[knarf1]

I keep getting this message from Symantec Endpoint Protection.

I scanned with Symantec and Malwarebytes yesterday and found some backdoor threats that were removed, but this message keeps popping up. My computer is running OK, but I keep getting this message.

Thanks for any assistance.

[Advertisements]

Hello knarf1 and welcome to GeeksToGo

I'm Homburg and I'm going to help you fix your problem.

• Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste so as to include the log in your reply. You can do this in separate posts if it's easier for you
  
• Please do not try to fix anything without being asked
  
• Please continue to follow my instructions until I tell you your machine is clean. Absence of symptoms does not mean that everything is clear.
  
• I suggest you print or save any instructions I give you for easy reference. We may be using Safe mode and you will not always be able to access this thread.

Please do the following:


Step 1:

Download OTL to your Desktop

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
• Select All Users
• Under the Custom Scan box paste this in
  
  netsvcs
  %SYSTEMDRIVE%\*.exe
  %USERPROFILE%\..|smtmp;true;true;true /FP
  /md5start
  volsnap.*
  explorer.exe
  winlogon.exe
  Userinit.exe
  svchost.exe
  consrv.dll
  /md5stop
  C:\Windows\assembly\tmp\U\*.* /s
  %systemroot%\*. /mp /s
  hklm\software\clients\startmenuinternet|command /rs
  hklm\software\clients\startmenuinternet|command /64 /rs
  CREATERESTOREPOINT
  
  
• Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  
• When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
• Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic

Step 2:

Download aswMBR.exe ( 1.8mB ) to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan


On completion of the scan click save log, save it to your desktop and post in your next reply


Please let me know if either or both the FixMBR or FIX buttons are available or not greyed out. Please don't press them

Please remember to post:

OTL.txt log
Extras.txt log
aswMBR scan log

[Homburg]

Hello knarf1 and welcome to GeeksToGo

I'm Homburg and I'm going to help you fix your problem.

• Please do not attach any log files to your replies unless I specifically ask you. Instead please copy and paste so as to include the log in your reply. You can do this in separate posts if it's easier for you
  
• Please do not try to fix anything without being asked
  
• Please continue to follow my instructions until I tell you your machine is clean. Absence of symptoms does not mean that everything is clear.
  
• I suggest you print or save any instructions I give you for easy reference. We may be using Safe mode and you will not always be able to access this thread.

Please do the following:


Step 1:

Download OTL to your Desktop

• Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
• Select All Users
• Under the Custom Scan box paste this in
  
  netsvcs
  %SYSTEMDRIVE%\*.exe
  %USERPROFILE%\..|smtmp;true;true;true /FP
  /md5start
  volsnap.*
  explorer.exe
  winlogon.exe
  Userinit.exe
  svchost.exe
  consrv.dll
  /md5stop
  C:\Windows\assembly\tmp\U\*.* /s
  %systemroot%\*. /mp /s
  hklm\software\clients\startmenuinternet|command /rs
  hklm\software\clients\startmenuinternet|command /64 /rs
  CREATERESTOREPOINT
  
  
• Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
  
• When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
• Please copy (Edit->Select All, Edit->Copy) the contents of these files, one at a time and post them in your topic

Step 2:

Download aswMBR.exe ( 1.8mB ) to your desktop.

Double click the aswMBR.exe to run it

Click the "Scan" button to start scan


On completion of the scan click save log, save it to your desktop and post in your next reply


Please let me know if either or both the FixMBR or FIX buttons are available or not greyed out. Please don't press them

Please remember to post:

OTL.txt log
Extras.txt log
aswMBR scan log

[knarf1]

OTL logfile created on: 1/25/2012 6:30:55 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\msuman\Downloads
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.97 Gb Total Physical Memory | 0.56 Gb Available Physical Memory | 28.57% Memory free
4.17 Gb Paging File | 2.58 Gb Available in Paging File | 61.83% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222.78 Gb Total Space | 121.58 Gb Free Space | 54.58% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 5.74 Gb Free Space | 57.44% Space Free | Partition Type: NTFS
Unable to calculate disk information.

Computer Name: MSUMAN-PC | User Name: msuman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/01/25 06:28:47 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\msuman\Downloads\OTL (1).exe
PRC - [2011/12/24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/12/24 17:50:18 | 000,460,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/11/04 19:48:26 | 000,273,528 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011/10/19 08:31:51 | 000,247,968 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil11c_ActiveX.exe
PRC - [2011/10/10 18:30:40 | 000,736,672 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
PRC - [2010/12/03 05:14:55 | 000,108,392 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2010/12/03 05:14:50 | 000,115,560 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2010/12/03 05:14:41 | 001,893,728 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
PRC - [2010/12/03 05:14:41 | 001,459,568 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
PRC - [2010/12/03 05:14:39 | 001,839,776 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
PRC - [2009/09/27 15:47:17 | 000,640,760 | ---- | M] () -- C:\Program Files\Lavasoft\Ad-Aware\AAWWSC.exe
PRC - [2009/04/10 22:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/05 15:07:20 | 002,260,480 | -HS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008/08/18 22:19:38 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTSrv.exe
PRC - [2008/07/20 14:45:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe


========== Modules (No Company Name) ==========

MOD - [2011/06/24 21:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 21:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010/09/20 16:19:13 | 000,034,816 | ---- | M] () -- C:\Program Files\Google\Google Desktop Search\gzlib.dll
MOD - [2009/04/10 22:28:22 | 000,223,232 | ---- | M] () -- \\?\globalroot\systemroot\system32\mswsock.dll
MOD - [2009/04/10 22:28:22 | 000,223,232 | ---- | M] () -- \\.\globalroot\systemroot\system32\mswsock.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2011/12/24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/10/10 18:30:40 | 000,736,672 | ---- | M] (Enigma Software Group USA, LLC.) [Auto | Running] -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service)
SRV - [2011/06/10 07:40:04 | 001,036,104 | ---- | M] (Lavasoft) [Auto | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010/12/03 05:14:55 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2010/12/03 05:14:55 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2010/12/03 05:14:41 | 001,893,728 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe -- (SmcService)
SRV - [2010/12/03 05:14:39 | 001,839,776 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2010/12/03 05:14:39 | 000,357,744 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE -- (SNAC)
SRV - [2010/09/07 16:05:51 | 003,093,880 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE -- (LiveUpdate)
SRV - [2010/09/02 22:45:02 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.1.121\McCHSvc.exe -- (McComponentHostService)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Stopped] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/08/18 22:19:38 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AERTSrv.exe -- (AERTFilters)
SRV - [2008/07/20 14:45:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®


========== Driver Services (SafeList) ==========

DRV - [2011/12/10 15:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/11/15 12:05:24 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20120124.035\NAVEX15.SYS -- (NAVEX15)
DRV - [2011/11/15 12:05:24 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011/11/15 12:05:24 | 000,106,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011/11/15 12:05:24 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20120124.035\NAVENG.SYS -- (NAVENG)
DRV - [2011/06/22 19:05:28 | 000,167,936 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wpshelper.sys -- (WpsHelper)
DRV - [2010/12/03 05:22:43 | 000,125,488 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010/12/03 05:14:57 | 000,320,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2010/12/03 05:14:57 | 000,043,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\WPSDRVnt.sys -- (WPS)
DRV - [2010/12/03 05:14:57 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2010/12/03 05:14:56 | 000,284,720 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2010/12/03 05:14:42 | 000,099,696 | ---- | M] (Symantec Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SYSTEM32\Drivers\SysPlant.sys -- (SysPlant)
DRV - [2010/12/03 05:14:42 | 000,067,472 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Teefer2.sys -- (Teefer2)
DRV - [2010/12/03 05:14:34 | 000,421,424 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2009/10/06 19:12:40 | 000,188,080 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2009/10/06 19:12:40 | 000,026,416 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2009/05/02 15:48:17 | 000,064,160 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2009/04/10 20:45:37 | 000,185,856 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\netbt.sys -- (netbt)
DRV - [2008/12/23 03:47:52 | 000,138,240 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008/08/26 09:55:14 | 000,112,128 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel®
DRV - [2008/08/18 23:03:28 | 000,079,960 | ---- | M] (JMicron Technology Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\jraid.sys -- (JRAID)
DRV - [2008/07/30 17:42:12 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\COH_Mon.sys -- (COH_Mon)
DRV - [2008/06/10 12:04:26 | 000,033,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\point32k.sys -- (Point32)
DRV - [2008/01/20 18:32:51 | 000,220,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel®
DRV - [2006/11/01 23:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://partnerpage.g...smb&ibd=4090129
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://partnerpage.g...smb&ibd=4090129
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.7
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 59273

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.669: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.669: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\[email protected]/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/01/11 08:30:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.25\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/01/04 13:22:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.25\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/21 21:08:54 | 000,000,000 | ---D | M]

[2011/01/14 18:40:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\msuman\AppData\Roaming\Mozilla\Extensions
[2012/01/24 05:44:32 | 000,000,000 | ---D | M] (No name found) -- C:\Users\msuman\AppData\Roaming\Mozilla\Firefox\Profiles\huiexf3r.default\extensions
[2011/02/24 16:46:54 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\msuman\AppData\Roaming\Mozilla\Firefox\Profiles\huiexf3r.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/01/22 08:22:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/01/30 12:48:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/21 03:02:35 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2012/01/11 08:30:28 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2011/02/02 20:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealPlayer™ HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: RealNetworks™ Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\msuman\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.3_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\msuman\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\

O1 HOSTS File: ([2006/09/18 13:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O3 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\..\Toolbar\WebBrowser: (no name) - {A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - No CLSID value found.
O3 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe File not found
O4 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKU\.DEFAULT..\RunOnce: [AutoLaunch] C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe ()
O4 - HKU\S-1-5-18..\RunOnce: [AutoLaunch] C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Ranges: GD ([http] in Local intranet)
O15 - HKU\S-1-5-18\..Trusted Ranges: GD ([http] in Local intranet)
O15 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\..Trusted Domains: localhost ([]http in Local intranet)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9EF48691-42FF-4A13-8013-5A1CC8DE2354}: DhcpNameServer = 192.168.1.254
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL) -C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\Userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\msuman\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\msuman\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 13:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011/03/22 17:13:38 | 000,000,000 | RH-D | M] - F:\autorun -- [ NTFS ]
O32 - AutoRun File - [2002/10/16 04:56:50 | 000,000,036 | RH-- | M] () - F:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010/07/09 19:48:54 | 000,000,000 | RH-D | M] - G:\autorun -- [ NTFS ]
O32 - AutoRun File - [2002/10/16 04:56:50 | 000,000,036 | RH-- | M] () - G:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/01/23 07:49:56 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/01/22 18:08:40 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Roaming\E594A
[2012/01/22 18:08:29 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Roaming\C4EE5
[2012/01/22 18:08:22 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Local\SanctionedMedia
[2012/01/21 21:07:35 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012/01/11 12:04:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012/01/11 12:04:21 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012/01/11 10:47:30 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Roaming\Malwarebytes
[2012/01/11 10:47:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/01/11 10:47:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/01/11 10:47:19 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/01/11 10:47:19 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/01/11 09:33:37 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
[2012/01/11 09:33:37 | 000,000,000 | ---D | C] -- C:\sh4ldr
[2012/01/11 09:33:37 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2012/01/11 09:33:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2012/01/11 09:16:34 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2012/01/04 20:38:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/01/04 20:37:49 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/01/04 20:37:40 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2010/08/25 18:59:08 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\msuman\Documents\*.tmp files -> C:\Users\msuman\Documents\*.tmp -> ]
[1 C:\Users\msuman\*.tmp files -> C:\Users\msuman\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/01/25 06:29:21 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/01/25 06:29:13 | 000,001,973 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/01/25 06:12:33 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/01/25 06:07:13 | 000,000,054 | ---- | M] () -- C:\Windows\System32\rp_stats.dat
[2012/01/25 06:07:13 | 000,000,039 | ---- | M] () -- C:\Windows\System32\rp_rules.dat
[2012/01/25 06:06:54 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/01/25 06:06:53 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/01/25 06:06:37 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/01/25 06:06:23 | 2110,771,200 | -HS- | M] () -- C:\hiberfil.sys
[2012/01/24 21:32:20 | 000,000,506 | ---- | M] () -- C:\Windows\tasks\SystemToolsDailyTest.job
[2012/01/24 20:04:26 | 000,030,735 | ---- | M] () -- C:\Users\msuman\Documents\malwarebytes BKD-7362011316.pdf
[2012/01/23 16:47:23 | 000,000,472 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2012/01/21 21:43:30 | 000,604,264 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/01/21 21:43:30 | 000,103,964 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/01/21 21:08:55 | 000,001,889 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/01/13 19:51:19 | 000,000,907 | ---- | M] () -- C:\Users\msuman\Application Data\Microsoft\Internet Explorer\Quick Launch\circles Asuka Kimishima 002 - Shortcut.lnk
[2012/01/12 17:08:30 | 000,001,356 | ---- | M] () -- C:\Users\msuman\AppData\Local\d3d9caps.dat
[2012/01/11 12:04:22 | 000,000,806 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012/01/11 10:48:40 | 000,000,908 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/01/11 09:33:38 | 000,002,081 | ---- | M] () -- C:\Users\msuman\Desktop\SpyHunter.lnk
[2012/01/11 08:21:19 | 000,011,892 | -HS- | M] () -- C:\ProgramData\571u3e5x5428
[2012/01/11 08:21:16 | 000,011,892 | -HS- | M] () -- C:\Users\msuman\AppData\Local\571u3e5x5428
[2012/01/05 04:45:23 | 000,000,564 | ---- | M] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
[2012/01/04 20:38:59 | 000,001,666 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]
[1 C:\Users\msuman\Documents\*.tmp files -> C:\Users\msuman\Documents\*.tmp -> ]
[1 C:\Users\msuman\*.tmp files -> C:\Users\msuman\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/01/24 20:04:25 | 000,030,735 | ---- | C] () -- C:\Users\msuman\Documents\malwarebytes BKD-7362011316.pdf
[2012/01/21 21:08:55 | 000,001,889 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/01/21 21:08:54 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2012/01/13 19:51:19 | 000,000,907 | ---- | C] () -- C:\Users\msuman\Application Data\Microsoft\Internet Explorer\Quick Launch\circles Asuka Kimishima 002 - Shortcut.lnk
[2012/01/11 18:20:49 | 2110,771,200 | -HS- | C] () -- C:\hiberfil.sys
[2012/01/11 12:04:22 | 000,000,806 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012/01/11 10:48:40 | 000,000,908 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/01/11 09:33:38 | 000,002,081 | ---- | C] () -- C:\Users\msuman\Desktop\SpyHunter.lnk
[2012/01/11 07:03:09 | 000,011,892 | -HS- | C] () -- C:\Users\msuman\AppData\Local\571u3e5x5428
[2012/01/11 07:03:09 | 000,011,892 | -HS- | C] () -- C:\ProgramData\571u3e5x5428
[2012/01/04 20:38:59 | 000,001,666 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/03/24 15:51:28 | 000,000,054 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2011/03/24 15:51:28 | 000,000,039 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2011/01/16 14:34:45 | 000,000,050 | ---- | C] () -- C:\Windows\MegaManager.INI
[2011/01/06 17:10:30 | 000,000,011 | ---- | C] () -- C:\Windows\VSWizard.ini
[2010/09/22 16:01:43 | 000,010,240 | ---- | C] () -- C:\Windows\System32\vidx16.dll
[2010/08/25 19:30:02 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin
[2010/08/25 19:30:00 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin
[2010/08/25 19:30:00 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin
[2010/08/25 18:57:00 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
[2010/08/25 18:52:00 | 000,208,896 | ---- | C] () -- C:\Windows\System32\iglhsip32.dll
[2010/08/25 18:52:00 | 000,143,360 | ---- | C] () -- C:\Windows\System32\iglhcp32.dll
[2009/10/20 17:40:38 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/10/20 17:40:38 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/10/20 17:40:19 | 000,185,856 | ---- | C] () -- C:\Windows\System32\drivers\netbt.sys
[2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 14:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/03/05 17:47:02 | 000,015,688 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2009/02/16 14:01:04 | 000,061,678 | ---- | C] () -- C:\Users\msuman\AppData\Roaming\PFP100JPR.{PB
[2009/02/16 14:01:04 | 000,012,358 | ---- | C] () -- C:\Users\msuman\AppData\Roaming\PFP100JCM.{PB
[2009/02/13 20:48:41 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2009/02/06 09:53:44 | 000,017,920 | ---- | C] () -- C:\Users\msuman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/02/05 18:39:21 | 000,001,356 | ---- | C] () -- C:\Users\msuman\AppData\Local\d3d9caps.dat
[2009/01/29 00:08:29 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1545.dll
[2009/01/29 00:08:29 | 000,147,172 | ---- | C] () -- C:\Windows\System32\igfcg550.bin
[2009/01/29 00:08:29 | 000,004,608 | ---- | C] () -- C:\Windows\System32\HdmiCoin.dll
[2009/01/29 00:06:08 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/02/03 15:37:35 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2006/11/02 04:53:49 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 04:44:53 | 000,330,200 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 02:33:01 | 000,604,264 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 02:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 02:33:01 | 000,103,964 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 02:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 02:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 02:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 00:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 00:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/01 23:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/01 23:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

========== LOP Check ==========

[2012/01/22 18:08:29 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\C4EE5
[2012/01/22 18:08:40 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\E594A
[2011/05/24 19:38:00 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\PCDr
[2009/08/23 10:36:56 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\Uniblue
[2010/02/25 15:12:11 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\uTorrent
[2010/11/27 13:17:24 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\WhiteSmokeSetup
[2010/11/27 15:04:11 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\WhiteSmokeTranslator
[2012/01/23 16:47:23 | 000,000,472 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2012/01/05 04:45:23 | 000,000,564 | ---- | M] () -- C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
[2012/01/24 23:23:17 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/01/24 21:32:20 | 000,000,506 | ---- | M] () -- C:\Windows\Tasks\SystemToolsDailyTest.job

========== Purity Check ==========



========== Custom Scans ==========


< %SYSTEMDRIVE%\*.exe >

< %USERPROFILE%\..|smtmp;true;true;true /FP >


< MD5 for: EXPLORER.EXE >
[2008/10/28 22:20:29 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=37440D09DEAE0B672A04DCCF7ABF06BE -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.16771_none_4f83bb287ccdb7e3\explorer.exe
[2008/10/28 22:29:41 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=4F554999D7D5F05DAAEBBA7B5BA1089D -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18164_none_5177ca9879e978e8\explorer.exe
[2008/10/29 19:59:17 | 002,927,616 | ---- | M] (Microsoft Corporation) MD5=50BA5850147410CDE89C523AD3BC606E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.22298_none_51e4f8c7931bd1e1\explorer.exe
[2009/04/10 22:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\explorer.exe
[2009/04/10 22:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) MD5=D07D4C3038F3578FFCE1C0237F2A1253 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
[2008/10/27 18:15:02 | 002,923,520 | ---- | M] (Microsoft Corporation) MD5=E7156B0B74762D9DE0E66BDCDE06E5FB -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6000.20947_none_5033cb5995cd990b\explorer.exe
[2008/01/20 18:34:05 | 002,927,104 | ---- | M] (Microsoft Corporation) MD5=FFA764631CB70A30065C12EF8E174F9F -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6001.18000_none_51b4a71279bc6ebf\explorer.exe

< MD5 for: SVCHOST.EXE >
[2008/01/20 18:33:13 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\System32\svchost.exe
[2008/01/20 18:33:13 | 000,021,504 | ---- | M] (Microsoft Corporation) MD5=3794B461C45882E06856F282EEF025AF -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
[2011/12/24 17:50:20 | 000,182,856 | ---- | M] () MD5=B382935AB01B27D0E14F267DBF288896 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe

< MD5 for: USERINIT.EXE >
[2008/01/20 18:34:37 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\System32\userinit.exe
[2008/01/20 18:34:37 | 000,025,088 | ---- | M] (Microsoft Corporation) MD5=0E135526E9785D085BCD9AEDE6FBCBF9 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.0.6001.18000_none_dc28ba15d1aff80b\userinit.exe

< MD5 for: VOLSNAP.INF >
[2006/11/02 02:25:18 | 000,001,790 | ---- | M] () MD5=E5EE5E075DAB1367001C467C70E8C580 -- C:\Windows\inf\volsnap.inf
[2006/11/01 22:35:04 | 000,001,790 | ---- | M] () MD5=E5EE5E075DAB1367001C467C70E8C580 -- C:\Windows\System32\DriverStore\FileRepository\volsnap.inf_7eb8cdb5\volsnap.inf

< MD5 for: VOLSNAP.INF_LOC >
[2006/11/02 04:38:54 | 000,000,198 | ---- | M] () MD5=F040058B592FE682204B2FC15DDEAC0D -- C:\Windows\System32\DriverStore\en-US\volsnap.inf_loc
[2006/11/02 04:38:54 | 000,000,198 | ---- | M] () MD5=F040058B592FE682204B2FC15DDEAC0D -- C:\Windows\winsxs\x86_volsnap.inf.resources_31bf3856ad364e35_6.0.6000.16386_en-us_112c68f98452eff6\volsnap.inf_loc

< MD5 for: VOLSNAP.PNF >
[2009/01/28 21:17:42 | 000,004,940 | ---- | M] () MD5=D798A5AB52391B0379BF9362C830216D -- C:\Windows\inf\volsnap.PNF
[2009/01/28 21:17:42 | 000,004,940 | ---- | M] () MD5=EC59A0A78096C0FC3DA8BB653D1FE54D -- C:\Windows\System32\DriverStore\FileRepository\volsnap.inf_7eb8cdb5\volsnap.PNF

< MD5 for: VOLSNAP.SYS >
[2006/11/02 01:51:18 | 000,208,488 | ---- | M] (Microsoft Corporation) MD5=11EF6C1CAEF76B685233450A126125D6 -- C:\Windows\System32\DriverStore\FileRepository\volume.inf_9320b452\volsnap.sys
[2009/04/10 22:32:55 | 000,226,280 | ---- | M] (Microsoft Corporation) MD5=147281C01FCB1DF9252DE2A10D5E7093 -- C:\Windows\System32\drivers\volsnap.sys
[2009/04/10 22:32:55 | 000,226,280 | ---- | M] (Microsoft Corporation) MD5=147281C01FCB1DF9252DE2A10D5E7093 -- C:\Windows\System32\DriverStore\FileRepository\volume.inf_1e6030e4\volsnap.sys
[2009/04/10 22:32:55 | 000,226,280 | ---- | M] (Microsoft Corporation) MD5=147281C01FCB1DF9252DE2A10D5E7093 -- C:\Windows\winsxs\x86_volume.inf_31bf3856ad364e35_6.0.6002.18005_none_17a2308cf936c619\volsnap.sys
[2008/01/20 18:32:47 | 000,227,896 | ---- | M] (Microsoft Corporation) MD5=D8B4A53DD2769F226B3EB374374987C9 -- C:\Windows\System32\DriverStore\FileRepository\volume.inf_f53a1785\volsnap.sys
[2008/01/20 18:32:47 | 000,227,896 | ---- | M] (Microsoft Corporation) MD5=D8B4A53DD2769F226B3EB374374987C9 -- C:\Windows\winsxs\x86_volume.inf_31bf3856ad364e35_6.0.6001.18000_none_15b6b780fc14facd\volsnap.sys

< MD5 for: VOLSNAP.SYS.MUI >
[2008/01/20 18:35:34 | 000,032,768 | ---- | M] (Microsoft Corporation) MD5=2A3DEAD70397152006B4E3CED20B41C4 -- C:\Windows\System32\drivers\en-US\volsnap.sys.mui
[2008/01/20 18:35:34 | 000,032,768 | ---- | M] (Microsoft Corporation) MD5=2A3DEAD70397152006B4E3CED20B41C4 -- C:\Windows\winsxs\x86_volume.inf.resources_31bf3856ad364e35_6.0.6001.18000_en-us_7b264a38bff55d35\volsnap.sys.mui
[2006/11/02 04:38:59 | 000,014,848 | ---- | M] (Microsoft Corporation) MD5=F9B09F7E31E49004666C9B3EB0BEBD94 -- C:\Windows\winsxs\x86_volume.inf.resources_31bf3856ad364e35_6.0.6000.16386_en-us_78ef883cc30a4c61\volsnap.sys.mui

< MD5 for: WINLOGON.EXE >
[2009/04/10 22:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\System32\winlogon.exe
[2009/04/10 22:28:13 | 000,314,368 | ---- | M] (Microsoft Corporation) MD5=898E7C06A350D4A1A64A9EA264D55452 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
[2011/12/24 17:50:20 | 000,182,856 | ---- | M] () MD5=B382935AB01B27D0E14F267DBF288896 -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2008/01/20 18:34:38 | 000,314,880 | ---- | M] (Microsoft Corporation) MD5=C2610B6BDBEFC053BBDAB4F1B965CB24 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6001.18000_none_6fc30116d4f17bf5\winlogon.exe

< C:\Windows\assembly\tmp\U\*.* /s >

< %systemroot%\*. /mp /s >

< hklm\software\clients\startmenuinternet|command /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/01/04 13:22:56 | 000,552,464 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/01/04 13:22:56 | 000,552,464 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/01/04 13:22:56 | 000,552,464 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/01/04 13:22:53 | 000,912,856 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/01/04 13:22:53 | 000,912,856 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/01/04 13:22:53 | 000,912,856 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --show-icons [2012/01/19 21:35:36 | 001,047,024 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --hide-icons [2012/01/19 21:35:36 | 001,047,024 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --make-default-browser [2012/01/19 21:35:36 | 001,047,024 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Program Files\Google\Chrome\Application\chrome.exe" [2012/01/19 21:35:36 | 001,047,024 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2011/05/04 05:04:31 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2011/05/04 05:04:31 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2011/05/04 05:04:31 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2011/05/04 05:04:33 | 000,748,336 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/05/04 05:04:33 | 000,748,336 | ---- | M] (Microsoft Corporation)

< hklm\software\clients\startmenuinternet|command /64 /rs >
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\HideIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /HideShortcuts [2012/01/04 13:22:56 | 000,552,464 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ShowIconsCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /ShowShortcuts [2012/01/04 13:22:56 | 000,552,464 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\InstallInfo\\ReinstallCommand: "C:\Program Files\Mozilla Firefox\uninstall\helper.exe" /SetAsDefaultAppGlobal [2012/01/04 13:22:56 | 000,552,464 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\open\command\\: C:\Program Files\Mozilla Firefox\firefox.exe [2012/01/04 13:22:53 | 000,912,856 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\properties\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -preferences [2012/01/04 13:22:53 | 000,912,856 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\FIREFOX.EXE\shell\safemode\command\\: "C:\Program Files\Mozilla Firefox\firefox.exe" -safe-mode [2012/01/04 13:22:53 | 000,912,856 | ---- | M] (Mozilla Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ShowIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --show-icons [2012/01/19 21:35:36 | 001,047,024 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\HideIconsCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --hide-icons [2012/01/19 21:35:36 | 001,047,024 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\InstallInfo\\ReinstallCommand: "C:\Program Files\Google\Chrome\Application\chrome.exe" --make-default-browser [2012/01/19 21:35:36 | 001,047,024 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\Google Chrome\shell\open\command\\: "C:\Program Files\Google\Chrome\Application\chrome.exe" [2012/01/19 21:35:36 | 001,047,024 | ---- | M] (Google Inc.)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\HideIconsCommand: "C:\Windows\system32\ie4uinit.exe" -hide [2011/05/04 05:04:31 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ShowIconsCommand: "C:\Windows\system32\ie4uinit.exe" -show [2011/05/04 05:04:31 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\InstallInfo\\ReinstallCommand: "C:\Windows\system32\ie4uinit.exe" -reinstall [2011/05/04 05:04:31 | 000,074,240 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\naom\command\\: "C:\Program Files\Internet Explorer\iexplore.exe" -extoff [2011/05/04 05:04:33 | 000,748,336 | ---- | M] (Microsoft Corporation)
HKEY_LOCAL_MACHINE\software\clients\startmenuinternet\IEXPLORE.EXE\shell\open\command\\: C:\Program Files\Internet Explorer\iexplore.exe [2011/05/04 05:04:33 | 000,748,336 | ---- | M] (Microsoft Corporation)

========== Hard Links - Junction Points - Mount Points - Symbolic Links ==========
[C:\Windows\$NtUninstallKB40719$] -> Error: Cannot create file handle -> Unknown point type

========== Alternate Data Streams ==========

@Alternate Data Stream - 641 bytes -> C:\Users\msuman\Documents\bookmarks.eml:OECustomProperty

< End of report >

[knarf1]

OTL Extras logfile created on: 1/25/2012 6:30:55 AM - Run 1
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\msuman\Downloads
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.97 Gb Total Physical Memory | 0.56 Gb Available Physical Memory | 28.57% Memory free
4.17 Gb Paging File | 2.58 Gb Available in Paging File | 61.83% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222.78 Gb Total Space | 121.58 Gb Free Space | 54.58% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 5.74 Gb Free Space | 57.44% Space Free | Partition Type: NTFS
Unable to calculate disk information.

Computer Name: MSUMAN-PC | User Name: msuman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.)

