanServer - ok
22:06:12.0359 0872  [ 31D2FE1091E94354336B4E85DB818745 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
22:06:12.0484 0872  lanmanworkstation - ok
22:06:12.0484 0872  lbrtfdc - ok
22:06:12.0515 0872  [ 437AA83D68F9FAC234CA68DBD40DB705 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
22:06:12.0718 0872  LmHosts - ok
22:06:12.0718 0872  [ 36F3AB18B1BE303DA51DE90A67DE3942 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
22:06:12.0890 0872  Messenger - ok
22:06:12.0906 0872  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
22:06:13.0031 0872  mnmdd - ok
22:06:13.0046 0872  [ 845814A8CB9D704D030F076E1BCE83F3 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
22:06:13.0250 0872  mnmsrvc - ok
22:06:13.0265 0872  [ 4A068DB7DC37D5AFEDB6512D2931D7B3 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
22:06:13.0468 0872  Modem - ok
22:06:13.0531 0872  [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5 ] monfilt         C:\WINDOWS\system32\drivers\monfilt.sys
22:06:13.0640 0872  monfilt - ok
22:06:13.0671 0872  [ FBED3DF6B884F8CF00447B73507F2C48 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:06:13.0859 0872  Mouclass - ok
22:06:13.0875 0872  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
22:06:13.0984 0872  MountMgr - ok
22:06:14.0015 0872  [ C9D80ECFE4C6AF063E5F73711FE56A65 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:06:14.0140 0872  MozillaMaintenance - ok
22:06:14.0140 0872  mraid35x - ok
22:06:14.0171 0872  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:06:14.0296 0872  MRxDAV - ok
22:06:14.0312 0872  [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:06:14.0484 0872  MRxSmb - ok
22:06:14.0515 0872  [ A54C5EECC7D3424824410BAE0AA6C371 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
22:06:14.0703 0872  MSDTC - ok
22:06:14.0734 0872  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
22:06:14.0828 0872  Msfs - ok
22:06:14.0843 0872  MSIServer - ok
22:06:14.0859 0872  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:06:14.0968 0872  MSKSSRV - ok
22:06:15.0000 0872  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:06:15.0109 0872  MSPCLOCK - ok
22:06:15.0125 0872  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
22:06:15.0218 0872  MSPQM - ok
22:06:15.0250 0872  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:06:15.0359 0872  mssmbios - ok
22:06:15.0375 0872  [ F7B1AD991491F02AF6DA70B00B8BF114 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
22:06:15.0500 0872  Mup - ok
22:06:15.0531 0872  [ 14CB8528E17D1221C50FC8CA88B1795F ] napagent        C:\WINDOWS\System32\qagentrt.dll
22:06:15.0718 0872  napagent - ok
22:06:15.0750 0872  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
22:06:15.0859 0872  NDIS - ok
22:06:15.0875 0872  [ 091735A5F20ACB1DC147383A905AE002 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:06:15.0984 0872  NdisTapi - ok
22:06:16.0000 0872  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:06:16.0125 0872  Ndisuio - ok
22:06:16.0140 0872  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:06:16.0250 0872  NdisWan - ok
22:06:16.0281 0872  [ 816460BD4B4ACD27937D1D0813E2E9E9 ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
