16:41:33.0078 2948	TDSS rootkit removing tool 2.7.2.0 Jan 14 2012 20:07:30
16:41:35.0109 2948	============================================================
16:41:35.0109 2948	Current date / time: 2012/01/16 16:41:35.0109
16:41:35.0109 2948	SystemInfo:
16:41:35.0109 2948	
16:41:35.0109 2948	OS Version: 5.1.2600 ServicePack: 2.0
16:41:35.0109 2948	Product type: Workstation
16:41:35.0109 2948	ComputerName: FAMILY
16:41:35.0109 2948	UserName: Ricky
16:41:35.0109 2948	Windows directory: C:\WINDOWS
16:41:35.0109 2948	System windows directory: C:\WINDOWS
16:41:35.0109 2948	Processor architecture: Intel x86
16:41:35.0109 2948	Number of processors: 1
16:41:35.0109 2948	Page size: 0x1000
16:41:35.0109 2948	Boot type: Normal boot
16:41:35.0109 2948	============================================================
16:41:36.0656 2948	Drive \Device\Harddisk0\DR0 - Size: 0x9502F9000, SectorSize: 0x200, Cylinders: 0x12FF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K', Flags 0x00000054
16:41:36.0671 2948	Drive \Device\Harddisk1\DR6 - Size: 0x3BF80000, SectorSize: 0x200, Cylinders: 0x7A, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:41:36.0718 2948	Initialize success
16:42:27.0640 1872	============================================================
16:42:27.0640 1872	Scan started
16:42:27.0640 1872	Mode: Manual; SigCheck; TDLFS; 
16:42:27.0640 1872	============================================================
16:42:27.0968 1872	Abiosdsk - ok
16:42:28.0046 1872	abp480n5        (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
16:42:36.0531 1872	abp480n5 - ok
16:42:36.0687 1872	ACPI            (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:42:36.0937 1872	ACPI - ok
16:42:37.0078 1872	ACPIEC          (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
16:42:37.0312 1872	ACPIEC - ok
16:42:37.0468 1872	adpu160m        (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
16:42:37.0687 1872	adpu160m - ok
16:42:37.0843 1872	aec             (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
16:42:38.0468 1872	aec - ok
16:42:38.0593 1872	AFD             (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
16:42:38.0656 1872	AFD - ok
16:42:38.0796 1872	agp440          (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
16:42:39.0015 1872	agp440 - ok
16:42:39.0171 1872	agpCPQ          (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
16:42:39.0421 1872	agpCPQ - ok
16:42:39.0562 1872	Aha154x         (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
16:42:39.0687 1872	Aha154x - ok
16:42:39.0843 1872	aic78u2         (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
16:42:40.0062 1872	aic78u2 - ok
16:42:40.0234 1872	aic78xx         (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
16:42:40.0500 1872	aic78xx - ok
16:42:40.0656 1872	AliIde          (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
16:42:40.0906 1872	AliIde - ok
16:42:41.0062 1872	alim1541        (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
16:42:41.0296 1872	alim1541 - ok
16:42:41.0359 1872	amdagp          (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
16:42:41.0609 1872	amdagp - ok
16:42:41.0734 1872	amsint          (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
16:42:41.0890 1872	amsint - ok
16:42:42.0015 1872	ApiMon - ok
16:42:42.0109 1872	asc             (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
16:42:42.0359 1872	asc - ok
16:42:42.0515 1872	asc3350p        (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
16:42:42.0640 1872	asc3350p - ok
16:42:42.0781 1872	asc3550         (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
16:42:43.0000 1872	asc3550 - ok
16:42:43.0078 1872	ASCTRM          (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
16:42:43.0093 1872	ASCTRM ( UnsignedFile.Multi.Generic ) - warning
16:42:43.0093 1872	ASCTRM - detected UnsignedFile.Multi.Generic (1)
16:42:43.0359 1872	AsyncMac        (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:42:43.0703 1872	AsyncMac - ok
16:42:43.0828 1872	atapi           (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
16:42:44.0046 1872	atapi - ok
16:42:44.0187 1872	Atdisk - ok
16:42:44.0578 1872	Atmarpc         (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:42:45.0500 1872	Atmarpc - ok
16:42:45.0593 1872	audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
16:42:45.0593 1872	audstub ( UnsignedFile.Multi.Generic ) - warning
16:42:45.0593 1872	audstub - detected UnsignedFile.Multi.Generic (1)
16:42:45.0734 1872	bcm4sbxp        (b60f57b4d9cdbc663cc03eb8af7ec34e) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
16:42:45.0750 1872	bcm4sbxp ( UnsignedFile.Multi.Generic ) - warning
16:42:45.0750 1872	bcm4sbxp - detected UnsignedFile.Multi.Generic (1)