[HKEY_USERS\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htafile [open] -- "%1" %*
http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"AntiVirusOverride" = 1
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"VistaSp2" = Reg Error: Unknown registry data type -- File not found

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
"DoNotAllowExceptions" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 0
"DisableNotifications" = 0
"DoNotAllowExceptions" = 0

========== Authorized Applications List ==========


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{01A9E595-9EEB-47B2-8835-DBE9D24CFDE1}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe |
"{06A07BFC-ED1B-4B12-951A-AA9F9FB020A8}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\powerdvd.exe |
"{07E69D69-0E28-48B6-A7E9-63011F6C433A}" = dir=in | app=c:\program files\itunes\itunes.exe |
"{2D5E0B9A-832B-49AE-A06B-2E5603BBB706}" = protocol=17 | dir=in | app=c:\program files\symantec\symantec endpoint protection\snac.exe |
"{4A718288-8287-4FDC-B257-F09B692BBE2B}" = protocol=6 | dir=in | app=c:\program files\mcafee\managed virusscan\agent\myagtsvc.exe |
"{5CB0C02A-C9B5-4B3E-862B-B2BD736D4209}" = protocol=17 | dir=in | app=c:\program files\common files\symantec shared\ccapp.exe |
"{7A4B61A4-097A-4BDA-B8A3-AAE01247FAF8}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{8EB609F6-7E5A-4CFE-8855-96121EED57D1}" = protocol=6 | dir=in | app=c:\program files\symantec\symantec endpoint protection\smc.exe |
"{A976ED90-490A-4CAD-A2BC-5EC567060B56}" = protocol=17 | dir=in | app=c:\program files\mcafee\managed virusscan\agent\myagtsvc.exe |
"{C1E07621-2A06-49D4-ADE4-3D5D3BF4AF3F}" = protocol=6 | dir=in | app=c:\program files\common files\symantec shared\ccapp.exe |
"{D0058D36-C3BF-4190-8667-91AC92B2A930}" = protocol=17 | dir=in | app=c:\program files\symantec\symantec endpoint protection\smc.exe |
"{D843A527-CFAD-4748-A268-037035E88F83}" = dir=in | app=c:\program files\cyberlink\powerdvd dx\pdvddxsrv.exe |
"{F4911030-B414-454C-A905-D44C8655FB6C}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe |
"{F7691B16-B1C7-4EC4-B8F2-C1053EABEE37}" = protocol=6 | dir=in | app=c:\program files\symantec\symantec endpoint protection\snac.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR
"{0090A87C-3E0E-43D4-AA71-A71B06563A4A}" = Dell Support Center
"{07159635-9DFE-4105-BFC0-2817DB540C68}" = Roxio Activation Module
"{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer
"{1C7CC8E2-CFCF-41E6-A863-7C7A45CE8A78}" = SpyHunter
"{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer
"{26A24AE4-039D-4CA4-87B4-2F83216023FF}" = Java™ 6 Update 24
"{28C2DED6-325B-4CC7-983A-1777C8F7FBAB}" = RealUpgrade 1.1
"{3248F0A8-6813-11D6-A77B-00B0D0160070}" = Java™ 6 Update 7
"{343666E2-A059-48AC-AD67-230BF74E2DB2}" = Apple Application Support
"{37F964E4-9C3F-4066-B933-1747D3AC6737}" = Personal Entertainment Launcher
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{62230596-37E5-4618-A329-0D21F529A86F}" = Browser Address Error Redirector
"{66A9D30D-1464-4C7F-B2F3-507DADAF2595}" = Microsoft IntelliPoint 6.3
"{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD
"{6B4AD1A9-E73A-4184-9D6B-072F8A3C5EBA}" = VoiceOver Kit
"{6B7B6D4D-8F9B-4CB3-8CA4-BCA9CC4C1A22}" = EDocs
"{75685CA8-0B74-45BB-9C64-744A0FB79EDC}" = Business Tools Launcher
"{7770E71B-2D43-4800-9CB3-5B6CAAEBEBEA}" = RealNetworks - Microsoft Visual C++ 2008 Runtime
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{79155F2B-9895-49D7-8612-D92580E0DE5B}" = Bonjour
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{7DB9F1E5-9ACB-410D-A7DC-7A3D023CE045}" = Dell Getting Started Guide
"{8153ED9A-C94A-426E-9880-5E6775C08B62}" = Apple Mobile Device Support
"{83FFCFC7-88C6-41C6-8752-958A45325C82}" = Roxio Creator Audio
"{84B70C16-7032-41EE-965C-3C8D9D566CBB}" = Symantec Endpoint Protection
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8D337F77-BE7F-41A2-A7CB-D5A63FD7049B}" = Sonic CinePlayer Decoder Pack
"{9068B2BE-D93A-4C0A-861C-5E35E2C0E09E}" = Intel® Matrix Storage Manager
"{90850409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003
"{911B0409-6000-11D3-8CFE-0050048383C9}" = Microsoft Word 2002
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{A1B7B9B3-E1D2-41CA-9B4A-F18DC2710704}" = Microsoft Works 6.0
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.0
"{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0
"{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy
"{B7DBF6E8-0D17-4BE4-853B-ACD6EFBD4A1F}" = iTunes
"{B8ABB25D-1E30-4ED7-A3CE-0F8BED439647}" = Product Support Launcher
"{BD3DCAB0-3FE5-44FB-90DA-EFB0A2CD1387}" = Works Synchronization
"{C3A439E4-7303-491F-A678-CEA36A87D517}" = Microsoft Works Suite Add-in for Microsoft Word
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DC19E750-988B-4005-A355-85EF66055EFE}" = Works Suite OS Pack
"{DED53B0B-B67C-4244-AE6A-D6FD3C28D1EF}" = Ad-Aware
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729)
"{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01
"Ad-Aware" = Ad-Aware
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"CCleaner" = CCleaner
"com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com
"Dell Support Center" = Dell Support Center
"Google Chrome" = Google Chrome
"Google Desktop" = Google Desktop
"HDMI" = Intel® Graphics Media Accelerator Driver
"LiveUpdate" = LiveUpdate 3.3 (Symantec Corporation)
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.60.0.1800
"McAfee Security Scan" = McAfee Security Scan Plus
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox (3.6.25)" = Mozilla Firefox (3.6.25)
"RealPlayer 12.0" = RealPlayer
"WinRAR archiver" = WinRAR 4.00 (32-bit)
"Works2002Setup" = Microsoft Works 2002 Setup Launcher
"Yahoo! Mail" = AT&T Yahoo! Internet Mail
"YInstHelper" = Yahoo! Install Manager

========== HKEY_USERS Uninstall List ==========

[HKEY_USERS\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 1/24/2012 10:27:40 PM | Computer Name = msuman-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 1/24/2012 10:27:40 PM | Computer Name = msuman-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 1014

Error - 1/24/2012 10:27:40 PM | Computer Name = msuman-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 1014

Error - 1/24/2012 10:27:42 PM | Computer Name = msuman-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: Continuously busy for more than a second

Error - 1/24/2012 10:27:42 PM | Computer Name = msuman-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledEvent 3198

Error - 1/24/2012 10:27:42 PM | Computer Name = msuman-PC | Source = Bonjour Service | ID = 100
Description = Task Scheduling Error: m->NextScheduledSPRetry 3198

Error - 1/25/2012 1:13:33 AM | Computer Name = msuman-PC | Source = Application Error | ID = 1000
Description = Faulting application ping.exe, version 6.0.6001.18000, time stamp
0x47919130, faulting module Flash11c.ocx, version 11.0.1.152, time stamp 0x4e7d1782,
exception code 0xc0000005, fault offset 0x00463eb7, process id 0xd74, application
start time 0x01ccdb1f7494b2a8.

Error - 1/25/2012 1:32:29 AM | Computer Name = msuman-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/25/2012 2:27:38 AM | Computer Name = msuman-PC | Source = WinMgmt | ID = 10
Description =

Error - 1/25/2012 10:07:10 AM | Computer Name = msuman-PC | Source = WinMgmt | ID = 10
Description =

[ System Events ]
Error - 1/25/2012 2:27:38 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 1/25/2012 2:27:38 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 1/25/2012 2:27:38 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 1/25/2012 2:27:38 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7000
Description =

Error - 1/25/2012 10:07:10 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7023
Description =

Error - 1/25/2012 10:07:10 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 1/25/2012 10:07:10 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 1/25/2012 10:07:10 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 1/25/2012 10:07:10 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7003
Description =

Error - 1/25/2012 10:07:10 AM | Computer Name = msuman-PC | Source = Service Control Manager | ID = 7000
Description =


< End of report >

[knarf1]

aswMBR version 0.9.9.1509 Copyright© 2011 AVAST Software
Run date: 2012-01-25 07:05:31
-----------------------------
07:05:31.717 OS Version: Windows 6.0.6002 Service Pack 2
07:05:31.717 Number of processors: 2 586 0x1706
07:05:31.717 ComputerName: MSUMAN-PC UserName: msuman
07:05:34.213 Initialize success
07:06:16.711 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
07:06:16.711 Disk 0 Vendor: ST325031 4.AD Size: 238418MB BusType: 3
07:06:16.742 Disk 0 MBR read successfully
07:06:16.742 Disk 0 MBR scan
07:06:16.742 Disk 0 Windows VISTA default MBR code
07:06:16.742 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 54 MB offset 63
07:06:16.758 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 10240 MB offset 112640
07:06:16.773 Disk 0 Partition 3 80 (A) 07 HPFS/NTFS NTFS 228122 MB offset 21084160
07:06:16.789 Disk 0 scanning sectors +488278016
07:06:16.867 Disk 0 scanning C:\Windows\system32\drivers
07:06:25.057 Service scanning
07:06:26.071 Service SysPlant C:\Windows\SYSTEM32\Drivers\SysPlant.sys **LOCKED** 32
07:06:26.086 Service Teefer2 C:\Windows\system32\DRIVERS\teefer2.sys **LOCKED** 32
07:06:26.133 Service WPS C:\Windows\system32\drivers\wpsdrvnt.sys **LOCKED** 32
07:06:26.648 Service WpsHelper C:\Windows\system32\drivers\WpsHelper.sys **LOCKED** 32
07:06:27.163 Modules scanning
07:06:32.701 Module: C:\Windows\System32\DRIVERS\netbt.sys **SUSPICIOUS**
07:06:36.304 Disk 0 trace - called modules:
07:06:36.336 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x879eeff0]<<
07:06:36.336 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8614f888]
07:06:36.351 3 CLASSPNP.SYS[883a98b3] -> nt!IofCallDriver -> [0x879bc998]
07:06:36.351 \Driver\00001247[0x879bcad0] -> IRP_MJ_CREATE -> 0x879eeff0
07:06:36.367 Scan finished successfully
07:07:35.647 Disk 0 MBR has been saved successfully to "C:\Users\msuman\Desktop\MBR.dat"
07:07:35.928 The log file has been saved successfully to "C:\Users\msuman\Desktop\aswMBR.txt"

[knarf1]

Please note that the FixMBR button is available, but the FIX button is not.

Many thanks, Homburg!

Edited by knarf1, 25 January 2012 - 11:45 AM.

[Homburg]

Hi,

You have a nasty rootkit there, please do the following:


Step 1:


Download RogueKiller to your desktop

• Quit all running programs
• For Vista/Seven, right click -> run as administrator, for XP simply run RogueKiller.exe
• When prompted, type 1 and validate
• The RKreport.txt shall be generated next to the executable.
• If the program is blocked, do not hesitate to try several times. If it really does not work (it could happen), rename it to winlogon.exe

Please post the contents of the RKreport.txt in your next Reply.


Step 2:

Run OTL

• Under the Custom Scans/Fixes box at the bottom, paste in the following
  
  

  :OTL
  [2012/01/11 08:21:19 | 000,011,892 | -HS- | M] () -- C:\ProgramData\571u3e5x5428
  [2012/01/11 08:21:16 | 000,011,892 | -HS- | M] () -- C:\Users\msuman\AppData\Local\571u3e5x5428
  
  :Services
  
  :Reg
  
  :Files
  ipconfig /flushdns /c
  C:\ProgramData\571u3e5x5428
  C:\Users\msuman\AppData\Local\571u3e5x5428
  
  :Commands
  [emptytemp]
  [EMPTYFLASH]
  [CREATERESTOREPOINT]
  [Reboot]

• Then click the Run Fix button at the top
• Let the program run unhindered, reboot the PC when it is done and post the fix log
• Open OTL again
• Select All users
• Click the Quick Scan button. Post the log it produces in your next reply.

Step 3:

For this step you MUST disable your Norton antivirus, SpyBot and also MalwareBytes.

Download ComboFix from one of these locations:

Link 1
Link 2
Link 3

* IMPORTANT !!! Save ComboFix.exe to your Desktop

• Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with the running of ComboFix. Instructions on disabling these type of programs can be found here
• Double click on ComboFix.exe & follow the prompts.
• Accept the disclaimer and allow to update if it asks.

Important:

1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.

When finished, it shall produce a log for you. Please include the C:\ComboFix.txt in your next reply.


Step 4:

Download the latest version of TDSSKiller from here and save it to your Desktop.

• Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
  
  
  
• Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.
  
  
  
• Click the Start Scan button.
  
  
  
• If a suspicious object is detected, the default action will be Skip, click on Continue.
  
  
  
• If malicious objects are found, they will show in the Scan results and offer three (3) options.
• Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
  
  
  
• Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.

Please remember to post:

RogueKiller log
OTL fix log
New OTL QuickScan log
ComboFix.txt log
TDSSkiller log

[knarf1]

RogueKiller V6.2.4 [01/12/2012] by Tigzy
mail: tigzyRK<at>gmail<dot>com
Feedback: http://www.geekstogo...13-roguekiller/
Blog: http://tigzyrk.blogspot.com

Operating System: Windows Vista (6.0.6002 Service Pack 2) 32 bits version
Started in : Normal mode
User: msuman [Admin rights]
Mode: Scan -- Date : 01/25/2012 19:13:18

¤¤¤ Bad processes: 0 ¤¤¤

¤¤¤ Registry Entries: 3 ¤¤¤
[PROXY IE] HKCU\[...]\Internet Settings : ProxyEnable (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND
[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver: [LOADED] ¤¤¤
SSDT[210] : NtProtectVirtualMemory @ 0x824512DD -> HOOKED (\??\C:\Windows\system32\drivers\wpsdrvnt.sys @ 0x8D1A3B90)

¤¤¤ Infection : ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
127.0.0.1 localhost
::1 localhost


¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: +++++
--- User ---
[MBR] 4c430131326b24cfa022fa43a67902be
[BSP] 5114e3fd9951cb2acb33983720a9f917 : Windows Vista MBR Code
Partition table:
0 - [XXXXXX] FAT16 [HIDDEN!] Offset (sectors): 63 | Size: 57 Mo
1 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 112640 | Size: 10737 Mo
2 - [ACTIVE] NTFS [VISIBLE] Offset (sectors): 21084160 | Size: 239203 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: +++++
--- User ---
[MBR] 7e91472cf6759fbe214f0a7067217200
[BSP] 64884cf4f9b3a48ec6de01dd6cb30ee6 : Windows XP MBR Code
Partition table:
0 - [XXXXXX] NTFS [VISIBLE] Offset (sectors): 2048 | Size: 1000200 Mo
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[1].txt >>
RKreport[1].txt

[knarf1]

All processes killed
========== OTL ==========
File C:\ProgramData\571u3e5x5428 not found.
File C:\Users\msuman\AppData\Local\571u3e5x5428 not found.
========== SERVICES/DRIVERS ==========
========== REGISTRY ==========
========== FILES ==========
< ipconfig /flushdns /c >
Windows IP Configuration
Successfully flushed the DNS Resolver Cache.
C:\Users\msuman\Downloads\cmd.bat deleted successfully.
C:\Users\msuman\Downloads\cmd.txt deleted successfully.
File\Folder C:\ProgramData\571u3e5x5428 not found.
File\Folder C:\Users\msuman\AppData\Local\571u3e5x5428 not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: McAfeeMVSUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: msuman
->Temp folder emptied: 1289993 bytes
->Temporary Internet Files folder emptied: 117713963 bytes
->Java cache emptied: 4662 bytes
->FireFox cache emptied: 47649671 bytes
->Google Chrome cache emptied: 0 bytes
->Flash cache emptied: 2032 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 180382 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 3134279 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 162.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: McAfeeMVSUser

User: msuman
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb



OTL by OldTimer - Version 3.2.31.0 log created on 01252012_194923

Files\Folders moved on Reboot...
C:\Users\msuman\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\B5V5DCQJ\fastbutton[1].htm moved successfully.
C:\Users\msuman\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\ED8654D5-B9F0-4DD9-B3E8-F8F560086FDF.dat moved successfully.
C:\Users\msuman\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\MSIMGSIZ.DAT moved successfully.

Registry entries deleted on Reboot...

[knarf1]

OTL logfile created on: 1/25/2012 8:11:45 PM - Run 2
OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\msuman\Downloads
Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

1.97 Gb Total Physical Memory | 0.84 Gb Available Physical Memory | 42.51% Memory free
4.17 Gb Paging File | 2.80 Gb Available in Paging File | 67.19% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 222.78 Gb Total Space | 120.31 Gb Free Space | 54.01% Space Free | Partition Type: NTFS
Drive D: | 10.00 Gb Total Space | 5.74 Gb Free Space | 57.44% Space Free | Partition Type: NTFS
Unable to calculate disk information.
Drive F: | 2794.52 Gb Total Space | 2367.15 Gb Free Space | 84.71% Space Free | Partition Type: NTFS
Drive G: | 931.51 Gb Total Space | 380.13 Gb Free Space | 40.81% Space Free | Partition Type: NTFS

Computer Name: MSUMAN-PC | User Name: msuman | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/01/25 06:20:17 | 000,584,192 | ---- | M] (OldTimer Tools) -- C:\Users\msuman\Downloads\OTL.exe
PRC - [2011/12/24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2011/12/24 17:50:18 | 000,460,872 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2011/11/04 19:48:26 | 000,273,528 | ---- | M] (RealNetworks, Inc.) -- C:\Program Files\Real\RealPlayer\Update\realsched.exe
PRC - [2011/10/19 08:31:51 | 000,247,968 | ---- | M] (Adobe Systems, Inc.) -- C:\Windows\System32\Macromed\Flash\FlashUtil11c_ActiveX.exe
PRC - [2011/10/10 18:30:40 | 000,736,672 | ---- | M] (Enigma Software Group USA, LLC.) -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe
PRC - [2010/12/03 05:14:55 | 000,108,392 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe
PRC - [2010/12/03 05:14:50 | 000,115,560 | ---- | M] (Symantec Corporation) -- C:\Program Files\Common Files\Symantec Shared\ccApp.exe
PRC - [2010/12/03 05:14:41 | 001,893,728 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe
PRC - [2010/12/03 05:14:41 | 001,459,568 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe
PRC - [2010/12/03 05:14:39 | 001,839,776 | ---- | M] (Symantec Corporation) -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe
PRC - [2009/09/27 15:47:17 | 000,640,760 | ---- | M] () -- C:\Program Files\Lavasoft\Ad-Aware\AAWWSC.exe
PRC - [2009/04/10 22:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2009/03/05 15:07:20 | 002,260,480 | -HS- | M] (Safer-Networking Ltd.) -- C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
PRC - [2008/08/18 22:19:38 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTSrv.exe
PRC - [2008/07/20 14:45:06 | 000,354,840 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe


========== Modules (No Company Name) ==========

MOD - [2011/06/24 21:56:36 | 000,087,328 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\zlib1.dll
MOD - [2011/06/24 21:56:14 | 001,241,888 | ---- | M] () -- C:\Program Files\Common Files\Apple\Apple Application Support\libxml2.dll
MOD - [2010/09/20 16:19:13 | 000,034,816 | ---- | M] () -- C:\Program Files\Google\Google Desktop Search\gzlib.dll
MOD - [2009/04/10 22:28:22 | 000,223,232 | ---- | M] () -- \\?\globalroot\systemroot\system32\mswsock.dll
MOD - [2009/04/10 22:28:22 | 000,223,232 | ---- | M] () -- \\.\globalroot\systemroot\system32\mswsock.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- -- (sprtsvc_dellsupportcenter) SupportSoft Sprocket Service (dellsupportcenter)
SRV - [2011/12/24 17:50:18 | 000,652,872 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2011/10/10 18:30:40 | 000,736,672 | ---- | M] (Enigma Software Group USA, LLC.) [Auto | Running] -- C:\Program Files\Enigma Software Group\SpyHunter\SH4Service.exe -- (SpyHunter 4 Service)
SRV - [2011/06/10 07:40:04 | 001,036,104 | ---- | M] (Lavasoft) [Auto | Stopped] -- C:\Program Files\Lavasoft\Ad-Aware\AAWService.exe -- (Lavasoft Ad-Aware Service)
SRV - [2010/12/03 05:14:55 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccSetMgr)
SRV - [2010/12/03 05:14:55 | 000,108,392 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe -- (ccEvtMgr)
SRV - [2010/12/03 05:14:41 | 001,893,728 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe -- (SmcService)
SRV - [2010/12/03 05:14:39 | 001,839,776 | ---- | M] (Symantec Corporation) [Auto | Running] -- C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe -- (Symantec AntiVirus)
SRV - [2010/12/03 05:14:39 | 000,357,744 | ---- | M] (Symantec Corporation) [Disabled | Stopped] -- C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE -- (SNAC)
SRV - [2010/09/07 16:05:51 | 003,093,880 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_3.EXE -- (LiveUpdate)
SRV - [2010/09/02 22:45:02 | 000,227,232 | ---- | M] (McAfee, Inc.) [On_Demand | Stopped] -- C:\Program Files\McAfee Security Scan\2.1.121\McCHSvc.exe -- (McComponentHostService)
SRV - [2009/01/26 15:31:10 | 001,153,368 | ---- | M] (Safer Networking Ltd.) [Auto | Stopped] -- C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe -- (SBSDWSCService)
SRV - [2008/08/18 22:19:38 | 000,081,920 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\AERTSrv.exe -- (AERTFilters)
SRV - [2008/07/20 14:45:06 | 000,354,840 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTmon.exe -- (IAANTMON) Intel®


========== Driver Services (SafeList) ==========

DRV - [2011/12/10 15:24:06 | 000,020,464 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2011/11/15 12:05:24 | 001,576,312 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20120125.018\NAVEX15.SYS -- (NAVEX15)
DRV - [2011/11/15 12:05:24 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl)
DRV - [2011/11/15 12:05:24 | 000,106,104 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv)
DRV - [2011/11/15 12:05:24 | 000,086,136 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\ProgramData\Symantec\Definitions\VirusDefs\20120125.018\NAVENG.SYS -- (NAVENG)
DRV - [2011/06/22 19:05:28 | 000,167,936 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\wpshelper.sys -- (WpsHelper)
DRV - [2010/12/03 05:22:43 | 000,125,488 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\SYMEVENT.SYS -- (SymEvent)
DRV - [2010/12/03 05:14:57 | 000,320,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\srtspl.sys -- (SRTSPL)
DRV - [2010/12/03 05:14:57 | 000,043,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\WPSDRVnt.sys -- (WPS)
DRV - [2010/12/03 05:14:57 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\srtspx.sys -- (SRTSPX)
DRV - [2010/12/03 05:14:56 | 000,284,720 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\srtsp.sys -- (SRTSP)
DRV - [2010/12/03 05:14:42 | 000,099,696 | ---- | M] (Symantec Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\SYSTEM32\Drivers\SysPlant.sys -- (SysPlant)
DRV - [2010/12/03 05:14:42 | 000,067,472 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Teefer2.sys -- (Teefer2)
DRV - [2010/12/03 05:14:34 | 000,421,424 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv)
DRV - [2009/10/06 19:12:40 | 000,188,080 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Windows\System32\Drivers\SYMTDI.SYS -- (SYMTDI)
DRV - [2009/10/06 19:12:40 | 000,026,416 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\Drivers\SYMREDRV.SYS -- (SYMREDRV)
DRV - [2009/05/02 15:48:17 | 000,064,160 | ---- | M] (Lavasoft AB) [File_System | Boot | Running] -- C:\Windows\system32\DRIVERS\Lbd.sys -- (Lbd)
DRV - [2009/04/10 20:45:37 | 000,185,856 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\drivers\netbt.sys -- (netbt)
DRV - [2008/12/23 03:47:52 | 000,138,240 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169)
DRV - [2008/08/26 09:55:14 | 000,112,128 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\IntcHdmi.sys -- (IntcHdmiAddService) Intel®
DRV - [2008/08/18 23:03:28 | 000,079,960 | ---- | M] (JMicron Technology Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\jraid.sys -- (JRAID)
DRV - [2008/07/30 17:42:12 | 000,023,888 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\COH_Mon.sys -- (COH_Mon)
DRV - [2008/06/10 12:04:26 | 000,033,352 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\point32k.sys -- (Point32)
DRV - [2008/01/20 18:32:51 | 000,220,672 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express) Intel®
DRV - [2006/11/01 23:36:43 | 002,028,032 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\atikmdag.sys -- (R300)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========



IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://partnerpage.g...smb&ibd=4090129
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = Preserve
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.bing.com/
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = http://partnerpage.g...smb&ibd=4090129
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 1
IE - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:14.0.7
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..network.proxy.http: "127.0.0.1"
FF - prefs.js..network.proxy.http_port: 59273

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprjplug;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpchromebrowserrecordext;version=12.0.1.669: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprphtml5videoshim;version=12.0.1.669: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=12.0.1.669: c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKLM\Software\MozillaPlugins\[email protected]/YahooActiveXPluginBridge;version=1.0.0.1: C:\Program Files\Yahoo!\Common\npyaxmpb.dll File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2012/01/11 08:30:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.25\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/01/04 13:22:58 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 3.6.25\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012/01/21 21:08:54 | 000,000,000 | ---D | M]

[2011/01/14 18:40:14 | 000,000,000 | ---D | M] (No name found) -- C:\Users\msuman\AppData\Roaming\Mozilla\Extensions
[2012/01/25 07:31:19 | 000,000,000 | ---D | M] (No name found) -- C:\Users\msuman\AppData\Roaming\Mozilla\Firefox\Profiles\huiexf3r.default\extensions
[2011/02/24 16:46:54 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\msuman\AppData\Roaming\Mozilla\Firefox\Profiles\huiexf3r.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012/01/22 08:22:49 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2011/01/30 12:48:03 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011/03/21 03:02:35 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2012/01/11 08:30:28 | 000,000,000 | ---D | M] (RealPlayer Browser Record Plugin) -- C:\PROGRAMDATA\REAL\REALPLAYER\BROWSERRECORDPLUGIN\FIREFOX\EXT
[2011/02/02 20:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms}
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\16.0.912.75\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dll
CHR - plugin: Java Deployment Toolkit 6.0.240.7 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npdeployJava1.dll
CHR - plugin: Java™ Platform SE 6 U24 (Enabled) = C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll
CHR - plugin: RealPlayer™ G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
CHR - plugin: RealPlayer™ HTML5VideoShim Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
CHR - plugin: QuickTime Plug-in 7.7.1 (Enabled) = C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
CHR - plugin: RealJukebox NS Plugin (Enabled) = C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.79\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
CHR - plugin: iTunes Application Detector (Enabled) = C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
CHR - plugin: RealNetworks™ Chrome Background Extension Plug-In (32-bit) (Enabled) = C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprpchromebrowserrecordext.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Default Plug-in (Enabled) = default_plugin
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\msuman\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.3_0\
CHR - Extension: RealPlayer HTML5Video Downloader Extension = C:\Users\msuman\AppData\Local\Google\Chrome\User Data\Default\Extensions\jfmjfhklogoienhpfnppmbcbjfjnkonk\1.5_0\

Hosts file not found
O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - C:\ProgramData\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
O3 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\..\Toolbar\WebBrowser: (no name) - {A26503FE-B3B8-4910-A9DC-9CBD25C6B8D6} - No CLSID value found.
O3 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [Ad-Watch] C:\Program Files\Lavasoft\Ad-Aware\AAWTray.exe (Lavasoft)
O4 - HKLM..\Run: [APSDaemon] C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [ccApp] C:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation)
O4 - HKLM..\Run: [Malwarebytes' Anti-Malware] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe (Malwarebytes Corporation)
O4 - HKLM..\Run: [TkBellExe] c:\program files\real\realplayer\Update\realsched.exe (RealNetworks, Inc.)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001..\Run: [Microsoft Works Update Detection] C:\Program Files\Microsoft Works\WkDetect.exe File not found
O4 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001..\Run: [SpybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe (Safer-Networking Ltd.)
O4 - HKU\.DEFAULT..\RunOnce: [AutoLaunch] C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe ()
O4 - HKU\S-1-5-18..\RunOnce: [AutoLaunch] C:\Program Files\Lavasoft\Ad-Aware\AutoLaunch.exe ()
O8 - Extra context menu item: Google Sidewiki... - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_950DF09FAB501E03.dll/cmsidewiki.html File not found
O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Inc.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000012 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000013 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000015 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000016 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000017 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O10 - Protocol_Catalog9\Catalog_Entries\000000000018 - C:\Program Files\Bonjour\mdnsNSP.dll File not found
O13 - gopher Prefix: missing
O15 - HKU\.DEFAULT\..Trusted Ranges: GD ([http] in Local intranet)
O15 - HKU\S-1-5-18\..Trusted Ranges: GD ([http] in Local intranet)
O15 - HKU\S-1-5-21-1740862935-1246708322-3228964381-1001\..Trusted Domains: localhost ([]http in Local intranet)
O16 - DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx...owserPlugin.cab (Reg Error: Key error.)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.ma...r/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_07)
O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_24)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9EF48691-42FF-4A13-8013-5A1CC8DE2354}: DhcpNameServer = 192.168.1.254
O20 - AppInit_DLLs: (C:\PROGRA~1\Google\GOOGLE~3\GOEC62~1.DLL) -C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll (Google)
O20 - HKLM Winlogon: Shell - (explorer.exe) -C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\Userinit.exe) -C:\Windows\System32\userinit.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Users\msuman\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O24 - Desktop BackupWallPaper: C:\Users\msuman\AppData\Roaming\Microsoft\Windows Photo Gallery\Windows Photo Gallery Wallpaper.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006/09/18 13:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2011/03/22 17:13:38 | 000,000,000 | RH-D | M] - F:\autorun -- [ NTFS ]
O32 - AutoRun File - [2002/10/16 04:56:50 | 000,000,036 | RH-- | M] () - F:\autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010/07/09 19:48:54 | 000,000,000 | RH-D | M] - G:\autorun -- [ NTFS ]
O32 - AutoRun File - [2002/10/16 04:56:50 | 000,000,036 | RH-- | M] () - G:\autorun.inf -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (lsdelete)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/01/25 19:18:51 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/01/25 19:11:12 | 000,000,000 | ---D | C] -- C:\Users\msuman\Desktop\RK_Quarantine
[2012/01/23 07:49:56 | 000,000,000 | ---D | C] -- C:\Windows\Minidump
[2012/01/22 18:08:40 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Roaming\E594A
[2012/01/22 18:08:29 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Roaming\C4EE5
[2012/01/22 18:08:22 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Local\SanctionedMedia
[2012/01/21 21:07:35 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2012/01/11 12:04:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012/01/11 12:04:21 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2012/01/11 10:47:30 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Roaming\Malwarebytes
[2012/01/11 10:47:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2012/01/11 10:47:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/01/11 10:47:19 | 000,020,464 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/01/11 10:47:19 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/01/11 09:33:37 | 000,000,000 | ---D | C] -- C:\Users\msuman\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\SpyHunter
[2012/01/11 09:33:37 | 000,000,000 | ---D | C] -- C:\sh4ldr
[2012/01/11 09:33:37 | 000,000,000 | ---D | C] -- C:\Program Files\Enigma Software Group
[2012/01/11 09:33:24 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2012/01/11 09:16:34 | 000,000,000 | ---D | C] -- C:\ProgramData\TEMP
[2012/01/04 20:38:58 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\iTunes
[2012/01/04 20:37:49 | 000,000,000 | ---D | C] -- C:\Program Files\iPod
[2012/01/04 20:37:40 | 000,000,000 | ---D | C] -- C:\Program Files\iTunes
[2010/08/25 18:59:08 | 000,004,096 | ---- | C] ( ) -- C:\Windows\System32\IGFXDEVLib.dll
[1 C:\Users\msuman\Documents\*.tmp files -> C:\Users\msuman\Documents\*.tmp -> ]
[1 C:\Users\msuman\*.tmp files -> C:\Users\msuman\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/01/25 20:06:33 | 000,000,054 | ---- | M] () -- C:\Windows\System32\rp_stats.dat
[2012/01/25 20:06:33 | 000,000,039 | ---- | M] () -- C:\Windows\System32\rp_rules.dat
[2012/01/25 20:06:25 | 000,000,882 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2012/01/25 20:06:17 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2012/01/25 20:06:17 | 000,003,616 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2012/01/25 20:06:12 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/01/25 20:06:07 | 2110,771,200 | -HS- | M] () -- C:\hiberfil.sys
[2012/01/25 19:18:55 | 000,111,872 | ---- | M] () -- C:\Windows\System32\drivers\TrueSight.sys
[2012/01/25 18:26:13 | 000,000,886 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2012/01/25 18:12:44 | 000,000,506 | ---- | M] () -- C:\Windows\tasks\SystemToolsDailyTest.job
[2012/01/25 07:07:35 | 000,000,512 | ---- | M] () -- C:\Users\msuman\Desktop\MBR.dat
[2012/01/25 06:29:13 | 000,001,973 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2012/01/24 20:04:26 | 000,030,735 | ---- | M] () -- C:\Users\msuman\Documents\malwarebytes BKD-7362011316.pdf
[2012/01/23 16:47:23 | 000,000,472 | ---- | M] () -- C:\Windows\tasks\Ad-Aware Update (Weekly).job
[2012/01/21 21:43:30 | 000,604,264 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/01/21 21:43:30 | 000,103,964 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/01/21 21:08:55 | 000,001,889 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/01/13 19:51:19 | 000,000,907 | ---- | M] () -- C:\Users\msuman\Application Data\Microsoft\Internet Explorer\Quick Launch\circles Asuka Kimishima 002 - Shortcut.lnk
[2012/01/12 17:08:30 | 000,001,356 | ---- | M] () -- C:\Users\msuman\AppData\Local\d3d9caps.dat
[2012/01/11 12:04:22 | 000,000,806 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012/01/11 10:48:40 | 000,000,908 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/01/11 09:33:38 | 000,002,081 | ---- | M] () -- C:\Users\msuman\Desktop\SpyHunter.lnk
[2012/01/05 04:45:23 | 000,000,564 | ---- | M] () -- C:\Windows\tasks\PCDoctorBackgroundMonitorTask.job
[2012/01/04 20:38:59 | 000,001,666 | ---- | M] () -- C:\Users\Public\Desktop\iTunes.lnk
[1 C:\Users\msuman\Documents\*.tmp files -> C:\Users\msuman\Documents\*.tmp -> ]
[1 C:\Users\msuman\*.tmp files -> C:\Users\msuman\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/01/25 19:11:15 | 000,111,872 | ---- | C] () -- C:\Windows\System32\drivers\TrueSight.sys
[2012/01/25 07:07:35 | 000,000,512 | ---- | C] () -- C:\Users\msuman\Desktop\MBR.dat
[2012/01/24 20:04:25 | 000,030,735 | ---- | C] () -- C:\Users\msuman\Documents\malwarebytes BKD-7362011316.pdf
[2012/01/21 21:08:55 | 000,001,889 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk
[2012/01/21 21:08:54 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader 9.lnk
[2012/01/13 19:51:19 | 000,000,907 | ---- | C] () -- C:\Users\msuman\Application Data\Microsoft\Internet Explorer\Quick Launch\circles Asuka Kimishima 002 - Shortcut.lnk
[2012/01/11 18:20:49 | 2110,771,200 | -HS- | C] () -- C:\hiberfil.sys
[2012/01/11 12:04:22 | 000,000,806 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2012/01/11 10:48:40 | 000,000,908 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/01/11 09:33:38 | 000,002,081 | ---- | C] () -- C:\Users\msuman\Desktop\SpyHunter.lnk
[2012/01/04 20:38:59 | 000,001,666 | ---- | C] () -- C:\Users\Public\Desktop\iTunes.lnk
[2011/03/24 15:51:28 | 000,000,054 | ---- | C] () -- C:\Windows\System32\rp_stats.dat
[2011/03/24 15:51:28 | 000,000,039 | ---- | C] () -- C:\Windows\System32\rp_rules.dat
[2011/01/16 14:34:45 | 000,000,050 | ---- | C] () -- C:\Windows\MegaManager.INI
[2011/01/06 17:10:30 | 000,000,011 | ---- | C] () -- C:\Windows\VSWizard.ini
[2010/09/22 16:01:43 | 000,010,240 | ---- | C] () -- C:\Windows\System32\vidx16.dll
[2010/08/25 19:30:02 | 000,439,308 | ---- | C] () -- C:\Windows\System32\igcompkrng500.bin
[2010/08/25 19:30:00 | 000,982,240 | ---- | C] () -- C:\Windows\System32\igkrng500.bin
[2010/08/25 19:30:00 | 000,092,356 | ---- | C] () -- C:\Windows\System32\igfcg500m.bin
[2010/08/25 18:57:00 | 000,000,151 | ---- | C] () -- C:\Windows\System32\GfxUI.exe.config
[2010/08/25 18:52:00 | 000,208,896 | ---- | C] () -- C:\Windows\System32\iglhsip32.dll
[2010/08/25 18:52:00 | 000,143,360 | ---- | C] () -- C:\Windows\System32\iglhcp32.dll
[2009/10/20 17:40:38 | 000,117,248 | ---- | C] () -- C:\Windows\System32\EhStorAuthn.dll
[2009/10/20 17:40:38 | 000,107,612 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchema.bin
[2009/10/20 17:40:19 | 000,185,856 | ---- | C] () -- C:\Windows\System32\drivers\netbt.sys
[2009/08/03 14:07:42 | 000,403,816 | ---- | C] () -- C:\Windows\System32\OGACheckControl.dll
[2009/08/03 14:07:42 | 000,230,768 | ---- | C] () -- C:\Windows\System32\OGAEXEC.exe
[2009/03/05 17:47:02 | 000,015,688 | ---- | C] () -- C:\Windows\System32\lsdelete.exe
[2009/02/16 14:01:04 | 000,061,678 | ---- | C] () -- C:\Users\msuman\AppData\Roaming\PFP100JPR.{PB
[2009/02/16 14:01:04 | 000,012,358 | ---- | C] () -- C:\Users\msuman\AppData\Roaming\PFP100JCM.{PB
[2009/02/13 20:48:41 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2009/02/06 09:53:44 | 000,017,920 | ---- | C] () -- C:\Users\msuman\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009/02/05 18:39:21 | 000,001,356 | ---- | C] () -- C:\Users\msuman\AppData\Local\d3d9caps.dat
[2009/01/29 00:08:29 | 000,147,456 | ---- | C] () -- C:\Windows\System32\igfxCoIn_v1545.dll
[2009/01/29 00:08:29 | 000,147,172 | ---- | C] () -- C:\Windows\System32\igfcg550.bin
[2009/01/29 00:08:29 | 000,004,608 | ---- | C] () -- C:\Windows\System32\HdmiCoin.dll
[2009/01/29 00:06:08 | 000,018,904 | ---- | C] () -- C:\Windows\System32\StructuredQuerySchemaTrivial.bin
[2008/02/03 15:37:35 | 000,000,000 | ---- | C] () -- C:\Windows\System32\atiicdxx.dat
[2006/11/02 04:53:49 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2006/11/02 04:44:53 | 000,330,200 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT
[2006/11/02 02:33:01 | 000,604,264 | ---- | C] () -- C:\Windows\System32\perfh009.dat
[2006/11/02 02:33:01 | 000,287,440 | ---- | C] () -- C:\Windows\System32\perfi009.dat
[2006/11/02 02:33:01 | 000,103,964 | ---- | C] () -- C:\Windows\System32\perfc009.dat
[2006/11/02 02:33:01 | 000,030,674 | ---- | C] () -- C:\Windows\System32\perfd009.dat
[2006/11/02 02:25:44 | 000,159,744 | ---- | C] () -- C:\Windows\System32\atitmmxx.dll
[2006/11/02 02:23:21 | 000,215,943 | ---- | C] () -- C:\Windows\System32\dssec.dat
[2006/11/02 00:58:30 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2006/11/02 00:19:00 | 000,000,741 | ---- | C] () -- C:\Windows\System32\NOISE.DAT
[2006/11/01 23:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2006/11/01 23:25:31 | 000,673,088 | ---- | C] () -- C:\Windows\System32\mlang.dat

