03:39:42.0535 57996 TDSS rootkit removing tool 2.6.12.0 Oct 21 2011 11:23:48
03:39:42.0796 57996 ============================================================
03:39:42.0796 57996 Current date / time: 2011/10/27 03:39:42.0796
03:39:42.0796 57996 SystemInfo:
03:39:42.0796 57996
03:39:42.0796 57996 OS Version: 6.0.6001 ServicePack: 1.0
03:39:42.0796 57996 Product type: Workstation
03:39:42.0797 57996 ComputerName: OFFICE
03:39:42.0797 57996 UserName: joylynn
03:39:42.0797 57996 Windows directory: C:\Windows
03:39:42.0797 57996 System windows directory: C:\Windows
03:39:42.0797 57996 Processor architecture: Intel x86
03:39:42.0797 57996 Number of processors: 2
03:39:42.0797 57996 Page size: 0x1000
03:39:42.0797 57996 Boot type: Normal boot
03:39:42.0797 57996 ============================================================
03:39:52.0391 57996 Initialize success
03:39:59.0020 57768 ============================================================
03:39:59.0020 57768 Scan started
03:39:59.0020 57768 Mode: Manual;
03:39:59.0020 57768 ============================================================
03:39:59.0511 57768 56068045 (89fdba391985968401f51a5c577933cd) C:\Windows\system32\drivers\98560963.sys
03:39:59.0581 57768 62794571 (89fdba391985968401f51a5c577933cd) C:\Windows\system32\drivers\63478084.sys
03:39:59.0623 57768 a2acc - ok
03:39:59.0729 57768 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
03:39:59.0733 57768 ACPI - ok
03:39:59.0815 57768 adfs (6d7f09cd92a9fef3a8efce66231fdd79) C:\Windows\system32\drivers\adfs.sys
03:39:59.0816 57768 adfs - ok
03:39:59.0930 57768 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
03:39:59.0936 57768 adp94xx - ok
03:40:00.0005 57768 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
03:40:00.0007 57768 adpahci - ok
03:40:00.0066 57768 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
03:40:00.0068 57768 adpu160m - ok
03:40:00.0095 57768 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
03:40:00.0097 57768 adpu320 - ok
03:40:00.0194 57768 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
03:40:00.0199 57768 AFD - ok
03:40:00.0306 57768 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
03:40:00.0307 57768 agp440 - ok
03:40:00.0365 57768 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
03:40:00.0367 57768 aic78xx - ok
03:40:00.0391 57768 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
03:40:00.0391 57768 aliide - ok
03:40:00.0470 57768 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
03:40:00.0471 57768 amdagp - ok
03:40:00.0518 57768 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
03:40:00.0519 57768 amdide - ok
03:40:00.0556 57768 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
03:40:00.0557 57768 AmdK7 - ok
03:40:00.0596 57768 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
03:40:00.0598 57768 AmdK8 - ok
03:40:00.0684 57768 AnyDVD (133b7b6d6a3ec9e46fbe742ee1516c37) C:\Windows\system32\Drivers\AnyDVD.sys
03:40:00.0685 57768 AnyDVD - ok
03:40:00.0764 57768 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
03:40:00.0766 57768 arc - ok
03:40:00.0807 57768 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
03:40:00.0809 57768 arcsas - ok
03:40:00.0855 57768 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
03:40:00.0857 57768 AsyncMac - ok
03:40:00.0901 57768 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
03:40:00.0903 57768 atapi - ok
03:40:01.0000 57768 ATMhelpr (3ef1db7f168851914517d4ed36b57c04) C:\Windows\system32\drivers\ATMhelpr.sys
03:40:01.0001 57768 ATMhelpr - ok
03:40:01.0051 57768 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
03:40:01.0053 57768 avgntflt - ok
03:40:01.0108 57768 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
03:40:01.0110 57768 avipbb - ok
03:40:01.0176 57768 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
03:40:01.0177 57768 Beep - ok
03:40:01.0229 57768 blbdrive - ok
03:40:01.0331 57768 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
03:40:01.0332 57768 bowser - ok
03:40:01.0380 57768 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
03:40:01.0381 57768 BrFiltLo - ok
03:40:01.0451 57768 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
03:40:01.0452 57768 BrFiltUp - ok
03:40:01.0536 57768 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\Drivers\Brserid.sys
03:40:01.0538 57768 Brserid - ok
03:40:01.0602 57768 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
03:40:01.0604 57768 BrSerWdm - ok
03:40:01.0679 57768 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
03:40:01.0679 57768 BrUsbMdm - ok
03:40:01.0721 57768 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\Drivers\BrUsbSer.sys
03:40:01.0722 57768 BrUsbSer - ok
03:40:01.0775 57768 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
03:40:01.0777 57768 BTHMODEM - ok
03:40:01.0866 57768 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
03:40:01.0868 57768 cdfs - ok
03:40:01.0923 57768 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
03:40:01.0924 57768 cdrom - ok
03:40:01.0958 57768 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
03:40:01.0959 57768 circlass - ok
03:40:02.0019 57768 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
03:40:02.0021 57768 CLFS - ok
03:40:02.0093 57768 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
03:40:02.0094 57768 cmdide - ok
03:40:02.0155 57768 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
03:40:02.0156 57768 Compbatt - ok
03:40:02.0176 57768 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
03:40:02.0178 57768 crcdisk - ok
03:40:02.0198 57768 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
03:40:02.0199 57768 Crusoe - ok
03:40:02.0290 57768 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
03:40:02.0291 57768 DfsC - ok
03:40:02.0415 57768 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
03:40:02.0416 57768 disk - ok
03:40:02.0470 57768 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
03:40:02.0471 57768 Dot4 - ok
03:40:02.0490 57768 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
03:40:02.0491 57768 Dot4Print - ok
03:40:02.0560 57768 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
03:40:02.0560 57768 dot4usb - ok
03:40:02.0613 57768 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
03:40:02.0614 57768 drmkaud - ok
03:40:02.0661 57768 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
03:40:02.0669 57768 DXGKrnl - ok
03:40:02.0765 57768 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
03:40:02.0766 57768 E1G60 - ok
03:40:02.0816 57768 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
03:40:02.0819 57768 Ecache - ok
03:40:02.0895 57768 eeCtrl (e89cc1363cb7f5320ae3b41c1333d0c3) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
03:40:02.0901 57768 eeCtrl - ok
03:40:02.0994 57768 ElbyCDIO (d71233d7ccc2e64f8715a20428d5a33b) C:\Windows\system32\Drivers\ElbyCDIO.sys
03:40:02.0994 57768 ElbyCDIO - ok
03:40:03.0041 57768 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
03:40:03.0046 57768 elxstor - ok
03:40:03.0127 57768 EraserUtilRebootDrv (e7d1a496c71cd56bdd97f32c9141a03b) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
03:40:03.0129 57768 EraserUtilRebootDrv - ok
03:40:03.0229 57768 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
03:40:03.0231 57768 exfat - ok
03:40:03.0271 57768 f4f610d6 ( Rootkit.Win32.PMax.gen ) - infected
03:40:03.0271 57768 f4f610d6 - detected Rootkit.Win32.PMax.gen (0)
03:40:03.0319 57768 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
03:40:03.0322 57768 fastfat - ok
03:40:03.0407 57768 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
03:40:03.0408 57768 fdc - ok
03:40:03.0433 57768 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
03:40:03.0434 57768 FileInfo - ok
03:40:03.0462 57768 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
03:40:03.0463 57768 Filetrace - ok
03:40:03.0485 57768 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
03:40:03.0487 57768 flpydisk - ok
03:40:03.0582 57768 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
03:40:03.0584 57768 FltMgr - ok
03:40:03.0618 57768 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
03:40:03.0619 57768 Fs_Rec - ok
03:40:03.0649 57768 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
03:40:03.0651 57768 gagp30kx - ok
03:40:03.0749 57768 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
03:40:03.0750 57768 GEARAspiWDM - ok
03:40:03.0813 57768 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
03:40:03.0817 57768 HdAudAddService - ok
03:40:03.0890 57768 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
03:40:03.0892 57768 HDAudBus - ok
03:40:03.0920 57768 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
03:40:03.0921 57768 HidBth - ok
03:40:03.0940 57768 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
03:40:03.0942 57768 HidIr - ok
03:40:03.0976 57768 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
03:40:03.0977 57768 HidUsb - ok
03:40:04.0075 57768 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
03:40:04.0076 57768 HpCISSs - ok
03:40:04.0163 57768 HSF_DP (88749fbf8beb18c90e7d6626c8c1910b) C:\Windows\system32\DRIVERS\HSX_DP.sys
03:40:04.0168 57768 HSF_DP - ok
03:40:04.0240 57768 HSXHWBS2 (fe440536bd98af772130dc3a6fe1915f) C:\Windows\system32\DRIVERS\HSXHWBS2.sys
03:40:04.0242 57768 HSXHWBS2 - ok
03:40:04.0279 57768 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
03:40:04.0282 57768 HTTP - ok
03:40:04.0310 57768 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
03:40:04.0312 57768 i2omp - ok
03:40:04.0411 57768 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
03:40:04.0413 57768 i8042prt - ok
03:40:04.0435 57768 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
03:40:04.0439 57768 iaStorV - ok
03:40:04.0467 57768 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
03:40:04.0468 57768 iirsp - ok
03:40:04.0597 57768 IntcAzAudAddService (edc37b918e583a5a813c53d4f5588255) C:\Windows\system32\drivers\RTKVHDA.sys
03:40:04.0620 57768 IntcAzAudAddService - ok
03:40:04.0705 57768 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
03:40:04.0706 57768 intelide - ok
03:40:04.0733 57768 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
03:40:04.0734 57768 intelppm - ok
03:40:04.0781 57768 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
03:40:04.0782 57768 IpFilterDriver - ok
03:40:04.0841 57768 IpInIp - ok
03:40:04.0870 57768 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
