22:51:24.0468 3900	TDSS rootkit removing tool 2.7.34.0 May  2 2012 09:59:18
22:51:24.0531 3900	============================================================
22:51:24.0531 3900	Current date / time: 2012/05/04 22:51:24.0531
22:51:24.0531 3900	SystemInfo:
22:51:24.0531 3900	
22:51:24.0531 3900	OS Version: 5.1.2600 ServicePack: 3.0
22:51:24.0531 3900	Product type: Workstation
22:51:24.0531 3900	ComputerName: CHEETAH
22:51:24.0531 3900	UserName: auser
22:51:24.0531 3900	Windows directory: C:\WINDOWS
22:51:24.0531 3900	System windows directory: C:\WINDOWS
22:51:24.0531 3900	Processor architecture: Intel x86
22:51:24.0531 3900	Number of processors: 1
22:51:24.0531 3900	Page size: 0x1000
22:51:24.0531 3900	Boot type: Normal boot
22:51:24.0531 3900	============================================================
22:51:29.0265 3900	Drive \Device\Harddisk0\DR0 - Size: 0x9516AE000 (37.27 Gb), SectorSize: 0x200, Cylinders: 0x1431, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
22:51:29.0265 3900	Drive \Device\Harddisk1\DR7 - Size: 0x776000000 (29.84 Gb), SectorSize: 0x200, Cylinders: 0xF37, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:51:29.0281 3900	============================================================
22:51:29.0281 3900	\Device\Harddisk0\DR0:
22:51:29.0281 3900	MBR partitions:
22:51:29.0281 3900	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1DCE1F1
22:51:29.0296 3900	\Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x1DCE26F, BlocksNum 0xA70901
22:51:29.0312 3900	\Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x283EBAF, BlocksNum 0xA40931
22:51:29.0312 3900	\Device\Harddisk0\DR0\Partition3: MBR, Type 0xB, StartLBA 0x327F51F, BlocksNum 0x18098F1
22:51:29.0312 3900	\Device\Harddisk1\DR7:
22:51:29.0312 3900	MBR partitions:
22:51:29.0312 3900	\Device\Harddisk1\DR7\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3BAF800
22:51:29.0312 3900	============================================================
22:51:29.0359 3900	C: <-> \Device\Harddisk0\DR0\Partition0
22:51:29.0375 3900	G: <-> \Device\Harddisk0\DR0\Partition2
22:51:29.0375 3900	H: <-> \Device\Harddisk0\DR0\Partition3
22:51:29.0375 3900	F: <-> \Device\Harddisk0\DR0\Partition1
22:51:29.0375 3900	============================================================
22:51:29.0375 3900	Initialize success
22:51:29.0375 3900	============================================================
22:52:26.0406 3932	============================================================
22:52:26.0406 3932	Scan started
22:52:26.0406 3932	Mode: Manual; SigCheck; TDLFS; 
22:52:26.0406 3932	============================================================
22:52:27.0265 3932	!SASCORE        (c0393eb99a6c72c6bef9bfc4a72b33a6) H:\Program Files\SuperAntiSpyware\SASCORE.EXE
22:52:29.0218 3932	!SASCORE ( UnsignedFile.Multi.Generic ) - warning
22:52:29.0218 3932	!SASCORE - detected UnsignedFile.Multi.Generic (1)
22:52:29.0406 3932	Aavmker4        (473f97edc5a5312f3665ab2921196c0c) C:\WINDOWS\system32\drivers\Aavmker4.sys
22:52:29.0437 3932	Aavmker4 - ok
22:52:29.0468 3932	Abiosdsk - ok
22:52:29.0468 3932	abp480n5 - ok
22:52:29.0578 3932	ACDaemon        (adc420616c501b45d26c0fd3ef1e54e4) C:\Program Files\Common Files\ArcSoft\Connection Service\Bin\ACService.exe
22:52:29.0609 3932	ACDaemon - ok
22:52:29.0656 3932	ACPI            (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
22:52:29.0921 3932	ACPI - ok
22:52:29.0968 3932	ACPIEC          (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
22:52:30.0203 3932	ACPIEC - ok
22:52:30.0281 3932	AdobeFlashPlayerUpdateSvc (459ac130c6ab892b1cd5d7544626efc5) C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
22:52:30.0343 3932	AdobeFlashPlayerUpdateSvc - ok
22:52:30.0375 3932	adpu160m - ok
22:52:30.0421 3932	aeaudio         (e696e749bedcda8b23757b8b5ea93780) C:\WINDOWS\system32\drivers\aeaudio.sys
22:52:30.0437 3932	aeaudio ( UnsignedFile.Multi.Generic ) - warning
22:52:30.0437 3932	aeaudio - detected UnsignedFile.Multi.Generic (1)
22:52:30.0484 3932	aec             (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
22:52:30.0734 3932	aec - ok
22:52:30.0765 3932	AFD             (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
22:52:30.0828 3932	AFD - ok
22:52:30.0875 3932	agp440          (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
22:52:31.0109 3932	agp440 - ok
22:52:31.0125 3932	Aha154x - ok
22:52:31.0140 3932	aic78u2 - ok
22:52:31.0156 3932	aic78xx - ok
22:52:31.0203 3932	Alerter         (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
22:52:31.0500 3932	Alerter - ok
22:52:31.0515 3932	ALG             (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
22:52:31.0750 3932	ALG - ok
22:52:31.0765 3932	AliIde - ok
22:52:31.0796 3932	amsint - ok
22:52:31.0843 3932	AppMgmt         (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
22:52:32.0093 3932	AppMgmt - ok
22:52:32.0109 3932	asc - ok
22:52:32.0125 3932	asc3350p - ok
22:52:32.0140 3932	asc3550 - ok
22:52:32.0265 3932	aspnet_state    (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
22:52:32.0390 3932	aspnet_state - ok
22:52:32.0437 3932	aswFsBlk        (0ae43c6c411254049279c2ee55630f95) C:\WINDOWS\system32\drivers\aswFsBlk.sys
22:52:32.0453 3932	aswFsBlk - ok
22:52:32.0468 3932	aswMon2         (8c30b7ddd2f1d8d138ebe40345af2b11) C:\WINDOWS\system32\drivers\aswMon2.sys
22:52:32.0500 3932	aswMon2 - ok
22:52:32.0531 3932	aswRdr          (da12626fd9a67f4e917e2f2fbe1e1764) C:\WINDOWS\system32\drivers\aswRdr.sys
22:52:32.0546 3932	aswRdr - ok
22:52:32.0625 3932	aswSnx          (dcb199b967375753b5019ec15f008f53) C:\WINDOWS\system32\drivers\aswSnx.sys
22:52:32.0671 3932	aswSnx - ok
22:52:32.0718 3932	aswSP           (b32873e5a1443c0a1e322266e203bf10) C:\WINDOWS\system32\drivers\aswSP.sys
22:52:32.0750 3932	aswSP - ok
22:52:32.0796 3932	aswTdi          (6ff544175a9180c5d88534d3d9c9a9f7) C:\WINDOWS\system32\drivers\aswTdi.sys
22:52:32.0812 3932	aswTdi - ok
22:52:32.0859 3932	aswUpdSv - ok