22:06:16.0375 0872  NDProxy - ok
22:06:16.0406 0872  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
22:06:16.0500 0872  NetBIOS - ok
22:06:16.0515 0872  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
22:06:16.0625 0872  NetBT - ok
22:06:16.0656 0872  [ CBB409B314309FCFFCE5E682E91338C6 ] NetDDE          C:\WINDOWS\system32\netdde.exe
22:06:16.0812 0872  NetDDE - ok
22:06:16.0828 0872  [ CBB409B314309FCFFCE5E682E91338C6 ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
22:06:16.0937 0872  NetDDEdsdm - ok
22:06:16.0968 0872  [ 88296F7943F30A1EE3AF735440B92268 ] Netlogon        C:\WINDOWS\system32\lsass.exe
22:06:17.0062 0872  Netlogon - ok
22:06:17.0093 0872  [ 4FE97D0B1B182DF2A9BDD4C02155EF5E ] Netman          C:\WINDOWS\System32\netman.dll
22:06:17.0218 0872  Netman - ok
22:06:17.0250 0872  [ D22CD77D4F0D63D1169BB35911BFF12D ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
22:06:17.0296 0872  NetTcpPortSharing - ok
22:06:17.0343 0872  [ BF80D884E1C60DED1C7CEA3EC6F9DC28 ] Nla             C:\WINDOWS\System32\mswsock.dll
22:06:17.0390 0872  Nla - ok
22:06:17.0453 0872  [ 193FA51DDDD0BFFDED1C340F0434999A ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
22:06:17.0593 0872  NMIndexingService - ok
22:06:17.0625 0872  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
22:06:17.0734 0872  Npfs - ok
22:06:17.0765 0872  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
22:06:17.0906 0872  Ntfs - ok
22:06:17.0921 0872  [ 88296F7943F30A1EE3AF735440B92268 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
22:06:18.0015 0872  NtLmSsp - ok
22:06:18.0046 0872  [ 3FB5399DBB7001A80D58EDAD64C98225 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
22:06:18.0296 0872  NtmsSvc - ok
22:06:18.0312 0872  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
22:06:18.0421 0872  Null - ok
22:06:18.0562 0872  [ 02E3A5CF6DE77DBA144550FD1C4A4CD9 ] nv              C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:06:19.0812 0872  nv - ok
22:06:19.0843 0872  [ C03E15101F6D9E82CD9B0E7D715F5DE3 ] nvatabus        C:\WINDOWS\system32\drivers\nvatabus.sys
22:06:19.0859 0872  nvatabus ( UnsignedFile.Multi.Generic ) - warning
22:06:19.0859 0872  nvatabus - detected UnsignedFile.Multi.Generic (1)
22:06:19.0890 0872  [ 70217A23470F4BB4C8FB4ABE06813081 ] NVENETFD        C:\WINDOWS\system32\DRIVERS\NVENETFD.sys
22:06:19.0984 0872  NVENETFD - ok
22:06:20.0015 0872  [ EA98BFE4931BD13D747D647C1859796E ] nvgts           C:\WINDOWS\system32\DRIVERS\nvgts.sys
22:06:20.0031 0872  nvgts - ok
22:06:20.0046 0872  [ BE8513730653384939A4D2D977C81027 ] nvnetbus        C:\WINDOWS\system32\DRIVERS\nvnetbus.sys
22:06:20.0156 0872  nvnetbus - ok
22:06:20.0187 0872  [ 679B4BD1152079FB65F4A28D7E3BD5D8 ] NVSvc           C:\WINDOWS\system32\nvsvc32.exe
22:06:20.0312 0872  NVSvc - ok
22:06:20.0328 0872  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:06:20.0453 0872  NwlnkFlt - ok
22:06:20.0453 0872  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:06:20.0562 0872  NwlnkFwd - ok
22:06:20.0656 0872  [ 440D11C55C470D972E3300906763CD3A ] OODefragAgent   C:\Program Files\OO Software\Defrag\oodag.exe
22:06:20.0921 0872  OODefragAgent - ok
22:06:20.0953 0872  [ 2D4CDAEBCED17743AA9E25D3016DC229 ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys
22:06:21.0140 0872  Parport - ok
22:06:21.0156 0872  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
22:06:21.0250 0872  PartMgr - ok
22:06:21.0312 0872  [ 453EC2C2A20A1382F564541918520EEB ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
22:06:21.0500 0872  ParVdm - ok
22:06:21.0546 0872  [ 61A5701E3F543861B21BBE0932C4CC03 ] pbfilter        C:\Program Files\PeerBlock\pbfilter.sys
22:06:21.0640 0872  pbfilter - ok
22:06:21.0656 0872  [ 6862C69168D787B85A7D95CCD33C694E ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
22:06:21.0843 0872  PCI - ok
22:06:21.0843 0872  PCIDump - ok
22:06:21.0875 0872  [ 548CF2D6369EAE441A4C6BAA75BC4F0A ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
22:06:22.0046 0872  PCIIde - ok
22:06:22.0078 0872  [ 8DB27F1AE9593C94095485305A583862 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
22:06:22.0234 0872  Pcmcia - ok
22:06:22.0312 0872  [ 8C961BFBB8299457ABA0074B380AA1C0 ] PDAgent         C:\Program Files\Raxco\PerfectDisk\PDAgent.exe
22:06:22.0406 0872  PDAgent - ok
22:06:22.0406 0872  PDCOMP - ok
22:06:22.0484 0872  [ 4FEE2CC07B7E21260F989E165AE740E5 ] PDEngine        C:\Program Files\Common Files\Raxco\Shared\PDEngine.exe
22:06:22.0562 0872  PDEngine - ok
22:06:22.0562 0872  PDFRAME - ok
22:06:22.0593 0872  [ 40C611622882C3FCAFEB845C1E12A10F ] PDFSFilter      C:\WINDOWS\system32\DRIVERS\PDFsFilter.sys
22:06:22.0625 0872  PDFSFilter - ok
22:06:22.0625 0872  PDRELI - ok
22:06:22.0625 0872  PDRFRAME - ok
22:06:22.0640 0872  perc2 - ok
22:06:22.0640 0872  perc2hib - ok
22:06:22.0671 0872  [ 8816E60BF654353E8E0D35ED98875445 ] PlugPlay        C:\WINDOWS\system32\services.exe
22:06:22.0687 0872  PlugPlay - ok
22:06:22.0687 0872  [ 88296F7943F30A1EE3AF735440B92268 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
22:06:22.0796 0872  PolicyAgent - ok
22:06:22.0812 0872  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:06:22.0921 0872  PptpMiniport - ok
22:06:22.0937 0872  [ 7A1367D250502C6416A4D3A19EF155F5 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys
22:06:23.0140 0872  Processor - ok
22:06:23.0156 0872  [ 88296F7943F30A1EE3AF735440B92268 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
22:06:23.0250 0872  ProtectedStorage - ok
22:06:23.0265 0872  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
22:06:23.0359 0872  PSched - ok
22:06:23.0390 0872  [ 543A4EF0923BF70D126625B034EF25AF ] PSI_SVC_2       c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe
22:06:23.0406 0872  PSI_SVC_2 - ok
22:06:23.0437 0872  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:06:23.0546 0872  Ptilink - ok
22:06:23.0578 0872  [ D86B4A68565E444D76457F14172C875A ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:06:23.0593 0872  PxHelp20 - ok
22:06:23.0593 0872  ql1080 - ok
22:06:23.0609 0872  Ql10wnt - ok
22:06:23.0609 0872  ql12160 - ok
22:06:23.0609 0872  ql1240 - ok
22:06:23.0625 0872  ql1280 - ok
22:06:23.0640 0872  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:06:23.0750 0872  RasAcd - ok
22:06:23.0765 0872  [ BC22C5E1238D4D36D65679E249C483C3 ] RasAuto         C:\WINDOWS\System32\rasauto.dll
22:06:23.0968 0872  RasAuto - ok
