16:12:28.0256 5464	TDSS rootkit removing tool 2.7.13.0 Feb 15 2012 19:33:14
16:12:28.0896 5464	============================================================
16:12:28.0896 5464	Current date / time: 2012/02/19 16:12:28.0896
16:12:28.0896 5464	SystemInfo:
16:12:28.0896 5464	
16:12:28.0896 5464	OS Version: 6.0.6002 ServicePack: 2.0
16:12:28.0896 5464	Product type: Workstation
16:12:28.0896 5464	ComputerName: STEVE-2
16:12:28.0896 5464	UserName: Steve
16:12:28.0896 5464	Windows directory: C:\Windows
16:12:28.0896 5464	System windows directory: C:\Windows
16:12:28.0896 5464	Running under WOW64
16:12:28.0896 5464	Processor architecture: Intel x64
16:12:28.0896 5464	Number of processors: 4
16:12:28.0896 5464	Page size: 0x1000
16:12:28.0896 5464	Boot type: Normal boot
16:12:28.0896 5464	============================================================
16:12:29.0613 5464	Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:12:29.0645 5464	Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
16:12:29.0676 5464	Drive \Device\Harddisk6\DR8 - Size: 0xEF000000 (3.73 Gb), SectorSize: 0x200, Cylinders: 0x1E7, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:12:29.0676 5464	Drive \Device\Harddisk7\DR7 - Size: 0x79000000 (1.89 Gb), SectorSize: 0x200, Cylinders: 0xF6, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
16:12:29.0676 5464	\Device\Harddisk0\DR0:
16:12:29.0676 5464	MBR used
16:12:29.0676 5464	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x6, StartLBA 0x1385000, BlocksNum 0x12096800
16:12:29.0676 5464	\Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1341B800, BlocksNum 0x12012800
16:12:29.0676 5464	\Device\Harddisk1\DR1:
16:12:29.0676 5464	MBR used
16:12:29.0676 5464	\Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x74705800
16:12:29.0676 5464	\Device\Harddisk6\DR8:
16:12:29.0691 5464	MBR used
16:12:29.0691 5464	\Device\Harddisk6\DR8\Partition0: MBR, Type 0xC, StartLBA 0x30, BlocksNum 0x777FD0
16:12:29.0691 5464	\Device\Harddisk7\DR7:
16:12:29.0691 5464	MBR used
16:12:29.0691 5464	\Device\Harddisk7\DR7\Partition0: MBR, Type 0xB, StartLBA 0x2000, BlocksNum 0x3C7000
16:12:29.0801 5464	Initialize success
16:12:29.0801 5464	============================================================
16:12:47.0132 4652	============================================================
16:12:47.0132 4652	Scan started
16:12:47.0132 4652	Mode: Manual; 
16:12:47.0132 4652	============================================================
16:12:48.0131 4652	ACPI            (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys
16:12:48.0146 4652	ACPI - ok
16:12:48.0333 4652	adp94xx         (f14215e37cf124104575073f782111d2) C:\Windows\system32\drivers\adp94xx.sys
16:12:48.0365 4652	adp94xx - ok
16:12:48.0552 4652	adpahci         (7d05a75e3066861a6610f7ee04ff085c) C:\Windows\system32\drivers\adpahci.sys
16:12:48.0583 4652	adpahci - ok
16:12:48.0645 4652	adpu160m        (820a201fe08a0c345b3bedbc30e1a77c) C:\Windows\system32\drivers\adpu160m.sys
16:12:48.0661 4652	adpu160m - ok
16:12:48.0817 4652	adpu320         (9b4ab6854559dc168fbb4c24fc52e794) C:\Windows\system32\drivers\adpu320.sys
16:12:48.0848 4652	adpu320 - ok
16:12:48.0989 4652	AFD             (c4f6ce6087760ad70960c9eb130e7943) C:\Windows\system32\drivers\afd.sys
16:12:49.0020 4652	AFD - ok
16:12:49.0051 4652	agp440          (f6f6793b7f17b550ecfdbd3b229173f7) C:\Windows\system32\drivers\agp440.sys
16:12:49.0067 4652	agp440 - ok
16:12:49.0129 4652	aic78xx         (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys
16:12:49.0145 4652	aic78xx - ok
16:12:49.0410 4652	aliide          (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys
16:12:49.0425 4652	aliide - ok
16:12:49.0675 4652	amdide          (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys
16:12:49.0691 4652	amdide - ok
16:12:49.0893 4652	AmdK8           (cdc3632a3a5ea4dbb83e46076a3165a1) C:\Windows\system32\drivers\amdk8.sys
16:12:49.0909 4652	AmdK8 - ok
16:12:50.0081 4652	arc             (ba8417d4765f3988ff921f30f630e303) C:\Windows\system32\drivers\arc.sys
16:12:50.0081 4652	arc - ok
16:12:50.0112 4652	arcsas          (9d41c435619733b34cc16a511e644b11) C:\Windows\system32\drivers\arcsas.sys
16:12:50.0127 4652	arcsas - ok
16:12:50.0268 4652	AsyncMac        (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys
16:12:50.0283 4652	AsyncMac - ok
16:12:50.0299 4652	atapi           (e68d9b3a3905619732f7fe039466a623) C:\Windows\system32\drivers\atapi.sys
16:12:50.0315 4652	atapi - ok
16:12:50.0377 4652	AtiDCM - ok