22:52:32.0906 3932	AsyncMac        (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
22:52:33.0125 3932	AsyncMac - ok
22:52:33.0203 3932	atapi           (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
22:52:33.0437 3932	atapi - ok
22:52:33.0468 3932	Atdisk - ok
22:52:33.0515 3932	Atmarpc         (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
22:52:33.0765 3932	Atmarpc - ok
22:52:33.0812 3932	AudioSrv        (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
22:52:34.0031 3932	AudioSrv - ok
22:52:34.0062 3932	audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
22:52:34.0328 3932	audstub - ok
22:52:34.0406 3932	avast! Antivirus (4041d31508a2a084dfb42c595854090f) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
22:52:34.0437 3932	avast! Antivirus - ok
22:52:34.0484 3932	Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
22:52:34.0812 3932	Beep - ok
22:52:34.0875 3932	BITS            (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
22:52:35.0156 3932	BITS - ok
22:52:35.0203 3932	Browser         (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
22:52:35.0437 3932	Browser - ok
22:52:35.0500 3932	btaudio         (b0a533aa6c5ce5f51cf738bf7e5cb5c4) C:\WINDOWS\system32\drivers\btaudio.sys
22:52:35.0562 3932	btaudio - ok
22:52:35.0609 3932	BTDriver        (58a49bd10e08d3d4333a60dedcb1ced8) C:\WINDOWS\system32\DRIVERS\btport.sys
22:52:35.0625 3932	BTDriver - ok
22:52:35.0718 3932	BTKRNL          (9ba609d995f7b708c62e53168df3ed2a) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
22:52:35.0781 3932	BTKRNL - ok
22:52:36.0000 3932	btwdins         (e88d7c9f4c4f9de849d9e5c59954812f) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe
22:52:36.0062 3932	btwdins - ok
22:52:36.0109 3932	BTWDNDIS        (80f61de965c116051614ac2f04222ff7) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
22:52:36.0140 3932	BTWDNDIS - ok
22:52:36.0187 3932	btwhid          (e48668b4a6a5cf68b33aecad18ee8e1e) C:\WINDOWS\system32\DRIVERS\btwhid.sys
22:52:36.0218 3932	btwhid - ok
22:52:36.0281 3932	BTWUSB          (ad7f4b81a3f8d330dd8382b7cf4df341) C:\WINDOWS\system32\Drivers\btwusb.sys
22:52:36.0296 3932	BTWUSB - ok
22:52:36.0359 3932	cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
22:52:36.0593 3932	cbidf2k - ok
22:52:36.0750 3932	CCDECODE        (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
22:52:37.0031 3932	CCDECODE - ok
22:52:37.0046 3932	cd20xrnt - ok
22:52:37.0093 3932	Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
22:52:37.0343 3932	Cdaudio - ok
22:52:37.0375 3932	Cdfs            (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
22:52:37.0609 3932	Cdfs - ok
22:52:37.0640 3932	Cdrom           (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
22:52:37.0890 3932	Cdrom - ok
22:52:37.0890 3932	Changer - ok
22:52:37.0937 3932	cisvc           (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
22:52:38.0234 3932	cisvc - ok
22:52:38.0265 3932	ClipSrv         (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
22:52:38.0515 3932	ClipSrv - ok
22:52:38.0593 3932	clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
22:52:38.0656 3932	clr_optimization_v2.0.50727_32 - ok
22:52:38.0671 3932	CmdIde - ok
22:52:38.0687 3932	COMSysApp - ok
22:52:38.0703 3932	Cpqarray - ok
22:52:38.0750 3932	CryptSvc        (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
22:52:38.0968 3932	CryptSvc - ok
22:52:38.0968 3932	dac2w2k - ok
22:52:38.0984 3932	dac960nt - ok
22:52:39.0078 3932	DcomLaunch      (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
22:52:39.0156 3932	DcomLaunch - ok
22:52:39.0234 3932	Dhcp            (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
22:52:39.0484 3932	Dhcp - ok
22:52:39.0515 3932	Disk            (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
22:52:39.0812 3932	Disk - ok
22:52:39.0812 3932	dmadmin - ok
22:52:39.0875 3932	dmboot          (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
22:52:40.0156 3932	dmboot - ok
22:52:40.0187 3932	dmio            (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
22:52:40.0484 3932	dmio - ok
22:52:40.0531 3932	dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
22:52:40.0750 3932	dmload - ok
22:52:40.0828 3932	dmserver        (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
22:52:41.0046 3932	dmserver - ok
22:52:41.0078 3932	DMusic          (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
22:52:41.0093 3932	DMusic ( UnsignedFile.Multi.Generic ) - warning
22:52:41.0093 3932	DMusic - detected UnsignedFile.Multi.Generic (1)
22:52:41.0125 3932	Dnscache        (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
22:52:41.0171 3932	Dnscache - ok
22:52:41.0218 3932	Dot3svc         (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
22:52:41.0515 3932	Dot3svc - ok
22:52:41.0531 3932	dpti2o - ok
22:52:41.0562 3932	drmkaud         (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
22:52:41.0578 3932	drmkaud ( UnsignedFile.Multi.Generic ) - warning
22:52:41.0578 3932	drmkaud - detected UnsignedFile.Multi.Generic (1)
22:52:41.0656 3932	E100B           (83403675cab29e7a4b885b11e7c855d8) C:\WINDOWS\system32\DRIVERS\e100b325.sys
22:52:41.0687 3932	E100B ( UnsignedFile.Multi.Generic ) - warning
22:52:41.0687 3932	E100B - detected UnsignedFile.Multi.Generic (1)
22:52:41.0718 3932	EapHost         (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
22:52:41.0953 3932	EapHost - ok
22:52:41.0984 3932	ERSvc           (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
22:52:42.0203 3932	ERSvc - ok
22:52:42.0250 3932	Eventlog        (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
22:52:42.0328 3932	Eventlog - ok
22:52:42.0421 3932	EventSystem     (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\System32\es.dll
22:52:42.0484 3932	EventSystem - ok
22:52:42.0531 3932	Fastfat         (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
22:52:42.0765 3932	Fastfat - ok
22:52:42.0812 3932	FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