16:42:45.0812 1872	Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
16:42:45.0812 1872	Beep ( UnsignedFile.Multi.Generic ) - warning
16:42:45.0812 1872	Beep - detected UnsignedFile.Multi.Generic (1)
16:42:45.0906 1872	BVRPMPR5        (248dfa5762dde38dfddbbd44149e9d7a) C:\WINDOWS\system32\drivers\BVRPMPR5.SYS
16:42:45.0906 1872	BVRPMPR5 ( UnsignedFile.Multi.Generic ) - warning
16:42:45.0906 1872	BVRPMPR5 - detected UnsignedFile.Multi.Generic (1)
16:42:46.0000 1872	cbea64eb        (8f2bb1827cac01aee6a16e30a1260199) C:\WINDOWS\3949259467:873831188.exe
16:42:46.0000 1872	Suspicious file (Hidden): C:\WINDOWS\3949259467:873831188.exe. md5: 8f2bb1827cac01aee6a16e30a1260199
16:42:46.0000 1872	cbea64eb ( Rootkit.Win32.PMax.gen ) - infected
16:42:46.0000 1872	cbea64eb - detected Rootkit.Win32.PMax.gen (0)
16:42:46.0171 1872	cbidf           (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
16:42:46.0171 1872	cbidf ( UnsignedFile.Multi.Generic ) - warning
16:42:46.0171 1872	cbidf - detected UnsignedFile.Multi.Generic (1)
16:42:46.0218 1872	cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
16:42:46.0234 1872	cbidf2k ( UnsignedFile.Multi.Generic ) - warning
16:42:46.0234 1872	cbidf2k - detected UnsignedFile.Multi.Generic (1)
16:42:46.0296 1872	cd20xrnt        (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
16:42:46.0296 1872	cd20xrnt ( UnsignedFile.Multi.Generic ) - warning
16:42:46.0296 1872	cd20xrnt - detected UnsignedFile.Multi.Generic (1)
16:42:46.0421 1872	Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
16:42:46.0421 1872	Cdaudio ( UnsignedFile.Multi.Generic ) - warning
16:42:46.0421 1872	Cdaudio - detected UnsignedFile.Multi.Generic (1)
16:42:46.0515 1872	Cdfs            (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
16:42:46.0531 1872	Cdfs ( UnsignedFile.Multi.Generic ) - warning
16:42:46.0531 1872	Cdfs - detected UnsignedFile.Multi.Generic (1)
16:42:46.0578 1872	Cdrom           (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:42:46.0593 1872	Cdrom ( UnsignedFile.Multi.Generic ) - warning
16:42:46.0593 1872	Cdrom - detected UnsignedFile.Multi.Generic (1)
16:42:46.0625 1872	Changer - ok
16:42:46.0718 1872	CmdIde          (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
16:42:46.0718 1872	CmdIde ( UnsignedFile.Multi.Generic ) - warning
16:42:46.0718 1872	CmdIde - detected UnsignedFile.Multi.Generic (1)
16:42:46.0796 1872	core - ok
16:42:46.0906 1872	Cpqarray        (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
16:42:46.0906 1872	Cpqarray ( UnsignedFile.Multi.Generic ) - warning
16:42:46.0906 1872	Cpqarray - detected UnsignedFile.Multi.Generic (1)
16:42:47.0015 1872	dac2w2k         (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
16:42:47.0031 1872	dac2w2k ( UnsignedFile.Multi.Generic ) - warning
16:42:47.0031 1872	dac2w2k - detected UnsignedFile.Multi.Generic (1)
16:42:47.0078 1872	dac960nt        (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
16:42:47.0093 1872	dac960nt ( UnsignedFile.Multi.Generic ) - warning
16:42:47.0093 1872	dac960nt - detected UnsignedFile.Multi.Generic (1)
16:42:47.0187 1872	Disk            (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
16:42:47.0203 1872	Disk ( UnsignedFile.Multi.Generic ) - warning
16:42:47.0203 1872	Disk - detected UnsignedFile.Multi.Generic (1)
16:42:47.0390 1872	dmboot          (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
16:42:47.0453 1872	dmboot ( UnsignedFile.Multi.Generic ) - warning
16:42:47.0453 1872	dmboot - detected UnsignedFile.Multi.Generic (1)
16:42:47.0609 1872	dmio            (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
16:42:47.0625 1872	dmio ( UnsignedFile.Multi.Generic ) - warning
16:42:47.0625 1872	dmio - detected UnsignedFile.Multi.Generic (1)
16:42:47.0687 1872	dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
16:42:47.0703 1872	dmload ( UnsignedFile.Multi.Generic ) - warning
16:42:47.0703 1872	dmload - detected UnsignedFile.Multi.Generic (1)
16:42:47.0796 1872	DMusic          (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
16:42:47.0796 1872	DMusic ( UnsignedFile.Multi.Generic ) - warning
16:42:47.0796 1872	DMusic - detected UnsignedFile.Multi.Generic (1)
16:42:47.0968 1872	dpti2o          (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
16:42:47.0968 1872	dpti2o ( UnsignedFile.Multi.Generic ) - warning
16:42:47.0968 1872	dpti2o - detected UnsignedFile.Multi.Generic (1)
16:42:48.0046 1872	drmkaud         (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
16:42:48.0062 1872	drmkaud ( UnsignedFile.Multi.Generic ) - warning
16:42:48.0062 1872	drmkaud - detected UnsignedFile.Multi.Generic (1)