22:06:23.0984 0872  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:06:24.0093 0872  Rasl2tp - ok
22:06:24.0109 0872  [ 0C392E397B8D34AAAF19EC6119CBB788 ] RasMan          C:\WINDOWS\System32\rasmans.dll
22:06:24.0312 0872  RasMan - ok
22:06:24.0328 0872  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:06:24.0453 0872  RasPppoe - ok
22:06:24.0468 0872  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
22:06:24.0562 0872  Raspti - ok
22:06:24.0609 0872  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:06:24.0703 0872  Rdbss - ok
22:06:24.0718 0872  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:06:24.0812 0872  RDPCDD - ok
22:06:24.0843 0872  [ 15CABD0F7C00C47C70124907916AF3F1 ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:06:24.0953 0872  rdpdr - ok
22:06:24.0984 0872  [ C7D9BC54354B8C706ABF172D48313F1B ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
22:06:25.0093 0872  RDPWD - ok
22:06:25.0125 0872  [ F83907A9A038DB2E35329B039628D293 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
22:06:25.0328 0872  RDSessMgr - ok
22:06:25.0359 0872  [ E0C7BBD18040B58651BAC700C804861D ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
22:06:25.0531 0872  redbook - ok
22:06:25.0546 0872  [ B3F57E6115BCD4DBADE9874F300655E3 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
22:06:25.0718 0872  RemoteAccess - ok
22:06:25.0734 0872  [ B472B59EF98469C91651B751D3442CB8 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
22:06:25.0906 0872  RemoteRegistry - ok
22:06:25.0937 0872  [ 6BC4D5A70F46EA27DDC14E5414C862A5 ] RpcLocator      C:\WINDOWS\system32\locator.exe
22:06:26.0078 0872  RpcLocator - ok
22:06:26.0109 0872  [ C9E5AC78D9A00B1DE8CE2AD1BDDE7E42 ] RpcSs           C:\WINDOWS\System32\rpcss.dll
22:06:26.0125 0872  RpcSs - ok
22:06:26.0171 0872  [ 9ACEE3313020A01235336C2A483AFD1A ] RSVP            C:\WINDOWS\system32\rsvp.exe
22:06:26.0343 0872  RSVP - ok
22:06:26.0343 0872  [ 88296F7943F30A1EE3AF735440B92268 ] SamSs           C:\WINDOWS\system32\lsass.exe
22:06:26.0437 0872  SamSs - ok
22:06:26.0468 0872  [ C6F479218E94896738C06AF5BA6AB3D3 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
22:06:26.0640 0872  SCardSvr - ok
22:06:26.0671 0872  [ 9FEB2026A460916D1A1198B460632630 ] SCDEmu          C:\WINDOWS\system32\drivers\SCDEmu.sys
22:06:26.0687 0872  SCDEmu ( UnsignedFile.Multi.Generic ) - warning
22:06:26.0687 0872  SCDEmu - detected UnsignedFile.Multi.Generic (1)
22:06:26.0703 0872  [ DD73C11A5C4D14945846384B90A61A4B ] Schedule        C:\WINDOWS\system32\schedsvc.dll
22:06:26.0906 0872  Schedule - ok
22:06:26.0921 0872  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:06:26.0984 0872  Secdrv - ok
22:06:26.0984 0872  [ 2AAD9026648120FFFE2A8D871BB2BBC7 ] seclogon        C:\WINDOWS\System32\seclogon.dll
22:06:27.0156 0872  seclogon - ok
22:06:27.0187 0872  [ 9D01E29D59723EB73B72107B208DAFE6 ] SENS            C:\WINDOWS\system32\sens.dll
22:06:27.0343 0872  SENS - ok
22:06:27.0359 0872  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys
22:06:27.0453 0872  serenum - ok
22:06:27.0468 0872  [ D07B02F88165E69B9F17162CF592C8A6 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys
22:06:27.0640 0872  Serial - ok