22:52:42.0890 3932	FastUserSwitchingCompatibility - ok
22:52:42.0921 3932	Fdc             (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
22:52:43.0156 3932	Fdc - ok
22:52:43.0171 3932	Fips            (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
22:52:43.0406 3932	Fips - ok
22:52:43.0484 3932	Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
22:52:43.0703 3932	Flpydisk - ok
22:52:43.0781 3932	FltMgr          (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
22:52:44.0015 3932	FltMgr - ok
22:52:44.0125 3932	FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
22:52:44.0140 3932	FontCache3.0.0.0 - ok
22:52:44.0187 3932	fssfltr         (c6ee3a87fe609d3e1db9dbd072a248de) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
22:52:44.0203 3932	fssfltr - ok
22:52:44.0765 3932	fsssvc          (45b52394f9624237f33a8a3d73c0b221) C:\Program Files\Windows Live\Family Safety\fsssvc.exe
22:52:44.0937 3932	fsssvc - ok
22:52:44.0984 3932	Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
22:52:45.0203 3932	Fs_Rec - ok
22:52:45.0234 3932	Ftdisk          (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
22:52:45.0500 3932	Ftdisk - ok
22:52:45.0562 3932	getPlusHelper   (fd7e9aba274df75e08320420b8e9a1d5) C:\Program Files\NOS\bin\getPlus_Helper.dll
22:52:45.0593 3932	getPlusHelper - ok
22:52:45.0625 3932	Gpc             (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
22:52:45.0906 3932	Gpc - ok
22:52:45.0984 3932	gupdate         (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:52:46.0015 3932	gupdate - ok
22:52:46.0015 3932	gupdatem        (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
22:52:46.0046 3932	gupdatem - ok
22:52:46.0203 3932	gusvc           (016e55316ce89e8ac8f77a6818842345) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
22:52:46.0218 3932	gusvc - ok
22:52:46.0265 3932	hcmon           (9f40fc2a562dc9f4d9e10943586d9ed1) C:\WINDOWS\system32\drivers\hcmon.sys
22:52:46.0281 3932	hcmon - ok
22:52:46.0359 3932	helpsvc         (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
22:52:46.0578 3932	helpsvc - ok
22:52:46.0625 3932	HidServ         (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
22:52:46.0906 3932	HidServ - ok
22:52:46.0937 3932	hidusb          (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
22:52:47.0140 3932	hidusb - ok
22:52:47.0312 3932	hkmsvc          (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
22:52:47.0546 3932	hkmsvc - ok
22:52:47.0562 3932	hpn - ok
22:52:47.0578 3932	hpt3xx - ok
22:52:47.0640 3932	HTTP            (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
22:52:47.0703 3932	HTTP - ok
22:52:48.0000 3932	HTTPFilter      (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
22:52:48.0250 3932	HTTPFilter - ok
22:52:48.0250 3932	i2omgmt - ok
22:52:48.0265 3932	i2omp - ok
22:52:48.0312 3932	i8042prt        (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
22:52:48.0531 3932	i8042prt - ok
22:52:48.0656 3932	ialm            (44b7d5a4f2bd9fe21aea0bb0bace38c4) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
22:52:48.0718 3932	ialm ( UnsignedFile.Multi.Generic ) - warning
22:52:48.0718 3932	ialm - detected UnsignedFile.Multi.Generic (1)
22:52:48.0890 3932	idsvc           (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
22:52:49.0031 3932	idsvc - ok
22:52:49.0140 3932	Imapi           (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
22:52:49.0359 3932	Imapi - ok
22:52:49.0390 3932	ImapiService    (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\System32\imapi.exe
22:52:49.0609 3932	ImapiService - ok
22:52:49.0625 3932	ini910u - ok
22:52:49.0687 3932	IntelIde - ok
22:52:49.0812 3932	intelppm        (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
22:52:50.0203 3932	intelppm - ok
22:52:50.0234 3932	ip6fw           (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
22:52:50.0515 3932	ip6fw - ok
22:52:50.0546 3932	IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
22:52:50.0796 3932	IpFilterDriver - ok
22:52:50.0828 3932	IpInIp          (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
22:52:51.0031 3932	IpInIp - ok
22:52:51.0109 3932	IpNat           (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
22:52:51.0375 3932	IpNat - ok
22:52:51.0468 3932	IPSec           (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
22:52:51.0703 3932	IPSec - ok
22:52:51.0734 3932	IRENUM          (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
22:52:51.0953 3932	IRENUM - ok
22:52:51.0984 3932	isapnp          (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
22:52:52.0265 3932	isapnp - ok
22:52:52.0421 3932	JavaQuickStarterService (112325f53ab720ca77825726d427fbdc) C:\Program Files\Java\jre6\bin\jqs.exe
22:52:52.0453 3932	JavaQuickStarterService - ok
22:52:52.0468 3932	Kbdclass        (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
22:52:52.0687 3932	Kbdclass - ok
22:52:52.0718 3932	kbdhid          (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
22:52:52.0921 3932	kbdhid - ok
22:52:52.0953 3932	kmixer          (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
22:52:53.0156 3932	kmixer - ok
22:52:53.0203 3932	KSecDD          (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
22:52:53.0250 3932	KSecDD - ok
22:52:53.0343 3932	lanmanserver    (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
22:52:53.0390 3932	lanmanserver - ok
22:52:53.0421 3932	lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
22:52:53.0468 3932	lanmanworkstation - ok
22:52:53.0484 3932	lbrtfdc - ok
22:52:53.0546 3932	LmHosts         (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
22:52:53.0781 3932	LmHosts - ok
22:52:53.0859 3932	LVRS            (ed643e777ba3f7151ef3f0fb6be4f7f0) C:\WINDOWS\system32\DRIVERS\lvrs.sys
22:52:53.0890 3932	LVRS - ok
22:52:54.0203 3932	LVUVC           (5bc80451109a8dd7f2ddd35bce2929a3) C:\WINDOWS\system32\DRIVERS\lvuvc.sys
22:52:54.0484 3932	LVUVC - ok