16:42:48.0187 1872	drvmcdb         (e814854e6b246ccf498874839ab64d77) C:\WINDOWS\system32\drivers\drvmcdb.sys
16:42:48.0203 1872	drvmcdb ( UnsignedFile.Multi.Generic ) - warning
16:42:48.0203 1872	drvmcdb - detected UnsignedFile.Multi.Generic (1)
16:42:48.0343 1872	drvnddm         (ee83a4ebae70bc93cf14879d062f548b) C:\WINDOWS\system32\drivers\drvnddm.sys
16:42:48.0343 1872	drvnddm ( UnsignedFile.Multi.Generic ) - warning
16:42:48.0343 1872	drvnddm - detected UnsignedFile.Multi.Generic (1)
16:42:48.0421 1872	E100B           (3fca03cbca11269f973b70fa483c88ef) C:\WINDOWS\system32\DRIVERS\e100b325.sys
16:42:48.0437 1872	E100B ( UnsignedFile.Multi.Generic ) - warning
16:42:48.0437 1872	E100B - detected UnsignedFile.Multi.Generic (1)
16:42:48.0500 1872	eamon           (30372bcc67d63bee538cdfeca755d81c) C:\WINDOWS\system32\DRIVERS\eamon.sys
16:43:09.0031 1872	eamon - ok
16:43:09.0171 1872	ehdrv           (6504d6afb75fef830dd99e8c4235d54d) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
16:43:09.0218 1872	ehdrv - ok
16:43:09.0375 1872	epfwtdir        (ad414acda67d3020f7a04fb9c8621f01) C:\WINDOWS\system32\DRIVERS\epfwtdir.sys
16:43:09.0406 1872	epfwtdir - ok
16:43:09.0531 1872	Fastfat         (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
16:43:10.0796 1872	Fastfat - ok
16:43:11.0000 1872	Fdc             (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
16:43:11.0265 1872	Fdc - ok
16:43:11.0390 1872	Fips            (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
16:43:11.0609 1872	Fips - ok
16:43:11.0781 1872	Flpydisk        (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:43:12.0015 1872	Flpydisk - ok
16:43:12.0093 1872	FltMgr          (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
16:43:12.0765 1872	FltMgr - ok
16:43:12.0890 1872	Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:43:13.0125 1872	Fs_Rec - ok
16:43:13.0203 1872	Ftdisk          (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:43:13.0437 1872	Ftdisk - ok
16:43:13.0593 1872	Gpc             (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:43:13.0828 1872	Gpc - ok
16:43:13.0921 1872	HidUsb          (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:43:14.0140 1872	HidUsb - ok
16:43:14.0296 1872	hpn             (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
16:43:14.0515 1872	hpn - ok
16:43:14.0671 1872	HTTP            (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
16:43:14.0734 1872	HTTP - ok
16:43:14.0890 1872	i2omgmt         (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
16:43:15.0078 1872	i2omgmt - ok
16:43:15.0234 1872	i2omp           (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
16:43:15.0437 1872	i2omp - ok
16:43:15.0578 1872	i8042prt        (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
16:43:15.0796 1872	i8042prt - ok
16:43:15.0921 1872	ialm            (44b7d5a4f2bd9fe21aea0bb0bace38c4) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
16:43:16.0046 1872	ialm - ok
16:43:16.0203 1872	Imapi           (3168616c8b6a082b914f8e69f61a0160) C:\WINDOWS\system32\DRIVERS\imapi.sys
16:43:16.0203 1872	Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\imapi.sys. Real md5: 3168616c8b6a082b914f8e69f61a0160, Fake md5: f8aa320c6a0409c0380e5d8a99d76ec6
16:43:16.0203 1872	Imapi ( Rootkit.Win32.ZAccess.e ) - infected
16:43:16.0203 1872	Imapi - detected Rootkit.Win32.ZAccess.e (0)
16:43:16.0265 1872	ini910u         (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
16:43:16.0484 1872	ini910u - ok
16:43:16.0671 1872	IntelC51        (7509c548400f4c9e0211e3f6e66abbe6) C:\WINDOWS\system32\DRIVERS\IntelC51.sys
16:43:16.0781 1872	IntelC51 - ok
16:43:16.0953 1872	IntelC52        (9584ffdd41d37f2c239681d0dac2513e) C:\WINDOWS\system32\DRIVERS\IntelC52.sys
16:43:17.0031 1872	IntelC52 - ok
16:43:17.0156 1872	IntelC53        (cf0b937710cec6ef39416edecd803cbb) C:\WINDOWS\system32\DRIVERS\IntelC53.sys
16:43:17.0203 1872	IntelC53 - ok
16:43:17.0359 1872	IntelIde        (a76dfe8d0a2bb7acfc7dced7f396d923) C:\WINDOWS\system32\DRIVERS\intelide.sys
16:43:17.0359 1872	Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\intelide.sys. Real md5: a76dfe8d0a2bb7acfc7dced7f396d923, Fake md5: 2d722b2b54ab55b2fa475eb58d7b2aad
16:43:17.0359 1872	IntelIde ( Rootkit.Win32.TDSS.tdl3 ) - infected
16:43:17.0359 1872	IntelIde - detected Rootkit.Win32.TDSS.tdl3 (0)
16:43:17.0515 1872	intelppm        (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:43:17.0718 1872	intelppm - ok
16:43:17.0890 1872	Ip6Fw           (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
16:43:18.0078 1872	Ip6Fw - ok
16:43:18.0234 1872	IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:43:18.0437 1872	IpFilterDriver - ok
