Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works
Photo

My Hyjack This Log


  • Please log in to reply

#1
root.blue

root.blue

    Member

  • Member
  • PipPip
  • 24 posts
Hi,

I have been experiencing multiple problems with my Dell Inspiron 6400.
The computer has been crashing a lot - resulting in the Blue Screen,
often the internet does not work (I know it's not a problem with my
internet service because other computers access the internet fine),
and sometimes it just freezes.

I need to clean up any virus,spyware, or malware and reformat the computer.

I have attached the most recently generated Hyjack This log in the hopes that
someone more knowledgeable than myself can help me determine what to remove.

Thank you,
KateAttached File  hijackthis122511.log   7.48KB   55 downloads
  • 0

Advertisements


#2
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,799 posts
  • MVP
ComboFix
:!: If you have a previous version of Combofix.exe, delete it and download a fresh copy. :!:

:!: It must be saved to your desktop, do not run it :!:

:!: Disable your Antivirus software when downloading or running Combofix. If it has Script Blocking features, please disable these as well. See: http://www.bleepingc...opic114351.html


Download and Save this file -- to your Desktop -- from either of these two sources:
http://download.blee...Bs/ComboFix.exe
http://subs.geekstogo.com/ComboFix.exe

Doubleclick on ComboFix to start the program.



* :!: Important: Have no other programs running. Your Task Bar should be clear of any program entries including your Browser.


* A window may open with a series of Disclaimers. Accept the Disclaimers to start the fix. Allow it to install the Recovery Console then Continue. When the scan completes Notepad will open with with your results log open. Do a File, Exit and answer 'Yes' to save changes.


A caution - Do not run Combofix more than once. Do not touch your mouse/keyboard until the scan has completed, as this may cause the process to stall or your computer to lock. The scan will temporarily disable your desktop, and if interrupted may leave your desktop disabled. If this occurs, please reboot to restore the desktop. Even when ComboFix appears to be doing nothing, look at your Drive light. If it is flashing, Combofix is still at work.

A file will be created at => C:\Combofix.txt. I'll need to see that in your reply.

Download TDSSKiller:
http://support.kaspe.../tdsskiller.exe
Save it to your desktop then run it.
Double click on TDSSKiller.exe (Vista or Win 7 must right click and Run As Admin)
If TDSSKiller alerts you that the system needs to reboot, please consent.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.


Run TDSSKiller again but this time:
before you hit the Scan hit Change Parameters and check the two items under Additional Options. OK then Scan.
In this mode it is prone to false positives so do not change the SKIP option to DELETE unless it says TDSS.
When done, a log file should be created on your C: drive named "TDSSKiller.txt" please copy and paste the contents in your next reply.

Download aswMBR.exe ( 511KB ) to your desktop.
Double click the aswMBR.exe to run it
uncheck trace disk IO calls
Click the "Scan" button to start scan
On completion of the scan (Note if the Fix button is enabled (not the FixMBR button) and tell me) click save log, save it to your desktop and post in your next reply



Malwarebytes' Anti-Malware
:!: If you have a previous version of MalwareBytes', remove it via Add or Remove Programs and download a fresh copy. :!:

http://www.malwarebytes.org/mbam.php

SAVE Malwarebytes' Anti-Malware to your desktop.

* Double-click mbam-setup.exe and follow the prompts to install the program.
* At the end, be sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
* If an update is found, it will download and install the latest version.
* Once the program has loaded, select Perform Quick scan, then click Scan.
* When the scan is complete, click OK, then Show Results to view the results.

* Be sure that everything is checked, and click Remove Selected.

* When completed, a log will open in Notepad. Please save it to a convenient location.
* The log can also be found here:
C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt
* Post that log back here.

Download OTL from
http://www.geekstogo...timers-list-it/
and Save it to your desktop.

Run OTL (Vista or Win 7 => right click and Run As Administrator)

select the All option in the Extra Registry group then Run Scan.

You should get two logs. Please copy and paste both of them.


Ron
  • 0

#3
root.blue

root.blue

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Ron,

Thank you for the quick and detailed reply.

I am having an issue running ComboFix.
I get the following error message:

---------------------------
Warning !!
---------------------------
ComboFix has detected the following real time scanner(s) to be active:



antivirus: Symantec AntiVirus Corporate Edition



Antivirus and intrusion prevention programs are known to interfere

with ComboFix's running. This may lead to unpredictable results or

possible machine damage.



Please disable these scanners before clicking 'OK'.
---------------------------
OK
---------------------------


I have used Revo Unistaller Pro to un-install Norton,
but I believe I have to log in as the Administrator in order to
shut down that process.
However I can not do that because I don't have the password for
the Administrator. It's a computer I used to have a work, and
when it was replaced I got to take this one home.
I think it's still on there domain (I'm not sure if I'm saying
that correctly). It looks to me like I will have to reformat the
computer first; do you think that makes sense?

Thank you,
Kate
  • 0

#4
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,799 posts
  • MVP
I don't think you need to reformat unless you want to.

There is a tool you can use to uninstall Norton:
Download and save the norton removal tool
ftp://ftp.symantec.com/public/english_us_canada/removal_tools/Norton_Removal_Tool.exe
Run the Norton Removal tool.

If you have uninstalled Norton then you can tell Combofix to go ahead and run. (Sometimes it is still on the list that Combofix looks at even if uninstalled.)
  • 0

#5
root.blue

root.blue

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
I ran the Norton Uninstall tool.
Symantec still showed up as scanning.
I let Combofix run for over 2 hours and a file was not generated.
I finally turned the computer off manually by pressing and holding
the power button.
Any other ideas about what to do next?

Thank you,
Kate
  • 0

#6
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,799 posts
  • MVP
Skip Combofix for now and go on to the others.
  • 0