16:12:50.0486 4652	b57nd60a        (1777e5ac9fc74f7991b2aba25ea34759) C:\Windows\system32\DRIVERS\b57nd60a.sys
16:12:50.0502 4652	b57nd60a - ok
16:12:50.0564 4652	blbdrive        (79feeb40056683f8f61398d81dda65d2) C:\Windows\system32\drivers\blbdrive.sys
16:12:50.0580 4652	blbdrive - ok
16:12:50.0689 4652	bowser          (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys
16:12:50.0705 4652	bowser - ok
16:12:50.0798 4652	BrFiltLo        (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys
16:12:50.0814 4652	BrFiltLo - ok
16:12:50.0907 4652	BrFiltUp        (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys
16:12:50.0923 4652	BrFiltUp - ok
16:12:51.0157 4652	Brserid         (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys
16:12:51.0173 4652	Brserid - ok
16:12:51.0313 4652	BrSerWdm        (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys
16:12:51.0329 4652	BrSerWdm - ok
16:12:51.0469 4652	BrUsbMdm        (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys
16:12:51.0485 4652	BrUsbMdm - ok
16:12:51.0719 4652	BrUsbSer        (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys
16:12:51.0734 4652	BrUsbSer - ok
16:12:51.0984 4652	BTHMODEM        (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys
16:12:51.0999 4652	BTHMODEM - ok
16:12:52.0249 4652	cdfs            (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys
16:12:52.0249 4652	cdfs - ok
16:12:52.0608 4652	cdrom           (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys
16:12:52.0623 4652	cdrom - ok
16:12:52.0857 4652	circlass        (02ea568d498bbdd4ba55bf3fce34d456) C:\Windows\system32\drivers\circlass.sys
16:12:52.0873 4652	circlass - ok
16:12:53.0091 4652	CLFS            (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys
16:12:53.0107 4652	CLFS - ok
16:12:53.0403 4652	cmdide          (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys
16:12:53.0419 4652	cmdide - ok
16:12:53.0575 4652	Compbatt        (7fb8ad01db0eabe60c8a861531a8f431) C:\Windows\system32\drivers\compbatt.sys
16:12:53.0575 4652	Compbatt - ok
16:12:53.0934 4652	crcdisk         (a8585b6412253803ce8efcbd6d6dc15c) C:\Windows\system32\drivers\crcdisk.sys
16:12:53.0949 4652	crcdisk - ok
16:12:54.0371 4652	DfsC            (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys
16:12:54.0386 4652	DfsC - ok
16:12:54.0870 4652	disk            (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys
16:12:54.0885 4652	disk - ok
16:12:55.0104 4652	drmkaud         (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys
16:12:55.0104 4652	drmkaud - ok
16:12:55.0478 4652	DXGKrnl         (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys
16:12:55.0494 4652	DXGKrnl - ok
16:12:55.0821 4652	E1G60           (264cee7b031a9d6c827f3d0cb031f2fe) C:\Windows\system32\DRIVERS\E1G6032E.sys
16:12:55.0837 4652	E1G60 - ok
16:12:56.0118 4652	Ecache          (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys
16:12:56.0133 4652	Ecache - ok
16:12:56.0352 4652	elxstor         (c4636d6e10469404ab5308d9fd45ed07) C:\Windows\system32\drivers\elxstor.sys
16:12:56.0399 4652	elxstor - ok
16:12:56.0726 4652	ErrDev          (bc3a58e938bb277e46bf4b3003b01abd) C:\Windows\system32\drivers\errdev.sys
16:12:56.0726 4652	ErrDev - ok
16:12:57.0225 4652	exfat           (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys
16:12:57.0241 4652	exfat - ok
16:12:57.0522 4652	fastfat         (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys
16:12:57.0537 4652	fastfat - ok
16:12:58.0052 4652	fdc             (81b79b6df71fa1d2c6d688d830616e39) C:\Windows\system32\DRIVERS\fdc.sys
16:12:58.0068 4652	fdc - ok
16:12:58.0208 4652	FileInfo        (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys
16:12:58.0224 4652	FileInfo - ok
16:12:58.0427 4652	Filetrace       (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys
16:12:58.0442 4652	Filetrace - ok
16:12:58.0598 4652	flpydisk        (230923ea2b80f79b0f88d90f87b87ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
16:12:58.0614 4652	flpydisk - ok
16:12:58.0863 4652	FltMgr          (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys
16:12:58.0926 4652	FltMgr - ok
16:12:59.0285 4652	Fs_Rec          (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys
16:12:59.0300 4652	Fs_Rec - ok
16:12:59.0643 4652	gagp30kx        (c8e416668d3dc2be3d4fe4c79224997f) C:\Windows\system32\drivers\gagp30kx.sys
16:12:59.0659 4652	gagp30kx - ok
16:12:59.0877 4652	GEARAspiWDM     (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