16:43:18.0484 1872	IpInIp          (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:43:18.0703 1872	IpInIp - ok
16:43:18.0859 1872	IpNat           (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:43:19.0562 1872	IpNat - ok
16:43:19.0718 1872	IPSec           (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:43:19.0953 1872	IPSec - ok
16:43:20.0031 1872	IRENUM          (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
16:43:20.0156 1872	IRENUM - ok
16:43:20.0328 1872	isapnp          (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:43:20.0546 1872	isapnp - ok
16:43:20.0687 1872	Kbdclass        (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:43:20.0906 1872	Kbdclass - ok
16:43:21.0046 1872	kbdhid          (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:43:21.0265 1872	kbdhid - ok
16:43:21.0406 1872	kmixer          (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
16:43:22.0109 1872	kmixer - ok
16:43:22.0250 1872	KSecDD          (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
16:43:22.0328 1872	KSecDD - ok
16:43:22.0453 1872	lbrtfdc - ok
16:43:22.0578 1872	mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
16:43:22.0765 1872	mnmdd - ok
16:43:22.0843 1872	Modem           (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
16:43:23.0046 1872	Modem - ok
16:43:23.0203 1872	MODEMCSA        (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
16:43:23.0406 1872	MODEMCSA - ok
16:43:23.0546 1872	mohfilt         (59b8b11ff70728eec60e72131c58b716) C:\WINDOWS\system32\DRIVERS\mohfilt.sys
16:43:23.0578 1872	mohfilt - ok
16:43:23.0718 1872	Mouclass        (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:43:23.0937 1872	Mouclass - ok
16:43:24.0078 1872	mouhid          (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:43:24.0296 1872	mouhid - ok
16:43:24.0468 1872	MountMgr        (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
16:43:24.0671 1872	MountMgr - ok
16:43:24.0750 1872	mraid35x        (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
16:43:24.0953 1872	mraid35x - ok
16:43:25.0093 1872	MRxDAV          (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:43:25.0812 1872	MRxDAV - ok
16:43:25.0984 1872	MRxSmb          (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:43:26.0093 1872	MRxSmb - ok
16:43:26.0250 1872	Msfs            (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
16:43:26.0468 1872	Msfs - ok
16:43:26.0562 1872	MSKSSRV         (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:43:26.0765 1872	MSKSSRV - ok
16:43:26.0937 1872	MSPCLOCK        (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:43:27.0140 1872	MSPCLOCK - ok
16:43:27.0296 1872	MSPQM           (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
16:43:27.0500 1872	MSPQM - ok
16:43:27.0656 1872	mssmbios        (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:43:27.0843 1872	mssmbios - ok
16:43:28.0015 1872	Mup             (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
16:43:28.0218 1872	Mup - ok
16:43:28.0265 1872	NDIS            (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
16:43:28.0468 1872	NDIS - ok
16:43:28.0593 1872	NdisTapi        (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:43:28.0796 1872	NdisTapi - ok
16:43:28.0968 1872	Ndisuio         (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:43:29.0171 1872	Ndisuio - ok
16:43:29.0234 1872	NdisWan         (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:43:29.0421 1872	NdisWan - ok
16:43:29.0546 1872	NDProxy         (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
16:43:29.0734 1872	NDProxy - ok
16:43:29.0906 1872	NetBIOS         (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
16:43:30.0109 1872	NetBIOS - ok
16:43:30.0171 1872	NetBT           (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
16:43:30.0375 1872	NetBT - ok
16:43:30.0562 1872	Npfs            (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
16:43:30.0765 1872	Npfs - ok
16:43:30.0843 1872	Ntfs            (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
16:43:31.0625 1872	Ntfs - ok
16:43:31.0765 1872	Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
16:43:31.0968 1872	Null - ok
16:43:32.0140 1872	nv              (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
16:43:32.0500 1872	nv - ok
16:43:32.0656 1872	NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:43:32.0859 1872	NwlnkFlt - ok
16:43:32.0937 1872	NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:43:33.0125 1872	NwlnkFwd - ok
16:43:33.0296 1872	omci            (53d5f1278d9edb21689bbbcecc09108d) C:\WINDOWS\system32\DRIVERS\omci.sys
16:43:33.0312 1872	omci ( UnsignedFile.Multi.Generic ) - warning
16:43:33.0312 1872	omci - detected UnsignedFile.Multi.Generic (1)