#7
root.blue

root.blue

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
TDSSKiller.txt

11:04:25.0046 0408 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
11:04:25.0359 0408 ============================================================
11:04:25.0359 0408 Current date / time: 2011/12/29 11:04:25.0359
11:04:25.0359 0408 SystemInfo:
11:04:25.0359 0408
11:04:25.0359 0408 OS Version: 5.1.2600 ServicePack: 3.0
11:04:25.0359 0408 Product type: Workstation
11:04:25.0359 0408 ComputerName: OPSLT1
11:04:25.0359 0408 UserName: kbunting
11:04:25.0359 0408 Windows directory: C:\WINDOWS
11:04:25.0359 0408 System windows directory: C:\WINDOWS
11:04:25.0359 0408 Processor architecture: Intel x86
11:04:25.0359 0408 Number of processors: 2
11:04:25.0359 0408 Page size: 0x1000
11:04:25.0359 0408 Boot type: Normal boot
11:04:25.0359 0408 ============================================================
11:04:28.0703 0408 Initialize success
11:04:31.0656 3368 ============================================================
11:04:31.0656 3368 Scan started
11:04:31.0656 3368 Mode: Manual;
11:04:31.0656 3368 ============================================================
11:04:34.0343 3368 Abiosdsk - ok
11:04:34.0906 3368 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
11:04:34.0921 3368 abp480n5 - ok
11:04:35.0531 3368 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:04:35.0625 3368 ACPI - ok
11:04:36.0140 3368 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
11:04:36.0140 3368 ACPIEC - ok
11:04:36.0687 3368 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
11:04:36.0750 3368 adpu160m - ok
11:04:37.0656 3368 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
11:04:37.0812 3368 aec - ok
11:04:38.0656 3368 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
11:04:38.0750 3368 AFD - ok
11:04:39.0328 3368 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
11:04:39.0359 3368 agp440 - ok
11:04:39.0906 3368 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
11:04:39.0921 3368 agpCPQ - ok
11:04:40.0390 3368 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
11:04:40.0390 3368 Aha154x - ok
11:04:40.0890 3368 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
11:04:40.0921 3368 aic78u2 - ok
11:04:41.0453 3368 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
11:04:41.0484 3368 aic78xx - ok
11:04:41.0953 3368 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
11:04:41.0968 3368 AliIde - ok
11:04:42.0484 3368 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
11:04:42.0515 3368 alim1541 - ok
11:04:43.0000 3368 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
11:04:43.0015 3368 amdagp - ok
11:04:43.0515 3368 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
11:04:43.0531 3368 amsint - ok
11:04:44.0031 3368 androidusb (e94e2ea7faaa05c776a711edb198b9fd) C:\WINDOWS\system32\Drivers\smhwadb.sys
11:04:44.0046 3368 androidusb - ok
11:04:44.0859 3368 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:04:44.0890 3368 Arp1394 - ok
11:04:45.0468 3368 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
11:04:45.0500 3368 asc - ok
11:04:46.0000 3368 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
11:04:46.0015 3368 asc3350p - ok
11:04:46.0500 3368 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
11:04:46.0515 3368 asc3550 - ok
11:04:46.0984 3368 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:04:47.0000 3368 AsyncMac - ok
11:04:47.0531 3368 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
11:04:47.0531 3368 atapi - ok
11:04:47.0968 3368 Atdisk - ok
11:04:48.0468 3368 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:04:48.0500 3368 Atmarpc - ok
11:04:49.0015 3368 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
11:04:49.0015 3368 audstub - ok
11:04:49.0500 3368 bcm4sbxp (c768c8a463d32c219ce291645a0621a4) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
11:04:49.0531 3368 bcm4sbxp - ok
11:04:50.0062 3368 BCOREUSB (40f8c4c10ed67b1de44abf82582bac37) C:\WINDOWS\system32\Drivers\BCOREUSB.sys
11:04:50.0109 3368 BCOREUSB - ok
11:04:50.0703 3368 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
11:04:50.0718 3368 Beep - ok
11:04:51.0359 3368 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
11:04:51.0375 3368 BthEnum - ok
11:04:51.0890 3368 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
11:04:51.0953 3368 BthPan - ok
11:04:52.0562 3368 BTHPORT (662bfd909447dd9cc15b1a1c366583b4) C:\WINDOWS\system32\Drivers\BTHport.sys
11:04:52.0671 3368 BTHPORT - ok
11:04:53.0140 3368 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
11:04:53.0156 3368 BTHUSB - ok
11:04:53.0312 3368 catchme - ok
11:04:53.0906 3368 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
11:04:53.0921 3368 cbidf - ok
11:04:54.0406 3368 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
11:04:54.0406 3368 cbidf2k - ok
11:04:54.0921 3368 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
11:04:54.0921 3368 cd20xrnt - ok
11:04:55.0406 3368 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
11:04:55.0421 3368 Cdaudio - ok
11:04:55.0906 3368 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
11:04:55.0937 3368 Cdfs - ok
11:04:56.0468 3368 cdrbsdrv (351735695e9ead93de6af85d8beb1ca8) C:\WINDOWS\system32\drivers\cdrbsdrv.sys
11:04:56.0484 3368 cdrbsdrv - ok
11:04:57.0000 3368 Cdrom (4b0a100eaf5c49ef3cca8c641431eacc) C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:04:57.0031 3368 Cdrom - ok
11:04:57.0500 3368 Changer - ok
11:04:57.0984 3368 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
11:04:58.0000 3368 CmBatt - ok
11:04:58.0468 3368 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
11:04:58.0468 3368 CmdIde - ok
11:04:58.0937 3368 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
11:04:58.0953 3368 Compbatt - ok
11:04:59.0421 3368 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
11:04:59.0421 3368 Cpqarray - ok
11:04:59.0890 3368 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\WINDOWS\system32\DRIVERS\CVirtA.sys
11:04:59.0906 3368 CVirtA - ok
11:05:00.0453 3368 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
11:05:00.0546 3368 dac2w2k - ok
11:05:01.0015 3368 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
11:05:01.0015 3368 dac960nt - ok
11:05:01.0562 3368 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
11:05:01.0578 3368 Disk - ok
11:05:02.0515 3368 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
11:05:02.0937 3368 dmboot - ok
11:05:03.0453 3368 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
11:05:03.0531 3368 dmio - ok
11:05:04.0015 3368 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
11:05:04.0015 3368 dmload - ok
11:05:04.0531 3368 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
11:05:04.0562 3368 DMusic - ok
11:05:05.0093 3368 DNE (86d52c32a308f84bbc626bff7c1fb710) C:\WINDOWS\system32\DRIVERS\dne2000.sys
11:05:05.0156 3368 DNE - ok
11:05:05.0625 3368 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
11:05:05.0640 3368 dpti2o - ok
11:05:06.0109 3368 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
11:05:06.0109 3368 drmkaud - ok
11:05:06.0687 3368 E100B (3fca03cbca11269f973b70fa483c88ef) C:\WINDOWS\system32\DRIVERS\e100b325.sys
11:05:06.0750 3368 E100B - ok
11:05:07.0281 3368 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
11:05:07.0359 3368 Fastfat - ok
11:05:07.0875 3368 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
11:05:07.0890 3368 Fdc - ok
11:05:08.0359 3368 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
11:05:08.0390 3368 Fips - ok
11:05:08.0953 3368 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:05:08.0968 3368 Flpydisk - ok
11:05:09.0515 3368 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
11:05:09.0578 3368 FltMgr - ok
11:05:10.0031 3368 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:05:10.0046 3368 Fs_Rec - ok
11:05:10.0578 3368 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:05:10.0640 3368 Ftdisk - ok
11:05:11.0171 3368 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
11:05:11.0187 3368 GEARAspiWDM - ok
11:05:11.0687 3368 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:05:11.0718 3368 Gpc - ok
11:05:12.0265 3368 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
11:05:12.0328 3368 HDAudBus - ok
11:05:12.0812 3368 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:05:12.0828 3368 HidUsb - ok
11:05:13.0328 3368 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
11:05:13.0343 3368 hpn - ok
11:05:13.0859 3368 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
11:05:13.0890 3368 HPZid412 - ok
11:05:14.0359 3368 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
11:05:14.0375 3368 HPZipr12 - ok
11:05:14.0843 3368 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
11:05:14.0859 3368 HPZius12 - ok
11:05:15.0468 3368 HSFHWAZL (1c8caa80e91fb71864e9426f9eed048d) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
11:05:15.0562 3368 HSFHWAZL - ok
11:05:16.0531 3368 HSF_DPV (e8ec1767ea315a39a0dd8989952ca0e9) C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
11:05:17.0015 3368 HSF_DPV - ok
11:05:17.0578 3368 HSXHWAZL (61478fa42ee04562e7f11f4dca87e9c8) C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
11:05:17.0671 3368 HSXHWAZL - ok
11:05:18.0281 3368 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
11:05:18.0375 3368 HTTP - ok