03:40:04.0872 57768 IPMIDRV - ok
03:40:04.0910 57768 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
03:40:04.0911 57768 IPNAT - ok
03:40:04.0963 57768 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
03:40:04.0964 57768 IRENUM - ok
03:40:05.0054 57768 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
03:40:05.0056 57768 isapnp - ok
03:40:05.0104 57768 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
03:40:05.0106 57768 iScsiPrt - ok
03:40:05.0120 57768 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
03:40:05.0122 57768 iteatapi - ok
03:40:05.0212 57768 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
03:40:05.0213 57768 iteraid - ok
03:40:05.0234 57768 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
03:40:05.0235 57768 kbdclass - ok
03:40:05.0257 57768 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
03:40:05.0257 57768 kbdhid - ok
03:40:05.0304 57768 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
03:40:05.0311 57768 KSecDD - ok
03:40:05.0420 57768 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
03:40:05.0421 57768 lltdio - ok
03:40:05.0497 57768 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
03:40:05.0498 57768 LMIInfo - ok
03:40:05.0585 57768 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\Windows\system32\DRIVERS\lmimirr.sys
03:40:05.0586 57768 lmimirr - ok
03:40:05.0602 57768 LMIRfsClientNP - ok
03:40:05.0626 57768 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\Windows\system32\drivers\LMIRfsDriver.sys
03:40:05.0627 57768 LMIRfsDriver - ok
03:40:05.0663 57768 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
03:40:05.0664 57768 LSI_FC - ok
03:40:05.0736 57768 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
03:40:05.0738 57768 LSI_SAS - ok
03:40:05.0751 57768 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
03:40:05.0753 57768 LSI_SCSI - ok
03:40:05.0796 57768 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
03:40:05.0797 57768 luafv - ok
03:40:05.0885 57768 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\Windows\system32\drivers\mbam.sys
03:40:05.0887 57768 MBAMProtector - ok
03:40:05.0914 57768 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
03:40:05.0916 57768 mdmxsdk - ok
03:40:05.0942 57768 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
03:40:05.0944 57768 megasas - ok
03:40:05.0973 57768 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
03:40:05.0975 57768 Modem - ok
03:40:06.0060 57768 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
03:40:06.0062 57768 monitor - ok
03:40:06.0087 57768 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
03:40:06.0087 57768 mouclass - ok
03:40:06.0153 57768 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
03:40:06.0154 57768 mouhid - ok
03:40:06.0189 57768 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
03:40:06.0190 57768 MountMgr - ok
03:40:06.0270 57768 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
03:40:06.0271 57768 mpio - ok
03:40:06.0305 57768 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
03:40:06.0307 57768 mpsdrv - ok
03:40:06.0329 57768 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
03:40:06.0331 57768 Mraid35x - ok
03:40:06.0369 57768 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
03:40:06.0371 57768 MRxDAV - ok
03:40:06.0486 57768 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
03:40:06.0489 57768 mrxsmb - ok
03:40:06.0540 57768 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
03:40:06.0543 57768 mrxsmb10 - ok
03:40:06.0559 57768 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
03:40:06.0561 57768 mrxsmb20 - ok
03:40:06.0591 57768 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
03:40:06.0592 57768 msahci - ok
03:40:06.0668 57768 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
03:40:06.0670 57768 msdsm - ok
03:40:06.0717 57768 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
03:40:06.0718 57768 Msfs - ok
03:40:06.0763 57768 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
03:40:06.0764 57768 msisadrv - ok
03:40:06.0856 57768 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
03:40:06.0857 57768 MSKSSRV - ok
03:40:06.0876 57768 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
03:40:06.0878 57768 MSPCLOCK - ok
03:40:06.0887 57768 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
03:40:06.0888 57768 MSPQM - ok
03:40:06.0930 57768 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
03:40:06.0933 57768 MsRPC - ok
03:40:07.0019 57768 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
03:40:07.0021 57768 mssmbios - ok
03:40:07.0047 57768 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
03:40:07.0047 57768 MSTEE - ok
03:40:07.0080 57768 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
03:40:07.0082 57768 Mup - ok
03:40:07.0207 57768 MXOPSWD (216ac775320f64de28cfeb7c179c4ff9) C:\Windows\system32\DRIVERS\mxopswd.sys
03:40:07.0208 57768 MXOPSWD - ok
03:40:07.0261 57768 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
03:40:07.0263 57768 NativeWifiP - ok
03:40:07.0301 57768 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
03:40:07.0309 57768 NDIS - ok
03:40:07.0389 57768 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
03:40:07.0390 57768 NdisTapi - ok
03:40:07.0422 57768 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
03:40:07.0423 57768 Ndisuio - ok
03:40:07.0463 57768 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
03:40:07.0465 57768 NdisWan - ok
03:40:07.0551 57768 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
03:40:07.0553 57768 NDProxy - ok
03:40:07.0591 57768 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
03:40:07.0592 57768 NetBIOS - ok
03:40:07.0634 57768 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
03:40:07.0637 57768 netbt - ok
03:40:07.0727 57768 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
03:40:07.0729 57768 nfrd960 - ok
03:40:07.0770 57768 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
03:40:07.0771 57768 Npfs - ok
03:40:07.0809 57768 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
03:40:07.0810 57768 nsiproxy - ok
03:40:07.0918 57768 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
03:40:07.0931 57768 Ntfs - ok
03:40:07.0955 57768 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
03:40:07.0956 57768 ntrigdigi - ok
03:40:08.0041 57768 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
03:40:08.0042 57768 Null - ok
03:40:08.0115 57768 NVENETFD (74c825c573aa6e115590d94e7bf86901) C:\Windows\system32\DRIVERS\nvmfdx32.sys
03:40:08.0127 57768 NVENETFD - ok
03:40:08.0365 57768 nvlddmkm (fbba09782f2fac5a57619df378ba9372) C:\Windows\system32\DRIVERS\nvlddmkm.sys
03:40:08.0503 57768 nvlddmkm - ok
03:40:08.0584 57768 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
03:40:08.0586 57768 nvraid - ok
03:40:08.0608 57768 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
03:40:08.0609 57768 nvstor - ok
03:40:08.0643 57768 nvstor32 (a1ce1a6fd74c046f029448fcfa5e386d) C:\Windows\system32\drivers\nvstor32.sys
03:40:08.0644 57768 nvstor32 - ok
03:40:08.0664 57768 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
03:40:08.0666 57768 nv_agp - ok
03:40:08.0724 57768 NwlnkFlt - ok
03:40:08.0737 57768 NwlnkFwd - ok
03:40:08.0776 57768 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
03:40:08.0780 57768 ohci1394 - ok
03:40:08.0820 57768 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
03:40:08.0822 57768 Parport - ok
03:40:08.0886 57768 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
03:40:08.0887 57768 partmgr - ok
03:40:08.0900 57768 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
03:40:08.0902 57768 Parvdm - ok
03:40:08.0944 57768 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
03:40:08.0947 57768 pci - ok
03:40:08.0965 57768 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
03:40:08.0966 57768 pciide - ok
03:40:09.0031 57768 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
03:40:09.0034 57768 pcmcia - ok
03:40:09.0112 57768 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
03:40:09.0123 57768 PEAUTH - ok
03:40:09.0209 57768 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
03:40:09.0211 57768 PptpMiniport - ok
03:40:09.0271 57768 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
03:40:09.0272 57768 Processor - ok
03:40:09.0316 57768 Ps2 (390c204ced3785609ab24e9c52054a84) C:\Windows\system32\DRIVERS\PS2.sys
03:40:09.0318 57768 Ps2 - ok
03:40:09.0357 57768 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
03:40:09.0358 57768 PSched - ok
03:40:09.0423 57768 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
03:40:09.0425 57768 PxHelp20 - ok
03:40:09.0475 57768 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
03:40:09.0480 57768 ql2300 - ok
03:40:09.0504 57768 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
03:40:09.0507 57768 ql40xx - ok
03:40:09.0563 57768 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
03:40:09.0565 57768 QWAVEdrv - ok
03:40:09.0595 57768 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
03:40:09.0596 57768 RasAcd - ok
03:40:09.0646 57768 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
03:40:09.0648 57768 Rasl2tp - ok
03:40:09.0720 57768 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
03:40:09.0722 57768 RasPppoe - ok
03:40:09.0743 57768 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
03:40:09.0745 57768 RasSstp - ok
03:40:09.0762 57768 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
03:40:09.0766 57768 rdbss - ok
03:40:09.0801 57768 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
03:40:09.0802 57768 RDPCDD - ok
03:40:09.0888 57768 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
03:40:09.0893 57768 rdpdr - ok
03:40:09.0901 57768 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
03:40:09.0903 57768 RDPENCDD - ok
03:40:09.0947 57768 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
03:40:09.0950 57768 RDPWD - ok
03:40:10.0010 57768 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
03:40:10.0011 57768 rspndr - ok
03:40:10.0089 57768 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
03:40:10.0091 57768 sbp2port - ok
03:40:10.0122 57768 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
03:40:10.0123 57768 secdrv - ok
03:40:10.0147 57768 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
03:40:10.0149 57768 Serenum - ok
03:40:10.0165 57768 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