16:43:33.0500 1872	Parport         (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
16:43:33.0703 1872	Parport - ok
16:43:33.0750 1872	PartMgr         (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
16:43:33.0953 1872	PartMgr - ok
16:43:34.0109 1872	ParVdm          (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
16:43:34.0312 1872	ParVdm - ok
16:43:34.0406 1872	PCI             (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
16:43:34.0593 1872	PCI - ok
16:43:34.0703 1872	PCIDump - ok
16:43:34.0796 1872	PCIIde          (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
16:43:34.0984 1872	PCIIde - ok
16:43:35.0140 1872	Pcmcia          (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
16:43:35.0343 1872	Pcmcia - ok
16:43:35.0468 1872	PDCOMP - ok
16:43:35.0531 1872	PDFRAME - ok
16:43:35.0578 1872	PDRELI - ok
16:43:35.0625 1872	PDRFRAME - ok
16:43:35.0703 1872	perc2           (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
16:43:35.0906 1872	perc2 - ok
16:43:36.0031 1872	perc2hib        (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
16:43:36.0234 1872	perc2hib - ok
16:43:36.0453 1872	PptpMiniport    (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:43:36.0656 1872	PptpMiniport - ok
16:43:36.0828 1872	PSched          (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
16:43:37.0046 1872	PSched - ok
16:43:37.0187 1872	Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:43:37.0375 1872	Ptilink - ok
16:43:37.0500 1872	PxHelp20        (7c81ae3c9b82ba2da437ed4d31bc56cf) C:\WINDOWS\system32\Drivers\PxHelp20.sys
16:43:37.0515 1872	PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
16:43:37.0515 1872	PxHelp20 - detected UnsignedFile.Multi.Generic (1)
16:43:37.0656 1872	ql1080          (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
16:43:37.0875 1872	ql1080 - ok
16:43:38.0015 1872	Ql10wnt         (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
16:43:38.0218 1872	Ql10wnt - ok
16:43:38.0375 1872	ql12160         (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
16:43:38.0562 1872	ql12160 - ok
16:43:38.0718 1872	ql1240          (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
16:43:38.0906 1872	ql1240 - ok
16:43:39.0062 1872	ql1280          (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
16:43:39.0265 1872	ql1280 - ok
16:43:39.0406 1872	RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:43:39.0625 1872	RasAcd - ok
16:43:39.0687 1872	Rasl2tp         (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:43:39.0890 1872	Rasl2tp - ok
16:43:40.0062 1872	RasPppoe        (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:43:40.0250 1872	RasPppoe - ok
16:43:40.0296 1872	Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
16:43:40.0500 1872	Raspti - ok
16:43:40.0625 1872	Rdbss           (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:43:41.0343 1872	Rdbss - ok
16:43:41.0453 1872	RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:43:41.0656 1872	RDPCDD - ok
16:43:41.0828 1872	rdpdr           (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:43:42.0031 1872	rdpdr - ok
16:43:42.0187 1872	RDPWD           (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
16:43:42.0921 1872	RDPWD - ok
16:43:43.0062 1872	redbook         (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
16:43:43.0250 1872	redbook - ok
16:43:43.0453 1872	Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:43:44.0203 1872	Secdrv - ok
16:43:44.0390 1872	senfilt         (b9c7617c1e8ab6fdff75d3c8dafcb4c8) C:\WINDOWS\system32\drivers\senfilt.sys
16:43:44.0515 1872	senfilt - ok
16:43:44.0671 1872	serenum         (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
16:43:44.0875 1872	serenum - ok
16:43:44.0906 1872	Serial          (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
16:43:45.0125 1872	Serial - ok
16:43:45.0312 1872	Sfloppy         (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
16:43:45.0515 1872	Sfloppy - ok
16:43:45.0593 1872	Simbad - ok
16:43:45.0656 1872	sisagp          (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
16:43:45.0843 1872	sisagp - ok
16:43:46.0015 1872	smwdm           (c6d9959e493682f872a639b6ec1b4a08) C:\WINDOWS\system32\drivers\smwdm.sys
16:43:46.0062 1872	smwdm - ok
16:43:46.0140 1872	Sparrow         (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
16:43:46.0312 1872	Sparrow - ok
16:43:46.0468 1872	splitter        (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
16:43:47.0281 1872	splitter - ok
16:43:47.0468 1872	sr              (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
16:43:47.0593 1872	sr - ok
16:43:47.0750 1872	Srv             (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
16:43:47.0859 1872	Srv - ok