11:05:18.0843 3368 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
11:05:18.0843 3368 i2omgmt - ok
11:05:19.0328 3368 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
11:05:19.0343 3368 i2omp - ok
11:05:19.0843 3368 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:05:19.0875 3368 i8042prt - ok
11:05:23.0312 3368 ialm (e8c7cc369c2fb657e0792af70df529e6) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
11:05:26.0218 3368 ialm - ok
11:05:26.0781 3368 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
11:05:26.0812 3368 Imapi - ok
11:05:27.0328 3368 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
11:05:27.0328 3368 ini910u - ok
11:05:27.0796 3368 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
11:05:27.0796 3368 IntelIde - ok
11:05:28.0312 3368 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
11:05:28.0343 3368 intelppm - ok
11:05:28.0859 3368 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
11:05:28.0890 3368 Ip6Fw - ok
11:05:29.0421 3368 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:05:29.0437 3368 IpFilterDriver - ok
11:05:29.0937 3368 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:05:29.0937 3368 IpInIp - ok
11:05:30.0468 3368 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:05:30.0546 3368 IpNat - ok
11:05:31.0140 3368 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:05:31.0171 3368 IPSec - ok
11:05:31.0687 3368 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
11:05:31.0703 3368 IRENUM - ok
11:05:32.0218 3368 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:05:32.0250 3368 isapnp - ok
11:05:32.0750 3368 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:05:32.0765 3368 Kbdclass - ok
11:05:33.0265 3368 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:05:33.0265 3368 kbdhid - ok
11:05:33.0937 3368 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
11:05:34.0031 3368 kmixer - ok
11:05:34.0578 3368 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
11:05:34.0593 3368 KSecDD - ok
11:05:35.0046 3368 lbrtfdc - ok
11:05:35.0484 3368 MCSTRM - ok
11:05:35.0984 3368 mdmxsdk (e246a32c445056996074a397da56e815) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
11:05:36.0000 3368 mdmxsdk - ok
11:05:36.0109 3368 mferkdk - ok
11:05:36.0609 3368 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
11:05:36.0609 3368 mnmdd - ok
11:05:37.0140 3368 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
11:05:37.0140 3368 Modem - ok
11:05:37.0656 3368 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:05:37.0671 3368 Mouclass - ok
11:05:38.0156 3368 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:05:38.0171 3368 mouhid - ok
11:05:38.0687 3368 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
11:05:38.0703 3368 MountMgr - ok
11:05:39.0312 3368 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
11:05:39.0406 3368 MpFilter - ok
11:05:39.0515 3368 MpKsl094dc251 - ok
11:05:39.0546 3368 MpKsl1f1420dd - ok
11:05:39.0593 3368 MpKsl51e34edc - ok
11:05:39.0625 3368 MpKsl546d9b1d - ok
11:05:39.0671 3368 MpKsl5fb1283b - ok
11:05:39.0718 3368 MpKsl6661719a - ok
11:05:39.0750 3368 MpKsl6ad81ac1 - ok
11:05:39.0796 3368 MpKsl7502c611 - ok
11:05:39.0828 3368 MpKsl93e7e27d - ok
11:05:39.0875 3368 MpKsl9806eade - ok
11:05:39.0906 3368 MpKslf9d93974 - ok
11:05:40.0437 3368 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
11:05:40.0437 3368 mraid35x - ok
11:05:41.0125 3368 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:05:41.0250 3368 MRxDAV - ok
11:05:41.0765 3368 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
11:05:41.0781 3368 Msfs - ok
11:05:42.0234 3368 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:05:42.0250 3368 MSKSSRV - ok
11:05:42.0718 3368 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:05:42.0718 3368 MSPCLOCK - ok
11:05:43.0187 3368 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
11:05:43.0187 3368 MSPQM - ok
11:05:43.0671 3368 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:05:43.0687 3368 mssmbios - ok
11:05:44.0234 3368 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
11:05:44.0250 3368 Mup - ok
11:05:44.0859 3368 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
11:05:44.0953 3368 NDIS - ok
11:05:45.0453 3368 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:05:45.0453 3368 NdisTapi - ok
11:05:45.0921 3368 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:05:45.0921 3368 Ndisuio - ok
11:05:46.0437 3368 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:05:46.0484 3368 NdisWan - ok
11:05:47.0015 3368 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
11:05:47.0031 3368 NDProxy - ok
11:05:47.0500 3368 neokdss - ok
11:05:48.0000 3368 neoscan (fee3af6d3c9a1e96f392776723aff2d7) C:\WINDOWS\system32\drivers\neoscan.sys
11:05:48.0015 3368 neoscan - ok
11:05:48.0593 3368 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
11:05:48.0671 3368 NetBT - ok
11:05:49.0171 3368 NETw3x32 - ok
11:05:49.0687 3368 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:05:49.0718 3368 NIC1394 - ok
11:05:50.0218 3368 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
11:05:50.0234 3368 Npfs - ok
11:05:50.0968 3368 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
11:05:51.0281 3368 Ntfs - ok
11:05:51.0750 3368 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
11:05:51.0750 3368 Null - ok
11:05:53.0312 3368 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
11:05:54.0281 3368 nv - ok
11:05:54.0765 3368 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:05:54.0781 3368 NwlnkFlt - ok
11:05:55.0296 3368 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:05:55.0312 3368 NwlnkFwd - ok
11:05:55.0812 3368 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:05:55.0843 3368 ohci1394 - ok
11:05:56.0359 3368 omci (b17228142cec9b3c222239fd935a37ca) C:\WINDOWS\system32\DRIVERS\omci.sys
11:05:56.0359 3368 omci - ok
11:05:56.0875 3368 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
11:05:56.0921 3368 Parport - ok
11:05:57.0390 3368 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
11:05:57.0406 3368 PartMgr - ok
11:05:57.0937 3368 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
11:05:57.0953 3368 ParVdm - ok
11:05:58.0453 3368 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
11:05:58.0500 3368 PCI - ok
11:05:58.0937 3368 PCIDump - ok
11:05:59.0437 3368 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
11:05:59.0437 3368 PCIIde - ok
11:06:00.0015 3368 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
11:06:00.0078 3368 Pcmcia - ok
11:06:00.0546 3368 PDCOMP - ok
11:06:01.0078 3368 PDFRAME - ok
11:06:01.0531 3368 PDRELI - ok
11:06:01.0984 3368 PDRFRAME - ok
11:06:02.0500 3368 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
11:06:02.0515 3368 perc2 - ok
11:06:03.0046 3368 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
11:06:03.0062 3368 perc2hib - ok
11:06:03.0109 3368 pohci13F - ok
11:06:03.0687 3368 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:06:03.0703 3368 PptpMiniport - ok
11:06:04.0234 3368 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
11:06:04.0265 3368 PSched - ok
11:06:04.0812 3368 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:06:04.0812 3368 Ptilink - ok
11:06:05.0359 3368 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
11:06:05.0390 3368 PxHelp20 - ok
11:06:05.0921 3368 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
11:06:05.0984 3368 ql1080 - ok
11:06:06.0500 3368 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
11:06:06.0531 3368 Ql10wnt - ok
11:06:07.0000 3368 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
11:06:07.0031 3368 ql12160 - ok
11:06:07.0531 3368 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
11:06:07.0562 3368 ql1240 - ok
11:06:08.0078 3368 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
11:06:08.0109 3368 ql1280 - ok
11:06:08.0640 3368 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:06:08.0640 3368 RasAcd - ok
11:06:09.0203 3368 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:06:09.0234 3368 Rasl2tp - ok
11:06:09.0796 3368 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:06:09.0812 3368 RasPppoe - ok
11:06:10.0281 3368 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
11:06:10.0296 3368 Raspti - ok
11:06:10.0750 3368 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:06:10.0765 3368 RDPCDD - ok
11:06:11.0312 3368 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:06:11.0421 3368 rdpdr - ok
11:06:11.0984 3368 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
11:06:12.0031 3368 RDPWD - ok
11:06:12.0515 3368 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
11:06:12.0546 3368 redbook - ok
11:06:13.0125 3368 Revoflt (8b5b8a11306190c6963d3473f052d3c8) C:\WINDOWS\system32\DRIVERS\revoflt.sys
11:06:13.0140 3368 Revoflt - ok
11:06:13.0656 3368 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
11:06:13.0687 3368 RFCOMM - ok
11:06:14.0203 3368 rimmptsk (24ed7af20651f9fa1f249482e7c1f165) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
11:06:14.0218 3368 rimmptsk - ok
11:06:14.0750 3368 RimSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
11:06:14.0765 3368 RimSerPort - ok
11:06:15.0296 3368 rimsptsk (1bdba2d2d402415a78a4ba766dfe0f7b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
11:06:15.0312 3368 rimsptsk - ok
11:06:15.0765 3368 RimUsb - ok