22:52:54.0656 3932	Messenger       (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
22:52:54.0890 3932	Messenger - ok
22:52:54.0953 3932	mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
22:52:55.0171 3932	mnmdd - ok
22:52:55.0218 3932	mnmsrvc         (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\System32\mnmsrvc.exe
22:52:55.0484 3932	mnmsrvc - ok
22:52:55.0515 3932	Modem           (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
22:52:55.0734 3932	Modem - ok
22:52:55.0750 3932	Mouclass        (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
22:52:55.0968 3932	Mouclass - ok
22:52:56.0015 3932	mouhid          (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
22:52:56.0250 3932	mouhid - ok
22:52:56.0265 3932	MountMgr        (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
22:52:56.0484 3932	MountMgr - ok
22:52:56.0781 3932	MozillaMaintenance (96aa8ba23142cc8e2b30f3cae0c80254) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
22:52:56.0812 3932	MozillaMaintenance - ok
22:52:56.0828 3932	mraid35x - ok
22:52:56.0859 3932	MRxDAV          (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
22:52:57.0093 3932	MRxDAV - ok
22:52:57.0156 3932	MRxSmb          (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
22:52:57.0218 3932	MRxSmb - ok
22:52:57.0265 3932	MSDTC           (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\System32\msdtc.exe
22:52:57.0500 3932	MSDTC - ok
22:52:57.0531 3932	Msfs            (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
22:52:57.0812 3932	Msfs - ok
22:52:57.0828 3932	MSIServer - ok
22:52:57.0859 3932	MSKSSRV         (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
22:52:58.0078 3932	MSKSSRV - ok
22:52:58.0109 3932	MSPCLOCK        (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
22:52:58.0312 3932	MSPCLOCK - ok
22:52:58.0343 3932	MSPQM           (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
22:52:58.0578 3932	MSPQM - ok
22:52:58.0609 3932	mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
22:52:58.0875 3932	mssmbios - ok
22:52:58.0890 3932	MSTEE           (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
22:52:59.0109 3932	MSTEE - ok
22:52:59.0140 3932	Mup             (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
22:52:59.0171 3932	Mup - ok
22:52:59.0218 3932	NABTSFEC        (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
22:52:59.0453 3932	NABTSFEC - ok
22:52:59.0546 3932	napagent        (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
22:52:59.0796 3932	napagent - ok
22:52:59.0843 3932	NDIS            (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
22:53:00.0093 3932	NDIS - ok
22:53:00.0125 3932	NdisIP          (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
22:53:00.0328 3932	NdisIP - ok
22:53:00.0375 3932	NdisTapi        (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
22:53:00.0437 3932	NdisTapi - ok
22:53:00.0484 3932	Ndisuio         (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
22:53:00.0703 3932	Ndisuio - ok
22:53:00.0734 3932	NdisWan         (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
22:53:00.0984 3932	NdisWan - ok
22:53:01.0015 3932	NDProxy         (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
22:53:01.0062 3932	NDProxy - ok
22:53:01.0109 3932	NetBIOS         (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
22:53:01.0359 3932	NetBIOS - ok
22:53:01.0406 3932	NetBT           (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
22:53:01.0750 3932	NetBT - ok
22:53:01.0796 3932	NetDDE          (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
22:53:02.0078 3932	NetDDE - ok
22:53:02.0093 3932	NetDDEdsdm      (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
22:53:02.0312 3932	NetDDEdsdm - ok
22:53:02.0343 3932	Netlogon        (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
22:53:02.0625 3932	Netlogon - ok
22:53:02.0656 3932	Netman          (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
22:53:02.0890 3932	Netman - ok
22:53:03.0000 3932	NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
22:53:03.0031 3932	NetTcpPortSharing - ok
22:53:03.0062 3932	Nla             (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
22:53:03.0171 3932	Nla - ok
22:53:03.0218 3932	nmwcd           (28e36e677849174c910faaead3e60e9e) C:\WINDOWS\system32\drivers\ccdcmb.sys
22:53:03.0343 3932	nmwcd - ok
22:53:03.0390 3932	nmwcdc          (3823deb17f9f6775de0187a98fa0536d) C:\WINDOWS\system32\drivers\ccdcmbo.sys
22:53:03.0515 3932	nmwcdc - ok
22:53:03.0546 3932	nmwcdnsu        (496f34fb30dd541350b29558842cd42a) C:\WINDOWS\system32\drivers\nmwcdnsu.sys
22:53:03.0687 3932	nmwcdnsu - ok
22:53:04.0015 3932	NPF             (b48dc6abcd3aeff8618350ccbdc6b09a) C:\WINDOWS\system32\drivers\npf.sys
22:53:04.0046 3932	NPF - ok
22:53:04.0078 3932	Npfs            (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
22:53:04.0343 3932	Npfs - ok
22:53:04.0531 3932	Ntfs            (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
22:53:04.0781 3932	Ntfs - ok
22:53:04.0843 3932	NtLmSsp         (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
22:53:05.0125 3932	NtLmSsp - ok
22:53:05.0234 3932	NtmsSvc         (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
22:53:05.0562 3932	NtmsSvc - ok
22:53:05.0593 3932	Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
22:53:05.0828 3932	Null - ok
22:53:06.0234 3932	nv              (5950e6cc9fb3fabb61604d395dbc8550) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
22:53:06.0812 3932	nv ( UnsignedFile.Multi.Generic ) - warning
22:53:06.0812 3932	nv - detected UnsignedFile.Multi.Generic (1)
22:53:06.0968 3932	NVSvc           (9fe764d5eecca13b0932fab81a4a5a6f) C:\WINDOWS\system32\nvsvc32.exe
22:53:07.0015 3932	NVSvc ( UnsignedFile.Multi.Generic ) - warning
22:53:07.0015 3932	NVSvc - detected UnsignedFile.Multi.Generic (1)
22:53:07.0078 3932	NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
22:53:07.0343 3932	NwlnkFlt - ok