03:40:10.0168 57768 Serial - ok
03:40:10.0205 57768 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
03:40:10.0206 57768 sermouse - ok
03:40:10.0296 57768 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\drivers\sffdisk.sys
03:40:10.0298 57768 sffdisk - ok
03:40:10.0316 57768 sffp_mmc (96ded8b20c734ac41641ce275250e55d) C:\Windows\system32\drivers\sffp_mmc.sys
03:40:10.0317 57768 sffp_mmc - ok
03:40:10.0340 57768 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\drivers\sffp_sd.sys
03:40:10.0341 57768 sffp_sd - ok
03:40:10.0358 57768 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
03:40:10.0359 57768 sfloppy - ok
03:40:10.0436 57768 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
03:40:10.0438 57768 sisagp - ok
03:40:10.0462 57768 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
03:40:10.0463 57768 SiSRaid2 - ok
03:40:10.0478 57768 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
03:40:10.0480 57768 SiSRaid4 - ok
03:40:10.0517 57768 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
03:40:10.0519 57768 Smb - ok
03:40:10.0831 57768 SNPSTD3 (11bb0e11d42cc3a43d741d9b30839be1) C:\Windows\system32\DRIVERS\snpstd3.sys
03:40:11.0032 57768 SNPSTD3 - ok
03:40:11.0109 57768 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
03:40:11.0111 57768 spldr - ok
03:40:11.0190 57768 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
03:40:11.0195 57768 srv - ok
03:40:11.0256 57768 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
03:40:11.0258 57768 srv2 - ok
03:40:11.0278 57768 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
03:40:11.0280 57768 srvnet - ok
03:40:11.0371 57768 sscdbus (d5dffeaa1e15d4effabb9d9a3068ac5b) C:\Windows\system32\DRIVERS\sscdbus.sys
03:40:11.0373 57768 sscdbus - ok
03:40:11.0411 57768 sscdmdfl (8a1be0c347814f482f493aea619d57f6) C:\Windows\system32\DRIVERS\sscdmdfl.sys
03:40:11.0412 57768 sscdmdfl - ok
03:40:11.0457 57768 sscdmdm (5ab0b1987f682a59b15b78f84c6ad7d0) C:\Windows\system32\DRIVERS\sscdmdm.sys
03:40:11.0459 57768 sscdmdm - ok
03:40:11.0527 57768 sscdserd (751e66eb32efa80633b80f5d7ff0a1d8) C:\Windows\system32\DRIVERS\sscdserd.sys
03:40:11.0529 57768 sscdserd - ok
03:40:11.0590 57768 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
03:40:11.0591 57768 ssmdrv - ok
03:40:11.0636 57768 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
03:40:11.0637 57768 StillCam - ok
03:40:11.0700 57768 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
03:40:11.0702 57768 swenum - ok
03:40:11.0757 57768 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
03:40:11.0759 57768 Symc8xx - ok
03:40:11.0797 57768 SYMDNS (1d8fb1e5d6859d38e3ebca5febc6839f) C:\Windows\System32\Drivers\SYMDNS.SYS
03:40:11.0798 57768 SYMDNS - ok
03:40:11.0862 57768 SymEvent (9e4188476848b2ef86f9c44d5164e724) C:\Windows\system32\Drivers\SYMEVENT.SYS
03:40:11.0863 57768 SymEvent - ok
03:40:11.0892 57768 SYMFW (91fcddf2cbaf898126ae7dfa5ce570ed) C:\Windows\System32\Drivers\SYMFW.SYS
03:40:11.0895 57768 SYMFW - ok
03:40:11.0908 57768 SYMIDS (9584e278787ad65e82eec5694f77cb54) C:\Windows\System32\Drivers\SYMIDS.SYS
03:40:11.0910 57768 SYMIDS - ok
03:40:11.0946 57768 SYMNDISV (60350bc7919e6e45dd8130ad55665f48) C:\Windows\System32\Drivers\SYMNDISV.SYS
03:40:11.0948 57768 SYMNDISV - ok
03:40:11.0998 57768 SYMREDRV (9181892e5af5df8d2ac3d9d2cea48afd) C:\Windows\System32\Drivers\SYMREDRV.SYS
03:40:11.0999 57768 SYMREDRV - ok
03:40:12.0019 57768 SYMTDI (d539f317e6caaa4e08911a84c2180938) C:\Windows\System32\Drivers\SYMTDI.SYS
03:40:12.0023 57768 SYMTDI - ok
03:40:12.0066 57768 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
03:40:12.0067 57768 Sym_hi - ok
03:40:12.0094 57768 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
03:40:12.0095 57768 Sym_u3 - ok
03:40:12.0209 57768 Tcpip (6216a954ed7045b62880a92d6c9b9fc7) C:\Windows\system32\drivers\tcpip.sys
03:40:12.0220 57768 Tcpip - ok
03:40:12.0261 57768 Tcpip6 (6216a954ed7045b62880a92d6c9b9fc7) C:\Windows\system32\DRIVERS\tcpip.sys
03:40:12.0266 57768 Tcpip6 - ok
03:40:12.0307 57768 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
03:40:12.0308 57768 tcpipreg - ok
03:40:12.0373 57768 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
03:40:12.0374 57768 TDPIPE - ok
03:40:12.0403 57768 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
03:40:12.0404 57768 TDTCP - ok
03:40:12.0447 57768 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
03:40:12.0449 57768 tdx - ok
03:40:12.0493 57768 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
03:40:12.0495 57768 TermDD - ok
03:40:12.0582 57768 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
03:40:12.0583 57768 tssecsrv - ok
03:40:12.0620 57768 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
03:40:12.0621 57768 tunmp - ok
03:40:12.0682 57768 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
03:40:12.0683 57768 tunnel - ok
03:40:12.0742 57768 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
03:40:12.0744 57768 uagp35 - ok
03:40:12.0782 57768 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
03:40:12.0786 57768 udfs - ok
03:40:12.0829 57768 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
03:40:12.0831 57768 uliagpkx - ok
03:40:12.0852 57768 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
03:40:12.0856 57768 uliahci - ok
03:40:12.0915 57768 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
03:40:12.0918 57768 UlSata - ok
03:40:12.0938 57768 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
03:40:12.0941 57768 ulsata2 - ok
03:40:12.0991 57768 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
03:40:12.0992 57768 umbus - ok
03:40:13.0054 57768 USBAAPL (1df89c499bf45d878b87ebd4421d462d) C:\Windows\system32\Drivers\usbaapl.sys
03:40:13.0056 57768 USBAAPL - ok
03:40:13.0102 57768 usbaudio (292a25bb75a568ae2c67169ba2c6365a) C:\Windows\system32\drivers\usbaudio.sys
03:40:13.0104 57768 usbaudio - ok
03:40:13.0172 57768 usbbus (5353218b3265e3b8190335059f697a11) C:\Windows\system32\DRIVERS\lgusbbus.sys
03:40:13.0173 57768 usbbus - ok
03:40:13.0231 57768 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
03:40:13.0234 57768 usbccgp - ok
03:40:13.0263 57768 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
03:40:13.0265 57768 usbcir - ok
03:40:13.0315 57768 UsbDiag (7dd3eefc62a1ef44e5f940fa651ed9ed) C:\Windows\system32\DRIVERS\lgusbdiag.sys
03:40:13.0316 57768 UsbDiag - ok
03:40:13.0353 57768 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
03:40:13.0354 57768 usbehci - ok
03:40:13.0428 57768 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
03:40:13.0431 57768 usbhub - ok
03:40:13.0482 57768 USBModem (083031a78822eccbd7510bccd3e20d4c) C:\Windows\system32\DRIVERS\lgusbmodem.sys
03:40:13.0483 57768 USBModem - ok
03:40:13.0501 57768 usbohci (7bdb7b0e7d45ac0402d78b90789ef47c) C:\Windows\system32\DRIVERS\usbohci.sys
03:40:13.0502 57768 usbohci - ok
03:40:13.0574 57768 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
03:40:13.0576 57768 usbprint - ok
03:40:13.0613 57768 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
03:40:13.0614 57768 usbscan - ok
03:40:13.0662 57768 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
03:40:13.0663 57768 USBSTOR - ok
03:40:13.0692 57768 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
03:40:13.0693 57768 usbuhci - ok
03:40:13.0748 57768 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
03:40:13.0750 57768 vga - ok
03:40:13.0781 57768 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
03:40:13.0783 57768 VgaSave - ok
03:40:13.0825 57768 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
03:40:13.0827 57768 viaagp - ok
03:40:13.0847 57768 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
03:40:13.0849 57768 ViaC7 - ok
03:40:13.0904 57768 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
03:40:13.0905 57768 viaide - ok
03:40:13.0935 57768 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
03:40:13.0937 57768 volmgr - ok
03:40:13.0994 57768 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
03:40:13.0999 57768 volmgrx - ok
03:40:14.0050 57768 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
03:40:14.0054 57768 volsnap - ok
03:40:14.0094 57768 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
03:40:14.0096 57768 vsmraid - ok
03:40:14.0145 57768 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
03:40:14.0147 57768 WacomPen - ok
03:40:14.0177 57768 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
03:40:14.0178 57768 Wanarp - ok
03:40:14.0193 57768 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
03:40:14.0194 57768 Wanarpv6 - ok
03:40:14.0245 57768 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
03:40:14.0247 57768 Wd - ok
03:40:14.0292 57768 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
03:40:14.0300 57768 Wdf01000 - ok
03:40:14.0385 57768 winachsf (72cc6a8ca7891031d6380db5025c773c) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
03:40:14.0393 57768 winachsf - ok
03:40:14.0471 57768 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
03:40:14.0472 57768 WmiAcpi - ok
03:40:14.0558 57768 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
03:40:14.0559 57768 WpdUsb - ok
03:40:14.0624 57768 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
03:40:14.0625 57768 ws2ifsl - ok
03:40:14.0697 57768 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
03:40:14.0700 57768 WUDFRd - ok
03:40:14.0736 57768 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys
03:40:14.0737 57768 XAudio - ok
03:40:14.0771 57768 MBR (0x1B8) (8913823ff508ccf109db74b636c301da) \Device\Harddisk0\DR0
03:40:14.0804 57768 \Device\Harddisk0\DR0 - ok
03:40:14.0837 57768 MBR (0x1B8) (a4a15d6782e6fe1dce41a606cb3affe3) \Device\Harddisk6\DR6
03:40:15.0660 57768 \Device\Harddisk6\DR6 - ok
03:40:15.0671 57768 Boot (0x1200) (70b8d41842d56e6187a65da7808ccf92) \Device\Harddisk0\DR0\Partition0
03:40:15.0672 57768 \Device\Harddisk0\DR0\Partition0 - ok
03:40:15.0675 57768 Boot (0x1200) (fdfcb2b6a11a3469c6bac483c852d6d8) \Device\Harddisk0\DR0\Partition1
03:40:15.0676 57768 \Device\Harddisk0\DR0\Partition1 - ok
03:40:15.0691 57768 Boot (0x1200) (2727c5861400f09ddea8135a113a3b92) \Device\Harddisk6\DR6\Partition0
03:40:15.0699 57768 \Device\Harddisk6\DR6\Partition0 - ok
03:40:15.0699 57768 ============================================================
03:40:15.0699 57768 Scan finished
03:40:15.0699 57768 ============================================================