========== LOP Check ==========

[2012/01/22 18:08:29 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\C4EE5
[2012/01/22 18:08:40 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\E594A
[2011/05/24 19:38:00 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\PCDr
[2009/08/23 10:36:56 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\Uniblue
[2010/02/25 15:12:11 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\uTorrent
[2010/11/27 13:17:24 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\WhiteSmokeSetup
[2010/11/27 15:04:11 | 000,000,000 | ---D | M] -- C:\Users\msuman\AppData\Roaming\WhiteSmokeTranslator
[2012/01/23 16:47:23 | 000,000,472 | ---- | M] () -- C:\Windows\Tasks\Ad-Aware Update (Weekly).job
[2012/01/05 04:45:23 | 000,000,564 | ---- | M] () -- C:\Windows\Tasks\PCDoctorBackgroundMonitorTask.job
[2012/01/25 20:04:15 | 000,032,640 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[2012/01/25 18:12:44 | 000,000,506 | ---- | M] () -- C:\Windows\Tasks\SystemToolsDailyTest.job

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 641 bytes -> C:\Users\msuman\Documents\bookmarks.eml:OECustomProperty

< End of report >

[knarf1]

Combofix abruptly stopped and crashed the computer. No report was generated. I did not re-run it.

[knarf1]

22:00:53.0980 3280 TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27
22:00:54.0464 3280 ============================================================
22:00:54.0464 3280 Current date / time: 2012/01/25 22:00:54.0464
22:00:54.0464 3280 SystemInfo:
22:00:54.0464 3280
22:00:54.0464 3280 OS Version: 6.0.6002 ServicePack: 2.0
22:00:54.0464 3280 Product type: Workstation
22:00:54.0464 3280 ComputerName: MSUMAN-PC
22:00:54.0464 3280 UserName: msuman
22:00:54.0464 3280 Windows directory: C:\Windows
22:00:54.0464 3280 System windows directory: C:\Windows
22:00:54.0464 3280 Processor architecture: Intel x86
22:00:54.0464 3280 Number of processors: 2
22:00:54.0464 3280 Page size: 0x1000
22:00:54.0464 3280 Boot type: Normal boot
22:00:54.0464 3280 ============================================================
22:00:55.0181 3280 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:00:55.0181 3280 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0B00000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:00:55.0181 3280 Drive \Device\Harddisk2\DR2 - Size: 0x2BAA1200000 (2794.52 Gb), SectorSize: 0x1000, Cylinders: 0xB220, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:00:55.0805 3280 Initialize success
22:01:44.0742 3268 ============================================================
22:01:44.0742 3268 Scan started
22:01:44.0742 3268 Mode: Manual; SigCheck; TDLFS;
22:01:44.0742 3268 ============================================================
22:01:45.0990 3268 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:01:46.0131 3268 ACPI - ok
22:01:46.0490 3268 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:01:46.0568 3268 adp94xx - ok
22:01:46.0677 3268 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:01:46.0724 3268 adpahci - ok
22:01:46.0786 3268 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:01:46.0802 3268 adpu160m - ok
22:01:46.0911 3268 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:01:46.0958 3268 adpu320 - ok
22:01:47.0129 3268 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:01:47.0270 3268 AFD - ok
22:01:47.0628 3268 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:01:47.0660 3268 agp440 - ok
22:01:47.0847 3268 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:01:47.0862 3268 aic78xx - ok
22:01:47.0909 3268 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:01:47.0940 3268 aliide - ok
22:01:48.0096 3268 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:01:48.0128 3268 amdagp - ok
22:01:48.0190 3268 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:01:48.0206 3268 amdide - ok
22:01:48.0330 3268 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:01:48.0502 3268 AmdK7 - ok
22:01:48.0627 3268 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:01:48.0720 3268 AmdK8 - ok
22:01:48.0845 3268 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:01:48.0892 3268 arc - ok
22:01:48.0954 3268 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:01:48.0986 3268 arcsas - ok
22:01:49.0157 3268 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:01:49.0251 3268 AsyncMac - ok
22:01:49.0329 3268 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
22:01:49.0344 3268 atapi - ok
22:01:49.0563 3268 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:01:49.0641 3268 Beep - ok
22:01:49.0906 3268 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:01:49.0984 3268 blbdrive - ok
22:01:50.0124 3268 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:01:50.0202 3268 bowser - ok
22:01:50.0296 3268 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:01:50.0405 3268 BrFiltLo - ok
22:01:50.0452 3268 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:01:50.0530 3268 BrFiltUp - ok
22:01:50.0670 3268 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:01:50.0873 3268 Brserid - ok
22:01:51.0216 3268 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:01:51.0326 3268 BrSerWdm - ok
22:01:51.0528 3268 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:01:51.0638 3268 BrUsbMdm - ok
22:01:51.0887 3268 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:01:51.0965 3268 BrUsbSer - ok
22:01:52.0090 3268 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:01:52.0215 3268 BTHMODEM - ok
22:01:52.0324 3268 catchme - ok
22:01:52.0496 3268 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:01:52.0558 3268 cdfs - ok
22:01:52.0667 3268 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:01:52.0745 3268 cdrom - ok
22:01:52.0901 3268 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:01:52.0964 3268 circlass - ok
22:01:53.0198 3268 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:01:53.0229 3268 CLFS - ok
22:01:53.0322 3268 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:01:53.0369 3268 cmdide - ok
22:01:53.0447 3268 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
22:01:53.0478 3268 COH_Mon - ok
22:01:53.0572 3268 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
22:01:53.0619 3268 Compbatt - ok
22:01:53.0634 3268 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:01:53.0650 3268 crcdisk - ok
22:01:53.0666 3268 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:01:53.0712 3268 Crusoe - ok
22:01:53.0915 3268 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:01:53.0962 3268 DfsC - ok
22:01:54.0134 3268 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:01:54.0165 3268 disk - ok
22:01:54.0212 3268 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:01:54.0258 3268 drmkaud - ok
22:01:54.0726 3268 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:01:54.0836 3268 DXGKrnl - ok
22:01:55.0101 3268 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
22:01:55.0194 3268 e1express - ok
22:01:55.0319 3268 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:01:55.0397 3268 E1G60 - ok
22:01:55.0506 3268 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:01:55.0553 3268 Ecache - ok
22:01:55.0803 3268 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:01:55.0881 3268 eeCtrl - ok
22:01:56.0068 3268 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:01:56.0099 3268 elxstor - ok
22:01:56.0193 3268 EraserUtilDrvI11 - ok
22:01:56.0271 3268 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:01:56.0286 3268 EraserUtilRebootDrv - ok
22:01:56.0630 3268 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:01:56.0723 3268 ErrDev - ok
22:01:56.0910 3268 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:01:56.0988 3268 exfat - ok
22:01:57.0394 3268 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:01:57.0441 3268 fastfat - ok
22:01:57.0612 3268 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:01:57.0690 3268 fdc - ok
22:01:57.0831 3268 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:01:57.0846 3268 FileInfo - ok
22:01:57.0878 3268 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:01:57.0940 3268 Filetrace - ok
22:01:58.0283 3268 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:01:58.0377 3268 flpydisk - ok
22:01:58.0470 3268 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:01:58.0486 3268 FltMgr - ok
22:01:58.0736 3268 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:01:58.0798 3268 Fs_Rec - ok
22:01:58.0876 3268 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:01:58.0907 3268 gagp30kx - ok
22:01:58.0985 3268 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:01:59.0016 3268 GEARAspiWDM - ok
22:01:59.0344 3268 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:01:59.0469 3268 HDAudBus - ok
22:01:59.0906 3268 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:02:00.0030 3268 HidBth - ok
22:02:00.0405 3268 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:02:00.0514 3268 HidIr - ok
22:02:00.0639 3268 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:02:00.0717 3268 HidUsb - ok
22:02:00.0998 3268 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:02:01.0013 3268 HpCISSs - ok
22:02:01.0076 3268 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
22:02:01.0169 3268 HTTP - ok
22:02:01.0559 3268 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:02:01.0606 3268 i2omp - ok
22:02:01.0731 3268 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:02:01.0809 3268 i8042prt - ok
22:02:02.0183 3268 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\drivers\iastor.sys
22:02:02.0199 3268 iaStor - ok
22:02:02.0495 3268 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:02:02.0558 3268 iaStorV - ok
22:02:02.0979 3268 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:02:03.0650 3268 igfx - ok
22:02:03.0977 3268 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:02:04.0071 3268 iirsp - ok
22:02:04.0632 3268 IntcAzAudAddService (9b89f2e3d705651dec1f01033b9d6b24) C:\Windows\system32\drivers\RTKVHDA.sys
22:02:05.0210 3268 IntcAzAudAddService - ok
22:02:05.0834 3268 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
22:02:05.0990 3268 IntcHdmiAddService - ok
22:02:06.0629 3268 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:02:06.0676 3268 intelide - ok
22:02:07.0269 3268 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:02:07.0362 3268 intelppm - ok
22:02:08.0018 3268 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:02:08.0127 3268 IpFilterDriver - ok
22:02:08.0454 3268 IpInIp - ok
22:02:09.0047 3268 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:02:09.0156 3268 IPMIDRV - ok
22:02:09.0656 3268 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:02:09.0718 3268 IPNAT - ok
22:02:10.0092 3268 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:02:10.0139 3268 IRENUM - ok
22:02:10.0514 3268 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:02:10.0560 3268 isapnp - ok
22:02:10.0826 3268 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:02:10.0888 3268 iScsiPrt - ok
22:02:10.0966 3268 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:02:10.0997 3268 iteatapi - ok
22:02:11.0138 3268 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:02:11.0169 3268 iteraid - ok
22:02:11.0200 3268 JRAID (b07084095f8c03aadb9811c9df14b5e4) C:\Windows\system32\drivers\jraid.sys
22:02:11.0294 3268 JRAID - ok
22:02:11.0340 3268 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:02:11.0387 3268 kbdclass - ok
22:02:11.0434 3268 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:02:11.0481 3268 kbdhid - ok
22:02:11.0902 3268 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:02:11.0980 3268 KSecDD - ok
22:02:12.0058 3268 Lbd - ok
22:02:12.0120 3268 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:02:12.0183 3268 lltdio - ok
22:02:12.0401 3268 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:02:12.0432 3268 LSI_FC - ok
22:02:12.0776 3268 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:02:12.0822 3268 LSI_SAS - ok
22:02:12.0963 3268 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:02:13.0010 3268 LSI_SCSI - ok
22:02:13.0072 3268 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:02:13.0150 3268 luafv - ok
22:02:13.0228 3268 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
22:02:13.0244 3268 MBAMProtector - ok
22:02:13.0368 3268 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:02:13.0400 3268 megasas - ok
22:02:13.0478 3268 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:02:13.0509 3268 MegaSR - ok
22:02:13.0571 3268 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:02:13.0618 3268 Modem - ok
22:02:13.0743 3268 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:02:13.0821 3268 monitor - ok
22:02:14.0008 3268 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:02:14.0024 3268 mouclass - ok
22:02:14.0055 3268 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:02:14.0102 3268 mouhid - ok
22:02:14.0148 3268 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:02:14.0164 3268 MountMgr - ok
22:02:14.0258 3268 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:02:14.0289 3268 mpio - ok
22:02:14.0320 3268 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:02:14.0382 3268 mpsdrv - ok
22:02:14.0585 3268 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:02:14.0632 3268 Mraid35x - ok
22:02:14.0694 3268 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:02:14.0788 3268 MRxDAV - ok
22:02:14.0882 3268 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:02:14.0944 3268 mrxsmb - ok
22:02:15.0022 3268 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:02:15.0084 3268 mrxsmb10 - ok
22:02:15.0209 3268 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:02:15.0256 3268 mrxsmb20 - ok
22:02:15.0287 3268 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
22:02:15.0318 3268 msahci - ok
22:02:15.0350 3268 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:02:15.0381 3268 msdsm - ok
22:02:15.0428 3268 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:02:15.0459 3268 Msfs - ok
22:02:15.0615 3268 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:02:15.0662 3268 msisadrv - ok
22:02:15.0833 3268 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:02:15.0927 3268 MSKSSRV - ok
22:02:16.0114 3268 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:02:16.0161 3268 MSPCLOCK - ok
22:02:16.0223 3268 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:02:16.0286 3268 MSPQM - ok
22:02:16.0410 3268 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:02:16.0442 3268 MsRPC - ok
22:02:16.0457 3268 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:02:16.0473 3268 mssmbios - ok
22:02:16.0504 3268 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:02:16.0551 3268 MSTEE - ok
22:02:16.0956 3268 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:02:16.0988 3268 Mup - ok
22:02:17.0081 3268 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:02:17.0128 3268 NativeWifiP - ok
22:02:17.0393 3268 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVENG.SYS
22:02:17.0487 3268 NAVENG - ok
22:02:17.0986 3268 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVEX15.SYS
22:02:18.0126 3268 NAVEX15 - ok
22:02:18.0454 3268 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:02:18.0501 3268 NDIS - ok
22:02:18.0579 3268 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:02:18.0626 3268 NdisTapi - ok
22:02:18.0782 3268 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:02:18.0860 3268 Ndisuio - ok
22:02:18.0953 3268 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:02:19.0047 3268 NdisWan - ok
22:02:19.0109 3268 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:02:19.0156 3268 NDProxy - ok
22:02:19.0296 3268 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:02:19.0374 3268 NetBIOS - ok
22:02:19.0562 3268 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:02:19.0593 3268 netbt - ok
22:02:19.0952 3268 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:02:19.0983 3268 nfrd960 - ok
22:02:20.0217 3268 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:02:20.0264 3268 Npfs - ok
22:02:20.0747 3268 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:02:20.0825 3268 nsiproxy - ok
22:02:21.0075 3268 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:02:21.0184 3268 Ntfs - ok
22:02:21.0293 3268 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:02:21.0356 3268 ntrigdigi - ok
22:02:21.0636 3268 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:02:21.0714 3268 Null - ok
22:02:21.0777 3268 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:02:21.0824 3268 nvraid - ok
22:02:21.0870 3268 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:02:21.0902 3268 nvstor - ok
22:02:21.0933 3268 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:02:21.0980 3268 nv_agp - ok
22:02:22.0229 3268 NwlnkFlt - ok
22:02:22.0276 3268 NwlnkFwd - ok
22:02:22.0338 3268 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:02:22.0416 3268 ohci1394 - ok
22:02:22.0791 3268 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:02:22.0869 3268 Parport - ok
22:02:23.0321 3268 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:02:23.0337 3268 partmgr - ok
22:02:23.0820 3268 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:02:23.0898 3268 Parvdm - ok
22:02:24.0351 3268 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:02:24.0366 3268 pci - ok
22:02:24.0678 3268 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
22:02:24.0741 3268 pciide - ok
22:02:24.0788 3268 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:02:24.0819 3268 pcmcia - ok
22:02:24.0881 3268 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:02:25.0068 3268 PEAUTH - ok
22:02:25.0271 3268 Point32 (5b6f99087cc1342b3d193e8155f26b6f) C:\Windows\system32\DRIVERS\point32k.sys
22:02:25.0318 3268 Point32 - ok
22:02:25.0412 3268 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:02:25.0474 3268 PptpMiniport - ok
22:02:25.0599 3268 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:02:25.0677 3268 Processor - ok
22:02:25.0770 3268 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:02:25.0817 3268 PSched - ok
22:02:25.0958 3268 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
22:02:25.0989 3268 PxHelp20 - ok
22:02:26.0535 3268 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:02:27.0112 3268 ql2300 - ok
22:02:27.0705 3268 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:02:27.0752 3268 ql40xx - ok
22:02:28.0266 3268 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:02:28.0454 3268 QWAVEdrv - ok
22:02:29.0327 3268 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:02:30.0419 3268 R300 - ok
22:02:30.0653 3268 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:02:30.0731 3268 RasAcd - ok
22:02:31.0106 3268 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:02:31.0168 3268 Rasl2tp - ok
22:02:31.0449 3268 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:02:31.0527 3268 RasPppoe - ok
22:02:31.0605 3268 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:02:31.0667 3268 RasSstp - ok
22:02:31.0808 3268 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:02:31.0901 3268 rdbss - ok
22:02:31.0979 3268 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:02:32.0010 3268 RDPCDD - ok
22:02:32.0369 3268 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:02:32.0463 3268 rdpdr - ok
22:02:32.0759 3268 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:02:32.0837 3268 RDPENCDD - ok
22:02:33.0056 3268 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:02:33.0149 3268 RDPWD - ok
22:02:33.0321 3268 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:02:33.0368 3268 rspndr - ok
22:02:33.0648 3268 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:02:33.0726 3268 RTL8169 - ok
22:02:33.0851 3268 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:02:33.0882 3268 sbp2port - ok
22:02:33.0945 3268 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:02:34.0038 3268 secdrv - ok
22:02:34.0257 3268 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
22:02:34.0350 3268 Serenum - ok
22:02:34.0460 3268 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
22:02:34.0538 3268 Serial - ok
22:02:34.0756 3268 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:02:34.0834 3268 sermouse - ok
22:02:34.0896 3268 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:02:34.0959 3268 sffdisk - ok
22:02:35.0162 3268 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:02:35.0255 3268 sffp_mmc - ok
22:02:35.0380 3268 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:02:35.0458 3268 sffp_sd - ok
22:02:35.0505 3268 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:02:35.0567 3268 sfloppy - ok
22:02:35.0957 3268 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:02:35.0988 3268 sisagp - ok
22:02:36.0269 3268 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:02:36.0285 3268 SiSRaid2 - ok
22:02:36.0581 3268 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:02:36.0612 3268 SiSRaid4 - ok
22:02:36.0722 3268 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:02:36.0784 3268 Smb - ok
22:02:36.0956 3268 SPBBCDrv (e87cf104f12c92401c4d33c50a3d5dc8) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
22:02:37.0002 3268 SPBBCDrv - ok
22:02:37.0143 3268 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:02:37.0190 3268 spldr - ok
22:02:37.0377 3268 SRTSP (b36f8d6a02ff2b3a53e250a629782f29) C:\Windows\system32\Drivers\SRTSP.SYS
22:02:37.0455 3268 SRTSP - ok
22:02:37.0658 3268 SRTSPL (e99bd98ac171a29fc1ba9376be87ae73) C:\Windows\system32\Drivers\SRTSPL.SYS
22:02:37.0704 3268 SRTSPL - ok
22:02:37.0829 3268 SRTSPX (1af34729898063e9b7df8d149d767e07) C:\Windows\system32\Drivers\SRTSPX.SYS
22:02:37.0892 3268 SRTSPX - ok
22:02:38.0001 3268 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:02:38.0063 3268 srv - ok
22:02:38.0141 3268 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:02:38.0204 3268 srv2 - ok
22:02:38.0406 3268 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:02:38.0469 3268 srvnet - ok
22:02:38.0531 3268 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:02:38.0562 3268 swenum - ok
22:02:38.0578 3268 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:02:38.0609 3268 Symc8xx - ok
22:02:38.0984 3268 SymEvent (e42a34e6f5ca71a84d4c2de620aad13d) C:\Windows\system32\Drivers\SYMEVENT.SYS
22:02:38.0999 3268 SymEvent - ok
22:02:39.0249 3268 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
22:02:39.0311 3268 SYMREDRV - ok
22:02:39.0358 3268 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
22:02:39.0374 3268 SYMTDI - ok
22:02:39.0436 3268 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:02:39.0498 3268 Sym_hi - ok
22:02:39.0530 3268 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:02:39.0561 3268 Sym_u3 - ok
22:02:39.0623 3268 SysPlant (666992d996c524812e713effd836d043) C:\Windows\SYSTEM32\Drivers\SysPlant.sys
22:02:39.0639 3268 SysPlant - ok
22:02:39.0998 3268 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:02:40.0076 3268 Tcpip - ok
22:02:40.0185 3268 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:02:40.0232 3268 Tcpip6 - ok
22:02:40.0325 3268 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:02:40.0356 3268 tcpipreg - ok
22:02:40.0419 3268 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:02:40.0450 3268 TDPIPE - ok
22:02:40.0528 3268 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:02:40.0544 3268 TDTCP - ok
22:02:40.0622 3268 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:02:40.0653 3268 tdx - ok
22:02:40.0746 3268 Teefer2 (f63439ac8fa992bfa0c757eb644a1a0c) C:\Windows\system32\DRIVERS\teefer2.sys
22:02:40.0762 3268 Teefer2 - ok
22:02:40.0840 3268 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:02:40.0871 3268 TermDD - ok
22:02:41.0043 3268 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
22:02:41.0058 3268 TrueSight ( UnsignedFile.Multi.Generic ) - warning
22:02:41.0058 3268 TrueSight - detected UnsignedFile.Multi.Generic (1)
22:02:41.0277 3268 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:02:41.0339 3268 tssecsrv - ok
22:02:41.0448 3268 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:02:41.0526 3268 tunmp - ok
22:02:41.0651 3268 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:02:41.0698 3268 tunnel - ok
22:02:41.0729 3268 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:02:41.0760 3268 uagp35 - ok
22:02:41.0807 3268 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:02:41.0854 3268 udfs - ok
22:02:42.0041 3268 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:02:42.0072 3268 uliagpkx - ok
22:02:42.0197 3268 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:02:42.0275 3268 uliahci - ok
22:02:42.0431 3268 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:02:42.0462 3268 UlSata - ok
22:02:42.0587 3268 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:02:42.0634 3268 ulsata2 - ok
22:02:42.0837 3268 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:02:42.0884 3268 umbus - ok
22:02:43.0071 3268 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:02:43.0118 3268 USBAAPL - ok
22:02:43.0320 3268 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:02:43.0398 3268 usbccgp - ok
22:02:43.0632 3268 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:02:43.0710 3268 usbcir - ok
22:02:44.0085 3268 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:02:44.0178 3268 usbehci - ok
22:02:44.0584 3268 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:02:44.0631 3268 usbhub - ok
22:02:45.0083 3268 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:02:45.0146 3268 usbohci - ok
22:02:45.0582 3268 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:02:45.0645 3268 usbprint - ok
22:02:45.0785 3268 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:02:45.0848 3268 usbscan - ok
22:02:46.0144 3268 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:02:46.0191 3268 USBSTOR - ok
22:02:46.0596 3268 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:02:46.0659 3268 usbuhci - ok
22:02:47.0002 3268 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:02:47.0064 3268 vga - ok
22:02:47.0142 3268 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:02:47.0189 3268 VgaSave - ok
22:02:47.0283 3268 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:02:47.0330 3268 viaagp - ok
22:02:47.0486 3268 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:02:47.0564 3268 ViaC7 - ok
22:02:47.0688 3268 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:02:47.0704 3268 viaide - ok
22:02:47.0969 3268 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:02:47.0985 3268 volmgr - ok
22:02:48.0203 3268 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:02:48.0250 3268 volmgrx - ok
22:02:48.0406 3268 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:02:48.0453 3268 volsnap - ok
22:02:48.0609 3268 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:02:48.0640 3268 vsmraid - ok
22:02:48.0718 3268 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:02:48.0796 3268 WacomPen - ok
22:02:48.0890 3268 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:02:48.0936 3268 Wanarp - ok
22:02:48.0999 3268 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:02:49.0030 3268 Wanarpv6 - ok
22:02:49.0139 3268 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:02:49.0155 3268 Wd - ok
22:02:49.0186 3268 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:02:49.0233 3268 Wdf01000 - ok
22:02:49.0280 3268 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:02:49.0311 3268 WmiAcpi - ok
22:02:49.0467 3268 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:02:49.0529 3268 WpdUsb - ok
22:02:49.0654 3268 WPS (9748e527f0d71bc86a1fe45f294e368b) C:\Windows\system32\drivers\wpsdrvnt.sys
22:02:49.0654 3268 WPS - ok
22:02:49.0779 3268 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
22:02:49.0794 3268 WpsHelper - ok
22:02:49.0826 3268 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:02:49.0872 3268 ws2ifsl - ok
22:02:50.0013 3268 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:02:50.0091 3268 WUDFRd - ok
22:02:50.0122 3268 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:02:50.0372 3268 \Device\Harddisk0\DR0 - ok
22:02:50.0372 3268 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
22:02:50.0871 3268 \Device\Harddisk1\DR1 - ok
22:02:50.0871 3268 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
22:02:51.0386 3268 \Device\Harddisk2\DR2 - ok
22:02:51.0401 3268 Boot (0x1200) (8bcf45a8e9549495d4098b9fe5609ca8) \Device\Harddisk0\DR0\Partition0
22:02:51.0432 3268 \Device\Harddisk0\DR0\Partition0 - ok
22:02:51.0448 3268 Boot (0x1200) (5aa51cde19268509954e7840961d50c3) \Device\Harddisk0\DR0\Partition1
22:02:51.0464 3268 \Device\Harddisk0\DR0\Partition1 - ok
22:02:51.0479 3268 Boot (0x1200) (ab59b05fa41c6d9c15734fee8b39d8da) \Device\Harddisk1\DR1\Partition0
22:02:51.0479 3268 \Device\Harddisk1\DR1\Partition0 - ok
22:02:51.0479 3268 ============================================================
22:02:51.0479 3268 Scan finished
22:02:51.0479 3268 ============================================================
22:02:51.0495 2188 Detected object count: 1
22:02:51.0495 2188 Actual detected object count: 1
22:03:04.0661 2188 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
22:03:04.0661 2188 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:05:16.0762 3232 ============================================================
22:05:16.0762 3232 Scan started
22:05:16.0762 3232 Mode: Manual; SigCheck; TDLFS;
22:05:16.0762 3232 ============================================================
22:05:17.0121 3232 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:05:17.0152 3232 ACPI - ok
22:05:17.0183 3232 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:05:17.0214 3232 adp94xx - ok
22:05:17.0246 3232 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:05:17.0261 3232 adpahci - ok
22:05:17.0277 3232 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:05:17.0292 3232 adpu160m - ok
22:05:17.0324 3232 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:05:17.0339 3232 adpu320 - ok
22:05:17.0386 3232 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:05:17.0402 3232 AFD - ok
22:05:17.0433 3232 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:05:17.0448 3232 agp440 - ok
22:05:17.0480 3232 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:05:17.0495 3232 aic78xx - ok
22:05:17.0511 3232 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:05:17.0526 3232 aliide - ok
22:05:17.0542 3232 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:05:17.0558 3232 amdagp - ok
22:05:17.0573 3232 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:05:17.0589 3232 amdide - ok
22:05:17.0604 3232 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:05:17.0636 3232 AmdK7 - ok
22:05:17.0682 3232 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:05:17.0714 3232 AmdK8 - ok
22:05:17.0745 3232 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:05:17.0760 3232 arc - ok
22:05:17.0776 3232 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:05:17.0792 3232 arcsas - ok
22:05:17.0838 3232 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:05:17.0854 3232 AsyncMac - ok
22:05:17.0870 3232 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
22:05:17.0885 3232 atapi - ok
22:05:17.0916 3232 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:05:17.0948 3232 Beep - ok
22:05:18.0041 3232 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:05:18.0057 3232 blbdrive - ok
22:05:18.0104 3232 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:05:18.0119 3232 bowser - ok
22:05:18.0213 3232 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:05:18.0244 3232 BrFiltLo - ok
22:05:18.0291 3232 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:05:18.0322 3232 BrFiltUp - ok
22:05:18.0416 3232 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:05:18.0462 3232 Brserid - ok
22:05:18.0525 3232 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:05:18.0572 3232 BrSerWdm - ok
22:05:18.0603 3232 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:05:18.0650 3232 BrUsbMdm - ok
22:05:18.0665 3232 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:05:18.0728 3232 BrUsbSer - ok
22:05:18.0743 3232 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:05:18.0806 3232 BTHMODEM - ok
22:05:18.0852 3232 catchme - ok
22:05:18.0930 3232 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:05:18.0962 3232 cdfs - ok
22:05:18.0993 3232 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:05:19.0024 3232 cdrom - ok
22:05:19.0071 3232 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:05:19.0102 3232 circlass - ok
22:05:19.0180 3232 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:05:19.0196 3232 CLFS - ok
22:05:19.0242 3232 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:05:19.0258 3232 cmdide - ok
22:05:19.0320 3232 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
22:05:19.0336 3232 COH_Mon - ok
22:05:19.0430 3232 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
22:05:19.0445 3232 Compbatt - ok
22:05:19.0570 3232 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:05:19.0586 3232 crcdisk - ok
22:05:19.0601 3232 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:05:19.0632 3232 Crusoe - ok
22:05:19.0710 3232 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:05:19.0726 3232 DfsC - ok
22:05:19.0788 3232 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:05:19.0804 3232 disk - ok
22:05:19.0866 3232 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:05:19.0882 3232 drmkaud - ok
22:05:19.0960 3232 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:05:19.0991 3232 DXGKrnl - ok
22:05:20.0022 3232 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
22:05:20.0054 3232 e1express - ok
22:05:20.0085 3232 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:05:20.0116 3232 E1G60 - ok
22:05:20.0225 3232 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:05:20.0241 3232 Ecache - ok
22:05:20.0319 3232 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:05:20.0334 3232 eeCtrl - ok
22:05:20.0459 3232 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:05:20.0475 3232 elxstor - ok
22:05:20.0553 3232 EraserUtilDrvI11 - ok
22:05:20.0584 3232 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:05:20.0584 3232 EraserUtilRebootDrv - ok
22:05:20.0678 3232 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:05:20.0693 3232 ErrDev - ok
22:05:20.0740 3232 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:05:20.0756 3232 exfat - ok
22:05:20.0787 3232 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:05:20.0818 3232 fastfat - ok
22:05:20.0880 3232 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:05:20.0912 3232 fdc - ok
22:05:20.0927 3232 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:05:20.0943 3232 FileInfo - ok
22:05:20.0974 3232 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:05:21.0005 3232 Filetrace - ok
22:05:21.0068 3232 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:05:21.0099 3232 flpydisk - ok
22:05:21.0146 3232 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:05:21.0161 3232 FltMgr - ok
22:05:21.0224 3232 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:05:21.0239 3232 Fs_Rec - ok
22:05:21.0270 3232 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:05:21.0286 3232 gagp30kx - ok
22:05:21.0458 3232 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:05:21.0458 3232 GEARAspiWDM - ok
22:05:21.0551 3232 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:05:21.0614 3232 HDAudBus - ok
22:05:21.0660 3232 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:05:21.0707 3232 HidBth - ok
22:05:21.0738 3232 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:05:21.0785 3232 HidIr - ok
22:05:21.0879 3232 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:05:21.0910 3232 HidUsb - ok
22:05:21.0957 3232 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:05:21.0957 3232 HpCISSs - ok
22:05:22.0050 3232 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
22:05:22.0097 3232 HTTP - ok
22:05:22.0128 3232 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:05:22.0144 3232 i2omp - ok
22:05:22.0175 3232 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:05:22.0191 3232 i8042prt - ok
22:05:22.0269 3232 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\drivers\iastor.sys
22:05:22.0284 3232 iaStor - ok
22:05:22.0378 3232 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:05:22.0394 3232 iaStorV - ok
22:05:22.0706 3232 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:05:22.0940 3232 igfx - ok
22:05:23.0064 3232 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:05:23.0080 3232 iirsp - ok
22:05:23.0174 3232 IntcAzAudAddService (9b89f2e3d705651dec1f01033b9d6b24) C:\Windows\system32\drivers\RTKVHDA.sys
22:05:23.0267 3232 IntcAzAudAddService - ok
22:05:23.0298 3232 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
22:05:23.0314 3232 IntcHdmiAddService - ok
22:05:23.0345 3232 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:05:23.0361 3232 intelide - ok
22:05:23.0376 3232 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:05:23.0408 3232 intelppm - ok
22:05:23.0439 3232 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:05:23.0470 3232 IpFilterDriver - ok
22:05:23.0486 3232 IpInIp - ok
22:05:23.0517 3232 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:05:23.0548 3232 IPMIDRV - ok
22:05:23.0564 3232 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:05:23.0595 3232 IPNAT - ok
22:05:23.0688 3232 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:05:23.0720 3232 IRENUM - ok
22:05:23.0751 3232 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:05:23.0766 3232 isapnp - ok
22:05:23.0813 3232 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:05:23.0829 3232 iScsiPrt - ok
22:05:23.0844 3232 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:05:23.0860 3232 iteatapi - ok
22:05:23.0891 3232 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:05:23.0891 3232 iteraid - ok
22:05:23.0922 3232 JRAID (b07084095f8c03aadb9811c9df14b5e4) C:\Windows\system32\drivers\jraid.sys
22:05:23.0938 3232 JRAID - ok
22:05:23.0969 3232 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:05:23.0969 3232 kbdclass - ok
22:05:24.0000 3232 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:05:24.0032 3232 kbdhid - ok
22:05:24.0094 3232 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:05:24.0125 3232 KSecDD - ok
22:05:24.0141 3232 Lbd - ok
22:05:24.0188 3232 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:05:24.0219 3232 lltdio - ok
22:05:24.0328 3232 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:05:24.0344 3232 LSI_FC - ok
22:05:24.0422 3232 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:05:24.0422 3232 LSI_SAS - ok
22:05:24.0453 3232 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:05:24.0468 3232 LSI_SCSI - ok
22:05:24.0546 3232 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:05:24.0578 3232 luafv - ok
22:05:24.0640 3232 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
22:05:24.0640 3232 MBAMProtector - ok
22:05:24.0687 3232 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:05:24.0702 3232 megasas - ok
22:05:24.0780 3232 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:05:24.0812 3232 MegaSR - ok
22:05:24.0827 3232 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:05:24.0858 3232 Modem - ok
22:05:24.0936 3232 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:05:24.0968 3232 monitor - ok
22:05:24.0999 3232 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:05:25.0014 3232 mouclass - ok
22:05:25.0030 3232 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:05:25.0061 3232 mouhid - ok
22:05:25.0124 3232 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:05:25.0139 3232 MountMgr - ok
22:05:25.0170 3232 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:05:25.0186 3232 mpio - ok
22:05:25.0233 3232 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:05:25.0248 3232 mpsdrv - ok
22:05:25.0389 3232 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:05:25.0389 3232 Mraid35x - ok
22:05:25.0451 3232 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:05:25.0467 3232 MRxDAV - ok
22:05:25.0514 3232 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:05:25.0529 3232 mrxsmb - ok
22:05:25.0607 3232 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:05:25.0623 3232 mrxsmb10 - ok
22:05:25.0685 3232 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:05:25.0701 3232 mrxsmb20 - ok
22:05:25.0748 3232 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
22:05:25.0763 3232 msahci - ok
22:05:25.0794 3232 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:05:25.0810 3232 msdsm - ok
22:05:25.0888 3232 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:05:25.0919 3232 Msfs - ok
22:05:25.0935 3232 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:05:25.0950 3232 msisadrv - ok
22:05:25.0966 3232 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:05:25.0997 3232 MSKSSRV - ok
22:05:26.0060 3232 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:05:26.0091 3232 MSPCLOCK - ok
22:05:26.0122 3232 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:05:26.0153 3232 MSPQM - ok
22:05:26.0247 3232 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:05:26.0262 3232 MsRPC - ok
22:05:26.0278 3232 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:05:26.0294 3232 mssmbios - ok
22:05:26.0325 3232 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:05:26.0356 3232 MSTEE - ok
22:05:26.0403 3232 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:05:26.0418 3232 Mup - ok
22:05:26.0465 3232 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:05:26.0481 3232 NativeWifiP - ok
22:05:26.0621 3232 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVENG.SYS
22:05:26.0652 3232 NAVENG - ok
22:05:26.0715 3232 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVEX15.SYS
22:05:26.0762 3232 NAVEX15 - ok
22:05:26.0871 3232 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:05:26.0902 3232 NDIS - ok
22:05:26.0933 3232 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:05:26.0949 3232 NdisTapi - ok
22:05:27.0074 3232 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:05:27.0105 3232 Ndisuio - ok
22:05:27.0214 3232 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:05:27.0230 3232 NdisWan - ok
22:05:27.0292 3232 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:05:27.0308 3232 NDProxy - ok
22:05:27.0370 3232 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:05:27.0401 3232 NetBIOS - ok
22:05:27.0495 3232 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:05:27.0526 3232 netbt - ok
22:05:27.0573 3232 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:05:27.0588 3232 nfrd960 - ok
22:05:27.0635 3232 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:05:27.0666 3232 Npfs - ok
22:05:27.0729 3232 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:05:27.0760 3232 nsiproxy - ok
22:05:27.0854 3232 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:05:27.0900 3232 Ntfs - ok
22:05:27.0994 3232 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:05:28.0041 3232 ntrigdigi - ok
22:05:28.0056 3232 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:05:28.0088 3232 Null - ok
22:05:28.0244 3232 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:05:28.0259 3232 nvraid - ok
22:05:28.0322 3232 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:05:28.0322 3232 nvstor - ok
22:05:28.0384 3232 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:05:28.0400 3232 nv_agp - ok
22:05:28.0400 3232 NwlnkFlt - ok
22:05:28.0415 3232 NwlnkFwd - ok
22:05:28.0446 3232 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:05:28.0493 3232 ohci1394 - ok
22:05:28.0540 3232 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:05:28.0587 3232 Parport - ok
22:05:28.0680 3232 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:05:28.0696 3232 partmgr - ok
22:05:28.0727 3232 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:05:28.0774 3232 Parvdm - ok
22:05:28.0836 3232 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:05:28.0852 3232 pci - ok
22:05:28.0868 3232 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
22:05:28.0883 3232 pciide - ok
22:05:28.0946 3232 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:05:28.0961 3232 pcmcia - ok
22:05:28.0992 3232 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:05:29.0070 3232 PEAUTH - ok
22:05:29.0133 3232 Point32 (5b6f99087cc1342b3d193e8155f26b6f) C:\Windows\system32\DRIVERS\point32k.sys
22:05:29.0148 3232 Point32 - ok
22:05:29.0180 3232 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:05:29.0211 3232 PptpMiniport - ok
22:05:29.0273 3232 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:05:29.0304 3232 Processor - ok
22:05:29.0398 3232 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:05:29.0414 3232 PSched - ok
22:05:29.0476 3232 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
22:05:29.0492 3232 PxHelp20 - ok
22:05:29.0554 3232 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:05:29.0585 3232 ql2300 - ok
22:05:29.0663 3232 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:05:29.0679 3232 ql40xx - ok
22:05:29.0710 3232 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:05:29.0726 3232 QWAVEdrv - ok
22:05:29.0897 3232 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:05:30.0022 3232 R300 - ok
22:05:30.0100 3232 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:05:30.0131 3232 RasAcd - ok
22:05:30.0147 3232 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:05:30.0178 3232 Rasl2tp - ok
22:05:30.0225 3232 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:05:30.0240 3232 RasPppoe - ok
22:05:30.0334 3232 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:05:30.0350 3232 RasSstp - ok
22:05:30.0396 3232 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:05:30.0428 3232 rdbss - ok
22:05:30.0506 3232 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:05:30.0537 3232 RDPCDD - ok
22:05:30.0568 3232 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:05:30.0599 3232 rdpdr - ok
22:05:30.0662 3232 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:05:30.0693 3232 RDPENCDD - ok
22:05:30.0740 3232 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:05:30.0771 3232 RDPWD - ok
22:05:30.0864 3232 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:05:30.0896 3232 rspndr - ok
22:05:30.0958 3232 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:05:30.0989 3232 RTL8169 - ok
22:05:31.0020 3232 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:05:31.0036 3232 sbp2port - ok
22:05:31.0083 3232 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:05:31.0130 3232 secdrv - ok
22:05:31.0192 3232 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
22:05:31.0223 3232 Serenum - ok
22:05:31.0301 3232 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
22:05:31.0348 3232 Serial - ok
22:05:31.0442 3232 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:05:31.0473 3232 sermouse - ok
22:05:31.0488 3232 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:05:31.0520 3232 sffdisk - ok
22:05:31.0535 3232 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:05:31.0566 3232 sffp_mmc - ok
22:05:31.0644 3232 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:05:31.0676 3232 sffp_sd - ok
22:05:31.0691 3232 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:05:31.0754 3232 sfloppy - ok
22:05:31.0785 3232 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:05:31.0800 3232 sisagp - ok
22:05:31.0800 3232 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:05:31.0816 3232 SiSRaid2 - ok
22:05:31.0941 3232 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:05:31.0956 3232 SiSRaid4 - ok
22:05:32.0003 3232 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:05:32.0034 3232 Smb - ok
22:05:32.0190 3232 SPBBCDrv (e87cf104f12c92401c4d33c50a3d5dc8) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
22:05:32.0222 3232 SPBBCDrv - ok
22:05:32.0284 3232 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:05:32.0300 3232 spldr - ok
22:05:32.0346 3232 SRTSP (b36f8d6a02ff2b3a53e250a629782f29) C:\Windows\system32\Drivers\SRTSP.SYS
22:05:32.0362 3232 SRTSP - ok
22:05:32.0409 3232 SRTSPL (e99bd98ac171a29fc1ba9376be87ae73) C:\Windows\system32\Drivers\SRTSPL.SYS
22:05:32.0424 3232 SRTSPL - ok
22:05:32.0502 3232 SRTSPX (1af34729898063e9b7df8d149d767e07) C:\Windows\system32\Drivers\SRTSPX.SYS
22:05:32.0518 3232 SRTSPX - ok
22:05:32.0580 3232 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:05:32.0596 3232 srv - ok
22:05:32.0674 3232 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:05:32.0690 3232 srv2 - ok
22:05:32.0752 3232 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:05:32.0783 3232 srvnet - ok
22:05:32.0877 3232 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:05:32.0892 3232 swenum - ok
22:05:32.0908 3232 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:05:32.0924 3232 Symc8xx - ok
22:05:32.0955 3232 SymEvent (e42a34e6f5ca71a84d4c2de620aad13d) C:\Windows\system32\Drivers\SYMEVENT.SYS
22:05:32.0955 3232 SymEvent - ok
22:05:33.0017 3232 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
22:05:33.0017 3232 SYMREDRV - ok
22:05:33.0080 3232 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
22:05:33.0080 3232 SYMTDI - ok
22:05:33.0158 3232 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:05:33.0173 3232 Sym_hi - ok
22:05:33.0189 3232 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:05:33.0220 3232 Sym_u3 - ok
22:05:33.0314 3232 SysPlant (666992d996c524812e713effd836d043) C:\Windows\SYSTEM32\Drivers\SysPlant.sys
22:05:33.0314 3232 SysPlant - ok
22:05:33.0376 3232 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:05:33.0423 3232 Tcpip - ok
22:05:33.0532 3232 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:05:33.0563 3232 Tcpip6 - ok
22:05:33.0626 3232 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:05:33.0641 3232 tcpipreg - ok
22:05:33.0672 3232 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:05:33.0704 3232 TDPIPE - ok
22:05:33.0906 3232 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:05:33.0938 3232 TDTCP - ok
22:05:34.0078 3232 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:05:34.0109 3232 tdx - ok
22:05:34.0172 3232 Teefer2 (f63439ac8fa992bfa0c757eb644a1a0c) C:\Windows\system32\DRIVERS\teefer2.sys
22:05:34.0187 3232 Teefer2 - ok
22:05:34.0218 3232 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:05:34.0234 3232 TermDD - ok
22:05:34.0296 3232 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
22:05:34.0312 3232 TrueSight ( UnsignedFile.Multi.Generic ) - warning
22:05:34.0312 3232 TrueSight - detected UnsignedFile.Multi.Generic (1)
22:05:34.0343 3232 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:05:34.0374 3232 tssecsrv - ok
22:05:34.0437 3232 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:05:34.0452 3232 tunmp - ok
22:05:34.0515 3232 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:05:34.0530 3232 tunnel - ok
22:05:34.0546 3232 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:05:34.0562 3232 uagp35 - ok
22:05:34.0624 3232 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:05:34.0640 3232 udfs - ok
22:05:34.0733 3232 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:05:34.0749 3232 uliagpkx - ok
22:05:34.0780 3232 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:05:34.0796 3232 uliahci - ok
22:05:34.0905 3232 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:05:34.0920 3232 UlSata - ok
22:05:35.0014 3232 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:05:35.0030 3232 ulsata2 - ok
22:05:35.0076 3232 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:05:35.0108 3232 umbus - ok
22:05:35.0170 3232 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:05:35.0186 3232 USBAAPL - ok
22:05:35.0232 3232 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:05:35.0264 3232 usbccgp - ok
22:05:35.0310 3232 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:05:35.0357 3232 usbcir - ok
22:05:35.0451 3232 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:05:35.0466 3232 usbehci - ok
22:05:35.0529 3232 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:05:35.0544 3232 usbhub - ok
22:05:35.0576 3232 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:05:35.0622 3232 usbohci - ok
22:05:35.0638 3232 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:05:35.0700 3232 usbprint - ok
22:05:35.0732 3232 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:05:35.0763 3232 usbscan - ok
22:05:35.0794 3232 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:05:35.0825 3232 USBSTOR - ok
22:05:35.0872 3232 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:05:35.0903 3232 usbuhci - ok
22:05:35.0950 3232 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:05:35.0981 3232 vga - ok
22:05:36.0028 3232 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:05:36.0059 3232 VgaSave - ok
22:05:36.0090 3232 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:05:36.0106 3232 viaagp - ok
22:05:36.0168 3232 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:05:36.0200 3232 ViaC7 - ok
22:05:36.0215 3232 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:05:36.0231 3232 viaide - ok
22:05:36.0262 3232 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:05:36.0278 3232 volmgr - ok
22:05:36.0324 3232 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:05:36.0340 3232 volmgrx - ok
22:05:36.0418 3232 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:05:36.0434 3232 volsnap - ok
22:05:36.0496 3232 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:05:36.0496 3232 vsmraid - ok
22:05:36.0636 3232 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:05:36.0683 3232 WacomPen - ok
22:05:36.0777 3232 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:05:36.0808 3232 Wanarp - ok
22:05:36.0808 3232 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:05:36.0839 3232 Wanarpv6 - ok
22:05:36.0948 3232 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:05:36.0948 3232 Wd - ok
22:05:36.0980 3232 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:05:37.0011 3232 Wdf01000 - ok
22:05:37.0058 3232 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:05:37.0073 3232 WmiAcpi - ok
22:05:37.0167 3232 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:05:37.0182 3232 WpdUsb - ok
22:05:37.0229 3232 WPS (9748e527f0d71bc86a1fe45f294e368b) C:\Windows\system32\drivers\wpsdrvnt.sys
22:05:37.0229 3232 WPS - ok
22:05:37.0338 3232 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
22:05:37.0338 3232 WpsHelper - ok
22:05:37.0401 3232 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:05:37.0432 3232 ws2ifsl - ok
22:05:37.0510 3232 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:05:37.0541 3232 WUDFRd - ok