16:43:47.0984 1872	sscdbhk5        (d7968049be0adbb6a57cee3960320911) C:\WINDOWS\system32\drivers\sscdbhk5.sys
16:43:48.0000 1872	sscdbhk5 ( UnsignedFile.Multi.Generic ) - warning
16:43:48.0000 1872	sscdbhk5 - detected UnsignedFile.Multi.Generic (1)
16:43:48.0140 1872	ssrtln          (c3ffd65abfb6441e7606cf74f1155273) C:\WINDOWS\system32\drivers\ssrtln.sys
16:43:48.0156 1872	ssrtln ( UnsignedFile.Multi.Generic ) - warning
16:43:48.0156 1872	ssrtln - detected UnsignedFile.Multi.Generic (1)
16:43:48.0343 1872	swenum          (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
16:43:48.0531 1872	swenum - ok
16:43:48.0687 1872	swmidi          (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
16:43:48.0890 1872	swmidi - ok
16:43:49.0062 1872	symc810         (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
16:43:49.0312 1872	symc810 - ok
16:43:49.0453 1872	symc8xx         (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
16:43:49.0656 1872	symc8xx - ok
16:43:49.0828 1872	sym_hi          (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
16:43:50.0031 1872	sym_hi - ok
16:43:50.0187 1872	sym_u3          (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
16:43:50.0390 1872	sym_u3 - ok
16:43:50.0546 1872	sysaudio        (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
16:43:50.0734 1872	sysaudio - ok
16:43:50.0906 1872	Tcpip           (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:43:51.0046 1872	Tcpip - ok
16:43:51.0406 1872	TDPIPE          (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
16:43:51.0625 1872	TDPIPE - ok
16:43:51.0781 1872	TDTCP           (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
16:43:51.0968 1872	TDTCP - ok
16:43:52.0125 1872	TermDD          (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
16:43:52.0312 1872	TermDD - ok
16:43:52.0437 1872	tfsnboio        (30698355067d07da5f9eb81132c9fdd6) C:\WINDOWS\system32\dla\tfsnboio.sys
16:43:52.0453 1872	tfsnboio ( UnsignedFile.Multi.Generic ) - warning
16:43:52.0453 1872	tfsnboio - detected UnsignedFile.Multi.Generic (1)
16:43:52.0578 1872	tfsncofs        (fb9d825bb4a2abdf24600f7505050e2b) C:\WINDOWS\system32\dla\tfsncofs.sys
16:43:52.0593 1872	tfsncofs ( UnsignedFile.Multi.Generic ) - warning
16:43:52.0593 1872	tfsncofs - detected UnsignedFile.Multi.Generic (1)
16:43:52.0703 1872	tfsndrct        (cafd8cca11aa1e8b6d2ea1ba8f70ec33) C:\WINDOWS\system32\dla\tfsndrct.sys
16:43:52.0718 1872	tfsndrct ( UnsignedFile.Multi.Generic ) - warning
16:43:52.0718 1872	tfsndrct - detected UnsignedFile.Multi.Generic (1)
16:43:52.0812 1872	tfsndres        (8db1e78fbf7c426d8ec3d8f1a33d6485) C:\WINDOWS\system32\dla\tfsndres.sys
16:43:52.0843 1872	tfsndres ( UnsignedFile.Multi.Generic ) - warning
16:43:52.0843 1872	tfsndres - detected UnsignedFile.Multi.Generic (1)
16:43:52.0953 1872	tfsnifs         (b92f67a71cc8176f331b8aa8d9f555ad) C:\WINDOWS\system32\dla\tfsnifs.sys
16:43:52.0968 1872	tfsnifs ( UnsignedFile.Multi.Generic ) - warning
16:43:52.0968 1872	tfsnifs - detected UnsignedFile.Multi.Generic (1)
16:43:53.0093 1872	tfsnopio        (85985faa9a71e2358fcc2edefc2a3c5c) C:\WINDOWS\system32\dla\tfsnopio.sys
16:43:53.0109 1872	tfsnopio ( UnsignedFile.Multi.Generic ) - warning
16:43:53.0109 1872	tfsnopio - detected UnsignedFile.Multi.Generic (1)
16:43:53.0234 1872	tfsnpool        (bba22094f0f7c210567efdaf11f64495) C:\WINDOWS\system32\dla\tfsnpool.sys
16:43:53.0250 1872	tfsnpool ( UnsignedFile.Multi.Generic ) - warning
16:43:53.0250 1872	tfsnpool - detected UnsignedFile.Multi.Generic (1)
16:43:53.0375 1872	tfsnudf         (81340bef80b9811e98ce64611e67e3ff) C:\WINDOWS\system32\dla\tfsnudf.sys
16:43:53.0390 1872	tfsnudf ( UnsignedFile.Multi.Generic ) - warning
16:43:53.0390 1872	tfsnudf - detected UnsignedFile.Multi.Generic (1)
16:43:53.0515 1872	tfsnudfa        (c035fd116224ccc8325f384776b6a8bb) C:\WINDOWS\system32\dla\tfsnudfa.sys
16:43:53.0531 1872	tfsnudfa ( UnsignedFile.Multi.Generic ) - warning
16:43:53.0531 1872	tfsnudfa - detected UnsignedFile.Multi.Generic (1)
16:43:53.0703 1872	TosIde          (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
16:43:53.0890 1872	TosIde - ok
16:43:54.0046 1872	TrueSight       (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
16:43:54.0078 1872	TrueSight ( UnsignedFile.Multi.Generic ) - warning
16:43:54.0078 1872	TrueSight - detected UnsignedFile.Multi.Generic (1)
16:43:54.0250 1872	Udfs            (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
16:43:54.0453 1872	Udfs - ok
16:43:54.0546 1872	ultra           (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
16:43:54.0656 1872	ultra - ok
16:43:54.0828 1872	Update          (ced744117e91bdc0beb810f7d8608183) C:\WINDOWS\system32\DRIVERS\update.sys