22:53:07.0359 3932	NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
22:53:07.0687 3932	NwlnkFwd - ok
22:53:07.0718 3932	Parport         (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
22:53:07.0953 3932	Parport - ok
22:53:07.0968 3932	PartMgr         (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
22:53:08.0234 3932	PartMgr - ok
22:53:08.0265 3932	ParVdm          (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
22:53:08.0500 3932	ParVdm - ok
22:53:08.0546 3932	pccsmcfd        (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys
22:53:08.0562 3932	pccsmcfd - ok
22:53:08.0609 3932	PCI             (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
22:53:08.0875 3932	PCI - ok
22:53:09.0093 3932	PCIDump - ok
22:53:09.0125 3932	PCIIde          (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
22:53:09.0406 3932	PCIIde - ok
22:53:09.0437 3932	Pcmcia          (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
22:53:09.0671 3932	Pcmcia - ok
22:53:09.0687 3932	PDCOMP - ok
22:53:09.0703 3932	PDFRAME - ok
22:53:09.0718 3932	PDRELI - ok
22:53:09.0718 3932	PDRFRAME - ok
22:53:09.0750 3932	perc2 - ok
22:53:09.0765 3932	perc2hib - ok
22:53:09.0875 3932	PlugPlay        (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
22:53:09.0953 3932	PlugPlay - ok
22:53:10.0000 3932	PolicyAgent     (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\System32\lsass.exe
22:53:10.0203 3932	PolicyAgent - ok
22:53:10.0265 3932	PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
22:53:10.0468 3932	PptpMiniport - ok
22:53:10.0500 3932	PQNTDrv         (04f3971b70a7855f04d351aa4bee7799) C:\WINDOWS\system32\drivers\PQNTDrv.sys
22:53:10.0515 3932	PQNTDrv ( UnsignedFile.Multi.Generic ) - warning
22:53:10.0515 3932	PQNTDrv - detected UnsignedFile.Multi.Generic (1)
22:53:10.0562 3932	Processor       (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys
22:53:10.0781 3932	Processor - ok
22:53:10.0796 3932	ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
22:53:11.0062 3932	ProtectedStorage - ok
22:53:11.0109 3932	PSched          (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
22:53:11.0312 3932	PSched - ok
22:53:11.0359 3932	Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
22:53:11.0625 3932	Ptilink - ok
22:53:11.0687 3932	PxHelp20        (49452bfcec22f36a7a9b9c2181bc3042) C:\WINDOWS\system32\Drivers\PxHelp20.sys
22:53:11.0703 3932	PxHelp20 - ok
22:53:11.0718 3932	ql1080 - ok
22:53:11.0734 3932	Ql10wnt - ok
22:53:11.0765 3932	ql12160 - ok
22:53:11.0781 3932	ql1240 - ok
22:53:11.0796 3932	ql1280 - ok
22:53:11.0843 3932	RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
22:53:12.0093 3932	RasAcd - ok
22:53:12.0140 3932	RasAuto         (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
22:53:12.0390 3932	RasAuto - ok
22:53:12.0421 3932	Rasl2tp         (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
22:53:12.0640 3932	Rasl2tp - ok
22:53:12.0687 3932	RasMan          (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
22:53:12.0921 3932	RasMan - ok
22:53:12.0968 3932	RasPppoe        (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
22:53:13.0171 3932	RasPppoe - ok
22:53:13.0203 3932	Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
22:53:13.0484 3932	Raspti - ok
22:53:13.0546 3932	Rdbss           (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
22:53:13.0812 3932	Rdbss - ok
22:53:13.0828 3932	RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
22:53:14.0062 3932	RDPCDD - ok
22:53:14.0156 3932	rdpdr           (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
22:53:14.0421 3932	rdpdr - ok
22:53:14.0468 3932	RDPWD           (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
22:53:14.0515 3932	RDPWD - ok
22:53:14.0562 3932	RDSessMgr       (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
22:53:14.0796 3932	RDSessMgr - ok
22:53:14.0828 3932	redbook         (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
22:53:15.0062 3932	redbook - ok
22:53:15.0109 3932	RemoteAccess    (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
22:53:15.0328 3932	RemoteAccess - ok
22:53:15.0390 3932	RemoteRegistry  (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
22:53:15.0656 3932	RemoteRegistry - ok
22:53:15.0718 3932	rpcapd          (b60f58f175de20a6739194e85b035178) C:\Program Files\WinPcap\rpcapd.exe
22:53:15.0734 3932	rpcapd - ok
22:53:15.0781 3932	RpcLocator      (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\System32\locator.exe
22:53:16.0000 3932	RpcLocator - ok
22:53:16.0093 3932	RpcSs           (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
22:53:16.0156 3932	RpcSs - ok
22:53:16.0203 3932	RSVP            (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\System32\rsvp.exe
22:53:16.0484 3932	RSVP - ok
22:53:16.0531 3932	SamSs           (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
22:53:16.0765 3932	SamSs - ok
22:53:16.0859 3932	SASDIFSV        (39763504067962108505bff25f024345) H:\Program Files\SuperAntiSpyware\SASDIFSV.SYS
22:53:16.0890 3932	SASDIFSV - ok
22:53:16.0906 3932	SASKUTIL        (77b9fc20084b48408ad3e87570eb4a85) H:\Program Files\SuperAntiSpyware\SASKUTIL.SYS
22:53:16.0937 3932	SASKUTIL - ok
22:53:16.0984 3932	SCardSvr        (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
22:53:17.0218 3932	SCardSvr - ok
22:53:17.0281 3932	Schedule        (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
22:53:17.0515 3932	Schedule - ok
22:53:17.0593 3932	Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
22:53:17.0781 3932	Secdrv - ok
22:53:17.0828 3932	seclogon        (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
22:53:18.0093 3932	seclogon - ok
22:53:18.0125 3932	SENS            (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
22:53:18.0343 3932	SENS - ok
22:53:18.0375 3932	serenum         (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
22:53:18.0578 3932	serenum - ok
22:53:18.0609 3932	Serial          (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