03:40:15.0710 13288 Detected object count: 1
03:40:15.0710 13288 Actual detected object count: 1
03:41:00.0301 13288 f4f610d6 ( Rootkit.Win32.PMax.gen ) - User select action: Quarantine
03:41:06.0608 31636 ============================================================
03:41:06.0608 31636 Scan started
03:41:06.0608 31636 Mode: Manual;
03:41:06.0608 31636 ============================================================
03:41:06.0844 31636 56068045 (89fdba391985968401f51a5c577933cd) C:\Windows\system32\drivers\98560963.sys
03:41:06.0890 31636 62794571 (89fdba391985968401f51a5c577933cd) C:\Windows\system32\drivers\63478084.sys
03:41:06.0927 31636 a2acc - ok
03:41:06.0971 31636 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
03:41:06.0973 31636 ACPI - ok
03:41:07.0057 31636 adfs (6d7f09cd92a9fef3a8efce66231fdd79) C:\Windows\system32\drivers\adfs.sys
03:41:07.0058 31636 adfs - ok
03:41:07.0097 31636 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
03:41:07.0099 31636 adp94xx - ok
03:41:07.0121 31636 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
03:41:07.0123 31636 adpahci - ok
03:41:07.0191 31636 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
03:41:07.0192 31636 adpu160m - ok
03:41:07.0212 31636 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
03:41:07.0213 31636 adpu320 - ok
03:41:07.0277 31636 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
03:41:07.0279 31636 AFD - ok
03:41:07.0314 31636 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
03:41:07.0315 31636 agp440 - ok
03:41:07.0381 31636 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
03:41:07.0382 31636 aic78xx - ok
03:41:07.0399 31636 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
03:41:07.0400 31636 aliide - ok
03:41:07.0420 31636 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
03:41:07.0421 31636 amdagp - ok
03:41:07.0451 31636 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
03:41:07.0452 31636 amdide - ok
03:41:07.0464 31636 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
03:41:07.0465 31636 AmdK7 - ok
03:41:07.0546 31636 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
03:41:07.0547 31636 AmdK8 - ok
03:41:07.0592 31636 AnyDVD (133b7b6d6a3ec9e46fbe742ee1516c37) C:\Windows\system32\Drivers\AnyDVD.sys
03:41:07.0593 31636 AnyDVD - ok
03:41:07.0631 31636 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
03:41:07.0631 31636 arc - ok
03:41:07.0699 31636 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
03:41:07.0700 31636 arcsas - ok
03:41:07.0730 31636 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
03:41:07.0731 31636 AsyncMac - ok
03:41:07.0768 31636 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
03:41:07.0768 31636 atapi - ok
03:41:07.0800 31636 ATMhelpr (3ef1db7f168851914517d4ed36b57c04) C:\Windows\system32\drivers\ATMhelpr.sys
03:41:07.0801 31636 ATMhelpr - ok
03:41:07.0892 31636 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
03:41:07.0893 31636 avgntflt - ok
03:41:07.0908 31636 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
03:41:07.0909 31636 avipbb - ok
03:41:07.0931 31636 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
03:41:07.0932 31636 Beep - ok
03:41:07.0949 31636 blbdrive - ok
03:41:07.0991 31636 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
03:41:07.0992 31636 bowser - ok
03:41:08.0088 31636 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
03:41:08.0089 31636 BrFiltLo - ok
03:41:08.0101 31636 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
03:41:08.0102 31636 BrFiltUp - ok
03:41:08.0120 31636 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\Drivers\Brserid.sys
03:41:08.0120 31636 Brserid - ok
03:41:08.0135 31636 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
03:41:08.0136 31636 BrSerWdm - ok
03:41:08.0154 31636 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
03:41:08.0154 31636 BrUsbMdm - ok
03:41:08.0171 31636 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\Drivers\BrUsbSer.sys
03:41:08.0172 31636 BrUsbSer - ok
03:41:08.0250 31636 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
03:41:08.0251 31636 BTHMODEM - ok
03:41:08.0292 31636 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
03:41:08.0293 31636 cdfs - ok
03:41:08.0323 31636 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
03:41:08.0324 31636 cdrom - ok
03:41:08.0342 31636 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
03:41:08.0342 31636 circlass - ok
03:41:08.0419 31636 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
03:41:08.0421 31636 CLFS - ok
03:41:08.0460 31636 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
03:41:08.0461 31636 cmdide - ok
03:41:08.0472 31636 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
03:41:08.0473 31636 Compbatt - ok
03:41:08.0493 31636 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
03:41:08.0494 31636 crcdisk - ok
03:41:08.0556 31636 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
03:41:08.0557 31636 Crusoe - ok
03:41:08.0623 31636 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
03:41:08.0624 31636 DfsC - ok
03:41:08.0666 31636 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
03:41:08.0666 31636 disk - ok
03:41:08.0703 31636 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
03:41:08.0704 31636 Dot4 - ok
03:41:08.0765 31636 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
03:41:08.0766 31636 Dot4Print - ok
03:41:08.0785 31636 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
03:41:08.0785 31636 dot4usb - ok
03:41:08.0822 31636 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
03:41:08.0822 31636 drmkaud - ok
03:41:08.0869 31636 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
03:41:08.0873 31636 DXGKrnl - ok
03:41:08.0948 31636 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
03:41:08.0949 31636 E1G60 - ok
03:41:08.0991 31636 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
03:41:08.0992 31636 Ecache - ok
03:41:09.0062 31636 eeCtrl (e89cc1363cb7f5320ae3b41c1333d0c3) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
03:41:09.0065 31636 eeCtrl - ok
03:41:09.0152 31636 ElbyCDIO (d71233d7ccc2e64f8715a20428d5a33b) C:\Windows\system32\Drivers\ElbyCDIO.sys
03:41:09.0153 31636 ElbyCDIO - ok
03:41:09.0183 31636 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
03:41:09.0185 31636 elxstor - ok
03:41:09.0260 31636 EraserUtilRebootDrv (e7d1a496c71cd56bdd97f32c9141a03b) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
03:41:09.0261 31636 EraserUtilRebootDrv - ok
03:41:09.0362 31636 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
03:41:09.0364 31636 exfat - ok
03:41:09.0388 31636 f4f610d6 ( Rootkit.Win32.PMax.gen ) - infected
03:41:09.0388 31636 f4f610d6 - detected Rootkit.Win32.PMax.gen (0)
03:41:09.0436 31636 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
03:41:09.0437 31636 fastfat - ok
03:41:09.0466 31636 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
03:41:09.0466 31636 fdc - ok
03:41:09.0542 31636 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
03:41:09.0543 31636 FileInfo - ok
03:41:09.0571 31636 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
03:41:09.0572 31636 Filetrace - ok
03:41:09.0586 31636 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
03:41:09.0586 31636 flpydisk - ok
03:41:09.0624 31636 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
03:41:09.0625 31636 FltMgr - ok
03:41:09.0702 31636 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
03:41:09.0702 31636 Fs_Rec - ok
03:41:09.0733 31636 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
03:41:09.0733 31636 gagp30kx - ok
03:41:09.0766 31636 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
03:41:09.0767 31636 GEARAspiWDM - ok
03:41:09.0805 31636 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
03:41:09.0807 31636 HdAudAddService - ok
03:41:09.0882 31636 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
03:41:09.0883 31636 HDAudBus - ok
03:41:09.0912 31636 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
03:41:09.0913 31636 HidBth - ok
03:41:09.0932 31636 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
03:41:09.0933 31636 HidIr - ok
03:41:09.0968 31636 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
03:41:09.0969 31636 HidUsb - ok
03:41:10.0050 31636 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
03:41:10.0051 31636 HpCISSs - ok
03:41:10.0107 31636 HSF_DP (88749fbf8beb18c90e7d6626c8c1910b) C:\Windows\system32\DRIVERS\HSX_DP.sys
03:41:10.0113 31636 HSF_DP - ok
03:41:10.0132 31636 HSXHWBS2 (fe440536bd98af772130dc3a6fe1915f) C:\Windows\system32\DRIVERS\HSXHWBS2.sys
03:41:10.0134 31636 HSXHWBS2 - ok
03:41:10.0221 31636 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
03:41:10.0224 31636 HTTP - ok
03:41:10.0244 31636 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
03:41:10.0245 31636 i2omp - ok
03:41:10.0278 31636 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
03:41:10.0278 31636 i8042prt - ok
03:41:10.0352 31636 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
03:41:10.0354 31636 iaStorV - ok
03:41:10.0384 31636 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
03:41:10.0385 31636 iirsp - ok
03:41:10.0456 31636 IntcAzAudAddService (edc37b918e583a5a813c53d4f5588255) C:\Windows\system32\drivers\RTKVHDA.sys
03:41:10.0468 31636 IntcAzAudAddService - ok
03:41:10.0547 31636 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
03:41:10.0547 31636 intelide - ok
03:41:10.0566 31636 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
03:41:10.0567 31636 intelppm - ok
03:41:10.0606 31636 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
03:41:10.0608 31636 IpFilterDriver - ok
03:41:10.0675 31636 IpInIp - ok
03:41:10.0704 31636 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
03:41:10.0705 31636 IPMIDRV - ok
03:41:10.0743 31636 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
03:41:10.0744 31636 IPNAT - ok
03:41:10.0779 31636 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
03:41:10.0780 31636 IRENUM - ok
03:41:10.0863 31636 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
03:41:10.0863 31636 isapnp - ok
03:41:10.0896 31636 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
03:41:10.0898 31636 iScsiPrt - ok
03:41:10.0912 31636 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
03:41:10.0913 31636 iteatapi - ok
03:41:10.0937 31636 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
03:41:10.0938 31636 iteraid - ok