22:06:27.0687 0872  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
22:06:27.0796 0872  Sfloppy - ok
22:06:27.0812 0872  [ DA5C015911F68F22ED821E9EE49AB233 ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
22:06:27.0984 0872  SharedAccess - ok
22:06:28.0000 0872  [ 232D5719F86E05B7FE34F038D4FC84B2 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
22:06:28.0015 0872  ShellHWDetection - ok
22:06:28.0046 0872  [ 2525F35D0A0E94BB0CA7B4B68117B453 ] Si3112          C:\WINDOWS\system32\drivers\Si3112.sys
22:06:28.0062 0872  Si3112 - ok
22:06:28.0078 0872  [ 09889D435EDC82435B18C7C311FE5721 ] Si3114r5        C:\WINDOWS\system32\drivers\Si3114r5.sys
22:06:28.0093 0872  Si3114r5 - ok
22:06:28.0109 0872  [ AAAA385FFBAAF3FD89F8CE26FF0D0751 ] Si3124          C:\WINDOWS\system32\drivers\Si3124.sys
22:06:28.0125 0872  Si3124 ( UnsignedFile.Multi.Generic ) - warning
22:06:28.0125 0872  Si3124 - detected UnsignedFile.Multi.Generic (1)
22:06:28.0140 0872  [ 0B9B5C6DF6226497EF4819B6E1B2EFD5 ] Si3132          C:\WINDOWS\system32\drivers\Si3132.sys
22:06:28.0156 0872  Si3132 - ok
22:06:28.0187 0872  [ 227E56633D6423E1F7D869618AC8404F ] Si3132r5        C:\WINDOWS\system32\drivers\Si3132r5.sys
22:06:28.0203 0872  Si3132r5 - ok
22:06:28.0234 0872  [ 4346D5BBDDE7756D8614A3F193D60984 ] Si3531          C:\WINDOWS\system32\drivers\Si3531.sys
22:06:28.0250 0872  Si3531 - ok
22:06:28.0250 0872  Simbad - ok
22:06:28.0265 0872  Sparrow - ok
22:06:28.0312 0872  [ 3FA2E254BFBCE52B3C6F1BF23AAB6911 ] speedfan        C:\WINDOWS\system32\speedfan.sys
22:06:28.0390 0872  speedfan - ok
22:06:28.0421 0872  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
22:06:28.0515 0872  splitter - ok
22:06:28.0546 0872  [ 258DD5D4283FD9F9A7166BE9AE45CE73 ] Spooler         C:\WINDOWS\system32\spoolsv.exe
22:06:28.0640 0872  Spooler - ok
22:06:28.0671 0872  [ EB032822BE406EF220D546DDFFCF0002 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
22:06:28.0812 0872  sr - ok
22:06:28.0843 0872  [ 316D0E66074AE4CDE641C50D3A1C5148 ] srservice       C:\WINDOWS\system32\srsvc.dll
22:06:28.0968 0872  srservice - ok
22:06:28.0984 0872  [ 9B390283569EA58D43D2586032B892F5 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
22:06:29.0031 0872  Srv - ok
22:06:29.0062 0872  [ 2C0B1224AA36B4CA1753302BAA855882 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
22:06:29.0187 0872  SSDPSRV - ok
22:06:29.0234 0872  [ 41508EA375C97DC2B56E5F1AFC067187 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
22:06:29.0421 0872  stisvc - ok
22:06:29.0437 0872  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
22:06:29.0531 0872  swenum - ok
22:06:29.0546 0872  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
22:06:29.0656 0872  swmidi - ok
22:06:29.0656 0872  SwPrv - ok
22:06:29.0671 0872  symc810 - ok
22:06:29.0671 0872  symc8xx - ok
22:06:29.0671 0872  sym_hi - ok
22:06:29.0687 0872  sym_u3 - ok
22:06:29.0703 0872  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
22:06:29.0796 0872  sysaudio - ok
22:06:29.0828 0872  [ E42048198518F9162027A9984CBB7B5C ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
22:06:29.0984 0872  SysmonLog - ok
22:06:30.0015 0872  [ 2340E6977548038C88E39A9ECBB3FADC ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