22:53:18.0843 3932	Serial - ok
22:53:19.0015 3932	ServiceLayer    (5bf59c6bc737baaf541168e5cb2ec1d9) C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
22:53:19.0109 3932	ServiceLayer ( UnsignedFile.Multi.Generic ) - warning
22:53:19.0109 3932	ServiceLayer - detected UnsignedFile.Multi.Generic (1)
22:53:19.0156 3932	Sfloppy         (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
22:53:19.0375 3932	Sfloppy - ok
22:53:19.0437 3932	SharedAccess    (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
22:53:19.0703 3932	SharedAccess - ok
22:53:19.0750 3932	ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
22:53:19.0812 3932	ShellHWDetection - ok
22:53:19.0828 3932	Simbad - ok
22:53:19.0921 3932	SkypeUpdate     (db0405d9aad62f0762e0876ac142b7e1) C:\Program Files\Skype\Updater\Updater.exe
22:53:20.0000 3932	SkypeUpdate - ok
22:53:20.0031 3932	SLIP            (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
22:53:20.0234 3932	SLIP - ok
22:53:20.0312 3932	smwdm           (fa3368a7039f5abaa4b933703ac34763) C:\WINDOWS\system32\drivers\smwdm.sys
22:53:20.0375 3932	smwdm ( UnsignedFile.Multi.Generic ) - warning
22:53:20.0375 3932	smwdm - detected UnsignedFile.Multi.Generic (1)
22:53:20.0421 3932	SoundMAX Agent Service (default) (3978f082274f723ad5a0a8058c2417dd) C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe
22:53:20.0437 3932	SoundMAX Agent Service (default) ( UnsignedFile.Multi.Generic ) - warning
22:53:20.0437 3932	SoundMAX Agent Service (default) - detected UnsignedFile.Multi.Generic (1)
22:53:20.0453 3932	Sparrow - ok
22:53:20.0484 3932	splitter        (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
22:53:20.0703 3932	splitter - ok
22:53:20.0750 3932	Spooler         (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
22:53:20.0796 3932	Spooler - ok
22:53:20.0828 3932	sr              (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
22:53:21.0093 3932	sr - ok
22:53:21.0140 3932	srservice       (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\System32\srsvc.dll
22:53:21.0359 3932	srservice - ok
22:53:21.0468 3932	Srv             (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
22:53:21.0546 3932	Srv - ok
22:53:21.0578 3932	SSDPSRV         (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
22:53:21.0828 3932	SSDPSRV - ok
22:53:21.0890 3932	stisvc          (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
22:53:22.0125 3932	stisvc - ok
22:53:22.0156 3932	streamip        (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
22:53:22.0406 3932	streamip - ok
22:53:22.0453 3932	swenum          (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
22:53:22.0656 3932	swenum - ok
22:53:22.0703 3932	swmidi          (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
22:53:22.0718 3932	swmidi ( UnsignedFile.Multi.Generic ) - warning
22:53:22.0718 3932	swmidi - detected UnsignedFile.Multi.Generic (1)
22:53:22.0734 3932	SwPrv - ok
22:53:22.0765 3932	symc810 - ok
22:53:22.0781 3932	symc8xx - ok
22:53:22.0828 3932	sym_hi - ok
22:53:22.0843 3932	sym_u3 - ok
22:53:22.0875 3932	sysaudio        (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
22:53:22.0906 3932	sysaudio ( UnsignedFile.Multi.Generic ) - warning
22:53:22.0906 3932	sysaudio - detected UnsignedFile.Multi.Generic (1)
22:53:22.0953 3932	SysmonLog       (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
22:53:23.0171 3932	SysmonLog - ok
22:53:23.0265 3932	TapiSrv         (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
22:53:23.0515 3932	TapiSrv - ok
22:53:23.0578 3932	Tcpip           (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
22:53:23.0625 3932	Tcpip - ok
22:53:23.0671 3932	TDPIPE          (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
22:53:23.0890 3932	TDPIPE - ok
22:53:23.0906 3932	TDTCP           (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
22:53:24.0140 3932	TDTCP - ok
22:53:24.0234 3932	TermDD          (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
22:53:24.0500 3932	TermDD - ok
22:53:24.0593 3932	TermService     (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
22:53:24.0828 3932	TermService - ok
22:53:24.0906 3932	Themes          (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
22:53:24.0937 3932	Themes - ok
22:53:25.0000 3932	TlntSvr         (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\System32\tlntsvr.exe
22:53:25.0218 3932	TlntSvr - ok
22:53:25.0234 3932	TosIde - ok
22:53:25.0281 3932	TrkWks          (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
22:53:25.0562 3932	TrkWks - ok
22:53:25.0609 3932	Udfs            (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
22:53:25.0796 3932	Udfs - ok
22:53:25.0906 3932	ufad-ws60       (215462ae7e6a897d675e84dd1e3b3b56) C:\Program Files\VMware\VMware Player\vmware-ufad.exe
22:53:25.0937 3932	ufad-ws60 - ok
22:53:25.0953 3932	ultra - ok
22:53:26.0062 3932	UMVPFSrv        (67a95b9d129ed5399e7965cd09cf30e7) C:\Program Files\Common Files\logishrd\LVMVFM\UMVPFSrv.exe
22:53:26.0125 3932	UMVPFSrv - ok
22:53:26.0171 3932	Update          (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
22:53:26.0406 3932	Update - ok
22:53:26.0484 3932	upnphost        (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
22:53:26.0750 3932	upnphost - ok
22:53:26.0812 3932	upperdev        (b1b8bee26227dad9835019201552cb05) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys
22:53:26.0953 3932	upperdev - ok
22:53:26.0984 3932	UPS             (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
22:53:27.0203 3932	UPS - ok
22:53:27.0250 3932	usbaudio        (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
22:53:27.0484 3932	usbaudio - ok
22:53:27.0531 3932	usbccgp         (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
22:53:27.0765 3932	usbccgp - ok
22:53:27.0796 3932	usbehci         (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
22:53:28.0015 3932	usbehci - ok
22:53:28.0046 3932	usbhub          (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