03:41:11.0025 31636 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
03:41:11.0026 31636 kbdclass - ok
03:41:11.0057 31636 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
03:41:11.0057 31636 kbdhid - ok
03:41:11.0105 31636 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
03:41:11.0109 31636 KSecDD - ok
03:41:11.0212 31636 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
03:41:11.0213 31636 lltdio - ok
03:41:11.0281 31636 LMIInfo (4f69faaabb7db0d43e327c0b6aab40fc) C:\Program Files\LogMeIn\x86\RaInfo.sys
03:41:11.0281 31636 LMIInfo - ok
03:41:11.0319 31636 lmimirr (4477689e2d8ae6b78ba34c9af4cc1ed1) C:\Windows\system32\DRIVERS\lmimirr.sys
03:41:11.0319 31636 lmimirr - ok
03:41:11.0383 31636 LMIRfsClientNP - ok
03:41:11.0401 31636 LMIRfsDriver (3faa563ddf853320f90259d455a01d79) C:\Windows\system32\drivers\LMIRfsDriver.sys
03:41:11.0402 31636 LMIRfsDriver - ok
03:41:11.0438 31636 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
03:41:11.0439 31636 LSI_FC - ok
03:41:11.0453 31636 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
03:41:11.0454 31636 LSI_SAS - ok
03:41:11.0468 31636 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
03:41:11.0469 31636 LSI_SCSI - ok
03:41:11.0521 31636 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
03:41:11.0522 31636 luafv - ok
03:41:11.0585 31636 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\Windows\system32\drivers\mbam.sys
03:41:11.0586 31636 MBAMProtector - ok
03:41:11.0623 31636 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
03:41:11.0624 31636 mdmxsdk - ok
03:41:11.0651 31636 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
03:41:11.0652 31636 megasas - ok
03:41:11.0715 31636 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
03:41:11.0716 31636 Modem - ok
03:41:11.0786 31636 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
03:41:11.0786 31636 monitor - ok
03:41:11.0803 31636 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
03:41:11.0804 31636 mouclass - ok
03:41:11.0870 31636 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
03:41:11.0871 31636 mouhid - ok
03:41:11.0931 31636 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
03:41:11.0932 31636 MountMgr - ok
03:41:11.0987 31636 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
03:41:11.0987 31636 mpio - ok
03:41:12.0022 31636 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
03:41:12.0023 31636 mpsdrv - ok
03:41:12.0046 31636 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
03:41:12.0047 31636 Mraid35x - ok
03:41:12.0102 31636 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
03:41:12.0104 31636 MRxDAV - ok
03:41:12.0195 31636 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
03:41:12.0196 31636 mrxsmb - ok
03:41:12.0248 31636 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
03:41:12.0250 31636 mrxsmb10 - ok
03:41:12.0284 31636 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
03:41:12.0285 31636 mrxsmb20 - ok
03:41:12.0317 31636 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
03:41:12.0317 31636 msahci - ok
03:41:12.0368 31636 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
03:41:12.0369 31636 msdsm - ok
03:41:12.0417 31636 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
03:41:12.0418 31636 Msfs - ok
03:41:12.0471 31636 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
03:41:12.0472 31636 msisadrv - ok
03:41:12.0506 31636 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
03:41:12.0507 31636 MSKSSRV - ok
03:41:12.0560 31636 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
03:41:12.0561 31636 MSPCLOCK - ok
03:41:12.0570 31636 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
03:41:12.0571 31636 MSPQM - ok
03:41:12.0614 31636 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
03:41:12.0615 31636 MsRPC - ok
03:41:12.0669 31636 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
03:41:12.0670 31636 mssmbios - ok
03:41:12.0730 31636 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
03:41:12.0731 31636 MSTEE - ok
03:41:12.0764 31636 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
03:41:12.0765 31636 Mup - ok
03:41:12.0849 31636 MXOPSWD (216ac775320f64de28cfeb7c179c4ff9) C:\Windows\system32\DRIVERS\mxopswd.sys
03:41:12.0850 31636 MXOPSWD - ok
03:41:12.0919 31636 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
03:41:12.0921 31636 NativeWifiP - ok
03:41:12.0968 31636 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
03:41:12.0972 31636 NDIS - ok
03:41:13.0056 31636 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
03:41:13.0057 31636 NdisTapi - ok
03:41:13.0089 31636 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
03:41:13.0090 31636 Ndisuio - ok
03:41:13.0130 31636 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
03:41:13.0131 31636 NdisWan - ok
03:41:13.0168 31636 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
03:41:13.0169 31636 NDProxy - ok
03:41:13.0258 31636 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
03:41:13.0259 31636 NetBIOS - ok
03:41:13.0301 31636 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
03:41:13.0303 31636 netbt - ok
03:41:13.0336 31636 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
03:41:13.0337 31636 nfrd960 - ok
03:41:13.0378 31636 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
03:41:13.0379 31636 Npfs - ok
03:41:13.0468 31636 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
03:41:13.0468 31636 nsiproxy - ok
03:41:13.0527 31636 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
03:41:13.0533 31636 Ntfs - ok
03:41:13.0606 31636 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
03:41:13.0606 31636 ntrigdigi - ok
03:41:13.0641 31636 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
03:41:13.0642 31636 Null - ok
03:41:13.0691 31636 NVENETFD (74c825c573aa6e115590d94e7bf86901) C:\Windows\system32\DRIVERS\nvmfdx32.sys
03:41:13.0697 31636 NVENETFD - ok
03:41:13.0932 31636 nvlddmkm (fbba09782f2fac5a57619df378ba9372) C:\Windows\system32\DRIVERS\nvlddmkm.sys
03:41:13.0971 31636 nvlddmkm - ok
03:41:14.0051 31636 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
03:41:14.0052 31636 nvraid - ok
03:41:14.0066 31636 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
03:41:14.0067 31636 nvstor - ok
03:41:14.0102 31636 nvstor32 (a1ce1a6fd74c046f029448fcfa5e386d) C:\Windows\system32\drivers\nvstor32.sys
03:41:14.0103 31636 nvstor32 - ok
03:41:14.0122 31636 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
03:41:14.0123 31636 nv_agp - ok
03:41:14.0183 31636 NwlnkFlt - ok
03:41:14.0193 31636 NwlnkFwd - ok
03:41:14.0226 31636 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
03:41:14.0227 31636 ohci1394 - ok
03:41:14.0262 31636 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
03:41:14.0263 31636 Parport - ok
03:41:14.0294 31636 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
03:41:14.0295 31636 partmgr - ok
03:41:14.0351 31636 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
03:41:14.0351 31636 Parvdm - ok
03:41:14.0395 31636 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
03:41:14.0396 31636 pci - ok
03:41:14.0415 31636 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
03:41:14.0416 31636 pciide - ok
03:41:14.0454 31636 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
03:41:14.0455 31636 pcmcia - ok
03:41:14.0537 31636 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
03:41:14.0543 31636 PEAUTH - ok
03:41:14.0626 31636 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
03:41:14.0627 31636 PptpMiniport - ok
03:41:14.0654 31636 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
03:41:14.0655 31636 Processor - ok
03:41:14.0725 31636 Ps2 (390c204ced3785609ab24e9c52054a84) C:\Windows\system32\DRIVERS\PS2.sys
03:41:14.0725 31636 Ps2 - ok
03:41:14.0758 31636 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
03:41:14.0759 31636 PSched - ok
03:41:14.0798 31636 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
03:41:14.0799 31636 PxHelp20 - ok
03:41:14.0850 31636 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
03:41:14.0856 31636 ql2300 - ok
03:41:14.0905 31636 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
03:41:14.0906 31636 ql40xx - ok
03:41:14.0939 31636 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
03:41:14.0940 31636 QWAVEdrv - ok
03:41:14.0970 31636 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
03:41:14.0972 31636 RasAcd - ok
03:41:15.0013 31636 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
03:41:15.0014 31636 Rasl2tp - ok
03:41:15.0065 31636 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
03:41:15.0066 31636 RasPppoe - ok
03:41:15.0102 31636 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
03:41:15.0103 31636 RasSstp - ok
03:41:15.0121 31636 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
03:41:15.0123 31636 rdbss - ok
03:41:15.0159 31636 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
03:41:15.0160 31636 RDPCDD - ok
03:41:15.0230 31636 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
03:41:15.0232 31636 rdpdr - ok
03:41:15.0253 31636 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
03:41:15.0254 31636 RDPENCDD - ok
03:41:15.0298 31636 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
03:41:15.0299 31636 RDPWD - ok
03:41:15.0369 31636 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
03:41:15.0370 31636 rspndr - ok
03:41:15.0431 31636 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
03:41:15.0432 31636 sbp2port - ok
03:41:15.0472 31636 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
03:41:15.0473 31636 secdrv - ok
03:41:15.0497 31636 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
03:41:15.0498 31636 Serenum - ok
03:41:15.0516 31636 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
03:41:15.0517 31636 Serial - ok
03:41:15.0555 31636 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
03:41:15.0556 31636 sermouse - ok
03:41:15.0621 31636 sffdisk (51cf56aa8bcc241f134b420b8f850406) C:\Windows\system32\drivers\sffdisk.sys
03:41:15.0622 31636 sffdisk - ok
03:41:15.0642 31636 sffp_mmc (96ded8b20c734ac41641ce275250e55d) C:\Windows\system32\drivers\sffp_mmc.sys
03:41:15.0642 31636 sffp_mmc - ok
03:41:15.0657 31636 sffp_sd (8b08cab1267b2c377883fc9e56981f90) C:\Windows\system32\drivers\sffp_sd.sys
03:41:15.0658 31636 sffp_sd - ok
03:41:15.0675 31636 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
03:41:15.0675 31636 sfloppy - ok