22:05:37.0572 3232 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:05:37.0760 3232 \Device\Harddisk0\DR0 - ok
22:05:38.0181 3232 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
22:05:39.0226 3232 \Device\Harddisk1\DR1 - ok
22:05:39.0242 3232 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
22:05:39.0242 3232 \Device\Harddisk2\DR2 - ok
22:05:39.0257 3232 Boot (0x1200) (8bcf45a8e9549495d4098b9fe5609ca8) \Device\Harddisk0\DR0\Partition0
22:05:39.0257 3232 \Device\Harddisk0\DR0\Partition0 - ok
22:05:39.0273 3232 Boot (0x1200) (5aa51cde19268509954e7840961d50c3) \Device\Harddisk0\DR0\Partition1
22:05:39.0288 3232 \Device\Harddisk0\DR0\Partition1 - ok
22:05:39.0288 3232 Boot (0x1200) (ab59b05fa41c6d9c15734fee8b39d8da) \Device\Harddisk1\DR1\Partition0
22:05:39.0288 3232 \Device\Harddisk1\DR1\Partition0 - ok
22:05:39.0288 3232 ============================================================
22:05:39.0288 3232 Scan finished
22:05:39.0288 3232 ============================================================
22:05:39.0351 2372 Detected object count: 1
22:05:39.0351 2372 Actual detected object count: 1
22:06:49.0161 2372 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
22:06:49.0161 2372 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:07:33.0683 3840 ============================================================
22:07:33.0683 3840 Scan started
22:07:33.0683 3840 Mode: Manual; SigCheck; TDLFS;
22:07:33.0683 3840 ============================================================
22:07:33.0948 3840 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:07:33.0964 3840 ACPI - ok
22:07:34.0011 3840 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:07:34.0042 3840 adp94xx - ok
22:07:34.0073 3840 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:07:34.0089 3840 adpahci - ok
22:07:34.0104 3840 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:07:34.0120 3840 adpu160m - ok
22:07:34.0136 3840 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:07:34.0151 3840 adpu320 - ok
22:07:34.0198 3840 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:07:34.0229 3840 AFD - ok
22:07:34.0245 3840 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:07:34.0260 3840 agp440 - ok
22:07:34.0276 3840 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:07:34.0292 3840 aic78xx - ok
22:07:34.0307 3840 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:07:34.0323 3840 aliide - ok
22:07:34.0338 3840 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:07:34.0354 3840 amdagp - ok
22:07:34.0385 3840 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:07:34.0401 3840 amdide - ok
22:07:34.0416 3840 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:07:34.0448 3840 AmdK7 - ok
22:07:34.0463 3840 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:07:34.0494 3840 AmdK8 - ok
22:07:34.0541 3840 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:07:34.0557 3840 arc - ok
22:07:34.0604 3840 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:07:34.0604 3840 arcsas - ok
22:07:34.0635 3840 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:07:34.0666 3840 AsyncMac - ok
22:07:34.0682 3840 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
22:07:34.0697 3840 atapi - ok
22:07:34.0728 3840 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:07:34.0760 3840 Beep - ok
22:07:34.0838 3840 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:07:34.0869 3840 blbdrive - ok
22:07:34.0916 3840 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:07:34.0931 3840 bowser - ok
22:07:34.0994 3840 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:07:35.0025 3840 BrFiltLo - ok
22:07:35.0040 3840 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:07:35.0056 3840 BrFiltUp - ok
22:07:35.0150 3840 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:07:35.0196 3840 Brserid - ok
22:07:35.0228 3840 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:07:35.0274 3840 BrSerWdm - ok
22:07:35.0321 3840 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:07:35.0368 3840 BrUsbMdm - ok
22:07:35.0384 3840 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:07:35.0430 3840 BrUsbSer - ok
22:07:35.0462 3840 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:07:35.0508 3840 BTHMODEM - ok
22:07:35.0555 3840 catchme - ok
22:07:35.0649 3840 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:07:35.0680 3840 cdfs - ok
22:07:35.0727 3840 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:07:35.0758 3840 cdrom - ok
22:07:35.0789 3840 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:07:35.0820 3840 circlass - ok
22:07:35.0867 3840 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:07:35.0883 3840 CLFS - ok
22:07:35.0914 3840 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:07:35.0930 3840 cmdide - ok
22:07:35.0976 3840 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
22:07:35.0992 3840 COH_Mon - ok
22:07:36.0023 3840 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
22:07:36.0039 3840 Compbatt - ok
22:07:36.0086 3840 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:07:36.0086 3840 crcdisk - ok
22:07:36.0148 3840 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:07:36.0164 3840 Crusoe - ok
22:07:36.0257 3840 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:07:36.0273 3840 DfsC - ok
22:07:36.0351 3840 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:07:36.0366 3840 disk - ok
22:07:36.0429 3840 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:07:36.0444 3840 drmkaud - ok
22:07:36.0538 3840 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:07:36.0569 3840 DXGKrnl - ok
22:07:36.0585 3840 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
22:07:36.0632 3840 e1express - ok
22:07:36.0663 3840 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:07:36.0678 3840 E1G60 - ok
22:07:36.0741 3840 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:07:36.0756 3840 Ecache - ok
22:07:36.0834 3840 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:07:36.0866 3840 eeCtrl - ok
22:07:36.0944 3840 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:07:36.0959 3840 elxstor - ok
22:07:37.0006 3840 EraserUtilDrvI11 - ok
22:07:37.0037 3840 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:07:37.0053 3840 EraserUtilRebootDrv - ok
22:07:37.0146 3840 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:07:37.0162 3840 ErrDev - ok
22:07:37.0209 3840 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:07:37.0224 3840 exfat - ok
22:07:37.0256 3840 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:07:37.0287 3840 fastfat - ok
22:07:37.0334 3840 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:07:37.0365 3840 fdc - ok
22:07:37.0458 3840 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:07:37.0474 3840 FileInfo - ok
22:07:37.0536 3840 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:07:37.0568 3840 Filetrace - ok
22:07:37.0583 3840 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:07:37.0614 3840 flpydisk - ok
22:07:37.0692 3840 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:07:37.0708 3840 FltMgr - ok
22:07:37.0786 3840 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:07:37.0802 3840 Fs_Rec - ok
22:07:37.0833 3840 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:07:37.0848 3840 gagp30kx - ok
22:07:37.0911 3840 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:07:37.0926 3840 GEARAspiWDM - ok
22:07:37.0989 3840 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:07:38.0036 3840 HDAudBus - ok
22:07:38.0082 3840 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:07:38.0145 3840 HidBth - ok
22:07:38.0160 3840 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:07:38.0223 3840 HidIr - ok
22:07:38.0254 3840 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:07:38.0285 3840 HidUsb - ok
22:07:38.0316 3840 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:07:38.0332 3840 HpCISSs - ok
22:07:38.0410 3840 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
22:07:38.0426 3840 HTTP - ok
22:07:38.0472 3840 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:07:38.0488 3840 i2omp - ok
22:07:38.0519 3840 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:07:38.0550 3840 i8042prt - ok
22:07:38.0628 3840 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\drivers\iastor.sys
22:07:38.0644 3840 iaStor - ok
22:07:38.0722 3840 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:07:38.0738 3840 iaStorV - ok
22:07:39.0003 3840 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:07:39.0221 3840 igfx - ok
22:07:39.0299 3840 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:07:39.0299 3840 iirsp - ok
22:07:39.0393 3840 IntcAzAudAddService (9b89f2e3d705651dec1f01033b9d6b24) C:\Windows\system32\drivers\RTKVHDA.sys
22:07:39.0455 3840 IntcAzAudAddService - ok
22:07:39.0533 3840 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
22:07:39.0533 3840 IntcHdmiAddService - ok
22:07:39.0580 3840 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:07:39.0596 3840 intelide - ok
22:07:39.0627 3840 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:07:39.0658 3840 intelppm - ok
22:07:39.0705 3840 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:07:39.0736 3840 IpFilterDriver - ok
22:07:39.0752 3840 IpInIp - ok
22:07:39.0830 3840 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:07:39.0845 3840 IPMIDRV - ok
22:07:39.0892 3840 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:07:39.0923 3840 IPNAT - ok
22:07:39.0954 3840 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:07:39.0986 3840 IRENUM - ok
22:07:40.0064 3840 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:07:40.0079 3840 isapnp - ok
22:07:40.0110 3840 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:07:40.0126 3840 iScsiPrt - ok
22:07:40.0173 3840 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:07:40.0188 3840 iteatapi - ok
22:07:40.0204 3840 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:07:40.0220 3840 iteraid - ok
22:07:40.0298 3840 JRAID (b07084095f8c03aadb9811c9df14b5e4) C:\Windows\system32\drivers\jraid.sys
22:07:40.0313 3840 JRAID - ok
22:07:40.0454 3840 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:07:40.0469 3840 kbdclass - ok
22:07:40.0532 3840 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:07:40.0563 3840 kbdhid - ok
22:07:40.0610 3840 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:07:40.0641 3840 KSecDD - ok
22:07:40.0734 3840 Lbd - ok
22:07:40.0766 3840 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:07:40.0797 3840 lltdio - ok
22:07:40.0875 3840 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:07:40.0890 3840 LSI_FC - ok
22:07:40.0906 3840 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:07:40.0922 3840 LSI_SAS - ok
22:07:40.0953 3840 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:07:40.0968 3840 LSI_SCSI - ok
22:07:41.0000 3840 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:07:41.0031 3840 luafv - ok
22:07:41.0078 3840 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
22:07:41.0093 3840 MBAMProtector - ok
22:07:41.0140 3840 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:07:41.0156 3840 megasas - ok
22:07:41.0234 3840 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:07:41.0249 3840 MegaSR - ok
22:07:41.0327 3840 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:07:41.0358 3840 Modem - ok
22:07:41.0546 3840 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:07:41.0577 3840 monitor - ok
22:07:41.0624 3840 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:07:41.0639 3840 mouclass - ok
22:07:41.0670 3840 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:07:41.0702 3840 mouhid - ok
22:07:41.0717 3840 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:07:41.0733 3840 MountMgr - ok
22:07:41.0764 3840 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:07:41.0780 3840 mpio - ok
22:07:41.0858 3840 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:07:41.0889 3840 mpsdrv - ok
22:07:41.0920 3840 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:07:41.0936 3840 Mraid35x - ok
22:07:41.0982 3840 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:07:41.0998 3840 MRxDAV - ok
22:07:42.0060 3840 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:07:42.0076 3840 mrxsmb - ok
22:07:42.0123 3840 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:07:42.0138 3840 mrxsmb10 - ok
22:07:42.0232 3840 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:07:42.0248 3840 mrxsmb20 - ok
22:07:42.0310 3840 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
22:07:42.0310 3840 msahci - ok
22:07:42.0372 3840 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:07:42.0372 3840 msdsm - ok
22:07:42.0419 3840 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:07:42.0450 3840 Msfs - ok
22:07:42.0606 3840 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:07:42.0622 3840 msisadrv - ok
22:07:42.0669 3840 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:07:42.0700 3840 MSKSSRV - ok
22:07:42.0731 3840 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:07:42.0762 3840 MSPCLOCK - ok
22:07:42.0809 3840 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:07:42.0840 3840 MSPQM - ok
22:07:42.0887 3840 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:07:42.0903 3840 MsRPC - ok
22:07:42.0934 3840 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:07:42.0934 3840 mssmbios - ok
22:07:42.0996 3840 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:07:43.0028 3840 MSTEE - ok
22:07:43.0074 3840 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:07:43.0090 3840 Mup - ok
22:07:43.0152 3840 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:07:43.0168 3840 NativeWifiP - ok
22:07:43.0324 3840 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVENG.SYS
22:07:43.0324 3840 NAVENG - ok
22:07:43.0402 3840 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVEX15.SYS
22:07:43.0480 3840 NAVEX15 - ok
22:07:43.0589 3840 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:07:43.0605 3840 NDIS - ok
22:07:43.0652 3840 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:07:43.0667 3840 NdisTapi - ok
22:07:43.0698 3840 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:07:43.0730 3840 Ndisuio - ok
22:07:43.0776 3840 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:07:43.0808 3840 NdisWan - ok
22:07:43.0823 3840 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:07:43.0839 3840 NDProxy - ok
22:07:43.0886 3840 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:07:43.0917 3840 NetBIOS - ok
22:07:43.0964 3840 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:07:43.0995 3840 netbt - ok
22:07:44.0042 3840 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:07:44.0042 3840 nfrd960 - ok
22:07:44.0073 3840 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:07:44.0104 3840 Npfs - ok
22:07:44.0135 3840 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:07:44.0151 3840 nsiproxy - ok
22:07:44.0213 3840 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:07:44.0276 3840 Ntfs - ok
22:07:44.0338 3840 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:07:44.0400 3840 ntrigdigi - ok
22:07:44.0478 3840 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:07:44.0510 3840 Null - ok
22:07:44.0525 3840 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:07:44.0541 3840 nvraid - ok
22:07:44.0588 3840 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:07:44.0588 3840 nvstor - ok
22:07:44.0666 3840 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:07:44.0681 3840 nv_agp - ok
22:07:44.0697 3840 NwlnkFlt - ok
22:07:44.0712 3840 NwlnkFwd - ok
22:07:44.0744 3840 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:07:44.0790 3840 ohci1394 - ok
22:07:44.0837 3840 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:07:44.0884 3840 Parport - ok
22:07:44.0931 3840 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:07:44.0946 3840 partmgr - ok
22:07:44.0978 3840 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:07:45.0024 3840 Parvdm - ok
22:07:45.0087 3840 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:07:45.0102 3840 pci - ok
22:07:45.0118 3840 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
22:07:45.0134 3840 pciide - ok
22:07:45.0196 3840 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:07:45.0212 3840 pcmcia - ok
22:07:45.0243 3840 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:07:45.0321 3840 PEAUTH - ok
22:07:45.0524 3840 Point32 (5b6f99087cc1342b3d193e8155f26b6f) C:\Windows\system32\DRIVERS\point32k.sys
22:07:45.0539 3840 Point32 - ok
22:07:45.0602 3840 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:07:45.0633 3840 PptpMiniport - ok
22:07:45.0648 3840 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:07:45.0680 3840 Processor - ok
22:07:45.0773 3840 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:07:45.0789 3840 PSched - ok
22:07:45.0836 3840 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
22:07:45.0851 3840 PxHelp20 - ok
22:07:45.0929 3840 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:07:45.0976 3840 ql2300 - ok
22:07:46.0038 3840 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:07:46.0038 3840 ql40xx - ok
22:07:46.0101 3840 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:07:46.0116 3840 QWAVEdrv - ok
22:07:46.0194 3840 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:07:46.0288 3840 R300 - ok
22:07:46.0319 3840 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:07:46.0350 3840 RasAcd - ok
22:07:46.0397 3840 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:07:46.0428 3840 Rasl2tp - ok
22:07:46.0506 3840 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:07:46.0522 3840 RasPppoe - ok
22:07:46.0616 3840 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:07:46.0631 3840 RasSstp - ok
22:07:46.0709 3840 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:07:46.0740 3840 rdbss - ok
22:07:46.0787 3840 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:07:46.0818 3840 RDPCDD - ok
22:07:46.0896 3840 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:07:46.0928 3840 rdpdr - ok
22:07:46.0990 3840 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:07:47.0021 3840 RDPENCDD - ok
22:07:47.0084 3840 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:07:47.0099 3840 RDPWD - ok
22:07:47.0193 3840 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:07:47.0224 3840 rspndr - ok
22:07:47.0271 3840 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:07:47.0286 3840 RTL8169 - ok
22:07:47.0396 3840 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:07:47.0411 3840 sbp2port - ok
22:07:47.0458 3840 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:07:47.0505 3840 secdrv - ok
22:07:47.0536 3840 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
22:07:47.0567 3840 Serenum - ok
22:07:47.0614 3840 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
22:07:47.0645 3840 Serial - ok
22:07:47.0676 3840 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:07:47.0708 3840 sermouse - ok
22:07:47.0770 3840 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:07:47.0801 3840 sffdisk - ok
22:07:47.0817 3840 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:07:47.0848 3840 sffp_mmc - ok
22:07:47.0926 3840 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:07:47.0957 3840 sffp_sd - ok
22:07:47.0973 3840 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:07:48.0020 3840 sfloppy - ok
22:07:48.0051 3840 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:07:48.0051 3840 sisagp - ok
22:07:48.0066 3840 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:07:48.0082 3840 SiSRaid2 - ok
22:07:48.0144 3840 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:07:48.0144 3840 SiSRaid4 - ok
22:07:48.0191 3840 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:07:48.0222 3840 Smb - ok
22:07:48.0332 3840 SPBBCDrv (e87cf104f12c92401c4d33c50a3d5dc8) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
22:07:48.0347 3840 SPBBCDrv - ok
22:07:48.0441 3840 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:07:48.0456 3840 spldr - ok
22:07:48.0519 3840 SRTSP (b36f8d6a02ff2b3a53e250a629782f29) C:\Windows\system32\Drivers\SRTSP.SYS
22:07:48.0534 3840 SRTSP - ok
22:07:48.0581 3840 SRTSPL (e99bd98ac171a29fc1ba9376be87ae73) C:\Windows\system32\Drivers\SRTSPL.SYS
22:07:48.0597 3840 SRTSPL - ok
22:07:48.0628 3840 SRTSPX (1af34729898063e9b7df8d149d767e07) C:\Windows\system32\Drivers\SRTSPX.SYS
22:07:48.0628 3840 SRTSPX - ok
22:07:48.0675 3840 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:07:48.0706 3840 srv - ok
22:07:48.0737 3840 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:07:48.0753 3840 srv2 - ok
22:07:48.0784 3840 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:07:48.0800 3840 srvnet - ok
22:07:48.0878 3840 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:07:48.0893 3840 swenum - ok
22:07:48.0924 3840 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:07:48.0924 3840 Symc8xx - ok
22:07:48.0971 3840 SymEvent (e42a34e6f5ca71a84d4c2de620aad13d) C:\Windows\system32\Drivers\SYMEVENT.SYS
22:07:48.0987 3840 SymEvent - ok
22:07:49.0034 3840 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
22:07:49.0049 3840 SYMREDRV - ok
22:07:49.0096 3840 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
22:07:49.0112 3840 SYMTDI - ok
22:07:49.0143 3840 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:07:49.0158 3840 Sym_hi - ok
22:07:49.0190 3840 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:07:49.0205 3840 Sym_u3 - ok
22:07:49.0268 3840 SysPlant (666992d996c524812e713effd836d043) C:\Windows\SYSTEM32\Drivers\SysPlant.sys
22:07:49.0268 3840 SysPlant - ok
22:07:49.0486 3840 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:07:49.0533 3840 Tcpip - ok
22:07:49.0595 3840 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:07:49.0658 3840 Tcpip6 - ok
22:07:49.0736 3840 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:07:49.0751 3840 tcpipreg - ok
22:07:49.0798 3840 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:07:49.0829 3840 TDPIPE - ok
22:07:49.0845 3840 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:07:49.0876 3840 TDTCP - ok
22:07:49.0923 3840 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:07:49.0938 3840 tdx - ok
22:07:50.0001 3840 Teefer2 (f63439ac8fa992bfa0c757eb644a1a0c) C:\Windows\system32\DRIVERS\teefer2.sys
22:07:50.0001 3840 Teefer2 - ok
22:07:50.0094 3840 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:07:50.0110 3840 TermDD - ok
22:07:50.0172 3840 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
22:07:50.0172 3840 TrueSight ( UnsignedFile.Multi.Generic ) - warning
22:07:50.0188 3840 TrueSight - detected UnsignedFile.Multi.Generic (1)
22:07:50.0235 3840 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:07:50.0266 3840 tssecsrv - ok
22:07:50.0297 3840 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:07:50.0297 3840 tunmp - ok
22:07:50.0360 3840 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:07:50.0375 3840 tunnel - ok
22:07:50.0422 3840 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:07:50.0422 3840 uagp35 - ok
22:07:50.0547 3840 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:07:50.0578 3840 udfs - ok
22:07:50.0640 3840 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:07:50.0656 3840 uliagpkx - ok
22:07:50.0703 3840 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:07:50.0718 3840 uliahci - ok
22:07:50.0781 3840 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:07:50.0796 3840 UlSata - ok
22:07:50.0843 3840 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:07:50.0859 3840 ulsata2 - ok
22:07:50.0890 3840 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:07:50.0921 3840 umbus - ok
22:07:50.0999 3840 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:07:51.0015 3840 USBAAPL - ok
22:07:51.0062 3840 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:07:51.0093 3840 usbccgp - ok
22:07:51.0124 3840 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:07:51.0171 3840 usbcir - ok
22:07:51.0249 3840 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:07:51.0264 3840 usbehci - ok
22:07:51.0342 3840 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:07:51.0358 3840 usbhub - ok
22:07:51.0420 3840 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:07:51.0467 3840 usbohci - ok
22:07:51.0545 3840 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:07:51.0592 3840 usbprint - ok
22:07:51.0654 3840 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:07:51.0686 3840 usbscan - ok
22:07:51.0764 3840 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:07:51.0795 3840 USBSTOR - ok
22:07:51.0873 3840 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:07:51.0904 3840 usbuhci - ok
22:07:51.0935 3840 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:07:51.0966 3840 vga - ok
22:07:52.0029 3840 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:07:52.0060 3840 VgaSave - ok
22:07:52.0076 3840 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:07:52.0091 3840 viaagp - ok
22:07:52.0185 3840 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:07:52.0216 3840 ViaC7 - ok
22:07:52.0356 3840 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:07:52.0372 3840 viaide - ok
22:07:52.0403 3840 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:07:52.0419 3840 volmgr - ok
22:07:52.0466 3840 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:07:52.0481 3840 volmgrx - ok
22:07:52.0559 3840 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:07:52.0575 3840 volsnap - ok
22:07:52.0637 3840 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:07:52.0653 3840 vsmraid - ok
22:07:52.0731 3840 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:07:52.0778 3840 WacomPen - ok
22:07:52.0840 3840 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:07:52.0871 3840 Wanarp - ok
22:07:52.0887 3840 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:07:52.0902 3840 Wanarpv6 - ok
22:07:52.0949 3840 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:07:52.0949 3840 Wd - ok
22:07:52.0996 3840 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:07:53.0012 3840 Wdf01000 - ok
22:07:53.0105 3840 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:07:53.0121 3840 WmiAcpi - ok
22:07:53.0214 3840 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:07:53.0230 3840 WpdUsb - ok
22:07:53.0339 3840 WPS (9748e527f0d71bc86a1fe45f294e368b) C:\Windows\system32\drivers\wpsdrvnt.sys
22:07:53.0339 3840 WPS - ok
22:07:53.0417 3840 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
22:07:53.0433 3840 WpsHelper - ok
22:07:53.0480 3840 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:07:53.0511 3840 ws2ifsl - ok
22:07:53.0589 3840 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:07:53.0620 3840 WUDFRd - ok
22:07:53.0667 3840 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:07:53.0792 3840 \Device\Harddisk0\DR0 - ok
22:07:53.0792 3840 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
22:07:53.0963 3840 \Device\Harddisk1\DR1 - ok
22:07:53.0979 3840 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
22:07:53.0979 3840 \Device\Harddisk2\DR2 - ok
22:07:54.0010 3840 Boot (0x1200) (8bcf45a8e9549495d4098b9fe5609ca8) \Device\Harddisk0\DR0\Partition0
22:07:54.0010 3840 \Device\Harddisk0\DR0\Partition0 - ok
22:07:54.0010 3840 Boot (0x1200) (5aa51cde19268509954e7840961d50c3) \Device\Harddisk0\DR0\Partition1
22:07:54.0010 3840 \Device\Harddisk0\DR0\Partition1 - ok
22:07:54.0026 3840 Boot (0x1200) (ab59b05fa41c6d9c15734fee8b39d8da) \Device\Harddisk1\DR1\Partition0
22:07:54.0026 3840 \Device\Harddisk1\DR1\Partition0 - ok
22:07:54.0026 3840 ============================================================
22:07:54.0026 3840 Scan finished
22:07:54.0026 3840 ============================================================
22:07:54.0026 2432 Detected object count: 1
22:07:54.0026 2432 Actual detected object count: 1
22:07:58.0394 2432 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
22:07:58.0394 2432 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:08:29.0999 2992 ============================================================
22:08:29.0999 2992 Scan started
22:08:29.0999 2992 Mode: Manual; SigCheck; TDLFS;
22:08:29.0999 2992 ============================================================
22:08:30.0280 2992 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:08:30.0296 2992 ACPI - ok
22:08:30.0342 2992 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:08:30.0374 2992 adp94xx - ok
22:08:30.0405 2992 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:08:30.0420 2992 adpahci - ok
22:08:30.0436 2992 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:08:30.0452 2992 adpu160m - ok
22:08:30.0483 2992 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:08:30.0498 2992 adpu320 - ok
22:08:30.0545 2992 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:08:30.0561 2992 AFD - ok
22:08:30.0592 2992 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:08:30.0608 2992 agp440 - ok
22:08:30.0623 2992 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:08:30.0639 2992 aic78xx - ok
22:08:30.0654 2992 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:08:30.0670 2992 aliide - ok
22:08:30.0701 2992 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:08:30.0717 2992 amdagp - ok
22:08:30.0779 2992 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:08:30.0779 2992 amdide - ok
22:08:30.0810 2992 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:08:30.0826 2992 AmdK7 - ok
22:08:30.0935 2992 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:08:30.0951 2992 AmdK8 - ok
22:08:31.0091 2992 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:08:31.0107 2992 arc - ok
22:08:31.0138 2992 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:08:31.0154 2992 arcsas - ok
22:08:31.0200 2992 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:08:31.0232 2992 AsyncMac - ok
22:08:31.0247 2992 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
22:08:31.0247 2992 atapi - ok
22:08:31.0278 2992 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:08:31.0310 2992 Beep - ok
22:08:31.0388 2992 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:08:31.0419 2992 blbdrive - ok
22:08:31.0450 2992 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:08:31.0466 2992 bowser - ok
22:08:31.0512 2992 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:08:31.0544 2992 BrFiltLo - ok
22:08:31.0606 2992 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:08:31.0622 2992 BrFiltUp - ok
22:08:31.0700 2992 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:08:31.0746 2992 Brserid - ok
22:08:31.0840 2992 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:08:31.0887 2992 BrSerWdm - ok
22:08:31.0980 2992 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:08:32.0043 2992 BrUsbMdm - ok
22:08:32.0090 2992 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:08:32.0152 2992 BrUsbSer - ok
22:08:32.0230 2992 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:08:32.0277 2992 BTHMODEM - ok
22:08:32.0324 2992 catchme - ok
22:08:32.0386 2992 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:08:32.0417 2992 cdfs - ok
22:08:32.0480 2992 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:08:32.0495 2992 cdrom - ok
22:08:32.0573 2992 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:08:32.0589 2992 circlass - ok
22:08:32.0636 2992 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:08:32.0651 2992 CLFS - ok
22:08:32.0698 2992 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:08:32.0714 2992 cmdide - ok
22:08:32.0760 2992 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
22:08:32.0760 2992 COH_Mon - ok
22:08:32.0792 2992 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
22:08:32.0807 2992 Compbatt - ok
22:08:32.0838 2992 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:08:32.0854 2992 crcdisk - ok
22:08:32.0870 2992 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:08:32.0901 2992 Crusoe - ok
22:08:32.0979 2992 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:08:32.0994 2992 DfsC - ok
22:08:33.0135 2992 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:08:33.0135 2992 disk - ok
22:08:33.0213 2992 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:08:33.0244 2992 drmkaud - ok
22:08:33.0291 2992 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:08:33.0322 2992 DXGKrnl - ok
22:08:33.0462 2992 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
22:08:33.0494 2992 e1express - ok
22:08:33.0525 2992 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:08:33.0556 2992 E1G60 - ok
22:08:33.0603 2992 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:08:33.0618 2992 Ecache - ok
22:08:33.0696 2992 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:08:33.0712 2992 eeCtrl - ok
22:08:33.0790 2992 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:08:33.0821 2992 elxstor - ok
22:08:33.0821 2992 EraserUtilDrvI11 - ok
22:08:33.0868 2992 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:08:33.0884 2992 EraserUtilRebootDrv - ok
22:08:33.0977 2992 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:08:33.0993 2992 ErrDev - ok
22:08:34.0055 2992 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:08:34.0071 2992 exfat - ok
22:08:34.0149 2992 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:08:34.0180 2992 fastfat - ok
22:08:34.0211 2992 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:08:34.0242 2992 fdc - ok
22:08:34.0305 2992 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:08:34.0305 2992 FileInfo - ok
22:08:34.0320 2992 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:08:34.0352 2992 Filetrace - ok
22:08:34.0367 2992 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:08:34.0398 2992 flpydisk - ok
22:08:34.0461 2992 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:08:34.0476 2992 FltMgr - ok
22:08:34.0523 2992 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:08:34.0539 2992 Fs_Rec - ok
22:08:34.0554 2992 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:08:34.0570 2992 gagp30kx - ok
22:08:34.0648 2992 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:08:34.0664 2992 GEARAspiWDM - ok
22:08:34.0710 2992 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:08:34.0757 2992 HDAudBus - ok
22:08:34.0835 2992 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:08:34.0866 2992 HidBth - ok
22:08:34.0898 2992 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:08:34.0929 2992 HidIr - ok
22:08:35.0022 2992 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:08:35.0038 2992 HidUsb - ok
22:08:35.0178 2992 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:08:35.0194 2992 HpCISSs - ok
22:08:35.0272 2992 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
22:08:35.0303 2992 HTTP - ok
22:08:35.0350 2992 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:08:35.0366 2992 i2omp - ok
22:08:35.0397 2992 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:08:35.0412 2992 i8042prt - ok
22:08:35.0490 2992 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\drivers\iastor.sys
22:08:35.0506 2992 iaStor - ok
22:08:35.0568 2992 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:08:35.0584 2992 iaStorV - ok
22:08:35.0849 2992 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:08:36.0099 2992 igfx - ok
22:08:36.0177 2992 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:08:36.0192 2992 iirsp - ok
22:08:36.0270 2992 IntcAzAudAddService (9b89f2e3d705651dec1f01033b9d6b24) C:\Windows\system32\drivers\RTKVHDA.sys
22:08:36.0317 2992 IntcAzAudAddService - ok
22:08:36.0348 2992 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
22:08:36.0364 2992 IntcHdmiAddService - ok
22:08:36.0411 2992 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:08:36.0411 2992 intelide - ok
22:08:36.0458 2992 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:08:36.0489 2992 intelppm - ok
22:08:36.0520 2992 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:08:36.0551 2992 IpFilterDriver - ok
22:08:36.0567 2992 IpInIp - ok
22:08:36.0645 2992 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:08:36.0676 2992 IPMIDRV - ok
22:08:36.0707 2992 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:08:36.0738 2992 IPNAT - ok
22:08:36.0770 2992 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:08:36.0801 2992 IRENUM - ok
22:08:36.0863 2992 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:08:36.0879 2992 isapnp - ok
22:08:36.0957 2992 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:08:36.0972 2992 iScsiPrt - ok
22:08:37.0113 2992 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:08:37.0113 2992 iteatapi - ok
22:08:37.0144 2992 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:08:37.0144 2992 iteraid - ok
22:08:37.0191 2992 JRAID (b07084095f8c03aadb9811c9df14b5e4) C:\Windows\system32\drivers\jraid.sys
22:08:37.0206 2992 JRAID - ok
22:08:37.0238 2992 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:08:37.0253 2992 kbdclass - ok
22:08:37.0347 2992 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:08:37.0362 2992 kbdhid - ok
22:08:37.0425 2992 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:08:37.0440 2992 KSecDD - ok
22:08:37.0456 2992 Lbd - ok
22:08:37.0503 2992 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:08:37.0534 2992 lltdio - ok
22:08:37.0565 2992 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:08:37.0581 2992 LSI_FC - ok
22:08:37.0612 2992 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:08:37.0628 2992 LSI_SAS - ok
22:08:37.0706 2992 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:08:37.0721 2992 LSI_SCSI - ok
22:08:37.0752 2992 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:08:37.0784 2992 luafv - ok
22:08:37.0846 2992 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
22:08:37.0862 2992 MBAMProtector - ok
22:08:37.0908 2992 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:08:37.0924 2992 megasas - ok
22:08:38.0002 2992 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:08:38.0018 2992 MegaSR - ok
22:08:38.0080 2992 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:08:38.0111 2992 Modem - ok
22:08:38.0205 2992 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:08:38.0236 2992 monitor - ok
22:08:38.0298 2992 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:08:38.0298 2992 mouclass - ok
22:08:38.0330 2992 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:08:38.0361 2992 mouhid - ok
22:08:38.0376 2992 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:08:38.0392 2992 MountMgr - ok
22:08:38.0439 2992 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:08:38.0454 2992 mpio - ok
22:08:38.0501 2992 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:08:38.0517 2992 mpsdrv - ok
22:08:38.0595 2992 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:08:38.0595 2992 Mraid35x - ok
22:08:38.0642 2992 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:08:38.0673 2992 MRxDAV - ok
22:08:38.0735 2992 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:08:38.0751 2992 mrxsmb - ok
22:08:38.0798 2992 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:08:38.0813 2992 mrxsmb10 - ok
22:08:38.0844 2992 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:08:38.0860 2992 mrxsmb20 - ok
22:08:38.0891 2992 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
22:08:38.0891 2992 msahci - ok
22:08:38.0922 2992 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:08:38.0938 2992 msdsm - ok
22:08:38.0969 2992 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:08:39.0000 2992 Msfs - ok
22:08:39.0000 2992 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:08:39.0016 2992 msisadrv - ok
22:08:39.0094 2992 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:08:39.0125 2992 MSKSSRV - ok
22:08:39.0141 2992 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:08:39.0172 2992 MSPCLOCK - ok
22:08:39.0172 2992 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:08:39.0203 2992 MSPQM - ok
22:08:39.0250 2992 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:08:39.0266 2992 MsRPC - ok
22:08:39.0281 2992 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:08:39.0297 2992 mssmbios - ok
22:08:39.0328 2992 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:08:39.0359 2992 MSTEE - ok
22:08:39.0406 2992 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:08:39.0422 2992 Mup - ok
22:08:39.0468 2992 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:08:39.0484 2992 NativeWifiP - ok
22:08:39.0624 2992 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVENG.SYS
22:08:39.0640 2992 NAVENG - ok
22:08:39.0702 2992 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVEX15.SYS
22:08:39.0765 2992 NAVEX15 - ok
22:08:39.0936 2992 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:08:39.0968 2992 NDIS - ok
22:08:39.0999 2992 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:08:40.0014 2992 NdisTapi - ok
22:08:40.0030 2992 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:08:40.0061 2992 Ndisuio - ok
22:08:40.0155 2992 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:08:40.0186 2992 NdisWan - ok
22:08:40.0202 2992 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:08:40.0233 2992 NDProxy - ok
22:08:40.0311 2992 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:08:40.0342 2992 NetBIOS - ok
22:08:40.0389 2992 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:08:40.0420 2992 netbt - ok
22:08:40.0514 2992 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:08:40.0529 2992 nfrd960 - ok
22:08:40.0576 2992 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:08:40.0607 2992 Npfs - ok
22:08:40.0670 2992 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:08:40.0701 2992 nsiproxy - ok
22:08:40.0779 2992 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:08:40.0826 2992 Ntfs - ok
22:08:41.0028 2992 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:08:41.0075 2992 ntrigdigi - ok
22:08:41.0153 2992 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:08:41.0184 2992 Null - ok
22:08:41.0200 2992 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:08:41.0216 2992 nvraid - ok
22:08:41.0247 2992 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:08:41.0247 2992 nvstor - ok
22:08:41.0309 2992 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:08:41.0325 2992 nv_agp - ok
22:08:41.0325 2992 NwlnkFlt - ok
22:08:41.0340 2992 NwlnkFwd - ok
22:08:41.0372 2992 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:08:41.0434 2992 ohci1394 - ok
22:08:41.0512 2992 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:08:41.0559 2992 Parport - ok
22:08:41.0652 2992 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:08:41.0668 2992 partmgr - ok
22:08:41.0699 2992 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:08:41.0746 2992 Parvdm - ok
22:08:41.0793 2992 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:08:41.0808 2992 pci - ok
22:08:41.0840 2992 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
22:08:41.0855 2992 pciide - ok
22:08:41.0918 2992 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:08:41.0933 2992 pcmcia - ok
22:08:41.0964 2992 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:08:42.0042 2992 PEAUTH - ok
22:08:42.0152 2992 Point32 (5b6f99087cc1342b3d193e8155f26b6f) C:\Windows\system32\DRIVERS\point32k.sys
22:08:42.0167 2992 Point32 - ok
22:08:42.0198 2992 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:08:42.0230 2992 PptpMiniport - ok
22:08:42.0292 2992 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:08:42.0323 2992 Processor - ok
22:08:42.0401 2992 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:08:42.0432 2992 PSched - ok
22:08:42.0495 2992 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
22:08:42.0510 2992 PxHelp20 - ok
22:08:42.0557 2992 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:08:42.0604 2992 ql2300 - ok
22:08:42.0651 2992 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:08:42.0666 2992 ql40xx - ok
22:08:42.0713 2992 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:08:42.0729 2992 QWAVEdrv - ok
22:08:42.0854 2992 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:08:42.0947 2992 R300 - ok
22:08:42.0978 2992 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:08:43.0010 2992 RasAcd - ok
22:08:43.0025 2992 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:08:43.0056 2992 Rasl2tp - ok
22:08:43.0150 2992 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:08:43.0166 2992 RasPppoe - ok
22:08:43.0212 2992 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:08:43.0228 2992 RasSstp - ok
22:08:43.0322 2992 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:08:43.0353 2992 rdbss - ok
22:08:43.0368 2992 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:08:43.0400 2992 RDPCDD - ok
22:08:43.0431 2992 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:08:43.0462 2992 rdpdr - ok
22:08:43.0478 2992 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:08:43.0509 2992 RDPENCDD - ok
22:08:43.0540 2992 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:08:43.0571 2992 RDPWD - ok
22:08:43.0602 2992 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:08:43.0634 2992 rspndr - ok
22:08:43.0696 2992 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:08:43.0727 2992 RTL8169 - ok
22:08:43.0852 2992 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:08:43.0868 2992 sbp2port - ok
22:08:43.0930 2992 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:08:43.0977 2992 secdrv - ok
22:08:44.0024 2992 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
22:08:44.0039 2992 Serenum - ok
22:08:44.0148 2992 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
22:08:44.0180 2992 Serial - ok
22:08:44.0195 2992 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:08:44.0226 2992 sermouse - ok
22:08:44.0289 2992 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:08:44.0320 2992 sffdisk - ok
22:08:44.0336 2992 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:08:44.0367 2992 sffp_mmc - ok
22:08:44.0382 2992 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:08:44.0414 2992 sffp_sd - ok
22:08:44.0492 2992 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:08:44.0538 2992 sfloppy - ok
22:08:44.0585 2992 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:08:44.0585 2992 sisagp - ok
22:08:44.0632 2992 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:08:44.0648 2992 SiSRaid2 - ok
22:08:44.0726 2992 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:08:44.0741 2992 SiSRaid4 - ok
22:08:44.0819 2992 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:08:44.0850 2992 Smb - ok
22:08:44.0975 2992 SPBBCDrv (e87cf104f12c92401c4d33c50a3d5dc8) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
22:08:44.0991 2992 SPBBCDrv - ok
22:08:45.0069 2992 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:08:45.0069 2992 spldr - ok
22:08:45.0131 2992 SRTSP (b36f8d6a02ff2b3a53e250a629782f29) C:\Windows\system32\Drivers\SRTSP.SYS
22:08:45.0147 2992 SRTSP - ok
22:08:45.0194 2992 SRTSPL (e99bd98ac171a29fc1ba9376be87ae73) C:\Windows\system32\Drivers\SRTSPL.SYS
22:08:45.0209 2992 SRTSPL - ok
22:08:45.0256 2992 SRTSPX (1af34729898063e9b7df8d149d767e07) C:\Windows\system32\Drivers\SRTSPX.SYS
22:08:45.0256 2992 SRTSPX - ok
22:08:45.0303 2992 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:08:45.0318 2992 srv - ok
22:08:45.0365 2992 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:08:45.0381 2992 srv2 - ok
22:08:45.0428 2992 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:08:45.0443 2992 srvnet - ok
22:08:45.0521 2992 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:08:45.0521 2992 swenum - ok
22:08:45.0615 2992 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:08:45.0630 2992 Symc8xx - ok
22:08:45.0662 2992 SymEvent (e42a34e6f5ca71a84d4c2de620aad13d) C:\Windows\system32\Drivers\SYMEVENT.SYS
22:08:45.0662 2992 SymEvent - ok
22:08:45.0724 2992 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
22:08:45.0724 2992 SYMREDRV - ok
22:08:45.0771 2992 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
22:08:45.0786 2992 SYMTDI - ok
22:08:45.0818 2992 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:08:45.0818 2992 Sym_hi - ok
22:08:45.0849 2992 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:08:45.0864 2992 Sym_u3 - ok
22:08:45.0911 2992 SysPlant (666992d996c524812e713effd836d043) C:\Windows\SYSTEM32\Drivers\SysPlant.sys
22:08:45.0927 2992 SysPlant - ok
22:08:46.0036 2992 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:08:46.0067 2992 Tcpip - ok
22:08:46.0114 2992 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:08:46.0145 2992 Tcpip6 - ok
22:08:46.0192 2992 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:08:46.0208 2992 tcpipreg - ok
22:08:46.0239 2992 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:08:46.0270 2992 TDPIPE - ok
22:08:46.0332 2992 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:08:46.0364 2992 TDTCP - ok
22:08:46.0410 2992 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:08:46.0426 2992 tdx - ok
22:08:46.0520 2992 Teefer2 (f63439ac8fa992bfa0c757eb644a1a0c) C:\Windows\system32\DRIVERS\teefer2.sys
22:08:46.0535 2992 Teefer2 - ok
22:08:46.0629 2992 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:08:46.0644 2992 TermDD - ok
22:08:46.0754 2992 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
22:08:46.0754 2992 TrueSight ( UnsignedFile.Multi.Generic ) - warning
22:08:46.0754 2992 TrueSight - detected UnsignedFile.Multi.Generic (1)
22:08:46.0800 2992 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:08:46.0832 2992 tssecsrv - ok
22:08:46.0894 2992 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:08:46.0910 2992 tunmp - ok
22:08:46.0956 2992 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:08:46.0972 2992 tunnel - ok
22:08:46.0988 2992 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:08:47.0003 2992 uagp35 - ok
22:08:47.0066 2992 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:08:47.0081 2992 udfs - ok
22:08:47.0128 2992 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:08:47.0128 2992 uliagpkx - ok
22:08:47.0175 2992 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:08:47.0190 2992 uliahci - ok
22:08:47.0222 2992 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:08:47.0237 2992 UlSata - ok
22:08:47.0300 2992 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:08:47.0315 2992 ulsata2 - ok
22:08:47.0346 2992 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:08:47.0378 2992 umbus - ok
22:08:47.0456 2992 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:08:47.0471 2992 USBAAPL - ok
22:08:47.0502 2992 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:08:47.0534 2992 usbccgp - ok
22:08:47.0705 2992 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:08:47.0752 2992 usbcir - ok
22:08:47.0830 2992 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:08:47.0846 2992 usbehci - ok
22:08:47.0908 2992 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:08:47.0939 2992 usbhub - ok
22:08:48.0002 2992 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:08:48.0064 2992 usbohci - ok
22:08:48.0080 2992 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:08:48.0126 2992 usbprint - ok
22:08:48.0173 2992 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:08:48.0204 2992 usbscan - ok
22:08:48.0236 2992 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:08:48.0267 2992 USBSTOR - ok
22:08:48.0314 2992 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:08:48.0345 2992 usbuhci - ok
22:08:48.0376 2992 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:08:48.0407 2992 vga - ok
22:08:48.0423 2992 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:08:48.0454 2992 VgaSave - ok
22:08:48.0485 2992 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:08:48.0485 2992 viaagp - ok
22:08:48.0563 2992 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:08:48.0594 2992 ViaC7 - ok
22:08:48.0610 2992 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:08:48.0626 2992 viaide - ok
22:08:48.0672 2992 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:08:48.0672 2992 volmgr - ok
22:08:48.0750 2992 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:08:48.0766 2992 volmgrx - ok
22:08:48.0828 2992 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:08:48.0844 2992 volsnap - ok
22:08:48.0891 2992 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:08:48.0906 2992 vsmraid - ok
22:08:48.0938 2992 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:08:49.0000 2992 WacomPen - ok
22:08:49.0016 2992 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:08:49.0031 2992 Wanarp - ok
22:08:49.0047 2992 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:08:49.0062 2992 Wanarpv6 - ok
22:08:49.0140 2992 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:08:49.0140 2992 Wd - ok
22:08:49.0187 2992 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:08:49.0203 2992 Wdf01000 - ok
22:08:49.0343 2992 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:08:49.0359 2992 WmiAcpi - ok
22:08:49.0546 2992 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:08:49.0562 2992 WpdUsb - ok
22:08:49.0640 2992 WPS (9748e527f0d71bc86a1fe45f294e368b) C:\Windows\system32\drivers\wpsdrvnt.sys
22:08:49.0655 2992 WPS - ok
22:08:49.0718 2992 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
22:08:49.0733 2992 WpsHelper - ok
22:08:49.0749 2992 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:08:49.0780 2992 ws2ifsl - ok
22:08:49.0874 2992 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:08:49.0905 2992 WUDFRd - ok
22:08:49.0936 2992 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:08:50.0061 2992 \Device\Harddisk0\DR0 - ok
22:08:50.0076 2992 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
22:08:50.0232 2992 \Device\Harddisk1\DR1 - ok
22:08:50.0248 2992 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
22:08:50.0248 2992 \Device\Harddisk2\DR2 - ok
22:08:50.0279 2992 Boot (0x1200) (8bcf45a8e9549495d4098b9fe5609ca8) \Device\Harddisk0\DR0\Partition0
22:08:50.0279 2992 \Device\Harddisk0\DR0\Partition0 - ok
22:08:50.0279 2992 Boot (0x1200) (5aa51cde19268509954e7840961d50c3) \Device\Harddisk0\DR0\Partition1
22:08:50.0279 2992 \Device\Harddisk0\DR0\Partition1 - ok
22:08:50.0295 2992 Boot (0x1200) (ab59b05fa41c6d9c15734fee8b39d8da) \Device\Harddisk1\DR1\Partition0
22:08:50.0295 2992 \Device\Harddisk1\DR1\Partition0 - ok
22:08:50.0295 2992 ============================================================
22:08:50.0295 2992 Scan finished
22:08:50.0295 2992 ============================================================
22:08:50.0295 1172 Detected object count: 1
22:08:50.0295 1172 Actual detected object count: 1
22:08:56.0051 1172 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
22:08:56.0051 1172 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip

[knarf1]

22:00:53.0980 3280 TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27
22:00:54.0464 3280 ============================================================
22:00:54.0464 3280 Current date / time: 2012/01/25 22:00:54.0464
22:00:54.0464 3280 SystemInfo:
22:00:54.0464 3280
22:00:54.0464 3280 OS Version: 6.0.6002 ServicePack: 2.0
22:00:54.0464 3280 Product type: Workstation
22:00:54.0464 3280 ComputerName: MSUMAN-PC
22:00:54.0464 3280 UserName: msuman
22:00:54.0464 3280 Windows directory: C:\Windows
22:00:54.0464 3280 System windows directory: C:\Windows
22:00:54.0464 3280 Processor architecture: Intel x86
22:00:54.0464 3280 Number of processors: 2
22:00:54.0464 3280 Page size: 0x1000
22:00:54.0464 3280 Boot type: Normal boot
22:00:54.0464 3280 ============================================================
22:00:55.0181 3280 Drive \Device\Harddisk0\DR0 - Size: 0x3A35294400 (232.83 Gb), SectorSize: 0x200, Cylinders: 0x76BA, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:00:55.0181 3280 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0B00000 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1DB00, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:00:55.0181 3280 Drive \Device\Harddisk2\DR2 - Size: 0x2BAA1200000 (2794.52 Gb), SectorSize: 0x1000, Cylinders: 0xB220, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
22:00:55.0805 3280 Initialize success
22:01:44.0742 3268 ============================================================
22:01:44.0742 3268 Scan started
22:01:44.0742 3268 Mode: Manual; SigCheck; TDLFS;
22:01:44.0742 3268 ============================================================
22:01:45.0990 3268 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:01:46.0131 3268 ACPI - ok
22:01:46.0490 3268 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:01:46.0568 3268 adp94xx - ok
22:01:46.0677 3268 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:01:46.0724 3268 adpahci - ok
22:01:46.0786 3268 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:01:46.0802 3268 adpu160m - ok
22:01:46.0911 3268 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:01:46.0958 3268 adpu320 - ok
22:01:47.0129 3268 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:01:47.0270 3268 AFD - ok
22:01:47.0628 3268 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:01:47.0660 3268 agp440 - ok
22:01:47.0847 3268 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:01:47.0862 3268 aic78xx - ok
22:01:47.0909 3268 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:01:47.0940 3268 aliide - ok
22:01:48.0096 3268 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:01:48.0128 3268 amdagp - ok
22:01:48.0190 3268 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:01:48.0206 3268 amdide - ok
22:01:48.0330 3268 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:01:48.0502 3268 AmdK7 - ok
22:01:48.0627 3268 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:01:48.0720 3268 AmdK8 - ok
22:01:48.0845 3268 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:01:48.0892 3268 arc - ok
22:01:48.0954 3268 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:01:48.0986 3268 arcsas - ok
22:01:49.0157 3268 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:01:49.0251 3268 AsyncMac - ok
22:01:49.0329 3268 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
22:01:49.0344 3268 atapi - ok
22:01:49.0563 3268 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:01:49.0641 3268 Beep - ok
22:01:49.0906 3268 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:01:49.0984 3268 blbdrive - ok
22:01:50.0124 3268 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:01:50.0202 3268 bowser - ok
22:01:50.0296 3268 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:01:50.0405 3268 BrFiltLo - ok
22:01:50.0452 3268 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:01:50.0530 3268 BrFiltUp - ok
22:01:50.0670 3268 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:01:50.0873 3268 Brserid - ok
22:01:51.0216 3268 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:01:51.0326 3268 BrSerWdm - ok
22:01:51.0528 3268 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:01:51.0638 3268 BrUsbMdm - ok
22:01:51.0887 3268 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:01:51.0965 3268 BrUsbSer - ok
22:01:52.0090 3268 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:01:52.0215 3268 BTHMODEM - ok
22:01:52.0324 3268 catchme - ok
22:01:52.0496 3268 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:01:52.0558 3268 cdfs - ok
22:01:52.0667 3268 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:01:52.0745 3268 cdrom - ok
22:01:52.0901 3268 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:01:52.0964 3268 circlass - ok
22:01:53.0198 3268 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:01:53.0229 3268 CLFS - ok
22:01:53.0322 3268 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:01:53.0369 3268 cmdide - ok
22:01:53.0447 3268 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
22:01:53.0478 3268 COH_Mon - ok
22:01:53.0572 3268 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
22:01:53.0619 3268 Compbatt - ok
22:01:53.0634 3268 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:01:53.0650 3268 crcdisk - ok
22:01:53.0666 3268 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:01:53.0712 3268 Crusoe - ok
22:01:53.0915 3268 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:01:53.0962 3268 DfsC - ok
22:01:54.0134 3268 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:01:54.0165 3268 disk - ok
22:01:54.0212 3268 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:01:54.0258 3268 drmkaud - ok
22:01:54.0726 3268 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:01:54.0836 3268 DXGKrnl - ok
22:01:55.0101 3268 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
22:01:55.0194 3268 e1express - ok
22:01:55.0319 3268 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:01:55.0397 3268 E1G60 - ok
22:01:55.0506 3268 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:01:55.0553 3268 Ecache - ok
22:01:55.0803 3268 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:01:55.0881 3268 eeCtrl - ok
22:01:56.0068 3268 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:01:56.0099 3268 elxstor - ok
22:01:56.0193 3268 EraserUtilDrvI11 - ok
22:01:56.0271 3268 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:01:56.0286 3268 EraserUtilRebootDrv - ok
22:01:56.0630 3268 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:01:56.0723 3268 ErrDev - ok
22:01:56.0910 3268 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:01:56.0988 3268 exfat - ok
22:01:57.0394 3268 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:01:57.0441 3268 fastfat - ok
22:01:57.0612 3268 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:01:57.0690 3268 fdc - ok
22:01:57.0831 3268 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:01:57.0846 3268 FileInfo - ok
22:01:57.0878 3268 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:01:57.0940 3268 Filetrace - ok
22:01:58.0283 3268 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:01:58.0377 3268 flpydisk - ok
22:01:58.0470 3268 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:01:58.0486 3268 FltMgr - ok
22:01:58.0736 3268 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:01:58.0798 3268 Fs_Rec - ok
22:01:58.0876 3268 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:01:58.0907 3268 gagp30kx - ok
22:01:58.0985 3268 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:01:59.0016 3268 GEARAspiWDM - ok
22:01:59.0344 3268 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:01:59.0469 3268 HDAudBus - ok
22:01:59.0906 3268 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:02:00.0030 3268 HidBth - ok
22:02:00.0405 3268 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:02:00.0514 3268 HidIr - ok
22:02:00.0639 3268 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:02:00.0717 3268 HidUsb - ok
22:02:00.0998 3268 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:02:01.0013 3268 HpCISSs - ok
22:02:01.0076 3268 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
22:02:01.0169 3268 HTTP - ok
22:02:01.0559 3268 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:02:01.0606 3268 i2omp - ok
22:02:01.0731 3268 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:02:01.0809 3268 i8042prt - ok
22:02:02.0183 3268 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\drivers\iastor.sys
22:02:02.0199 3268 iaStor - ok
22:02:02.0495 3268 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:02:02.0558 3268 iaStorV - ok
22:02:02.0979 3268 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:02:03.0650 3268 igfx - ok
22:02:03.0977 3268 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:02:04.0071 3268 iirsp - ok
22:02:04.0632 3268 IntcAzAudAddService (9b89f2e3d705651dec1f01033b9d6b24) C:\Windows\system32\drivers\RTKVHDA.sys
22:02:05.0210 3268 IntcAzAudAddService - ok
22:02:05.0834 3268 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
22:02:05.0990 3268 IntcHdmiAddService - ok
22:02:06.0629 3268 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:02:06.0676 3268 intelide - ok
22:02:07.0269 3268 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:02:07.0362 3268 intelppm - ok
22:02:08.0018 3268 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:02:08.0127 3268 IpFilterDriver - ok
22:02:08.0454 3268 IpInIp - ok
22:02:09.0047 3268 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:02:09.0156 3268 IPMIDRV - ok
22:02:09.0656 3268 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:02:09.0718 3268 IPNAT - ok
22:02:10.0092 3268 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:02:10.0139 3268 IRENUM - ok
22:02:10.0514 3268 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:02:10.0560 3268 isapnp - ok
22:02:10.0826 3268 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:02:10.0888 3268 iScsiPrt - ok
22:02:10.0966 3268 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:02:10.0997 3268 iteatapi - ok
22:02:11.0138 3268 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:02:11.0169 3268 iteraid - ok
22:02:11.0200 3268 JRAID (b07084095f8c03aadb9811c9df14b5e4) C:\Windows\system32\drivers\jraid.sys
22:02:11.0294 3268 JRAID - ok
22:02:11.0340 3268 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:02:11.0387 3268 kbdclass - ok
22:02:11.0434 3268 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:02:11.0481 3268 kbdhid - ok
22:02:11.0902 3268 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:02:11.0980 3268 KSecDD - ok
22:02:12.0058 3268 Lbd - ok
22:02:12.0120 3268 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:02:12.0183 3268 lltdio - ok
22:02:12.0401 3268 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:02:12.0432 3268 LSI_FC - ok
22:02:12.0776 3268 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:02:12.0822 3268 LSI_SAS - ok
22:02:12.0963 3268 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:02:13.0010 3268 LSI_SCSI - ok
22:02:13.0072 3268 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:02:13.0150 3268 luafv - ok
22:02:13.0228 3268 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
22:02:13.0244 3268 MBAMProtector - ok
22:02:13.0368 3268 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:02:13.0400 3268 megasas - ok
22:02:13.0478 3268 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:02:13.0509 3268 MegaSR - ok
22:02:13.0571 3268 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:02:13.0618 3268 Modem - ok
22:02:13.0743 3268 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:02:13.0821 3268 monitor - ok
22:02:14.0008 3268 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:02:14.0024 3268 mouclass - ok
22:02:14.0055 3268 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:02:14.0102 3268 mouhid - ok
22:02:14.0148 3268 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:02:14.0164 3268 MountMgr - ok
22:02:14.0258 3268 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:02:14.0289 3268 mpio - ok
22:02:14.0320 3268 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:02:14.0382 3268 mpsdrv - ok
22:02:14.0585 3268 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:02:14.0632 3268 Mraid35x - ok
22:02:14.0694 3268 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:02:14.0788 3268 MRxDAV - ok
22:02:14.0882 3268 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:02:14.0944 3268 mrxsmb - ok
22:02:15.0022 3268 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:02:15.0084 3268 mrxsmb10 - ok
22:02:15.0209 3268 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:02:15.0256 3268 mrxsmb20 - ok
22:02:15.0287 3268 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
22:02:15.0318 3268 msahci - ok
22:02:15.0350 3268 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:02:15.0381 3268 msdsm - ok
22:02:15.0428 3268 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:02:15.0459 3268 Msfs - ok
22:02:15.0615 3268 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:02:15.0662 3268 msisadrv - ok
22:02:15.0833 3268 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:02:15.0927 3268 MSKSSRV - ok
22:02:16.0114 3268 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:02:16.0161 3268 MSPCLOCK - ok
22:02:16.0223 3268 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:02:16.0286 3268 MSPQM - ok
22:02:16.0410 3268 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:02:16.0442 3268 MsRPC - ok
22:02:16.0457 3268 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:02:16.0473 3268 mssmbios - ok
22:02:16.0504 3268 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:02:16.0551 3268 MSTEE - ok
22:02:16.0956 3268 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:02:16.0988 3268 Mup - ok
22:02:17.0081 3268 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:02:17.0128 3268 NativeWifiP - ok
22:02:17.0393 3268 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVENG.SYS
22:02:17.0487 3268 NAVENG - ok
22:02:17.0986 3268 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVEX15.SYS
22:02:18.0126 3268 NAVEX15 - ok
22:02:18.0454 3268 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:02:18.0501 3268 NDIS - ok
22:02:18.0579 3268 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:02:18.0626 3268 NdisTapi - ok
22:02:18.0782 3268 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:02:18.0860 3268 Ndisuio - ok
22:02:18.0953 3268 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:02:19.0047 3268 NdisWan - ok
22:02:19.0109 3268 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:02:19.0156 3268 NDProxy - ok
22:02:19.0296 3268 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:02:19.0374 3268 NetBIOS - ok
22:02:19.0562 3268 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:02:19.0593 3268 netbt - ok
22:02:19.0952 3268 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:02:19.0983 3268 nfrd960 - ok
22:02:20.0217 3268 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:02:20.0264 3268 Npfs - ok
22:02:20.0747 3268 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:02:20.0825 3268 nsiproxy - ok
22:02:21.0075 3268 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:02:21.0184 3268 Ntfs - ok
22:02:21.0293 3268 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:02:21.0356 3268 ntrigdigi - ok
22:02:21.0636 3268 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:02:21.0714 3268 Null - ok
22:02:21.0777 3268 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:02:21.0824 3268 nvraid - ok
22:02:21.0870 3268 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:02:21.0902 3268 nvstor - ok
22:02:21.0933 3268 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:02:21.0980 3268 nv_agp - ok
22:02:22.0229 3268 NwlnkFlt - ok
22:02:22.0276 3268 NwlnkFwd - ok
22:02:22.0338 3268 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:02:22.0416 3268 ohci1394 - ok
22:02:22.0791 3268 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:02:22.0869 3268 Parport - ok
22:02:23.0321 3268 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:02:23.0337 3268 partmgr - ok
22:02:23.0820 3268 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:02:23.0898 3268 Parvdm - ok
22:02:24.0351 3268 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:02:24.0366 3268 pci - ok
22:02:24.0678 3268 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
22:02:24.0741 3268 pciide - ok
22:02:24.0788 3268 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:02:24.0819 3268 pcmcia - ok
22:02:24.0881 3268 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:02:25.0068 3268 PEAUTH - ok
22:02:25.0271 3268 Point32 (5b6f99087cc1342b3d193e8155f26b6f) C:\Windows\system32\DRIVERS\point32k.sys
22:02:25.0318 3268 Point32 - ok
22:02:25.0412 3268 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:02:25.0474 3268 PptpMiniport - ok
22:02:25.0599 3268 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:02:25.0677 3268 Processor - ok
22:02:25.0770 3268 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:02:25.0817 3268 PSched - ok
22:02:25.0958 3268 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
22:02:25.0989 3268 PxHelp20 - ok
22:02:26.0535 3268 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:02:27.0112 3268 ql2300 - ok
22:02:27.0705 3268 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:02:27.0752 3268 ql40xx - ok
22:02:28.0266 3268 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:02:28.0454 3268 QWAVEdrv - ok
22:02:29.0327 3268 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:02:30.0419 3268 R300 - ok
22:02:30.0653 3268 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:02:30.0731 3268 RasAcd - ok
22:02:31.0106 3268 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:02:31.0168 3268 Rasl2tp - ok
22:02:31.0449 3268 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:02:31.0527 3268 RasPppoe - ok
22:02:31.0605 3268 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:02:31.0667 3268 RasSstp - ok
22:02:31.0808 3268 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:02:31.0901 3268 rdbss - ok
22:02:31.0979 3268 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:02:32.0010 3268 RDPCDD - ok
22:02:32.0369 3268 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:02:32.0463 3268 rdpdr - ok
22:02:32.0759 3268 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:02:32.0837 3268 RDPENCDD - ok
22:02:33.0056 3268 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:02:33.0149 3268 RDPWD - ok
22:02:33.0321 3268 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:02:33.0368 3268 rspndr - ok
22:02:33.0648 3268 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:02:33.0726 3268 RTL8169 - ok
22:02:33.0851 3268 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:02:33.0882 3268 sbp2port - ok
22:02:33.0945 3268 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:02:34.0038 3268 secdrv - ok
22:02:34.0257 3268 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
22:02:34.0350 3268 Serenum - ok
22:02:34.0460 3268 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
22:02:34.0538 3268 Serial - ok
22:02:34.0756 3268 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:02:34.0834 3268 sermouse - ok
22:02:34.0896 3268 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:02:34.0959 3268 sffdisk - ok
22:02:35.0162 3268 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:02:35.0255 3268 sffp_mmc - ok
22:02:35.0380 3268 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:02:35.0458 3268 sffp_sd - ok
22:02:35.0505 3268 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:02:35.0567 3268 sfloppy - ok
22:02:35.0957 3268 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:02:35.0988 3268 sisagp - ok
22:02:36.0269 3268 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:02:36.0285 3268 SiSRaid2 - ok
22:02:36.0581 3268 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:02:36.0612 3268 SiSRaid4 - ok
22:02:36.0722 3268 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:02:36.0784 3268 Smb - ok
22:02:36.0956 3268 SPBBCDrv (e87cf104f12c92401c4d33c50a3d5dc8) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
22:02:37.0002 3268 SPBBCDrv - ok
22:02:37.0143 3268 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:02:37.0190 3268 spldr - ok
22:02:37.0377 3268 SRTSP (b36f8d6a02ff2b3a53e250a629782f29) C:\Windows\system32\Drivers\SRTSP.SYS
22:02:37.0455 3268 SRTSP - ok
22:02:37.0658 3268 SRTSPL (e99bd98ac171a29fc1ba9376be87ae73) C:\Windows\system32\Drivers\SRTSPL.SYS
22:02:37.0704 3268 SRTSPL - ok
22:02:37.0829 3268 SRTSPX (1af34729898063e9b7df8d149d767e07) C:\Windows\system32\Drivers\SRTSPX.SYS
22:02:37.0892 3268 SRTSPX - ok
22:02:38.0001 3268 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:02:38.0063 3268 srv - ok
22:02:38.0141 3268 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:02:38.0204 3268 srv2 - ok
22:02:38.0406 3268 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:02:38.0469 3268 srvnet - ok
22:02:38.0531 3268 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:02:38.0562 3268 swenum - ok
22:02:38.0578 3268 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:02:38.0609 3268 Symc8xx - ok
22:02:38.0984 3268 SymEvent (e42a34e6f5ca71a84d4c2de620aad13d) C:\Windows\system32\Drivers\SYMEVENT.SYS
22:02:38.0999 3268 SymEvent - ok
22:02:39.0249 3268 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
22:02:39.0311 3268 SYMREDRV - ok
22:02:39.0358 3268 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
22:02:39.0374 3268 SYMTDI - ok
22:02:39.0436 3268 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:02:39.0498 3268 Sym_hi - ok
22:02:39.0530 3268 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:02:39.0561 3268 Sym_u3 - ok
22:02:39.0623 3268 SysPlant (666992d996c524812e713effd836d043) C:\Windows\SYSTEM32\Drivers\SysPlant.sys
22:02:39.0639 3268 SysPlant - ok
22:02:39.0998 3268 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:02:40.0076 3268 Tcpip - ok
22:02:40.0185 3268 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:02:40.0232 3268 Tcpip6 - ok
22:02:40.0325 3268 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:02:40.0356 3268 tcpipreg - ok
22:02:40.0419 3268 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:02:40.0450 3268 TDPIPE - ok
22:02:40.0528 3268 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:02:40.0544 3268 TDTCP - ok
22:02:40.0622 3268 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:02:40.0653 3268 tdx - ok
22:02:40.0746 3268 Teefer2 (f63439ac8fa992bfa0c757eb644a1a0c) C:\Windows\system32\DRIVERS\teefer2.sys
22:02:40.0762 3268 Teefer2 - ok
22:02:40.0840 3268 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:02:40.0871 3268 TermDD - ok
22:02:41.0043 3268 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
22:02:41.0058 3268 TrueSight ( UnsignedFile.Multi.Generic ) - warning
22:02:41.0058 3268 TrueSight - detected UnsignedFile.Multi.Generic (1)
22:02:41.0277 3268 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:02:41.0339 3268 tssecsrv - ok
22:02:41.0448 3268 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:02:41.0526 3268 tunmp - ok
22:02:41.0651 3268 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:02:41.0698 3268 tunnel - ok
22:02:41.0729 3268 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:02:41.0760 3268 uagp35 - ok
22:02:41.0807 3268 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:02:41.0854 3268 udfs - ok
22:02:42.0041 3268 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:02:42.0072 3268 uliagpkx - ok
22:02:42.0197 3268 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:02:42.0275 3268 uliahci - ok
22:02:42.0431 3268 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:02:42.0462 3268 UlSata - ok
22:02:42.0587 3268 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:02:42.0634 3268 ulsata2 - ok
22:02:42.0837 3268 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:02:42.0884 3268 umbus - ok
22:02:43.0071 3268 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:02:43.0118 3268 USBAAPL - ok
22:02:43.0320 3268 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:02:43.0398 3268 usbccgp - ok
22:02:43.0632 3268 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:02:43.0710 3268 usbcir - ok
22:02:44.0085 3268 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:02:44.0178 3268 usbehci - ok
22:02:44.0584 3268 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:02:44.0631 3268 usbhub - ok
22:02:45.0083 3268 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:02:45.0146 3268 usbohci - ok
22:02:45.0582 3268 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:02:45.0645 3268 usbprint - ok
22:02:45.0785 3268 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:02:45.0848 3268 usbscan - ok
22:02:46.0144 3268 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:02:46.0191 3268 USBSTOR - ok
22:02:46.0596 3268 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:02:46.0659 3268 usbuhci - ok
22:02:47.0002 3268 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:02:47.0064 3268 vga - ok
22:02:47.0142 3268 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:02:47.0189 3268 VgaSave - ok
22:02:47.0283 3268 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:02:47.0330 3268 viaagp - ok
22:02:47.0486 3268 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:02:47.0564 3268 ViaC7 - ok
22:02:47.0688 3268 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:02:47.0704 3268 viaide - ok
22:02:47.0969 3268 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:02:47.0985 3268 volmgr - ok
22:02:48.0203 3268 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:02:48.0250 3268 volmgrx - ok
22:02:48.0406 3268 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:02:48.0453 3268 volsnap - ok
22:02:48.0609 3268 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:02:48.0640 3268 vsmraid - ok
22:02:48.0718 3268 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:02:48.0796 3268 WacomPen - ok
22:02:48.0890 3268 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:02:48.0936 3268 Wanarp - ok
22:02:48.0999 3268 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:02:49.0030 3268 Wanarpv6 - ok
22:02:49.0139 3268 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:02:49.0155 3268 Wd - ok
22:02:49.0186 3268 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:02:49.0233 3268 Wdf01000 - ok
22:02:49.0280 3268 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:02:49.0311 3268 WmiAcpi - ok
22:02:49.0467 3268 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:02:49.0529 3268 WpdUsb - ok
22:02:49.0654 3268 WPS (9748e527f0d71bc86a1fe45f294e368b) C:\Windows\system32\drivers\wpsdrvnt.sys
22:02:49.0654 3268 WPS - ok
22:02:49.0779 3268 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
22:02:49.0794 3268 WpsHelper - ok
22:02:49.0826 3268 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:02:49.0872 3268 ws2ifsl - ok
22:02:50.0013 3268 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:02:50.0091 3268 WUDFRd - ok
22:02:50.0122 3268 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:02:50.0372 3268 \Device\Harddisk0\DR0 - ok
22:02:50.0372 3268 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
22:02:50.0871 3268 \Device\Harddisk1\DR1 - ok
22:02:50.0871 3268 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
22:02:51.0386 3268 \Device\Harddisk2\DR2 - ok
22:02:51.0401 3268 Boot (0x1200) (8bcf45a8e9549495d4098b9fe5609ca8) \Device\Harddisk0\DR0\Partition0
22:02:51.0432 3268 \Device\Harddisk0\DR0\Partition0 - ok
22:02:51.0448 3268 Boot (0x1200) (5aa51cde19268509954e7840961d50c3) \Device\Harddisk0\DR0\Partition1
22:02:51.0464 3268 \Device\Harddisk0\DR0\Partition1 - ok
22:02:51.0479 3268 Boot (0x1200) (ab59b05fa41c6d9c15734fee8b39d8da) \Device\Harddisk1\DR1\Partition0
22:02:51.0479 3268 \Device\Harddisk1\DR1\Partition0 - ok
22:02:51.0479 3268 ============================================================
22:02:51.0479 3268 Scan finished
22:02:51.0479 3268 ============================================================
22:02:51.0495 2188 Detected object count: 1
22:02:51.0495 2188 Actual detected object count: 1
22:03:04.0661 2188 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
22:03:04.0661 2188 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:05:16.0762 3232 ============================================================
22:05:16.0762 3232 Scan started
22:05:16.0762 3232 Mode: Manual; SigCheck; TDLFS;
22:05:16.0762 3232 ============================================================
22:05:17.0121 3232 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:05:17.0152 3232 ACPI - ok
22:05:17.0183 3232 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:05:17.0214 3232 adp94xx - ok
22:05:17.0246 3232 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:05:17.0261 3232 adpahci - ok
22:05:17.0277 3232 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:05:17.0292 3232 adpu160m - ok
22:05:17.0324 3232 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:05:17.0339 3232 adpu320 - ok
22:05:17.0386 3232 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:05:17.0402 3232 AFD - ok
22:05:17.0433 3232 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:05:17.0448 3232 agp440 - ok
22:05:17.0480 3232 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:05:17.0495 3232 aic78xx - ok
22:05:17.0511 3232 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:05:17.0526 3232 aliide - ok
22:05:17.0542 3232 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:05:17.0558 3232 amdagp - ok
22:05:17.0573 3232 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:05:17.0589 3232 amdide - ok
22:05:17.0604 3232 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:05:17.0636 3232 AmdK7 - ok
22:05:17.0682 3232 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:05:17.0714 3232 AmdK8 - ok
22:05:17.0745 3232 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:05:17.0760 3232 arc - ok
22:05:17.0776 3232 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:05:17.0792 3232 arcsas - ok
22:05:17.0838 3232 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:05:17.0854 3232 AsyncMac - ok
22:05:17.0870 3232 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
22:05:17.0885 3232 atapi - ok
22:05:17.0916 3232 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:05:17.0948 3232 Beep - ok
22:05:18.0041 3232 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:05:18.0057 3232 blbdrive - ok
22:05:18.0104 3232 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:05:18.0119 3232 bowser - ok
22:05:18.0213 3232 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:05:18.0244 3232 BrFiltLo - ok
22:05:18.0291 3232 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:05:18.0322 3232 BrFiltUp - ok
22:05:18.0416 3232 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:05:18.0462 3232 Brserid - ok
22:05:18.0525 3232 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:05:18.0572 3232 BrSerWdm - ok
22:05:18.0603 3232 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:05:18.0650 3232 BrUsbMdm - ok
22:05:18.0665 3232 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:05:18.0728 3232 BrUsbSer - ok
22:05:18.0743 3232 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:05:18.0806 3232 BTHMODEM - ok
22:05:18.0852 3232 catchme - ok
22:05:18.0930 3232 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:05:18.0962 3232 cdfs - ok
22:05:18.0993 3232 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:05:19.0024 3232 cdrom - ok
22:05:19.0071 3232 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:05:19.0102 3232 circlass - ok
22:05:19.0180 3232 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:05:19.0196 3232 CLFS - ok
22:05:19.0242 3232 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:05:19.0258 3232 cmdide - ok
22:05:19.0320 3232 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
22:05:19.0336 3232 COH_Mon - ok
22:05:19.0430 3232 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
22:05:19.0445 3232 Compbatt - ok
22:05:19.0570 3232 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:05:19.0586 3232 crcdisk - ok
22:05:19.0601 3232 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:05:19.0632 3232 Crusoe - ok
22:05:19.0710 3232 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:05:19.0726 3232 DfsC - ok
22:05:19.0788 3232 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:05:19.0804 3232 disk - ok
22:05:19.0866 3232 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:05:19.0882 3232 drmkaud - ok
22:05:19.0960 3232 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:05:19.0991 3232 DXGKrnl - ok
22:05:20.0022 3232 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
22:05:20.0054 3232 e1express - ok
22:05:20.0085 3232 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:05:20.0116 3232 E1G60 - ok
22:05:20.0225 3232 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:05:20.0241 3232 Ecache - ok
22:05:20.0319 3232 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:05:20.0334 3232 eeCtrl - ok
22:05:20.0459 3232 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:05:20.0475 3232 elxstor - ok
22:05:20.0553 3232 EraserUtilDrvI11 - ok
22:05:20.0584 3232 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:05:20.0584 3232 EraserUtilRebootDrv - ok
22:05:20.0678 3232 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:05:20.0693 3232 ErrDev - ok
22:05:20.0740 3232 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:05:20.0756 3232 exfat - ok
22:05:20.0787 3232 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:05:20.0818 3232 fastfat - ok
22:05:20.0880 3232 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:05:20.0912 3232 fdc - ok
22:05:20.0927 3232 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:05:20.0943 3232 FileInfo - ok
22:05:20.0974 3232 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:05:21.0005 3232 Filetrace - ok
22:05:21.0068 3232 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:05:21.0099 3232 flpydisk - ok
22:05:21.0146 3232 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:05:21.0161 3232 FltMgr - ok
22:05:21.0224 3232 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:05:21.0239 3232 Fs_Rec - ok
22:05:21.0270 3232 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:05:21.0286 3232 gagp30kx - ok
22:05:21.0458 3232 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:05:21.0458 3232 GEARAspiWDM - ok
22:05:21.0551 3232 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:05:21.0614 3232 HDAudBus - ok
22:05:21.0660 3232 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:05:21.0707 3232 HidBth - ok
22:05:21.0738 3232 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:05:21.0785 3232 HidIr - ok
22:05:21.0879 3232 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:05:21.0910 3232 HidUsb - ok
22:05:21.0957 3232 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:05:21.0957 3232 HpCISSs - ok
22:05:22.0050 3232 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
22:05:22.0097 3232 HTTP - ok
22:05:22.0128 3232 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:05:22.0144 3232 i2omp - ok
22:05:22.0175 3232 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:05:22.0191 3232 i8042prt - ok
22:05:22.0269 3232 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\drivers\iastor.sys
22:05:22.0284 3232 iaStor - ok
22:05:22.0378 3232 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:05:22.0394 3232 iaStorV - ok
22:05:22.0706 3232 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:05:22.0940 3232 igfx - ok
22:05:23.0064 3232 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:05:23.0080 3232 iirsp - ok
22:05:23.0174 3232 IntcAzAudAddService (9b89f2e3d705651dec1f01033b9d6b24) C:\Windows\system32\drivers\RTKVHDA.sys
22:05:23.0267 3232 IntcAzAudAddService - ok
22:05:23.0298 3232 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
22:05:23.0314 3232 IntcHdmiAddService - ok
22:05:23.0345 3232 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:05:23.0361 3232 intelide - ok
22:05:23.0376 3232 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:05:23.0408 3232 intelppm - ok
22:05:23.0439 3232 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:05:23.0470 3232 IpFilterDriver - ok
22:05:23.0486 3232 IpInIp - ok
22:05:23.0517 3232 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:05:23.0548 3232 IPMIDRV - ok