16:12:59.0893 4652	GEARAspiWDM - ok
16:13:00.0143 4652	HdAudAddService (df45f8142dc6df9d18c39b3effbd0409) C:\Windows\system32\drivers\HdAudio.sys
16:13:00.0158 4652	HdAudAddService - ok
16:13:00.0267 4652	HDAudBus        (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys
16:13:00.0283 4652	HDAudBus - ok
16:13:00.0377 4652	HidBth          (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys
16:13:00.0392 4652	HidBth - ok
16:13:00.0423 4652	HidIr           (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys
16:13:00.0439 4652	HidIr - ok
16:13:00.0470 4652	HidUsb          (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys
16:13:00.0486 4652	HidUsb - ok
16:13:00.0595 4652	HpCISSs         (d7109a1e6bd2dfdbcba72a6bc626a13b) C:\Windows\system32\drivers\hpcisss.sys
16:13:00.0595 4652	HpCISSs - ok
16:13:00.0704 4652	HTTP            (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys
16:13:00.0735 4652	HTTP - ok
16:13:00.0829 4652	i2omp           (da94c854cea5fac549d4e1f6e88349e8) C:\Windows\system32\drivers\i2omp.sys
16:13:00.0829 4652	i2omp - ok
16:13:00.0907 4652	i8042prt        (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys
16:13:00.0923 4652	i8042prt - ok
16:13:01.0203 4652	iaStorV         (3e3bf3627d886736d0b4e90054f929f6) C:\Windows\system32\drivers\iastorv.sys
16:13:01.0266 4652	iaStorV - ok
16:13:01.0375 4652	iirsp           (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys
16:13:01.0391 4652	iirsp - ok
16:13:01.0453 4652	int15           (91b61589bb2915e81d436efe07548507) C:\Acer\Empowering Technology\eRecovery\int15.sys
16:13:01.0469 4652	int15 - ok
16:13:01.0640 4652	IntcAzAudAddService (150ac23f21dbdbf8488408ba944b0d65) C:\Windows\system32\drivers\RTKVHD64.sys
16:13:01.0905 4652	IntcAzAudAddService - ok
16:13:02.0171 4652	intelide        (df797a12176f11b2d301c5b234bb200e) C:\Windows\system32\drivers\intelide.sys
16:13:02.0186 4652	intelide - ok
16:13:02.0217 4652	intelppm        (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys
16:13:02.0217 4652	intelppm - ok
16:13:02.0295 4652	IpFilterDriver  (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys
16:13:02.0311 4652	IpFilterDriver - ok
16:13:02.0342 4652	IpInIp - ok
16:13:02.0373 4652	IPMIDRV         (9c2ee2e6e5a7203bfae15c299475ec67) C:\Windows\system32\drivers\ipmidrv.sys
16:13:02.0373 4652	IPMIDRV - ok
16:13:02.0405 4652	IPNAT           (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys
16:13:02.0420 4652	IPNAT - ok
16:13:02.0436 4652	IRENUM          (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys
16:13:02.0451 4652	IRENUM - ok
16:13:02.0467 4652	isapnp          (0672bfcedc6fc468a2b0500d81437f4f) C:\Windows\system32\drivers\isapnp.sys
16:13:02.0483 4652	isapnp - ok
16:13:02.0529 4652	iScsiPrt        (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys
16:13:02.0529 4652	iScsiPrt - ok
16:13:02.0592 4652	iteatapi        (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys
16:13:02.0592 4652	iteatapi - ok
16:13:02.0654 4652	iteraid         (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys
16:13:02.0670 4652	iteraid - ok
16:13:02.0701 4652	kbdclass        (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys
16:13:02.0717 4652	kbdclass - ok
16:13:02.0779 4652	kbdhid          (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys
16:13:02.0795 4652	kbdhid - ok
16:13:02.0888 4652	KSecDD          (2758d174604f597bbc8a217ff667913d) C:\Windows\system32\Drivers\ksecdd.sys
16:13:02.0919 4652	KSecDD - ok
16:13:03.0138 4652	ksthunk         (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys
16:13:03.0138 4652	ksthunk - ok
16:13:03.0200 4652	lltdio          (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys
16:13:03.0216 4652	lltdio - ok
16:13:03.0325 4652	LSI_FC          (acbe1af32d3123e330a07bfbc5ec4a9b) C:\Windows\system32\drivers\lsi_fc.sys
16:13:03.0341 4652	LSI_FC - ok
16:13:03.0419 4652	LSI_SAS         (799ffb2fc4729fa46d2157c0065b3525) C:\Windows\system32\drivers\lsi_sas.sys
16:13:03.0434 4652	LSI_SAS - ok
16:13:03.0575 4652	LSI_SCSI        (f445ff1daad8a226366bfaf42551226b) C:\Windows\system32\drivers\lsi_scsi.sys
16:13:03.0590 4652	LSI_SCSI - ok
16:13:03.0684 4652	luafv           (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys
16:13:03.0699 4652	luafv - ok
16:13:03.0746 4652	m4cxvst64       (a831e1e530671fa99b2f1f949d0b7e21) C:\Windows\system32\DRIVERS\m4cxvst64.sys
16:13:03.0762 4652	m4cxvst64 - ok
16:13:03.0871 4652	MCSTRM - ok