03:41:15.0736 31636 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
03:41:15.0737 31636 sisagp - ok
03:41:15.0762 31636 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
03:41:15.0763 31636 SiSRaid2 - ok
03:41:15.0779 31636 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
03:41:15.0780 31636 SiSRaid4 - ok
03:41:15.0817 31636 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
03:41:15.0818 31636 Smb - ok
03:41:16.0098 31636 SNPSTD3 (11bb0e11d42cc3a43d741d9b30839be1) C:\Windows\system32\DRIVERS\snpstd3.sys
03:41:16.0156 31636 SNPSTD3 - ok
03:41:16.0234 31636 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
03:41:16.0235 31636 spldr - ok
03:41:16.0307 31636 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
03:41:16.0309 31636 srv - ok
03:41:16.0364 31636 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
03:41:16.0366 31636 srv2 - ok
03:41:16.0386 31636 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
03:41:16.0387 31636 srvnet - ok
03:41:16.0472 31636 sscdbus (d5dffeaa1e15d4effabb9d9a3068ac5b) C:\Windows\system32\DRIVERS\sscdbus.sys
03:41:16.0472 31636 sscdbus - ok
03:41:16.0503 31636 sscdmdfl (8a1be0c347814f482f493aea619d57f6) C:\Windows\system32\DRIVERS\sscdmdfl.sys
03:41:16.0504 31636 sscdmdfl - ok
03:41:16.0541 31636 sscdmdm (5ab0b1987f682a59b15b78f84c6ad7d0) C:\Windows\system32\DRIVERS\sscdmdm.sys
03:41:16.0542 31636 sscdmdm - ok
03:41:16.0577 31636 sscdserd (751e66eb32efa80633b80f5d7ff0a1d8) C:\Windows\system32\DRIVERS\sscdserd.sys
03:41:16.0579 31636 sscdserd - ok
03:41:16.0665 31636 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
03:41:16.0666 31636 ssmdrv - ok
03:41:16.0711 31636 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
03:41:16.0712 31636 StillCam - ok
03:41:16.0742 31636 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
03:41:16.0743 31636 swenum - ok
03:41:16.0782 31636 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
03:41:16.0783 31636 Symc8xx - ok
03:41:16.0864 31636 SYMDNS (1d8fb1e5d6859d38e3ebca5febc6839f) C:\Windows\System32\Drivers\SYMDNS.SYS
03:41:16.0865 31636 SYMDNS - ok
03:41:16.0895 31636 SymEvent (9e4188476848b2ef86f9c44d5164e724) C:\Windows\system32\Drivers\SYMEVENT.SYS
03:41:16.0897 31636 SymEvent - ok
03:41:16.0907 31636 SYMFW (91fcddf2cbaf898126ae7dfa5ce570ed) C:\Windows\System32\Drivers\SYMFW.SYS
03:41:16.0909 31636 SYMFW - ok
03:41:16.0926 31636 SYMIDS (9584e278787ad65e82eec5694f77cb54) C:\Windows\System32\Drivers\SYMIDS.SYS
03:41:16.0926 31636 SYMIDS - ok
03:41:17.0013 31636 SYMNDISV (60350bc7919e6e45dd8130ad55665f48) C:\Windows\System32\Drivers\SYMNDISV.SYS
03:41:17.0014 31636 SYMNDISV - ok
03:41:17.0048 31636 SYMREDRV (9181892e5af5df8d2ac3d9d2cea48afd) C:\Windows\System32\Drivers\SYMREDRV.SYS
03:41:17.0049 31636 SYMREDRV - ok
03:41:17.0069 31636 SYMTDI (d539f317e6caaa4e08911a84c2180938) C:\Windows\System32\Drivers\SYMTDI.SYS
03:41:17.0071 31636 SYMTDI - ok
03:41:17.0100 31636 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
03:41:17.0100 31636 Sym_hi - ok
03:41:17.0169 31636 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
03:41:17.0170 31636 Sym_u3 - ok
03:41:17.0260 31636 Tcpip (6216a954ed7045b62880a92d6c9b9fc7) C:\Windows\system32\drivers\tcpip.sys
03:41:17.0265 31636 Tcpip - ok
03:41:17.0285 31636 Tcpip6 (6216a954ed7045b62880a92d6c9b9fc7) C:\Windows\system32\DRIVERS\tcpip.sys
03:41:17.0291 31636 Tcpip6 - ok
03:41:17.0324 31636 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
03:41:17.0325 31636 tcpipreg - ok
03:41:17.0406 31636 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
03:41:17.0407 31636 TDPIPE - ok
03:41:17.0436 31636 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
03:41:17.0437 31636 TDTCP - ok
03:41:17.0473 31636 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
03:41:17.0474 31636 tdx - ok
03:41:17.0502 31636 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
03:41:17.0502 31636 TermDD - ok
03:41:17.0541 31636 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
03:41:17.0542 31636 tssecsrv - ok
03:41:17.0628 31636 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
03:41:17.0629 31636 tunmp - ok
03:41:17.0666 31636 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
03:41:17.0667 31636 tunnel - ok
03:41:17.0701 31636 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
03:41:17.0701 31636 uagp35 - ok
03:41:17.0782 31636 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
03:41:17.0784 31636 udfs - ok
03:41:17.0813 31636 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
03:41:17.0814 31636 uliagpkx - ok
03:41:17.0836 31636 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
03:41:17.0838 31636 uliahci - ok
03:41:17.0866 31636 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
03:41:17.0867 31636 UlSata - ok
03:41:17.0939 31636 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
03:41:17.0940 31636 ulsata2 - ok
03:41:17.0966 31636 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
03:41:17.0967 31636 umbus - ok
03:41:18.0013 31636 USBAAPL (1df89c499bf45d878b87ebd4421d462d) C:\Windows\system32\Drivers\usbaapl.sys
03:41:18.0013 31636 USBAAPL - ok
03:41:18.0061 31636 usbaudio (292a25bb75a568ae2c67169ba2c6365a) C:\Windows\system32\drivers\usbaudio.sys
03:41:18.0061 31636 usbaudio - ok
03:41:18.0123 31636 usbbus (5353218b3265e3b8190335059f697a11) C:\Windows\system32\DRIVERS\lgusbbus.sys
03:41:18.0123 31636 usbbus - ok
03:41:18.0157 31636 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
03:41:18.0158 31636 usbccgp - ok
03:41:18.0188 31636 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
03:41:18.0189 31636 usbcir - ok
03:41:18.0224 31636 UsbDiag (7dd3eefc62a1ef44e5f940fa651ed9ed) C:\Windows\system32\DRIVERS\lgusbdiag.sys
03:41:18.0224 31636 UsbDiag - ok
03:41:18.0270 31636 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
03:41:18.0270 31636 usbehci - ok
03:41:18.0320 31636 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
03:41:18.0321 31636 usbhub - ok
03:41:18.0374 31636 USBModem (083031a78822eccbd7510bccd3e20d4c) C:\Windows\system32\DRIVERS\lgusbmodem.sys
03:41:18.0374 31636 USBModem - ok
03:41:18.0401 31636 usbohci (7bdb7b0e7d45ac0402d78b90789ef47c) C:\Windows\system32\DRIVERS\usbohci.sys
03:41:18.0402 31636 usbohci - ok
03:41:18.0441 31636 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
03:41:18.0442 31636 usbprint - ok
03:41:18.0480 31636 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
03:41:18.0481 31636 usbscan - ok
03:41:18.0537 31636 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
03:41:18.0538 31636 USBSTOR - ok
03:41:18.0584 31636 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
03:41:18.0585 31636 usbuhci - ok
03:41:18.0607 31636 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
03:41:18.0608 31636 vga - ok
03:41:18.0656 31636 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
03:41:18.0657 31636 VgaSave - ok
03:41:18.0676 31636 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
03:41:18.0676 31636 viaagp - ok
03:41:18.0723 31636 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
03:41:18.0724 31636 ViaC7 - ok
03:41:18.0754 31636 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
03:41:18.0755 31636 viaide - ok
03:41:18.0811 31636 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
03:41:18.0812 31636 volmgr - ok
03:41:18.0853 31636 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
03:41:18.0855 31636 volmgrx - ok
03:41:18.0900 31636 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
03:41:18.0901 31636 volsnap - ok
03:41:18.0952 31636 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
03:41:18.0953 31636 vsmraid - ok
03:41:19.0004 31636 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
03:41:19.0005 31636 WacomPen - ok
03:41:19.0052 31636 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
03:41:19.0053 31636 Wanarp - ok
03:41:19.0058 31636 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
03:41:19.0059 31636 Wanarpv6 - ok
03:41:19.0104 31636 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
03:41:19.0105 31636 Wd - ok
03:41:19.0151 31636 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
03:41:19.0155 31636 Wdf01000 - ok
03:41:19.0252 31636 winachsf (72cc6a8ca7891031d6380db5025c773c) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
03:41:19.0256 31636 winachsf - ok
03:41:19.0313 31636 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
03:41:19.0314 31636 WmiAcpi - ok
03:41:19.0367 31636 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
03:41:19.0368 31636 WpdUsb - ok
03:41:19.0441 31636 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
03:41:19.0442 31636 ws2ifsl - ok
03:41:19.0489 31636 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
03:41:19.0491 31636 WUDFRd - ok
03:41:19.0528 31636 XAudio (dab33cfa9dd24251aaa389ff36b64d4b) C:\Windows\system32\DRIVERS\xaudio.sys
03:41:19.0528 31636 XAudio - ok
03:41:19.0547 31636 MBR (0x1B8) (8913823ff508ccf109db74b636c301da) \Device\Harddisk0\DR0
03:41:19.0579 31636 \Device\Harddisk0\DR0 - ok
03:41:19.0619 31636 MBR (0x1B8) (a4a15d6782e6fe1dce41a606cb3affe3) \Device\Harddisk6\DR6
03:41:20.0440 31636 \Device\Harddisk6\DR6 - ok
03:41:20.0455 31636 Boot (0x1200) (70b8d41842d56e6187a65da7808ccf92) \Device\Harddisk0\DR0\Partition0
03:41:20.0455 31636 \Device\Harddisk0\DR0\Partition0 - ok
03:41:20.0460 31636 Boot (0x1200) (fdfcb2b6a11a3469c6bac483c852d6d8) \Device\Harddisk0\DR0\Partition1
03:41:20.0460 31636 \Device\Harddisk0\DR0\Partition1 - ok
03:41:20.0478 31636 Boot (0x1200) (2727c5861400f09ddea8135a113a3b92) \Device\Harddisk6\DR6\Partition0
03:41:20.0486 31636 \Device\Harddisk6\DR6\Partition0 - ok
03:41:20.0487 31636 ============================================================
03:41:20.0487 31636 Scan finished
03:41:20.0487 31636 ============================================================
03:41:20.0497 8016 Detected object count: 1
03:41:20.0497 8016 Actual detected object count: 1
03:41:42.0213 8016 f4f610d6 ( Rootkit.Win32.PMax.gen ) - User select action: Quarantine
03:42:03.0240 16996 Deinitialize success
ComboFix 11-10-19.06 - joylynn 10/27/2011 4:16.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6001.1.1252.1.1033.18.3454.2354 [GMT -7:00]
Running from: c:\users\joylynn\Desktop\ComboFix2.exe
AV: AntiVir Desktop *Disabled/Outdated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: AntiVir Desktop *Disabled/Outdated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
- REDUCED FUNCTIONALITY MODE -
.