11:06:16.0218 3368 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
11:06:16.0218 3368 RimVSerPort - ok
11:06:16.0828 3368 rismxdp (f774ecd11a064f0debb2d4395418153c) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
11:06:17.0000 3368 rismxdp - ok
11:06:17.0500 3368 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
11:06:17.0515 3368 ROOTMODEM - ok
11:06:17.0937 3368 s24trans - ok
11:06:18.0468 3368 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
11:06:18.0515 3368 sdbus - ok
11:06:18.0968 3368 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:06:18.0984 3368 Secdrv - ok
11:06:19.0468 3368 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
11:06:19.0484 3368 serenum - ok
11:06:19.0953 3368 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
11:06:19.0984 3368 Serial - ok
11:06:20.0484 3368 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys
11:06:20.0500 3368 sffdisk - ok
11:06:20.0953 3368 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
11:06:20.0968 3368 sffp_sd - ok
11:06:21.0437 3368 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
11:06:21.0437 3368 Sfloppy - ok
11:06:21.0859 3368 Simbad - ok
11:06:22.0328 3368 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
11:06:22.0343 3368 sisagp - ok
11:06:22.0859 3368 smhwdev (2a0bde6dd58ac2935a80f984b3af0b0e) C:\WINDOWS\system32\DRIVERS\smhwdev.sys
11:06:22.0921 3368 smhwdev - ok
11:06:23.0468 3368 smhwser (54b5dd15eef72aee8d1c765ab2235610) C:\WINDOWS\system32\DRIVERS\smhwser.sys
11:06:23.0531 3368 smhwser - ok
11:06:24.0031 3368 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
11:06:24.0046 3368 SONYPVU1 - ok
11:06:24.0531 3368 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
11:06:24.0546 3368 Sparrow - ok
11:06:25.0015 3368 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
11:06:25.0015 3368 splitter - ok
11:06:25.0609 3368 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
11:06:25.0640 3368 sr - ok
11:06:26.0312 3368 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
11:06:26.0484 3368 Srv - ok
11:06:27.0578 3368 STHDA (3ad78e22210d3fbd9f76de84a8df19b5) C:\WINDOWS\system32\drivers\sthda.sys
11:06:28.0171 3368 STHDA - ok
11:06:28.0718 3368 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
11:06:28.0734 3368 swenum - ok
11:06:29.0203 3368 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
11:06:29.0234 3368 swmidi - ok
11:06:29.0734 3368 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
11:06:29.0734 3368 symc810 - ok
11:06:30.0234 3368 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
11:06:30.0250 3368 symc8xx - ok
11:06:30.0765 3368 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
11:06:30.0781 3368 sym_hi - ok
11:06:31.0281 3368 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
11:06:31.0296 3368 sym_u3 - ok
11:06:31.0859 3368 SynTP (fa2daa32bed908023272a0f77d625dae) C:\WINDOWS\system32\DRIVERS\SynTP.sys
11:06:31.0968 3368 SynTP - ok
11:06:32.0484 3368 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
11:06:32.0515 3368 sysaudio - ok
11:06:33.0078 3368 tap0801 (846b7c0e3f6370cdcce157a5b36e70cd) C:\WINDOWS\system32\DRIVERS\tap0801.sys
11:06:33.0093 3368 tap0801 - ok
11:06:33.0828 3368 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:06:33.0984 3368 Tcpip - ok
11:06:34.0484 3368 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
11:06:34.0484 3368 TDPIPE - ok
11:06:34.0968 3368 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
11:06:34.0984 3368 TDTCP - ok
11:06:35.0546 3368 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
11:06:35.0562 3368 TermDD - ok
11:06:36.0046 3368 toshidpt (e362d54fd394999c4178936396664e57) C:\WINDOWS\system32\drivers\Toshidpt.sys
11:06:36.0046 3368 toshidpt - ok
11:06:36.0546 3368 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
11:06:36.0546 3368 TosIde - ok
11:06:37.0031 3368 tosporte (0470bf2d5f49ff98464ac2c838e6a080) C:\WINDOWS\system32\DRIVERS\tosporte.sys
11:06:37.0062 3368 tosporte - ok
11:06:37.0578 3368 Tosrfbd (077869082a635e8ff2c205dc95c78775) C:\WINDOWS\system32\Drivers\tosrfbd.sys
11:06:37.0625 3368 Tosrfbd - ok
11:06:38.0140 3368 Tosrfbnp (613e09572f4c5b92ca6be8bdc4cc5b7d) C:\WINDOWS\system32\Drivers\tosrfbnp.sys
11:06:38.0156 3368 Tosrfbnp - ok
11:06:38.0687 3368 Tosrfcom (5ba1ca3b3cddb1ddc67df473f05d1ec2) C:\WINDOWS\system32\Drivers\tosrfcom.sys
11:06:38.0718 3368 Tosrfcom - ok
11:06:39.0218 3368 Tosrfhid (f4e4795528d17ff8d1d6d98ebbb92655) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
11:06:39.0250 3368 Tosrfhid - ok
11:06:39.0703 3368 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
11:06:39.0718 3368 tosrfnds - ok
11:06:40.0187 3368 TosRfSnd (b5518adb2b0029ff95d22e8e7336f49f) C:\WINDOWS\system32\drivers\TosRfSnd.sys
11:06:40.0218 3368 TosRfSnd - ok
11:06:40.0703 3368 Tosrfusb (ac2123e788230c712d0919ed0fec9ddd) C:\WINDOWS\system32\Drivers\tosrfusb.sys
11:06:40.0734 3368 Tosrfusb - ok
11:06:41.0250 3368 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
11:06:41.0296 3368 Udfs - ok
11:06:41.0734 3368 UIUSys - ok
11:06:42.0218 3368 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
11:06:42.0234 3368 ultra - ok
11:06:42.0656 3368 UltraMonMirror - ok
11:06:43.0328 3368 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
11:06:43.0531 3368 Update - ok
11:06:44.0093 3368 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
11:06:44.0109 3368 USBAAPL - ok
11:06:44.0656 3368 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
11:06:44.0687 3368 usbaudio - ok
11:06:45.0218 3368 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:06:45.0234 3368 usbccgp - ok
11:06:45.0718 3368 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:06:45.0734 3368 usbehci - ok
11:06:46.0250 3368 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:06:46.0281 3368 usbhub - ok
11:06:46.0765 3368 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
11:06:46.0781 3368 usbprint - ok
11:06:47.0281 3368 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:06:47.0296 3368 usbscan - ok
11:06:47.0765 3368 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:06:47.0765 3368 USBSTOR - ok
11:06:48.0234 3368 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:06:48.0250 3368 usbuhci - ok
11:06:48.0750 3368 USB_RNDIS (bee793d4a059caea55d6ac20e19b3a8f) C:\WINDOWS\system32\DRIVERS\usb8023.sys
11:06:48.0765 3368 USB_RNDIS - ok
11:06:49.0328 3368 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
11:06:49.0343 3368 VgaSave - ok
11:06:49.0921 3368 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
11:06:49.0953 3368 viaagp - ok
11:06:50.0437 3368 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
11:06:50.0437 3368 ViaIde - ok
11:06:51.0000 3368 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
11:06:51.0031 3368 VolSnap - ok
11:06:51.0468 3368 vsdatant - ok
11:06:52.0656 3368 w39n51 (b1f126e7e28877106d60e6ff3998d033) C:\WINDOWS\system32\DRIVERS\w39n51.sys
11:06:53.0375 3368 w39n51 - ok
11:06:53.0875 3368 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:06:53.0906 3368 Wanarp - ok
11:06:54.0359 3368 wanatw - ok
11:06:55.0078 3368 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
11:06:55.0312 3368 Wdf01000 - ok
11:06:55.0796 3368 WDICA - ok
11:06:56.0343 3368 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
11:06:56.0375 3368 wdmaud - ok
11:06:57.0218 3368 winachsf (ba6b6fb242a6ba4068c8b763063beb63) C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
11:06:57.0562 3368 winachsf - ok
11:06:58.0125 3368 WinUSB (fd600b032e741eb6aab509fc630f7c42) C:\WINDOWS\system32\DRIVERS\WinUSB.sys
11:06:58.0156 3368 WinUSB - ok
11:06:58.0687 3368 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
11:06:58.0687 3368 WmiAcpi - ok
11:06:59.0234 3368 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
11:06:59.0250 3368 WpdUsb - ok
11:06:59.0703 3368 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
11:06:59.0718 3368 WS2IFSL - ok
11:07:00.0250 3368 WudfPf (eaa6324f51214d2f6718977ec9ce0def) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:07:00.0296 3368 WudfPf - ok
11:07:00.0875 3368 zumbus (337b9607f041b77824411750069aff2d) C:\WINDOWS\system32\DRIVERS\zumbus.sys
11:07:00.0890 3368 zumbus - ok
11:07:00.0968 3368 MBR (0x1B8) (823ca895571a1d99983f2953dc6838e7) \Device\Harddisk0\DR0
11:07:00.0984 3368 \Device\Harddisk0\DR0 - ok
11:07:01.0015 3368 MBR (0x1B8) (9320e0a8c2f4ce43297ac19cfba319c9) \Device\Harddisk1\DR5
11:07:01.0515 3368 \Device\Harddisk1\DR5 - ok
11:07:01.0546 3368 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk2\DR7
11:07:02.0562 3368 \Device\Harddisk2\DR7 - ok
11:07:02.0593 3368 Boot (0x1200) (243f1d57c6453c92b692c9d0921216e1) \Device\Harddisk0\DR0\Partition0
11:07:02.0593 3368 \Device\Harddisk0\DR0\Partition0 - ok
11:07:02.0640 3368 Boot (0x1200) (12406b2a215d9d3407e1898ffb5cb53c) \Device\Harddisk0\DR0\Partition1
11:07:02.0640 3368 \Device\Harddisk0\DR0\Partition1 - ok
11:07:02.0656 3368 Boot (0x1200) (ade2a8ee48ec6ece440c504c638a2e0f) \Device\Harddisk2\DR7\Partition0
11:07:02.0656 3368 \Device\Harddisk2\DR7\Partition0 - ok
11:07:02.0656 3368 ============================================================
11:07:02.0656 3368 Scan finished
11:07:02.0656 3368 ============================================================
11:07:02.0671 3924 Detected object count: 0
11:07:02.0671 3924 Actual detected object count: 0
11:07:55.0953 2680 Deinitialize success
  • 0