22:53:28.0265 3932	usbhub - ok
22:53:28.0296 3932	usbprint        (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
22:53:28.0515 3932	usbprint - ok
22:53:28.0578 3932	usbscan         (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
22:53:28.0812 3932	usbscan - ok
22:53:28.0859 3932	usbser          (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\drivers\usbser.sys
22:53:29.0078 3932	usbser - ok
22:53:29.0109 3932	UsbserFilt      (98e1ff1d732c6c7200b6c59d4ff8c1c3) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys
22:53:29.0234 3932	UsbserFilt - ok
22:53:29.0265 3932	USBSTOR         (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
22:53:29.0500 3932	USBSTOR - ok
22:53:29.0531 3932	usbuhci         (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
22:53:29.0828 3932	usbuhci - ok
22:53:29.0875 3932	usbvideo        (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
22:53:30.0093 3932	usbvideo - ok
22:53:30.0140 3932	VgaSave         (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
22:53:30.0359 3932	VgaSave - ok
22:53:30.0375 3932	ViaIde - ok
22:53:30.0468 3932	VMAuthdService  (42f0ecaf36636841a4a006850695507f) C:\Program Files\VMware\VMware Player\vmware-authd.exe
22:53:30.0500 3932	VMAuthdService - ok
22:53:30.0515 3932	vmci            (69f761f00950c65af8e5f836bf251d61) C:\WINDOWS\system32\Drivers\vmci.sys
22:53:30.0546 3932	vmci - ok
22:53:30.0578 3932	vmkbd           (dcd2f4a14795e8a8114a7cae2a9b9465) C:\WINDOWS\system32\drivers\VMkbd.sys
22:53:30.0593 3932	vmkbd - ok
22:53:30.0625 3932	VMnetAdapter    (e41704d8149992107b333cc7a52c07cc) C:\WINDOWS\system32\DRIVERS\vmnetadapter.sys
22:53:30.0656 3932	VMnetAdapter - ok
22:53:30.0687 3932	VMnetBridge     (0a671fd23eec96fa35b50a167351d394) C:\WINDOWS\system32\DRIVERS\vmnetbridge.sys
22:53:30.0750 3932	VMnetBridge - ok
22:53:30.0796 3932	VMnetDHCP       (4c8927595e18017f9c1716370f572b7d) C:\WINDOWS\system32\vmnetdhcp.exe
22:53:30.0859 3932	VMnetDHCP - ok
22:53:30.0875 3932	VMnetuserif     (6bd13f3f8a4a67a4fc5c3dc1696c00d8) C:\WINDOWS\system32\drivers\vmnetuserif.sys
22:53:30.0906 3932	VMnetuserif - ok
22:53:30.0937 3932	VMparport       (3bad07bd14ac271b5f0000ac7a1fc4c6) C:\WINDOWS\system32\Drivers\VMparport.sys
22:53:30.0953 3932	VMparport - ok
22:53:31.0015 3932	VMUSBArbService (f22098dbdd13c1221c274496b3e18da7) C:\Program Files\Common Files\VMware\USB\vmware-usbarbitrator.exe
22:53:31.0078 3932	VMUSBArbService - ok
22:53:31.0125 3932	VMware NAT Service (61da8934252b140c4b568813f543d0d2) C:\WINDOWS\system32\vmnat.exe
22:53:31.0187 3932	VMware NAT Service - ok
22:53:31.0281 3932	vmx86           (963a6a23eeb5ab6277c64fbc98517de8) C:\WINDOWS\system32\Drivers\vmx86.sys
22:53:31.0343 3932	vmx86 - ok
22:53:31.0375 3932	VolSnap         (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
22:53:31.0609 3932	VolSnap - ok
22:53:31.0671 3932	VSS             (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
22:53:31.0968 3932	VSS - ok
22:53:32.0062 3932	vstor2-ws60     (98929c5c5314c4c048e2f60492c26723) C:\Program Files\VMware\VMware Player\vstor2-ws60.sys
22:53:32.0093 3932	vstor2-ws60 - ok
22:53:32.0125 3932	W32Time         (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\System32\w32time.dll
22:53:32.0359 3932	W32Time - ok
22:53:32.0437 3932	wampapache      (f41e453a90ef19217cee1675f5256ee7) f:\wamp\bin\apache\apache2.2.21\bin\httpd.exe
22:53:32.0468 3932	wampapache ( UnsignedFile.Multi.Generic ) - warning
22:53:32.0468 3932	wampapache - detected UnsignedFile.Multi.Generic (1)
22:53:32.0500 3932	wampmysqld - ok
22:53:32.0546 3932	Wanarp          (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
22:53:32.0765 3932	Wanarp - ok
22:53:33.0015 3932	Wdf01000        (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
22:53:33.0187 3932	Wdf01000 - ok
22:53:33.0203 3932	WDICA - ok
22:53:33.0250 3932	wdmaud          (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
22:53:33.0468 3932	wdmaud - ok
22:53:33.0500 3932	WebClient       (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
22:53:33.0734 3932	WebClient - ok
22:53:33.0812 3932	winmgmt         (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
22:53:34.0093 3932	winmgmt - ok
22:53:34.0156 3932	WinUSB          (30fc6e5448d0cbaaa95280eeef7fedae) C:\WINDOWS\system32\DRIVERS\WinUSB.sys
22:53:34.0171 3932	WinUSB - ok
22:53:34.0250 3932	WinVNC4         (f3edc9909a02e6bca863eb702d37b505) C:\Program Files\RealVNC\VNC4\WinVNC4.exe
22:53:34.0312 3932	WinVNC4 - ok
22:53:34.0406 3932	WLSetupSvc      (94a85e956a065e23e0010a6a7826243b) C:\Program Files\Windows Live\installer\WLSetupSvc.exe
22:53:34.0453 3932	WLSetupSvc ( UnsignedFile.Multi.Generic ) - warning
22:53:34.0453 3932	WLSetupSvc - detected UnsignedFile.Multi.Generic (1)
22:53:34.0484 3932	WmdmPmSN        (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
22:53:34.0515 3932	WmdmPmSN ( UnsignedFile.Multi.Generic ) - warning
22:53:34.0515 3932	WmdmPmSN - detected UnsignedFile.Multi.Generic (1)
22:53:34.0593 3932	Wmi             (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
22:53:34.0718 3932	Wmi - ok
22:53:34.0812 3932	WmiApSrv        (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\System32\wbem\wmiapsrv.exe
22:53:35.0125 3932	WmiApSrv - ok
22:53:35.0453 3932	WMPNetworkSvc   (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe
22:53:35.0625 3932	WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - warning
22:53:35.0625 3932	WMPNetworkSvc - detected UnsignedFile.Multi.Generic (1)
22:53:35.0734 3932	WpdUsb          (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
22:53:35.0750 3932	WpdUsb ( UnsignedFile.Multi.Generic ) - warning
22:53:35.0750 3932	WpdUsb - detected UnsignedFile.Multi.Generic (1)
22:53:35.0781 3932	WS2IFSL         (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
22:53:36.0031 3932	WS2IFSL - ok
22:53:36.0093 3932	wscsvc          (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