22:05:23.0564 3232 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:05:23.0595 3232 IPNAT - ok
22:05:23.0688 3232 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:05:23.0720 3232 IRENUM - ok
22:05:23.0751 3232 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:05:23.0766 3232 isapnp - ok
22:05:23.0813 3232 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:05:23.0829 3232 iScsiPrt - ok
22:05:23.0844 3232 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:05:23.0860 3232 iteatapi - ok
22:05:23.0891 3232 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:05:23.0891 3232 iteraid - ok
22:05:23.0922 3232 JRAID (b07084095f8c03aadb9811c9df14b5e4) C:\Windows\system32\drivers\jraid.sys
22:05:23.0938 3232 JRAID - ok
22:05:23.0969 3232 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:05:23.0969 3232 kbdclass - ok
22:05:24.0000 3232 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:05:24.0032 3232 kbdhid - ok
22:05:24.0094 3232 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:05:24.0125 3232 KSecDD - ok
22:05:24.0141 3232 Lbd - ok
22:05:24.0188 3232 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:05:24.0219 3232 lltdio - ok
22:05:24.0328 3232 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:05:24.0344 3232 LSI_FC - ok
22:05:24.0422 3232 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:05:24.0422 3232 LSI_SAS - ok
22:05:24.0453 3232 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:05:24.0468 3232 LSI_SCSI - ok
22:05:24.0546 3232 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:05:24.0578 3232 luafv - ok
22:05:24.0640 3232 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
22:05:24.0640 3232 MBAMProtector - ok
22:05:24.0687 3232 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:05:24.0702 3232 megasas - ok
22:05:24.0780 3232 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:05:24.0812 3232 MegaSR - ok
22:05:24.0827 3232 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:05:24.0858 3232 Modem - ok
22:05:24.0936 3232 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:05:24.0968 3232 monitor - ok
22:05:24.0999 3232 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:05:25.0014 3232 mouclass - ok
22:05:25.0030 3232 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:05:25.0061 3232 mouhid - ok
22:05:25.0124 3232 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:05:25.0139 3232 MountMgr - ok
22:05:25.0170 3232 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:05:25.0186 3232 mpio - ok
22:05:25.0233 3232 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:05:25.0248 3232 mpsdrv - ok
22:05:25.0389 3232 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:05:25.0389 3232 Mraid35x - ok
22:05:25.0451 3232 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:05:25.0467 3232 MRxDAV - ok
22:05:25.0514 3232 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:05:25.0529 3232 mrxsmb - ok
22:05:25.0607 3232 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:05:25.0623 3232 mrxsmb10 - ok
22:05:25.0685 3232 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:05:25.0701 3232 mrxsmb20 - ok
22:05:25.0748 3232 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
22:05:25.0763 3232 msahci - ok
22:05:25.0794 3232 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:05:25.0810 3232 msdsm - ok
22:05:25.0888 3232 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:05:25.0919 3232 Msfs - ok
22:05:25.0935 3232 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:05:25.0950 3232 msisadrv - ok
22:05:25.0966 3232 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:05:25.0997 3232 MSKSSRV - ok
22:05:26.0060 3232 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:05:26.0091 3232 MSPCLOCK - ok
22:05:26.0122 3232 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:05:26.0153 3232 MSPQM - ok
22:05:26.0247 3232 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:05:26.0262 3232 MsRPC - ok
22:05:26.0278 3232 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:05:26.0294 3232 mssmbios - ok
22:05:26.0325 3232 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:05:26.0356 3232 MSTEE - ok
22:05:26.0403 3232 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:05:26.0418 3232 Mup - ok
22:05:26.0465 3232 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:05:26.0481 3232 NativeWifiP - ok
22:05:26.0621 3232 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVENG.SYS
22:05:26.0652 3232 NAVENG - ok
22:05:26.0715 3232 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVEX15.SYS
22:05:26.0762 3232 NAVEX15 - ok
22:05:26.0871 3232 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:05:26.0902 3232 NDIS - ok
22:05:26.0933 3232 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:05:26.0949 3232 NdisTapi - ok
22:05:27.0074 3232 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:05:27.0105 3232 Ndisuio - ok
22:05:27.0214 3232 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:05:27.0230 3232 NdisWan - ok
22:05:27.0292 3232 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:05:27.0308 3232 NDProxy - ok
22:05:27.0370 3232 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:05:27.0401 3232 NetBIOS - ok
22:05:27.0495 3232 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:05:27.0526 3232 netbt - ok
22:05:27.0573 3232 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:05:27.0588 3232 nfrd960 - ok
22:05:27.0635 3232 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:05:27.0666 3232 Npfs - ok
22:05:27.0729 3232 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:05:27.0760 3232 nsiproxy - ok
22:05:27.0854 3232 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:05:27.0900 3232 Ntfs - ok
22:05:27.0994 3232 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:05:28.0041 3232 ntrigdigi - ok
22:05:28.0056 3232 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:05:28.0088 3232 Null - ok
22:05:28.0244 3232 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:05:28.0259 3232 nvraid - ok
22:05:28.0322 3232 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:05:28.0322 3232 nvstor - ok
22:05:28.0384 3232 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:05:28.0400 3232 nv_agp - ok
22:05:28.0400 3232 NwlnkFlt - ok
22:05:28.0415 3232 NwlnkFwd - ok
22:05:28.0446 3232 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:05:28.0493 3232 ohci1394 - ok
22:05:28.0540 3232 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:05:28.0587 3232 Parport - ok
22:05:28.0680 3232 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:05:28.0696 3232 partmgr - ok
22:05:28.0727 3232 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:05:28.0774 3232 Parvdm - ok
22:05:28.0836 3232 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:05:28.0852 3232 pci - ok
22:05:28.0868 3232 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
22:05:28.0883 3232 pciide - ok
22:05:28.0946 3232 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:05:28.0961 3232 pcmcia - ok
22:05:28.0992 3232 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:05:29.0070 3232 PEAUTH - ok
22:05:29.0133 3232 Point32 (5b6f99087cc1342b3d193e8155f26b6f) C:\Windows\system32\DRIVERS\point32k.sys
22:05:29.0148 3232 Point32 - ok
22:05:29.0180 3232 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:05:29.0211 3232 PptpMiniport - ok
22:05:29.0273 3232 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:05:29.0304 3232 Processor - ok
22:05:29.0398 3232 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:05:29.0414 3232 PSched - ok
22:05:29.0476 3232 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
22:05:29.0492 3232 PxHelp20 - ok
22:05:29.0554 3232 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:05:29.0585 3232 ql2300 - ok
22:05:29.0663 3232 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:05:29.0679 3232 ql40xx - ok
22:05:29.0710 3232 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:05:29.0726 3232 QWAVEdrv - ok
22:05:29.0897 3232 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:05:30.0022 3232 R300 - ok
22:05:30.0100 3232 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:05:30.0131 3232 RasAcd - ok
22:05:30.0147 3232 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:05:30.0178 3232 Rasl2tp - ok
22:05:30.0225 3232 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:05:30.0240 3232 RasPppoe - ok
22:05:30.0334 3232 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:05:30.0350 3232 RasSstp - ok
22:05:30.0396 3232 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:05:30.0428 3232 rdbss - ok
22:05:30.0506 3232 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:05:30.0537 3232 RDPCDD - ok
22:05:30.0568 3232 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:05:30.0599 3232 rdpdr - ok
22:05:30.0662 3232 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:05:30.0693 3232 RDPENCDD - ok
22:05:30.0740 3232 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:05:30.0771 3232 RDPWD - ok
22:05:30.0864 3232 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:05:30.0896 3232 rspndr - ok
22:05:30.0958 3232 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:05:30.0989 3232 RTL8169 - ok
22:05:31.0020 3232 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:05:31.0036 3232 sbp2port - ok
22:05:31.0083 3232 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:05:31.0130 3232 secdrv - ok
22:05:31.0192 3232 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
22:05:31.0223 3232 Serenum - ok
22:05:31.0301 3232 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
22:05:31.0348 3232 Serial - ok
22:05:31.0442 3232 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:05:31.0473 3232 sermouse - ok
22:05:31.0488 3232 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:05:31.0520 3232 sffdisk - ok
22:05:31.0535 3232 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:05:31.0566 3232 sffp_mmc - ok
22:05:31.0644 3232 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:05:31.0676 3232 sffp_sd - ok
22:05:31.0691 3232 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:05:31.0754 3232 sfloppy - ok
22:05:31.0785 3232 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:05:31.0800 3232 sisagp - ok
22:05:31.0800 3232 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:05:31.0816 3232 SiSRaid2 - ok
22:05:31.0941 3232 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:05:31.0956 3232 SiSRaid4 - ok
22:05:32.0003 3232 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:05:32.0034 3232 Smb - ok
22:05:32.0190 3232 SPBBCDrv (e87cf104f12c92401c4d33c50a3d5dc8) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
22:05:32.0222 3232 SPBBCDrv - ok
22:05:32.0284 3232 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:05:32.0300 3232 spldr - ok
22:05:32.0346 3232 SRTSP (b36f8d6a02ff2b3a53e250a629782f29) C:\Windows\system32\Drivers\SRTSP.SYS
22:05:32.0362 3232 SRTSP - ok
22:05:32.0409 3232 SRTSPL (e99bd98ac171a29fc1ba9376be87ae73) C:\Windows\system32\Drivers\SRTSPL.SYS
22:05:32.0424 3232 SRTSPL - ok
22:05:32.0502 3232 SRTSPX (1af34729898063e9b7df8d149d767e07) C:\Windows\system32\Drivers\SRTSPX.SYS
22:05:32.0518 3232 SRTSPX - ok
22:05:32.0580 3232 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:05:32.0596 3232 srv - ok
22:05:32.0674 3232 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:05:32.0690 3232 srv2 - ok
22:05:32.0752 3232 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:05:32.0783 3232 srvnet - ok
22:05:32.0877 3232 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:05:32.0892 3232 swenum - ok
22:05:32.0908 3232 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:05:32.0924 3232 Symc8xx - ok
22:05:32.0955 3232 SymEvent (e42a34e6f5ca71a84d4c2de620aad13d) C:\Windows\system32\Drivers\SYMEVENT.SYS
22:05:32.0955 3232 SymEvent - ok
22:05:33.0017 3232 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
22:05:33.0017 3232 SYMREDRV - ok
22:05:33.0080 3232 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
22:05:33.0080 3232 SYMTDI - ok
22:05:33.0158 3232 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:05:33.0173 3232 Sym_hi - ok
22:05:33.0189 3232 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:05:33.0220 3232 Sym_u3 - ok
22:05:33.0314 3232 SysPlant (666992d996c524812e713effd836d043) C:\Windows\SYSTEM32\Drivers\SysPlant.sys
22:05:33.0314 3232 SysPlant - ok
22:05:33.0376 3232 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:05:33.0423 3232 Tcpip - ok
22:05:33.0532 3232 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:05:33.0563 3232 Tcpip6 - ok
22:05:33.0626 3232 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:05:33.0641 3232 tcpipreg - ok
22:05:33.0672 3232 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:05:33.0704 3232 TDPIPE - ok
22:05:33.0906 3232 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:05:33.0938 3232 TDTCP - ok
22:05:34.0078 3232 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:05:34.0109 3232 tdx - ok
22:05:34.0172 3232 Teefer2 (f63439ac8fa992bfa0c757eb644a1a0c) C:\Windows\system32\DRIVERS\teefer2.sys
22:05:34.0187 3232 Teefer2 - ok
22:05:34.0218 3232 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:05:34.0234 3232 TermDD - ok
22:05:34.0296 3232 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
22:05:34.0312 3232 TrueSight ( UnsignedFile.Multi.Generic ) - warning
22:05:34.0312 3232 TrueSight - detected UnsignedFile.Multi.Generic (1)
22:05:34.0343 3232 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:05:34.0374 3232 tssecsrv - ok
22:05:34.0437 3232 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:05:34.0452 3232 tunmp - ok
22:05:34.0515 3232 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:05:34.0530 3232 tunnel - ok
22:05:34.0546 3232 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:05:34.0562 3232 uagp35 - ok
22:05:34.0624 3232 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:05:34.0640 3232 udfs - ok
22:05:34.0733 3232 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:05:34.0749 3232 uliagpkx - ok
22:05:34.0780 3232 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:05:34.0796 3232 uliahci - ok
22:05:34.0905 3232 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:05:34.0920 3232 UlSata - ok
22:05:35.0014 3232 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:05:35.0030 3232 ulsata2 - ok
22:05:35.0076 3232 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:05:35.0108 3232 umbus - ok
22:05:35.0170 3232 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:05:35.0186 3232 USBAAPL - ok
22:05:35.0232 3232 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:05:35.0264 3232 usbccgp - ok
22:05:35.0310 3232 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:05:35.0357 3232 usbcir - ok
22:05:35.0451 3232 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:05:35.0466 3232 usbehci - ok
22:05:35.0529 3232 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:05:35.0544 3232 usbhub - ok
22:05:35.0576 3232 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:05:35.0622 3232 usbohci - ok
22:05:35.0638 3232 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:05:35.0700 3232 usbprint - ok
22:05:35.0732 3232 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:05:35.0763 3232 usbscan - ok
22:05:35.0794 3232 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:05:35.0825 3232 USBSTOR - ok
22:05:35.0872 3232 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:05:35.0903 3232 usbuhci - ok
22:05:35.0950 3232 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:05:35.0981 3232 vga - ok
22:05:36.0028 3232 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:05:36.0059 3232 VgaSave - ok
22:05:36.0090 3232 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:05:36.0106 3232 viaagp - ok
22:05:36.0168 3232 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:05:36.0200 3232 ViaC7 - ok
22:05:36.0215 3232 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:05:36.0231 3232 viaide - ok
22:05:36.0262 3232 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:05:36.0278 3232 volmgr - ok
22:05:36.0324 3232 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:05:36.0340 3232 volmgrx - ok
22:05:36.0418 3232 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:05:36.0434 3232 volsnap - ok
22:05:36.0496 3232 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:05:36.0496 3232 vsmraid - ok
22:05:36.0636 3232 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:05:36.0683 3232 WacomPen - ok
22:05:36.0777 3232 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:05:36.0808 3232 Wanarp - ok
22:05:36.0808 3232 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:05:36.0839 3232 Wanarpv6 - ok
22:05:36.0948 3232 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:05:36.0948 3232 Wd - ok
22:05:36.0980 3232 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:05:37.0011 3232 Wdf01000 - ok
22:05:37.0058 3232 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:05:37.0073 3232 WmiAcpi - ok
22:05:37.0167 3232 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:05:37.0182 3232 WpdUsb - ok
22:05:37.0229 3232 WPS (9748e527f0d71bc86a1fe45f294e368b) C:\Windows\system32\drivers\wpsdrvnt.sys
22:05:37.0229 3232 WPS - ok
22:05:37.0338 3232 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
22:05:37.0338 3232 WpsHelper - ok
22:05:37.0401 3232 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:05:37.0432 3232 ws2ifsl - ok
22:05:37.0510 3232 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:05:37.0541 3232 WUDFRd - ok
22:05:37.0572 3232 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:05:37.0760 3232 \Device\Harddisk0\DR0 - ok
22:05:38.0181 3232 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
22:05:39.0226 3232 \Device\Harddisk1\DR1 - ok
22:05:39.0242 3232 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
22:05:39.0242 3232 \Device\Harddisk2\DR2 - ok
22:05:39.0257 3232 Boot (0x1200) (8bcf45a8e9549495d4098b9fe5609ca8) \Device\Harddisk0\DR0\Partition0
22:05:39.0257 3232 \Device\Harddisk0\DR0\Partition0 - ok
22:05:39.0273 3232 Boot (0x1200) (5aa51cde19268509954e7840961d50c3) \Device\Harddisk0\DR0\Partition1
22:05:39.0288 3232 \Device\Harddisk0\DR0\Partition1 - ok
22:05:39.0288 3232 Boot (0x1200) (ab59b05fa41c6d9c15734fee8b39d8da) \Device\Harddisk1\DR1\Partition0
22:05:39.0288 3232 \Device\Harddisk1\DR1\Partition0 - ok
22:05:39.0288 3232 ============================================================
22:05:39.0288 3232 Scan finished
22:05:39.0288 3232 ============================================================
22:05:39.0351 2372 Detected object count: 1
22:05:39.0351 2372 Actual detected object count: 1
22:06:49.0161 2372 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
22:06:49.0161 2372 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:07:33.0683 3840 ============================================================
22:07:33.0683 3840 Scan started
22:07:33.0683 3840 Mode: Manual; SigCheck; TDLFS;
22:07:33.0683 3840 ============================================================
22:07:33.0948 3840 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:07:33.0964 3840 ACPI - ok
22:07:34.0011 3840 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:07:34.0042 3840 adp94xx - ok
22:07:34.0073 3840 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:07:34.0089 3840 adpahci - ok
22:07:34.0104 3840 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:07:34.0120 3840 adpu160m - ok
22:07:34.0136 3840 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:07:34.0151 3840 adpu320 - ok
22:07:34.0198 3840 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:07:34.0229 3840 AFD - ok
22:07:34.0245 3840 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:07:34.0260 3840 agp440 - ok
22:07:34.0276 3840 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:07:34.0292 3840 aic78xx - ok
22:07:34.0307 3840 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:07:34.0323 3840 aliide - ok
22:07:34.0338 3840 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:07:34.0354 3840 amdagp - ok
22:07:34.0385 3840 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:07:34.0401 3840 amdide - ok
22:07:34.0416 3840 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:07:34.0448 3840 AmdK7 - ok
22:07:34.0463 3840 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:07:34.0494 3840 AmdK8 - ok
22:07:34.0541 3840 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:07:34.0557 3840 arc - ok
22:07:34.0604 3840 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:07:34.0604 3840 arcsas - ok
22:07:34.0635 3840 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:07:34.0666 3840 AsyncMac - ok
22:07:34.0682 3840 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
22:07:34.0697 3840 atapi - ok
22:07:34.0728 3840 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:07:34.0760 3840 Beep - ok
22:07:34.0838 3840 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:07:34.0869 3840 blbdrive - ok
22:07:34.0916 3840 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:07:34.0931 3840 bowser - ok
22:07:34.0994 3840 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:07:35.0025 3840 BrFiltLo - ok
22:07:35.0040 3840 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:07:35.0056 3840 BrFiltUp - ok
22:07:35.0150 3840 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:07:35.0196 3840 Brserid - ok
22:07:35.0228 3840 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:07:35.0274 3840 BrSerWdm - ok
22:07:35.0321 3840 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:07:35.0368 3840 BrUsbMdm - ok
22:07:35.0384 3840 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:07:35.0430 3840 BrUsbSer - ok
22:07:35.0462 3840 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:07:35.0508 3840 BTHMODEM - ok
22:07:35.0555 3840 catchme - ok
22:07:35.0649 3840 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:07:35.0680 3840 cdfs - ok
22:07:35.0727 3840 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:07:35.0758 3840 cdrom - ok
22:07:35.0789 3840 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:07:35.0820 3840 circlass - ok
22:07:35.0867 3840 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:07:35.0883 3840 CLFS - ok
22:07:35.0914 3840 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:07:35.0930 3840 cmdide - ok
22:07:35.0976 3840 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
22:07:35.0992 3840 COH_Mon - ok
22:07:36.0023 3840 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
22:07:36.0039 3840 Compbatt - ok
22:07:36.0086 3840 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:07:36.0086 3840 crcdisk - ok
22:07:36.0148 3840 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:07:36.0164 3840 Crusoe - ok
22:07:36.0257 3840 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:07:36.0273 3840 DfsC - ok
22:07:36.0351 3840 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:07:36.0366 3840 disk - ok
22:07:36.0429 3840 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:07:36.0444 3840 drmkaud - ok
22:07:36.0538 3840 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:07:36.0569 3840 DXGKrnl - ok
22:07:36.0585 3840 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
22:07:36.0632 3840 e1express - ok
22:07:36.0663 3840 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:07:36.0678 3840 E1G60 - ok
22:07:36.0741 3840 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:07:36.0756 3840 Ecache - ok
22:07:36.0834 3840 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:07:36.0866 3840 eeCtrl - ok
22:07:36.0944 3840 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:07:36.0959 3840 elxstor - ok
22:07:37.0006 3840 EraserUtilDrvI11 - ok
22:07:37.0037 3840 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:07:37.0053 3840 EraserUtilRebootDrv - ok
22:07:37.0146 3840 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:07:37.0162 3840 ErrDev - ok
22:07:37.0209 3840 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:07:37.0224 3840 exfat - ok
22:07:37.0256 3840 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:07:37.0287 3840 fastfat - ok
22:07:37.0334 3840 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:07:37.0365 3840 fdc - ok
22:07:37.0458 3840 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:07:37.0474 3840 FileInfo - ok
22:07:37.0536 3840 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:07:37.0568 3840 Filetrace - ok
22:07:37.0583 3840 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:07:37.0614 3840 flpydisk - ok
22:07:37.0692 3840 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:07:37.0708 3840 FltMgr - ok
22:07:37.0786 3840 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:07:37.0802 3840 Fs_Rec - ok
22:07:37.0833 3840 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:07:37.0848 3840 gagp30kx - ok
22:07:37.0911 3840 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:07:37.0926 3840 GEARAspiWDM - ok
22:07:37.0989 3840 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:07:38.0036 3840 HDAudBus - ok
22:07:38.0082 3840 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:07:38.0145 3840 HidBth - ok
22:07:38.0160 3840 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:07:38.0223 3840 HidIr - ok
22:07:38.0254 3840 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:07:38.0285 3840 HidUsb - ok
22:07:38.0316 3840 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:07:38.0332 3840 HpCISSs - ok
22:07:38.0410 3840 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
22:07:38.0426 3840 HTTP - ok
22:07:38.0472 3840 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:07:38.0488 3840 i2omp - ok
22:07:38.0519 3840 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:07:38.0550 3840 i8042prt - ok
22:07:38.0628 3840 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\drivers\iastor.sys
22:07:38.0644 3840 iaStor - ok
22:07:38.0722 3840 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:07:38.0738 3840 iaStorV - ok
22:07:39.0003 3840 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:07:39.0221 3840 igfx - ok
22:07:39.0299 3840 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:07:39.0299 3840 iirsp - ok
22:07:39.0393 3840 IntcAzAudAddService (9b89f2e3d705651dec1f01033b9d6b24) C:\Windows\system32\drivers\RTKVHDA.sys
22:07:39.0455 3840 IntcAzAudAddService - ok
22:07:39.0533 3840 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
22:07:39.0533 3840 IntcHdmiAddService - ok
22:07:39.0580 3840 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:07:39.0596 3840 intelide - ok
22:07:39.0627 3840 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:07:39.0658 3840 intelppm - ok
22:07:39.0705 3840 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:07:39.0736 3840 IpFilterDriver - ok
22:07:39.0752 3840 IpInIp - ok
22:07:39.0830 3840 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:07:39.0845 3840 IPMIDRV - ok
22:07:39.0892 3840 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:07:39.0923 3840 IPNAT - ok
22:07:39.0954 3840 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:07:39.0986 3840 IRENUM - ok
22:07:40.0064 3840 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:07:40.0079 3840 isapnp - ok
22:07:40.0110 3840 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:07:40.0126 3840 iScsiPrt - ok
22:07:40.0173 3840 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:07:40.0188 3840 iteatapi - ok
22:07:40.0204 3840 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:07:40.0220 3840 iteraid - ok
22:07:40.0298 3840 JRAID (b07084095f8c03aadb9811c9df14b5e4) C:\Windows\system32\drivers\jraid.sys
22:07:40.0313 3840 JRAID - ok
22:07:40.0454 3840 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:07:40.0469 3840 kbdclass - ok
22:07:40.0532 3840 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:07:40.0563 3840 kbdhid - ok
22:07:40.0610 3840 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:07:40.0641 3840 KSecDD - ok
22:07:40.0734 3840 Lbd - ok
22:07:40.0766 3840 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:07:40.0797 3840 lltdio - ok
22:07:40.0875 3840 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:07:40.0890 3840 LSI_FC - ok
22:07:40.0906 3840 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:07:40.0922 3840 LSI_SAS - ok
22:07:40.0953 3840 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:07:40.0968 3840 LSI_SCSI - ok
22:07:41.0000 3840 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:07:41.0031 3840 luafv - ok
22:07:41.0078 3840 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
22:07:41.0093 3840 MBAMProtector - ok
22:07:41.0140 3840 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:07:41.0156 3840 megasas - ok
22:07:41.0234 3840 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:07:41.0249 3840 MegaSR - ok
22:07:41.0327 3840 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:07:41.0358 3840 Modem - ok
22:07:41.0546 3840 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:07:41.0577 3840 monitor - ok
22:07:41.0624 3840 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:07:41.0639 3840 mouclass - ok
22:07:41.0670 3840 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:07:41.0702 3840 mouhid - ok
22:07:41.0717 3840 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:07:41.0733 3840 MountMgr - ok
22:07:41.0764 3840 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:07:41.0780 3840 mpio - ok
22:07:41.0858 3840 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:07:41.0889 3840 mpsdrv - ok
22:07:41.0920 3840 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:07:41.0936 3840 Mraid35x - ok
22:07:41.0982 3840 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:07:41.0998 3840 MRxDAV - ok
22:07:42.0060 3840 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:07:42.0076 3840 mrxsmb - ok
22:07:42.0123 3840 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:07:42.0138 3840 mrxsmb10 - ok
22:07:42.0232 3840 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:07:42.0248 3840 mrxsmb20 - ok
22:07:42.0310 3840 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
22:07:42.0310 3840 msahci - ok
22:07:42.0372 3840 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:07:42.0372 3840 msdsm - ok
22:07:42.0419 3840 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:07:42.0450 3840 Msfs - ok
22:07:42.0606 3840 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:07:42.0622 3840 msisadrv - ok
22:07:42.0669 3840 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:07:42.0700 3840 MSKSSRV - ok
22:07:42.0731 3840 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:07:42.0762 3840 MSPCLOCK - ok
22:07:42.0809 3840 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:07:42.0840 3840 MSPQM - ok
22:07:42.0887 3840 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:07:42.0903 3840 MsRPC - ok
22:07:42.0934 3840 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:07:42.0934 3840 mssmbios - ok
22:07:42.0996 3840 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:07:43.0028 3840 MSTEE - ok
22:07:43.0074 3840 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:07:43.0090 3840 Mup - ok
22:07:43.0152 3840 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:07:43.0168 3840 NativeWifiP - ok
22:07:43.0324 3840 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVENG.SYS
22:07:43.0324 3840 NAVENG - ok
22:07:43.0402 3840 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVEX15.SYS
22:07:43.0480 3840 NAVEX15 - ok
22:07:43.0589 3840 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:07:43.0605 3840 NDIS - ok
22:07:43.0652 3840 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:07:43.0667 3840 NdisTapi - ok
22:07:43.0698 3840 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:07:43.0730 3840 Ndisuio - ok
22:07:43.0776 3840 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:07:43.0808 3840 NdisWan - ok
22:07:43.0823 3840 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:07:43.0839 3840 NDProxy - ok
22:07:43.0886 3840 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:07:43.0917 3840 NetBIOS - ok
22:07:43.0964 3840 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:07:43.0995 3840 netbt - ok
22:07:44.0042 3840 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:07:44.0042 3840 nfrd960 - ok
22:07:44.0073 3840 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:07:44.0104 3840 Npfs - ok
22:07:44.0135 3840 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:07:44.0151 3840 nsiproxy - ok
22:07:44.0213 3840 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:07:44.0276 3840 Ntfs - ok
22:07:44.0338 3840 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:07:44.0400 3840 ntrigdigi - ok
22:07:44.0478 3840 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:07:44.0510 3840 Null - ok
22:07:44.0525 3840 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:07:44.0541 3840 nvraid - ok
22:07:44.0588 3840 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:07:44.0588 3840 nvstor - ok
22:07:44.0666 3840 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:07:44.0681 3840 nv_agp - ok
22:07:44.0697 3840 NwlnkFlt - ok
22:07:44.0712 3840 NwlnkFwd - ok
22:07:44.0744 3840 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:07:44.0790 3840 ohci1394 - ok
22:07:44.0837 3840 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:07:44.0884 3840 Parport - ok
22:07:44.0931 3840 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:07:44.0946 3840 partmgr - ok
22:07:44.0978 3840 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:07:45.0024 3840 Parvdm - ok
22:07:45.0087 3840 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:07:45.0102 3840 pci - ok
22:07:45.0118 3840 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
22:07:45.0134 3840 pciide - ok
22:07:45.0196 3840 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:07:45.0212 3840 pcmcia - ok
22:07:45.0243 3840 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:07:45.0321 3840 PEAUTH - ok
22:07:45.0524 3840 Point32 (5b6f99087cc1342b3d193e8155f26b6f) C:\Windows\system32\DRIVERS\point32k.sys
22:07:45.0539 3840 Point32 - ok
22:07:45.0602 3840 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:07:45.0633 3840 PptpMiniport - ok
22:07:45.0648 3840 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:07:45.0680 3840 Processor - ok
22:07:45.0773 3840 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:07:45.0789 3840 PSched - ok
22:07:45.0836 3840 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
22:07:45.0851 3840 PxHelp20 - ok
22:07:45.0929 3840 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:07:45.0976 3840 ql2300 - ok
22:07:46.0038 3840 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:07:46.0038 3840 ql40xx - ok
22:07:46.0101 3840 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:07:46.0116 3840 QWAVEdrv - ok
22:07:46.0194 3840 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:07:46.0288 3840 R300 - ok
22:07:46.0319 3840 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:07:46.0350 3840 RasAcd - ok
22:07:46.0397 3840 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:07:46.0428 3840 Rasl2tp - ok
22:07:46.0506 3840 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:07:46.0522 3840 RasPppoe - ok
22:07:46.0616 3840 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:07:46.0631 3840 RasSstp - ok
22:07:46.0709 3840 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:07:46.0740 3840 rdbss - ok
22:07:46.0787 3840 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:07:46.0818 3840 RDPCDD - ok
22:07:46.0896 3840 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:07:46.0928 3840 rdpdr - ok
22:07:46.0990 3840 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:07:47.0021 3840 RDPENCDD - ok
22:07:47.0084 3840 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:07:47.0099 3840 RDPWD - ok
22:07:47.0193 3840 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:07:47.0224 3840 rspndr - ok
22:07:47.0271 3840 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:07:47.0286 3840 RTL8169 - ok
22:07:47.0396 3840 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:07:47.0411 3840 sbp2port - ok
22:07:47.0458 3840 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:07:47.0505 3840 secdrv - ok
22:07:47.0536 3840 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
22:07:47.0567 3840 Serenum - ok
22:07:47.0614 3840 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
22:07:47.0645 3840 Serial - ok