ADS - Windows: deleted 24 bytes in 1 streams. .
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\Tarma Installer
c:\programdata\Tarma Installer\{DA00D550-BB91-4A26-AAE5-9172D626CAAE}\_Setup.dll
c:\programdata\Tarma Installer\{DA00D550-BB91-4A26-AAE5-9172D626CAAE}\_Setupx.dll
c:\programdata\Tarma Installer\{DA00D550-BB91-4A26-AAE5-9172D626CAAE}\Setup.dat
c:\programdata\Tarma Installer\{DA00D550-BB91-4A26-AAE5-9172D626CAAE}\Setup.exe
c:\programdata\Tarma Installer\{DA00D550-BB91-4A26-AAE5-9172D626CAAE}\Setup.ico
c:\windows\expl.dat
c:\windows\system32\drivers\etc\hosts.txt
c:\windows\system32\jucheck.exe
c:\windows\system32\jusched.exe
c:\windows\system32\svch.dat
c:\windows\system32\winl.dat
M:\Autorun.inf
.
c:\windows\explorer.exe . . . is infected!! . . .Failed to restore. Attempting to replace on reboot
.
Infected copy of c:\windows\System32\svchost.exe was found and disinfected
Restored copy from - c:\windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
.
c:\windows\System32\winlogon.exe . . . is infected!! . . .Failed to restore. Attempting to replace on reboot
.
Infected copy of c:\windows\explorer.exe was found and disinfected
Restored copy from - c:\windows\SoftwareDistribution\Download\cd2b15b1a90e884578188440a1660b12\x86_microsoft-windows-explorer_31bf3856ad364e35_6.0.6002.18005_none_53a0201e76de3a0b\explorer.exe
Infected copy of c:\windows\System32\winlogon.exe was found and disinfected
Restored copy from - c:\windows\SoftwareDistribution\Download\cd2b15b1a90e884578188440a1660b12\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6002.18005_none_71ae7a22d2134741\winlogon.exe
Infected copy of c:\windows\System32\svchost.exe was found and disinfected
Restored copy from - c:\windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.0.6001.18000_none_b5bb59a1054dbde5\svchost.exe
.
((((((((((((((((((((((((( Files Created from 2011-09-27 to 2011-10-27 )))))))))))))))))))))))))))))))
.
.
2011-10-27 11:19 . 2011-10-27 11:25 -------- d-----w- c:\users\joylynn\AppData\Local\temp
2011-10-27 11:19 . 2011-10-27 11:19 -------- d-----w- c:\windows\system32\config\systemprofile\AppData\Local\temp
2011-10-27 11:19 . 2011-10-27 11:19 -------- d-----w- c:\users\LogMeInRemoteUser\AppData\Local\temp
2011-10-27 11:19 . 2011-10-27 11:19 -------- d-----w- c:\users\Default\AppData\Local\temp
2011-10-27 11:19 . 2011-10-27 11:19 -------- d-----w- c:\users\Administrator\AppData\Local\temp
2011-10-17 04:00 . 2011-10-17 04:00 -------- d-----w- c:\users\Administrator\AppData\Roaming\Malwarebytes
2011-10-17 03:32 . 2011-10-17 03:32 388096 ----a-r- c:\users\joylynn\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2011-10-17 02:17 . 2011-10-20 09:41 -------- d-----w- C:\MGADiagToolOutput
2011-10-17 02:15 . 2011-10-17 02:15 -------- d-----w- c:\programdata\Office Genuine Advantage
2011-10-17 01:54 . 2011-10-17 01:54 -------- d-----w- c:\users\joylynn\AppData\Roaming\Avira
2011-10-03 13:28 . 2011-09-01 00:00 22216 ----a-w- c:\windows\system32\drivers\mbam.sys
2011-10-03 13:25 . 2011-07-21 19:15 138192 ----a-w- c:\windows\system32\drivers\avipbb.sys
2011-10-03 13:25 . 2011-07-21 19:15 66616 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2011-10-03 13:25 . 2011-10-03 13:25 -------- d-----w- c:\programdata\Avira
2011-10-03 13:25 . 2011-10-03 13:25 -------- d-----w- c:\program files\Avira
2011-10-03 12:33 . 2011-10-03 12:33 -------- d-----w- c:\program files\Trend Micro
2011-10-03 07:05 . 2011-10-03 07:05 -------- d-----w- c:\users\joylynn\AppData\Roaming\yahoo!
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2011-10-27 11:21 . 2011-10-27 11:03 56200 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{771DCE72-6D46-4F30-95C4-07859C5A9F36}\offreg.dll
2011-10-03 12:39 . 2008-06-12 20:51 54784 ----a-w- c:\windows\system32\drivers\i8042prt.sys
2011-09-26 09:30 . 2011-09-26 09:30 94208 ----a-w- c:\programdata\DisplayTrayManager.dll
2011-09-12 23:14 . 2011-09-23 08:51 7269712 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{771DCE72-6D46-4F30-95C4-07859C5A9F36}\mpengine.dll
2011-08-30 22:11 . 2011-06-16 05:14 273408 ----a-w- c:\windows\system32\drivers\afd.sys
2011-09-07 20:28 . 2011-06-03 10:29 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2008-01-19 1233920]
"AnyDVD"="c:\program files\SlySoft\AnyDVD\AnyDVDtray.exe" [2011-06-17 5140088]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]
"cdloader"="c:\users\joylynn\AppData\Roaming\mjusbsp\cdloader2.exe" [2011-05-16 50592]
"VeohPlugin"="c:\program files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe" [2008-12-16 3528440]
"Messenger (Yahoo!)"="c:\progra~1\Yahoo!\MESSEN~1\YahooMessenger.exe" [2010-06-01 5252408]
"WMPNSCFG"="c:\program files\Windows Media Player\WMPNSCFG.exe" [2008-01-19 202240]
"AOL OCP Update"="c:\users\joylynn\AppData\Local\AOL OCP\AOLUpdate\AOLupdt32.exe" [2011-09-26 87040]
"DisplayTrayManager"="c:\programdata\DisplayTrayManager.dll" [2011-09-26 94208]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"hpsysdrv"="c:\hp\support\hpsysdrv.exe" [2007-04-18 65536]
"OsdMaestro"="c:\program files\Hewlett-Packard\On-Screen OSD Indicator\OSD.exe" [2007-02-15 118784]
"RtHDVCpl"="RtHDVCpl.exe" [2008-01-15 4874240]
"HP Health Check Scheduler"="c:\program files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe" [2007-05-24 71176]
"nmapp"="c:\program files\Pure Networks\Network Magic\nmapp.exe" [2006-06-24 1029712]
"LogMeIn GUI"="c:\program files\LogMeIn\x86\LogMeInSystray.exe" [2007-08-03 63048]
"AGEIA PhysX SysTray"="c:\program files\AGEIA Technologies\TrayIcon.exe" [2006-03-20 331776]
"AdobeCS4ServiceManager"="c:\program files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" [2008-08-14 611712]
"Adobe Acrobat Speed Launcher"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe" [2008-06-12 37232]
"Acrobat Assistant 8.0"="c:\program files\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe" [2008-06-12 640376]
"hpbdfawep"="c:\program files\HP\Dfawep\bin\hpbdfawep.exe" [2007-04-25 954368]
"PrnStatusMX"="c:\program files\Hewlett-Packard\PrnStatusMX\PrnStatusMX.exe" [2007-07-14 1077248]
"hpqSRMon"="c:\program files\HP\Digital Imaging\bin\hpqSRMon.exe" [2008-08-20 150016]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-09 54840]
"mxomssmenu"="c:\program files\Maxtor\OneTouch Status\maxmenumgr.exe" [2007-09-06 169264]
"QuickTime Task"="c:\program files\QuickTime\QTTask.exe" [2010-11-30 421888]
"SunJavaUpdateSched"="c:\program files\Common Files\Java\Java Update\jusched.exe" [2010-05-14 248552]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 10.0\Reader\Reader_sl.exe" [2010-11-10 35736]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2010-11-10 932288]
"iTunesHelper"="c:\program files\iTunes\iTunesHelper.exe" [2011-06-08 421160]
"DivXUpdate"="c:\program files\DivX\DivX Update\DivXUpdate.exe" [2011-07-28 1259376]
"avgnt"="c:\program files\Avira\AntiVir Desktop\avgnt.exe" [2011-04-21 281768]
"Malwarebytes' Anti-Malware"="c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe" [2011-09-01 449608]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
"Launcher"="c:\windows\SMINST\launcher.exe" [2007-04-03 44168]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Adobe Gamma Loader.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 110592]
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 110592]
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2009-5-21 275768]
Microsoft Office.lnk - c:\program files\Microsoft Office\Office\OSA9.EXE [1999-3-21 65588]
Snapfish Media Detector.lnk - c:\program files\Snapfish Picture Mover\SnapfishMediaDetector.exe [2007-5-7 1273856]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux4"=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ccApp]
2007-01-09 22:59 115816 ----a-w- c:\program files\Common Files\Symantec Shared\ccApp.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DisplayTrayManager]
2011-09-26 09:30 94208 ----a-w- c:\programdata\DisplayTrayManager.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\KBD]
2006-12-08 16:16 65536 ----a-w- c:\hp\KBD\KbdStub.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LightScribe Control Panel]
2009-03-17 20:17 2387968 ----a-w- c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
2008-05-22 21:49 13539872 ----a-w- c:\windows\System32\nvcpl.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
2008-05-22 21:49 92704 ----a-w- c:\windows\System32\nvmctray.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\snpstd3]
2006-09-19 17:07 827392 ----a-w- c:\windows\vsnpstd3.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateReg]
2007-04-07 09:56 54936 ----a-w- c:\windows\System32\jureg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Symantec PIF AlertEng]
2008-01-30 00:38 583048 ----a-w- c:\program files\Common Files\Symantec Shared\PIF\{B8E1DD85-8582-4c61-B58F-2F227FCA9A08}\PIFSvc.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]
"DisableMonitoring"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]
"DisableMonitoring"=dword:00000001
.