22:06:30.0218 0872  TapiSrv - ok
22:06:30.0250 0872  [ E248A8391D7388A0A3679D1FB33E003D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:06:30.0390 0872  Tcpip ( UnsignedFile.Multi.Generic ) - warning
22:06:30.0390 0872  Tcpip - detected UnsignedFile.Multi.Generic (1)
22:06:30.0437 0872  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
22:06:30.0515 0872  TDPIPE - ok
22:06:30.0531 0872  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
22:06:30.0609 0872  TDTCP - ok
22:06:30.0625 0872  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
22:06:30.0734 0872  TermDD - ok
22:06:30.0765 0872  [ 52E0505408EDD4AB5CCC7F83B67B4299 ] TermService     C:\WINDOWS\System32\termsrv.dll
22:06:30.0968 0872  TermService - ok
22:06:30.0984 0872  [ 232D5719F86E05B7FE34F038D4FC84B2 ] Themes          C:\WINDOWS\System32\shsvcs.dll
22:06:31.0000 0872  Themes - ok
22:06:31.0015 0872  [ B17551AB6EAA71DCA530632C15FA3D9A ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
22:06:31.0140 0872  TlntSvr - ok
22:06:31.0156 0872  TosIde - ok
22:06:31.0187 0872  [ 9E70EB419D7785C286DC458A019BAB9B ] TrkWks          C:\WINDOWS\system32\trkwks.dll
22:06:31.0343 0872  TrkWks - ok
22:06:31.0375 0872  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
22:06:31.0484 0872  Udfs - ok
22:06:31.0500 0872  ultra - ok
22:06:31.0531 0872  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
22:06:31.0640 0872  Update - ok
22:06:31.0671 0872  [ E96A6BAEE0B2A14A38B45830D6E30697 ] upnphost        C:\WINDOWS\System32\upnphost.dll
22:06:31.0843 0872  upnphost - ok
22:06:31.0859 0872  [ EB90E28B28541EC845E5345609355CA7 ] UPS             C:\WINDOWS\System32\ups.exe
22:06:32.0031 0872  UPS - ok
22:06:32.0031 0872  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:06:32.0125 0872  usbehci - ok
22:06:32.0156 0872  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:06:32.0281 0872  usbhub - ok
22:06:32.0281 0872  [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
22:06:32.0375 0872  usbohci - ok
22:06:32.0406 0872  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:06:32.0500 0872  usbscan - ok
22:06:32.0515 0872  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:06:32.0609 0872  USBSTOR - ok
22:06:32.0640 0872  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
22:06:32.0734 0872  VgaSave - ok
22:06:32.0781 0872  [ 242A8309B952F7CA9E220D3439955B0E ] VIAHdAudAddService C:\WINDOWS\system32\drivers\viahduaa.sys
22:06:32.0859 0872  VIAHdAudAddService - ok
22:06:32.0875 0872  ViaIde - ok
22:06:32.0890 0872  [ 56B191AC5FC0DF219949C95A6C87AFE7 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
22:06:33.0093 0872  VolSnap - ok
22:06:33.0109 0872  [ 7F2D7BFFC4554E1C742DD3629FD1FB1B ] VSS             C:\WINDOWS\System32\vssvc.exe
22:06:33.0250 0872  VSS - ok
22:06:33.0265 0872  [ A672CA3981352F8E9C30FEA056E80A62 ] W32Time         C:\WINDOWS\system32\w32time.dll
22:06:33.0468 0872  W32Time - ok
22:06:33.0484 0872  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:06:33.0593 0872  Wanarp - ok
22:06:33.0593 0872  WDICA - ok
22:06:33.0609 0872  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
22:06:33.0703 0872  wdmaud - ok
22:06:33.0734 0872  [ 81FB88B975E25D76E00B69879D8A434C ] WebClient       C:\WINDOWS\System32\webclnt.dll