16:13:04.0011 4652	megasas         (5c5cd6aaced32fb26c3fb34b3dcf972f) C:\Windows\system32\drivers\megasas.sys
16:13:04.0011 4652	megasas - ok
16:13:04.0152 4652	MegaSR          (859bc2436b076c77c159ed694acfe8f8) C:\Windows\system32\drivers\megasr.sys
16:13:04.0183 4652	MegaSR - ok
16:13:04.0277 4652	Modem           (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys
16:13:04.0292 4652	Modem - ok
16:13:04.0370 4652	MODEMCSA        (8985460fd448348f7ac748460d0a1cf4) C:\Windows\system32\drivers\MODEMCSA.sys
16:13:04.0386 4652	MODEMCSA - ok
16:13:04.0433 4652	monitor         (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys
16:13:04.0448 4652	monitor - ok
16:13:04.0479 4652	mouclass        (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys
16:13:04.0495 4652	mouclass - ok
16:13:04.0542 4652	mouhid          (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys
16:13:04.0557 4652	mouhid - ok
16:13:04.0589 4652	MountMgr        (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys
16:13:04.0604 4652	MountMgr - ok
16:13:04.0635 4652	mpio            (f8276eb8698142884498a528dfea8478) C:\Windows\system32\drivers\mpio.sys
16:13:04.0651 4652	mpio - ok
16:13:04.0745 4652	mpsdrv          (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys
16:13:04.0823 4652	mpsdrv - ok
16:13:04.0901 4652	Mraid35x        (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys
16:13:04.0916 4652	Mraid35x - ok
16:13:05.0103 4652	MREMP50         (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~2\COMMON~1\Motive\MREMP50.SYS
16:13:05.0119 4652	MREMP50 - ok
16:13:05.0166 4652	MREMP50a64 - ok
16:13:05.0181 4652	MREMPR5 - ok
16:13:05.0197 4652	MRENDIS5 - ok
16:13:05.0275 4652	MRESP50         (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~2\COMMON~1\Motive\MRESP50.SYS
16:13:05.0291 4652	MRESP50 - ok
16:13:05.0306 4652	MRESP50a64 - ok
16:13:05.0384 4652	mrtRate - ok
16:13:05.0431 4652	MRxDAV          (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys
16:13:05.0447 4652	MRxDAV - ok
16:13:05.0478 4652	mrxsmb          (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys
16:13:05.0493 4652	mrxsmb - ok
16:13:05.0540 4652	mrxsmb10        (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys
16:13:05.0556 4652	mrxsmb10 - ok
16:13:05.0618 4652	mrxsmb20        (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys
16:13:05.0618 4652	mrxsmb20 - ok
16:13:05.0681 4652	msahci          (1ac860612b85d8e85ee257d372e39f4d) C:\Windows\system32\drivers\msahci.sys
16:13:05.0696 4652	msahci - ok
16:13:05.0743 4652	msdsm           (264bbb4aaf312a485f0e44b65a6b7202) C:\Windows\system32\drivers\msdsm.sys
16:13:05.0759 4652	msdsm - ok
16:13:05.0790 4652	Msfs            (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys
16:13:05.0790 4652	Msfs - ok
16:13:05.0852 4652	msisadrv        (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys
16:13:05.0868 4652	msisadrv - ok
16:13:05.0930 4652	MSKSSRV         (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys
16:13:05.0930 4652	MSKSSRV - ok
16:13:05.0977 4652	MSPCLOCK        (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys
16:13:05.0993 4652	MSPCLOCK - ok
16:13:06.0024 4652	MSPQM           (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys
16:13:06.0039 4652	MSPQM - ok
16:13:06.0071 4652	MsRPC           (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys
16:13:06.0086 4652	MsRPC - ok
16:13:06.0102 4652	mssmbios        (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys
16:13:06.0117 4652	mssmbios - ok
16:13:06.0211 4652	MSTEE           (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys
16:13:06.0227 4652	MSTEE - ok
16:13:06.0258 4652	Mup             (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys
16:13:06.0273 4652	Mup - ok
16:13:06.0320 4652	NativeWifiP     (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys
16:13:06.0336 4652	NativeWifiP - ok
16:13:06.0445 4652	NDIS            (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys
16:13:06.0461 4652	NDIS - ok
16:13:06.0476 4652	NdisTapi        (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys
16:13:06.0492 4652	NdisTapi - ok
16:13:06.0523 4652	Ndisuio         (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys
16:13:06.0523 4652	Ndisuio - ok
16:13:06.0554 4652	NdisWan         (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys
16:13:06.0570 4652	NdisWan - ok
16:13:06.0601 4652	NDProxy         (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys
16:13:06.0601 4652	NDProxy - ok
16:13:06.0679 4652	NetBIOS         (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys
16:13:06.0695 4652	NetBIOS - ok
16:13:06.0788 4652	netbt           (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys
16:13:06.0804 4652	netbt - ok
16:13:06.0929 4652	nfrd960         (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys
16:13:06.0944 4652	nfrd960 - ok
16:13:07.0038 4652	Npfs            (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys
16:13:07.0053 4652	Npfs - ok
16:13:07.0116 4652	nsiproxy        (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys
16:13:07.0131 4652	nsiproxy - ok
16:13:07.0194 4652	Ntfs            (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys
16:13:07.0241 4652	Ntfs - ok
16:13:07.0272 4652	NTIDrvr - ok
16:13:07.0397 4652	Null            (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys
16:13:07.0443 4652	Null - ok
16:13:07.0521 4652	NVENETFD        (99ed33f7fe39026a477893d92aea5ef0) C:\Windows\system32\DRIVERS\nvmfdx64.sys
16:13:07.0568 4652	NVENETFD - ok
16:13:07.0677 4652	NVHDA           (10204955027011e08a9dc27737a48a54) C:\Windows\system32\drivers\nvhda64v.sys
16:13:07.0693 4652	NVHDA - ok
16:13:07.0865 4652	nvlddmkm        (86d0b318735d24c7dfe14bcd8e28ebb8) C:\Windows\system32\DRIVERS\nvlddmkm.sys
16:13:07.0974 4652	nvlddmkm - ok
16:13:08.0083 4652	nvraid          (2c040b7ada5b06f6facadac8514aa034) C:\Windows\system32\drivers\nvraid.sys
16:13:08.0099 4652	nvraid - ok
16:13:08.0145 4652	nvrd64          (a4b9af8d1793f67ce894bf051342110f) C:\Windows\system32\drivers\nvrd64.sys
16:13:08.0161 4652	nvrd64 - ok
16:13:08.0177 4652	nvsmu           (f6c6d8298dd85507f680437ec2e6899c) C:\Windows\system32\DRIVERS\nvsmu.sys
16:13:08.0192 4652	nvsmu - ok
16:13:08.0270 4652	nvstor          (f7ea0fe82842d05eda3efdd376dbfdba) C:\Windows\system32\drivers\nvstor.sys
16:13:08.0286 4652	nvstor - ok
16:13:08.0333 4652	nvstor64        (7919ee9458b6d84517bc5a598d795931) C:\Windows\system32\drivers\nvstor64.sys
16:13:08.0333 4652	nvstor64 - ok
16:13:08.0364 4652	nv_agp          (19067ca93075ef4823e3938a686f532f) C:\Windows\system32\drivers\nv_agp.sys
16:13:08.0379 4652	nv_agp - ok
16:13:08.0442 4652	NwlnkFlt - ok
16:13:08.0489 4652	NwlnkFwd - ok
16:13:08.0567 4652	ohci1394        (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys
16:13:08.0582 4652	ohci1394 - ok
16:13:08.0707 4652	Parport         (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys
16:13:08.0723 4652	Parport - ok
16:13:08.0754 4652	partmgr         (f9b5eda4c17a2be7663f064dbf0fe254) C:\Windows\system32\drivers\partmgr.sys
16:13:08.0769 4652	partmgr - ok
16:13:08.0801 4652	pci             (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys
16:13:08.0816 4652	pci - ok
16:13:08.0879 4652	pciide          (2657f6c0b78c36d95034be109336e382) C:\Windows\system32\drivers\pciide.sys
16:13:08.0894 4652	pciide - ok
16:13:08.0972 4652	pcmcia          (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys
16:13:09.0003 4652	pcmcia - ok
16:13:09.0191 4652	PEAUTH          (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys
16:13:09.0253 4652	PEAUTH - ok
16:13:09.0409 4652	PMEM            (2b85237f904c5bdf7ad386f0ede19bd3) C:\Windows\SysWOW64\drivers\pmemnt.sys
16:13:09.0425 4652	PMEM - ok
16:13:09.0721 4652	PptpMiniport    (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys
16:13:09.0737 4652	PptpMiniport - ok
16:13:09.0799 4652	Processor       (5080e59ecee0bc923f14018803aa7a01) C:\Windows\system32\drivers\processr.sys
16:13:09.0815 4652	Processor - ok
16:13:09.0924 4652	PSched          (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys
16:13:09.0924 4652	PSched - ok
16:13:09.0971 4652	PSDFilter       (e4f35efd9962a3c80365e029e5acbc92) C:\Windows\system32\DRIVERS\psdfilter.sys
16:13:09.0986 4652	PSDFilter - ok
16:13:10.0064 4652	PSDNServ        (41031289856ab4c99a49218e6c4e9f46) C:\Windows\system32\DRIVERS\PSDNServ.sys
16:13:10.0080 4652	PSDNServ - ok
16:13:10.0127 4652	psdvdisk        (c33fb61864c5096b0bf4b9dbc01bb5a9) C:\Windows\system32\DRIVERS\PSDVdisk.sys
16:13:10.0142 4652	psdvdisk - ok
16:13:10.0205 4652	ql2300          (0b83f4e681062f3839be2ec1d98fd94a) C:\Windows\system32\drivers\ql2300.sys
16:13:10.0251 4652	ql2300 - ok
16:13:10.0314 4652	ql40xx          (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys
16:13:10.0329 4652	ql40xx - ok
16:13:10.0376 4652	QWAVEdrv        (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys
16:13:10.0392 4652	QWAVEdrv - ok
16:13:10.0407 4652	RasAcd          (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys
16:13:10.0423 4652	RasAcd - ok
16:13:10.0485 4652	Rasl2tp         (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys
16:13:10.0501 4652	Rasl2tp - ok
16:13:10.0532 4652	RasPppoe        (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys
16:13:10.0532 4652	RasPppoe - ok
16:13:10.0579 4652	RasSstp         (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys
16:13:10.0579 4652	RasSstp - ok
16:13:10.0626 4652	rdbss           (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys
16:13:10.0641 4652	rdbss - ok
16:13:10.0657 4652	RDPCDD          (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys
16:13:10.0657 4652	RDPCDD - ok
16:13:10.0688 4652	rdpdr           (c045d1fb111c28df0d1be8d4bda22c06) C:\Windows\system32\drivers\rdpdr.sys
16:13:10.0704 4652	rdpdr - ok
16:13:10.0719 4652	RDPENCDD        (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys
16:13:10.0735 4652	RDPENCDD - ok
16:13:10.0766 4652	RDPWD           (b1d741c87cea8d7282146366cc9c3f81) C:\Windows\system32\drivers\RDPWD.sys
16:13:10.0782 4652	RDPWD - ok
16:13:10.0938 4652	rspndr          (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys
16:13:10.0953 4652	rspndr - ok
16:13:10.0985 4652	sbp2port        (8c8862dc7417d89b375492c981c491f7) C:\Windows\system32\DRIVERS\sbp2port.sys
16:13:11.0000 4652	sbp2port - ok
16:13:11.0125 4652	secdrv          (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
16:13:11.0141 4652	secdrv - ok
16:13:11.0172 4652	Serenum         (2449316316411d65bd2c761a6ffb2ce2) C:\Windows\system32\DRIVERS\serenum.sys
16:13:11.0172 4652	Serenum - ok
16:13:11.0219 4652	Serial          (4b438170be2fc8e0bd35ee87a960f84f) C:\Windows\system32\DRIVERS\serial.sys
16:13:11.0234 4652	Serial - ok
16:13:11.0250 4652	sermouse        (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys
16:13:11.0265 4652	sermouse - ok
16:13:11.0297 4652	sffdisk         (14d4b4465193a87c127933978e8c4106) C:\Windows\system32\drivers\sffdisk.sys
16:13:11.0312 4652	sffdisk - ok
16:13:11.0328 4652	sffp_mmc        (7073aee3f82f3d598e3825962aa98ab2) C:\Windows\system32\drivers\sffp_mmc.sys
16:13:11.0328 4652	sffp_mmc - ok
16:13:11.0343 4652	sffp_sd         (35e59ebe4a01a0532ed67975161c7b82) C:\Windows\system32\drivers\sffp_sd.sys
16:13:11.0359 4652	sffp_sd - ok
16:13:11.0375 4652	sfloppy         (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys
16:13:11.0375 4652	sfloppy - ok
16:13:11.0406 4652	SiSRaid2        (7a5de502aeb719d4594c6471060a78b3) C:\Windows\system32\drivers\sisraid2.sys
16:13:11.0421 4652	SiSRaid2 - ok
16:13:11.0437 4652	SiSRaid4        (3a2f769fab9582bc720e11ea1dfb184d) C:\Windows\system32\drivers\sisraid4.sys
16:13:11.0453 4652	SiSRaid4 - ok
16:13:11.0484 4652	Smb             (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys
16:13:11.0499 4652	Smb - ok
16:13:11.0593 4652	smserial        (f024fa4fd2d9490934f239812e62e559) C:\Windows\system32\DRIVERS\smserial.sys
16:13:11.0640 4652	smserial - ok
16:13:11.0765 4652	spldr           (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys
16:13:11.0780 4652	spldr - ok
16:13:11.0858 4652	srv             (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys
16:13:11.0889 4652	srv - ok
16:13:11.0999 4652	srv2            (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys
16:13:12.0014 4652	srv2 - ok
16:13:12.0092 4652	srvnet          (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys
16:13:12.0108 4652	srvnet - ok
16:13:12.0201 4652	swenum          (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys
16:13:12.0217 4652	swenum - ok
16:13:12.0248 4652	Symc8xx         (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys
16:13:12.0264 4652	Symc8xx - ok
16:13:12.0295 4652	Sym_hi          (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys
16:13:12.0311 4652	Sym_hi - ok
16:13:12.0342 4652	Sym_u3          (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys
16:13:12.0357 4652	Sym_u3 - ok
16:13:12.0498 4652	Tcpip           (2cc45d932bd193cd4117321d469ad6b2) C:\Windows\system32\drivers\tcpip.sys
16:13:12.0560 4652	Tcpip - ok
16:13:12.0669 4652	Tcpip6          (2cc45d932bd193cd4117321d469ad6b2) C:\Windows\system32\DRIVERS\tcpip.sys
16:13:12.0669 4652	Tcpip6 - ok
16:13:12.0763 4652	tcpipreg        (c7e72a4071ee0200e3c075dacfb2b334) C:\Windows\system32\drivers\tcpipreg.sys
16:13:12.0779 4652	tcpipreg - ok