#8
root.blue

root.blue

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
I ran TDSSKiller again with the parameter changes you specified.
There were about a dozen threats detected.
Should I copy all to quarantine?

Thank you,
Kate
  • 0

#9
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,799 posts
  • MVP
No in this mode it gets a lot of false positives so just copy and paste the log (hit the report button if you can't find the log)
  • 0

#10
root.blue

root.blue

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
20:25:19.0593 2028 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16
20:25:19.0921 2028 ============================================================
20:25:19.0921 2028 Current date / time: 2012/01/01 20:25:19.0921
20:25:19.0921 2028 SystemInfo:
20:25:19.0921 2028
20:25:19.0921 2028 OS Version: 5.1.2600 ServicePack: 3.0
20:25:19.0921 2028 Product type: Workstation
20:25:19.0921 2028 ComputerName: OPSLT1
20:25:19.0921 2028 UserName: kbunting
20:25:19.0921 2028 Windows directory: C:\WINDOWS
20:25:19.0921 2028 System windows directory: C:\WINDOWS
20:25:19.0921 2028 Processor architecture: Intel x86
20:25:19.0921 2028 Number of processors: 2
20:25:19.0921 2028 Page size: 0x1000
20:25:19.0921 2028 Boot type: Normal boot
20:25:19.0921 2028 ============================================================
20:25:22.0359 2028 Initialize success
20:26:00.0125 3536 ============================================================
20:26:00.0125 3536 Scan started
20:26:00.0125 3536 Mode: Manual; SigCheck; TDLFS;
20:26:00.0125 3536 ============================================================
20:26:01.0390 3536 Abiosdsk - ok
20:26:01.0890 3536 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
20:26:09.0078 3536 abp480n5 - ok
20:26:09.0718 3536 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
20:26:09.0984 3536 ACPI - ok
20:26:10.0437 3536 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
20:26:10.0593 3536 ACPIEC - ok
20:26:11.0109 3536 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
20:26:11.0312 3536 adpu160m - ok
20:26:11.0843 3536 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
20:26:12.0062 3536 aec - ok
20:26:12.0656 3536 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
20:26:12.0828 3536 AFD - ok
20:26:13.0375 3536 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
20:26:13.0546 3536 agp440 - ok
20:26:14.0078 3536 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
20:26:14.0234 3536 agpCPQ - ok
20:26:14.0718 3536 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
20:26:14.0828 3536 Aha154x - ok
20:26:15.0328 3536 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
20:26:15.0515 3536 aic78u2 - ok
20:26:16.0015 3536 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
20:26:16.0187 3536 aic78xx - ok
20:26:16.0687 3536 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
20:26:16.0828 3536 AliIde - ok
20:26:17.0359 3536 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
20:26:17.0531 3536 alim1541 - ok
20:26:18.0046 3536 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
20:26:18.0203 3536 amdagp - ok
20:26:18.0640 3536 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
20:26:18.0734 3536 amsint - ok
20:26:19.0234 3536 androidusb (e94e2ea7faaa05c776a711edb198b9fd) C:\WINDOWS\system32\Drivers\smhwadb.sys
20:26:19.0281 3536 androidusb - ok
20:26:19.0781 3536 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
20:26:19.0953 3536 Arp1394 - ok
20:26:20.0453 3536 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
20:26:20.0656 3536 asc - ok
20:26:21.0203 3536 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
20:26:21.0312 3536 asc3350p - ok
20:26:21.0828 3536 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
20:26:21.0968 3536 asc3550 - ok
20:26:22.0531 3536 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
20:26:22.0671 3536 AsyncMac - ok
20:26:23.0218 3536 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
20:26:23.0359 3536 atapi - ok
20:26:23.0796 3536 Atdisk - ok
20:26:24.0359 3536 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
20:26:24.0531 3536 Atmarpc - ok
20:26:25.0031 3536 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
20:26:25.0234 3536 audstub - ok
20:26:25.0781 3536 bcm4sbxp (c768c8a463d32c219ce291645a0621a4) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
20:26:25.0890 3536 bcm4sbxp - ok
20:26:26.0437 3536 BCOREUSB (40f8c4c10ed67b1de44abf82582bac37) C:\WINDOWS\system32\Drivers\BCOREUSB.sys
20:26:26.0515 3536 BCOREUSB ( UnsignedFile.Multi.Generic ) - warning
20:26:26.0515 3536 BCOREUSB - detected UnsignedFile.Multi.Generic (1)
20:26:26.0968 3536 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
20:26:27.0140 3536 Beep - ok
20:26:27.0687 3536 BthEnum (b279426e3c0c344893ed78a613a73bde) C:\WINDOWS\system32\DRIVERS\BthEnum.sys
20:26:27.0843 3536 BthEnum - ok
20:26:28.0406 3536 BthPan (80602b8746d3738f5886ce3d67ef06b6) C:\WINDOWS\system32\DRIVERS\bthpan.sys
20:26:28.0640 3536 BthPan - ok
20:26:29.0296 3536 BTHPORT (662bfd909447dd9cc15b1a1c366583b4) C:\WINDOWS\system32\Drivers\BTHport.sys
20:26:29.0484 3536 BTHPORT - ok
20:26:29.0984 3536 BTHUSB (61364cd71ef63b0f038b7e9df00f1efa) C:\WINDOWS\system32\Drivers\BTHUSB.sys
20:26:30.0140 3536 BTHUSB - ok
20:26:30.0296 3536 catchme - ok
20:26:30.0859 3536 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
20:26:31.0015 3536 cbidf - ok
20:26:31.0500 3536 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
20:26:31.0625 3536 cbidf2k - ok
20:26:32.0109 3536 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
20:26:32.0218 3536 cd20xrnt - ok
20:26:32.0687 3536 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
20:26:32.0843 3536 Cdaudio - ok
20:26:33.0390 3536 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
20:26:33.0531 3536 Cdfs - ok
20:26:34.0000 3536 cdrbsdrv (351735695e9ead93de6af85d8beb1ca8) C:\WINDOWS\system32\drivers\cdrbsdrv.sys
20:26:34.0031 3536 cdrbsdrv ( UnsignedFile.Multi.Generic ) - warning
20:26:34.0031 3536 cdrbsdrv - detected UnsignedFile.Multi.Generic (1)
20:26:34.0562 3536 Cdrom (4b0a100eaf5c49ef3cca8c641431eacc) C:\WINDOWS\system32\DRIVERS\cdrom.sys
20:26:34.0656 3536 Cdrom - ok
20:26:35.0140 3536 Changer - ok
20:26:35.0656 3536 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
20:26:35.0796 3536 CmBatt - ok
20:26:36.0343 3536 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
20:26:36.0484 3536 CmdIde - ok
20:26:36.0968 3536 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
20:26:37.0109 3536 Compbatt - ok
20:26:37.0609 3536 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
20:26:37.0765 3536 Cpqarray - ok
20:26:38.0281 3536 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\WINDOWS\system32\DRIVERS\CVirtA.sys
20:26:38.0343 3536 CVirtA - ok
20:26:38.0937 3536 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
20:26:39.0187 3536 dac2w2k - ok
20:26:39.0656 3536 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
20:26:39.0812 3536 dac960nt - ok
20:26:40.0343 3536 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
20:26:40.0484 3536 Disk - ok
20:26:41.0421 3536 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
20:26:42.0312 3536 dmboot - ok
20:26:42.0843 3536 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
20:26:43.0031 3536 dmio - ok
20:26:43.0531 3536 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
20:26:43.0687 3536 dmload - ok
20:26:44.0203 3536 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
20:26:44.0390 3536 DMusic - ok
20:26:44.0937 3536 DNE (86d52c32a308f84bbc626bff7c1fb710) C:\WINDOWS\system32\DRIVERS\dne2000.sys
20:26:45.0015 3536 DNE - ok
20:26:45.0531 3536 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
20:26:45.0671 3536 dpti2o - ok
20:26:46.0140 3536 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
20:26:46.0312 3536 drmkaud - ok
20:26:46.0875 3536 E100B (3fca03cbca11269f973b70fa483c88ef) C:\WINDOWS\system32\DRIVERS\e100b325.sys
20:26:47.0078 3536 E100B - ok
20:26:47.0640 3536 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
20:26:47.0828 3536 Fastfat - ok
20:26:48.0390 3536 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
20:26:48.0546 3536 Fdc - ok
20:26:49.0046 3536 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
20:26:49.0187 3536 Fips - ok
20:26:49.0718 3536 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
20:26:49.0875 3536 Flpydisk - ok
20:26:50.0453 3536 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
20:26:50.0625 3536 FltMgr - ok
20:26:51.0125 3536 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
20:26:51.0265 3536 Fs_Rec - ok
20:26:51.0828 3536 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
20:26:52.0015 3536 Ftdisk - ok
20:26:52.0515 3536 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
20:26:52.0531 3536 GEARAspiWDM - ok
20:26:53.0031 3536 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
20:26:53.0187 3536 Gpc - ok
20:26:53.0796 3536 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
20:26:54.0015 3536 HDAudBus - ok
20:26:54.0484 3536 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
20:26:54.0640 3536 HidUsb - ok
20:26:55.0156 3536 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
20:26:55.0312 3536 hpn - ok
20:26:55.0828 3536 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
20:26:56.0140 3536 HPZid412 - ok
20:26:56.0718 3536 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
20:26:56.0750 3536 HPZipr12 - ok
20:26:57.0234 3536 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
20:26:57.0281 3536 HPZius12 - ok
20:26:57.0937 3536 HSFHWAZL (1c8caa80e91fb71864e9426f9eed048d) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
20:26:58.0093 3536 HSFHWAZL - ok
20:26:59.0046 3536 HSF_DPV (e8ec1767ea315a39a0dd8989952ca0e9) C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
20:26:59.0984 3536 HSF_DPV - ok
20:27:00.0593 3536 HSXHWAZL (61478fa42ee04562e7f11f4dca87e9c8) C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