22:06:33.0890 0872  WebClient - ok
22:06:33.0953 0872  [ 70C22297534A88B0AD0568900AB5A6D9 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
22:06:34.0312 0872  winmgmt - ok
22:06:34.0578 0872  [ 166DF1636F99C1F816609BEE242E533D ] WinRM           C:\WINDOWS\system32\WsmSvc.dll
22:06:34.0828 0872  WinRM - ok
22:06:34.0875 0872  [ 051B1BDECD6DEE18C771B5D5EC7F044D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
22:06:34.0968 0872  WmdmPmSN - ok
22:06:35.0000 0872  [ E0DC77033075F52BC9AEE300DFD854F8 ] Wmi             C:\WINDOWS\System32\advapi32.dll
22:06:35.0046 0872  Wmi - ok
22:06:35.0078 0872  [ A2B12D80A1670511B047A7D8BB647598 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
22:06:35.0187 0872  WmiApSrv - ok
22:06:35.0250 0872  [ 9FBD45F6726D59F9D2A31E6552DF3A04 ] WMPNetworkSvc   C:\Program Files\Windows Media Player\WMPNetwk.exe
22:06:35.0484 0872  WMPNetworkSvc - ok
22:06:35.0531 0872  [ DCF3E3EDF5109EE8BC02FE6E1F045795 ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
22:06:35.0609 0872  WPFFontCache_v0400 - ok
22:06:35.0640 0872  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
22:06:35.0734 0872  WS2IFSL - ok
22:06:35.0781 0872  [ B6669F49D42E09BC0F9889FAA0F3336D ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
22:06:35.0953 0872  wscsvc - ok
22:06:36.0000 0872  [ 04550D5EB7EE82C115DB547C01DF09FD ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
22:06:36.0171 0872  wuauserv - ok
22:06:36.0187 0872  [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:06:36.0234 0872  WudfPf - ok
22:06:36.0234 0872  [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:06:36.0265 0872  WudfRd - ok
22:06:36.0296 0872  [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll
22:06:36.0328 0872  WudfSvc - ok
22:06:36.0359 0872  [ C2842273AAA77AC031EDB87FA19A2147 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
22:06:36.0484 0872  WZCSVC - ok
22:06:36.0515 0872  [ 24ED6935771359A5AEF1FE8BF0C56F39 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
22:06:36.0687 0872  xmlprov - ok
22:06:36.0703 0872  ================ Scan global ===============================
22:06:36.0718 0872  [ 65C782F8CFC1BEBCC58E1532F44B6408 ] C:\WINDOWS\system32\basesrv.dll
22:06:36.0812 0872  [ DE74F0C6A6B1C1F5DA0A0C340DC9ACE0 ] C:\WINDOWS\system32\winsrv.dll
22:06:36.0953 0872  [ DE74F0C6A6B1C1F5DA0A0C340DC9ACE0 ] C:\WINDOWS\system32\winsrv.dll
22:06:36.0968 0872  [ 8816E60BF654353E8E0D35ED98875445 ] C:\WINDOWS\system32\services.exe
22:06:36.0968 0872  [Global] - ok
22:06:36.0968 0872  ================ Scan MBR ==================================
22:06:36.0984 0872  [ 32052574BF9F325AE309ABC7BFD04460 ] \Device\Harddisk0\DR0
22:06:37.0265 0872  \Device\Harddisk0\DR0 - ok
22:06:37.0281 0872  [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk1\DR1
22:06:38.0140 0872  \Device\Harddisk1\DR1 - ok
22:06:49.0390 0872  [ D740F5431AECF35F1DEB03AAE2504724 ] \Device\Harddisk2\DR17
22:10:34.0718 0872  \Device\Harddisk2\DR17 - ok
22:10:34.0718 0872  ================ Scan VBR ==================================
22:10:34.0734 0872  [ D86F02536A9A4B78E7DA0728C086776B ] \Device\Harddisk0\DR0\Partition1
22:10:34.0734 0872  \Device\Harddisk0\DR0\Partition1 - ok