16:43:55.0625 1872	Update - ok
16:43:55.0781 1872	usbccgp         (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:43:55.0968 1872	usbccgp - ok
16:43:56.0125 1872	usbehci         (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:43:56.0312 1872	usbehci - ok
16:43:56.0453 1872	usbhub          (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:43:56.0656 1872	usbhub - ok
16:43:56.0812 1872	usbprint        (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:43:57.0031 1872	usbprint - ok
16:43:57.0187 1872	usbscan         (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:43:57.0390 1872	usbscan - ok
16:43:57.0546 1872	USBSTOR         (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:43:57.0750 1872	USBSTOR - ok
16:43:57.0906 1872	usbuhci         (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:43:58.0093 1872	usbuhci - ok
16:43:58.0281 1872	VgaSave         (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
16:43:58.0500 1872	VgaSave - ok
16:43:58.0546 1872	viaagp          (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
16:43:58.0750 1872	viaagp - ok
16:43:58.0890 1872	ViaIde          (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
16:43:59.0109 1872	ViaIde - ok
16:43:59.0531 1872	VolSnap         (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
16:43:59.0796 1872	VolSnap - ok
16:43:59.0921 1872	Wanarp          (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:44:00.0125 1872	Wanarp - ok
16:44:00.0281 1872	wanatw          (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
16:44:00.0328 1872	wanatw - ok
16:44:00.0406 1872	WDICA - ok
16:44:00.0515 1872	wdmaud          (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
16:44:01.0328 1872	wdmaud - ok
16:44:01.0734 1872	WpdUsb          (c1b3d9d75c3fb735f5fa3a5806aded57) C:\WINDOWS\system32\Drivers\wpdusb.sys
16:44:02.0250 1872	WpdUsb - ok
16:44:02.0343 1872	MBR (0x1B8)     (b16a2359f4962b0c622d81a1c1f4b703) \Device\Harddisk0\DR0
16:44:02.0406 1872	\Device\Harddisk0\DR0 ( TDSS File System ) - warning
16:44:02.0406 1872	\Device\Harddisk0\DR0 - detected TDSS File System (1)
16:44:02.0421 1872	MBR (0x1B8)     (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR6
16:44:02.0593 1872	\Device\Harddisk1\DR6 - ok
16:44:02.0625 1872	Boot (0x1200)   (88f1bc71a7df4ff1136592e07df099d1) \Device\Harddisk0\DR0\Partition0
16:44:02.0656 1872	\Device\Harddisk0\DR0\Partition0 - ok
16:44:02.0671 1872	Boot (0x1200)   (c4a34d2b393763b6272dc4f3f9605323) \Device\Harddisk1\DR6\Partition0
16:44:02.0671 1872	\Device\Harddisk1\DR6\Partition0 - ok
16:44:02.0671 1872	============================================================
16:44:02.0671 1872	Scan finished
16:44:02.0671 1872	============================================================
16:44:02.0812 2864	Detected object count: 43
16:44:02.0812 2864	Actual detected object count: 43
16:47:50.0671 2864	ASCTRM ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	ASCTRM ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	audstub ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	audstub ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	bcm4sbxp ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	bcm4sbxp ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	Beep ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	Beep ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	BVRPMPR5 ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	BVRPMPR5 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	HKLM\SYSTEM\ControlSet001\services\cbea64eb - will be deleted on reboot
16:47:50.0671 2864	HKLM\SYSTEM\ControlSet004\services\cbea64eb - will be deleted on reboot
16:47:50.0671 2864	C:\WINDOWS\3949259467:873831188.exe - will be deleted on reboot
16:47:50.0671 2864	cbea64eb ( Rootkit.Win32.PMax.gen ) - User select action: Delete 
16:47:50.0671 2864	cbidf ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	cbidf ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	cbidf2k ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	cbidf2k ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	cd20xrnt ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	cd20xrnt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	Cdaudio ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	Cdaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	Cdfs ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	Cdfs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0671 2864	Cdrom ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0671 2864	Cdrom ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0687 2864	CmdIde ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0687 2864	CmdIde ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0687 2864	Cpqarray ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0687 2864	Cpqarray ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0687 2864	dac2w2k ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0687 2864	dac2w2k ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0687 2864	dac960nt ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0687 2864	dac960nt ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0687 2864	Disk ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0687 2864	Disk ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0703 2864	dmboot ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0703 2864	dmboot ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0703 2864	dmio ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0703 2864	dmio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0703 2864	dmload ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0703 2864	dmload ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0703 2864	DMusic ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0703 2864	DMusic ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0703 2864	dpti2o ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0703 2864	dpti2o ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0703 2864	drmkaud ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0703 2864	drmkaud ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0718 2864	drvmcdb ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0718 2864	drvmcdb ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0718 2864	drvnddm ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0718 2864	drvnddm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:50.0718 2864	E100B ( UnsignedFile.Multi.Generic ) - skipped by user
16:47:50.0718 2864	E100B ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:47:51.0750 2864	Backup copy not found, trying to cure infected file..
16:47:51.0750 2864	C:\WINDOWS\system32\DRIVERS\imapi.sys - Cure failed (FFFFFFFF)
16:47:51.0750 2864	C:\WINDOWS\system32\DRIVERS\imapi.sys - processing error
16:47:54.0859 2864	C:\WINDOWS\system32\c_42144.nls - will be deleted on reboot
16:47:57.0671 2864	Imapi ( Rootkit.Win32.ZAccess.e ) - User select action: Cure 
16:48:02.0765 2864	Backup copy not found, trying to cure infected file..
16:48:02.0765 2864	Cure success, using it..
16:48:02.0796 2864	C:\WINDOWS\system32\DRIVERS\intelide.sys - will be cured on reboot
16:48:02.0796 2864	IntelIde ( Rootkit.Win32.TDSS.tdl3 ) - User select action: Cure 
16:48:02.0812 2864	omci ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0812 2864	omci ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0812 2864	PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0812 2864	PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0812 2864	sscdbhk5 ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0812 2864	sscdbhk5 ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0828 2864	ssrtln ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0828 2864	ssrtln ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0828 2864	tfsnboio ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0828 2864	tfsnboio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0843 2864	tfsncofs ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0843 2864	tfsncofs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0843 2864	tfsndrct ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0843 2864	tfsndrct ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0843 2864	tfsndres ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0843 2864	tfsndres ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0859 2864	tfsnifs ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0859 2864	tfsnifs ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0859 2864	tfsnopio ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0859 2864	tfsnopio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0875 2864	tfsnpool ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0875 2864	tfsnpool ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0875 2864	tfsnudf ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0875 2864	tfsnudf ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0890 2864	tfsnudfa ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0890 2864	tfsnudfa ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0890 2864	TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
16:48:02.0890 2864	TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip 
16:48:02.0890 2864	\Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
16:48:02.0890 2864	\Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 
16:48:36.0781 3000	Deinitialize success