16:13:12.0825 4652	TDPIPE          (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys
16:13:12.0841 4652	TDPIPE - ok
16:13:12.0872 4652	TDTCP           (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys
16:13:12.0888 4652	TDTCP - ok
16:13:12.0950 4652	tdx             (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys
16:13:12.0966 4652	tdx - ok
16:13:13.0013 4652	TermDD          (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys
16:13:13.0028 4652	TermDD - ok
16:13:13.0091 4652	tmactmon        (e386dd8ec68c67ca3e2a3abdc1df5c56) C:\Windows\system32\DRIVERS\tmactmon.sys
16:13:13.0091 4652	tmactmon - ok
16:13:13.0169 4652	tmcomm          (ab011c569487fd65c8944ddf8cbb2572) C:\Windows\system32\DRIVERS\tmcomm.sys
16:13:13.0184 4652	tmcomm - ok
16:13:13.0231 4652	tmeevw          (1161f882b3cfa8076870a09924e0adc2) C:\Windows\system32\DRIVERS\tmeevw.sys
16:13:13.0247 4652	tmeevw - ok
16:13:13.0262 4652	tmevtmgr        (8870a3d7305455b47adccd226f8e51bc) C:\Windows\system32\DRIVERS\tmevtmgr.sys
16:13:13.0278 4652	tmevtmgr - ok
16:13:13.0309 4652	tmnciesc        (f0ae672ee91e7f1ef24644621b57ca7f) C:\Windows\system32\DRIVERS\tmnciesc.sys
16:13:13.0325 4652	tmnciesc - ok
16:13:13.0356 4652	tmtdi           (065cb7d9278d778fb9ef62cead01433f) C:\Windows\system32\DRIVERS\tmtdi.sys
16:13:13.0371 4652	tmtdi - ok
16:13:13.0403 4652	tssecsrv        (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys
16:13:13.0403 4652	tssecsrv - ok
16:13:13.0434 4652	tunmp           (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys
16:13:13.0434 4652	tunmp - ok
16:13:13.0481 4652	tunnel          (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys
16:13:13.0481 4652	tunnel - ok
16:13:13.0543 4652	uagp35          (fec266ef401966311744bd0f359f7f56) C:\Windows\system32\drivers\uagp35.sys
16:13:13.0559 4652	uagp35 - ok
16:13:13.0621 4652	udfs            (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys
16:13:13.0637 4652	udfs - ok
16:13:13.0668 4652	uliagpkx        (4ec9447ac3ab462647f60e547208ca00) C:\Windows\system32\drivers\uliagpkx.sys
16:13:13.0683 4652	uliagpkx - ok
16:13:13.0715 4652	uliahci         (697f0446134cdc8f99e69306184fbbb4) C:\Windows\system32\drivers\uliahci.sys
16:13:13.0730 4652	uliahci - ok
16:13:13.0761 4652	UlSata          (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys
16:13:13.0777 4652	UlSata - ok
16:13:13.0808 4652	ulsata2         (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys
16:13:13.0824 4652	ulsata2 - ok
16:13:13.0839 4652	umbus           (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys
16:13:13.0855 4652	umbus - ok
16:13:13.0902 4652	USBAAPL64       (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
16:13:13.0917 4652	USBAAPL64 - ok
16:13:14.0042 4652	usbaudio        (c6ba890de6e41857fbe84175519cae7d) C:\Windows\system32\drivers\usbaudio.sys
16:13:14.0058 4652	usbaudio - ok
16:13:14.0120 4652	usbccgp         (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys
16:13:14.0136 4652	usbccgp - ok
16:13:14.0167 4652	usbcir          (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys
16:13:14.0183 4652	usbcir - ok
16:13:14.0245 4652	usbehci         (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys
16:13:14.0261 4652	usbehci - ok
16:13:14.0307 4652	usbhub          (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys
16:13:14.0339 4652	usbhub - ok
16:13:14.0385 4652	usbohci         (e406b003a354776d317762694956b0fc) C:\Windows\system32\DRIVERS\usbohci.sys
16:13:14.0401 4652	usbohci - ok
16:13:14.0432 4652	usbprint        (28b693b6d31e7b9332c1bdcefef228c1) C:\Windows\system32\DRIVERS\usbprint.sys
16:13:14.0448 4652	usbprint - ok
16:13:14.0479 4652	USBSTOR         (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS
16:13:14.0495 4652	USBSTOR - ok
16:13:14.0557 4652	usbuhci         (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys
16:13:14.0557 4652	usbuhci - ok
16:13:14.0619 4652	vga             (916b94bcf1e09873fff2d5fb11767bbc) C:\Windows\system32\DRIVERS\vgapnp.sys
16:13:14.0619 4652	vga - ok
16:13:14.0651 4652	VgaSave         (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys
16:13:14.0651 4652	VgaSave - ok
16:13:14.0697 4652	viaide          (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys
16:13:14.0697 4652	viaide - ok
16:13:14.0791 4652	volmgr          (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys
16:13:14.0807 4652	volmgr - ok
16:13:14.0838 4652	volmgrx         (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys
16:13:14.0853 4652	volmgrx - ok
16:13:14.0885 4652	volsnap         (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys
16:13:14.0900 4652	volsnap - ok
16:13:14.0947 4652	vsmraid         (a68f455ed2673835209318dd61bfbb0e) C:\Windows\system32\drivers\vsmraid.sys
16:13:14.0963 4652	vsmraid - ok
16:13:15.0009 4652	WacomPen        (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys
16:13:15.0025 4652	WacomPen - ok
16:13:15.0087 4652	Wanarp          (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
16:13:15.0103 4652	Wanarp - ok
16:13:15.0119 4652	Wanarpv6        (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys
16:13:15.0119 4652	Wanarpv6 - ok
16:13:15.0243 4652	Wd              (0c17a0816f65b89e362e682ad5e7266e) C:\Windows\system32\drivers\wd.sys
16:13:15.0243 4652	Wd - ok
16:13:15.0290 4652	Wdf01000        (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys
16:13:15.0321 4652	Wdf01000 - ok
16:13:15.0384 4652	WmiAcpi         (e18aebaaa5a773fe11aa2c70f65320f5) C:\Windows\system32\DRIVERS\wmiacpi.sys
16:13:15.0399 4652	WmiAcpi - ok
16:13:15.0462 4652	WpdUsb          (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys
16:13:15.0462 4652	WpdUsb - ok
16:13:15.0524 4652	ws2ifsl         (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys
16:13:15.0524 4652	ws2ifsl - ok
16:13:15.0649 4652	WUDFRd          (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys
16:13:15.0665 4652	WUDFRd - ok
16:13:15.0680 4652	MBR (0x1B8)     (797f0b8d59d9f0eb53160fed99a57ed8) \Device\Harddisk0\DR0
16:13:15.0727 4652	\Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected
16:13:15.0727 4652	\Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)
16:13:15.0758 4652	MBR (0x1B8)     (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
16:13:15.0758 4652	\Device\Harddisk1\DR1 - ok
16:13:15.0758 4652	MBR (0x1B8)     (8f558eb6672622401da993e1e865c861) \Device\Harddisk6\DR8
16:13:18.0176 4652	\Device\Harddisk6\DR8 - ok
16:13:18.0176 4652	MBR (0x1B8)     (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk7\DR7
16:13:18.0176 4652	\Device\Harddisk7\DR7 - ok
16:13:18.0192 4652	Boot (0x1200)   (352755561a938810d0fdbc9c49df53eb) \Device\Harddisk0\DR0\Partition0
16:13:18.0192 4652	\Device\Harddisk0\DR0\Partition0 - ok
16:13:18.0223 4652	Boot (0x1200)   (ef9ea5d9dbee3b58377c85d13e33ae53) \Device\Harddisk0\DR0\Partition1
16:13:18.0223 4652	\Device\Harddisk0\DR0\Partition1 - ok
16:13:18.0223 4652	Boot (0x1200)   (21646786f4ecace8bc1addf1c14c864c) \Device\Harddisk1\DR1\Partition0
16:13:18.0223 4652	\Device\Harddisk1\DR1\Partition0 - ok
16:13:18.0223 4652	Boot (0x1200)   (cae144b50def89a5476605bbc82728a5) \Device\Harddisk6\DR8\Partition0
16:13:18.0223 4652	\Device\Harddisk6\DR8\Partition0 - ok
16:13:18.0239 4652	Boot (0x1200)   (0c9fa5408278d5a67aed0f8335bff404) \Device\Harddisk7\DR7\Partition0
16:13:18.0239 4652	\Device\Harddisk7\DR7\Partition0 - ok
16:13:18.0239 4652	============================================================
16:13:18.0239 4652	Scan finished
16:13:18.0239 4652	============================================================
16:13:18.0254 5784	Detected object count: 1
16:13:18.0254 5784	Actual detected object count: 1
16:13:35.0867 5784	\Device\Harddisk0\DR0\# - copied to quarantine
16:13:35.0867 5784	\Device\Harddisk0\DR0 - copied to quarantine
16:13:35.0991 5784	\Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine
16:13:36.0023 5784	\Device\Harddisk0\DR0\TDLFS\phx.dll - copied to quarantine
16:13:37.0349 5784	\Device\Harddisk0\DR0\TDLFS\sub.dll - copied to quarantine
16:13:37.0910 5784	\Device\Harddisk0\DR0\TDLFS\subx.dll - copied to quarantine
16:13:37.0941 5784	\Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine
16:13:37.0973 5784	\Device\Harddisk0\DR0\TDLFS\phdx - copied to quarantine
16:13:37.0988 5784	\Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine
16:13:38.0004 5784	\Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine
16:13:38.0019 5784	\Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine
16:13:38.0019 5784	\Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine
16:13:45.0383 5784	\Device\Harddisk0\DR0\TDLFS\phlx - copied to quarantine
16:13:45.0414 5784	\Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine
16:13:45.0819 5784	\Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot
16:13:45.0819 5784	\Device\Harddisk0\DR0 - ok
16:14:46.0097 5784	\Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure 
16:15:02.0040 5604	Deinitialize success