22:53:36.0375 3932	wscsvc - ok
22:53:36.0406 3932	WSTCODEC        (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
22:53:36.0625 3932	WSTCODEC - ok
22:53:36.0687 3932	wuauserv        (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
22:53:36.0906 3932	wuauserv - ok
22:53:36.0937 3932	WudfPf          (6ff66513d372d479ef1810223c8d20ce) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
22:53:36.0984 3932	WudfPf - ok
22:53:37.0015 3932	WudfRd          (ac13cb789d93412106b0fb6c7eb2bcb6) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
22:53:37.0062 3932	WudfRd - ok
22:53:37.0078 3932	WudfSvc         (575a4190d989f64732119e4114045a4f) C:\WINDOWS\System32\WUDFSvc.dll
22:53:37.0125 3932	WudfSvc - ok
22:53:37.0187 3932	WZCSVC          (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
22:53:37.0500 3932	WZCSVC - ok
22:53:37.0515 3932	xcpip - ok
22:53:37.0625 3932	xmlprov         (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
22:53:37.0859 3932	xmlprov - ok
22:53:37.0875 3932	xpsec - ok
22:53:37.0890 3932	ZSMC301b - ok
22:53:37.0968 3932	MBR (0x1B8)     (f381baacfc1778337c007982b0c32d82) \Device\Harddisk0\DR0
22:53:37.0984 3932	\Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - infected
22:53:37.0984 3932	\Device\Harddisk0\DR0 - detected Rootkit.Boot.Sinowal.b (0)
22:53:38.0000 3932	\Device\Harddisk0\DR0 ( TDSS File System ) - warning
22:53:38.0000 3932	\Device\Harddisk0\DR0 - detected TDSS File System (1)
22:53:38.0015 3932	MBR (0x1B8)     (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR7
22:53:38.0156 3932	\Device\Harddisk1\DR7 - ok
22:53:38.0171 3932	Boot (0x1200)   (13dd4390197ab39f89e5d0760b59131b) \Device\Harddisk0\DR0\Partition0
22:53:38.0171 3932	\Device\Harddisk0\DR0\Partition0 - ok
22:53:38.0218 3932	Boot (0x1200)   (d64e3b73e32164859528859a7fa562c7) \Device\Harddisk0\DR0\Partition1
22:53:38.0218 3932	\Device\Harddisk0\DR0\Partition1 - ok
22:53:38.0250 3932	Boot (0x1200)   (3a7e69adddd6f8a74261dde2fee03f8b) \Device\Harddisk0\DR0\Partition2
22:53:38.0250 3932	\Device\Harddisk0\DR0\Partition2 - ok
22:53:38.0265 3932	Boot (0x1200)   (9352920cd6244a81599acc785fbc1f2e) \Device\Harddisk0\DR0\Partition3
22:53:38.0265 3932	\Device\Harddisk0\DR0\Partition3 - ok
22:53:38.0281 3932	Boot (0x1200)   (5fc3abd011d244e2b5f1b2b2248e3a34) \Device\Harddisk1\DR7\Partition0
22:53:38.0281 3932	\Device\Harddisk1\DR7\Partition0 - ok
22:53:38.0296 3932	============================================================
22:53:38.0296 3932	Scan finished
22:53:38.0296 3932	============================================================
22:53:38.0421 3696	Detected object count: 21
22:53:38.0421 3696	Actual detected object count: 21
22:55:03.0000 3696	!SASCORE ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0000 3696	!SASCORE ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0000 3696	aeaudio ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0000 3696	aeaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0000 3696	DMusic ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0000 3696	DMusic ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0000 3696	drmkaud ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0000 3696	drmkaud ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0000 3696	E100B ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0000 3696	E100B ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0015 3696	ialm ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0015 3696	ialm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0015 3696	nv ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0015 3696	nv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0015 3696	NVSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0015 3696	NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0015 3696	PQNTDrv ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0015 3696	PQNTDrv ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0015 3696	ServiceLayer ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0015 3696	ServiceLayer ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0031 3696	smwdm ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0031 3696	smwdm ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0031 3696	SoundMAX Agent Service (default) ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0031 3696	SoundMAX Agent Service (default) ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0031 3696	swmidi ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0031 3696	swmidi ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0031 3696	sysaudio ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0031 3696	sysaudio ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0046 3696	wampapache ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0046 3696	wampapache ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0046 3696	WLSetupSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0046 3696	WLSetupSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0046 3696	WmdmPmSN ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0046 3696	WmdmPmSN ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0046 3696	WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0046 3696	WMPNetworkSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:03.0062 3696	WpdUsb ( UnsignedFile.Multi.Generic ) - skipped by user
22:55:03.0062 3696	WpdUsb ( UnsignedFile.Multi.Generic ) - User select action: Skip 
22:55:04.0234 3696	\Device\Harddisk0\DR0\# - copied to quarantine
22:55:04.0234 3696	\Device\Harddisk0\DR0 - copied to quarantine
22:55:04.0281 3696	\Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - will be cured on reboot
22:55:04.0328 3696	\Device\Harddisk0\DR0 - ok
22:55:04.0328 3696	\Device\Harddisk0\DR0 ( Rootkit.Boot.Sinowal.b ) - User select action: Cure 
22:55:04.0328 3696	\Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
22:55:04.0328 3696	\Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip 
22:55:27.0953 0272	Deinitialize success