20:27:00.0718 3536 HSXHWAZL - ok
20:27:01.0343 3536 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
20:27:01.0578 3536 HTTP - ok
20:27:02.0125 3536 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
20:27:02.0265 3536 i2omgmt - ok
20:27:02.0765 3536 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
20:27:02.0921 3536 i2omp - ok
20:27:03.0406 3536 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
20:27:03.0593 3536 i8042prt - ok
20:27:07.0046 3536 ialm (e8c7cc369c2fb657e0792af70df529e6) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
20:27:12.0937 3536 ialm - ok
20:27:13.0500 3536 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
20:27:13.0656 3536 Imapi - ok
20:27:14.0140 3536 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
20:27:14.0328 3536 ini910u - ok
20:27:14.0781 3536 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
20:27:14.0921 3536 IntelIde - ok
20:27:15.0406 3536 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
20:27:15.0578 3536 intelppm - ok
20:27:16.0109 3536 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
20:27:16.0281 3536 Ip6Fw - ok
20:27:16.0750 3536 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
20:27:16.0906 3536 IpFilterDriver - ok
20:27:17.0421 3536 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
20:27:17.0546 3536 IpInIp - ok
20:27:18.0093 3536 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
20:27:18.0312 3536 IpNat - ok
20:27:18.0796 3536 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
20:27:18.0984 3536 IPSec - ok
20:27:19.0500 3536 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
20:27:19.0640 3536 IRENUM - ok
20:27:20.0125 3536 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
20:27:20.0265 3536 isapnp - ok
20:27:20.0828 3536 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
20:27:20.0984 3536 Kbdclass - ok
20:27:21.0468 3536 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
20:27:21.0640 3536 kbdhid - ok
20:27:22.0281 3536 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
20:27:22.0484 3536 kmixer - ok
20:27:23.0015 3536 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
20:27:23.0171 3536 KSecDD - ok
20:27:23.0625 3536 lbrtfdc - ok
20:27:24.0109 3536 MCSTRM - ok
20:27:24.0609 3536 mdmxsdk (e246a32c445056996074a397da56e815) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
20:27:24.0640 3536 mdmxsdk - ok
20:27:24.0750 3536 mferkdk - ok
20:27:25.0203 3536 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
20:27:25.0359 3536 mnmdd - ok
20:27:25.0875 3536 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
20:27:26.0031 3536 Modem - ok
20:27:26.0546 3536 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
20:27:26.0703 3536 Mouclass - ok
20:27:27.0203 3536 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
20:27:27.0359 3536 mouhid - ok
20:27:27.0843 3536 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
20:27:27.0984 3536 MountMgr - ok
20:27:28.0515 3536 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\WINDOWS\system32\DRIVERS\MpFilter.sys
20:27:28.0609 3536 MpFilter - ok
20:27:28.0734 3536 MpKsl094dc251 - ok
20:27:28.0781 3536 MpKsl1f1420dd - ok
20:27:28.0828 3536 MpKsl51e34edc - ok
20:27:28.0859 3536 MpKsl546d9b1d - ok
20:27:28.0906 3536 MpKsl5fb1283b - ok
20:27:28.0937 3536 MpKsl6661719a - ok
20:27:28.0984 3536 MpKsl6ad81ac1 - ok
20:27:29.0031 3536 MpKsl7502c611 - ok
20:27:29.0062 3536 MpKsl93e7e27d - ok
20:27:29.0109 3536 MpKsl9806eade - ok
20:27:29.0140 3536 MpKslf9d93974 - ok
20:27:29.0734 3536 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
20:27:29.0890 3536 mraid35x - ok
20:27:30.0453 3536 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
20:27:30.0656 3536 MRxDAV - ok
20:27:31.0125 3536 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
20:27:31.0265 3536 Msfs - ok
20:27:31.0843 3536 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
20:27:32.0015 3536 MSKSSRV - ok
20:27:32.0515 3536 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
20:27:32.0656 3536 MSPCLOCK - ok
20:27:33.0218 3536 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
20:27:33.0375 3536 MSPQM - ok
20:27:33.0859 3536 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
20:27:34.0000 3536 mssmbios - ok
20:27:34.0562 3536 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
20:27:34.0671 3536 Mup - ok
20:27:35.0312 3536 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
20:27:35.0500 3536 NDIS - ok
20:27:36.0046 3536 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
20:27:36.0093 3536 NdisTapi - ok
20:27:36.0609 3536 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
20:27:36.0765 3536 Ndisuio - ok
20:27:37.0359 3536 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
20:27:37.0562 3536 NdisWan - ok
20:27:38.0062 3536 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
20:27:38.0171 3536 NDProxy - ok
20:27:38.0625 3536 neokdss - ok
20:27:39.0125 3536 neoscan (fee3af6d3c9a1e96f392776723aff2d7) C:\WINDOWS\system32\drivers\neoscan.sys
20:27:39.0171 3536 neoscan - ok
20:27:39.0734 3536 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
20:27:40.0000 3536 NetBT - ok
20:27:40.0437 3536 NETw3x32 - ok
20:27:41.0000 3536 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
20:27:41.0171 3536 NIC1394 - ok
20:27:41.0640 3536 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
20:27:41.0765 3536 Npfs - ok
20:27:42.0546 3536 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
20:27:43.0109 3536 Ntfs - ok
20:27:43.0609 3536 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
20:27:43.0750 3536 Null - ok
20:27:45.0218 3536 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
20:27:47.0109 3536 nv - ok
20:27:47.0671 3536 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
20:27:47.0843 3536 NwlnkFlt - ok
20:27:48.0343 3536 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
20:27:48.0500 3536 NwlnkFwd - ok
20:27:49.0093 3536 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
20:27:49.0250 3536 ohci1394 - ok
20:27:49.0765 3536 omci (b17228142cec9b3c222239fd935a37ca) C:\WINDOWS\system32\DRIVERS\omci.sys
20:27:49.0796 3536 omci ( UnsignedFile.Multi.Generic ) - warning
20:27:49.0796 3536 omci - detected UnsignedFile.Multi.Generic (1)
20:27:50.0437 3536 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
20:27:50.0640 3536 Parport - ok
20:27:51.0140 3536 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
20:27:51.0265 3536 PartMgr - ok
20:27:51.0765 3536 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
20:27:51.0921 3536 ParVdm - ok
20:27:52.0468 3536 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
20:27:52.0625 3536 PCI - ok
20:27:53.0093 3536 PCIDump - ok
20:27:53.0562 3536 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
20:27:53.0703 3536 PCIIde - ok
20:27:54.0281 3536 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
20:27:54.0484 3536 Pcmcia - ok
20:27:54.0953 3536 PDCOMP - ok
20:27:55.0390 3536 PDFRAME - ok
20:27:55.0812 3536 PDRELI - ok
20:27:56.0234 3536 PDRFRAME - ok
20:27:56.0718 3536 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
20:27:56.0890 3536 perc2 - ok
20:27:57.0343 3536 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
20:27:57.0500 3536 perc2hib - ok
20:27:57.0562 3536 pohci13F - ok
20:27:58.0171 3536 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
20:27:58.0328 3536 PptpMiniport - ok
20:27:58.0843 3536 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
20:27:59.0031 3536 PSched - ok
20:27:59.0515 3536 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
20:27:59.0671 3536 Ptilink - ok
20:28:00.0187 3536 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys
20:28:00.0187 3536 PxHelp20 - ok
20:28:00.0703 3536 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
20:28:00.0875 3536 ql1080 - ok
20:28:01.0406 3536 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
20:28:01.0578 3536 Ql10wnt - ok
20:28:02.0109 3536 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
20:28:02.0265 3536 ql12160 - ok
20:28:02.0765 3536 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
20:28:02.0968 3536 ql1240 - ok
20:28:03.0500 3536 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
20:28:03.0671 3536 ql1280 - ok
20:28:04.0203 3536 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
20:28:04.0359 3536 RasAcd - ok
20:28:04.0890 3536 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
20:28:05.0078 3536 Rasl2tp - ok
20:28:05.0578 3536 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
20:28:05.0750 3536 RasPppoe - ok
20:28:06.0234 3536 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
20:28:06.0390 3536 Raspti - ok
20:28:06.0906 3536 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
20:28:07.0062 3536 RDPCDD - ok
20:28:07.0656 3536 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
20:28:07.0875 3536 rdpdr - ok
20:28:08.0484 3536 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
20:28:08.0640 3536 RDPWD - ok
20:28:09.0234 3536 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
20:28:09.0421 3536 redbook - ok
20:28:09.0953 3536 Revoflt (8b5b8a11306190c6963d3473f052d3c8) C:\WINDOWS\system32\DRIVERS\revoflt.sys
20:28:09.0984 3536 Revoflt - ok
20:28:10.0484 3536 RFCOMM (851c30df2807fcfa21e4c681a7d6440e) C:\WINDOWS\system32\DRIVERS\rfcomm.sys
20:28:10.0671 3536 RFCOMM - ok
20:28:11.0171 3536 rimmptsk (24ed7af20651f9fa1f249482e7c1f165) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
20:28:11.0234 3536 rimmptsk - ok
20:28:11.0718 3536 RimSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
20:28:11.0796 3536 RimSerPort - ok
20:28:12.0343 3536 rimsptsk (1bdba2d2d402415a78a4ba766dfe0f7b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
20:28:12.0421 3536 rimsptsk - ok
20:28:12.0890 3536 RimUsb - ok
20:28:13.0359 3536 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
20:28:13.0375 3536 RimVSerPort - ok
20:28:14.0031 3536 rismxdp (f774ecd11a064f0debb2d4395418153c) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