22:07:47.0676 3840 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:07:47.0708 3840 sermouse - ok
22:07:47.0770 3840 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:07:47.0801 3840 sffdisk - ok
22:07:47.0817 3840 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:07:47.0848 3840 sffp_mmc - ok
22:07:47.0926 3840 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:07:47.0957 3840 sffp_sd - ok
22:07:47.0973 3840 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:07:48.0020 3840 sfloppy - ok
22:07:48.0051 3840 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:07:48.0051 3840 sisagp - ok
22:07:48.0066 3840 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:07:48.0082 3840 SiSRaid2 - ok
22:07:48.0144 3840 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:07:48.0144 3840 SiSRaid4 - ok
22:07:48.0191 3840 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:07:48.0222 3840 Smb - ok
22:07:48.0332 3840 SPBBCDrv (e87cf104f12c92401c4d33c50a3d5dc8) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
22:07:48.0347 3840 SPBBCDrv - ok
22:07:48.0441 3840 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:07:48.0456 3840 spldr - ok
22:07:48.0519 3840 SRTSP (b36f8d6a02ff2b3a53e250a629782f29) C:\Windows\system32\Drivers\SRTSP.SYS
22:07:48.0534 3840 SRTSP - ok
22:07:48.0581 3840 SRTSPL (e99bd98ac171a29fc1ba9376be87ae73) C:\Windows\system32\Drivers\SRTSPL.SYS
22:07:48.0597 3840 SRTSPL - ok
22:07:48.0628 3840 SRTSPX (1af34729898063e9b7df8d149d767e07) C:\Windows\system32\Drivers\SRTSPX.SYS
22:07:48.0628 3840 SRTSPX - ok
22:07:48.0675 3840 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:07:48.0706 3840 srv - ok
22:07:48.0737 3840 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:07:48.0753 3840 srv2 - ok
22:07:48.0784 3840 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:07:48.0800 3840 srvnet - ok
22:07:48.0878 3840 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:07:48.0893 3840 swenum - ok
22:07:48.0924 3840 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:07:48.0924 3840 Symc8xx - ok
22:07:48.0971 3840 SymEvent (e42a34e6f5ca71a84d4c2de620aad13d) C:\Windows\system32\Drivers\SYMEVENT.SYS
22:07:48.0987 3840 SymEvent - ok
22:07:49.0034 3840 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
22:07:49.0049 3840 SYMREDRV - ok
22:07:49.0096 3840 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
22:07:49.0112 3840 SYMTDI - ok
22:07:49.0143 3840 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:07:49.0158 3840 Sym_hi - ok
22:07:49.0190 3840 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:07:49.0205 3840 Sym_u3 - ok
22:07:49.0268 3840 SysPlant (666992d996c524812e713effd836d043) C:\Windows\SYSTEM32\Drivers\SysPlant.sys
22:07:49.0268 3840 SysPlant - ok
22:07:49.0486 3840 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:07:49.0533 3840 Tcpip - ok
22:07:49.0595 3840 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:07:49.0658 3840 Tcpip6 - ok
22:07:49.0736 3840 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:07:49.0751 3840 tcpipreg - ok
22:07:49.0798 3840 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:07:49.0829 3840 TDPIPE - ok
22:07:49.0845 3840 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:07:49.0876 3840 TDTCP - ok
22:07:49.0923 3840 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:07:49.0938 3840 tdx - ok
22:07:50.0001 3840 Teefer2 (f63439ac8fa992bfa0c757eb644a1a0c) C:\Windows\system32\DRIVERS\teefer2.sys
22:07:50.0001 3840 Teefer2 - ok
22:07:50.0094 3840 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:07:50.0110 3840 TermDD - ok
22:07:50.0172 3840 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
22:07:50.0172 3840 TrueSight ( UnsignedFile.Multi.Generic ) - warning
22:07:50.0188 3840 TrueSight - detected UnsignedFile.Multi.Generic (1)
22:07:50.0235 3840 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:07:50.0266 3840 tssecsrv - ok
22:07:50.0297 3840 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:07:50.0297 3840 tunmp - ok
22:07:50.0360 3840 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:07:50.0375 3840 tunnel - ok
22:07:50.0422 3840 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:07:50.0422 3840 uagp35 - ok
22:07:50.0547 3840 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:07:50.0578 3840 udfs - ok
22:07:50.0640 3840 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:07:50.0656 3840 uliagpkx - ok
22:07:50.0703 3840 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:07:50.0718 3840 uliahci - ok
22:07:50.0781 3840 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:07:50.0796 3840 UlSata - ok
22:07:50.0843 3840 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:07:50.0859 3840 ulsata2 - ok
22:07:50.0890 3840 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:07:50.0921 3840 umbus - ok
22:07:50.0999 3840 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:07:51.0015 3840 USBAAPL - ok
22:07:51.0062 3840 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:07:51.0093 3840 usbccgp - ok
22:07:51.0124 3840 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:07:51.0171 3840 usbcir - ok
22:07:51.0249 3840 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:07:51.0264 3840 usbehci - ok
22:07:51.0342 3840 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:07:51.0358 3840 usbhub - ok
22:07:51.0420 3840 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:07:51.0467 3840 usbohci - ok
22:07:51.0545 3840 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:07:51.0592 3840 usbprint - ok
22:07:51.0654 3840 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:07:51.0686 3840 usbscan - ok
22:07:51.0764 3840 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:07:51.0795 3840 USBSTOR - ok
22:07:51.0873 3840 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:07:51.0904 3840 usbuhci - ok
22:07:51.0935 3840 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:07:51.0966 3840 vga - ok
22:07:52.0029 3840 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:07:52.0060 3840 VgaSave - ok
22:07:52.0076 3840 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:07:52.0091 3840 viaagp - ok
22:07:52.0185 3840 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:07:52.0216 3840 ViaC7 - ok
22:07:52.0356 3840 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:07:52.0372 3840 viaide - ok
22:07:52.0403 3840 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:07:52.0419 3840 volmgr - ok
22:07:52.0466 3840 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:07:52.0481 3840 volmgrx - ok
22:07:52.0559 3840 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:07:52.0575 3840 volsnap - ok
22:07:52.0637 3840 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:07:52.0653 3840 vsmraid - ok
22:07:52.0731 3840 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:07:52.0778 3840 WacomPen - ok
22:07:52.0840 3840 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:07:52.0871 3840 Wanarp - ok
22:07:52.0887 3840 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:07:52.0902 3840 Wanarpv6 - ok
22:07:52.0949 3840 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:07:52.0949 3840 Wd - ok
22:07:52.0996 3840 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:07:53.0012 3840 Wdf01000 - ok
22:07:53.0105 3840 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:07:53.0121 3840 WmiAcpi - ok
22:07:53.0214 3840 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:07:53.0230 3840 WpdUsb - ok
22:07:53.0339 3840 WPS (9748e527f0d71bc86a1fe45f294e368b) C:\Windows\system32\drivers\wpsdrvnt.sys
22:07:53.0339 3840 WPS - ok
22:07:53.0417 3840 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
22:07:53.0433 3840 WpsHelper - ok
22:07:53.0480 3840 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:07:53.0511 3840 ws2ifsl - ok
22:07:53.0589 3840 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:07:53.0620 3840 WUDFRd - ok
22:07:53.0667 3840 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:07:53.0792 3840 \Device\Harddisk0\DR0 - ok
22:07:53.0792 3840 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
22:07:53.0963 3840 \Device\Harddisk1\DR1 - ok
22:07:53.0979 3840 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
22:07:53.0979 3840 \Device\Harddisk2\DR2 - ok
22:07:54.0010 3840 Boot (0x1200) (8bcf45a8e9549495d4098b9fe5609ca8) \Device\Harddisk0\DR0\Partition0
22:07:54.0010 3840 \Device\Harddisk0\DR0\Partition0 - ok
22:07:54.0010 3840 Boot (0x1200) (5aa51cde19268509954e7840961d50c3) \Device\Harddisk0\DR0\Partition1
22:07:54.0010 3840 \Device\Harddisk0\DR0\Partition1 - ok
22:07:54.0026 3840 Boot (0x1200) (ab59b05fa41c6d9c15734fee8b39d8da) \Device\Harddisk1\DR1\Partition0
22:07:54.0026 3840 \Device\Harddisk1\DR1\Partition0 - ok
22:07:54.0026 3840 ============================================================
22:07:54.0026 3840 Scan finished
22:07:54.0026 3840 ============================================================
22:07:54.0026 2432 Detected object count: 1
22:07:54.0026 2432 Actual detected object count: 1
22:07:58.0394 2432 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
22:07:58.0394 2432 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:08:29.0999 2992 ============================================================
22:08:29.0999 2992 Scan started
22:08:29.0999 2992 Mode: Manual; SigCheck; TDLFS;
22:08:29.0999 2992 ============================================================
22:08:30.0280 2992 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:08:30.0296 2992 ACPI - ok
22:08:30.0342 2992 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:08:30.0374 2992 adp94xx - ok
22:08:30.0405 2992 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:08:30.0420 2992 adpahci - ok
22:08:30.0436 2992 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:08:30.0452 2992 adpu160m - ok
22:08:30.0483 2992 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:08:30.0498 2992 adpu320 - ok
22:08:30.0545 2992 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:08:30.0561 2992 AFD - ok
22:08:30.0592 2992 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:08:30.0608 2992 agp440 - ok
22:08:30.0623 2992 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:08:30.0639 2992 aic78xx - ok
22:08:30.0654 2992 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:08:30.0670 2992 aliide - ok
22:08:30.0701 2992 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:08:30.0717 2992 amdagp - ok
22:08:30.0779 2992 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:08:30.0779 2992 amdide - ok
22:08:30.0810 2992 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:08:30.0826 2992 AmdK7 - ok
22:08:30.0935 2992 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:08:30.0951 2992 AmdK8 - ok
22:08:31.0091 2992 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:08:31.0107 2992 arc - ok
22:08:31.0138 2992 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:08:31.0154 2992 arcsas - ok
22:08:31.0200 2992 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:08:31.0232 2992 AsyncMac - ok
22:08:31.0247 2992 atapi (0d83c87a801a3dfcd1bf73893fe7518c) C:\Windows\system32\drivers\atapi.sys
22:08:31.0247 2992 atapi - ok
22:08:31.0278 2992 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:08:31.0310 2992 Beep - ok
22:08:31.0388 2992 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:08:31.0419 2992 blbdrive - ok
22:08:31.0450 2992 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:08:31.0466 2992 bowser - ok
22:08:31.0512 2992 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:08:31.0544 2992 BrFiltLo - ok
22:08:31.0606 2992 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:08:31.0622 2992 BrFiltUp - ok
22:08:31.0700 2992 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:08:31.0746 2992 Brserid - ok
22:08:31.0840 2992 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:08:31.0887 2992 BrSerWdm - ok
22:08:31.0980 2992 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:08:32.0043 2992 BrUsbMdm - ok
22:08:32.0090 2992 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:08:32.0152 2992 BrUsbSer - ok
22:08:32.0230 2992 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:08:32.0277 2992 BTHMODEM - ok
22:08:32.0324 2992 catchme - ok
22:08:32.0386 2992 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:08:32.0417 2992 cdfs - ok
22:08:32.0480 2992 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:08:32.0495 2992 cdrom - ok
22:08:32.0573 2992 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:08:32.0589 2992 circlass - ok
22:08:32.0636 2992 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:08:32.0651 2992 CLFS - ok
22:08:32.0698 2992 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:08:32.0714 2992 cmdide - ok
22:08:32.0760 2992 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
22:08:32.0760 2992 COH_Mon - ok
22:08:32.0792 2992 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
22:08:32.0807 2992 Compbatt - ok
22:08:32.0838 2992 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:08:32.0854 2992 crcdisk - ok
22:08:32.0870 2992 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:08:32.0901 2992 Crusoe - ok
22:08:32.0979 2992 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:08:32.0994 2992 DfsC - ok
22:08:33.0135 2992 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:08:33.0135 2992 disk - ok
22:08:33.0213 2992 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:08:33.0244 2992 drmkaud - ok
22:08:33.0291 2992 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:08:33.0322 2992 DXGKrnl - ok
22:08:33.0462 2992 e1express (908ed85b7806e8af3af5e9b74f7809d4) C:\Windows\system32\DRIVERS\e1e6032.sys
22:08:33.0494 2992 e1express - ok
22:08:33.0525 2992 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:08:33.0556 2992 E1G60 - ok
22:08:33.0603 2992 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:08:33.0618 2992 Ecache - ok
22:08:33.0696 2992 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
22:08:33.0712 2992 eeCtrl - ok
22:08:33.0790 2992 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:08:33.0821 2992 elxstor - ok
22:08:33.0821 2992 EraserUtilDrvI11 - ok
22:08:33.0868 2992 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
22:08:33.0884 2992 EraserUtilRebootDrv - ok
22:08:33.0977 2992 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:08:33.0993 2992 ErrDev - ok
22:08:34.0055 2992 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:08:34.0071 2992 exfat - ok
22:08:34.0149 2992 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:08:34.0180 2992 fastfat - ok
22:08:34.0211 2992 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:08:34.0242 2992 fdc - ok
22:08:34.0305 2992 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:08:34.0305 2992 FileInfo - ok
22:08:34.0320 2992 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:08:34.0352 2992 Filetrace - ok
22:08:34.0367 2992 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:08:34.0398 2992 flpydisk - ok
22:08:34.0461 2992 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:08:34.0476 2992 FltMgr - ok
22:08:34.0523 2992 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:08:34.0539 2992 Fs_Rec - ok
22:08:34.0554 2992 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:08:34.0570 2992 gagp30kx - ok
22:08:34.0648 2992 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:08:34.0664 2992 GEARAspiWDM - ok
22:08:34.0710 2992 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:08:34.0757 2992 HDAudBus - ok
22:08:34.0835 2992 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:08:34.0866 2992 HidBth - ok
22:08:34.0898 2992 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:08:34.0929 2992 HidIr - ok
22:08:35.0022 2992 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:08:35.0038 2992 HidUsb - ok
22:08:35.0178 2992 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:08:35.0194 2992 HpCISSs - ok
22:08:35.0272 2992 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
22:08:35.0303 2992 HTTP - ok
22:08:35.0350 2992 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:08:35.0366 2992 i2omp - ok
22:08:35.0397 2992 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:08:35.0412 2992 i8042prt - ok
22:08:35.0490 2992 iaStor (707c1692214b1c290271067197f075f6) C:\Windows\system32\drivers\iastor.sys
22:08:35.0506 2992 iaStor - ok
22:08:35.0568 2992 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:08:35.0584 2992 iaStorV - ok
22:08:35.0849 2992 igfx (8266ae06df974e5ba047b3e9e9e70b3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:08:36.0099 2992 igfx - ok
22:08:36.0177 2992 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:08:36.0192 2992 iirsp - ok
22:08:36.0270 2992 IntcAzAudAddService (9b89f2e3d705651dec1f01033b9d6b24) C:\Windows\system32\drivers\RTKVHDA.sys
22:08:36.0317 2992 IntcAzAudAddService - ok
22:08:36.0348 2992 IntcHdmiAddService (8dab99684cfe8b4ddd5d6d0c5d55fdac) C:\Windows\system32\drivers\IntcHdmi.sys
22:08:36.0364 2992 IntcHdmiAddService - ok
22:08:36.0411 2992 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:08:36.0411 2992 intelide - ok
22:08:36.0458 2992 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:08:36.0489 2992 intelppm - ok
22:08:36.0520 2992 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:08:36.0551 2992 IpFilterDriver - ok
22:08:36.0567 2992 IpInIp - ok
22:08:36.0645 2992 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:08:36.0676 2992 IPMIDRV - ok
22:08:36.0707 2992 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:08:36.0738 2992 IPNAT - ok
22:08:36.0770 2992 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:08:36.0801 2992 IRENUM - ok
22:08:36.0863 2992 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:08:36.0879 2992 isapnp - ok
22:08:36.0957 2992 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:08:36.0972 2992 iScsiPrt - ok
22:08:37.0113 2992 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:08:37.0113 2992 iteatapi - ok
22:08:37.0144 2992 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:08:37.0144 2992 iteraid - ok
22:08:37.0191 2992 JRAID (b07084095f8c03aadb9811c9df14b5e4) C:\Windows\system32\drivers\jraid.sys
22:08:37.0206 2992 JRAID - ok
22:08:37.0238 2992 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:08:37.0253 2992 kbdclass - ok
22:08:37.0347 2992 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:08:37.0362 2992 kbdhid - ok
22:08:37.0425 2992 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:08:37.0440 2992 KSecDD - ok
22:08:37.0456 2992 Lbd - ok
22:08:37.0503 2992 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:08:37.0534 2992 lltdio - ok
22:08:37.0565 2992 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:08:37.0581 2992 LSI_FC - ok
22:08:37.0612 2992 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:08:37.0628 2992 LSI_SAS - ok
22:08:37.0706 2992 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:08:37.0721 2992 LSI_SCSI - ok
22:08:37.0752 2992 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:08:37.0784 2992 luafv - ok
22:08:37.0846 2992 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
22:08:37.0862 2992 MBAMProtector - ok
22:08:37.0908 2992 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:08:37.0924 2992 megasas - ok
22:08:38.0002 2992 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:08:38.0018 2992 MegaSR - ok
22:08:38.0080 2992 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:08:38.0111 2992 Modem - ok
22:08:38.0205 2992 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:08:38.0236 2992 monitor - ok
22:08:38.0298 2992 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:08:38.0298 2992 mouclass - ok
22:08:38.0330 2992 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:08:38.0361 2992 mouhid - ok
22:08:38.0376 2992 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:08:38.0392 2992 MountMgr - ok
22:08:38.0439 2992 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:08:38.0454 2992 mpio - ok
22:08:38.0501 2992 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:08:38.0517 2992 mpsdrv - ok
22:08:38.0595 2992 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:08:38.0595 2992 Mraid35x - ok
22:08:38.0642 2992 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:08:38.0673 2992 MRxDAV - ok
22:08:38.0735 2992 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:08:38.0751 2992 mrxsmb - ok
22:08:38.0798 2992 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:08:38.0813 2992 mrxsmb10 - ok
22:08:38.0844 2992 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:08:38.0860 2992 mrxsmb20 - ok
22:08:38.0891 2992 msahci (f70590424eefbf5c27a40c67afdb8383) C:\Windows\system32\drivers\msahci.sys
22:08:38.0891 2992 msahci - ok
22:08:38.0922 2992 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:08:38.0938 2992 msdsm - ok
22:08:38.0969 2992 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:08:39.0000 2992 Msfs - ok
22:08:39.0000 2992 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:08:39.0016 2992 msisadrv - ok
22:08:39.0094 2992 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:08:39.0125 2992 MSKSSRV - ok
22:08:39.0141 2992 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:08:39.0172 2992 MSPCLOCK - ok
22:08:39.0172 2992 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:08:39.0203 2992 MSPQM - ok
22:08:39.0250 2992 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:08:39.0266 2992 MsRPC - ok
22:08:39.0281 2992 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:08:39.0297 2992 mssmbios - ok
22:08:39.0328 2992 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:08:39.0359 2992 MSTEE - ok
22:08:39.0406 2992 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:08:39.0422 2992 Mup - ok
22:08:39.0468 2992 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:08:39.0484 2992 NativeWifiP - ok
22:08:39.0624 2992 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVENG.SYS
22:08:39.0640 2992 NAVENG - ok
22:08:39.0702 2992 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20120125.018\NAVEX15.SYS
22:08:39.0765 2992 NAVEX15 - ok
22:08:39.0936 2992 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:08:39.0968 2992 NDIS - ok
22:08:39.0999 2992 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:08:40.0014 2992 NdisTapi - ok
22:08:40.0030 2992 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:08:40.0061 2992 Ndisuio - ok
22:08:40.0155 2992 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:08:40.0186 2992 NdisWan - ok
22:08:40.0202 2992 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:08:40.0233 2992 NDProxy - ok
22:08:40.0311 2992 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:08:40.0342 2992 NetBIOS - ok
22:08:40.0389 2992 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:08:40.0420 2992 netbt - ok
22:08:40.0514 2992 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:08:40.0529 2992 nfrd960 - ok
22:08:40.0576 2992 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:08:40.0607 2992 Npfs - ok
22:08:40.0670 2992 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:08:40.0701 2992 nsiproxy - ok
22:08:40.0779 2992 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:08:40.0826 2992 Ntfs - ok
22:08:41.0028 2992 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:08:41.0075 2992 ntrigdigi - ok
22:08:41.0153 2992 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:08:41.0184 2992 Null - ok
22:08:41.0200 2992 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:08:41.0216 2992 nvraid - ok
22:08:41.0247 2992 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:08:41.0247 2992 nvstor - ok
22:08:41.0309 2992 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:08:41.0325 2992 nv_agp - ok
22:08:41.0325 2992 NwlnkFlt - ok
22:08:41.0340 2992 NwlnkFwd - ok
22:08:41.0372 2992 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:08:41.0434 2992 ohci1394 - ok
22:08:41.0512 2992 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:08:41.0559 2992 Parport - ok
22:08:41.0652 2992 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:08:41.0668 2992 partmgr - ok
22:08:41.0699 2992 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:08:41.0746 2992 Parvdm - ok
22:08:41.0793 2992 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:08:41.0808 2992 pci - ok
22:08:41.0840 2992 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
22:08:41.0855 2992 pciide - ok
22:08:41.0918 2992 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:08:41.0933 2992 pcmcia - ok
22:08:41.0964 2992 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:08:42.0042 2992 PEAUTH - ok
22:08:42.0152 2992 Point32 (5b6f99087cc1342b3d193e8155f26b6f) C:\Windows\system32\DRIVERS\point32k.sys
22:08:42.0167 2992 Point32 - ok
22:08:42.0198 2992 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:08:42.0230 2992 PptpMiniport - ok
22:08:42.0292 2992 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:08:42.0323 2992 Processor - ok
22:08:42.0401 2992 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:08:42.0432 2992 PSched - ok
22:08:42.0495 2992 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
22:08:42.0510 2992 PxHelp20 - ok
22:08:42.0557 2992 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:08:42.0604 2992 ql2300 - ok
22:08:42.0651 2992 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:08:42.0666 2992 ql40xx - ok
22:08:42.0713 2992 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:08:42.0729 2992 QWAVEdrv - ok
22:08:42.0854 2992 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys
22:08:42.0947 2992 R300 - ok
22:08:42.0978 2992 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:08:43.0010 2992 RasAcd - ok
22:08:43.0025 2992 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:08:43.0056 2992 Rasl2tp - ok
22:08:43.0150 2992 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:08:43.0166 2992 RasPppoe - ok
22:08:43.0212 2992 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:08:43.0228 2992 RasSstp - ok
22:08:43.0322 2992 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:08:43.0353 2992 rdbss - ok
22:08:43.0368 2992 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:08:43.0400 2992 RDPCDD - ok
22:08:43.0431 2992 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:08:43.0462 2992 rdpdr - ok
22:08:43.0478 2992 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:08:43.0509 2992 RDPENCDD - ok
22:08:43.0540 2992 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:08:43.0571 2992 RDPWD - ok
22:08:43.0602 2992 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:08:43.0634 2992 rspndr - ok
22:08:43.0696 2992 RTL8169 (5163f804256deb8cf1ef64b780a18caa) C:\Windows\system32\DRIVERS\Rtlh86.sys
22:08:43.0727 2992 RTL8169 - ok
22:08:43.0852 2992 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:08:43.0868 2992 sbp2port - ok
22:08:43.0930 2992 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:08:43.0977 2992 secdrv - ok
22:08:44.0024 2992 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
22:08:44.0039 2992 Serenum - ok
22:08:44.0148 2992 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
22:08:44.0180 2992 Serial - ok
22:08:44.0195 2992 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:08:44.0226 2992 sermouse - ok
22:08:44.0289 2992 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:08:44.0320 2992 sffdisk - ok
22:08:44.0336 2992 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:08:44.0367 2992 sffp_mmc - ok
22:08:44.0382 2992 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:08:44.0414 2992 sffp_sd - ok
22:08:44.0492 2992 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:08:44.0538 2992 sfloppy - ok
22:08:44.0585 2992 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:08:44.0585 2992 sisagp - ok
22:08:44.0632 2992 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:08:44.0648 2992 SiSRaid2 - ok
22:08:44.0726 2992 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:08:44.0741 2992 SiSRaid4 - ok
22:08:44.0819 2992 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:08:44.0850 2992 Smb - ok
22:08:44.0975 2992 SPBBCDrv (e87cf104f12c92401c4d33c50a3d5dc8) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
22:08:44.0991 2992 SPBBCDrv - ok
22:08:45.0069 2992 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:08:45.0069 2992 spldr - ok
22:08:45.0131 2992 SRTSP (b36f8d6a02ff2b3a53e250a629782f29) C:\Windows\system32\Drivers\SRTSP.SYS
22:08:45.0147 2992 SRTSP - ok
22:08:45.0194 2992 SRTSPL (e99bd98ac171a29fc1ba9376be87ae73) C:\Windows\system32\Drivers\SRTSPL.SYS
22:08:45.0209 2992 SRTSPL - ok
22:08:45.0256 2992 SRTSPX (1af34729898063e9b7df8d149d767e07) C:\Windows\system32\Drivers\SRTSPX.SYS
22:08:45.0256 2992 SRTSPX - ok
22:08:45.0303 2992 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:08:45.0318 2992 srv - ok
22:08:45.0365 2992 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:08:45.0381 2992 srv2 - ok
22:08:45.0428 2992 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:08:45.0443 2992 srvnet - ok
22:08:45.0521 2992 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:08:45.0521 2992 swenum - ok
22:08:45.0615 2992 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:08:45.0630 2992 Symc8xx - ok
22:08:45.0662 2992 SymEvent (e42a34e6f5ca71a84d4c2de620aad13d) C:\Windows\system32\Drivers\SYMEVENT.SYS
22:08:45.0662 2992 SymEvent - ok
22:08:45.0724 2992 SYMREDRV (394b2368212114d538316812af60fddd) C:\Windows\System32\Drivers\SYMREDRV.SYS
22:08:45.0724 2992 SYMREDRV - ok
22:08:45.0771 2992 SYMTDI (d46676bb414c7531bdffe637a33f5033) C:\Windows\System32\Drivers\SYMTDI.SYS
22:08:45.0786 2992 SYMTDI - ok
22:08:45.0818 2992 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:08:45.0818 2992 Sym_hi - ok
22:08:45.0849 2992 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:08:45.0864 2992 Sym_u3 - ok
22:08:45.0911 2992 SysPlant (666992d996c524812e713effd836d043) C:\Windows\SYSTEM32\Drivers\SysPlant.sys
22:08:45.0927 2992 SysPlant - ok
22:08:46.0036 2992 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:08:46.0067 2992 Tcpip - ok
22:08:46.0114 2992 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:08:46.0145 2992 Tcpip6 - ok
22:08:46.0192 2992 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:08:46.0208 2992 tcpipreg - ok
22:08:46.0239 2992 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:08:46.0270 2992 TDPIPE - ok
22:08:46.0332 2992 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:08:46.0364 2992 TDTCP - ok
22:08:46.0410 2992 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:08:46.0426 2992 tdx - ok
22:08:46.0520 2992 Teefer2 (f63439ac8fa992bfa0c757eb644a1a0c) C:\Windows\system32\DRIVERS\teefer2.sys
22:08:46.0535 2992 Teefer2 - ok
22:08:46.0629 2992 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:08:46.0644 2992 TermDD - ok
22:08:46.0754 2992 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
22:08:46.0754 2992 TrueSight ( UnsignedFile.Multi.Generic ) - warning
22:08:46.0754 2992 TrueSight - detected UnsignedFile.Multi.Generic (1)
22:08:46.0800 2992 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:08:46.0832 2992 tssecsrv - ok
22:08:46.0894 2992 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:08:46.0910 2992 tunmp - ok
22:08:46.0956 2992 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:08:46.0972 2992 tunnel - ok
22:08:46.0988 2992 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:08:47.0003 2992 uagp35 - ok
22:08:47.0066 2992 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:08:47.0081 2992 udfs - ok
22:08:47.0128 2992 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:08:47.0128 2992 uliagpkx - ok
22:08:47.0175 2992 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:08:47.0190 2992 uliahci - ok
22:08:47.0222 2992 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:08:47.0237 2992 UlSata - ok
22:08:47.0300 2992 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:08:47.0315 2992 ulsata2 - ok
22:08:47.0346 2992 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:08:47.0378 2992 umbus - ok
22:08:47.0456 2992 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:08:47.0471 2992 USBAAPL - ok
22:08:47.0502 2992 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:08:47.0534 2992 usbccgp - ok
22:08:47.0705 2992 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:08:47.0752 2992 usbcir - ok
22:08:47.0830 2992 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:08:47.0846 2992 usbehci - ok
22:08:47.0908 2992 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:08:47.0939 2992 usbhub - ok
22:08:48.0002 2992 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:08:48.0064 2992 usbohci - ok
22:08:48.0080 2992 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
22:08:48.0126 2992 usbprint - ok
22:08:48.0173 2992 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:08:48.0204 2992 usbscan - ok
22:08:48.0236 2992 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:08:48.0267 2992 USBSTOR - ok
22:08:48.0314 2992 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:08:48.0345 2992 usbuhci - ok
22:08:48.0376 2992 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:08:48.0407 2992 vga - ok
22:08:48.0423 2992 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:08:48.0454 2992 VgaSave - ok
22:08:48.0485 2992 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:08:48.0485 2992 viaagp - ok
22:08:48.0563 2992 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:08:48.0594 2992 ViaC7 - ok
22:08:48.0610 2992 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:08:48.0626 2992 viaide - ok
22:08:48.0672 2992 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:08:48.0672 2992 volmgr - ok
22:08:48.0750 2992 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:08:48.0766 2992 volmgrx - ok
22:08:48.0828 2992 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:08:48.0844 2992 volsnap - ok
22:08:48.0891 2992 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:08:48.0906 2992 vsmraid - ok
22:08:48.0938 2992 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:08:49.0000 2992 WacomPen - ok
22:08:49.0016 2992 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:08:49.0031 2992 Wanarp - ok
22:08:49.0047 2992 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:08:49.0062 2992 Wanarpv6 - ok
22:08:49.0140 2992 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:08:49.0140 2992 Wd - ok
22:08:49.0187 2992 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:08:49.0203 2992 Wdf01000 - ok
22:08:49.0343 2992 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
22:08:49.0359 2992 WmiAcpi - ok
22:08:49.0546 2992 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:08:49.0562 2992 WpdUsb - ok
22:08:49.0640 2992 WPS (9748e527f0d71bc86a1fe45f294e368b) C:\Windows\system32\drivers\wpsdrvnt.sys
22:08:49.0655 2992 WPS - ok
22:08:49.0718 2992 WpsHelper (ff983a25ae6f7d3f87f26bf51f02a201) C:\Windows\system32\drivers\WpsHelper.sys
22:08:49.0733 2992 WpsHelper - ok
22:08:49.0749 2992 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:08:49.0780 2992 ws2ifsl - ok
22:08:49.0874 2992 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:08:49.0905 2992 WUDFRd - ok
22:08:49.0936 2992 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:08:50.0061 2992 \Device\Harddisk0\DR0 - ok
22:08:50.0076 2992 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk1\DR1
22:08:50.0232 2992 \Device\Harddisk1\DR1 - ok
22:08:50.0248 2992 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR2
22:08:50.0248 2992 \Device\Harddisk2\DR2 - ok
22:08:50.0279 2992 Boot (0x1200) (8bcf45a8e9549495d4098b9fe5609ca8) \Device\Harddisk0\DR0\Partition0
22:08:50.0279 2992 \Device\Harddisk0\DR0\Partition0 - ok
22:08:50.0279 2992 Boot (0x1200) (5aa51cde19268509954e7840961d50c3) \Device\Harddisk0\DR0\Partition1
22:08:50.0279 2992 \Device\Harddisk0\DR0\Partition1 - ok
22:08:50.0295 2992 Boot (0x1200) (ab59b05fa41c6d9c15734fee8b39d8da) \Device\Harddisk1\DR1\Partition0
22:08:50.0295 2992 \Device\Harddisk1\DR1\Partition0 - ok
22:08:50.0295 2992 ============================================================
22:08:50.0295 2992 Scan finished
22:08:50.0295 2992 ============================================================
22:08:50.0295 1172 Detected object count: 1
22:08:50.0295 1172 Actual detected object count: 1
22:08:56.0051 1172 TrueSight ( UnsignedFile.Multi.Generic ) - skipped by user
22:08:56.0051 1172 TrueSight ( UnsignedFile.Multi.Generic ) - User select action: Skip
22:17:36.0141 1484 Deinitialize success

[knarf1]

The problem with combofix might be related to the fact that my Symantec Endpoint Protect was difficult to KEEP disabled. Though I disabled it, it seemed to spring back to life sometimes.

Many thanks for your help.
Good night from LA.

[Homburg]

Hi,

I'd like you to try and run ComboFix again, to disable your Symantec it should be just right click on the icon in the taskbar notification area & select "Disable Symantec EndPoint Protection".

If that still doesn't work try to run ComboFix in safe mode with networking.

I see that you are either running a McAfee product or have done in the past, are you still using it?



Step 1:

Please restart in safe mode with networking:

• If the computer is running, shut down Windows, and then turn off the power
• Restart the computer and start tapping the F8 key. The Windows Advanced Options Menu appears. If you begin tapping the F8 key too soon, some computers display a "keyboard error" message. To resolve this, restart the computer and try again.
• Ensure that the Safe mode with networking option is selected.
• Press Enter. The computer then begins to start in Safe mode.

Follow the previous instructions for running ComboFix. If it crashes, please check to see if there is a report at C:\ComboFix.txt


Step 2:

Please download MBRCheck.exe to your Desktop. Run the application.

If no infection is found, it will produce a report on the desktop. Post that report in your next reply.

If an infection is found, you will be presented with the following dialog:

Enter 'Y' and hit ENTER for more options, or 'N' to exit:

Type N and press Enter. A report will be produced on the desktop. Post that report in your next reply.