R2 a2AntiMalware;Emsisoft Anti-Malware 5.1 - Service;c:\program files\Emsisoft Anti-Malware\a2service.exe [x]
R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
R2 gupdate;Google Update Service (gupdate);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 135664]
R2 MBAMService;MBAMService;c:\program files\Malwarebytes' Anti-Malware\mbamservice.exe [2011-09-01 366152]
R3 a2acc;a2acc;c:\program files\EMSISOFT ANTI-MALWARE\a2accx86.sys [x]
R3 Adobe Version Cue CS4;Adobe Version Cue CS4;c:\program files\Common Files\Adobe\Adobe Version Cue CS4\Server\bin\VersionCueCS4.exe [2008-08-15 284016]
R3 gupdatem;Google Update Service (gupdatem);c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 135664]
R3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-03-18 753504]
S1 ATMhelpr;ATMhelpr; [x]
S2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\Avira\AntiVir Desktop\sched.exe [2011-04-21 136360]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files\LogMeIn\x86\LMIGuardianSvc.exe [2011-07-18 374152]
S2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files\LogMeIn\x86\RaInfo.sys [2008-02-28 12856]
S3 EraserUtilRebootDrv;EraserUtilRebootDrv;c:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2008-01-18 109616]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2011-09-01 22216]
S3 SYMNDISV;SYMNDISV;c:\windows\System32\Drivers\SYMNDISV.SYS [2007-10-31 37936]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
HPService REG_MULTI_SZ HPSLPSVC
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\F]
\shell\AutoRun\command - F:\autorun.exe
\shell\phone\command - F:\autorun.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{80ceb365-4de2-11dd-88bb-001d609c520a}]
\shell\AutoRun\command - K:\autorun.exe
\shell\phone\command - K:\autorun.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{e52ebc9d-4037-11de-a988-001d609c520a}]
\shell\AutoRun\command - K:\autorun.exe
\shell\phone\command - K:\autorun.exe
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f26fe9d4-cb34-11dc-bf67-001d609c520a}]
\shell\AutoRun\command - L:\LaunchU3.exe -a
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2\{f26fe9d5-cb34-11dc-bf67-001d609c520a}]
\shell\AutoRun\command - M:\d.com
\shell\explore\Command - M:\d.com
\shell\open\Command - M:\d.com
.
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{A509B1FF-37FF-4bFF-8CFF-4F3A747040FF}]
2009-03-08 11:32 128512 ----a-w- c:\windows\System32\advpack.dll
.
Contents of the 'Scheduled Tasks' folder
.
2011-10-27 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 16:56]
.
2011-10-27 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2010-01-06 16:56]
.
2011-10-27 c:\windows\Tasks\HP WEP.job
- c:\program files\HP\Dfawep\bin\hpbdfawep.exe [2007-04-25 21:28]
.
2011-10-27 c:\windows\Tasks\HPCeeScheduleForjoylynn.job
- c:\program files\hewlett-packard\sdp\ceement\HPCEE.exe [2007-09-27 23:55]
.
2011-10-27 c:\windows\Tasks\RegCure Program Check.job
- c:\program files\RegCure\RegCure.exe [2010-05-19 23:20]
.
2011-10-27 c:\windows\Tasks\RegCure.job
- c:\program files\RegCure\RegCure.exe [2010-05-19 23:20]
.
2011-10-27 c:\windows\Tasks\User_Feed_Synchronization-{A5DC2E62-20D3-4BB2-A30C-C5C329E38109}.job
- c:\windows\system32\msfeedssync.exe [2011-06-16 04:32]
.
.
------- Supplementary Scan -------
.
uStart Page =
hxxp://www.yahoo.com/uInternet Settings,ProxyOverride = *.local
IE: Append Link Target to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html
IE: Append to Existing PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html
IE: Convert Link Target to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html
IE: Convert to Adobe PDF - c:\program files\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html
Trusted Zone: secureserver.net\email
TCP: DhcpNameServer = 192.168.0.1
DPF: Web-Based Email Tools -
hxxp://email.secureserver.net/Download.CABFF - ProfilePath - c:\users\joylynn\AppData\Roaming\Mozilla\Firefox\Profiles\modvzzop.default\
FF - prefs.js: browser.search.defaulturl -
hxxp://slirsredirect.search.aol.com/sli ... ie7&query=FF - prefs.js: browser.search.selectedEngine - Bing
FF - prefs.js: browser.startup.homepage -
www.yahoo.comFF - prefs.js: keyword.URL -
hxxp://www.bing.com/search?pc=Z128&form ... 0110829&q=.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{81017EA9-9AA8-4A6A-9734-7AF40E7D593F} - (no file)
SafeBoot-33470211.sys
SafeBoot-56068045.sys
SafeBoot-62794571.sys
SafeBoot-66797100.sys
SafeBoot-67733131.sys
MSConfigStartUp--1270128792 - c:\users\joylynn\AppData\Local\Temp\\jucheck.exe
MSConfigStartUp-Mregaduxox - c:\users\joylynn\AppData\Local\insid32.dll
MSConfigStartUp-StartNowToolbarHelper - c:\program files\StartNow Toolbar\ToolbarHelper.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer,
http://www.gmer.netRootkit scan 2011-10-27 04:25
Windows 6.0.6001 Service Pack 1 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
.
c:\windows\$NtUninstallKB7135$:SummaryInformation 0 bytes hidden from API
.
scan completed successfully
hidden files: 1
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
------------------------ Other Running Processes ------------------------
.
c:\windows\system32\nvvsvc.exe
c:\windows\system32\rundll32.exe
c:\program files\Common Files\Symantec Shared\ccSvcHst.exe
c:\program files\Avira\AntiVir Desktop\avguard.exe
c:\program files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
c:\program files\Symantec\LiveUpdate\ALUSchedulerSvc.exe
c:\program files\Avira\AntiVir Desktop\avshadow.exe
c:\program files\Bonjour\mDNSResponder.exe
c:\program files\Common Files\LightScribe\LSSrvc.exe
c:\program files\LogMeIn\x86\RaMaint.exe
c:\program files\LogMeIn\x86\LogMeIn.exe
c:\windows\system32\DRIVERS\xaudio.exe
c:\program files\Pure Networks\Network Magic\nmsrvc.exe
c:\windows\system32\WUDFHost.exe
c:\windows\servicing\TrustedInstaller.exe
c:\windows\RtHDVCpl.exe
c:\program files\Hewlett-Packard\HP Health Check\hphc_service.exe
c:\windows\system32\wbem\unsecapp.exe
c:\program files\Windows Media Player\wmpnetwk.exe
c:\windows\System32\rundll32.exe
c:\windows\ehome\ehmsas.exe
c:\windows\System32\rundll32.exe
c:\program files\iPod\bin\iPodService.exe
c:\program files\HP\Digital Imaging\bin\hpqSTE08.exe
c:\program files\HP\Digital Imaging\bin\hpqbam08.exe
c:\program files\Yahoo!\Messenger\ymsgr_tray.exe
c:\windows\system32\consent.exe
c:\windows\System32\schtasks.exe
c:\windows\System32\wsqmcons.exe
.
**************************************************************************
.
Completion time: 2011-10-27 04:31:28 - machine was rebooted
ComboFix-quarantined-files.txt 2011-10-27 11:31
.
Pre-Run: 56,384,294,912 bytes free
Post-Run: 56,366,780,416 bytes free
.
- - End Of File - - F49EAD3EBFDA6C02BD6881C96C412B91