20:28:14.0250 3536 rismxdp - ok
20:28:14.0765 3536 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
20:28:14.0921 3536 ROOTMODEM - ok
20:28:15.0406 3536 s24trans - ok
20:28:15.0921 3536 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
20:28:16.0093 3536 sdbus - ok
20:28:16.0562 3536 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
20:28:16.0718 3536 Secdrv - ok
20:28:17.0343 3536 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
20:28:17.0484 3536 serenum - ok
20:28:18.0015 3536 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
20:28:18.0250 3536 Serial - ok
20:28:18.0765 3536 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys
20:28:18.0906 3536 sffdisk - ok
20:28:19.0421 3536 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
20:28:19.0578 3536 sffp_sd - ok
20:28:20.0062 3536 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
20:28:20.0218 3536 Sfloppy - ok
20:28:20.0656 3536 Simbad - ok
20:28:21.0171 3536 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
20:28:21.0375 3536 sisagp - ok
20:28:21.0953 3536 smhwdev (2a0bde6dd58ac2935a80f984b3af0b0e) C:\WINDOWS\system32\DRIVERS\smhwdev.sys
20:28:22.0062 3536 smhwdev - ok
20:28:22.0625 3536 smhwser (54b5dd15eef72aee8d1c765ab2235610) C:\WINDOWS\system32\DRIVERS\smhwser.sys
20:28:22.0750 3536 smhwser - ok
20:28:23.0328 3536 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) C:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS
20:28:23.0484 3536 SONYPVU1 - ok
20:28:24.0000 3536 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
20:28:24.0093 3536 Sparrow - ok
20:28:24.0593 3536 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
20:28:24.0734 3536 splitter - ok
20:28:25.0218 3536 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
20:28:25.0375 3536 sr - ok
20:28:26.0046 3536 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
20:28:26.0437 3536 Srv - ok
20:28:27.0531 3536 STHDA (3ad78e22210d3fbd9f76de84a8df19b5) C:\WINDOWS\system32\drivers\sthda.sys
20:28:28.0750 3536 STHDA - ok
20:28:29.0328 3536 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
20:28:29.0484 3536 swenum - ok
20:28:30.0015 3536 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
20:28:30.0187 3536 swmidi - ok
20:28:30.0687 3536 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
20:28:30.0828 3536 symc810 - ok
20:28:31.0312 3536 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
20:28:31.0468 3536 symc8xx - ok
20:28:31.0968 3536 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
20:28:32.0140 3536 sym_hi - ok
20:28:32.0687 3536 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
20:28:32.0843 3536 sym_u3 - ok
20:28:33.0421 3536 SynTP (fa2daa32bed908023272a0f77d625dae) C:\WINDOWS\system32\DRIVERS\SynTP.sys
20:28:33.0640 3536 SynTP - ok
20:28:34.0156 3536 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
20:28:34.0328 3536 sysaudio - ok
20:28:34.0875 3536 tap0801 (846b7c0e3f6370cdcce157a5b36e70cd) C:\WINDOWS\system32\DRIVERS\tap0801.sys
20:28:34.0906 3536 tap0801 ( UnsignedFile.Multi.Generic ) - warning
20:28:34.0906 3536 tap0801 - detected UnsignedFile.Multi.Generic (1)
20:28:35.0578 3536 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
20:28:36.0000 3536 Tcpip - ok
20:28:36.0578 3536 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
20:28:36.0718 3536 TDPIPE - ok
20:28:37.0234 3536 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
20:28:37.0390 3536 TDTCP - ok
20:28:37.0890 3536 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
20:28:38.0046 3536 TermDD - ok
20:28:38.0562 3536 toshidpt (e362d54fd394999c4178936396664e57) C:\WINDOWS\system32\drivers\Toshidpt.sys
20:28:38.0609 3536 toshidpt ( UnsignedFile.Multi.Generic ) - warning
20:28:38.0609 3536 toshidpt - detected UnsignedFile.Multi.Generic (1)
20:28:39.0187 3536 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
20:28:39.0328 3536 TosIde - ok
20:28:39.0843 3536 tosporte (0470bf2d5f49ff98464ac2c838e6a080) C:\WINDOWS\system32\DRIVERS\tosporte.sys
20:28:39.0875 3536 tosporte ( UnsignedFile.Multi.Generic ) - warning
20:28:39.0875 3536 tosporte - detected UnsignedFile.Multi.Generic (1)
20:28:40.0390 3536 Tosrfbd (077869082a635e8ff2c205dc95c78775) C:\WINDOWS\system32\Drivers\tosrfbd.sys
20:28:40.0484 3536 Tosrfbd ( UnsignedFile.Multi.Generic ) - warning
20:28:40.0484 3536 Tosrfbd - detected UnsignedFile.Multi.Generic (1)
20:28:40.0968 3536 Tosrfbnp (613e09572f4c5b92ca6be8bdc4cc5b7d) C:\WINDOWS\system32\Drivers\tosrfbnp.sys
20:28:41.0000 3536 Tosrfbnp ( UnsignedFile.Multi.Generic ) - warning
20:28:41.0000 3536 Tosrfbnp - detected UnsignedFile.Multi.Generic (1)
20:28:41.0500 3536 Tosrfcom (5ba1ca3b3cddb1ddc67df473f05d1ec2) C:\WINDOWS\system32\Drivers\tosrfcom.sys
20:28:41.0546 3536 Tosrfcom ( UnsignedFile.Multi.Generic ) - warning
20:28:41.0546 3536 Tosrfcom - detected UnsignedFile.Multi.Generic (1)
20:28:42.0062 3536 Tosrfhid (f4e4795528d17ff8d1d6d98ebbb92655) C:\WINDOWS\system32\DRIVERS\Tosrfhid.sys
20:28:42.0109 3536 Tosrfhid ( UnsignedFile.Multi.Generic ) - warning
20:28:42.0109 3536 Tosrfhid - detected UnsignedFile.Multi.Generic (1)
20:28:42.0562 3536 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\WINDOWS\system32\DRIVERS\tosrfnds.sys
20:28:42.0578 3536 tosrfnds ( UnsignedFile.Multi.Generic ) - warning
20:28:42.0578 3536 tosrfnds - detected UnsignedFile.Multi.Generic (1)
20:28:43.0062 3536 TosRfSnd (b5518adb2b0029ff95d22e8e7336f49f) C:\WINDOWS\system32\drivers\TosRfSnd.sys
20:28:43.0109 3536 TosRfSnd ( UnsignedFile.Multi.Generic ) - warning
20:28:43.0109 3536 TosRfSnd - detected UnsignedFile.Multi.Generic (1)
20:28:43.0656 3536 Tosrfusb (ac2123e788230c712d0919ed0fec9ddd) C:\WINDOWS\system32\Drivers\tosrfusb.sys
20:28:43.0687 3536 Tosrfusb ( UnsignedFile.Multi.Generic ) - warning
20:28:43.0687 3536 Tosrfusb - detected UnsignedFile.Multi.Generic (1)
20:28:44.0218 3536 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
20:28:44.0421 3536 Udfs - ok
20:28:44.0921 3536 UIUSys - ok
20:28:45.0406 3536 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
20:28:45.0531 3536 ultra - ok
20:28:45.0984 3536 UltraMonMirror - ok
20:28:46.0687 3536 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
20:28:47.0156 3536 Update - ok
20:28:47.0718 3536 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
20:28:47.0796 3536 USBAAPL - ok
20:28:48.0312 3536 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
20:28:48.0500 3536 usbaudio - ok
20:28:49.0046 3536 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
20:28:49.0203 3536 usbccgp - ok
20:28:49.0812 3536 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
20:28:49.0968 3536 usbehci - ok
20:28:50.0578 3536 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
20:28:50.0734 3536 usbhub - ok
20:28:51.0250 3536 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
20:28:51.0406 3536 usbprint - ok
20:28:51.0890 3536 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
20:28:52.0031 3536 usbscan - ok
20:28:52.0578 3536 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
20:28:52.0703 3536 USBSTOR - ok
20:28:53.0187 3536 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
20:28:53.0375 3536 usbuhci - ok
20:28:53.0906 3536 USB_RNDIS (bee793d4a059caea55d6ac20e19b3a8f) C:\WINDOWS\system32\DRIVERS\usb8023.sys
20:28:54.0046 3536 USB_RNDIS - ok
20:28:54.0546 3536 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
20:28:54.0687 3536 VgaSave - ok
20:28:55.0250 3536 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
20:28:55.0406 3536 viaagp - ok
20:28:55.0890 3536 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
20:28:56.0046 3536 ViaIde - ok
20:28:56.0593 3536 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
20:28:56.0718 3536 VolSnap - ok
20:28:57.0125 3536 vsdatant - ok
20:28:58.0328 3536 w39n51 (b1f126e7e28877106d60e6ff3998d033) C:\WINDOWS\system32\DRIVERS\w39n51.sys
20:28:59.0781 3536 w39n51 - ok
20:29:00.0328 3536 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
20:29:00.0500 3536 Wanarp - ok
20:29:00.0937 3536 wanatw - ok
20:29:01.0640 3536 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\Drivers\wdf01000.sys
20:29:02.0015 3536 Wdf01000 - ok
20:29:02.0500 3536 WDICA - ok
20:29:03.0046 3536 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
20:29:03.0234 3536 wdmaud - ok
20:29:04.0093 3536 winachsf (ba6b6fb242a6ba4068c8b763063beb63) C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
20:29:04.0750 3536 winachsf - ok
20:29:05.0296 3536 WinUSB (fd600b032e741eb6aab509fc630f7c42) C:\WINDOWS\system32\DRIVERS\WinUSB.sys
20:29:05.0328 3536 WinUSB - ok
20:29:05.0812 3536 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
20:29:05.0968 3536 WmiAcpi - ok
20:29:06.0500 3536 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
20:29:06.0625 3536 WpdUsb - ok
20:29:07.0140 3536 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
20:29:07.0296 3536 WS2IFSL - ok
20:29:07.0843 3536 WudfPf (eaa6324f51214d2f6718977ec9ce0def) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
20:29:07.0906 3536 WudfPf - ok
20:29:08.0437 3536 zumbus (337b9607f041b77824411750069aff2d) C:\WINDOWS\system32\DRIVERS\zumbus.sys
20:29:08.0750 3536 zumbus - ok
20:29:08.0812 3536 MBR (0x1B8) (823ca895571a1d99983f2953dc6838e7) \Device\Harddisk0\DR0
20:29:09.0046 3536 \Device\Harddisk0\DR0 - ok
20:29:09.0078 3536 Boot (0x1200) (243f1d57c6453c92b692c9d0921216e1) \Device\Harddisk0\DR0\Partition0
20:29:09.0078 3536 \Device\Harddisk0\DR0\Partition0 - ok
20:29:09.0125 3536 Boot (0x1200) (12406b2a215d9d3407e1898ffb5cb53c) \Device\Harddisk0\DR0\Partition1
20:29:09.0125 3536 \Device\Harddisk0\DR0\Partition1 - ok
20:29:09.0125 3536 ============================================================
20:29:09.0125 3536 Scan finished
20:29:09.0125 3536 ============================================================
20:29:09.0234 1856 Detected object count: 13
20:29:09.0234 1856 Actual detected object count: 13
  • 0