22:10:34.0750 0872  [ 7BB920793DF33D3907C5645149B13C37 ] \Device\Harddisk0\DR0\Partition2
22:10:34.0750 0872  \Device\Harddisk0\DR0\Partition2 - ok
22:10:34.0765 0872  [ 66E1CAD90EC2521163FEFCF883ACC208 ] \Device\Harddisk0\DR0\Partition3
22:10:34.0765 0872  \Device\Harddisk0\DR0\Partition3 - ok
22:10:34.0781 0872  [ A6C328C5BF20D6D1389C6C9525E91E14 ] \Device\Harddisk0\DR0\Partition4
22:10:34.0796 0872  \Device\Harddisk0\DR0\Partition4 - ok
22:10:34.0796 0872  [ 2C2B332C1061C7A5F1161688951E9C40 ] \Device\Harddisk0\DR0\Partition5
22:10:34.0796 0872  \Device\Harddisk0\DR0\Partition5 - ok
22:10:34.0812 0872  [ 1DFB9569129F078155576F6D36643C3E ] \Device\Harddisk1\DR1\Partition1
22:10:34.0812 0872  \Device\Harddisk1\DR1\Partition1 - ok
22:10:34.0812 0872  [ 30C8960C1BD51206E168E2C1C008C780 ] \Device\Harddisk1\DR1\Partition2
22:10:34.0812 0872  \Device\Harddisk1\DR1\Partition2 - ok
22:10:34.0812 0872  [ C3218307487ACEA9CFFA62BA1A1779FD ] \Device\Harddisk1\DR1\Partition3
22:10:34.0812 0872  \Device\Harddisk1\DR1\Partition3 - ok
22:10:34.0812 0872  [ 52E623E034C82DCBF1C9ED6420509F56 ] \Device\Harddisk1\DR1\Partition4
22:10:34.0812 0872  \Device\Harddisk1\DR1\Partition4 - ok
22:10:34.0828 0872  [ 5A793A89CAE9610AD5B4729AF3EE5307 ] \Device\Harddisk1\DR1\Partition5
22:10:34.0828 0872  \Device\Harddisk1\DR1\Partition5 - ok
22:10:34.0828 0872  [ 0AB027F09821C6D183F2CF3BCAB6EE93 ] \Device\Harddisk1\DR1\Partition6
22:10:34.0828 0872  \Device\Harddisk1\DR1\Partition6 - ok
22:10:34.0828 0872  [ 1D165A8B5F2EDDD10BADF7BED0298BA7 ] \Device\Harddisk1\DR1\Partition7
22:10:34.0828 0872  \Device\Harddisk1\DR1\Partition7 - ok
22:10:34.0828 0872  [ 153165D76B19236C0B32EBD465C12FA6 ] \Device\Harddisk1\DR1\Partition8
22:10:34.0828 0872  \Device\Harddisk1\DR1\Partition8 - ok
22:10:34.0843 0872  [ 4B67F12DD5E81F11E77E4B44DA753B14 ] \Device\Harddisk1\DR1\Partition9
22:10:34.0843 0872  \Device\Harddisk1\DR1\Partition9 - ok
22:10:34.0843 0872  [ 2D94FA7C92B2A9687B37F03B12E84DA2 ] \Device\Harddisk1\DR1\Partition10
22:10:34.0843 0872  \Device\Harddisk1\DR1\Partition10 - ok
22:10:34.0843 0872  ============================================================
22:10:34.0843 0872  Scan finished
22:10:34.0843 0872  ============================================================
22:10:34.0953 3804  Detected object count: 5
22:10:34.0953 3804  Actual detected object count: 5
22:11:40.0953 3804  C:\WINDOWS\system32\giveio.sys - copied to quarantine
22:11:40.0953 3804  giveio ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
22:11:40.0968 3804  C:\WINDOWS\system32\drivers\nvatabus.sys - copied to quarantine
22:11:40.0968 3804  nvatabus ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
22:11:40.0984 3804  C:\WINDOWS\system32\drivers\SCDEmu.sys - copied to quarantine
22:11:40.0984 3804  SCDEmu ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
22:11:41.0000 3804  C:\WINDOWS\system32\drivers\Si3124.sys - copied to quarantine
22:11:41.0000 3804  Si3124 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
22:11:41.0031 3804  C:\WINDOWS\system32\DRIVERS\tcpip.sys - copied to quarantine
22:11:41.0046 3804  Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 
22:12:22.0593 2332  Deinitialize success