Advertisements


#11
root.blue

root.blue

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Do I need to download Avast! to run aswMBR.exe?
  • 0

#12
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,799 posts
  • MVP
For the most part these are just unsigned Toshiba files that probably came with the PC. Shame on Toshiba for not properly signing their files but they aren't malware. There is also a printer driver and another file but I think they are harmless.

aswMBR does not need to download Avast. You can tell it no and it will still run.
  • 0

#13
root.blue

root.blue

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
Does Toshiba own Dell? Just curious why there would be Toshiba files on a Dell.
  • 0

#14
root.blue

root.blue

    Member

  • Topic Starter
  • Member
  • PipPip
  • 24 posts
The Fix button was not enabled.

aswMBR.txt
aswMBR version 0.9.9.1124 Copyright© 2011 AVAST Software
Run date: 2012-01-01 21:23:01
-----------------------------
21:23:01.265 OS Version: Windows 5.1.2600 Service Pack 3
21:23:01.265 Number of processors: 2 586 0xE08
21:23:01.265 ComputerName: OPSLT1 UserName:
21:23:05.921 Initialize success
21:45:55.234 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-3
21:45:55.234 Disk 0 Vendor: FUJITSU_MHV2100BH 0085002A Size: 93958MB BusType: 3
21:45:55.265 Disk 0 MBR read successfully
21:45:55.265 Disk 0 MBR scan
21:45:55.265 Disk 0 unknown MBR code
21:45:55.265 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 47 MB offset 63
21:45:55.281 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 68284 MB offset 96390
21:45:55.312 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 21830 MB offset 139958280
21:45:55.328 Disk 0 Partition 4 00 DB CP/M / CTOS MSWIN4.1 3788 MB offset 184667175
21:45:55.343 Disk 0 scanning sectors +192426570
21:45:55.421 Disk 0 scanning C:\WINDOWS\system32\drivers
21:46:32.000 Service scanning
21:46:41.265 Modules scanning
21:47:08.093 Scan finished successfully
21:48:28.203 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\kbunting\Desktop\MBR.dat"
21:48:28.203 The log file has been saved successfully to "C:\Documents and Settings\kbunting\Desktop\aswMBR.txt"
  • 0

#15
RKinner

RKinner

    Malware Expert

  • Expert
  • 19,799 posts
  • MVP
I assume combofix is on the desktop. Try:

Start, Run, cmd, OK
"c:\documents and settings\Kel\Desktop\combofix.exe"  /killall

If it still doesn't work.
1. Double-click My Computer, and then right-click the hard disk that you want to check. C:
2. Click Properties, and then click Tools.
3. Under Error-checking, click Check Now. A dialog box that shows the Check disk options is displayed,
4. Check both boxes and then click Start.
You will receive the following message:
The disk check could not be performed because the disk check utility needs exclusive access to some Windows files on the disk. These files can be accessed by restarting Windows. Do you want to schedule the disk check to occur the next time you restart the computer?
Click Yes to schedule the disk check, but don't restart yet.

Start, Run, eventvwr.msc, OK to bring up the Event Viewer. Right click on System and Clear All Events, No (we don't want to save the old log), OK. Repeat for Application. Reboot. The disk check will run and will probably take an hour or more to finish.

1. Please download the Event Viewer Tool by Vino Rosso
http://images.malwar...om/vino/VEW.exe
and save it to your Desktop:
2. Double-click VEW.exe
3. Under 'Select log to query', select:

* System
4. Under 'Select type to list', select:
* Error
* Warning


Then use the 'Number of events' as follows:


1. Click the radio button for 'Number of events'
Type 20 in the 1 to 20 box
Then click the Run button.
Notepad will open with the output log.


Please post the Output log in your next reply then repeat but select Application.

Ron

PS Going on a trip tomorrow. Don't know when I will have Internet access. Expect delays.
  • 0






Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP