Hi - I have a 10 year old HP Pavillion a450n running Windows XP SP2; the harddrive was replaced a few years ago. Lately, when I take the comp out of sleep mode (it's never fully shut down), I get a black screen with "Reboot and select proper boot device or insert Boot Media in selected Boot device and press any key". I rectify this this with a hard restart, selecting F1 setup, and reconfigure the BIOS, which seems to continually reset the First and Slave Channel Master to "NONE", and the Block mode to "AUTO". Once I change the Block mode to "DISABLED" and exit/save changes, it will pick up the HDD as First Channel Master. I ensure the HDD is set in Boot priority as first, and I am able to access Windows. Once the comp goes to sleep, the BIOS resets, and I have to do it all again. At about the same time as this began occurring, the comp starts up extremely slowly. Any ideas? Thanks.
Windows XP BIOS Reset
- Thread starter jl1
- Start date
First off, try replacing the cmos battery on the motherboard so the bios settings will not revert back.
Secondly, have you scanned your system for malware lately using malwarebyte? Do you run a program called Ccleaner at least once a week? Your system probably just needs some general maintenance done to it.
Secondly, have you scanned your system for malware lately using malwarebyte? Do you run a program called Ccleaner at least once a week? Your system probably just needs some general maintenance done to it.
Thanks, John. I'll see what type of battery I need tomorrow (hopefully it's replacable), and look to swap one in. The motherboard is the only original item on the machine. When I replaced the HDD, I also upgraded the power supply, video card and memory sticks. I run MalwareBytes, Super AntiSpyware, Spybot, CCleaner and Avast no more than every 10-14 days (always comes out clean), as well as disk clean-up and defrag. I'll let you know the battery results - may be after the holiday though. Thanks for the prompt response. You rule!
Hey, John - Just wanted to follow up. I replaced the CMOS battery in the motherboard (a standard CR2032 - real easy fix), and the reverting BIOS has been corrected. The computer still boots up very slowly, but the rest of the functions (actual computer use, internet, etc.) seem fine. As I put the computer into sleep mode rather than shut it off, the start up isn't an issue. Scans still look good. Thanks for your help - saved me again!
Please do the following so we can see whats running at bootup. Also how much system ram is installed?
1.
Please download and run TDSSkiller
When the program opens, click on the start scan button.
TDSSKiller will now scan your computer for the TDSS infection. When the scan has finished it will display a result screen stating whether or not the infection was found on your computer. If it was found it will display a screen similar to the one below.
To remove the infection simply click on the Continue button and TDSSKiller will attempt to clean the infection.
When it has finished cleaning the infection you will see a report stating whether or not it was successful as shown below.
If the log says will be cured after reboot, please reboot the system by pressing the reboot now button.
After running there will be a log that will be located at the root of your c:\ drive labeled tdsskiller with a series of numbers after it. Please open the log and copy and paste it back here.
2.
Download the HijackThis installer from here.
Run the installer and choose Install, indicating that you accept the licence agreement. The installer will place a shortcut on your desktop and launch HijackThis.
Vista and Windows 7 users must right click on the hijackthis icon and click on run as. If the run as option doesn't appear then press and hold the shift key while right clicking on the icon to get it to appear.
Click Do a system scan and save a logfile
Most of what HijackThis lists will be harmless or even essential, don't fix anything yet.
When the hijackthis log appears in a notepad file, click on the edit menu, click select all, then click on the edit menu again and click on copy. Come back to your reply and right click on your mouse and click on paste.
Post the logfile that HijackThis produces
1.
Please download and run TDSSkiller
When the program opens, click on the start scan button.
TDSSKiller will now scan your computer for the TDSS infection. When the scan has finished it will display a result screen stating whether or not the infection was found on your computer. If it was found it will display a screen similar to the one below.
To remove the infection simply click on the Continue button and TDSSKiller will attempt to clean the infection.
When it has finished cleaning the infection you will see a report stating whether or not it was successful as shown below.
If the log says will be cured after reboot, please reboot the system by pressing the reboot now button.
After running there will be a log that will be located at the root of your c:\ drive labeled tdsskiller with a series of numbers after it. Please open the log and copy and paste it back here.
2.
Download the HijackThis installer from here.
Run the installer and choose Install, indicating that you accept the licence agreement. The installer will place a shortcut on your desktop and launch HijackThis.
Vista and Windows 7 users must right click on the hijackthis icon and click on run as. If the run as option doesn't appear then press and hold the shift key while right clicking on the icon to get it to appear.
Click Do a system scan and save a logfile
Most of what HijackThis lists will be harmless or even essential, don't fix anything yet.
When the hijackthis log appears in a notepad file, click on the edit menu, click select all, then click on the edit menu again and click on copy. Come back to your reply and right click on your mouse and click on paste.
Post the logfile that HijackThis produces
Windows
Hey, John - Thanks for the reply. The comp has 1.5 gig of RAM. I guess I spoke too soon, as the "fail to locate boot device" BIOS issue is back. I'm getting the comp to run by setting the boot priority to 1st floppy disk, with the restore disk installed. Even then it takes a couple of times before it will work. I used to be able to see the HDD in BIOS, but that seems to have disappeared.
When I open TDSS, it informs me that there is an update avail (Current version 2.8.7.0, Actual version 2.8.15.0), but when I attempt the update, it freezes and does nothing. By hitting the continue button, it scans, and this is the result (can't seem to get the pics to post):
tdss1.jpg (11.9 KB)
tdss2.jpg (11.8 KB)
tdss3.jpg (17.4 KB)
Here's the log from the Hijackthis:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:02:22 AM, on 11/29/2012
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\hphmon05.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\LTMSG.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\NETGEAR Genie\bin\genie2_tray.exe
C:\Program Files\NETGEAR Genie\bin\genie2_tray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Owner\Desktop\Printkey2000.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\msiexec.exe
C:\Program Files\Trend Micro\HijackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us10.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us10.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us10.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-us10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [NETGEARGenie] "C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect
O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Startup: DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe
O4 - Startup: spamsubtract.lnk.disabled
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk.disabled
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Quicken Scheduled Updates.lnk.disabled
O4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe
O4 - Global Startup: Updates from HP.lnk.disabled
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1308704215945
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NETGEARGenieDaemon - NETGEAR - C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
--
End of file - 9963 bytes
Let me know what you think. Thanks for your help John!
Hey, John - Thanks for the reply. The comp has 1.5 gig of RAM. I guess I spoke too soon, as the "fail to locate boot device" BIOS issue is back. I'm getting the comp to run by setting the boot priority to 1st floppy disk, with the restore disk installed. Even then it takes a couple of times before it will work. I used to be able to see the HDD in BIOS, but that seems to have disappeared.
When I open TDSS, it informs me that there is an update avail (Current version 2.8.7.0, Actual version 2.8.15.0), but when I attempt the update, it freezes and does nothing. By hitting the continue button, it scans, and this is the result (can't seem to get the pics to post):
tdss1.jpg (11.9 KB)
tdss2.jpg (11.8 KB)
tdss3.jpg (17.4 KB)
Here's the log from the Hijackthis:
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 9:02:22 AM, on 11/29/2012
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\hphmon05.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\LTMSG.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\WINDOWS\system32\wuauclt.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\Program Files\NETGEAR Genie\bin\genie2_tray.exe
C:\Program Files\NETGEAR Genie\bin\genie2_tray.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\WINDOWS\explorer.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Documents and Settings\Owner\Desktop\Printkey2000.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\WINDOWS\System32\msiexec.exe
C:\Program Files\Trend Micro\HijackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://us10.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us10.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us10.hpwis.com/
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://srch-us10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [HPHUPD05] c:\Program Files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [NETGEARGenie] "C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect
O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Startup: DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe
O4 - Startup: spamsubtract.lnk.disabled
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk.disabled
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Quicken Scheduled Updates.lnk.disabled
O4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe
O4 - Global Startup: Updates from HP.lnk.disabled
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1308704215945
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NETGEARGenieDaemon - NETGEAR - C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
--
End of file - 9963 bytes
Let me know what you think. Thanks for your help John!
Attachments
Ok. Those pictures are way too small for me to tell what its detecting. The log I want you to post will be located under the C drive.
So its location should be C:\tdsskiller and then there will be a string of numbers after it. Its a notepad file so should be easy to find. Just open that log and copy and paste the contents in your next reply.
However, it seems this computer has some issues but like I said, really can't tell what with how small they are.
So its location should be C:\tdsskiller and then there will be a string of numbers after it. Its a notepad file so should be easy to find. Just open that log and copy and paste the contents in your next reply.
However, it seems this computer has some issues but like I said, really can't tell what with how small they are.
windows BIOS
Hey John - Here's the log from the TDSS run. I couldn't download from your link (unknown file type). This log looks like it was run off an 08/12 version of TDSS. I'll post it in the following two segments, as it's too large. As a sidenote, I decided to run Malwarebytes and SuperAntiSpyware again: what usually takes about an hour has been running for almost seven! Thanks again...
Hey John - Here's the log from the TDSS run. I couldn't download from your link (unknown file type). This log looks like it was run off an 08/12 version of TDSS. I'll post it in the following two segments, as it's too large. As a sidenote, I decided to run Malwarebytes and SuperAntiSpyware again: what usually takes about an hour has been running for almost seven! Thanks again...
09:10:37.0656 1060 TDSS rootkit removing tool 2.8.7.0 Aug 20 2012 17:30:03
09:10:41.0187 1060 ============================================================
09:10:41.0187 1060 Current date / time: 2012/11/29 09:10:41.0187
09:10:41.0187 1060 SystemInfo:
09:10:41.0187 1060
09:10:41.0187 1060 OS Version: 5.1.2600 ServicePack: 2.0
09:10:41.0187 1060 Product type: Workstation
09:10:41.0187 1060 ComputerName: JLS-1
09:10:41.0187 1060 UserName: Owner
09:10:41.0187 1060 Windows directory: C:\WINDOWS
09:10:41.0187 1060 System windows directory: C:\WINDOWS
09:10:41.0187 1060 Processor architecture: Intel x86
09:10:41.0187 1060 Number of processors: 2
09:10:41.0187 1060 Page size: 0x1000
09:10:41.0187 1060 Boot type: Normal boot
09:10:41.0187 1060 ============================================================
09:10:42.0687 1060 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0xA181, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
09:10:42.0875 1060 ============================================================
09:10:42.0875 1060 \Device\Harddisk0\DR0:
09:10:42.0875 1060 MBR partitions:
09:10:42.0875 1060 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xA77F21
09:10:42.0875 1060 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xA77F60, BlocksNum 0x249B18A0
09:10:42.0875 1060 ============================================================
09:10:42.0921 1060 C: <-> \Device\Harddisk0\DR0\Partition2
09:10:42.0921 1060 D: <-> \Device\Harddisk0\DR0\Partition1
09:10:42.0921 1060 ============================================================
09:10:42.0921 1060 Initialize success
09:10:42.0921 1060 ============================================================
09:10:52.0671 2744 ============================================================
09:10:52.0671 2744 Scan started
09:10:52.0671 2744 Mode: Manual; SigCheck; TDLFS;
09:10:52.0671 2744 ============================================================
09:10:53.0203 2744 ================ Scan system memory ========================
09:10:53.0203 2744 System memory - ok
09:10:53.0203 2744 ================ Scan services =============================
09:10:53.0328 2744 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
09:10:53.0437 2744 !SASCORE - ok
09:10:53.0796 2744 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:10:53.0843 2744 Aavmker4 - ok
09:10:53.0859 2744 Abiosdsk - ok
09:10:53.0875 2744 abp480n5 - ok
09:10:53.0953 2744 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:10:54.0437 2744 ACPI - ok
09:10:54.0484 2744 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:10:54.0640 2744 ACPIEC - ok
09:10:54.0781 2744 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:10:54.0796 2744 AdobeFlashPlayerUpdateSvc - ok
09:10:54.0812 2744 adpu160m - ok
09:10:54.0875 2744 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
09:10:55.0312 2744 aec - ok
09:10:55.0390 2744 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:10:55.0421 2744 AFD - ok
09:10:55.0468 2744 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
09:10:55.0500 2744 AFS2K - ok
09:10:55.0531 2744 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:10:55.0687 2744 agp440 - ok
09:10:55.0703 2744 Aha154x - ok
09:10:55.0703 2744 aic78u2 - ok
09:10:55.0718 2744 aic78xx - ok
09:10:56.0953 2744 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
09:10:58.0187 2744 ALCXWDM - ok
09:10:58.0218 2744 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:10:58.0375 2744 Alerter - ok
09:10:58.0406 2744 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
09:10:58.0562 2744 ALG - ok
09:10:58.0578 2744 AliIde - ok
09:10:58.0609 2744 [ 680AD1C1BB16239E28D8F33A54A7A3C7 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
09:10:58.0765 2744 AmdK7 - ok
09:10:58.0765 2744 amsint - ok
09:10:58.0781 2744 AppMgmt - ok
09:10:58.0828 2744 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:10:58.0968 2744 Arp1394 - ok
09:10:58.0984 2744 asc - ok
09:10:59.0000 2744 asc3350p - ok
09:10:59.0000 2744 asc3550 - ok
09:10:59.0109 2744 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
09:10:59.0125 2744 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
09:10:59.0125 2744 aspnet_state - detected UnsignedFile.Multi.Generic (1)
09:10:59.0171 2744 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:10:59.0171 2744 aswFsBlk - ok
09:10:59.0234 2744 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:10:59.0234 2744 aswMon2 - ok
09:10:59.0281 2744 [ 7C9F0A2AB17D52261A9252A2EB320884 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:10:59.0296 2744 aswRdr - ok
09:10:59.0531 2744 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:10:59.0687 2744 aswSnx - ok
09:10:59.0828 2744 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:10:59.0906 2744 aswSP - ok
09:10:59.0937 2744 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:10:59.0968 2744 aswTdi - ok
09:10:59.0984 2744 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:11:00.0125 2744 AsyncMac - ok
09:11:00.0156 2744 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:11:00.0312 2744 atapi - ok
09:11:00.0328 2744 Atdisk - ok
09:11:00.0406 2744 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:11:00.0531 2744 Atmarpc - ok
09:11:00.0578 2744 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:11:00.0734 2744 AudioSrv - ok
09:11:00.0765 2744 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:11:00.0921 2744 audstub - ok
09:11:00.0984 2744 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:11:01.0000 2744 avast! Antivirus - ok
09:11:01.0390 2744 [ 124D235185004F699FAF115EBD85733E ] AVG Security Toolbar Service C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
09:11:01.0640 2744 AVG Security Toolbar Service - ok
09:11:01.0671 2744 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:11:01.0828 2744 Beep - ok
09:11:01.0984 2744 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\System32\qmgr.dll
09:11:02.0203 2744 BITS - ok
09:11:02.0250 2744 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
09:11:02.0406 2744 Browser - ok
09:11:02.0437 2744 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:11:02.0609 2744 cbidf2k - ok
09:11:02.0656 2744 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:11:02.0796 2744 CCDECODE - ok
09:11:02.0812 2744 cd20xrnt - ok
09:11:02.0843 2744 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:11:03.0000 2744 Cdaudio - ok
09:11:03.0031 2744 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:11:03.0171 2744 Cdfs - ok
09:11:03.0203 2744 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:11:03.0375 2744 Cdrom - ok
09:11:03.0375 2744 Changer - ok
09:11:03.0437 2744 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:11:03.0578 2744 CiSvc - ok
09:11:03.0625 2744 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:11:03.0765 2744 ClipSrv - ok
09:11:03.0781 2744 CmdIde - ok
09:11:03.0781 2744 COMSysApp - ok
09:11:03.0812 2744 Cpqarray - ok
09:11:03.0859 2744 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:11:04.0000 2744 CryptSvc - ok
09:11:04.0015 2744 dac2w2k - ok
09:11:04.0015 2744 dac960nt - ok
09:11:04.0156 2744 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:11:04.0343 2744 DcomLaunch - ok
09:11:04.0406 2744 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:11:04.0890 2744 Dhcp - ok
09:11:04.0921 2744 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:11:05.0078 2744 Disk - ok
09:11:05.0093 2744 dmadmin - ok
09:11:05.0343 2744 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:11:05.0640 2744 dmboot - ok
09:11:05.0734 2744 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:11:05.0890 2744 dmio - ok
09:11:05.0921 2744 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:11:06.0078 2744 dmload - ok
09:11:06.0125 2744 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
09:11:06.0265 2744 dmserver - ok
09:11:06.0296 2744 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:11:06.0453 2744 DMusic - ok
09:11:06.0500 2744 [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:11:06.0640 2744 Dnscache - ok
09:11:06.0656 2744 dpti2o - ok
09:11:06.0656 2744 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:11:06.0796 2744 drmkaud - ok
09:11:06.0843 2744 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:11:06.0984 2744 ERSvc - ok
09:11:07.0046 2744 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
09:11:07.0140 2744 Eventlog - ok
09:11:07.0234 2744 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\System32\es.dll
09:11:07.0265 2744 EventSystem - ok
09:11:07.0343 2744 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:11:07.0468 2744 Fastfat - ok
09:11:07.0531 2744 [ 6339AAF63240DF0634902B98C0F56049 ] fasttx2k C:\WINDOWS\system32\DRIVERS\fasttx2k.sys
09:11:07.0562 2744 fasttx2k - ok
09:11:07.0625 2744 [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:11:07.0796 2744 FastUserSwitchingCompatibility - ok
09:11:07.0906 2744 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
09:11:08.0078 2744 Fax - ok
09:11:08.0109 2744 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:11:08.0250 2744 Fdc - ok
09:11:08.0281 2744 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:11:08.0453 2744 Fips - ok
09:11:08.0484 2744 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:11:08.0625 2744 Flpydisk - ok
09:11:08.0703 2744 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:11:08.0843 2744 FltMgr - ok
09:11:08.0859 2744 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:11:09.0000 2744 Fs_Rec - ok
09:11:09.0062 2744 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:11:09.0218 2744 Ftdisk - ok
09:11:09.0250 2744 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:11:09.0406 2744 Gpc - ok
09:11:09.0500 2744 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:11:09.0515 2744 gupdate - ok
09:11:09.0562 2744 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:11:09.0578 2744 gupdatem - ok
09:11:09.0687 2744 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:11:09.0703 2744 gusvc - ok
09:11:09.0781 2744 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:11:09.0921 2744 helpsvc - ok
09:11:09.0921 2744 HidServ - ok
09:11:09.0937 2744 hpn - ok
09:11:09.0984 2744 [ 5FABA4775D4C61E55EC669D643FFC71F ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:11:10.0031 2744 HPZid412 - ok
09:11:10.0046 2744 [ A3C43980EE1F1BEAC778B44EA65DBDD4 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:11:10.0078 2744 HPZipr12 - ok
09:11:10.0125 2744 [ 2906949BD4E206F2BB0DD1896CE9F66F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:11:10.0156 2744 HPZius12 - ok
09:11:10.0265 2744 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:11:10.0296 2744 HTTP - ok
09:11:10.0343 2744 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:11:10.0484 2744 HTTPFilter - ok
09:11:10.0484 2744 i2omgmt - ok
09:11:10.0500 2744 i2omp - ok
09:11:10.0546 2744 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:11:10.0671 2744 i8042prt - ok
09:11:10.0750 2744 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
09:11:10.0781 2744 ialm - ok
09:11:10.0812 2744 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:11:10.0953 2744 Imapi - ok
09:11:11.0015 2744 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\System32\imapi.exe
09:11:11.0156 2744 ImapiService - ok
09:11:11.0171 2744 ini910u - ok
09:11:11.0203 2744 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
09:11:11.0359 2744 IntelIde - ok
09:11:11.0406 2744 [ 279FB78702454DFF2BB445F238C048D2 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:11:11.0531 2744 intelppm - ok
09:11:11.0562 2744 [ 4448006B6BC60E6C027932CFC38D6855 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:11:11.0718 2744 ip6fw - ok
09:11:11.0765 2744 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:11:11.0906 2744 IpFilterDriver - ok
09:11:11.0937 2744 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:11:12.0093 2744 IpInIp - ok
09:11:12.0140 2744 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:11:12.0281 2744 IpNat - ok
09:11:12.0328 2744 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:11:12.0484 2744 IPSec - ok
09:11:12.0515 2744 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:11:12.0671 2744 IRENUM - ok
09:11:12.0718 2744 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:11:12.0875 2744 isapnp - ok
09:11:12.0906 2744 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:11:13.0046 2744 Kbdclass - ok
09:11:13.0125 2744 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:11:13.0640 2744 kmixer - ok
09:11:13.0703 2744 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:11:13.0734 2744 KSecDD - ok
09:11:13.0781 2744 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:11:14.0281 2744 lanmanserver - ok
09:11:14.0375 2744 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:11:14.0406 2744 lanmanworkstation - ok
09:11:14.0421 2744 lbrtfdc - ok
09:11:14.0468 2744 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:11:14.0609 2744 LmHosts - ok
09:11:14.0843 2744 [ 829EF680A308C12E2A80E5E0DA0D958D ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
09:11:15.0000 2744 ltmodem5 - ok
09:11:15.0046 2744 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:11:15.0187 2744 Messenger - ok
09:11:15.0296 2744 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:11:15.0312 2744 Microsoft Office Groove Audit Service - ok
09:11:15.0328 2744 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:11:15.0500 2744 mnmdd - ok
09:11:15.0546 2744 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
09:11:15.0687 2744 mnmsrvc - ok
09:11:15.0734 2744 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:11:15.0859 2744 Modem - ok
09:11:15.0875 2744 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:11:16.0031 2744 Mouclass - ok
09:11:16.0062 2744 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:11:16.0203 2744 MountMgr - ok
09:11:16.0203 2744 mraid35x - ok
09:11:16.0281 2744 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:11:16.0453 2744 MRxDAV - ok
09:11:16.0609 2744 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:11:16.0718 2744 MRxSmb - ok
09:11:16.0734 2744 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:11:16.0875 2744 MSDTC - ok
09:11:16.0890 2744 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:11:17.0031 2744 Msfs - ok
09:11:17.0031 2744 MSIServer - ok
09:11:17.0062 2744 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:11:17.0203 2744 MSKSSRV - ok
09:11:17.0234 2744 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:11:17.0390 2744 MSPCLOCK - ok
09:11:17.0421 2744 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:11:17.0546 2744 MSPQM - ok
09:11:17.0578 2744 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:11:17.0718 2744 mssmbios - ok
09:11:17.0750 2744 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:11:17.0890 2744 MSTEE - ok
09:11:17.0937 2744 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:11:18.0078 2744 Mup - ok
09:11:18.0125 2744 [ C6EEE2261681396E36F3D8A003582C9E ] MxlW2k C:\WINDOWS\system32\drivers\MxlW2k.sys
09:11:18.0140 2744 MxlW2k ( UnsignedFile.Multi.Generic ) - warning
09:11:18.0140 2744 MxlW2k - detected UnsignedFile.Multi.Generic (1)
09:11:18.0187 2744 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:11:18.0359 2744 NABTSFEC - ok
09:11:18.0453 2744 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:11:18.0593 2744 NDIS - ok
09:11:18.0625 2744 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:11:18.0765 2744 NdisIP - ok
09:11:18.0781 2744 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:11:18.0937 2744 NdisTapi - ok
09:11:18.0968 2744 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:11:19.0109 2744 Ndisuio - ok
09:11:19.0156 2744 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:11:19.0296 2744 NdisWan - ok
09:11:19.0312 2744 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:11:19.0500 2744 NDProxy - ok
09:11:19.0546 2744 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:11:19.0687 2744 NetBIOS - ok
09:11:19.0750 2744 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:11:19.0875 2744 NetBT - ok
09:11:19.0937 2744 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
09:11:20.0078 2744 NetDDE - ok
09:11:20.0125 2744 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:11:20.0250 2744 NetDDEdsdm - ok
09:11:20.0359 2744 [ 38CE271DAC632044AA18A7457CBBE2D2 ] NETGEARGenieDaemon C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
09:11:20.0390 2744 NETGEARGenieDaemon - ok
09:11:20.0421 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\System32\lsass.exe
09:11:20.0562 2744 Netlogon - ok
09:11:20.0656 2744 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
09:11:21.0156 2744 Netman - ok
09:11:21.0203 2744 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:11:21.0375 2744 NIC1394 - ok
09:11:21.0468 2744 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
09:11:21.0562 2744 Nla - ok
09:11:21.0609 2744 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\WINDOWS\system32\drivers\npf.sys
09:11:21.0625 2744 NPF - ok
09:11:21.0656 2744 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:11:21.0781 2744 Npfs - ok
09:11:21.0968 2744 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:11:22.0187 2744 Ntfs - ok
09:11:22.0203 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
09:11:22.0359 2744 NtLmSsp - ok
09:11:22.0515 2744 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:11:22.0734 2744 NtmsSvc - ok
09:11:22.0781 2744 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:11:22.0953 2744 Null - ok
09:11:24.0140 2744 [ 34C114DA0A5E03219444E46F122FF5A3 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:11:25.0218 2744 nv ( UnsignedFile.Multi.Generic ) - warning
09:11:25.0218 2744 nv - detected UnsignedFile.Multi.Generic (1)
09:11:25.0312 2744 [ 9B7ACCFAC9B19B98D54F45A9CF61CA39 ] nvcap C:\WINDOWS\system32\DRIVERS\nvcap.sys
09:11:25.0343 2744 nvcap - ok
09:11:25.0437 2744 [ FF8112711B5F9823D4595579B2130955 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
09:11:25.0468 2744 NVSvc ( UnsignedFile.Multi.Generic ) - warning
09:11:25.0468 2744 NVSvc - detected UnsignedFile.Multi.Generic (1)
09:11:25.0500 2744 [ BEF79A5B5A01BB749AFBED27837E6311 ] NVXBAR C:\WINDOWS\system32\DRIVERS\NVxbar.sys
09:11:25.0515 2744 NVXBAR - ok
09:11:25.0546 2744 [ 01621905AE34BC24AAA2FDDB93977299 ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
09:11:25.0578 2744 nv_agp - ok
09:11:25.0609 2744 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:11:25.0781 2744 NwlnkFlt - ok
09:11:25.0812 2744 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:11:25.0984 2744 NwlnkFwd - ok
09:11:26.0203 2744 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:11:26.0296 2744 odserv - ok
09:11:26.0328 2744 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:11:26.0468 2744 ohci1394 - ok
09:11:26.0546 2744 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:11:26.0562 2744 ose - ok
09:11:26.0625 2744 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:11:26.0765 2744 Parport - ok
09:11:26.0796 2744 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:11:26.0953 2744 PartMgr - ok
09:11:26.0968 2744 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:11:27.0125 2744 ParVdm - ok
09:11:27.0156 2744 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:11:27.0296 2744 PCI - ok
09:11:27.0312 2744 PCIDump - ok
09:11:27.0375 2744 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:11:27.0593 2744 PCIIde - ok
09:11:27.0656 2744 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:11:27.0812 2744 Pcmcia - ok
09:11:27.0812 2744 PDCOMP - ok
09:11:27.0828 2744 PDFRAME - ok
09:11:27.0843 2744 PDRELI - ok
09:11:27.0843 2744 PDRFRAME - ok
09:11:27.0859 2744 perc2 - ok
09:11:27.0875 2744 perc2hib - ok
09:11:27.0937 2744 [ E5AC9F8C128B597DD7919AF96B84172E ] pfc C:\WINDOWS\system32\drivers\pfc.sys
09:11:27.0953 2744 pfc ( UnsignedFile.Multi.Generic ) - warning
09:11:27.0953 2744 pfc - detected UnsignedFile.Multi.Generic (1)
09:11:28.0000 2744 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
09:11:28.0093 2744 PlugPlay - ok
09:11:28.0140 2744 [ 901C43516504CBE582E4C4193E00876A ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:11:28.0171 2744 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
09:11:28.0171 2744 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
09:11:28.0171 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
09:11:28.0343 2744 PolicyAgent - ok
09:11:28.0390 2744 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:11:28.0531 2744 PptpMiniport - ok
09:11:28.0546 2744 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:11:28.0703 2744 Processor - ok
09:11:28.0718 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:11:28.0843 2744 ProtectedStorage - ok
09:11:28.0890 2744 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
09:11:28.0906 2744 Ps2 - ok
09:11:28.0937 2744 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:11:29.0078 2744 PSched - ok
09:11:29.0109 2744 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:11:29.0250 2744 Ptilink - ok
09:11:29.0296 2744 [ 7E1EACDECBA39E0B2A35306426F0DECC ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
09:11:29.0312 2744 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
09:11:29.0312 2744 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
09:11:29.0328 2744 ql1080 - ok
09:11:29.0343 2744 Ql10wnt - ok
09:11:29.0343 2744 ql12160 - ok
09:11:29.0359 2744 ql1240 - ok
09:11:29.0390 2744 ql1280 - ok
09:11:29.0421 2744 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:11:29.0562 2744 RasAcd - ok
09:11:29.0625 2744 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:11:29.0765 2744 RasAuto - ok
09:11:29.0796 2744 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:11:29.0937 2744 Rasl2tp - ok
09:11:30.0015 2744 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
09:11:30.0546 2744 RasMan - ok
09:11:30.0578 2744 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:11:30.0703 2744 RasPppoe - ok
09:11:30.0718 2744 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:11:30.0875 2744 Raspti - ok
09:11:30.0953 2744 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:11:31.0484 2744 Rdbss - ok
09:11:31.0515 2744 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:11:31.0687 2744 RDPCDD - ok
09:11:31.0765 2744 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:11:32.0265 2744 RDPWD - ok
09:11:32.0359 2744 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:11:32.0500 2744 RDSessMgr - ok
09:11:32.0531 2744 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:11:32.0656 2744 redbook - ok
09:11:32.0703 2744 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:11:32.0859 2744 RemoteAccess - ok
09:11:32.0890 2744 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\System32\locator.exe
09:11:33.0062 2744 RpcLocator - ok
09:11:33.0203 2744 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:11:33.0390 2744 RpcSs - ok
09:11:33.0453 2744 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
09:11:33.0625 2744 RSVP - ok
09:11:33.0656 2744 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
09:11:33.0671 2744 rtl8139 - ok
09:11:33.0765 2744 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
09:11:33.0921 2744 S3Psddr - ok
09:11:33.0937 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
09:11:34.0078 2744 SamSs - ok
09:11:34.0109 2744 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
09:11:34.0109 2744 SASDIFSV - ok
09:11:34.0140 2744 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
09:11:34.0156 2744 SASKUTIL - ok
09:11:34.0203 2744 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:11:34.0375 2744 SCardSvr - ok
09:11:34.0468 2744 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:11:34.0609 2744 Schedule - ok
09:11:34.0640 2744 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:11:34.0796 2744 Secdrv - ok
09:11:34.0812 2744 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
09:11:34.0984 2744 seclogon - ok
09:11:35.0000 2744 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
09:11:35.0140 2744 SENS - ok
09:11:35.0171 2744 [ A2D868AEEFF612E70E213C451A70CAFB ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:11:35.0312 2744 Serenum - ok
09:11:35.0359 2744 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:11:35.0515 2744 Serial - ok
09:11:35.0546 2744 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:11:35.0687 2744 Sfloppy - ok
09:11:35.0812 2744 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:11:36.0015 2744 SharedAccess - ok
09:11:36.0078 2744 [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:11:36.0218 2744 ShellHWDetection - ok
09:11:36.0234 2744 Simbad - ok
09:11:36.0375 2744 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
09:11:36.0484 2744 SiS315 - ok
09:11:36.0531 2744 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
09:11:36.0546 2744 SISAGP - ok
09:11:36.0578 2744 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
09:11:36.0609 2744 SiSkp - ok
09:11:36.0625 2744 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:11:36.0765 2744 SLIP - ok
09:11:36.0765 2744 Sparrow - ok
09:11:36.0812 2744 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:11:37.0312 2744 splitter - ok
09:11:37.0421 2744 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:11:37.0968 2744 Spooler - ok
09:11:38.0000 2744 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:11:38.0156 2744 sr - ok
09:11:38.0234 2744 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\System32\srsvc.dll
09:11:38.0390 2744 srservice - ok
09:11:38.0515 2744 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:11:38.0625 2744 Srv - ok
09:11:38.0671 2744 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:11:38.0812 2744 SSDPSRV - ok
09:11:38.0937 2744 [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:11:39.0171 2744 stisvc - ok
09:11:39.0218 2744 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:11:39.0375 2744 streamip - ok
09:11:39.0421 2744 [ 2087B202CFE8A2F8A59CECFFFBEC58D5 ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
09:11:39.0453 2744 SunkFilt ( UnsignedFile.Multi.Generic ) - warning
09:11:39.0453 2744 SunkFilt - detected UnsignedFile.Multi.Generic (1)
09:11:39.0453 2744 Sunkfiltp - ok
09:11:39.0484 2744 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:11:39.0625 2744 swenum - ok
09:11:39.0687 2744 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:11:39.0828 2744 swmidi - ok
09:11:39.0843 2744 SwPrv - ok
09:11:39.0859 2744 symc810 - ok
09:11:39.0859 2744 symc8xx - ok
09:11:39.0875 2744 sym_hi - ok
09:11:39.0890 2744 sym_u3 - ok
09:11:39.0921 2744 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:11:40.0078 2744 sysaudio - ok
09:11:40.0140 2744 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:11:40.0296 2744 SysmonLog - ok
09:11:40.0406 2744 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:11:40.0937 2744 TapiSrv - ok
09:11:41.0078 2744 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:11:41.0250 2744 Tcpip - ok
09:11:41.0281 2744 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:11:41.0421 2744 TDPIPE - ok
09:11:41.0453 2744 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:11:41.0578 2744 TDTCP - ok
09:11:41.0625 2744 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:11:41.0765 2744 TermDD - ok
09:11:41.0890 2744 [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService C:\WINDOWS\System32\termsrv.dll
09:11:42.0031 2744 TermService - ok
09:11:42.0093 2744 [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:11:42.0250 2744 Themes - ok
09:11:42.0250 2744 TosIde - ok
09:11:42.0312 2744 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:11:42.0468 2744 TrkWks - ok
09:11:42.0531 2744 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:11:42.0656 2744 Udfs - ok
09:11:42.0671 2744 ultra - ok
09:11:42.0750 2744 [ A4815A4884898F355A3513E60843A4FD ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:11:43.0296 2744 Update - ok
09:11:43.0421 2744 [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost C:\WINDOWS\System32\upnphost.dll
09:11:43.0562 2744 upnphost - ok
09:11:43.0593 2744 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
09:11:43.0750 2744 UPS - ok
09:11:43.0781 2744 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:11:43.0921 2744 usbccgp - ok
09:11:43.0968 2744 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:11:44.0093 2744 usbehci - ok
09:11:44.0125 2744 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:11:44.0281 2744 usbhub - ok
09:11:44.0312 2744 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:11:44.0468 2744 usbohci - ok
09:11:44.0500 2744 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:11:44.0640 2744 usbprint - ok
09:11:44.0671 2744 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:11:44.0812 2744 usbscan - ok
09:11:44.0828 2744 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:11:44.0968 2744 USBSTOR - ok
09:11:45.0000 2744 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:11:45.0140 2744 usbuhci - ok
09:11:45.0171 2744 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:11:45.0312 2744 VgaSave - ok
09:11:45.0359 2744 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
09:11:45.0375 2744 viaagp1 - ok
09:11:45.0484 2744 [ E8C619C6C6BDE90D130DDA87150E1944 ] viagfx C:\WINDOWS\system32\DRIVERS\vtmini.sys
09:11:45.0515 2744 viagfx - ok
09:11:45.0546 2744 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
09:11:45.0687 2744 ViaIde - ok
09:11:45.0718 2744 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:11:45.0843 2744 VolSnap - ok
09:11:45.0968 2744 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
09:11:46.0156 2744 VSS - ok
09:11:46.0218 2744 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\System32\w32time.dll
09:11:46.0406 2744 W32Time - ok
09:11:46.0453 2744 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:11:46.0593 2744 Wanarp - ok
09:11:46.0609 2744 WDICA - ok
09:11:46.0656 2744 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:11:47.0156 2744 wdmaud - ok
09:11:47.0218 2744 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
09:11:47.0765 2744 WebClient - ok
09:11:47.0875 2744 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:11:48.0015 2744 winmgmt - ok
09:11:48.0062 2744 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:11:48.0078 2744 WmdmPmSN - ok
09:11:48.0171 2744 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
09:11:48.0312 2744 WmiApSrv - ok
09:11:48.0656 2744 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:11:48.0906 2744 WMPNetworkSvc - ok
09:11:48.0937 2744 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
09:11:48.0968 2744 WpdUsb - ok
09:11:49.0000 2744 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
09:11:49.0156 2744 WS2IFSL - ok
09:11:49.0203 2744 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:11:49.0390 2744 wscsvc - ok
09:11:49.0437 2744 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:11:49.0578 2744 WSTCODEC - ok
09:11:49.0609 2744 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\System32\wuauserv.dll
09:11:49.0750 2744 wuauserv - ok
09:11:49.0796 2744 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:11:49.0828 2744 WudfPf - ok
09:11:49.0875 2744 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:11:49.0906 2744 WudfRd - ok
09:11:49.0953 2744 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:11:49.0984 2744 WudfSvc - ok
09:11:50.0109 2744 [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:11:50.0375 2744 WZCSVC - ok
09:11:50.0437 2744 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:11:50.0609 2744 xmlprov - ok
09:11:50.0656 2744 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
09:11:50.0703 2744 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
09:11:50.0781 2744 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
09:11:50.0796 2744 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
09:11:50.0796 2744 ================ Scan global ===============================
09:11:50.0843 2744 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
09:11:50.0953 2744 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:11:51.0062 2744 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:11:51.0109 2744 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
09:11:51.0125 2744 [Global] - ok
09:11:51.0125 2744 ================ Scan MBR ==================================
09:11:51.0156 2744 [ 8CC68602644010DFDB2A22CB60DDF258 ] \Device\Harddisk0\DR0
09:11:51.0515 2744 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:11:51.0515 2744 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:11:51.0515 2744 ================ Scan VBR ==================================
09:11:51.0531 2744 [ 0142BFA700EB464243DCD8C0161288B1 ] \Device\Harddisk0\DR0\Partition1
09:11:51.0531 2744 \Device\Harddisk0\DR0\Partition1 - ok
09:11:51.0531 2744 [ 5B8C2568CEFDEA46DF849AA868747BC1 ] \Device\Harddisk0\DR0\Partition2
09:11:51.0546 2744 \Device\Harddisk0\DR0\Partition2 - ok
09:11:51.0546 2744 ============================================================
09:11:51.0546 2744 Scan finished
09:11:51.0546 2744 ============================================================
09:11:51.0671 3164 Detected object count: 9
09:11:51.0671 3164 Actual detected object count: 9
09:12:16.0031 3164 aspnet_state ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 MxlW2k ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 nv ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 nv ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 NVSvc ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 pfc ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 pfc ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0046 3164 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0046 3164 SunkFilt ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0046 3164 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0046 3164 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
09:12:16.0046 3164 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
09:12:21.0015 0444 ============================================================
09:12:21.0015 0444 Scan started
09:12:21.0015 0444 Mode: Manual; SigCheck; TDLFS;
09:12:21.0015 0444 ============================================================
09:12:21.0265 0444 ================ Scan system memory ========================
09:12:21.0281 0444 System memory - ok
09:12:21.0281 0444 ================ Scan services =============================
09:10:41.0187 1060 ============================================================
09:10:41.0187 1060 Current date / time: 2012/11/29 09:10:41.0187
09:10:41.0187 1060 SystemInfo:
09:10:41.0187 1060
09:10:41.0187 1060 OS Version: 5.1.2600 ServicePack: 2.0
09:10:41.0187 1060 Product type: Workstation
09:10:41.0187 1060 ComputerName: JLS-1
09:10:41.0187 1060 UserName: Owner
09:10:41.0187 1060 Windows directory: C:\WINDOWS
09:10:41.0187 1060 System windows directory: C:\WINDOWS
09:10:41.0187 1060 Processor architecture: Intel x86
09:10:41.0187 1060 Number of processors: 2
09:10:41.0187 1060 Page size: 0x1000
09:10:41.0187 1060 Boot type: Normal boot
09:10:41.0187 1060 ============================================================
09:10:42.0687 1060 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0xA181, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000054
09:10:42.0875 1060 ============================================================
09:10:42.0875 1060 \Device\Harddisk0\DR0:
09:10:42.0875 1060 MBR partitions:
09:10:42.0875 1060 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xB, StartLBA 0x3F, BlocksNum 0xA77F21
09:10:42.0875 1060 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0xA77F60, BlocksNum 0x249B18A0
09:10:42.0875 1060 ============================================================
09:10:42.0921 1060 C: <-> \Device\Harddisk0\DR0\Partition2
09:10:42.0921 1060 D: <-> \Device\Harddisk0\DR0\Partition1
09:10:42.0921 1060 ============================================================
09:10:42.0921 1060 Initialize success
09:10:42.0921 1060 ============================================================
09:10:52.0671 2744 ============================================================
09:10:52.0671 2744 Scan started
09:10:52.0671 2744 Mode: Manual; SigCheck; TDLFS;
09:10:52.0671 2744 ============================================================
09:10:53.0203 2744 ================ Scan system memory ========================
09:10:53.0203 2744 System memory - ok
09:10:53.0203 2744 ================ Scan services =============================
09:10:53.0328 2744 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
09:10:53.0437 2744 !SASCORE - ok
09:10:53.0796 2744 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:10:53.0843 2744 Aavmker4 - ok
09:10:53.0859 2744 Abiosdsk - ok
09:10:53.0875 2744 abp480n5 - ok
09:10:53.0953 2744 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:10:54.0437 2744 ACPI - ok
09:10:54.0484 2744 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:10:54.0640 2744 ACPIEC - ok
09:10:54.0781 2744 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:10:54.0796 2744 AdobeFlashPlayerUpdateSvc - ok
09:10:54.0812 2744 adpu160m - ok
09:10:54.0875 2744 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
09:10:55.0312 2744 aec - ok
09:10:55.0390 2744 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:10:55.0421 2744 AFD - ok
09:10:55.0468 2744 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
09:10:55.0500 2744 AFS2K - ok
09:10:55.0531 2744 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:10:55.0687 2744 agp440 - ok
09:10:55.0703 2744 Aha154x - ok
09:10:55.0703 2744 aic78u2 - ok
09:10:55.0718 2744 aic78xx - ok
09:10:56.0953 2744 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
09:10:58.0187 2744 ALCXWDM - ok
09:10:58.0218 2744 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:10:58.0375 2744 Alerter - ok
09:10:58.0406 2744 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
09:10:58.0562 2744 ALG - ok
09:10:58.0578 2744 AliIde - ok
09:10:58.0609 2744 [ 680AD1C1BB16239E28D8F33A54A7A3C7 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
09:10:58.0765 2744 AmdK7 - ok
09:10:58.0765 2744 amsint - ok
09:10:58.0781 2744 AppMgmt - ok
09:10:58.0828 2744 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:10:58.0968 2744 Arp1394 - ok
09:10:58.0984 2744 asc - ok
09:10:59.0000 2744 asc3350p - ok
09:10:59.0000 2744 asc3550 - ok
09:10:59.0109 2744 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
09:10:59.0125 2744 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
09:10:59.0125 2744 aspnet_state - detected UnsignedFile.Multi.Generic (1)
09:10:59.0171 2744 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:10:59.0171 2744 aswFsBlk - ok
09:10:59.0234 2744 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:10:59.0234 2744 aswMon2 - ok
09:10:59.0281 2744 [ 7C9F0A2AB17D52261A9252A2EB320884 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:10:59.0296 2744 aswRdr - ok
09:10:59.0531 2744 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:10:59.0687 2744 aswSnx - ok
09:10:59.0828 2744 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:10:59.0906 2744 aswSP - ok
09:10:59.0937 2744 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:10:59.0968 2744 aswTdi - ok
09:10:59.0984 2744 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:11:00.0125 2744 AsyncMac - ok
09:11:00.0156 2744 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:11:00.0312 2744 atapi - ok
09:11:00.0328 2744 Atdisk - ok
09:11:00.0406 2744 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:11:00.0531 2744 Atmarpc - ok
09:11:00.0578 2744 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:11:00.0734 2744 AudioSrv - ok
09:11:00.0765 2744 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:11:00.0921 2744 audstub - ok
09:11:00.0984 2744 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:11:01.0000 2744 avast! Antivirus - ok
09:11:01.0390 2744 [ 124D235185004F699FAF115EBD85733E ] AVG Security Toolbar Service C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
09:11:01.0640 2744 AVG Security Toolbar Service - ok
09:11:01.0671 2744 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:11:01.0828 2744 Beep - ok
09:11:01.0984 2744 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\System32\qmgr.dll
09:11:02.0203 2744 BITS - ok
09:11:02.0250 2744 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
09:11:02.0406 2744 Browser - ok
09:11:02.0437 2744 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:11:02.0609 2744 cbidf2k - ok
09:11:02.0656 2744 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:11:02.0796 2744 CCDECODE - ok
09:11:02.0812 2744 cd20xrnt - ok
09:11:02.0843 2744 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:11:03.0000 2744 Cdaudio - ok
09:11:03.0031 2744 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:11:03.0171 2744 Cdfs - ok
09:11:03.0203 2744 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:11:03.0375 2744 Cdrom - ok
09:11:03.0375 2744 Changer - ok
09:11:03.0437 2744 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:11:03.0578 2744 CiSvc - ok
09:11:03.0625 2744 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:11:03.0765 2744 ClipSrv - ok
09:11:03.0781 2744 CmdIde - ok
09:11:03.0781 2744 COMSysApp - ok
09:11:03.0812 2744 Cpqarray - ok
09:11:03.0859 2744 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:11:04.0000 2744 CryptSvc - ok
09:11:04.0015 2744 dac2w2k - ok
09:11:04.0015 2744 dac960nt - ok
09:11:04.0156 2744 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:11:04.0343 2744 DcomLaunch - ok
09:11:04.0406 2744 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:11:04.0890 2744 Dhcp - ok
09:11:04.0921 2744 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:11:05.0078 2744 Disk - ok
09:11:05.0093 2744 dmadmin - ok
09:11:05.0343 2744 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:11:05.0640 2744 dmboot - ok
09:11:05.0734 2744 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:11:05.0890 2744 dmio - ok
09:11:05.0921 2744 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:11:06.0078 2744 dmload - ok
09:11:06.0125 2744 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
09:11:06.0265 2744 dmserver - ok
09:11:06.0296 2744 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:11:06.0453 2744 DMusic - ok
09:11:06.0500 2744 [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:11:06.0640 2744 Dnscache - ok
09:11:06.0656 2744 dpti2o - ok
09:11:06.0656 2744 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:11:06.0796 2744 drmkaud - ok
09:11:06.0843 2744 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:11:06.0984 2744 ERSvc - ok
09:11:07.0046 2744 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
09:11:07.0140 2744 Eventlog - ok
09:11:07.0234 2744 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\System32\es.dll
09:11:07.0265 2744 EventSystem - ok
09:11:07.0343 2744 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:11:07.0468 2744 Fastfat - ok
09:11:07.0531 2744 [ 6339AAF63240DF0634902B98C0F56049 ] fasttx2k C:\WINDOWS\system32\DRIVERS\fasttx2k.sys
09:11:07.0562 2744 fasttx2k - ok
09:11:07.0625 2744 [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:11:07.0796 2744 FastUserSwitchingCompatibility - ok
09:11:07.0906 2744 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
09:11:08.0078 2744 Fax - ok
09:11:08.0109 2744 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:11:08.0250 2744 Fdc - ok
09:11:08.0281 2744 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:11:08.0453 2744 Fips - ok
09:11:08.0484 2744 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:11:08.0625 2744 Flpydisk - ok
09:11:08.0703 2744 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:11:08.0843 2744 FltMgr - ok
09:11:08.0859 2744 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:11:09.0000 2744 Fs_Rec - ok
09:11:09.0062 2744 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:11:09.0218 2744 Ftdisk - ok
09:11:09.0250 2744 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:11:09.0406 2744 Gpc - ok
09:11:09.0500 2744 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:11:09.0515 2744 gupdate - ok
09:11:09.0562 2744 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:11:09.0578 2744 gupdatem - ok
09:11:09.0687 2744 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:11:09.0703 2744 gusvc - ok
09:11:09.0781 2744 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:11:09.0921 2744 helpsvc - ok
09:11:09.0921 2744 HidServ - ok
09:11:09.0937 2744 hpn - ok
09:11:09.0984 2744 [ 5FABA4775D4C61E55EC669D643FFC71F ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:11:10.0031 2744 HPZid412 - ok
09:11:10.0046 2744 [ A3C43980EE1F1BEAC778B44EA65DBDD4 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:11:10.0078 2744 HPZipr12 - ok
09:11:10.0125 2744 [ 2906949BD4E206F2BB0DD1896CE9F66F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:11:10.0156 2744 HPZius12 - ok
09:11:10.0265 2744 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:11:10.0296 2744 HTTP - ok
09:11:10.0343 2744 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:11:10.0484 2744 HTTPFilter - ok
09:11:10.0484 2744 i2omgmt - ok
09:11:10.0500 2744 i2omp - ok
09:11:10.0546 2744 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:11:10.0671 2744 i8042prt - ok
09:11:10.0750 2744 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
09:11:10.0781 2744 ialm - ok
09:11:10.0812 2744 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:11:10.0953 2744 Imapi - ok
09:11:11.0015 2744 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\System32\imapi.exe
09:11:11.0156 2744 ImapiService - ok
09:11:11.0171 2744 ini910u - ok
09:11:11.0203 2744 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
09:11:11.0359 2744 IntelIde - ok
09:11:11.0406 2744 [ 279FB78702454DFF2BB445F238C048D2 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:11:11.0531 2744 intelppm - ok
09:11:11.0562 2744 [ 4448006B6BC60E6C027932CFC38D6855 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:11:11.0718 2744 ip6fw - ok
09:11:11.0765 2744 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:11:11.0906 2744 IpFilterDriver - ok
09:11:11.0937 2744 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:11:12.0093 2744 IpInIp - ok
09:11:12.0140 2744 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:11:12.0281 2744 IpNat - ok
09:11:12.0328 2744 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:11:12.0484 2744 IPSec - ok
09:11:12.0515 2744 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:11:12.0671 2744 IRENUM - ok
09:11:12.0718 2744 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:11:12.0875 2744 isapnp - ok
09:11:12.0906 2744 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:11:13.0046 2744 Kbdclass - ok
09:11:13.0125 2744 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:11:13.0640 2744 kmixer - ok
09:11:13.0703 2744 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:11:13.0734 2744 KSecDD - ok
09:11:13.0781 2744 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:11:14.0281 2744 lanmanserver - ok
09:11:14.0375 2744 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:11:14.0406 2744 lanmanworkstation - ok
09:11:14.0421 2744 lbrtfdc - ok
09:11:14.0468 2744 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:11:14.0609 2744 LmHosts - ok
09:11:14.0843 2744 [ 829EF680A308C12E2A80E5E0DA0D958D ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
09:11:15.0000 2744 ltmodem5 - ok
09:11:15.0046 2744 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:11:15.0187 2744 Messenger - ok
09:11:15.0296 2744 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:11:15.0312 2744 Microsoft Office Groove Audit Service - ok
09:11:15.0328 2744 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:11:15.0500 2744 mnmdd - ok
09:11:15.0546 2744 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
09:11:15.0687 2744 mnmsrvc - ok
09:11:15.0734 2744 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:11:15.0859 2744 Modem - ok
09:11:15.0875 2744 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:11:16.0031 2744 Mouclass - ok
09:11:16.0062 2744 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:11:16.0203 2744 MountMgr - ok
09:11:16.0203 2744 mraid35x - ok
09:11:16.0281 2744 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:11:16.0453 2744 MRxDAV - ok
09:11:16.0609 2744 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:11:16.0718 2744 MRxSmb - ok
09:11:16.0734 2744 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:11:16.0875 2744 MSDTC - ok
09:11:16.0890 2744 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:11:17.0031 2744 Msfs - ok
09:11:17.0031 2744 MSIServer - ok
09:11:17.0062 2744 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:11:17.0203 2744 MSKSSRV - ok
09:11:17.0234 2744 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:11:17.0390 2744 MSPCLOCK - ok
09:11:17.0421 2744 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:11:17.0546 2744 MSPQM - ok
09:11:17.0578 2744 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:11:17.0718 2744 mssmbios - ok
09:11:17.0750 2744 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:11:17.0890 2744 MSTEE - ok
09:11:17.0937 2744 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:11:18.0078 2744 Mup - ok
09:11:18.0125 2744 [ C6EEE2261681396E36F3D8A003582C9E ] MxlW2k C:\WINDOWS\system32\drivers\MxlW2k.sys
09:11:18.0140 2744 MxlW2k ( UnsignedFile.Multi.Generic ) - warning
09:11:18.0140 2744 MxlW2k - detected UnsignedFile.Multi.Generic (1)
09:11:18.0187 2744 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:11:18.0359 2744 NABTSFEC - ok
09:11:18.0453 2744 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:11:18.0593 2744 NDIS - ok
09:11:18.0625 2744 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:11:18.0765 2744 NdisIP - ok
09:11:18.0781 2744 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:11:18.0937 2744 NdisTapi - ok
09:11:18.0968 2744 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:11:19.0109 2744 Ndisuio - ok
09:11:19.0156 2744 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:11:19.0296 2744 NdisWan - ok
09:11:19.0312 2744 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:11:19.0500 2744 NDProxy - ok
09:11:19.0546 2744 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:11:19.0687 2744 NetBIOS - ok
09:11:19.0750 2744 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:11:19.0875 2744 NetBT - ok
09:11:19.0937 2744 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
09:11:20.0078 2744 NetDDE - ok
09:11:20.0125 2744 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:11:20.0250 2744 NetDDEdsdm - ok
09:11:20.0359 2744 [ 38CE271DAC632044AA18A7457CBBE2D2 ] NETGEARGenieDaemon C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
09:11:20.0390 2744 NETGEARGenieDaemon - ok
09:11:20.0421 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\System32\lsass.exe
09:11:20.0562 2744 Netlogon - ok
09:11:20.0656 2744 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
09:11:21.0156 2744 Netman - ok
09:11:21.0203 2744 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:11:21.0375 2744 NIC1394 - ok
09:11:21.0468 2744 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
09:11:21.0562 2744 Nla - ok
09:11:21.0609 2744 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\WINDOWS\system32\drivers\npf.sys
09:11:21.0625 2744 NPF - ok
09:11:21.0656 2744 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:11:21.0781 2744 Npfs - ok
09:11:21.0968 2744 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:11:22.0187 2744 Ntfs - ok
09:11:22.0203 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
09:11:22.0359 2744 NtLmSsp - ok
09:11:22.0515 2744 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:11:22.0734 2744 NtmsSvc - ok
09:11:22.0781 2744 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:11:22.0953 2744 Null - ok
09:11:24.0140 2744 [ 34C114DA0A5E03219444E46F122FF5A3 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:11:25.0218 2744 nv ( UnsignedFile.Multi.Generic ) - warning
09:11:25.0218 2744 nv - detected UnsignedFile.Multi.Generic (1)
09:11:25.0312 2744 [ 9B7ACCFAC9B19B98D54F45A9CF61CA39 ] nvcap C:\WINDOWS\system32\DRIVERS\nvcap.sys
09:11:25.0343 2744 nvcap - ok
09:11:25.0437 2744 [ FF8112711B5F9823D4595579B2130955 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
09:11:25.0468 2744 NVSvc ( UnsignedFile.Multi.Generic ) - warning
09:11:25.0468 2744 NVSvc - detected UnsignedFile.Multi.Generic (1)
09:11:25.0500 2744 [ BEF79A5B5A01BB749AFBED27837E6311 ] NVXBAR C:\WINDOWS\system32\DRIVERS\NVxbar.sys
09:11:25.0515 2744 NVXBAR - ok
09:11:25.0546 2744 [ 01621905AE34BC24AAA2FDDB93977299 ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
09:11:25.0578 2744 nv_agp - ok
09:11:25.0609 2744 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:11:25.0781 2744 NwlnkFlt - ok
09:11:25.0812 2744 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:11:25.0984 2744 NwlnkFwd - ok
09:11:26.0203 2744 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:11:26.0296 2744 odserv - ok
09:11:26.0328 2744 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:11:26.0468 2744 ohci1394 - ok
09:11:26.0546 2744 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:11:26.0562 2744 ose - ok
09:11:26.0625 2744 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:11:26.0765 2744 Parport - ok
09:11:26.0796 2744 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:11:26.0953 2744 PartMgr - ok
09:11:26.0968 2744 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:11:27.0125 2744 ParVdm - ok
09:11:27.0156 2744 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:11:27.0296 2744 PCI - ok
09:11:27.0312 2744 PCIDump - ok
09:11:27.0375 2744 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:11:27.0593 2744 PCIIde - ok
09:11:27.0656 2744 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:11:27.0812 2744 Pcmcia - ok
09:11:27.0812 2744 PDCOMP - ok
09:11:27.0828 2744 PDFRAME - ok
09:11:27.0843 2744 PDRELI - ok
09:11:27.0843 2744 PDRFRAME - ok
09:11:27.0859 2744 perc2 - ok
09:11:27.0875 2744 perc2hib - ok
09:11:27.0937 2744 [ E5AC9F8C128B597DD7919AF96B84172E ] pfc C:\WINDOWS\system32\drivers\pfc.sys
09:11:27.0953 2744 pfc ( UnsignedFile.Multi.Generic ) - warning
09:11:27.0953 2744 pfc - detected UnsignedFile.Multi.Generic (1)
09:11:28.0000 2744 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
09:11:28.0093 2744 PlugPlay - ok
09:11:28.0140 2744 [ 901C43516504CBE582E4C4193E00876A ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:11:28.0171 2744 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
09:11:28.0171 2744 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
09:11:28.0171 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
09:11:28.0343 2744 PolicyAgent - ok
09:11:28.0390 2744 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:11:28.0531 2744 PptpMiniport - ok
09:11:28.0546 2744 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:11:28.0703 2744 Processor - ok
09:11:28.0718 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:11:28.0843 2744 ProtectedStorage - ok
09:11:28.0890 2744 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
09:11:28.0906 2744 Ps2 - ok
09:11:28.0937 2744 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:11:29.0078 2744 PSched - ok
09:11:29.0109 2744 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:11:29.0250 2744 Ptilink - ok
09:11:29.0296 2744 [ 7E1EACDECBA39E0B2A35306426F0DECC ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
09:11:29.0312 2744 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
09:11:29.0312 2744 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
09:11:29.0328 2744 ql1080 - ok
09:11:29.0343 2744 Ql10wnt - ok
09:11:29.0343 2744 ql12160 - ok
09:11:29.0359 2744 ql1240 - ok
09:11:29.0390 2744 ql1280 - ok
09:11:29.0421 2744 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:11:29.0562 2744 RasAcd - ok
09:11:29.0625 2744 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:11:29.0765 2744 RasAuto - ok
09:11:29.0796 2744 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:11:29.0937 2744 Rasl2tp - ok
09:11:30.0015 2744 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
09:11:30.0546 2744 RasMan - ok
09:11:30.0578 2744 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:11:30.0703 2744 RasPppoe - ok
09:11:30.0718 2744 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:11:30.0875 2744 Raspti - ok
09:11:30.0953 2744 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:11:31.0484 2744 Rdbss - ok
09:11:31.0515 2744 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:11:31.0687 2744 RDPCDD - ok
09:11:31.0765 2744 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:11:32.0265 2744 RDPWD - ok
09:11:32.0359 2744 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:11:32.0500 2744 RDSessMgr - ok
09:11:32.0531 2744 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:11:32.0656 2744 redbook - ok
09:11:32.0703 2744 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:11:32.0859 2744 RemoteAccess - ok
09:11:32.0890 2744 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\System32\locator.exe
09:11:33.0062 2744 RpcLocator - ok
09:11:33.0203 2744 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:11:33.0390 2744 RpcSs - ok
09:11:33.0453 2744 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
09:11:33.0625 2744 RSVP - ok
09:11:33.0656 2744 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
09:11:33.0671 2744 rtl8139 - ok
09:11:33.0765 2744 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
09:11:33.0921 2744 S3Psddr - ok
09:11:33.0937 2744 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
09:11:34.0078 2744 SamSs - ok
09:11:34.0109 2744 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
09:11:34.0109 2744 SASDIFSV - ok
09:11:34.0140 2744 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
09:11:34.0156 2744 SASKUTIL - ok
09:11:34.0203 2744 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:11:34.0375 2744 SCardSvr - ok
09:11:34.0468 2744 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:11:34.0609 2744 Schedule - ok
09:11:34.0640 2744 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:11:34.0796 2744 Secdrv - ok
09:11:34.0812 2744 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
09:11:34.0984 2744 seclogon - ok
09:11:35.0000 2744 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
09:11:35.0140 2744 SENS - ok
09:11:35.0171 2744 [ A2D868AEEFF612E70E213C451A70CAFB ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:11:35.0312 2744 Serenum - ok
09:11:35.0359 2744 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:11:35.0515 2744 Serial - ok
09:11:35.0546 2744 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:11:35.0687 2744 Sfloppy - ok
09:11:35.0812 2744 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:11:36.0015 2744 SharedAccess - ok
09:11:36.0078 2744 [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:11:36.0218 2744 ShellHWDetection - ok
09:11:36.0234 2744 Simbad - ok
09:11:36.0375 2744 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
09:11:36.0484 2744 SiS315 - ok
09:11:36.0531 2744 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
09:11:36.0546 2744 SISAGP - ok
09:11:36.0578 2744 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
09:11:36.0609 2744 SiSkp - ok
09:11:36.0625 2744 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:11:36.0765 2744 SLIP - ok
09:11:36.0765 2744 Sparrow - ok
09:11:36.0812 2744 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:11:37.0312 2744 splitter - ok
09:11:37.0421 2744 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:11:37.0968 2744 Spooler - ok
09:11:38.0000 2744 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:11:38.0156 2744 sr - ok
09:11:38.0234 2744 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\System32\srsvc.dll
09:11:38.0390 2744 srservice - ok
09:11:38.0515 2744 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:11:38.0625 2744 Srv - ok
09:11:38.0671 2744 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:11:38.0812 2744 SSDPSRV - ok
09:11:38.0937 2744 [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:11:39.0171 2744 stisvc - ok
09:11:39.0218 2744 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:11:39.0375 2744 streamip - ok
09:11:39.0421 2744 [ 2087B202CFE8A2F8A59CECFFFBEC58D5 ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
09:11:39.0453 2744 SunkFilt ( UnsignedFile.Multi.Generic ) - warning
09:11:39.0453 2744 SunkFilt - detected UnsignedFile.Multi.Generic (1)
09:11:39.0453 2744 Sunkfiltp - ok
09:11:39.0484 2744 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:11:39.0625 2744 swenum - ok
09:11:39.0687 2744 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:11:39.0828 2744 swmidi - ok
09:11:39.0843 2744 SwPrv - ok
09:11:39.0859 2744 symc810 - ok
09:11:39.0859 2744 symc8xx - ok
09:11:39.0875 2744 sym_hi - ok
09:11:39.0890 2744 sym_u3 - ok
09:11:39.0921 2744 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:11:40.0078 2744 sysaudio - ok
09:11:40.0140 2744 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:11:40.0296 2744 SysmonLog - ok
09:11:40.0406 2744 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:11:40.0937 2744 TapiSrv - ok
09:11:41.0078 2744 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:11:41.0250 2744 Tcpip - ok
09:11:41.0281 2744 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:11:41.0421 2744 TDPIPE - ok
09:11:41.0453 2744 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:11:41.0578 2744 TDTCP - ok
09:11:41.0625 2744 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:11:41.0765 2744 TermDD - ok
09:11:41.0890 2744 [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService C:\WINDOWS\System32\termsrv.dll
09:11:42.0031 2744 TermService - ok
09:11:42.0093 2744 [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:11:42.0250 2744 Themes - ok
09:11:42.0250 2744 TosIde - ok
09:11:42.0312 2744 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:11:42.0468 2744 TrkWks - ok
09:11:42.0531 2744 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:11:42.0656 2744 Udfs - ok
09:11:42.0671 2744 ultra - ok
09:11:42.0750 2744 [ A4815A4884898F355A3513E60843A4FD ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:11:43.0296 2744 Update - ok
09:11:43.0421 2744 [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost C:\WINDOWS\System32\upnphost.dll
09:11:43.0562 2744 upnphost - ok
09:11:43.0593 2744 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
09:11:43.0750 2744 UPS - ok
09:11:43.0781 2744 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:11:43.0921 2744 usbccgp - ok
09:11:43.0968 2744 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:11:44.0093 2744 usbehci - ok
09:11:44.0125 2744 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:11:44.0281 2744 usbhub - ok
09:11:44.0312 2744 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:11:44.0468 2744 usbohci - ok
09:11:44.0500 2744 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:11:44.0640 2744 usbprint - ok
09:11:44.0671 2744 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:11:44.0812 2744 usbscan - ok
09:11:44.0828 2744 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:11:44.0968 2744 USBSTOR - ok
09:11:45.0000 2744 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:11:45.0140 2744 usbuhci - ok
09:11:45.0171 2744 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:11:45.0312 2744 VgaSave - ok
09:11:45.0359 2744 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
09:11:45.0375 2744 viaagp1 - ok
09:11:45.0484 2744 [ E8C619C6C6BDE90D130DDA87150E1944 ] viagfx C:\WINDOWS\system32\DRIVERS\vtmini.sys
09:11:45.0515 2744 viagfx - ok
09:11:45.0546 2744 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
09:11:45.0687 2744 ViaIde - ok
09:11:45.0718 2744 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:11:45.0843 2744 VolSnap - ok
09:11:45.0968 2744 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
09:11:46.0156 2744 VSS - ok
09:11:46.0218 2744 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\System32\w32time.dll
09:11:46.0406 2744 W32Time - ok
09:11:46.0453 2744 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:11:46.0593 2744 Wanarp - ok
09:11:46.0609 2744 WDICA - ok
09:11:46.0656 2744 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:11:47.0156 2744 wdmaud - ok
09:11:47.0218 2744 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
09:11:47.0765 2744 WebClient - ok
09:11:47.0875 2744 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:11:48.0015 2744 winmgmt - ok
09:11:48.0062 2744 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:11:48.0078 2744 WmdmPmSN - ok
09:11:48.0171 2744 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
09:11:48.0312 2744 WmiApSrv - ok
09:11:48.0656 2744 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:11:48.0906 2744 WMPNetworkSvc - ok
09:11:48.0937 2744 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
09:11:48.0968 2744 WpdUsb - ok
09:11:49.0000 2744 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
09:11:49.0156 2744 WS2IFSL - ok
09:11:49.0203 2744 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:11:49.0390 2744 wscsvc - ok
09:11:49.0437 2744 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:11:49.0578 2744 WSTCODEC - ok
09:11:49.0609 2744 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\System32\wuauserv.dll
09:11:49.0750 2744 wuauserv - ok
09:11:49.0796 2744 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:11:49.0828 2744 WudfPf - ok
09:11:49.0875 2744 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:11:49.0906 2744 WudfRd - ok
09:11:49.0953 2744 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:11:49.0984 2744 WudfSvc - ok
09:11:50.0109 2744 [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:11:50.0375 2744 WZCSVC - ok
09:11:50.0437 2744 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:11:50.0609 2744 xmlprov - ok
09:11:50.0656 2744 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
09:11:50.0703 2744 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
09:11:50.0781 2744 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
09:11:50.0796 2744 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
09:11:50.0796 2744 ================ Scan global ===============================
09:11:50.0843 2744 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
09:11:50.0953 2744 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:11:51.0062 2744 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:11:51.0109 2744 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
09:11:51.0125 2744 [Global] - ok
09:11:51.0125 2744 ================ Scan MBR ==================================
09:11:51.0156 2744 [ 8CC68602644010DFDB2A22CB60DDF258 ] \Device\Harddisk0\DR0
09:11:51.0515 2744 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:11:51.0515 2744 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:11:51.0515 2744 ================ Scan VBR ==================================
09:11:51.0531 2744 [ 0142BFA700EB464243DCD8C0161288B1 ] \Device\Harddisk0\DR0\Partition1
09:11:51.0531 2744 \Device\Harddisk0\DR0\Partition1 - ok
09:11:51.0531 2744 [ 5B8C2568CEFDEA46DF849AA868747BC1 ] \Device\Harddisk0\DR0\Partition2
09:11:51.0546 2744 \Device\Harddisk0\DR0\Partition2 - ok
09:11:51.0546 2744 ============================================================
09:11:51.0546 2744 Scan finished
09:11:51.0546 2744 ============================================================
09:11:51.0671 3164 Detected object count: 9
09:11:51.0671 3164 Actual detected object count: 9
09:12:16.0031 3164 aspnet_state ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 MxlW2k ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 nv ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 nv ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 NVSvc ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 pfc ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 pfc ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0031 3164 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0031 3164 PxHelp20 ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0046 3164 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0046 3164 SunkFilt ( UnsignedFile.Multi.Generic ) - skipped by user
09:12:16.0046 3164 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Skip
09:12:16.0046 3164 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user
09:12:16.0046 3164 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
09:12:21.0015 0444 ============================================================
09:12:21.0015 0444 Scan started
09:12:21.0015 0444 Mode: Manual; SigCheck; TDLFS;
09:12:21.0015 0444 ============================================================
09:12:21.0265 0444 ================ Scan system memory ========================
09:12:21.0281 0444 System memory - ok
09:12:21.0281 0444 ================ Scan services =============================
(Part2):
09:12:21.0406 0444 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
09:12:21.0421 0444 !SASCORE - ok
09:12:21.0765 0444 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:12:21.0781 0444 Aavmker4 - ok
09:12:21.0796 0444 Abiosdsk - ok
09:12:21.0796 0444 abp480n5 - ok
09:12:21.0875 0444 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:12:22.0015 0444 ACPI - ok
09:12:22.0046 0444 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:12:22.0203 0444 ACPIEC - ok
09:12:22.0328 0444 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:12:22.0343 0444 AdobeFlashPlayerUpdateSvc - ok
09:12:22.0359 0444 adpu160m - ok
09:12:22.0421 0444 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
09:12:22.0937 0444 aec - ok
09:12:23.0015 0444 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:12:23.0031 0444 AFD - ok
09:12:23.0062 0444 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
09:12:23.0078 0444 AFS2K - ok
09:12:23.0109 0444 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:12:23.0234 0444 agp440 - ok
09:12:23.0250 0444 Aha154x - ok
09:12:23.0265 0444 aic78u2 - ok
09:12:23.0265 0444 aic78xx - ok
09:12:24.0515 0444 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
09:12:25.0734 0444 ALCXWDM - ok
09:12:25.0765 0444 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:12:25.0906 0444 Alerter - ok
09:12:25.0937 0444 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
09:12:26.0078 0444 ALG - ok
09:12:26.0093 0444 AliIde - ok
09:12:26.0140 0444 [ 680AD1C1BB16239E28D8F33A54A7A3C7 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
09:12:26.0265 0444 AmdK7 - ok
09:12:26.0265 0444 amsint - ok
09:12:26.0281 0444 AppMgmt - ok
09:12:26.0328 0444 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:12:26.0453 0444 Arp1394 - ok
09:12:26.0468 0444 asc - ok
09:12:26.0468 0444 asc3350p - ok
09:12:26.0484 0444 asc3550 - ok
09:12:26.0593 0444 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
09:12:26.0609 0444 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
09:12:26.0609 0444 aspnet_state - detected UnsignedFile.Multi.Generic (1)
09:12:26.0640 0444 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:12:26.0656 0444 aswFsBlk - ok
09:12:26.0703 0444 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:12:26.0718 0444 aswMon2 - ok
09:12:26.0750 0444 [ 7C9F0A2AB17D52261A9252A2EB320884 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:12:26.0750 0444 aswRdr - ok
09:12:26.0984 0444 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:12:27.0171 0444 aswSnx - ok
09:12:27.0296 0444 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:12:27.0390 0444 aswSP - ok
09:12:27.0437 0444 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:12:27.0453 0444 aswTdi - ok
09:12:27.0468 0444 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:12:27.0609 0444 AsyncMac - ok
09:12:27.0640 0444 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:12:27.0765 0444 atapi - ok
09:12:27.0781 0444 Atdisk - ok
09:12:27.0843 0444 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:12:27.0968 0444 Atmarpc - ok
09:12:28.0015 0444 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:12:28.0171 0444 AudioSrv - ok
09:12:28.0203 0444 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:12:28.0359 0444 audstub - ok
09:12:28.0421 0444 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:12:28.0437 0444 avast! Antivirus - ok
09:12:28.0843 0444 [ 124D235185004F699FAF115EBD85733E ] AVG Security Toolbar Service C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
09:12:29.0093 0444 AVG Security Toolbar Service - ok
09:12:29.0125 0444 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:12:29.0281 0444 Beep - ok
09:12:29.0421 0444 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\System32\qmgr.dll
09:12:29.0640 0444 BITS - ok
09:12:29.0703 0444 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
09:12:29.0828 0444 Browser - ok
09:12:29.0859 0444 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:12:30.0000 0444 cbidf2k - ok
09:12:30.0046 0444 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:12:30.0187 0444 CCDECODE - ok
09:12:30.0203 0444 cd20xrnt - ok
09:12:30.0234 0444 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:12:30.0375 0444 Cdaudio - ok
09:12:30.0421 0444 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:12:30.0546 0444 Cdfs - ok
09:12:30.0578 0444 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:12:30.0718 0444 Cdrom - ok
09:12:30.0718 0444 Changer - ok
09:12:30.0734 0444 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:12:30.0875 0444 CiSvc - ok
09:12:30.0921 0444 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:12:31.0046 0444 ClipSrv - ok
09:12:31.0062 0444 CmdIde - ok
09:12:31.0062 0444 COMSysApp - ok
09:12:31.0078 0444 Cpqarray - ok
09:12:31.0125 0444 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:12:31.0250 0444 CryptSvc - ok
09:12:31.0265 0444 dac2w2k - ok
09:12:31.0265 0444 dac960nt - ok
09:12:31.0406 0444 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:12:31.0578 0444 DcomLaunch - ok
09:12:31.0890 0444 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:12:32.0421 0444 Dhcp - ok
09:12:32.0453 0444 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:12:32.0609 0444 Disk - ok
09:12:32.0609 0444 dmadmin - ok
09:12:33.0000 0444 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:12:33.0281 0444 dmboot - ok
09:12:33.0359 0444 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:12:33.0515 0444 dmio - ok
09:12:33.0546 0444 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:12:33.0703 0444 dmload - ok
09:12:33.0750 0444 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
09:12:33.0953 0444 dmserver - ok
09:12:33.0984 0444 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:12:34.0140 0444 DMusic - ok
09:12:34.0171 0444 [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:12:34.0359 0444 Dnscache - ok
09:12:34.0359 0444 dpti2o - ok
09:12:34.0375 0444 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:12:34.0640 0444 drmkaud - ok
09:12:34.0671 0444 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:12:34.0968 0444 ERSvc - ok
09:12:35.0031 0444 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
09:12:35.0125 0444 Eventlog - ok
09:12:35.0234 0444 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\System32\es.dll
09:12:35.0250 0444 EventSystem - ok
09:12:35.0312 0444 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:12:35.0453 0444 Fastfat - ok
09:12:35.0515 0444 [ 6339AAF63240DF0634902B98C0F56049 ] fasttx2k C:\WINDOWS\system32\DRIVERS\fasttx2k.sys
09:12:35.0531 0444 fasttx2k - ok
09:12:35.0593 0444 [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:12:35.0843 0444 FastUserSwitchingCompatibility - ok
09:12:35.0968 0444 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
09:12:36.0125 0444 Fax - ok
09:12:36.0140 0444 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:12:36.0281 0444 Fdc - ok
09:12:36.0312 0444 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:12:36.0453 0444 Fips - ok
09:12:36.0468 0444 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:12:36.0593 0444 Flpydisk - ok
09:12:36.0656 0444 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:12:36.0859 0444 FltMgr - ok
09:12:36.0875 0444 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:12:37.0000 0444 Fs_Rec - ok
09:12:37.0046 0444 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:12:37.0218 0444 Ftdisk - ok
09:12:37.0250 0444 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:12:37.0390 0444 Gpc - ok
09:12:37.0484 0444 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:12:37.0484 0444 gupdate - ok
09:12:37.0531 0444 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:12:37.0546 0444 gupdatem - ok
09:12:37.0640 0444 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:12:37.0656 0444 gusvc - ok
09:12:37.0734 0444 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:12:37.0937 0444 helpsvc - ok
09:12:37.0937 0444 HidServ - ok
09:12:37.0953 0444 hpn - ok
09:12:38.0000 0444 [ 5FABA4775D4C61E55EC669D643FFC71F ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:12:38.0031 0444 HPZid412 - ok
09:12:38.0046 0444 [ A3C43980EE1F1BEAC778B44EA65DBDD4 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:12:38.0093 0444 HPZipr12 - ok
09:12:38.0171 0444 [ 2906949BD4E206F2BB0DD1896CE9F66F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:12:38.0218 0444 HPZius12 - ok
09:12:38.0375 0444 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:12:38.0421 0444 HTTP - ok
09:12:38.0515 0444 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:12:38.0859 0444 HTTPFilter - ok
09:12:38.0875 0444 i2omgmt - ok
09:12:38.0875 0444 i2omp - ok
09:12:38.0921 0444 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:12:39.0250 0444 i8042prt - ok
09:12:39.0312 0444 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
09:12:39.0343 0444 ialm - ok
09:12:39.0359 0444 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:12:39.0734 0444 Imapi - ok
09:12:39.0953 0444 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\System32\imapi.exe
09:12:40.0515 0444 ImapiService - ok
09:12:40.0515 0444 ini910u - ok
09:12:40.0593 0444 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
09:12:41.0062 0444 IntelIde - ok
09:12:41.0109 0444 [ 279FB78702454DFF2BB445F238C048D2 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:12:41.0312 0444 intelppm - ok
09:12:41.0328 0444 [ 4448006B6BC60E6C027932CFC38D6855 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:12:41.0500 0444 ip6fw - ok
09:12:41.0531 0444 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:12:41.0687 0444 IpFilterDriver - ok
09:12:41.0703 0444 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:12:41.0906 0444 IpInIp - ok
09:12:41.0968 0444 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:12:42.0125 0444 IpNat - ok
09:12:42.0156 0444 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:12:42.0281 0444 IPSec - ok
09:12:42.0312 0444 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:12:42.0453 0444 IRENUM - ok
09:12:42.0484 0444 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:12:42.0625 0444 isapnp - ok
09:12:42.0640 0444 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:12:42.0843 0444 Kbdclass - ok
09:12:42.0921 0444 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:12:43.0468 0444 kmixer - ok
09:12:43.0515 0444 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:12:43.0531 0444 KSecDD - ok
09:12:43.0578 0444 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:12:44.0234 0444 lanmanserver - ok
09:12:44.0296 0444 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:12:44.0328 0444 lanmanworkstation - ok
09:12:44.0328 0444 lbrtfdc - ok
09:12:44.0359 0444 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:12:44.0484 0444 LmHosts - ok
09:12:44.0718 0444 [ 829EF680A308C12E2A80E5E0DA0D958D ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
09:12:45.0187 0444 ltmodem5 - ok
09:12:45.0218 0444 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:12:45.0359 0444 Messenger - ok
09:12:45.0453 0444 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:12:45.0468 0444 Microsoft Office Groove Audit Service - ok
09:12:45.0500 0444 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:12:45.0640 0444 mnmdd - ok
09:12:45.0687 0444 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
09:12:45.0906 0444 mnmsrvc - ok
09:12:45.0937 0444 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:12:46.0078 0444 Modem - ok
09:12:46.0093 0444 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:12:46.0234 0444 Mouclass - ok
09:12:46.0265 0444 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:12:46.0390 0444 MountMgr - ok
09:12:46.0390 0444 mraid35x - ok
09:12:46.0453 0444 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:12:46.0593 0444 MRxDAV - ok
09:12:46.0750 0444 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:12:46.0921 0444 MRxSmb - ok
09:12:46.0953 0444 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:12:47.0125 0444 MSDTC - ok
09:12:47.0140 0444 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:12:47.0328 0444 Msfs - ok
09:12:47.0343 0444 MSIServer - ok
09:12:47.0359 0444 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:12:47.0484 0444 MSKSSRV - ok
09:12:47.0500 0444 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:12:47.0625 0444 MSPCLOCK - ok
09:12:47.0671 0444 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:12:47.0859 0444 MSPQM - ok
09:12:47.0890 0444 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:12:48.0015 0444 mssmbios - ok
09:12:48.0046 0444 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:12:48.0187 0444 MSTEE - ok
09:12:48.0234 0444 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:12:48.0375 0444 Mup - ok
09:12:48.0421 0444 [ C6EEE2261681396E36F3D8A003582C9E ] MxlW2k C:\WINDOWS\system32\drivers\MxlW2k.sys
09:12:48.0421 0444 MxlW2k ( UnsignedFile.Multi.Generic ) - warning
09:12:48.0421 0444 MxlW2k - detected UnsignedFile.Multi.Generic (1)
09:12:48.0468 0444 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:12:48.0609 0444 NABTSFEC - ok
09:12:48.0703 0444 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:12:48.0906 0444 NDIS - ok
09:12:48.0937 0444 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:12:49.0078 0444 NdisIP - ok
09:12:49.0125 0444 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:12:49.0265 0444 NdisTapi - ok
09:12:49.0281 0444 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:12:49.0421 0444 Ndisuio - ok
09:12:49.0453 0444 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:12:49.0593 0444 NdisWan - ok
09:12:49.0609 0444 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:12:49.0843 0444 NDProxy - ok
09:12:49.0921 0444 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:12:50.0062 0444 NetBIOS - ok
09:12:50.0125 0444 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:12:50.0250 0444 NetBT - ok
09:12:50.0312 0444 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
09:12:50.0453 0444 NetDDE - ok
09:12:50.0500 0444 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:12:50.0640 0444 NetDDEdsdm - ok
09:12:50.0734 0444 [ 38CE271DAC632044AA18A7457CBBE2D2 ] NETGEARGenieDaemon C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
09:12:50.0796 0444 NETGEARGenieDaemon - ok
09:12:50.0875 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\System32\lsass.exe
09:12:51.0000 0444 Netlogon - ok
09:12:51.0078 0444 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
09:12:51.0593 0444 Netman - ok
09:12:51.0890 0444 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:12:52.0031 0444 NIC1394 - ok
09:12:52.0140 0444 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
09:12:52.0218 0444 Nla - ok
09:12:52.0265 0444 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\WINDOWS\system32\drivers\npf.sys
09:12:52.0281 0444 NPF - ok
09:12:52.0312 0444 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:12:52.0437 0444 Npfs - ok
09:12:52.0625 0444 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:12:52.0890 0444 Ntfs - ok
09:12:52.0906 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
09:12:53.0031 0444 NtLmSsp - ok
09:12:53.0203 0444 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:12:53.0421 0444 NtmsSvc - ok
09:12:53.0437 0444 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:12:53.0578 0444 Null - ok
09:12:55.0031 0444 [ 34C114DA0A5E03219444E46F122FF5A3 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:12:56.0187 0444 nv ( UnsignedFile.Multi.Generic ) - warning
09:12:56.0187 0444 nv - detected UnsignedFile.Multi.Generic (1)
09:12:56.0265 0444 [ 9B7ACCFAC9B19B98D54F45A9CF61CA39 ] nvcap C:\WINDOWS\system32\DRIVERS\nvcap.sys
09:12:56.0296 0444 nvcap - ok
09:12:56.0343 0444 [ FF8112711B5F9823D4595579B2130955 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
09:12:56.0359 0444 NVSvc ( UnsignedFile.Multi.Generic ) - warning
09:12:56.0359 0444 NVSvc - detected UnsignedFile.Multi.Generic (1)
09:12:56.0375 0444 [ BEF79A5B5A01BB749AFBED27837E6311 ] NVXBAR C:\WINDOWS\system32\DRIVERS\NVxbar.sys
09:12:56.0406 0444 NVXBAR - ok
09:12:56.0421 0444 [ 01621905AE34BC24AAA2FDDB93977299 ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
09:12:56.0437 0444 nv_agp - ok
09:12:56.0468 0444 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:12:56.0609 0444 NwlnkFlt - ok
09:12:56.0640 0444 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:12:56.0875 0444 NwlnkFwd - ok
09:12:57.0109 0444 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:12:57.0234 0444 odserv - ok
09:12:57.0250 0444 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:12:57.0406 0444 ohci1394 - ok
09:12:57.0468 0444 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:12:57.0484 0444 ose - ok
09:12:57.0546 0444 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:12:57.0671 0444 Parport - ok
09:12:57.0703 0444 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:12:57.0921 0444 PartMgr - ok
09:12:57.0953 0444 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:12:58.0125 0444 ParVdm - ok
09:12:58.0156 0444 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:12:58.0296 0444 PCI - ok
09:12:58.0296 0444 PCIDump - ok
09:12:58.0328 0444 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:12:58.0468 0444 PCIIde - ok
09:12:58.0531 0444 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:12:58.0671 0444 Pcmcia - ok
09:12:58.0671 0444 PDCOMP - ok
09:12:58.0687 0444 PDFRAME - ok
09:12:58.0703 0444 PDRELI - ok
09:12:58.0703 0444 PDRFRAME - ok
09:12:58.0718 0444 perc2 - ok
09:12:58.0734 0444 perc2hib - ok
09:12:58.0890 0444 [ E5AC9F8C128B597DD7919AF96B84172E ] pfc C:\WINDOWS\system32\drivers\pfc.sys
09:12:58.0890 0444 pfc ( UnsignedFile.Multi.Generic ) - warning
09:12:58.0890 0444 pfc - detected UnsignedFile.Multi.Generic (1)
09:12:58.0953 0444 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
09:12:59.0031 0444 PlugPlay - ok
09:12:59.0093 0444 [ 901C43516504CBE582E4C4193E00876A ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:12:59.0125 0444 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
09:12:59.0125 0444 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
09:12:59.0140 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
09:12:59.0265 0444 PolicyAgent - ok
09:12:59.0312 0444 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:12:59.0437 0444 PptpMiniport - ok
09:12:59.0453 0444 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:12:59.0578 0444 Processor - ok
09:12:59.0593 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:12:59.0734 0444 ProtectedStorage - ok
09:12:59.0890 0444 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
09:12:59.0906 0444 Ps2 - ok
09:12:59.0937 0444 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:13:00.0078 0444 PSched - ok
09:13:00.0109 0444 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:13:00.0250 0444 Ptilink - ok
09:13:00.0281 0444 [ 7E1EACDECBA39E0B2A35306426F0DECC ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
09:13:00.0296 0444 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
09:13:00.0296 0444 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
09:13:00.0296 0444 ql1080 - ok
09:13:00.0312 0444 Ql10wnt - ok
09:13:00.0328 0444 ql12160 - ok
09:13:00.0328 0444 ql1240 - ok
09:13:00.0343 0444 ql1280 - ok
09:13:00.0375 0444 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:13:00.0515 0444 RasAcd - ok
09:13:00.0578 0444 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:13:00.0718 0444 RasAuto - ok
09:13:00.0765 0444 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:13:00.0890 0444 Rasl2tp - ok
09:13:00.0968 0444 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
09:13:01.0515 0444 RasMan - ok
09:13:01.0546 0444 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:13:01.0671 0444 RasPppoe - ok
09:13:01.0687 0444 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:13:01.0828 0444 Raspti - ok
09:13:01.0906 0444 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:13:02.0468 0444 Rdbss - ok
09:13:02.0468 0444 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:13:02.0625 0444 RDPCDD - ok
09:13:02.0687 0444 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:13:03.0234 0444 RDPWD - ok
09:13:03.0328 0444 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:13:03.0468 0444 RDSessMgr - ok
09:13:03.0531 0444 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:13:03.0656 0444 redbook - ok
09:13:03.0703 0444 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:13:03.0937 0444 RemoteAccess - ok
09:13:03.0968 0444 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\System32\locator.exe
09:13:04.0156 0444 RpcLocator - ok
09:13:04.0281 0444 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:13:04.0437 0444 RpcSs - ok
09:13:04.0500 0444 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
09:13:04.0640 0444 RSVP - ok
09:13:04.0671 0444 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
09:13:04.0687 0444 rtl8139 - ok
09:13:04.0906 0444 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
09:13:05.0031 0444 S3Psddr - ok
09:13:05.0062 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
09:13:05.0203 0444 SamSs - ok
09:13:05.0234 0444 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
09:13:05.0234 0444 SASDIFSV - ok
09:13:05.0265 0444 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
09:13:05.0281 0444 SASKUTIL - ok
09:13:05.0328 0444 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:13:05.0468 0444 SCardSvr - ok
09:13:05.0531 0444 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:13:05.0671 0444 Schedule - ok
09:13:05.0718 0444 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:13:05.0906 0444 Secdrv - ok
09:13:05.0953 0444 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
09:13:06.0109 0444 seclogon - ok
09:13:06.0125 0444 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
09:13:06.0265 0444 SENS - ok
09:13:06.0296 0444 [ A2D868AEEFF612E70E213C451A70CAFB ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:13:06.0421 0444 Serenum - ok
09:13:06.0453 0444 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:13:06.0578 0444 Serial - ok
09:13:06.0609 0444 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:13:06.0734 0444 Sfloppy - ok
09:13:06.0968 0444 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:13:07.0187 0444 SharedAccess - ok
09:13:07.0250 0444 [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:13:07.0406 0444 ShellHWDetection - ok
09:13:07.0406 0444 Simbad - ok
09:13:07.0562 0444 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
09:13:07.0656 0444 SiS315 - ok
09:13:07.0703 0444 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
09:13:07.0718 0444 SISAGP - ok
09:13:07.0750 0444 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
09:13:07.0843 0444 SiSkp - ok
09:13:07.0890 0444 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:13:08.0015 0444 SLIP - ok
09:13:08.0015 0444 Sparrow - ok
09:13:08.0046 0444 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:13:08.0562 0444 splitter - ok
09:13:08.0609 0444 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:13:09.0265 0444 Spooler - ok
09:13:09.0296 0444 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:13:09.0437 0444 sr - ok
09:13:09.0515 0444 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\System32\srsvc.dll
09:13:09.0671 0444 srservice - ok
09:13:09.0890 0444 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:13:10.0000 0444 Srv - ok
09:13:10.0062 0444 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:13:10.0203 0444 SSDPSRV - ok
09:13:10.0312 0444 [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:13:10.0531 0444 stisvc - ok
09:13:10.0578 0444 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:13:10.0703 0444 streamip - ok
09:13:10.0765 0444 [ 2087B202CFE8A2F8A59CECFFFBEC58D5 ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
09:13:10.0812 0444 SunkFilt ( UnsignedFile.Multi.Generic ) - warning
09:13:10.0812 0444 SunkFilt - detected UnsignedFile.Multi.Generic (1)
09:13:10.0859 0444 Sunkfiltp - ok
09:13:10.0890 0444 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:13:11.0015 0444 swenum - ok
09:13:11.0062 0444 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:13:11.0218 0444 swmidi - ok
09:13:11.0218 0444 SwPrv - ok
09:13:11.0234 0444 symc810 - ok
09:13:11.0250 0444 symc8xx - ok
09:13:11.0250 0444 sym_hi - ok
09:13:11.0265 0444 sym_u3 - ok
09:13:11.0312 0444 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:13:11.0453 0444 sysaudio - ok
09:13:11.0500 0444 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:13:11.0640 0444 SysmonLog - ok
09:13:11.0765 0444 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:13:12.0406 0444 TapiSrv - ok
09:13:12.0546 0444 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:13:12.0687 0444 Tcpip - ok
09:13:12.0718 0444 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:13:12.0937 0444 TDPIPE - ok
09:13:12.0984 0444 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:13:13.0125 0444 TDTCP - ok
09:13:13.0156 0444 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:13:13.0281 0444 TermDD - ok
09:13:13.0390 0444 [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService C:\WINDOWS\System32\termsrv.dll
09:13:13.0531 0444 TermService - ok
09:13:13.0593 0444 [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:13:13.0734 0444 Themes - ok
09:13:13.0781 0444 TosIde - ok
09:13:13.0890 0444 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:13:14.0031 0444 TrkWks - ok
09:13:14.0093 0444 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:13:14.0234 0444 Udfs - ok
09:13:14.0250 0444 ultra - ok
09:13:14.0343 0444 [ A4815A4884898F355A3513E60843A4FD ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:13:14.0953 0444 Update - ok
09:13:15.0062 0444 [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost C:\WINDOWS\System32\upnphost.dll
09:13:15.0203 0444 upnphost - ok
09:13:15.0250 0444 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
09:13:15.0390 0444 UPS - ok
09:13:15.0421 0444 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:13:15.0562 0444 usbccgp - ok
09:13:15.0593 0444 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:13:15.0750 0444 usbehci - ok
09:13:15.0859 0444 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:13:15.0984 0444 usbhub - ok
09:13:16.0031 0444 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:13:16.0156 0444 usbohci - ok
09:13:16.0187 0444 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:13:16.0328 0444 usbprint - ok
09:13:16.0359 0444 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:13:16.0484 0444 usbscan - ok
09:13:16.0500 0444 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:13:16.0640 0444 USBSTOR - ok
09:13:16.0656 0444 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:13:16.0859 0444 usbuhci - ok
09:13:16.0906 0444 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:13:17.0031 0444 VgaSave - ok
09:13:17.0078 0444 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
09:13:17.0093 0444 viaagp1 - ok
09:13:17.0203 0444 [ E8C619C6C6BDE90D130DDA87150E1944 ] viagfx C:\WINDOWS\system32\DRIVERS\vtmini.sys
09:13:17.0218 0444 viagfx - ok
09:13:17.0250 0444 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
09:13:17.0375 0444 ViaIde - ok
09:13:17.0406 0444 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:13:17.0546 0444 VolSnap - ok
09:13:17.0671 0444 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
09:13:17.0812 0444 VSS - ok
09:13:17.0906 0444 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\System32\w32time.dll
09:13:18.0046 0444 W32Time - ok
09:13:18.0093 0444 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:13:18.0218 0444 Wanarp - ok
09:13:18.0234 0444 WDICA - ok
09:13:18.0281 0444 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:13:18.0796 0444 wdmaud - ok
09:13:18.0859 0444 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
09:13:19.0437 0444 WebClient - ok
09:13:19.0531 0444 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:13:19.0687 0444 winmgmt - ok
09:13:19.0734 0444 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:13:19.0765 0444 WmdmPmSN - ok
09:13:19.0812 0444 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
09:13:19.0953 0444 WmiApSrv - ok
09:13:20.0296 0444 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:13:20.0531 0444 WMPNetworkSvc - ok
09:13:20.0562 0444 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
09:13:20.0578 0444 WpdUsb - ok
09:13:20.0609 0444 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
09:13:20.0765 0444 WS2IFSL - ok
09:13:20.0812 0444 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:13:20.0953 0444 wscsvc - ok
09:13:21.0000 0444 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:13:21.0140 0444 WSTCODEC - ok
09:13:21.0171 0444 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\System32\wuauserv.dll
09:13:21.0312 0444 wuauserv - ok
09:13:21.0343 0444 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:13:21.0375 0444 WudfPf - ok
09:13:21.0421 0444 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:13:21.0437 0444 WudfRd - ok
09:13:21.0500 0444 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:13:21.0515 0444 WudfSvc - ok
09:13:21.0640 0444 [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:13:21.0875 0444 WZCSVC - ok
09:13:21.0937 0444 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:13:22.0093 0444 xmlprov - ok
09:13:22.0156 0444 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
09:13:22.0187 0444 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
09:13:22.0250 0444 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
09:13:22.0265 0444 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
09:13:22.0265 0444 ================ Scan global ===============================
09:13:22.0312 0444 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
09:13:22.0421 0444 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:13:22.0531 0444 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:13:22.0578 0444 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
09:13:22.0593 0444 [Global] - ok
09:13:22.0593 0444 ================ Scan MBR ==================================
09:13:22.0625 0444 [ 8CC68602644010DFDB2A22CB60DDF258 ] \Device\Harddisk0\DR0
09:13:22.0968 0444 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:13:22.0968 0444 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:13:22.0968 0444 ================ Scan VBR ==================================
09:13:22.0984 0444 [ 0142BFA700EB464243DCD8C0161288B1 ] \Device\Harddisk0\DR0\Partition1
09:13:22.0984 0444 \Device\Harddisk0\DR0\Partition1 - ok
09:13:22.0984 0444 [ 5B8C2568CEFDEA46DF849AA868747BC1 ] \Device\Harddisk0\DR0\Partition2
09:13:23.0000 0444 \Device\Harddisk0\DR0\Partition2 - ok
09:13:23.0000 0444 ============================================================
09:13:23.0000 0444 Scan finished
09:13:23.0000 0444 ============================================================
09:12:21.0406 0444 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
09:12:21.0421 0444 !SASCORE - ok
09:12:21.0765 0444 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:12:21.0781 0444 Aavmker4 - ok
09:12:21.0796 0444 Abiosdsk - ok
09:12:21.0796 0444 abp480n5 - ok
09:12:21.0875 0444 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:12:22.0015 0444 ACPI - ok
09:12:22.0046 0444 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:12:22.0203 0444 ACPIEC - ok
09:12:22.0328 0444 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:12:22.0343 0444 AdobeFlashPlayerUpdateSvc - ok
09:12:22.0359 0444 adpu160m - ok
09:12:22.0421 0444 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
09:12:22.0937 0444 aec - ok
09:12:23.0015 0444 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:12:23.0031 0444 AFD - ok
09:12:23.0062 0444 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
09:12:23.0078 0444 AFS2K - ok
09:12:23.0109 0444 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:12:23.0234 0444 agp440 - ok
09:12:23.0250 0444 Aha154x - ok
09:12:23.0265 0444 aic78u2 - ok
09:12:23.0265 0444 aic78xx - ok
09:12:24.0515 0444 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
09:12:25.0734 0444 ALCXWDM - ok
09:12:25.0765 0444 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:12:25.0906 0444 Alerter - ok
09:12:25.0937 0444 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
09:12:26.0078 0444 ALG - ok
09:12:26.0093 0444 AliIde - ok
09:12:26.0140 0444 [ 680AD1C1BB16239E28D8F33A54A7A3C7 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
09:12:26.0265 0444 AmdK7 - ok
09:12:26.0265 0444 amsint - ok
09:12:26.0281 0444 AppMgmt - ok
09:12:26.0328 0444 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:12:26.0453 0444 Arp1394 - ok
09:12:26.0468 0444 asc - ok
09:12:26.0468 0444 asc3350p - ok
09:12:26.0484 0444 asc3550 - ok
09:12:26.0593 0444 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
09:12:26.0609 0444 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
09:12:26.0609 0444 aspnet_state - detected UnsignedFile.Multi.Generic (1)
09:12:26.0640 0444 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:12:26.0656 0444 aswFsBlk - ok
09:12:26.0703 0444 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:12:26.0718 0444 aswMon2 - ok
09:12:26.0750 0444 [ 7C9F0A2AB17D52261A9252A2EB320884 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:12:26.0750 0444 aswRdr - ok
09:12:26.0984 0444 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:12:27.0171 0444 aswSnx - ok
09:12:27.0296 0444 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:12:27.0390 0444 aswSP - ok
09:12:27.0437 0444 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:12:27.0453 0444 aswTdi - ok
09:12:27.0468 0444 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:12:27.0609 0444 AsyncMac - ok
09:12:27.0640 0444 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:12:27.0765 0444 atapi - ok
09:12:27.0781 0444 Atdisk - ok
09:12:27.0843 0444 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:12:27.0968 0444 Atmarpc - ok
09:12:28.0015 0444 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:12:28.0171 0444 AudioSrv - ok
09:12:28.0203 0444 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:12:28.0359 0444 audstub - ok
09:12:28.0421 0444 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:12:28.0437 0444 avast! Antivirus - ok
09:12:28.0843 0444 [ 124D235185004F699FAF115EBD85733E ] AVG Security Toolbar Service C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
09:12:29.0093 0444 AVG Security Toolbar Service - ok
09:12:29.0125 0444 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:12:29.0281 0444 Beep - ok
09:12:29.0421 0444 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\System32\qmgr.dll
09:12:29.0640 0444 BITS - ok
09:12:29.0703 0444 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
09:12:29.0828 0444 Browser - ok
09:12:29.0859 0444 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:12:30.0000 0444 cbidf2k - ok
09:12:30.0046 0444 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:12:30.0187 0444 CCDECODE - ok
09:12:30.0203 0444 cd20xrnt - ok
09:12:30.0234 0444 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:12:30.0375 0444 Cdaudio - ok
09:12:30.0421 0444 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:12:30.0546 0444 Cdfs - ok
09:12:30.0578 0444 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:12:30.0718 0444 Cdrom - ok
09:12:30.0718 0444 Changer - ok
09:12:30.0734 0444 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:12:30.0875 0444 CiSvc - ok
09:12:30.0921 0444 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:12:31.0046 0444 ClipSrv - ok
09:12:31.0062 0444 CmdIde - ok
09:12:31.0062 0444 COMSysApp - ok
09:12:31.0078 0444 Cpqarray - ok
09:12:31.0125 0444 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:12:31.0250 0444 CryptSvc - ok
09:12:31.0265 0444 dac2w2k - ok
09:12:31.0265 0444 dac960nt - ok
09:12:31.0406 0444 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:12:31.0578 0444 DcomLaunch - ok
09:12:31.0890 0444 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:12:32.0421 0444 Dhcp - ok
09:12:32.0453 0444 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:12:32.0609 0444 Disk - ok
09:12:32.0609 0444 dmadmin - ok
09:12:33.0000 0444 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:12:33.0281 0444 dmboot - ok
09:12:33.0359 0444 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:12:33.0515 0444 dmio - ok
09:12:33.0546 0444 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:12:33.0703 0444 dmload - ok
09:12:33.0750 0444 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
09:12:33.0953 0444 dmserver - ok
09:12:33.0984 0444 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:12:34.0140 0444 DMusic - ok
09:12:34.0171 0444 [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:12:34.0359 0444 Dnscache - ok
09:12:34.0359 0444 dpti2o - ok
09:12:34.0375 0444 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:12:34.0640 0444 drmkaud - ok
09:12:34.0671 0444 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:12:34.0968 0444 ERSvc - ok
09:12:35.0031 0444 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
09:12:35.0125 0444 Eventlog - ok
09:12:35.0234 0444 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\System32\es.dll
09:12:35.0250 0444 EventSystem - ok
09:12:35.0312 0444 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:12:35.0453 0444 Fastfat - ok
09:12:35.0515 0444 [ 6339AAF63240DF0634902B98C0F56049 ] fasttx2k C:\WINDOWS\system32\DRIVERS\fasttx2k.sys
09:12:35.0531 0444 fasttx2k - ok
09:12:35.0593 0444 [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:12:35.0843 0444 FastUserSwitchingCompatibility - ok
09:12:35.0968 0444 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
09:12:36.0125 0444 Fax - ok
09:12:36.0140 0444 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:12:36.0281 0444 Fdc - ok
09:12:36.0312 0444 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:12:36.0453 0444 Fips - ok
09:12:36.0468 0444 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:12:36.0593 0444 Flpydisk - ok
09:12:36.0656 0444 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:12:36.0859 0444 FltMgr - ok
09:12:36.0875 0444 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:12:37.0000 0444 Fs_Rec - ok
09:12:37.0046 0444 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:12:37.0218 0444 Ftdisk - ok
09:12:37.0250 0444 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:12:37.0390 0444 Gpc - ok
09:12:37.0484 0444 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:12:37.0484 0444 gupdate - ok
09:12:37.0531 0444 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:12:37.0546 0444 gupdatem - ok
09:12:37.0640 0444 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:12:37.0656 0444 gusvc - ok
09:12:37.0734 0444 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:12:37.0937 0444 helpsvc - ok
09:12:37.0937 0444 HidServ - ok
09:12:37.0953 0444 hpn - ok
09:12:38.0000 0444 [ 5FABA4775D4C61E55EC669D643FFC71F ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:12:38.0031 0444 HPZid412 - ok
09:12:38.0046 0444 [ A3C43980EE1F1BEAC778B44EA65DBDD4 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:12:38.0093 0444 HPZipr12 - ok
09:12:38.0171 0444 [ 2906949BD4E206F2BB0DD1896CE9F66F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:12:38.0218 0444 HPZius12 - ok
09:12:38.0375 0444 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:12:38.0421 0444 HTTP - ok
09:12:38.0515 0444 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:12:38.0859 0444 HTTPFilter - ok
09:12:38.0875 0444 i2omgmt - ok
09:12:38.0875 0444 i2omp - ok
09:12:38.0921 0444 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:12:39.0250 0444 i8042prt - ok
09:12:39.0312 0444 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
09:12:39.0343 0444 ialm - ok
09:12:39.0359 0444 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:12:39.0734 0444 Imapi - ok
09:12:39.0953 0444 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\System32\imapi.exe
09:12:40.0515 0444 ImapiService - ok
09:12:40.0515 0444 ini910u - ok
09:12:40.0593 0444 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
09:12:41.0062 0444 IntelIde - ok
09:12:41.0109 0444 [ 279FB78702454DFF2BB445F238C048D2 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:12:41.0312 0444 intelppm - ok
09:12:41.0328 0444 [ 4448006B6BC60E6C027932CFC38D6855 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:12:41.0500 0444 ip6fw - ok
09:12:41.0531 0444 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:12:41.0687 0444 IpFilterDriver - ok
09:12:41.0703 0444 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:12:41.0906 0444 IpInIp - ok
09:12:41.0968 0444 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:12:42.0125 0444 IpNat - ok
09:12:42.0156 0444 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:12:42.0281 0444 IPSec - ok
09:12:42.0312 0444 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:12:42.0453 0444 IRENUM - ok
09:12:42.0484 0444 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:12:42.0625 0444 isapnp - ok
09:12:42.0640 0444 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:12:42.0843 0444 Kbdclass - ok
09:12:42.0921 0444 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:12:43.0468 0444 kmixer - ok
09:12:43.0515 0444 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:12:43.0531 0444 KSecDD - ok
09:12:43.0578 0444 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:12:44.0234 0444 lanmanserver - ok
09:12:44.0296 0444 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:12:44.0328 0444 lanmanworkstation - ok
09:12:44.0328 0444 lbrtfdc - ok
09:12:44.0359 0444 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:12:44.0484 0444 LmHosts - ok
09:12:44.0718 0444 [ 829EF680A308C12E2A80E5E0DA0D958D ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
09:12:45.0187 0444 ltmodem5 - ok
09:12:45.0218 0444 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:12:45.0359 0444 Messenger - ok
09:12:45.0453 0444 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:12:45.0468 0444 Microsoft Office Groove Audit Service - ok
09:12:45.0500 0444 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:12:45.0640 0444 mnmdd - ok
09:12:45.0687 0444 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
09:12:45.0906 0444 mnmsrvc - ok
09:12:45.0937 0444 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:12:46.0078 0444 Modem - ok
09:12:46.0093 0444 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:12:46.0234 0444 Mouclass - ok
09:12:46.0265 0444 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:12:46.0390 0444 MountMgr - ok
09:12:46.0390 0444 mraid35x - ok
09:12:46.0453 0444 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:12:46.0593 0444 MRxDAV - ok
09:12:46.0750 0444 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:12:46.0921 0444 MRxSmb - ok
09:12:46.0953 0444 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:12:47.0125 0444 MSDTC - ok
09:12:47.0140 0444 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:12:47.0328 0444 Msfs - ok
09:12:47.0343 0444 MSIServer - ok
09:12:47.0359 0444 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:12:47.0484 0444 MSKSSRV - ok
09:12:47.0500 0444 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:12:47.0625 0444 MSPCLOCK - ok
09:12:47.0671 0444 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:12:47.0859 0444 MSPQM - ok
09:12:47.0890 0444 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:12:48.0015 0444 mssmbios - ok
09:12:48.0046 0444 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:12:48.0187 0444 MSTEE - ok
09:12:48.0234 0444 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:12:48.0375 0444 Mup - ok
09:12:48.0421 0444 [ C6EEE2261681396E36F3D8A003582C9E ] MxlW2k C:\WINDOWS\system32\drivers\MxlW2k.sys
09:12:48.0421 0444 MxlW2k ( UnsignedFile.Multi.Generic ) - warning
09:12:48.0421 0444 MxlW2k - detected UnsignedFile.Multi.Generic (1)
09:12:48.0468 0444 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:12:48.0609 0444 NABTSFEC - ok
09:12:48.0703 0444 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:12:48.0906 0444 NDIS - ok
09:12:48.0937 0444 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:12:49.0078 0444 NdisIP - ok
09:12:49.0125 0444 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:12:49.0265 0444 NdisTapi - ok
09:12:49.0281 0444 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:12:49.0421 0444 Ndisuio - ok
09:12:49.0453 0444 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:12:49.0593 0444 NdisWan - ok
09:12:49.0609 0444 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:12:49.0843 0444 NDProxy - ok
09:12:49.0921 0444 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:12:50.0062 0444 NetBIOS - ok
09:12:50.0125 0444 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:12:50.0250 0444 NetBT - ok
09:12:50.0312 0444 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
09:12:50.0453 0444 NetDDE - ok
09:12:50.0500 0444 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:12:50.0640 0444 NetDDEdsdm - ok
09:12:50.0734 0444 [ 38CE271DAC632044AA18A7457CBBE2D2 ] NETGEARGenieDaemon C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
09:12:50.0796 0444 NETGEARGenieDaemon - ok
09:12:50.0875 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\System32\lsass.exe
09:12:51.0000 0444 Netlogon - ok
09:12:51.0078 0444 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
09:12:51.0593 0444 Netman - ok
09:12:51.0890 0444 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:12:52.0031 0444 NIC1394 - ok
09:12:52.0140 0444 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
09:12:52.0218 0444 Nla - ok
09:12:52.0265 0444 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\WINDOWS\system32\drivers\npf.sys
09:12:52.0281 0444 NPF - ok
09:12:52.0312 0444 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:12:52.0437 0444 Npfs - ok
09:12:52.0625 0444 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:12:52.0890 0444 Ntfs - ok
09:12:52.0906 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
09:12:53.0031 0444 NtLmSsp - ok
09:12:53.0203 0444 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:12:53.0421 0444 NtmsSvc - ok
09:12:53.0437 0444 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:12:53.0578 0444 Null - ok
09:12:55.0031 0444 [ 34C114DA0A5E03219444E46F122FF5A3 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:12:56.0187 0444 nv ( UnsignedFile.Multi.Generic ) - warning
09:12:56.0187 0444 nv - detected UnsignedFile.Multi.Generic (1)
09:12:56.0265 0444 [ 9B7ACCFAC9B19B98D54F45A9CF61CA39 ] nvcap C:\WINDOWS\system32\DRIVERS\nvcap.sys
09:12:56.0296 0444 nvcap - ok
09:12:56.0343 0444 [ FF8112711B5F9823D4595579B2130955 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
09:12:56.0359 0444 NVSvc ( UnsignedFile.Multi.Generic ) - warning
09:12:56.0359 0444 NVSvc - detected UnsignedFile.Multi.Generic (1)
09:12:56.0375 0444 [ BEF79A5B5A01BB749AFBED27837E6311 ] NVXBAR C:\WINDOWS\system32\DRIVERS\NVxbar.sys
09:12:56.0406 0444 NVXBAR - ok
09:12:56.0421 0444 [ 01621905AE34BC24AAA2FDDB93977299 ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
09:12:56.0437 0444 nv_agp - ok
09:12:56.0468 0444 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:12:56.0609 0444 NwlnkFlt - ok
09:12:56.0640 0444 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:12:56.0875 0444 NwlnkFwd - ok
09:12:57.0109 0444 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:12:57.0234 0444 odserv - ok
09:12:57.0250 0444 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:12:57.0406 0444 ohci1394 - ok
09:12:57.0468 0444 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:12:57.0484 0444 ose - ok
09:12:57.0546 0444 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:12:57.0671 0444 Parport - ok
09:12:57.0703 0444 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:12:57.0921 0444 PartMgr - ok
09:12:57.0953 0444 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:12:58.0125 0444 ParVdm - ok
09:12:58.0156 0444 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:12:58.0296 0444 PCI - ok
09:12:58.0296 0444 PCIDump - ok
09:12:58.0328 0444 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:12:58.0468 0444 PCIIde - ok
09:12:58.0531 0444 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:12:58.0671 0444 Pcmcia - ok
09:12:58.0671 0444 PDCOMP - ok
09:12:58.0687 0444 PDFRAME - ok
09:12:58.0703 0444 PDRELI - ok
09:12:58.0703 0444 PDRFRAME - ok
09:12:58.0718 0444 perc2 - ok
09:12:58.0734 0444 perc2hib - ok
09:12:58.0890 0444 [ E5AC9F8C128B597DD7919AF96B84172E ] pfc C:\WINDOWS\system32\drivers\pfc.sys
09:12:58.0890 0444 pfc ( UnsignedFile.Multi.Generic ) - warning
09:12:58.0890 0444 pfc - detected UnsignedFile.Multi.Generic (1)
09:12:58.0953 0444 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
09:12:59.0031 0444 PlugPlay - ok
09:12:59.0093 0444 [ 901C43516504CBE582E4C4193E00876A ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:12:59.0125 0444 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
09:12:59.0125 0444 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
09:12:59.0140 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
09:12:59.0265 0444 PolicyAgent - ok
09:12:59.0312 0444 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:12:59.0437 0444 PptpMiniport - ok
09:12:59.0453 0444 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:12:59.0578 0444 Processor - ok
09:12:59.0593 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:12:59.0734 0444 ProtectedStorage - ok
09:12:59.0890 0444 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
09:12:59.0906 0444 Ps2 - ok
09:12:59.0937 0444 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:13:00.0078 0444 PSched - ok
09:13:00.0109 0444 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:13:00.0250 0444 Ptilink - ok
09:13:00.0281 0444 [ 7E1EACDECBA39E0B2A35306426F0DECC ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
09:13:00.0296 0444 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
09:13:00.0296 0444 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
09:13:00.0296 0444 ql1080 - ok
09:13:00.0312 0444 Ql10wnt - ok
09:13:00.0328 0444 ql12160 - ok
09:13:00.0328 0444 ql1240 - ok
09:13:00.0343 0444 ql1280 - ok
09:13:00.0375 0444 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:13:00.0515 0444 RasAcd - ok
09:13:00.0578 0444 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:13:00.0718 0444 RasAuto - ok
09:13:00.0765 0444 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:13:00.0890 0444 Rasl2tp - ok
09:13:00.0968 0444 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
09:13:01.0515 0444 RasMan - ok
09:13:01.0546 0444 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:13:01.0671 0444 RasPppoe - ok
09:13:01.0687 0444 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:13:01.0828 0444 Raspti - ok
09:13:01.0906 0444 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:13:02.0468 0444 Rdbss - ok
09:13:02.0468 0444 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:13:02.0625 0444 RDPCDD - ok
09:13:02.0687 0444 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:13:03.0234 0444 RDPWD - ok
09:13:03.0328 0444 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:13:03.0468 0444 RDSessMgr - ok
09:13:03.0531 0444 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:13:03.0656 0444 redbook - ok
09:13:03.0703 0444 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:13:03.0937 0444 RemoteAccess - ok
09:13:03.0968 0444 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\System32\locator.exe
09:13:04.0156 0444 RpcLocator - ok
09:13:04.0281 0444 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:13:04.0437 0444 RpcSs - ok
09:13:04.0500 0444 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
09:13:04.0640 0444 RSVP - ok
09:13:04.0671 0444 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
09:13:04.0687 0444 rtl8139 - ok
09:13:04.0906 0444 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
09:13:05.0031 0444 S3Psddr - ok
09:13:05.0062 0444 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
09:13:05.0203 0444 SamSs - ok
09:13:05.0234 0444 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
09:13:05.0234 0444 SASDIFSV - ok
09:13:05.0265 0444 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
09:13:05.0281 0444 SASKUTIL - ok
09:13:05.0328 0444 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:13:05.0468 0444 SCardSvr - ok
09:13:05.0531 0444 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:13:05.0671 0444 Schedule - ok
09:13:05.0718 0444 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:13:05.0906 0444 Secdrv - ok
09:13:05.0953 0444 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
09:13:06.0109 0444 seclogon - ok
09:13:06.0125 0444 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
09:13:06.0265 0444 SENS - ok
09:13:06.0296 0444 [ A2D868AEEFF612E70E213C451A70CAFB ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:13:06.0421 0444 Serenum - ok
09:13:06.0453 0444 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:13:06.0578 0444 Serial - ok
09:13:06.0609 0444 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:13:06.0734 0444 Sfloppy - ok
09:13:06.0968 0444 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:13:07.0187 0444 SharedAccess - ok
09:13:07.0250 0444 [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:13:07.0406 0444 ShellHWDetection - ok
09:13:07.0406 0444 Simbad - ok
09:13:07.0562 0444 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
09:13:07.0656 0444 SiS315 - ok
09:13:07.0703 0444 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
09:13:07.0718 0444 SISAGP - ok
09:13:07.0750 0444 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
09:13:07.0843 0444 SiSkp - ok
09:13:07.0890 0444 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:13:08.0015 0444 SLIP - ok
09:13:08.0015 0444 Sparrow - ok
09:13:08.0046 0444 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:13:08.0562 0444 splitter - ok
09:13:08.0609 0444 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:13:09.0265 0444 Spooler - ok
09:13:09.0296 0444 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:13:09.0437 0444 sr - ok
09:13:09.0515 0444 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\System32\srsvc.dll
09:13:09.0671 0444 srservice - ok
09:13:09.0890 0444 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:13:10.0000 0444 Srv - ok
09:13:10.0062 0444 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:13:10.0203 0444 SSDPSRV - ok
09:13:10.0312 0444 [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:13:10.0531 0444 stisvc - ok
09:13:10.0578 0444 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:13:10.0703 0444 streamip - ok
09:13:10.0765 0444 [ 2087B202CFE8A2F8A59CECFFFBEC58D5 ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
09:13:10.0812 0444 SunkFilt ( UnsignedFile.Multi.Generic ) - warning
09:13:10.0812 0444 SunkFilt - detected UnsignedFile.Multi.Generic (1)
09:13:10.0859 0444 Sunkfiltp - ok
09:13:10.0890 0444 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:13:11.0015 0444 swenum - ok
09:13:11.0062 0444 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:13:11.0218 0444 swmidi - ok
09:13:11.0218 0444 SwPrv - ok
09:13:11.0234 0444 symc810 - ok
09:13:11.0250 0444 symc8xx - ok
09:13:11.0250 0444 sym_hi - ok
09:13:11.0265 0444 sym_u3 - ok
09:13:11.0312 0444 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:13:11.0453 0444 sysaudio - ok
09:13:11.0500 0444 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:13:11.0640 0444 SysmonLog - ok
09:13:11.0765 0444 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:13:12.0406 0444 TapiSrv - ok
09:13:12.0546 0444 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:13:12.0687 0444 Tcpip - ok
09:13:12.0718 0444 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:13:12.0937 0444 TDPIPE - ok
09:13:12.0984 0444 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:13:13.0125 0444 TDTCP - ok
09:13:13.0156 0444 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:13:13.0281 0444 TermDD - ok
09:13:13.0390 0444 [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService C:\WINDOWS\System32\termsrv.dll
09:13:13.0531 0444 TermService - ok
09:13:13.0593 0444 [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:13:13.0734 0444 Themes - ok
09:13:13.0781 0444 TosIde - ok
09:13:13.0890 0444 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:13:14.0031 0444 TrkWks - ok
09:13:14.0093 0444 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:13:14.0234 0444 Udfs - ok
09:13:14.0250 0444 ultra - ok
09:13:14.0343 0444 [ A4815A4884898F355A3513E60843A4FD ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:13:14.0953 0444 Update - ok
09:13:15.0062 0444 [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost C:\WINDOWS\System32\upnphost.dll
09:13:15.0203 0444 upnphost - ok
09:13:15.0250 0444 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
09:13:15.0390 0444 UPS - ok
09:13:15.0421 0444 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:13:15.0562 0444 usbccgp - ok
09:13:15.0593 0444 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:13:15.0750 0444 usbehci - ok
09:13:15.0859 0444 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:13:15.0984 0444 usbhub - ok
09:13:16.0031 0444 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:13:16.0156 0444 usbohci - ok
09:13:16.0187 0444 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:13:16.0328 0444 usbprint - ok
09:13:16.0359 0444 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:13:16.0484 0444 usbscan - ok
09:13:16.0500 0444 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:13:16.0640 0444 USBSTOR - ok
09:13:16.0656 0444 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:13:16.0859 0444 usbuhci - ok
09:13:16.0906 0444 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:13:17.0031 0444 VgaSave - ok
09:13:17.0078 0444 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
09:13:17.0093 0444 viaagp1 - ok
09:13:17.0203 0444 [ E8C619C6C6BDE90D130DDA87150E1944 ] viagfx C:\WINDOWS\system32\DRIVERS\vtmini.sys
09:13:17.0218 0444 viagfx - ok
09:13:17.0250 0444 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
09:13:17.0375 0444 ViaIde - ok
09:13:17.0406 0444 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:13:17.0546 0444 VolSnap - ok
09:13:17.0671 0444 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
09:13:17.0812 0444 VSS - ok
09:13:17.0906 0444 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\System32\w32time.dll
09:13:18.0046 0444 W32Time - ok
09:13:18.0093 0444 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:13:18.0218 0444 Wanarp - ok
09:13:18.0234 0444 WDICA - ok
09:13:18.0281 0444 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:13:18.0796 0444 wdmaud - ok
09:13:18.0859 0444 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
09:13:19.0437 0444 WebClient - ok
09:13:19.0531 0444 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:13:19.0687 0444 winmgmt - ok
09:13:19.0734 0444 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:13:19.0765 0444 WmdmPmSN - ok
09:13:19.0812 0444 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
09:13:19.0953 0444 WmiApSrv - ok
09:13:20.0296 0444 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:13:20.0531 0444 WMPNetworkSvc - ok
09:13:20.0562 0444 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
09:13:20.0578 0444 WpdUsb - ok
09:13:20.0609 0444 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
09:13:20.0765 0444 WS2IFSL - ok
09:13:20.0812 0444 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:13:20.0953 0444 wscsvc - ok
09:13:21.0000 0444 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:13:21.0140 0444 WSTCODEC - ok
09:13:21.0171 0444 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\System32\wuauserv.dll
09:13:21.0312 0444 wuauserv - ok
09:13:21.0343 0444 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:13:21.0375 0444 WudfPf - ok
09:13:21.0421 0444 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:13:21.0437 0444 WudfRd - ok
09:13:21.0500 0444 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:13:21.0515 0444 WudfSvc - ok
09:13:21.0640 0444 [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:13:21.0875 0444 WZCSVC - ok
09:13:21.0937 0444 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:13:22.0093 0444 xmlprov - ok
09:13:22.0156 0444 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
09:13:22.0187 0444 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
09:13:22.0250 0444 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
09:13:22.0265 0444 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
09:13:22.0265 0444 ================ Scan global ===============================
09:13:22.0312 0444 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
09:13:22.0421 0444 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:13:22.0531 0444 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:13:22.0578 0444 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
09:13:22.0593 0444 [Global] - ok
09:13:22.0593 0444 ================ Scan MBR ==================================
09:13:22.0625 0444 [ 8CC68602644010DFDB2A22CB60DDF258 ] \Device\Harddisk0\DR0
09:13:22.0968 0444 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:13:22.0968 0444 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:13:22.0968 0444 ================ Scan VBR ==================================
09:13:22.0984 0444 [ 0142BFA700EB464243DCD8C0161288B1 ] \Device\Harddisk0\DR0\Partition1
09:13:22.0984 0444 \Device\Harddisk0\DR0\Partition1 - ok
09:13:22.0984 0444 [ 5B8C2568CEFDEA46DF849AA868747BC1 ] \Device\Harddisk0\DR0\Partition2
09:13:23.0000 0444 \Device\Harddisk0\DR0\Partition2 - ok
09:13:23.0000 0444 ============================================================
09:13:23.0000 0444 Scan finished
09:13:23.0000 0444 ============================================================
(Part 3):
09:13:23.0015 3184 Detected object count: 9
09:13:23.0015 3184 Actual detected object count: 9
09:13:31.0265 3184 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe - copied to quarantine
09:13:31.0281 3184 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:31.0359 3184 C:\WINDOWS\system32\drivers\MxlW2k.sys - copied to quarantine
09:13:31.0375 3184 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0656 3184 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys - copied to quarantine
09:13:33.0812 3184 nv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0906 3184 C:\WINDOWS\system32\nvsvc32.exe - copied to quarantine
09:13:33.0921 3184 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0937 3184 C:\WINDOWS\system32\drivers\pfc.sys - copied to quarantine
09:13:33.0953 3184 pfc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0062 3184 C:\WINDOWS\system32\HPZipm12.exe - copied to quarantine
09:13:34.0093 3184 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0140 3184 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys - copied to quarantine
09:13:34.0156 3184 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0234 3184 C:\WINDOWS\System32\Drivers\sunkfilt.sys - copied to quarantine
09:13:34.0250 3184 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0296 3184 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
09:13:34.0296 3184 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
09:13:34.0312 3184 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
09:13:34.0359 3184 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:13:34.0390 3184 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:13:34.0390 3184 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:13:39.0187 3184 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:13:39.0296 3184 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:13:39.0359 3184 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
09:14:10.0625 2764 ============================================================
09:14:10.0625 2764 Scan started
09:14:10.0625 2764 Mode: Manual; SigCheck; TDLFS;
09:14:10.0625 2764 ============================================================
09:14:11.0171 2764 ================ Scan system memory ========================
09:14:11.0187 2764 System memory - ok
09:14:11.0187 2764 ================ Scan services =============================
09:14:11.0296 2764 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
09:14:11.0312 2764 !SASCORE - ok
09:14:11.0656 2764 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:14:11.0671 2764 Aavmker4 - ok
09:14:11.0671 2764 Abiosdsk - ok
09:14:11.0687 2764 abp480n5 - ok
09:14:11.0765 2764 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:14:11.0890 2764 ACPI - ok
09:14:11.0921 2764 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:14:12.0046 2764 ACPIEC - ok
09:14:12.0187 2764 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:14:12.0203 2764 AdobeFlashPlayerUpdateSvc - ok
09:14:12.0203 2764 adpu160m - ok
09:14:12.0281 2764 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
09:14:12.0828 2764 aec - ok
09:14:12.0906 2764 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:14:12.0921 2764 AFD - ok
09:14:12.0937 2764 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
09:14:12.0953 2764 AFS2K - ok
09:14:12.0984 2764 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:14:13.0109 2764 agp440 - ok
09:14:13.0109 2764 Aha154x - ok
09:14:13.0125 2764 aic78u2 - ok
09:14:13.0140 2764 aic78xx - ok
09:14:14.0359 2764 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
09:14:15.0656 2764 ALCXWDM - ok
09:14:15.0703 2764 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:14:15.0828 2764 Alerter - ok
09:14:15.0859 2764 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
09:14:15.0984 2764 ALG - ok
09:14:16.0000 2764 AliIde - ok
09:14:16.0046 2764 [ 680AD1C1BB16239E28D8F33A54A7A3C7 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
09:14:16.0171 2764 AmdK7 - ok
09:14:16.0171 2764 amsint - ok
09:14:16.0187 2764 AppMgmt - ok
09:14:16.0234 2764 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:14:16.0343 2764 Arp1394 - ok
09:14:16.0359 2764 asc - ok
09:14:16.0375 2764 asc3350p - ok
09:14:16.0375 2764 asc3550 - ok
09:14:16.0500 2764 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
09:14:16.0500 2764 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
09:14:16.0500 2764 aspnet_state - detected UnsignedFile.Multi.Generic (1)
09:14:16.0546 2764 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:14:16.0562 2764 aswFsBlk - ok
09:14:16.0609 2764 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:14:16.0625 2764 aswMon2 - ok
09:14:16.0640 2764 [ 7C9F0A2AB17D52261A9252A2EB320884 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:14:16.0656 2764 aswRdr - ok
09:14:16.0875 2764 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:14:17.0046 2764 aswSnx - ok
09:14:17.0171 2764 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:14:17.0265 2764 aswSP - ok
09:14:17.0296 2764 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:14:17.0312 2764 aswTdi - ok
09:14:17.0343 2764 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:14:17.0453 2764 AsyncMac - ok
09:14:17.0500 2764 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:14:17.0609 2764 atapi - ok
09:14:17.0625 2764 Atdisk - ok
09:14:17.0687 2764 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:14:17.0828 2764 Atmarpc - ok
09:14:17.0875 2764 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:14:18.0000 2764 AudioSrv - ok
09:14:18.0046 2764 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:14:18.0171 2764 audstub - ok
09:14:18.0234 2764 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:14:18.0250 2764 avast! Antivirus - ok
09:14:18.0656 2764 [ 124D235185004F699FAF115EBD85733E ] AVG Security Toolbar Service C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
09:14:18.0921 2764 AVG Security Toolbar Service - ok
09:14:18.0953 2764 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:14:19.0078 2764 Beep - ok
09:14:19.0218 2764 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\System32\qmgr.dll
09:14:19.0437 2764 BITS - ok
09:14:19.0484 2764 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
09:14:19.0609 2764 Browser - ok
09:14:19.0640 2764 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:14:19.0796 2764 cbidf2k - ok
09:14:19.0843 2764 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:14:19.0968 2764 CCDECODE - ok
09:14:19.0984 2764 cd20xrnt - ok
09:14:20.0015 2764 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:14:20.0140 2764 Cdaudio - ok
09:14:20.0187 2764 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:14:20.0312 2764 Cdfs - ok
09:14:20.0343 2764 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:14:20.0468 2764 Cdrom - ok
09:14:20.0484 2764 Changer - ok
09:14:20.0500 2764 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:14:20.0625 2764 CiSvc - ok
09:14:20.0671 2764 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:14:20.0812 2764 ClipSrv - ok
09:14:20.0812 2764 CmdIde - ok
09:14:20.0828 2764 COMSysApp - ok
09:14:20.0843 2764 Cpqarray - ok
09:14:20.0875 2764 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:14:21.0000 2764 CryptSvc - ok
09:14:21.0015 2764 dac2w2k - ok
09:14:21.0015 2764 dac960nt - ok
09:14:21.0156 2764 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:14:21.0312 2764 DcomLaunch - ok
09:14:21.0375 2764 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:14:21.0953 2764 Dhcp - ok
09:14:21.0984 2764 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:14:22.0109 2764 Disk - ok
09:14:22.0125 2764 dmadmin - ok
09:14:22.0375 2764 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:14:22.0656 2764 dmboot - ok
09:14:22.0750 2764 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:14:22.0890 2764 dmio - ok
09:14:22.0921 2764 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:14:23.0046 2764 dmload - ok
09:14:23.0078 2764 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
09:14:23.0203 2764 dmserver - ok
09:14:23.0234 2764 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:14:23.0359 2764 DMusic - ok
09:14:23.0390 2764 [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:14:23.0515 2764 Dnscache - ok
09:14:23.0515 2764 dpti2o - ok
09:14:23.0531 2764 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:14:23.0656 2764 drmkaud - ok
09:14:23.0703 2764 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:14:23.0843 2764 ERSvc - ok
09:14:23.0906 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
09:14:23.0984 2764 Eventlog - ok
09:14:24.0078 2764 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\System32\es.dll
09:14:24.0093 2764 EventSystem - ok
09:14:24.0156 2764 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:14:24.0281 2764 Fastfat - ok
09:14:24.0359 2764 [ 6339AAF63240DF0634902B98C0F56049 ] fasttx2k C:\WINDOWS\system32\DRIVERS\fasttx2k.sys
09:14:24.0375 2764 fasttx2k - ok
09:14:24.0437 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:14:24.0562 2764 FastUserSwitchingCompatibility - ok
09:14:24.0671 2764 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
09:14:24.0859 2764 Fax - ok
09:14:24.0890 2764 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:14:25.0015 2764 Fdc - ok
09:14:25.0062 2764 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:14:25.0203 2764 Fips - ok
09:14:25.0218 2764 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:14:25.0343 2764 Flpydisk - ok
09:14:25.0406 2764 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:14:25.0546 2764 FltMgr - ok
09:14:25.0546 2764 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:14:25.0687 2764 Fs_Rec - ok
09:14:25.0734 2764 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:14:25.0890 2764 Ftdisk - ok
09:14:25.0937 2764 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:14:26.0062 2764 Gpc - ok
09:14:26.0156 2764 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:14:26.0171 2764 gupdate - ok
09:14:26.0218 2764 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:14:26.0234 2764 gupdatem - ok
09:14:26.0328 2764 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:14:26.0343 2764 gusvc - ok
09:14:26.0421 2764 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:14:26.0546 2764 helpsvc - ok
09:14:26.0546 2764 HidServ - ok
09:14:26.0562 2764 hpn - ok
09:14:26.0609 2764 [ 5FABA4775D4C61E55EC669D643FFC71F ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:14:26.0625 2764 HPZid412 - ok
09:14:26.0640 2764 [ A3C43980EE1F1BEAC778B44EA65DBDD4 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:14:26.0671 2764 HPZipr12 - ok
09:14:26.0718 2764 [ 2906949BD4E206F2BB0DD1896CE9F66F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:14:26.0734 2764 HPZius12 - ok
09:14:26.0843 2764 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:14:26.0859 2764 HTTP - ok
09:14:26.0890 2764 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:14:27.0031 2764 HTTPFilter - ok
09:14:27.0031 2764 i2omgmt - ok
09:14:27.0046 2764 i2omp - ok
09:14:27.0109 2764 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:14:27.0234 2764 i8042prt - ok
09:14:27.0296 2764 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
09:14:27.0312 2764 ialm - ok
09:14:27.0343 2764 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:14:27.0468 2764 Imapi - ok
09:14:27.0531 2764 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\System32\imapi.exe
09:14:27.0671 2764 ImapiService - ok
09:14:27.0687 2764 ini910u - ok
09:14:27.0718 2764 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
09:14:27.0859 2764 IntelIde - ok
09:14:27.0906 2764 [ 279FB78702454DFF2BB445F238C048D2 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:14:28.0031 2764 intelppm - ok
09:14:28.0062 2764 [ 4448006B6BC60E6C027932CFC38D6855 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:14:28.0187 2764 ip6fw - ok
09:14:28.0234 2764 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:14:28.0359 2764 IpFilterDriver - ok
09:14:28.0390 2764 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:14:28.0515 2764 IpInIp - ok
09:14:28.0578 2764 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:14:28.0703 2764 IpNat - ok
09:14:28.0734 2764 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:14:28.0890 2764 IPSec - ok
09:14:28.0921 2764 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:14:29.0046 2764 IRENUM - ok
09:14:29.0093 2764 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:14:29.0218 2764 isapnp - ok
09:14:29.0250 2764 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:14:29.0375 2764 Kbdclass - ok
09:14:29.0453 2764 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:14:30.0046 2764 kmixer - ok
09:14:30.0093 2764 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:14:30.0109 2764 KSecDD - ok
09:14:30.0171 2764 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:14:30.0718 2764 lanmanserver - ok
09:14:30.0796 2764 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:14:30.0828 2764 lanmanworkstation - ok
09:14:30.0828 2764 lbrtfdc - ok
09:14:30.0875 2764 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:14:31.0000 2764 LmHosts - ok
09:14:31.0203 2764 [ 829EF680A308C12E2A80E5E0DA0D958D ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
09:14:31.0375 2764 ltmodem5 - ok
09:14:31.0421 2764 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:14:31.0562 2764 Messenger - ok
09:14:31.0656 2764 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:14:31.0671 2764 Microsoft Office Groove Audit Service - ok
09:14:31.0703 2764 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:14:31.0843 2764 mnmdd - ok
09:14:31.0890 2764 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
09:14:32.0031 2764 mnmsrvc - ok
09:14:32.0062 2764 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:14:32.0187 2764 Modem - ok
09:14:32.0203 2764 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:14:32.0328 2764 Mouclass - ok
09:14:32.0359 2764 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:14:32.0484 2764 MountMgr - ok
09:14:32.0484 2764 mraid35x - ok
09:14:32.0562 2764 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:14:32.0703 2764 MRxDAV - ok
09:14:32.0859 2764 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:14:32.0937 2764 MRxSmb - ok
09:14:32.0968 2764 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:14:33.0093 2764 MSDTC - ok
09:14:33.0109 2764 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:14:33.0234 2764 Msfs - ok
09:14:33.0234 2764 MSIServer - ok
09:14:33.0265 2764 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:14:33.0390 2764 MSKSSRV - ok
09:14:33.0406 2764 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:14:33.0531 2764 MSPCLOCK - ok
09:14:33.0578 2764 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:14:33.0703 2764 MSPQM - ok
09:14:33.0734 2764 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:14:33.0875 2764 mssmbios - ok
09:14:33.0906 2764 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:14:34.0015 2764 MSTEE - ok
09:14:34.0062 2764 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:14:34.0187 2764 Mup - ok
09:14:34.0218 2764 [ C6EEE2261681396E36F3D8A003582C9E ] MxlW2k C:\WINDOWS\system32\drivers\MxlW2k.sys
09:14:34.0218 2764 MxlW2k ( UnsignedFile.Multi.Generic ) - warning
09:14:34.0218 2764 MxlW2k - detected UnsignedFile.Multi.Generic (1)
09:14:34.0265 2764 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:14:34.0390 2764 NABTSFEC - ok
09:14:34.0468 2764 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:14:34.0593 2764 NDIS - ok
09:14:34.0625 2764 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:14:34.0750 2764 NdisIP - ok
09:14:34.0812 2764 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:14:34.0953 2764 NdisTapi - ok
09:14:34.0984 2764 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:14:35.0109 2764 Ndisuio - ok
09:14:35.0156 2764 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:14:35.0281 2764 NdisWan - ok
09:14:35.0296 2764 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:14:35.0437 2764 NDProxy - ok
09:14:35.0468 2764 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:14:35.0593 2764 NetBIOS - ok
09:14:35.0656 2764 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:14:35.0828 2764 NetBT - ok
09:14:35.0921 2764 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
09:14:36.0062 2764 NetDDE - ok
09:14:36.0093 2764 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:14:36.0234 2764 NetDDEdsdm - ok
09:14:36.0328 2764 [ 38CE271DAC632044AA18A7457CBBE2D2 ] NETGEARGenieDaemon C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
09:14:36.0328 2764 NETGEARGenieDaemon - ok
09:14:36.0359 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\System32\lsass.exe
09:14:36.0484 2764 Netlogon - ok
09:14:36.0562 2764 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
09:14:37.0125 2764 Netman - ok
09:14:37.0171 2764 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:14:37.0296 2764 NIC1394 - ok
09:14:37.0390 2764 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
09:14:37.0453 2764 Nla - ok
09:14:37.0500 2764 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\WINDOWS\system32\drivers\npf.sys
09:14:37.0515 2764 NPF - ok
09:14:37.0546 2764 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:14:37.0671 2764 Npfs - ok
09:14:37.0875 2764 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:14:38.0078 2764 Ntfs - ok
09:14:38.0078 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
09:14:38.0218 2764 NtLmSsp - ok
09:14:38.0375 2764 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:14:38.0578 2764 NtmsSvc - ok
09:14:38.0609 2764 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:14:38.0750 2764 Null - ok
09:14:39.0968 2764 [ 34C114DA0A5E03219444E46F122FF5A3 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:14:41.0062 2764 nv ( UnsignedFile.Multi.Generic ) - warning
09:14:41.0062 2764 nv - detected UnsignedFile.Multi.Generic (1)
09:14:41.0140 2764 [ 9B7ACCFAC9B19B98D54F45A9CF61CA39 ] nvcap C:\WINDOWS\system32\DRIVERS\nvcap.sys
09:14:41.0156 2764 nvcap - ok
09:14:41.0234 2764 [ FF8112711B5F9823D4595579B2130955 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
09:14:41.0250 2764 NVSvc ( UnsignedFile.Multi.Generic ) - warning
09:14:41.0250 2764 NVSvc - detected UnsignedFile.Multi.Generic (1)
09:14:41.0265 2764 [ BEF79A5B5A01BB749AFBED27837E6311 ] NVXBAR C:\WINDOWS\system32\DRIVERS\NVxbar.sys
09:14:41.0281 2764 NVXBAR - ok
09:14:41.0312 2764 [ 01621905AE34BC24AAA2FDDB93977299 ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
09:14:41.0328 2764 nv_agp - ok
09:14:41.0359 2764 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:14:41.0500 2764 NwlnkFlt - ok
09:14:41.0531 2764 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:14:41.0671 2764 NwlnkFwd - ok
09:14:41.0890 2764 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:14:41.0984 2764 odserv - ok
09:14:42.0015 2764 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:14:42.0140 2764 ohci1394 - ok
09:14:42.0218 2764 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:14:42.0234 2764 ose - ok
09:14:42.0296 2764 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:14:42.0421 2764 Parport - ok
09:14:42.0453 2764 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:14:42.0578 2764 PartMgr - ok
09:14:42.0609 2764 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:14:42.0750 2764 ParVdm - ok
09:14:42.0781 2764 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:14:42.0906 2764 PCI - ok
09:14:42.0921 2764 PCIDump - ok
09:14:42.0937 2764 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:14:43.0078 2764 PCIIde - ok
09:14:43.0140 2764 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:14:43.0265 2764 Pcmcia - ok
09:14:43.0281 2764 PDCOMP - ok
09:14:43.0281 2764 PDFRAME - ok
09:14:43.0296 2764 PDRELI - ok
09:14:43.0312 2764 PDRFRAME - ok
09:14:43.0312 2764 perc2 - ok
09:14:43.0328 2764 perc2hib - ok
09:14:43.0359 2764 [ E5AC9F8C128B597DD7919AF96B84172E ] pfc C:\WINDOWS\system32\drivers\pfc.sys
09:14:43.0375 2764 pfc ( UnsignedFile.Multi.Generic ) - warning
09:14:43.0375 2764 pfc - detected UnsignedFile.Multi.Generic (1)
09:14:43.0421 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
09:14:43.0500 2764 PlugPlay - ok
09:14:43.0562 2764 [ 901C43516504CBE582E4C4193E00876A ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:14:43.0562 2764 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
09:14:43.0562 2764 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
09:14:43.0578 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
09:14:43.0718 2764 PolicyAgent - ok
09:14:43.0765 2764 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:14:43.0890 2764 PptpMiniport - ok
09:14:43.0921 2764 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:14:44.0031 2764 Processor - ok
09:14:44.0046 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:14:44.0171 2764 ProtectedStorage - ok
09:14:44.0187 2764 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
09:14:44.0203 2764 Ps2 - ok
09:14:44.0234 2764 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:14:44.0359 2764 PSched - ok
09:14:44.0390 2764 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:14:44.0515 2764 Ptilink - ok
09:14:44.0562 2764 [ 7E1EACDECBA39E0B2A35306426F0DECC ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
09:14:44.0562 2764 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
09:14:44.0562 2764 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
09:14:44.0578 2764 ql1080 - ok
09:14:44.0578 2764 Ql10wnt - ok
09:14:44.0593 2764 ql12160 - ok
09:14:44.0609 2764 ql1240 - ok
09:14:44.0609 2764 ql1280 - ok
09:14:44.0625 2764 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:14:44.0812 2764 RasAcd - ok
09:14:44.0875 2764 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:14:45.0046 2764 RasAuto - ok
09:14:45.0078 2764 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:14:45.0203 2764 Rasl2tp - ok
09:14:45.0281 2764 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
09:14:45.0843 2764 RasMan - ok
09:14:45.0875 2764 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:14:46.0000 2764 RasPppoe - ok
09:14:46.0015 2764 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:14:46.0156 2764 Raspti - ok
09:14:46.0234 2764 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:14:46.0812 2764 Rdbss - ok
09:14:46.0843 2764 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:14:46.0968 2764 RDPCDD - ok
09:14:47.0046 2764 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:14:47.0578 2764 RDPWD - ok
09:14:47.0687 2764 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:14:47.0843 2764 RDSessMgr - ok
09:14:47.0890 2764 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:14:48.0015 2764 redbook - ok
09:14:48.0062 2764 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:14:48.0203 2764 RemoteAccess - ok
09:14:48.0234 2764 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\System32\locator.exe
09:14:48.0359 2764 RpcLocator - ok
09:14:48.0500 2764 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:14:48.0640 2764 RpcSs - ok
09:14:48.0718 2764 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
09:14:48.0875 2764 RSVP - ok
09:14:48.0906 2764 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
09:14:48.0921 2764 rtl8139 - ok
09:14:49.0031 2764 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
09:14:49.0156 2764 S3Psddr - ok
09:14:49.0187 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
09:14:49.0328 2764 SamSs - ok
09:14:49.0359 2764 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
09:14:49.0375 2764 SASDIFSV - ok
09:14:49.0406 2764 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
09:14:49.0406 2764 SASKUTIL - ok
09:14:49.0468 2764 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:14:49.0593 2764 SCardSvr - ok
09:14:49.0671 2764 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:14:49.0843 2764 Schedule - ok
09:14:49.0906 2764 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:14:50.0031 2764 Secdrv - ok
09:14:50.0062 2764 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
09:14:50.0203 2764 seclogon - ok
09:14:50.0218 2764 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
09:14:50.0359 2764 SENS - ok
09:14:50.0390 2764 [ A2D868AEEFF612E70E213C451A70CAFB ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:14:50.0515 2764 Serenum - ok
09:14:50.0546 2764 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:14:50.0671 2764 Serial - ok
09:14:50.0703 2764 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:14:50.0843 2764 Sfloppy - ok
09:14:50.0968 2764 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:14:51.0171 2764 SharedAccess - ok
09:14:51.0234 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:14:51.0375 2764 ShellHWDetection - ok
09:14:51.0375 2764 Simbad - ok
09:14:51.0531 2764 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
09:14:51.0609 2764 SiS315 - ok
09:14:51.0656 2764 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
09:14:51.0671 2764 SISAGP - ok
09:14:51.0687 2764 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
09:14:51.0703 2764 SiSkp - ok
09:14:51.0734 2764 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:14:51.0875 2764 SLIP - ok
09:14:51.0875 2764 Sparrow - ok
09:14:51.0906 2764 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:14:52.0406 2764 splitter - ok
09:14:52.0453 2764 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:14:53.0031 2764 Spooler - ok
09:14:53.0062 2764 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:14:53.0187 2764 sr - ok
09:14:53.0265 2764 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\System32\srsvc.dll
09:14:53.0390 2764 srservice - ok
09:14:53.0515 2764 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:14:53.0609 2764 Srv - ok
09:14:53.0656 2764 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:14:53.0812 2764 SSDPSRV - ok
09:14:53.0953 2764 [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:14:54.0171 2764 stisvc - ok
09:14:54.0218 2764 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:14:54.0343 2764 streamip - ok
09:14:54.0390 2764 [ 2087B202CFE8A2F8A59CECFFFBEC58D5 ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
09:14:54.0390 2764 SunkFilt ( UnsignedFile.Multi.Generic ) - warning
09:14:54.0390 2764 SunkFilt - detected UnsignedFile.Multi.Generic (1)
09:14:54.0406 2764 Sunkfiltp - ok
09:14:54.0421 2764 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:14:54.0546 2764 swenum - ok
09:14:54.0593 2764 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:14:54.0734 2764 swmidi - ok
09:14:54.0750 2764 SwPrv - ok
09:14:54.0765 2764 symc810 - ok
09:14:54.0765 2764 symc8xx - ok
09:14:54.0781 2764 sym_hi - ok
09:14:54.0796 2764 sym_u3 - ok
09:14:54.0843 2764 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:14:54.0968 2764 sysaudio - ok
09:14:55.0031 2764 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:14:55.0187 2764 SysmonLog - ok
09:14:55.0281 2764 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:14:55.0843 2764 TapiSrv - ok
09:14:55.0984 2764 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:14:56.0125 2764 Tcpip - ok
09:14:56.0156 2764 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:14:56.0281 2764 TDPIPE - ok
09:14:56.0312 2764 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:14:56.0437 2764 TDTCP - ok
09:14:56.0468 2764 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:14:56.0593 2764 TermDD - ok
09:14:56.0703 2764 [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService C:\WINDOWS\System32\termsrv.dll
09:14:56.0859 2764 TermService - ok
09:14:56.0921 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:14:57.0062 2764 Themes - ok
09:14:57.0078 2764 TosIde - ok
09:14:57.0125 2764 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:14:57.0265 2764 TrkWks - ok
09:14:57.0312 2764 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:14:57.0437 2764 Udfs - ok
09:14:57.0437 2764 ultra - ok
09:14:57.0531 2764 [ A4815A4884898F355A3513E60843A4FD ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:14:58.0078 2764 Update - ok
09:14:58.0171 2764 [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost C:\WINDOWS\System32\upnphost.dll
09:14:58.0312 2764 upnphost - ok
09:14:58.0328 2764 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
09:14:58.0468 2764 UPS - ok
09:14:58.0500 2764 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:14:58.0640 2764 usbccgp - ok
09:14:58.0671 2764 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:14:58.0812 2764 usbehci - ok
09:14:58.0843 2764 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:14:58.0953 2764 usbhub - ok
09:14:59.0000 2764 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:14:59.0125 2764 usbohci - ok
09:14:59.0156 2764 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:14:59.0281 2764 usbprint - ok
09:14:59.0296 2764 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:14:59.0421 2764 usbscan - ok
09:14:59.0437 2764 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:14:59.0562 2764 USBSTOR - ok
09:14:59.0593 2764 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:14:59.0718 2764 usbuhci - ok
09:14:59.0734 2764 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:14:59.0875 2764 VgaSave - ok
09:14:59.0921 2764 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
09:14:59.0937 2764 viaagp1 - ok
09:15:00.0031 2764 [ E8C619C6C6BDE90D130DDA87150E1944 ] viagfx C:\WINDOWS\system32\DRIVERS\vtmini.sys
09:15:00.0062 2764 viagfx - ok
09:15:00.0093 2764 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
09:15:00.0234 2764 ViaIde - ok
09:15:00.0265 2764 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:15:00.0390 2764 VolSnap - ok
09:15:00.0515 2764 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
09:15:00.0640 2764 VSS - ok
09:15:00.0734 2764 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\System32\w32time.dll
09:15:00.0890 2764 W32Time - ok
09:15:00.0937 2764 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:15:01.0078 2764 Wanarp - ok
09:15:01.0078 2764 WDICA - ok
09:15:01.0140 2764 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:15:01.0640 2764 wdmaud - ok
09:15:01.0703 2764 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
09:15:02.0265 2764 WebClient - ok
09:15:02.0375 2764 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:15:02.0500 2764 winmgmt - ok
09:15:02.0562 2764 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:15:02.0578 2764 WmdmPmSN - ok
09:15:02.0656 2764 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
09:15:02.0812 2764 WmiApSrv - ok
09:15:03.0125 2764 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:15:03.0359 2764 WMPNetworkSvc - ok
09:15:03.0390 2764 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
09:15:03.0406 2764 WpdUsb - ok
09:15:03.0453 2764 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
09:15:03.0578 2764 WS2IFSL - ok
09:15:03.0625 2764 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:15:03.0796 2764 wscsvc - ok
09:15:03.0843 2764 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:15:03.0968 2764 WSTCODEC - ok
09:15:04.0000 2764 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\System32\wuauserv.dll
09:15:04.0140 2764 wuauserv - ok
09:15:04.0187 2764 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:15:04.0203 2764 WudfPf - ok
09:15:04.0234 2764 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:15:04.0250 2764 WudfRd - ok
09:15:04.0312 2764 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:15:04.0328 2764 WudfSvc - ok
09:15:04.0468 2764 [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:15:04.0687 2764 WZCSVC - ok
09:15:04.0750 2764 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:15:04.0875 2764 xmlprov - ok
09:15:04.0937 2764 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
09:15:04.0953 2764 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
09:15:05.0015 2764 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
09:15:05.0031 2764 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
09:15:05.0031 2764 ================ Scan global ===============================
09:15:05.0125 2764 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
09:15:05.0234 2764 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:15:05.0343 2764 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:15:05.0406 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
09:15:05.0406 2764 [Global] - ok
09:15:05.0406 2764 ================ Scan MBR ==================================
09:15:05.0437 2764 [ 8CC68602644010DFDB2A22CB60DDF258 ] \Device\Harddisk0\DR0
09:15:05.0828 2764 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:15:05.0828 2764 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:15:05.0828 2764 ================ Scan VBR ==================================
09:15:05.0828 2764 [ 0142BFA700EB464243DCD8C0161288B1 ] \Device\Harddisk0\DR0\Partition1
09:15:05.0828 2764 \Device\Harddisk0\DR0\Partition1 - ok
09:15:05.0843 2764 [ 5B8C2568CEFDEA46DF849AA868747BC1 ] \Device\Harddisk0\DR0\Partition2
09:15:05.0843 2764 \Device\Harddisk0\DR0\Partition2 - ok
09:15:05.0843 2764 ============================================================
09:15:05.0843 2764 Scan finished
09:15:05.0843 2764 ============================================================
09:15:05.0859 3252 Detected object count: 9
09:15:05.0859 3252 Actual detected object count: 9
09:15:11.0796 3252 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe - copied to quarantine
09:15:11.0796 3252 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:11.0828 3252 C:\WINDOWS\system32\drivers\MxlW2k.sys - copied to quarantine
09:15:11.0843 3252 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0140 3252 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys - copied to quarantine
09:15:14.0140 3252 nv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0234 3252 C:\WINDOWS\system32\nvsvc32.exe - copied to quarantine
09:15:14.0234 3252 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0250 3252 C:\WINDOWS\system32\drivers\pfc.sys - copied to quarantine
09:15:14.0250 3252 pfc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0375 3252 C:\WINDOWS\system32\HPZipm12.exe - copied to quarantine
09:15:14.0375 3252 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0406 3252 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys - copied to quarantine
09:15:14.0406 3252 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0484 3252 C:\WINDOWS\System32\Drivers\sunkfilt.sys - copied to quarantine
09:15:14.0484 3252 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0531 3252 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
09:15:14.0531 3252 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
09:15:14.0546 3252 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
09:15:14.0578 3252 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:15:14.0640 3252 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:15:14.0640 3252 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
09:16:15.0078 0352 Deinitialize success
09:13:23.0015 3184 Detected object count: 9
09:13:23.0015 3184 Actual detected object count: 9
09:13:31.0265 3184 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe - copied to quarantine
09:13:31.0281 3184 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:31.0359 3184 C:\WINDOWS\system32\drivers\MxlW2k.sys - copied to quarantine
09:13:31.0375 3184 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0656 3184 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys - copied to quarantine
09:13:33.0812 3184 nv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0906 3184 C:\WINDOWS\system32\nvsvc32.exe - copied to quarantine
09:13:33.0921 3184 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0937 3184 C:\WINDOWS\system32\drivers\pfc.sys - copied to quarantine
09:13:33.0953 3184 pfc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0062 3184 C:\WINDOWS\system32\HPZipm12.exe - copied to quarantine
09:13:34.0093 3184 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0140 3184 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys - copied to quarantine
09:13:34.0156 3184 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0234 3184 C:\WINDOWS\System32\Drivers\sunkfilt.sys - copied to quarantine
09:13:34.0250 3184 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0296 3184 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
09:13:34.0296 3184 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
09:13:34.0312 3184 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
09:13:34.0359 3184 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:13:34.0390 3184 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:13:34.0390 3184 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:13:39.0187 3184 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:13:39.0296 3184 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:13:39.0359 3184 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
09:14:10.0625 2764 ============================================================
09:14:10.0625 2764 Scan started
09:14:10.0625 2764 Mode: Manual; SigCheck; TDLFS;
09:14:10.0625 2764 ============================================================
09:14:11.0171 2764 ================ Scan system memory ========================
09:14:11.0187 2764 System memory - ok
09:14:11.0187 2764 ================ Scan services =============================
09:14:11.0296 2764 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
09:14:11.0312 2764 !SASCORE - ok
09:14:11.0656 2764 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:14:11.0671 2764 Aavmker4 - ok
09:14:11.0671 2764 Abiosdsk - ok
09:14:11.0687 2764 abp480n5 - ok
09:14:11.0765 2764 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:14:11.0890 2764 ACPI - ok
09:14:11.0921 2764 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:14:12.0046 2764 ACPIEC - ok
09:14:12.0187 2764 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:14:12.0203 2764 AdobeFlashPlayerUpdateSvc - ok
09:14:12.0203 2764 adpu160m - ok
09:14:12.0281 2764 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
09:14:12.0828 2764 aec - ok
09:14:12.0906 2764 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:14:12.0921 2764 AFD - ok
09:14:12.0937 2764 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
09:14:12.0953 2764 AFS2K - ok
09:14:12.0984 2764 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:14:13.0109 2764 agp440 - ok
09:14:13.0109 2764 Aha154x - ok
09:14:13.0125 2764 aic78u2 - ok
09:14:13.0140 2764 aic78xx - ok
09:14:14.0359 2764 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
09:14:15.0656 2764 ALCXWDM - ok
09:14:15.0703 2764 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:14:15.0828 2764 Alerter - ok
09:14:15.0859 2764 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
09:14:15.0984 2764 ALG - ok
09:14:16.0000 2764 AliIde - ok
09:14:16.0046 2764 [ 680AD1C1BB16239E28D8F33A54A7A3C7 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
09:14:16.0171 2764 AmdK7 - ok
09:14:16.0171 2764 amsint - ok
09:14:16.0187 2764 AppMgmt - ok
09:14:16.0234 2764 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:14:16.0343 2764 Arp1394 - ok
09:14:16.0359 2764 asc - ok
09:14:16.0375 2764 asc3350p - ok
09:14:16.0375 2764 asc3550 - ok
09:14:16.0500 2764 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
09:14:16.0500 2764 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
09:14:16.0500 2764 aspnet_state - detected UnsignedFile.Multi.Generic (1)
09:14:16.0546 2764 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:14:16.0562 2764 aswFsBlk - ok
09:14:16.0609 2764 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:14:16.0625 2764 aswMon2 - ok
09:14:16.0640 2764 [ 7C9F0A2AB17D52261A9252A2EB320884 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:14:16.0656 2764 aswRdr - ok
09:14:16.0875 2764 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:14:17.0046 2764 aswSnx - ok
09:14:17.0171 2764 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:14:17.0265 2764 aswSP - ok
09:14:17.0296 2764 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:14:17.0312 2764 aswTdi - ok
09:14:17.0343 2764 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:14:17.0453 2764 AsyncMac - ok
09:14:17.0500 2764 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:14:17.0609 2764 atapi - ok
09:14:17.0625 2764 Atdisk - ok
09:14:17.0687 2764 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:14:17.0828 2764 Atmarpc - ok
09:14:17.0875 2764 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:14:18.0000 2764 AudioSrv - ok
09:14:18.0046 2764 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:14:18.0171 2764 audstub - ok
09:14:18.0234 2764 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:14:18.0250 2764 avast! Antivirus - ok
09:14:18.0656 2764 [ 124D235185004F699FAF115EBD85733E ] AVG Security Toolbar Service C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
09:14:18.0921 2764 AVG Security Toolbar Service - ok
09:14:18.0953 2764 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:14:19.0078 2764 Beep - ok
09:14:19.0218 2764 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\System32\qmgr.dll
09:14:19.0437 2764 BITS - ok
09:14:19.0484 2764 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
09:14:19.0609 2764 Browser - ok
09:14:19.0640 2764 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:14:19.0796 2764 cbidf2k - ok
09:14:19.0843 2764 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:14:19.0968 2764 CCDECODE - ok
09:14:19.0984 2764 cd20xrnt - ok
09:14:20.0015 2764 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:14:20.0140 2764 Cdaudio - ok
09:14:20.0187 2764 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:14:20.0312 2764 Cdfs - ok
09:14:20.0343 2764 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:14:20.0468 2764 Cdrom - ok
09:14:20.0484 2764 Changer - ok
09:14:20.0500 2764 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:14:20.0625 2764 CiSvc - ok
09:14:20.0671 2764 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:14:20.0812 2764 ClipSrv - ok
09:14:20.0812 2764 CmdIde - ok
09:14:20.0828 2764 COMSysApp - ok
09:14:20.0843 2764 Cpqarray - ok
09:14:20.0875 2764 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:14:21.0000 2764 CryptSvc - ok
09:14:21.0015 2764 dac2w2k - ok
09:14:21.0015 2764 dac960nt - ok
09:14:21.0156 2764 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:14:21.0312 2764 DcomLaunch - ok
09:14:21.0375 2764 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:14:21.0953 2764 Dhcp - ok
09:14:21.0984 2764 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:14:22.0109 2764 Disk - ok
09:14:22.0125 2764 dmadmin - ok
09:14:22.0375 2764 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:14:22.0656 2764 dmboot - ok
09:14:22.0750 2764 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:14:22.0890 2764 dmio - ok
09:14:22.0921 2764 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:14:23.0046 2764 dmload - ok
09:14:23.0078 2764 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
09:14:23.0203 2764 dmserver - ok
09:14:23.0234 2764 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:14:23.0359 2764 DMusic - ok
09:14:23.0390 2764 [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:14:23.0515 2764 Dnscache - ok
09:14:23.0515 2764 dpti2o - ok
09:14:23.0531 2764 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:14:23.0656 2764 drmkaud - ok
09:14:23.0703 2764 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:14:23.0843 2764 ERSvc - ok
09:14:23.0906 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
09:14:23.0984 2764 Eventlog - ok
09:14:24.0078 2764 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\System32\es.dll
09:14:24.0093 2764 EventSystem - ok
09:14:24.0156 2764 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:14:24.0281 2764 Fastfat - ok
09:14:24.0359 2764 [ 6339AAF63240DF0634902B98C0F56049 ] fasttx2k C:\WINDOWS\system32\DRIVERS\fasttx2k.sys
09:14:24.0375 2764 fasttx2k - ok
09:14:24.0437 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:14:24.0562 2764 FastUserSwitchingCompatibility - ok
09:14:24.0671 2764 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
09:14:24.0859 2764 Fax - ok
09:14:24.0890 2764 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:14:25.0015 2764 Fdc - ok
09:14:25.0062 2764 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:14:25.0203 2764 Fips - ok
09:14:25.0218 2764 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:14:25.0343 2764 Flpydisk - ok
09:14:25.0406 2764 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:14:25.0546 2764 FltMgr - ok
09:14:25.0546 2764 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:14:25.0687 2764 Fs_Rec - ok
09:14:25.0734 2764 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:14:25.0890 2764 Ftdisk - ok
09:14:25.0937 2764 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:14:26.0062 2764 Gpc - ok
09:14:26.0156 2764 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:14:26.0171 2764 gupdate - ok
09:14:26.0218 2764 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:14:26.0234 2764 gupdatem - ok
09:14:26.0328 2764 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:14:26.0343 2764 gusvc - ok
09:14:26.0421 2764 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:14:26.0546 2764 helpsvc - ok
09:14:26.0546 2764 HidServ - ok
09:14:26.0562 2764 hpn - ok
09:14:26.0609 2764 [ 5FABA4775D4C61E55EC669D643FFC71F ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:14:26.0625 2764 HPZid412 - ok
09:14:26.0640 2764 [ A3C43980EE1F1BEAC778B44EA65DBDD4 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:14:26.0671 2764 HPZipr12 - ok
09:14:26.0718 2764 [ 2906949BD4E206F2BB0DD1896CE9F66F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:14:26.0734 2764 HPZius12 - ok
09:14:26.0843 2764 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:14:26.0859 2764 HTTP - ok
09:14:26.0890 2764 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:14:27.0031 2764 HTTPFilter - ok
09:14:27.0031 2764 i2omgmt - ok
09:14:27.0046 2764 i2omp - ok
09:14:27.0109 2764 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:14:27.0234 2764 i8042prt - ok
09:14:27.0296 2764 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
09:14:27.0312 2764 ialm - ok
09:14:27.0343 2764 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:14:27.0468 2764 Imapi - ok
09:14:27.0531 2764 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\System32\imapi.exe
09:14:27.0671 2764 ImapiService - ok
09:14:27.0687 2764 ini910u - ok
09:14:27.0718 2764 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
09:14:27.0859 2764 IntelIde - ok
09:14:27.0906 2764 [ 279FB78702454DFF2BB445F238C048D2 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:14:28.0031 2764 intelppm - ok
09:14:28.0062 2764 [ 4448006B6BC60E6C027932CFC38D6855 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:14:28.0187 2764 ip6fw - ok
09:14:28.0234 2764 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:14:28.0359 2764 IpFilterDriver - ok
09:14:28.0390 2764 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:14:28.0515 2764 IpInIp - ok
09:14:28.0578 2764 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:14:28.0703 2764 IpNat - ok
09:14:28.0734 2764 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:14:28.0890 2764 IPSec - ok
09:14:28.0921 2764 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:14:29.0046 2764 IRENUM - ok
09:14:29.0093 2764 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:14:29.0218 2764 isapnp - ok
09:14:29.0250 2764 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:14:29.0375 2764 Kbdclass - ok
09:14:29.0453 2764 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:14:30.0046 2764 kmixer - ok
09:14:30.0093 2764 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:14:30.0109 2764 KSecDD - ok
09:14:30.0171 2764 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:14:30.0718 2764 lanmanserver - ok
09:14:30.0796 2764 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:14:30.0828 2764 lanmanworkstation - ok
09:14:30.0828 2764 lbrtfdc - ok
09:14:30.0875 2764 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:14:31.0000 2764 LmHosts - ok
09:14:31.0203 2764 [ 829EF680A308C12E2A80E5E0DA0D958D ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
09:14:31.0375 2764 ltmodem5 - ok
09:14:31.0421 2764 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:14:31.0562 2764 Messenger - ok
09:14:31.0656 2764 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:14:31.0671 2764 Microsoft Office Groove Audit Service - ok
09:14:31.0703 2764 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:14:31.0843 2764 mnmdd - ok
09:14:31.0890 2764 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
09:14:32.0031 2764 mnmsrvc - ok
09:14:32.0062 2764 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:14:32.0187 2764 Modem - ok
09:14:32.0203 2764 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:14:32.0328 2764 Mouclass - ok
09:14:32.0359 2764 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:14:32.0484 2764 MountMgr - ok
09:14:32.0484 2764 mraid35x - ok
09:14:32.0562 2764 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:14:32.0703 2764 MRxDAV - ok
09:14:32.0859 2764 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:14:32.0937 2764 MRxSmb - ok
09:14:32.0968 2764 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:14:33.0093 2764 MSDTC - ok
09:14:33.0109 2764 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:14:33.0234 2764 Msfs - ok
09:14:33.0234 2764 MSIServer - ok
09:14:33.0265 2764 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:14:33.0390 2764 MSKSSRV - ok
09:14:33.0406 2764 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:14:33.0531 2764 MSPCLOCK - ok
09:14:33.0578 2764 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:14:33.0703 2764 MSPQM - ok
09:14:33.0734 2764 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:14:33.0875 2764 mssmbios - ok
09:14:33.0906 2764 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:14:34.0015 2764 MSTEE - ok
09:14:34.0062 2764 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:14:34.0187 2764 Mup - ok
09:14:34.0218 2764 [ C6EEE2261681396E36F3D8A003582C9E ] MxlW2k C:\WINDOWS\system32\drivers\MxlW2k.sys
09:14:34.0218 2764 MxlW2k ( UnsignedFile.Multi.Generic ) - warning
09:14:34.0218 2764 MxlW2k - detected UnsignedFile.Multi.Generic (1)
09:14:34.0265 2764 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:14:34.0390 2764 NABTSFEC - ok
09:14:34.0468 2764 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:14:34.0593 2764 NDIS - ok
09:14:34.0625 2764 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:14:34.0750 2764 NdisIP - ok
09:14:34.0812 2764 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:14:34.0953 2764 NdisTapi - ok
09:14:34.0984 2764 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:14:35.0109 2764 Ndisuio - ok
09:14:35.0156 2764 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:14:35.0281 2764 NdisWan - ok
09:14:35.0296 2764 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:14:35.0437 2764 NDProxy - ok
09:14:35.0468 2764 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:14:35.0593 2764 NetBIOS - ok
09:14:35.0656 2764 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:14:35.0828 2764 NetBT - ok
09:14:35.0921 2764 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
09:14:36.0062 2764 NetDDE - ok
09:14:36.0093 2764 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:14:36.0234 2764 NetDDEdsdm - ok
09:14:36.0328 2764 [ 38CE271DAC632044AA18A7457CBBE2D2 ] NETGEARGenieDaemon C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
09:14:36.0328 2764 NETGEARGenieDaemon - ok
09:14:36.0359 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\System32\lsass.exe
09:14:36.0484 2764 Netlogon - ok
09:14:36.0562 2764 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
09:14:37.0125 2764 Netman - ok
09:14:37.0171 2764 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394 C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:14:37.0296 2764 NIC1394 - ok
09:14:37.0390 2764 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
09:14:37.0453 2764 Nla - ok
09:14:37.0500 2764 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\WINDOWS\system32\drivers\npf.sys
09:14:37.0515 2764 NPF - ok
09:14:37.0546 2764 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:14:37.0671 2764 Npfs - ok
09:14:37.0875 2764 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:14:38.0078 2764 Ntfs - ok
09:14:38.0078 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
09:14:38.0218 2764 NtLmSsp - ok
09:14:38.0375 2764 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:14:38.0578 2764 NtmsSvc - ok
09:14:38.0609 2764 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:14:38.0750 2764 Null - ok
09:14:39.0968 2764 [ 34C114DA0A5E03219444E46F122FF5A3 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:14:41.0062 2764 nv ( UnsignedFile.Multi.Generic ) - warning
09:14:41.0062 2764 nv - detected UnsignedFile.Multi.Generic (1)
09:14:41.0140 2764 [ 9B7ACCFAC9B19B98D54F45A9CF61CA39 ] nvcap C:\WINDOWS\system32\DRIVERS\nvcap.sys
09:14:41.0156 2764 nvcap - ok
09:14:41.0234 2764 [ FF8112711B5F9823D4595579B2130955 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
09:14:41.0250 2764 NVSvc ( UnsignedFile.Multi.Generic ) - warning
09:14:41.0250 2764 NVSvc - detected UnsignedFile.Multi.Generic (1)
09:14:41.0265 2764 [ BEF79A5B5A01BB749AFBED27837E6311 ] NVXBAR C:\WINDOWS\system32\DRIVERS\NVxbar.sys
09:14:41.0281 2764 NVXBAR - ok
09:14:41.0312 2764 [ 01621905AE34BC24AAA2FDDB93977299 ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
09:14:41.0328 2764 nv_agp - ok
09:14:41.0359 2764 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:14:41.0500 2764 NwlnkFlt - ok
09:14:41.0531 2764 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:14:41.0671 2764 NwlnkFwd - ok
09:14:41.0890 2764 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:14:41.0984 2764 odserv - ok
09:14:42.0015 2764 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:14:42.0140 2764 ohci1394 - ok
09:14:42.0218 2764 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:14:42.0234 2764 ose - ok
09:14:42.0296 2764 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:14:42.0421 2764 Parport - ok
09:14:42.0453 2764 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:14:42.0578 2764 PartMgr - ok
09:14:42.0609 2764 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:14:42.0750 2764 ParVdm - ok
09:14:42.0781 2764 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:14:42.0906 2764 PCI - ok
09:14:42.0921 2764 PCIDump - ok
09:14:42.0937 2764 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:14:43.0078 2764 PCIIde - ok
09:14:43.0140 2764 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:14:43.0265 2764 Pcmcia - ok
09:14:43.0281 2764 PDCOMP - ok
09:14:43.0281 2764 PDFRAME - ok
09:14:43.0296 2764 PDRELI - ok
09:14:43.0312 2764 PDRFRAME - ok
09:14:43.0312 2764 perc2 - ok
09:14:43.0328 2764 perc2hib - ok
09:14:43.0359 2764 [ E5AC9F8C128B597DD7919AF96B84172E ] pfc C:\WINDOWS\system32\drivers\pfc.sys
09:14:43.0375 2764 pfc ( UnsignedFile.Multi.Generic ) - warning
09:14:43.0375 2764 pfc - detected UnsignedFile.Multi.Generic (1)
09:14:43.0421 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
09:14:43.0500 2764 PlugPlay - ok
09:14:43.0562 2764 [ 901C43516504CBE582E4C4193E00876A ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:14:43.0562 2764 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
09:14:43.0562 2764 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
09:14:43.0578 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
09:14:43.0718 2764 PolicyAgent - ok
09:14:43.0765 2764 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:14:43.0890 2764 PptpMiniport - ok
09:14:43.0921 2764 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:14:44.0031 2764 Processor - ok
09:14:44.0046 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:14:44.0171 2764 ProtectedStorage - ok
09:14:44.0187 2764 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
09:14:44.0203 2764 Ps2 - ok
09:14:44.0234 2764 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:14:44.0359 2764 PSched - ok
09:14:44.0390 2764 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:14:44.0515 2764 Ptilink - ok
09:14:44.0562 2764 [ 7E1EACDECBA39E0B2A35306426F0DECC ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
09:14:44.0562 2764 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
09:14:44.0562 2764 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
09:14:44.0578 2764 ql1080 - ok
09:14:44.0578 2764 Ql10wnt - ok
09:14:44.0593 2764 ql12160 - ok
09:14:44.0609 2764 ql1240 - ok
09:14:44.0609 2764 ql1280 - ok
09:14:44.0625 2764 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:14:44.0812 2764 RasAcd - ok
09:14:44.0875 2764 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:14:45.0046 2764 RasAuto - ok
09:14:45.0078 2764 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:14:45.0203 2764 Rasl2tp - ok
09:14:45.0281 2764 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
09:14:45.0843 2764 RasMan - ok
09:14:45.0875 2764 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:14:46.0000 2764 RasPppoe - ok
09:14:46.0015 2764 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:14:46.0156 2764 Raspti - ok
09:14:46.0234 2764 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:14:46.0812 2764 Rdbss - ok
09:14:46.0843 2764 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:14:46.0968 2764 RDPCDD - ok
09:14:47.0046 2764 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:14:47.0578 2764 RDPWD - ok
09:14:47.0687 2764 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:14:47.0843 2764 RDSessMgr - ok
09:14:47.0890 2764 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:14:48.0015 2764 redbook - ok
09:14:48.0062 2764 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:14:48.0203 2764 RemoteAccess - ok
09:14:48.0234 2764 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\System32\locator.exe
09:14:48.0359 2764 RpcLocator - ok
09:14:48.0500 2764 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:14:48.0640 2764 RpcSs - ok
09:14:48.0718 2764 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
09:14:48.0875 2764 RSVP - ok
09:14:48.0906 2764 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
09:14:48.0921 2764 rtl8139 - ok
09:14:49.0031 2764 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
09:14:49.0156 2764 S3Psddr - ok
09:14:49.0187 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
09:14:49.0328 2764 SamSs - ok
09:14:49.0359 2764 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
09:14:49.0375 2764 SASDIFSV - ok
09:14:49.0406 2764 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
09:14:49.0406 2764 SASKUTIL - ok
09:14:49.0468 2764 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:14:49.0593 2764 SCardSvr - ok
09:14:49.0671 2764 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:14:49.0843 2764 Schedule - ok
09:14:49.0906 2764 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:14:50.0031 2764 Secdrv - ok
09:14:50.0062 2764 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
09:14:50.0203 2764 seclogon - ok
09:14:50.0218 2764 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
09:14:50.0359 2764 SENS - ok
09:14:50.0390 2764 [ A2D868AEEFF612E70E213C451A70CAFB ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:14:50.0515 2764 Serenum - ok
09:14:50.0546 2764 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:14:50.0671 2764 Serial - ok
09:14:50.0703 2764 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:14:50.0843 2764 Sfloppy - ok
09:14:50.0968 2764 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:14:51.0171 2764 SharedAccess - ok
09:14:51.0234 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:14:51.0375 2764 ShellHWDetection - ok
09:14:51.0375 2764 Simbad - ok
09:14:51.0531 2764 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
09:14:51.0609 2764 SiS315 - ok
09:14:51.0656 2764 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
09:14:51.0671 2764 SISAGP - ok
09:14:51.0687 2764 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
09:14:51.0703 2764 SiSkp - ok
09:14:51.0734 2764 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:14:51.0875 2764 SLIP - ok
09:14:51.0875 2764 Sparrow - ok
09:14:51.0906 2764 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:14:52.0406 2764 splitter - ok
09:14:52.0453 2764 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ] Spooler C:\WINDOWS\system32\spoolsv.exe
09:14:53.0031 2764 Spooler - ok
09:14:53.0062 2764 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:14:53.0187 2764 sr - ok
09:14:53.0265 2764 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\System32\srsvc.dll
09:14:53.0390 2764 srservice - ok
09:14:53.0515 2764 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:14:53.0609 2764 Srv - ok
09:14:53.0656 2764 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:14:53.0812 2764 SSDPSRV - ok
09:14:53.0953 2764 [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:14:54.0171 2764 stisvc - ok
09:14:54.0218 2764 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:14:54.0343 2764 streamip - ok
09:14:54.0390 2764 [ 2087B202CFE8A2F8A59CECFFFBEC58D5 ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
09:14:54.0390 2764 SunkFilt ( UnsignedFile.Multi.Generic ) - warning
09:14:54.0390 2764 SunkFilt - detected UnsignedFile.Multi.Generic (1)
09:14:54.0406 2764 Sunkfiltp - ok
09:14:54.0421 2764 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:14:54.0546 2764 swenum - ok
09:14:54.0593 2764 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:14:54.0734 2764 swmidi - ok
09:14:54.0750 2764 SwPrv - ok
09:14:54.0765 2764 symc810 - ok
09:14:54.0765 2764 symc8xx - ok
09:14:54.0781 2764 sym_hi - ok
09:14:54.0796 2764 sym_u3 - ok
09:14:54.0843 2764 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:14:54.0968 2764 sysaudio - ok
09:14:55.0031 2764 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:14:55.0187 2764 SysmonLog - ok
09:14:55.0281 2764 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:14:55.0843 2764 TapiSrv - ok
09:14:55.0984 2764 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:14:56.0125 2764 Tcpip - ok
09:14:56.0156 2764 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:14:56.0281 2764 TDPIPE - ok
09:14:56.0312 2764 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:14:56.0437 2764 TDTCP - ok
09:14:56.0468 2764 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:14:56.0593 2764 TermDD - ok
09:14:56.0703 2764 [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService C:\WINDOWS\System32\termsrv.dll
09:14:56.0859 2764 TermService - ok
09:14:56.0921 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:14:57.0062 2764 Themes - ok
09:14:57.0078 2764 TosIde - ok
09:14:57.0125 2764 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:14:57.0265 2764 TrkWks - ok
09:14:57.0312 2764 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:14:57.0437 2764 Udfs - ok
09:14:57.0437 2764 ultra - ok
09:14:57.0531 2764 [ A4815A4884898F355A3513E60843A4FD ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:14:58.0078 2764 Update - ok
09:14:58.0171 2764 [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost C:\WINDOWS\System32\upnphost.dll
09:14:58.0312 2764 upnphost - ok
09:14:58.0328 2764 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
09:14:58.0468 2764 UPS - ok
09:14:58.0500 2764 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:14:58.0640 2764 usbccgp - ok
09:14:58.0671 2764 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:14:58.0812 2764 usbehci - ok
09:14:58.0843 2764 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:14:58.0953 2764 usbhub - ok
09:14:59.0000 2764 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:14:59.0125 2764 usbohci - ok
09:14:59.0156 2764 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:14:59.0281 2764 usbprint - ok
09:14:59.0296 2764 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:14:59.0421 2764 usbscan - ok
09:14:59.0437 2764 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:14:59.0562 2764 USBSTOR - ok
09:14:59.0593 2764 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:14:59.0718 2764 usbuhci - ok
09:14:59.0734 2764 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:14:59.0875 2764 VgaSave - ok
09:14:59.0921 2764 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
09:14:59.0937 2764 viaagp1 - ok
09:15:00.0031 2764 [ E8C619C6C6BDE90D130DDA87150E1944 ] viagfx C:\WINDOWS\system32\DRIVERS\vtmini.sys
09:15:00.0062 2764 viagfx - ok
09:15:00.0093 2764 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
09:15:00.0234 2764 ViaIde - ok
09:15:00.0265 2764 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:15:00.0390 2764 VolSnap - ok
09:15:00.0515 2764 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
09:15:00.0640 2764 VSS - ok
09:15:00.0734 2764 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\System32\w32time.dll
09:15:00.0890 2764 W32Time - ok
09:15:00.0937 2764 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:15:01.0078 2764 Wanarp - ok
09:15:01.0078 2764 WDICA - ok
09:15:01.0140 2764 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:15:01.0640 2764 wdmaud - ok
09:15:01.0703 2764 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
09:15:02.0265 2764 WebClient - ok
09:15:02.0375 2764 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:15:02.0500 2764 winmgmt - ok
09:15:02.0562 2764 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:15:02.0578 2764 WmdmPmSN - ok
09:15:02.0656 2764 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
09:15:02.0812 2764 WmiApSrv - ok
09:15:03.0125 2764 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:15:03.0359 2764 WMPNetworkSvc - ok
09:15:03.0390 2764 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
09:15:03.0406 2764 WpdUsb - ok
09:15:03.0453 2764 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
09:15:03.0578 2764 WS2IFSL - ok
09:15:03.0625 2764 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:15:03.0796 2764 wscsvc - ok
09:15:03.0843 2764 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:15:03.0968 2764 WSTCODEC - ok
09:15:04.0000 2764 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\System32\wuauserv.dll
09:15:04.0140 2764 wuauserv - ok
09:15:04.0187 2764 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:15:04.0203 2764 WudfPf - ok
09:15:04.0234 2764 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:15:04.0250 2764 WudfRd - ok
09:15:04.0312 2764 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:15:04.0328 2764 WudfSvc - ok
09:15:04.0468 2764 [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:15:04.0687 2764 WZCSVC - ok
09:15:04.0750 2764 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:15:04.0875 2764 xmlprov - ok
09:15:04.0937 2764 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
09:15:04.0953 2764 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
09:15:05.0015 2764 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
09:15:05.0031 2764 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
09:15:05.0031 2764 ================ Scan global ===============================
09:15:05.0125 2764 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
09:15:05.0234 2764 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:15:05.0343 2764 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:15:05.0406 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
09:15:05.0406 2764 [Global] - ok
09:15:05.0406 2764 ================ Scan MBR ==================================
09:15:05.0437 2764 [ 8CC68602644010DFDB2A22CB60DDF258 ] \Device\Harddisk0\DR0
09:15:05.0828 2764 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:15:05.0828 2764 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:15:05.0828 2764 ================ Scan VBR ==================================
09:15:05.0828 2764 [ 0142BFA700EB464243DCD8C0161288B1 ] \Device\Harddisk0\DR0\Partition1
09:15:05.0828 2764 \Device\Harddisk0\DR0\Partition1 - ok
09:15:05.0843 2764 [ 5B8C2568CEFDEA46DF849AA868747BC1 ] \Device\Harddisk0\DR0\Partition2
09:15:05.0843 2764 \Device\Harddisk0\DR0\Partition2 - ok
09:15:05.0843 2764 ============================================================
09:15:05.0843 2764 Scan finished
09:15:05.0843 2764 ============================================================
09:15:05.0859 3252 Detected object count: 9
09:15:05.0859 3252 Actual detected object count: 9
09:15:11.0796 3252 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe - copied to quarantine
09:15:11.0796 3252 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:11.0828 3252 C:\WINDOWS\system32\drivers\MxlW2k.sys - copied to quarantine
09:15:11.0843 3252 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0140 3252 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys - copied to quarantine
09:15:14.0140 3252 nv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0234 3252 C:\WINDOWS\system32\nvsvc32.exe - copied to quarantine
09:15:14.0234 3252 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0250 3252 C:\WINDOWS\system32\drivers\pfc.sys - copied to quarantine
09:15:14.0250 3252 pfc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0375 3252 C:\WINDOWS\system32\HPZipm12.exe - copied to quarantine
09:15:14.0375 3252 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0406 3252 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys - copied to quarantine
09:15:14.0406 3252 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0484 3252 C:\WINDOWS\System32\Drivers\sunkfilt.sys - copied to quarantine
09:15:14.0484 3252 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0531 3252 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
09:15:14.0531 3252 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
09:15:14.0546 3252 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
09:15:14.0578 3252 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:15:14.0640 3252 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:15:14.0640 3252 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
09:16:15.0078 0352 Deinitialize success
Windows BIOS
Hey, John - Here's the latest scan from TDSS (I was able to download TDSS from your link).
(Part 1):
09:13:23.0015 3184 Detected object count: 9
09:13:23.0015 3184 Actual detected object count: 9
09:13:31.0265 3184 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe - copied to quarantine
09:13:31.0281 3184 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:31.0359 3184 C:\WINDOWS\system32\drivers\MxlW2k.sys - copied to quarantine
09:13:31.0375 3184 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0656 3184 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys - copied to quarantine
09:13:33.0812 3184 nv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0906 3184 C:\WINDOWS\system32\nvsvc32.exe - copied to quarantine
09:13:33.0921 3184 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0937 3184 C:\WINDOWS\system32\drivers\pfc.sys - copied to quarantine
09:13:33.0953 3184 pfc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0062 3184 C:\WINDOWS\system32\HPZipm12.exe - copied to quarantine
09:13:34.0093 3184 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0140 3184 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys - copied to quarantine
09:13:34.0156 3184 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0234 3184 C:\WINDOWS\System32\Drivers\sunkfilt.sys - copied to quarantine
09:13:34.0250 3184 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0296 3184 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
09:13:34.0296 3184 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
09:13:34.0312 3184 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
09:13:34.0359 3184 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:13:34.0390 3184 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:13:34.0390 3184 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:13:39.0187 3184 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:13:39.0296 3184 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:13:39.0359 3184 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
09:14:10.0625 2764 ============================================================
09:14:10.0625 2764 Scan started
09:14:10.0625 2764 Mode: Manual; SigCheck; TDLFS;
09:14:10.0625 2764 ============================================================
09:14:11.0171 2764 ================ Scan system memory ========================
09:14:11.0187 2764 System memory - ok
09:14:11.0187 2764 ================ Scan services =============================
09:14:11.0296 2764 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
09:14:11.0312 2764 !SASCORE - ok
09:14:11.0656 2764 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:14:11.0671 2764 Aavmker4 - ok
09:14:11.0671 2764 Abiosdsk - ok
09:14:11.0687 2764 abp480n5 - ok
09:14:11.0765 2764 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:14:11.0890 2764 ACPI - ok
09:14:11.0921 2764 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:14:12.0046 2764 ACPIEC - ok
09:14:12.0187 2764 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:14:12.0203 2764 AdobeFlashPlayerUpdateSvc - ok
09:14:12.0203 2764 adpu160m - ok
09:14:12.0281 2764 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
09:14:12.0828 2764 aec - ok
09:14:12.0906 2764 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:14:12.0921 2764 AFD - ok
09:14:12.0937 2764 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
09:14:12.0953 2764 AFS2K - ok
09:14:12.0984 2764 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:14:13.0109 2764 agp440 - ok
09:14:13.0109 2764 Aha154x - ok
09:14:13.0125 2764 aic78u2 - ok
09:14:13.0140 2764 aic78xx - ok
09:14:14.0359 2764 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
09:14:15.0656 2764 ALCXWDM - ok
09:14:15.0703 2764 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:14:15.0828 2764 Alerter - ok
09:14:15.0859 2764 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
09:14:15.0984 2764 ALG - ok
09:14:16.0000 2764 AliIde - ok
09:14:16.0046 2764 [ 680AD1C1BB16239E28D8F33A54A7A3C7 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
09:14:16.0171 2764 AmdK7 - ok
09:14:16.0171 2764 amsint - ok
09:14:16.0187 2764 AppMgmt - ok
09:14:16.0234 2764 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:14:16.0343 2764 Arp1394 - ok
09:14:16.0359 2764 asc - ok
09:14:16.0375 2764 asc3350p - ok
09:14:16.0375 2764 asc3550 - ok
09:14:16.0500 2764 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
09:14:16.0500 2764 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
09:14:16.0500 2764 aspnet_state - detected UnsignedFile.Multi.Generic (1)
09:14:16.0546 2764 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:14:16.0562 2764 aswFsBlk - ok
09:14:16.0609 2764 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:14:16.0625 2764 aswMon2 - ok
09:14:16.0640 2764 [ 7C9F0A2AB17D52261A9252A2EB320884 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:14:16.0656 2764 aswRdr - ok
09:14:16.0875 2764 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:14:17.0046 2764 aswSnx - ok
09:14:17.0171 2764 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:14:17.0265 2764 aswSP - ok
09:14:17.0296 2764 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:14:17.0312 2764 aswTdi - ok
09:14:17.0343 2764 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:14:17.0453 2764 AsyncMac - ok
09:14:17.0500 2764 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:14:17.0609 2764 atapi - ok
09:14:17.0625 2764 Atdisk - ok
09:14:17.0687 2764 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:14:17.0828 2764 Atmarpc - ok
09:14:17.0875 2764 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:14:18.0000 2764 AudioSrv - ok
09:14:18.0046 2764 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:14:18.0171 2764 audstub - ok
09:14:18.0234 2764 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:14:18.0250 2764 avast! Antivirus - ok
09:14:18.0656 2764 [ 124D235185004F699FAF115EBD85733E ] AVG Security Toolbar Service C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
09:14:18.0921 2764 AVG Security Toolbar Service - ok
09:14:18.0953 2764 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:14:19.0078 2764 Beep - ok
09:14:19.0218 2764 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\System32\qmgr.dll
09:14:19.0437 2764 BITS - ok
09:14:19.0484 2764 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
09:14:19.0609 2764 Browser - ok
09:14:19.0640 2764 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:14:19.0796 2764 cbidf2k - ok
09:14:19.0843 2764 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:14:19.0968 2764 CCDECODE - ok
09:14:19.0984 2764 cd20xrnt - ok
09:14:20.0015 2764 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:14:20.0140 2764 Cdaudio - ok
09:14:20.0187 2764 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:14:20.0312 2764 Cdfs - ok
09:14:20.0343 2764 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:14:20.0468 2764 Cdrom - ok
09:14:20.0484 2764 Changer - ok
09:14:20.0500 2764 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:14:20.0625 2764 CiSvc - ok
09:14:20.0671 2764 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:14:20.0812 2764 ClipSrv - ok
09:14:20.0812 2764 CmdIde - ok
09:14:20.0828 2764 COMSysApp - ok
09:14:20.0843 2764 Cpqarray - ok
09:14:20.0875 2764 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:14:21.0000 2764 CryptSvc - ok
09:14:21.0015 2764 dac2w2k - ok
09:14:21.0015 2764 dac960nt - ok
09:14:21.0156 2764 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:14:21.0312 2764 DcomLaunch - ok
09:14:21.0375 2764 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:14:21.0953 2764 Dhcp - ok
09:14:21.0984 2764 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:14:22.0109 2764 Disk - ok
09:14:22.0125 2764 dmadmin - ok
09:14:22.0375 2764 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:14:22.0656 2764 dmboot - ok
09:14:22.0750 2764 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:14:22.0890 2764 dmio - ok
09:14:22.0921 2764 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:14:23.0046 2764 dmload - ok
09:14:23.0078 2764 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
09:14:23.0203 2764 dmserver - ok
09:14:23.0234 2764 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:14:23.0359 2764 DMusic - ok
09:14:23.0390 2764 [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:14:23.0515 2764 Dnscache - ok
09:14:23.0515 2764 dpti2o - ok
09:14:23.0531 2764 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:14:23.0656 2764 drmkaud - ok
09:14:23.0703 2764 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:14:23.0843 2764 ERSvc - ok
09:14:23.0906 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
09:14:23.0984 2764 Eventlog - ok
09:14:24.0078 2764 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\System32\es.dll
09:14:24.0093 2764 EventSystem - ok
09:14:24.0156 2764 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:14:24.0281 2764 Fastfat - ok
09:14:24.0359 2764 [ 6339AAF63240DF0634902B98C0F56049 ] fasttx2k C:\WINDOWS\system32\DRIVERS\fasttx2k.sys
09:14:24.0375 2764 fasttx2k - ok
09:14:24.0437 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:14:24.0562 2764 FastUserSwitchingCompatibility - ok
09:14:24.0671 2764 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
09:14:24.0859 2764 Fax - ok
09:14:24.0890 2764 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:14:25.0015 2764 Fdc - ok
09:14:25.0062 2764 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:14:25.0203 2764 Fips - ok
09:14:25.0218 2764 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:14:25.0343 2764 Flpydisk - ok
09:14:25.0406 2764 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:14:25.0546 2764 FltMgr - ok
09:14:25.0546 2764 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:14:25.0687 2764 Fs_Rec - ok
09:14:25.0734 2764 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:14:25.0890 2764 Ftdisk - ok
09:14:25.0937 2764 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:14:26.0062 2764 Gpc - ok
09:14:26.0156 2764 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:14:26.0171 2764 gupdate - ok
09:14:26.0218 2764 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:14:26.0234 2764 gupdatem - ok
09:14:26.0328 2764 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:14:26.0343 2764 gusvc - ok
09:14:26.0421 2764 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:14:26.0546 2764 helpsvc - ok
09:14:26.0546 2764 HidServ - ok
09:14:26.0562 2764 hpn - ok
09:14:26.0609 2764 [ 5FABA4775D4C61E55EC669D643FFC71F ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:14:26.0625 2764 HPZid412 - ok
09:14:26.0640 2764 [ A3C43980EE1F1BEAC778B44EA65DBDD4 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:14:26.0671 2764 HPZipr12 - ok
09:14:26.0718 2764 [ 2906949BD4E206F2BB0DD1896CE9F66F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:14:26.0734 2764 HPZius12 - ok
09:14:26.0843 2764 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:14:26.0859 2764 HTTP - ok
09:14:26.0890 2764 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:14:27.0031 2764 HTTPFilter - ok
09:14:27.0031 2764 i2omgmt - ok
09:14:27.0046 2764 i2omp - ok
09:14:27.0109 2764 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:14:27.0234 2764 i8042prt - ok
09:14:27.0296 2764 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
09:14:27.0312 2764 ialm - ok
09:14:27.0343 2764 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:14:27.0468 2764 Imapi - ok
09:14:27.0531 2764 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\System32\imapi.exe
09:14:27.0671 2764 ImapiService - ok
09:14:27.0687 2764 ini910u - ok
09:14:27.0718 2764 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
09:14:27.0859 2764 IntelIde - ok
09:14:27.0906 2764 [ 279FB78702454DFF2BB445F238C048D2 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:14:28.0031 2764 intelppm - ok
09:14:28.0062 2764 [ 4448006B6BC60E6C027932CFC38D6855 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:14:28.0187 2764 ip6fw - ok
09:14:28.0234 2764 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:14:28.0359 2764 IpFilterDriver - ok
09:14:28.0390 2764 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:14:28.0515 2764 IpInIp - ok
09:14:28.0578 2764 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:14:28.0703 2764 IpNat - ok
09:14:28.0734 2764 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:14:28.0890 2764 IPSec - ok
09:14:28.0921 2764 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:14:29.0046 2764 IRENUM - ok
09:14:29.0093 2764 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:14:29.0218 2764 isapnp - ok
09:14:29.0250 2764 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:14:29.0375 2764 Kbdclass - ok
09:14:29.0453 2764 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:14:30.0046 2764 kmixer - ok
09:14:30.0093 2764 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:14:30.0109 2764 KSecDD - ok
09:14:30.0171 2764 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:14:30.0718 2764 lanmanserver - ok
09:14:30.0796 2764 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:14:30.0828 2764 lanmanworkstation - ok
09:14:30.0828 2764 lbrtfdc - ok
09:14:30.0875 2764 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:14:31.0000 2764 LmHosts - ok
09:14:31.0203 2764 [ 829EF680A308C12E2A80E5E0DA0D958D ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
09:14:31.0375 2764 ltmodem5 - ok
09:14:31.0421 2764 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:14:31.0562 2764 Messenger - ok
09:14:31.0656 2764 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:14:31.0671 2764 Microsoft Office Groove Audit Service - ok
09:14:31.0703 2764 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:14:31.0843 2764 mnmdd - ok
09:14:31.0890 2764 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
09:14:32.0031 2764 mnmsrvc - ok
09:14:32.0062 2764 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:14:32.0187 2764 Modem - ok
09:14:32.0203 2764 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:14:32.0328 2764 Mouclass - ok
09:14:32.0359 2764 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:14:32.0484 2764 MountMgr - ok
09:14:32.0484 2764 mraid35x - ok
09:14:32.0562 2764 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:14:32.0703 2764 MRxDAV - ok
09:14:32.0859 2764 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:14:32.0937 2764 MRxSmb - ok
09:14:32.0968 2764 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:14:33.0093 2764 MSDTC - ok
09:14:33.0109 2764 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:14:33.0234 2764 Msfs - ok
09:14:33.0234 2764 MSIServer - ok
09:14:33.0265 2764 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:14:33.0390 2764 MSKSSRV - ok
09:14:33.0406 2764 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:14:33.0531 2764 MSPCLOCK - ok
09:14:33.0578 2764 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:14:33.0703 2764 MSPQM - ok
09:14:33.0734 2764 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:14:33.0875 2764 mssmbios - ok
09:14:33.0906 2764 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:14:34.0015 2764 MSTEE - ok
09:14:34.0062 2764 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:14:34.0187 2764 Mup - ok
09:14:34.0218 2764 [ C6EEE2261681396E36F3D8A003582C9E ] MxlW2k C:\WINDOWS\system32\drivers\MxlW2k.sys
09:14:34.0218 2764 MxlW2k ( UnsignedFile.Multi.Generic ) - warning
09:14:34.0218 2764 MxlW2k - detected UnsignedFile.Multi.Generic (1)
09:14:34.0265 2764 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:14:34.0390 2764 NABTSFEC - ok
09:14:34.0468 2764 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:14:34.0593 2764 NDIS - ok
09:14:34.0625 2764 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:14:34.0750 2764 NdisIP - ok
09:14:34.0812 2764 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:14:34.0953 2764 NdisTapi - ok
09:14:34.0984 2764 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:14:35.0109 2764 Ndisuio - ok
09:14:35.0156 2764 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:14:35.0281 2764 NdisWan - ok
09:14:35.0296 2764 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:14:35.0437 2764 NDProxy - ok
09:14:35.0468 2764 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:14:35.0593 2764 NetBIOS - ok
09:14:35.0656 2764 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:14:35.0828 2764 NetBT - ok
09:14:35.0921 2764 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
09:14:36.0062 2764 NetDDE - ok
09:14:36.0093 2764 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:14:36.0234 2764 NetDDEdsdm - ok
09:14:36.0328 2764 [ 38CE271DAC632044AA18A7457CBBE2D2 ] NETGEARGenieDaemon C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
09:14:36.0328 2764 NETGEARGenieDaemon - ok
09:14:36.0359 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\System32\lsass.exe
09:14:36.0484 2764 Netlogon - ok
09:14:36.0562 2764 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
09:14:37.0125 2764 Netman - ok
09:14:37.0171 2764 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394
Hey, John - Here's the latest scan from TDSS (I was able to download TDSS from your link).
(Part 1):
09:13:23.0015 3184 Detected object count: 9
09:13:23.0015 3184 Actual detected object count: 9
09:13:31.0265 3184 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe - copied to quarantine
09:13:31.0281 3184 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:31.0359 3184 C:\WINDOWS\system32\drivers\MxlW2k.sys - copied to quarantine
09:13:31.0375 3184 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0656 3184 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys - copied to quarantine
09:13:33.0812 3184 nv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0906 3184 C:\WINDOWS\system32\nvsvc32.exe - copied to quarantine
09:13:33.0921 3184 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:33.0937 3184 C:\WINDOWS\system32\drivers\pfc.sys - copied to quarantine
09:13:33.0953 3184 pfc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0062 3184 C:\WINDOWS\system32\HPZipm12.exe - copied to quarantine
09:13:34.0093 3184 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0140 3184 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys - copied to quarantine
09:13:34.0156 3184 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0234 3184 C:\WINDOWS\System32\Drivers\sunkfilt.sys - copied to quarantine
09:13:34.0250 3184 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:13:34.0296 3184 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
09:13:34.0296 3184 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
09:13:34.0312 3184 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
09:13:34.0359 3184 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:13:34.0390 3184 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:13:34.0390 3184 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:13:39.0187 3184 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:13:39.0296 3184 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:13:39.0359 3184 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
09:14:10.0625 2764 ============================================================
09:14:10.0625 2764 Scan started
09:14:10.0625 2764 Mode: Manual; SigCheck; TDLFS;
09:14:10.0625 2764 ============================================================
09:14:11.0171 2764 ================ Scan system memory ========================
09:14:11.0187 2764 System memory - ok
09:14:11.0187 2764 ================ Scan services =============================
09:14:11.0296 2764 [ 01E81C84AD1D0ACC61CF3CFD06632210 ] !SASCORE C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
09:14:11.0312 2764 !SASCORE - ok
09:14:11.0656 2764 [ 149A8F7ADF9742554DC323E290551E3E ] Aavmker4 C:\WINDOWS\system32\drivers\Aavmker4.sys
09:14:11.0671 2764 Aavmker4 - ok
09:14:11.0671 2764 Abiosdsk - ok
09:14:11.0687 2764 abp480n5 - ok
09:14:11.0765 2764 [ A10C7534F7223F4A73A948967D00E69B ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys
09:14:11.0890 2764 ACPI - ok
09:14:11.0921 2764 [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys
09:14:12.0046 2764 ACPIEC - ok
09:14:12.0187 2764 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
09:14:12.0203 2764 AdobeFlashPlayerUpdateSvc - ok
09:14:12.0203 2764 adpu160m - ok
09:14:12.0281 2764 [ 1EE7B434BA961EF845DE136224C30FEC ] aec C:\WINDOWS\system32\drivers\aec.sys
09:14:12.0828 2764 aec - ok
09:14:12.0906 2764 [ 55E6E1C51B6D30E54335750955453702 ] AFD C:\WINDOWS\System32\drivers\afd.sys
09:14:12.0921 2764 AFD - ok
09:14:12.0937 2764 [ 0EBB674888CBDEFD5773341C16DD6A07 ] AFS2K C:\WINDOWS\system32\drivers\AFS2K.sys
09:14:12.0953 2764 AFS2K - ok
09:14:12.0984 2764 [ 2C428FA0C3E3A01ED93C9B2A27D8D4BB ] agp440 C:\WINDOWS\system32\DRIVERS\agp440.sys
09:14:13.0109 2764 agp440 - ok
09:14:13.0109 2764 Aha154x - ok
09:14:13.0125 2764 aic78u2 - ok
09:14:13.0140 2764 aic78xx - ok
09:14:14.0359 2764 [ DD8520280304B6145A6BE31008748C7C ] ALCXWDM C:\WINDOWS\system32\drivers\ALCXWDM.SYS
09:14:15.0656 2764 ALCXWDM - ok
09:14:15.0703 2764 [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter C:\WINDOWS\system32\alrsvc.dll
09:14:15.0828 2764 Alerter - ok
09:14:15.0859 2764 [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG C:\WINDOWS\System32\alg.exe
09:14:15.0984 2764 ALG - ok
09:14:16.0000 2764 AliIde - ok
09:14:16.0046 2764 [ 680AD1C1BB16239E28D8F33A54A7A3C7 ] AmdK7 C:\WINDOWS\system32\DRIVERS\amdk7.sys
09:14:16.0171 2764 AmdK7 - ok
09:14:16.0171 2764 amsint - ok
09:14:16.0187 2764 AppMgmt - ok
09:14:16.0234 2764 [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394 C:\WINDOWS\system32\DRIVERS\arp1394.sys
09:14:16.0343 2764 Arp1394 - ok
09:14:16.0359 2764 asc - ok
09:14:16.0375 2764 asc3350p - ok
09:14:16.0375 2764 asc3550 - ok
09:14:16.0500 2764 [ E1A1206A4FB19B675E947B29CCD25FBA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe
09:14:16.0500 2764 aspnet_state ( UnsignedFile.Multi.Generic ) - warning
09:14:16.0500 2764 aspnet_state - detected UnsignedFile.Multi.Generic (1)
09:14:16.0546 2764 [ DE6ED95AEF259979B2830450072A627B ] aswFsBlk C:\WINDOWS\system32\drivers\aswFsBlk.sys
09:14:16.0562 2764 aswFsBlk - ok
09:14:16.0609 2764 [ 84F0BE324EE111338589F448C3E8BAB2 ] aswMon2 C:\WINDOWS\system32\drivers\aswMon2.sys
09:14:16.0625 2764 aswMon2 - ok
09:14:16.0640 2764 [ 7C9F0A2AB17D52261A9252A2EB320884 ] aswRdr C:\WINDOWS\system32\drivers\aswRdr.sys
09:14:16.0656 2764 aswRdr - ok
09:14:16.0875 2764 [ B32E9AD44A1DBB3E8095E80F8DF32B03 ] aswSnx C:\WINDOWS\system32\drivers\aswSnx.sys
09:14:17.0046 2764 aswSnx - ok
09:14:17.0171 2764 [ 67B558895695545FB0568B7541F3BCA7 ] aswSP C:\WINDOWS\system32\drivers\aswSP.sys
09:14:17.0265 2764 aswSP - ok
09:14:17.0296 2764 [ E3E73B2B73A4DFADFDDF557192C4B08A ] aswTdi C:\WINDOWS\system32\drivers\aswTdi.sys
09:14:17.0312 2764 aswTdi - ok
09:14:17.0343 2764 [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys
09:14:17.0453 2764 AsyncMac - ok
09:14:17.0500 2764 [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys
09:14:17.0609 2764 atapi - ok
09:14:17.0625 2764 Atdisk - ok
09:14:17.0687 2764 [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys
09:14:17.0828 2764 Atmarpc - ok
09:14:17.0875 2764 [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv C:\WINDOWS\System32\audiosrv.dll
09:14:18.0000 2764 AudioSrv - ok
09:14:18.0046 2764 [ D9F724AA26C010A217C97606B160ED68 ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys
09:14:18.0171 2764 audstub - ok
09:14:18.0234 2764 [ 8FA553E9AE69808D99C164733A0F9590 ] avast! Antivirus C:\Program Files\AVAST Software\Avast\AvastSvc.exe
09:14:18.0250 2764 avast! Antivirus - ok
09:14:18.0656 2764 [ 124D235185004F699FAF115EBD85733E ] AVG Security Toolbar Service C:\Program Files\AVG\AVG10\Toolbar\ToolbarBroker.exe
09:14:18.0921 2764 AVG Security Toolbar Service - ok
09:14:18.0953 2764 [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep C:\WINDOWS\system32\drivers\Beep.sys
09:14:19.0078 2764 Beep - ok
09:14:19.0218 2764 [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS C:\WINDOWS\System32\qmgr.dll
09:14:19.0437 2764 BITS - ok
09:14:19.0484 2764 [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser C:\WINDOWS\System32\browser.dll
09:14:19.0609 2764 Browser - ok
09:14:19.0640 2764 [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k C:\WINDOWS\system32\drivers\cbidf2k.sys
09:14:19.0796 2764 cbidf2k - ok
09:14:19.0843 2764 [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
09:14:19.0968 2764 CCDECODE - ok
09:14:19.0984 2764 cd20xrnt - ok
09:14:20.0015 2764 [ C1B486A7658353D33A10CC15211A873B ] Cdaudio C:\WINDOWS\system32\drivers\Cdaudio.sys
09:14:20.0140 2764 Cdaudio - ok
09:14:20.0187 2764 [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys
09:14:20.0312 2764 Cdfs - ok
09:14:20.0343 2764 [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys
09:14:20.0468 2764 Cdrom - ok
09:14:20.0484 2764 Changer - ok
09:14:20.0500 2764 [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc C:\WINDOWS\system32\cisvc.exe
09:14:20.0625 2764 CiSvc - ok
09:14:20.0671 2764 [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv C:\WINDOWS\system32\clipsrv.exe
09:14:20.0812 2764 ClipSrv - ok
09:14:20.0812 2764 CmdIde - ok
09:14:20.0828 2764 COMSysApp - ok
09:14:20.0843 2764 Cpqarray - ok
09:14:20.0875 2764 [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll
09:14:21.0000 2764 CryptSvc - ok
09:14:21.0015 2764 dac2w2k - ok
09:14:21.0015 2764 dac960nt - ok
09:14:21.0156 2764 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] DcomLaunch C:\WINDOWS\system32\rpcss.dll
09:14:21.0312 2764 DcomLaunch - ok
09:14:21.0375 2764 [ EF545E1A4B043DA4C84E230DD471C55F ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll
09:14:21.0953 2764 Dhcp - ok
09:14:21.0984 2764 [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys
09:14:22.0109 2764 Disk - ok
09:14:22.0125 2764 dmadmin - ok
09:14:22.0375 2764 [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys
09:14:22.0656 2764 dmboot - ok
09:14:22.0750 2764 [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio C:\WINDOWS\system32\drivers\dmio.sys
09:14:22.0890 2764 dmio - ok
09:14:22.0921 2764 [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload C:\WINDOWS\system32\drivers\dmload.sys
09:14:23.0046 2764 dmload - ok
09:14:23.0078 2764 [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver C:\WINDOWS\System32\dmserver.dll
09:14:23.0203 2764 dmserver - ok
09:14:23.0234 2764 [ A6F881284AC1150E37D9AE47FF601267 ] DMusic C:\WINDOWS\system32\drivers\DMusic.sys
09:14:23.0359 2764 DMusic - ok
09:14:23.0390 2764 [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll
09:14:23.0515 2764 Dnscache - ok
09:14:23.0515 2764 dpti2o - ok
09:14:23.0531 2764 [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud C:\WINDOWS\system32\drivers\drmkaud.sys
09:14:23.0656 2764 drmkaud - ok
09:14:23.0703 2764 [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc C:\WINDOWS\System32\ersvc.dll
09:14:23.0843 2764 ERSvc - ok
09:14:23.0906 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] Eventlog C:\WINDOWS\system32\services.exe
09:14:23.0984 2764 Eventlog - ok
09:14:24.0078 2764 [ 60D1A6342238378BFB7545C81EE3606C ] EventSystem C:\WINDOWS\System32\es.dll
09:14:24.0093 2764 EventSystem - ok
09:14:24.0156 2764 [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys
09:14:24.0281 2764 Fastfat - ok
09:14:24.0359 2764 [ 6339AAF63240DF0634902B98C0F56049 ] fasttx2k C:\WINDOWS\system32\DRIVERS\fasttx2k.sys
09:14:24.0375 2764 fasttx2k - ok
09:14:24.0437 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
09:14:24.0562 2764 FastUserSwitchingCompatibility - ok
09:14:24.0671 2764 [ FCBD571FA0EE8DC238944AE5FAB74461 ] Fax C:\WINDOWS\system32\fxssvc.exe
09:14:24.0859 2764 Fax - ok
09:14:24.0890 2764 [ CED2E8396A8838E59D8FD529C680E02C ] Fdc C:\WINDOWS\system32\DRIVERS\fdc.sys
09:14:25.0015 2764 Fdc - ok
09:14:25.0062 2764 [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips C:\WINDOWS\system32\drivers\Fips.sys
09:14:25.0203 2764 Fips - ok
09:14:25.0218 2764 [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk C:\WINDOWS\system32\DRIVERS\flpydisk.sys
09:14:25.0343 2764 Flpydisk - ok
09:14:25.0406 2764 [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys
09:14:25.0546 2764 FltMgr - ok
09:14:25.0546 2764 [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys
09:14:25.0687 2764 Fs_Rec - ok
09:14:25.0734 2764 [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys
09:14:25.0890 2764 Ftdisk - ok
09:14:25.0937 2764 [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys
09:14:26.0062 2764 Gpc - ok
09:14:26.0156 2764 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
09:14:26.0171 2764 gupdate - ok
09:14:26.0218 2764 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
09:14:26.0234 2764 gupdatem - ok
09:14:26.0328 2764 [ 5D4BC124FAAE6730AC002CDB67BF1A1C ] gusvc C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
09:14:26.0343 2764 gusvc - ok
09:14:26.0421 2764 [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
09:14:26.0546 2764 helpsvc - ok
09:14:26.0546 2764 HidServ - ok
09:14:26.0562 2764 hpn - ok
09:14:26.0609 2764 [ 5FABA4775D4C61E55EC669D643FFC71F ] HPZid412 C:\WINDOWS\system32\DRIVERS\HPZid412.sys
09:14:26.0625 2764 HPZid412 - ok
09:14:26.0640 2764 [ A3C43980EE1F1BEAC778B44EA65DBDD4 ] HPZipr12 C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
09:14:26.0671 2764 HPZipr12 - ok
09:14:26.0718 2764 [ 2906949BD4E206F2BB0DD1896CE9F66F ] HPZius12 C:\WINDOWS\system32\DRIVERS\HPZius12.sys
09:14:26.0734 2764 HPZius12 - ok
09:14:26.0843 2764 [ 9F8B0F4276F618964FD118BE4289B7CD ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys
09:14:26.0859 2764 HTTP - ok
09:14:26.0890 2764 [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter C:\WINDOWS\System32\w3ssl.dll
09:14:27.0031 2764 HTTPFilter - ok
09:14:27.0031 2764 i2omgmt - ok
09:14:27.0046 2764 i2omp - ok
09:14:27.0109 2764 [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys
09:14:27.0234 2764 i8042prt - ok
09:14:27.0296 2764 [ 1406D6EF4436AEE970EFE13193123965 ] ialm C:\WINDOWS\system32\DRIVERS\ialmnt5.sys
09:14:27.0312 2764 ialm - ok
09:14:27.0343 2764 [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi C:\WINDOWS\system32\DRIVERS\imapi.sys
09:14:27.0468 2764 Imapi - ok
09:14:27.0531 2764 [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService C:\WINDOWS\System32\imapi.exe
09:14:27.0671 2764 ImapiService - ok
09:14:27.0687 2764 ini910u - ok
09:14:27.0718 2764 [ 2D722B2B54AB55B2FA475EB58D7B2AAD ] IntelIde C:\WINDOWS\System32\DRIVERS\intelide.sys
09:14:27.0859 2764 IntelIde - ok
09:14:27.0906 2764 [ 279FB78702454DFF2BB445F238C048D2 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys
09:14:28.0031 2764 intelppm - ok
09:14:28.0062 2764 [ 4448006B6BC60E6C027932CFC38D6855 ] ip6fw C:\WINDOWS\system32\drivers\ip6fw.sys
09:14:28.0187 2764 ip6fw - ok
09:14:28.0234 2764 [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
09:14:28.0359 2764 IpFilterDriver - ok
09:14:28.0390 2764 [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp C:\WINDOWS\system32\DRIVERS\ipinip.sys
09:14:28.0515 2764 IpInIp - ok
09:14:28.0578 2764 [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys
09:14:28.0703 2764 IpNat - ok
09:14:28.0734 2764 [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys
09:14:28.0890 2764 IPSec - ok
09:14:28.0921 2764 [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys
09:14:29.0046 2764 IRENUM - ok
09:14:29.0093 2764 [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys
09:14:29.0218 2764 isapnp - ok
09:14:29.0250 2764 [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys
09:14:29.0375 2764 Kbdclass - ok
09:14:29.0453 2764 [ BA5DEDA4D934E6288C2F66CAF58D2562 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys
09:14:30.0046 2764 kmixer - ok
09:14:30.0093 2764 [ 674D3E5A593475915DC6643317192403 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys
09:14:30.0109 2764 KSecDD - ok
09:14:30.0171 2764 [ 0CB3AF149A0BAC0836022CA307C7A0F8 ] lanmanserver C:\WINDOWS\System32\srvsvc.dll
09:14:30.0718 2764 lanmanserver - ok
09:14:30.0796 2764 [ E1F27CFCD114EC9F1E1F44674B2FF9F0 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
09:14:30.0828 2764 lanmanworkstation - ok
09:14:30.0828 2764 lbrtfdc - ok
09:14:30.0875 2764 [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll
09:14:31.0000 2764 LmHosts - ok
09:14:31.0203 2764 [ 829EF680A308C12E2A80E5E0DA0D958D ] ltmodem5 C:\WINDOWS\system32\DRIVERS\ltmdmnt.sys
09:14:31.0375 2764 ltmodem5 - ok
09:14:31.0421 2764 [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger C:\WINDOWS\System32\msgsvc.dll
09:14:31.0562 2764 Messenger - ok
09:14:31.0656 2764 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
09:14:31.0671 2764 Microsoft Office Groove Audit Service - ok
09:14:31.0703 2764 [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys
09:14:31.0843 2764 mnmdd - ok
09:14:31.0890 2764 [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc C:\WINDOWS\System32\mnmsrvc.exe
09:14:32.0031 2764 mnmsrvc - ok
09:14:32.0062 2764 [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem C:\WINDOWS\system32\drivers\Modem.sys
09:14:32.0187 2764 Modem - ok
09:14:32.0203 2764 [ 34E1F0031153E491910E12551400192C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys
09:14:32.0328 2764 Mouclass - ok
09:14:32.0359 2764 [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys
09:14:32.0484 2764 MountMgr - ok
09:14:32.0484 2764 mraid35x - ok
09:14:32.0562 2764 [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys
09:14:32.0703 2764 MRxDAV - ok
09:14:32.0859 2764 [ FB6C89BB3CE282B08BDB1E3C179E1C39 ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
09:14:32.0937 2764 MRxSmb - ok
09:14:32.0968 2764 [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC C:\WINDOWS\System32\msdtc.exe
09:14:33.0093 2764 MSDTC - ok
09:14:33.0109 2764 [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys
09:14:33.0234 2764 Msfs - ok
09:14:33.0234 2764 MSIServer - ok
09:14:33.0265 2764 [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys
09:14:33.0390 2764 MSKSSRV - ok
09:14:33.0406 2764 [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys
09:14:33.0531 2764 MSPCLOCK - ok
09:14:33.0578 2764 [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys
09:14:33.0703 2764 MSPQM - ok
09:14:33.0734 2764 [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys
09:14:33.0875 2764 mssmbios - ok
09:14:33.0906 2764 [ BF13612142995096AB084F2DB7F40F77 ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys
09:14:34.0015 2764 MSTEE - ok
09:14:34.0062 2764 [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup C:\WINDOWS\system32\drivers\Mup.sys
09:14:34.0187 2764 Mup - ok
09:14:34.0218 2764 [ C6EEE2261681396E36F3D8A003582C9E ] MxlW2k C:\WINDOWS\system32\drivers\MxlW2k.sys
09:14:34.0218 2764 MxlW2k ( UnsignedFile.Multi.Generic ) - warning
09:14:34.0218 2764 MxlW2k - detected UnsignedFile.Multi.Generic (1)
09:14:34.0265 2764 [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
09:14:34.0390 2764 NABTSFEC - ok
09:14:34.0468 2764 [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys
09:14:34.0593 2764 NDIS - ok
09:14:34.0625 2764 [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys
09:14:34.0750 2764 NdisIP - ok
09:14:34.0812 2764 [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys
09:14:34.0953 2764 NdisTapi - ok
09:14:34.0984 2764 [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys
09:14:35.0109 2764 Ndisuio - ok
09:14:35.0156 2764 [ 0B90E255A9490166AB368CD55A529893 ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys
09:14:35.0281 2764 NdisWan - ok
09:14:35.0296 2764 [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys
09:14:35.0437 2764 NDProxy - ok
09:14:35.0468 2764 [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys
09:14:35.0593 2764 NetBIOS - ok
09:14:35.0656 2764 [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys
09:14:35.0828 2764 NetBT - ok
09:14:35.0921 2764 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE C:\WINDOWS\system32\netdde.exe
09:14:36.0062 2764 NetDDE - ok
09:14:36.0093 2764 [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe
09:14:36.0234 2764 NetDDEdsdm - ok
09:14:36.0328 2764 [ 38CE271DAC632044AA18A7457CBBE2D2 ] NETGEARGenieDaemon C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
09:14:36.0328 2764 NETGEARGenieDaemon - ok
09:14:36.0359 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon C:\WINDOWS\System32\lsass.exe
09:14:36.0484 2764 Netlogon - ok
09:14:36.0562 2764 [ 36739B39267914BA69AD0610A0299732 ] Netman C:\WINDOWS\System32\netman.dll
09:14:37.0125 2764 Netman - ok
09:14:37.0171 2764 [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394
(part 2):
C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:14:37.0296 2764 NIC1394 - ok
09:14:37.0390 2764 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
09:14:37.0453 2764 Nla - ok
09:14:37.0500 2764 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\WINDOWS\system32\drivers\npf.sys
09:14:37.0515 2764 NPF - ok
09:14:37.0546 2764 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:14:37.0671 2764 Npfs - ok
09:14:37.0875 2764 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:14:38.0078 2764 Ntfs - ok
09:14:38.0078 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
09:14:38.0218 2764 NtLmSsp - ok
09:14:38.0375 2764 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:14:38.0578 2764 NtmsSvc - ok
09:14:38.0609 2764 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:14:38.0750 2764 Null - ok
09:14:39.0968 2764 [ 34C114DA0A5E03219444E46F122FF5A3 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:14:41.0062 2764 nv ( UnsignedFile.Multi.Generic ) - warning
09:14:41.0062 2764 nv - detected UnsignedFile.Multi.Generic (1)
09:14:41.0140 2764 [ 9B7ACCFAC9B19B98D54F45A9CF61CA39 ] nvcap C:\WINDOWS\system32\DRIVERS\nvcap.sys
09:14:41.0156 2764 nvcap - ok
09:14:41.0234 2764 [ FF8112711B5F9823D4595579B2130955 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
09:14:41.0250 2764 NVSvc ( UnsignedFile.Multi.Generic ) - warning
09:14:41.0250 2764 NVSvc - detected UnsignedFile.Multi.Generic (1)
09:14:41.0265 2764 [ BEF79A5B5A01BB749AFBED27837E6311 ] NVXBAR C:\WINDOWS\system32\DRIVERS\NVxbar.sys
09:14:41.0281 2764 NVXBAR - ok
09:14:41.0312 2764 [ 01621905AE34BC24AAA2FDDB93977299 ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
09:14:41.0328 2764 nv_agp - ok
09:14:41.0359 2764 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:14:41.0500 2764 NwlnkFlt - ok
09:14:41.0531 2764 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:14:41.0671 2764 NwlnkFwd - ok
09:14:41.0890 2764 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:14:41.0984 2764 odserv - ok
09:14:42.0015 2764 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:14:42.0140 2764 ohci1394 - ok
09:14:42.0218 2764 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:14:42.0234 2764 ose - ok
09:14:42.0296 2764 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:14:42.0421 2764 Parport - ok
09:14:42.0453 2764 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:14:42.0578 2764 PartMgr - ok
09:14:42.0609 2764 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:14:42.0750 2764 ParVdm - ok
09:14:42.0781 2764 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:14:42.0906 2764 PCI - ok
09:14:42.0921 2764 PCIDump - ok
09:14:42.0937 2764 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:14:43.0078 2764 PCIIde - ok
09:14:43.0140 2764 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:14:43.0265 2764 Pcmcia - ok
09:14:43.0281 2764 PDCOMP - ok
09:14:43.0281 2764 PDFRAME - ok
09:14:43.0296 2764 PDRELI - ok
09:14:43.0312 2764 PDRFRAME - ok
09:14:43.0312 2764 perc2 - ok
09:14:43.0328 2764 perc2hib - ok
09:14:43.0359 2764 [ E5AC9F8C128B597DD7919AF96B84172E ] pfc C:\WINDOWS\system32\drivers\pfc.sys
09:14:43.0375 2764 pfc ( UnsignedFile.Multi.Generic ) - warning
09:14:43.0375 2764 pfc - detected UnsignedFile.Multi.Generic (1)
09:14:43.0421 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
09:14:43.0500 2764 PlugPlay - ok
09:14:43.0562 2764 [ 901C43516504CBE582E4C4193E00876A ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:14:43.0562 2764 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
09:14:43.0562 2764 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
09:14:43.0578 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
09:14:43.0718 2764 PolicyAgent - ok
09:14:43.0765 2764 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:14:43.0890 2764 PptpMiniport - ok
09:14:43.0921 2764 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:14:44.0031 2764 Processor - ok
09:14:44.0046 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:14:44.0171 2764 ProtectedStorage - ok
09:14:44.0187 2764 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
09:14:44.0203 2764 Ps2 - ok
09:14:44.0234 2764 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:14:44.0359 2764 PSched - ok
09:14:44.0390 2764 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:14:44.0515 2764 Ptilink - ok
09:14:44.0562 2764 [ 7E1EACDECBA39E0B2A35306426F0DECC ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
09:14:44.0562 2764 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
09:14:44.0562 2764 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
09:14:44.0578 2764 ql1080 - ok
09:14:44.0578 2764 Ql10wnt - ok
09:14:44.0593 2764 ql12160 - ok
09:14:44.0609 2764 ql1240 - ok
09:14:44.0609 2764 ql1280 - ok
09:14:44.0625 2764 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:14:44.0812 2764 RasAcd - ok
09:14:44.0875 2764 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:14:45.0046 2764 RasAuto - ok
09:14:45.0078 2764 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:14:45.0203 2764 Rasl2tp - ok
09:14:45.0281 2764 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
09:14:45.0843 2764 RasMan - ok
09:14:45.0875 2764 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:14:46.0000 2764 RasPppoe - ok
09:14:46.0015 2764 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:14:46.0156 2764 Raspti - ok
09:14:46.0234 2764 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:14:46.0812 2764 Rdbss - ok
09:14:46.0843 2764 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:14:46.0968 2764 RDPCDD - ok
09:14:47.0046 2764 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:14:47.0578 2764 RDPWD - ok
09:14:47.0687 2764 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:14:47.0843 2764 RDSessMgr - ok
09:14:47.0890 2764 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:14:48.0015 2764 redbook - ok
09:14:48.0062 2764 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:14:48.0203 2764 RemoteAccess - ok
09:14:48.0234 2764 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\System32\locator.exe
09:14:48.0359 2764 RpcLocator - ok
09:14:48.0500 2764 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:14:48.0640 2764 RpcSs - ok
09:14:48.0718 2764 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
09:14:48.0875 2764 RSVP - ok
09:14:48.0906 2764 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
09:14:48.0921 2764 rtl8139 - ok
09:14:49.0031 2764 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
09:14:49.0156 2764 S3Psddr - ok
09:14:49.0187 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
09:14:49.0328 2764 SamSs - ok
09:14:49.0359 2764 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
09:14:49.0375 2764 SASDIFSV - ok
09:14:49.0406 2764 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
09:14:49.0406 2764 SASKUTIL - ok
09:14:49.0468 2764 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:14:49.0593 2764 SCardSvr - ok
09:14:49.0671 2764 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:14:49.0843 2764 Schedule - ok
09:14:49.0906 2764 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:14:50.0031 2764 Secdrv - ok
09:14:50.0062 2764 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
09:14:50.0203 2764 seclogon - ok
09:14:50.0218 2764 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
09:14:50.0359 2764 SENS - ok
09:14:50.0390 2764 [ A2D868AEEFF612E70E213C451A70CAFB ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:14:50.0515 2764 Serenum - ok
09:14:50.0546 2764 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:14:50.0671 2764 Serial - ok
09:14:50.0703 2764 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:14:50.0843 2764 Sfloppy - ok
09:14:50.0968 2764 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:14:51.0171 2764 SharedAccess - ok
09:14:51.0234 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:14:51.0375 2764 ShellHWDetection - ok
09:14:51.0375 2764 Simbad - ok
09:14:51.0531 2764 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
09:14:51.0609 2764 SiS315 - ok
09:14:51.0656 2764 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
09:14:51.0671 2764 SISAGP - ok
09:14:51.0687 2764 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
09:14:51.0703 2764 SiSkp - ok
09:14:51.0734 2764 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:14:51.0875 2764 SLIP - ok
09:14:51.0875 2764 Sparrow - ok
09:14:51.0906 2764 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:14:52.0406 2764 splitter - ok
09:14:52.0453 2764 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ]
C:\WINDOWS\system32\DRIVERS\nic1394.sys
09:14:37.0296 2764 NIC1394 - ok
09:14:37.0390 2764 [ 097722F235A1FB698BF9234E01B52637 ] Nla C:\WINDOWS\System32\mswsock.dll
09:14:37.0453 2764 Nla - ok
09:14:37.0500 2764 [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] NPF C:\WINDOWS\system32\drivers\npf.sys
09:14:37.0515 2764 NPF - ok
09:14:37.0546 2764 [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys
09:14:37.0671 2764 Npfs - ok
09:14:37.0875 2764 [ B78BE402C3F63DD55521F73876951CDD ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys
09:14:38.0078 2764 Ntfs - ok
09:14:38.0078 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp C:\WINDOWS\System32\lsass.exe
09:14:38.0218 2764 NtLmSsp - ok
09:14:38.0375 2764 [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll
09:14:38.0578 2764 NtmsSvc - ok
09:14:38.0609 2764 [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null C:\WINDOWS\system32\drivers\Null.sys
09:14:38.0750 2764 Null - ok
09:14:39.0968 2764 [ 34C114DA0A5E03219444E46F122FF5A3 ] nv C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
09:14:41.0062 2764 nv ( UnsignedFile.Multi.Generic ) - warning
09:14:41.0062 2764 nv - detected UnsignedFile.Multi.Generic (1)
09:14:41.0140 2764 [ 9B7ACCFAC9B19B98D54F45A9CF61CA39 ] nvcap C:\WINDOWS\system32\DRIVERS\nvcap.sys
09:14:41.0156 2764 nvcap - ok
09:14:41.0234 2764 [ FF8112711B5F9823D4595579B2130955 ] NVSvc C:\WINDOWS\system32\nvsvc32.exe
09:14:41.0250 2764 NVSvc ( UnsignedFile.Multi.Generic ) - warning
09:14:41.0250 2764 NVSvc - detected UnsignedFile.Multi.Generic (1)
09:14:41.0265 2764 [ BEF79A5B5A01BB749AFBED27837E6311 ] NVXBAR C:\WINDOWS\system32\DRIVERS\NVxbar.sys
09:14:41.0281 2764 NVXBAR - ok
09:14:41.0312 2764 [ 01621905AE34BC24AAA2FDDB93977299 ] nv_agp C:\WINDOWS\system32\DRIVERS\nv_agp.sys
09:14:41.0328 2764 nv_agp - ok
09:14:41.0359 2764 [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
09:14:41.0500 2764 NwlnkFlt - ok
09:14:41.0531 2764 [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
09:14:41.0671 2764 NwlnkFwd - ok
09:14:41.0890 2764 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
09:14:41.0984 2764 odserv - ok
09:14:42.0015 2764 [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394 C:\WINDOWS\system32\DRIVERS\ohci1394.sys
09:14:42.0140 2764 ohci1394 - ok
09:14:42.0218 2764 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
09:14:42.0234 2764 ose - ok
09:14:42.0296 2764 [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys
09:14:42.0421 2764 Parport - ok
09:14:42.0453 2764 [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys
09:14:42.0578 2764 PartMgr - ok
09:14:42.0609 2764 [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm C:\WINDOWS\system32\drivers\ParVdm.sys
09:14:42.0750 2764 ParVdm - ok
09:14:42.0781 2764 [ 8086D9979234B603AD5BC2F5D890B234 ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys
09:14:42.0906 2764 PCI - ok
09:14:42.0921 2764 PCIDump - ok
09:14:42.0937 2764 [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys
09:14:43.0078 2764 PCIIde - ok
09:14:43.0140 2764 [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys
09:14:43.0265 2764 Pcmcia - ok
09:14:43.0281 2764 PDCOMP - ok
09:14:43.0281 2764 PDFRAME - ok
09:14:43.0296 2764 PDRELI - ok
09:14:43.0312 2764 PDRFRAME - ok
09:14:43.0312 2764 perc2 - ok
09:14:43.0328 2764 perc2hib - ok
09:14:43.0359 2764 [ E5AC9F8C128B597DD7919AF96B84172E ] pfc C:\WINDOWS\system32\drivers\pfc.sys
09:14:43.0375 2764 pfc ( UnsignedFile.Multi.Generic ) - warning
09:14:43.0375 2764 pfc - detected UnsignedFile.Multi.Generic (1)
09:14:43.0421 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] PlugPlay C:\WINDOWS\system32\services.exe
09:14:43.0500 2764 PlugPlay - ok
09:14:43.0562 2764 [ 901C43516504CBE582E4C4193E00876A ] Pml Driver HPZ12 C:\WINDOWS\system32\HPZipm12.exe
09:14:43.0562 2764 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning
09:14:43.0562 2764 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1)
09:14:43.0578 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent C:\WINDOWS\System32\lsass.exe
09:14:43.0718 2764 PolicyAgent - ok
09:14:43.0765 2764 [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys
09:14:43.0890 2764 PptpMiniport - ok
09:14:43.0921 2764 [ 0D97D88720A4087EC93AF7DBB303B30A ] Processor C:\WINDOWS\system32\DRIVERS\processr.sys
09:14:44.0031 2764 Processor - ok
09:14:44.0046 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
09:14:44.0171 2764 ProtectedStorage - ok
09:14:44.0187 2764 [ BFFDB363485501A38F0BCA83AEC810DB ] Ps2 C:\WINDOWS\system32\DRIVERS\PS2.sys
09:14:44.0203 2764 Ps2 - ok
09:14:44.0234 2764 [ 48671F327553DCF1D27F6197F622A668 ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys
09:14:44.0359 2764 PSched - ok
09:14:44.0390 2764 [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys
09:14:44.0515 2764 Ptilink - ok
09:14:44.0562 2764 [ 7E1EACDECBA39E0B2A35306426F0DECC ] PxHelp20 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys
09:14:44.0562 2764 PxHelp20 ( UnsignedFile.Multi.Generic ) - warning
09:14:44.0562 2764 PxHelp20 - detected UnsignedFile.Multi.Generic (1)
09:14:44.0578 2764 ql1080 - ok
09:14:44.0578 2764 Ql10wnt - ok
09:14:44.0593 2764 ql12160 - ok
09:14:44.0609 2764 ql1240 - ok
09:14:44.0609 2764 ql1280 - ok
09:14:44.0625 2764 [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys
09:14:44.0812 2764 RasAcd - ok
09:14:44.0875 2764 [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto C:\WINDOWS\System32\rasauto.dll
09:14:45.0046 2764 RasAuto - ok
09:14:45.0078 2764 [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
09:14:45.0203 2764 Rasl2tp - ok
09:14:45.0281 2764 [ 49B5EED5FB89D39456A2F616CCD8BA5D ] RasMan C:\WINDOWS\System32\rasmans.dll
09:14:45.0843 2764 RasMan - ok
09:14:45.0875 2764 [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys
09:14:46.0000 2764 RasPppoe - ok
09:14:46.0015 2764 [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys
09:14:46.0156 2764 Raspti - ok
09:14:46.0234 2764 [ 03B965B1CA47F6EF60EB5E51CB50E0AF ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys
09:14:46.0812 2764 Rdbss - ok
09:14:46.0843 2764 [ 4912D5B403614CE99C28420F75353332 ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
09:14:46.0968 2764 RDPCDD - ok
09:14:47.0046 2764 [ B54CD38A9EBFBF2B3561426E3FE26F62 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys
09:14:47.0578 2764 RDPWD - ok
09:14:47.0687 2764 [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe
09:14:47.0843 2764 RDSessMgr - ok
09:14:47.0890 2764 [ B31B4588E4086D8D84ADBF9845C2402B ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys
09:14:48.0015 2764 redbook - ok
09:14:48.0062 2764 [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll
09:14:48.0203 2764 RemoteAccess - ok
09:14:48.0234 2764 [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator C:\WINDOWS\System32\locator.exe
09:14:48.0359 2764 RpcLocator - ok
09:14:48.0500 2764 [ 01095FEBF33BEEA00C2A0730B9B3EC28 ] RpcSs C:\WINDOWS\system32\rpcss.dll
09:14:48.0640 2764 RpcSs - ok
09:14:48.0718 2764 [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP C:\WINDOWS\System32\rsvp.exe
09:14:48.0875 2764 RSVP - ok
09:14:48.0906 2764 [ 2EF9C0DC26B30B2318B1FC3FAA1F0AE7 ] rtl8139 C:\WINDOWS\system32\DRIVERS\R8139n51.SYS
09:14:48.0921 2764 rtl8139 - ok
09:14:49.0031 2764 [ 0DBCC071A268E0340A2BA6BDD98BACE4 ] S3Psddr C:\WINDOWS\system32\DRIVERS\s3gnbm.sys
09:14:49.0156 2764 S3Psddr - ok
09:14:49.0187 2764 [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs C:\WINDOWS\system32\lsass.exe
09:14:49.0328 2764 SamSs - ok
09:14:49.0359 2764 [ 39763504067962108505BFF25F024345 ] SASDIFSV C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
09:14:49.0375 2764 SASDIFSV - ok
09:14:49.0406 2764 [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
09:14:49.0406 2764 SASKUTIL - ok
09:14:49.0468 2764 [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe
09:14:49.0593 2764 SCardSvr - ok
09:14:49.0671 2764 [ 92360854316611F6CC471612213C3D92 ] Schedule C:\WINDOWS\system32\schedsvc.dll
09:14:49.0843 2764 Schedule - ok
09:14:49.0906 2764 [ D26E26EA516450AF9D072635C60387F4 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys
09:14:50.0031 2764 Secdrv - ok
09:14:50.0062 2764 [ B1E0CE09895376871746F36DC5773B4F ] seclogon C:\WINDOWS\System32\seclogon.dll
09:14:50.0203 2764 seclogon - ok
09:14:50.0218 2764 [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS C:\WINDOWS\system32\sens.dll
09:14:50.0359 2764 SENS - ok
09:14:50.0390 2764 [ A2D868AEEFF612E70E213C451A70CAFB ] Serenum C:\WINDOWS\system32\DRIVERS\serenum.sys
09:14:50.0515 2764 Serenum - ok
09:14:50.0546 2764 [ CD9404D115A00D249F70A371B46D5A26 ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys
09:14:50.0671 2764 Serial - ok
09:14:50.0703 2764 [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys
09:14:50.0843 2764 Sfloppy - ok
09:14:50.0968 2764 [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess C:\WINDOWS\System32\ipnathlp.dll
09:14:51.0171 2764 SharedAccess - ok
09:14:51.0234 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
09:14:51.0375 2764 ShellHWDetection - ok
09:14:51.0375 2764 Simbad - ok
09:14:51.0531 2764 [ BDFEF5C5D41BA377852389E8F07104EA ] SiS315 C:\WINDOWS\system32\DRIVERS\sisgrp.sys
09:14:51.0609 2764 SiS315 - ok
09:14:51.0656 2764 [ 923D23638C616EECB0D811461161D0B8 ] SISAGP C:\WINDOWS\system32\DRIVERS\SISAGPX.sys
09:14:51.0671 2764 SISAGP - ok
09:14:51.0687 2764 [ 7E9E5823AFBB5AF2851ABB1659FF627D ] SiSkp C:\WINDOWS\system32\DRIVERS\srvkp.sys
09:14:51.0703 2764 SiSkp - ok
09:14:51.0734 2764 [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys
09:14:51.0875 2764 SLIP - ok
09:14:51.0875 2764 Sparrow - ok
09:14:51.0906 2764 [ 0CE218578FFF5F4F7E4201539C45C78F ] splitter C:\WINDOWS\system32\drivers\splitter.sys
09:14:52.0406 2764 splitter - ok
09:14:52.0453 2764 [ DA81EC57ACD4CDC3D4C51CF3D409AF9F ]
(Part 3):
Spooler C:\WINDOWS\system32\spoolsv.exe
09:14:53.0031 2764 Spooler - ok
09:14:53.0062 2764 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:14:53.0187 2764 sr - ok
09:14:53.0265 2764 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\System32\srsvc.dll
09:14:53.0390 2764 srservice - ok
09:14:53.0515 2764 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:14:53.0609 2764 Srv - ok
09:14:53.0656 2764 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:14:53.0812 2764 SSDPSRV - ok
09:14:53.0953 2764 [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:14:54.0171 2764 stisvc - ok
09:14:54.0218 2764 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:14:54.0343 2764 streamip - ok
09:14:54.0390 2764 [ 2087B202CFE8A2F8A59CECFFFBEC58D5 ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
09:14:54.0390 2764 SunkFilt ( UnsignedFile.Multi.Generic ) - warning
09:14:54.0390 2764 SunkFilt - detected UnsignedFile.Multi.Generic (1)
09:14:54.0406 2764 Sunkfiltp - ok
09:14:54.0421 2764 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:14:54.0546 2764 swenum - ok
09:14:54.0593 2764 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:14:54.0734 2764 swmidi - ok
09:14:54.0750 2764 SwPrv - ok
09:14:54.0765 2764 symc810 - ok
09:14:54.0765 2764 symc8xx - ok
09:14:54.0781 2764 sym_hi - ok
09:14:54.0796 2764 sym_u3 - ok
09:14:54.0843 2764 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:14:54.0968 2764 sysaudio - ok
09:14:55.0031 2764 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:14:55.0187 2764 SysmonLog - ok
09:14:55.0281 2764 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:14:55.0843 2764 TapiSrv - ok
09:14:55.0984 2764 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:14:56.0125 2764 Tcpip - ok
09:14:56.0156 2764 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:14:56.0281 2764 TDPIPE - ok
09:14:56.0312 2764 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:14:56.0437 2764 TDTCP - ok
09:14:56.0468 2764 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:14:56.0593 2764 TermDD - ok
09:14:56.0703 2764 [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService C:\WINDOWS\System32\termsrv.dll
09:14:56.0859 2764 TermService - ok
09:14:56.0921 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:14:57.0062 2764 Themes - ok
09:14:57.0078 2764 TosIde - ok
09:14:57.0125 2764 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:14:57.0265 2764 TrkWks - ok
09:14:57.0312 2764 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:14:57.0437 2764 Udfs - ok
09:14:57.0437 2764 ultra - ok
09:14:57.0531 2764 [ A4815A4884898F355A3513E60843A4FD ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:14:58.0078 2764 Update - ok
09:14:58.0171 2764 [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost C:\WINDOWS\System32\upnphost.dll
09:14:58.0312 2764 upnphost - ok
09:14:58.0328 2764 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
09:14:58.0468 2764 UPS - ok
09:14:58.0500 2764 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:14:58.0640 2764 usbccgp - ok
09:14:58.0671 2764 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:14:58.0812 2764 usbehci - ok
09:14:58.0843 2764 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:14:58.0953 2764 usbhub - ok
09:14:59.0000 2764 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:14:59.0125 2764 usbohci - ok
09:14:59.0156 2764 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:14:59.0281 2764 usbprint - ok
09:14:59.0296 2764 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:14:59.0421 2764 usbscan - ok
09:14:59.0437 2764 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:14:59.0562 2764 USBSTOR - ok
09:14:59.0593 2764 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:14:59.0718 2764 usbuhci - ok
09:14:59.0734 2764 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:14:59.0875 2764 VgaSave - ok
09:14:59.0921 2764 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
09:14:59.0937 2764 viaagp1 - ok
09:15:00.0031 2764 [ E8C619C6C6BDE90D130DDA87150E1944 ] viagfx C:\WINDOWS\system32\DRIVERS\vtmini.sys
09:15:00.0062 2764 viagfx - ok
09:15:00.0093 2764 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
09:15:00.0234 2764 ViaIde - ok
09:15:00.0265 2764 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:15:00.0390 2764 VolSnap - ok
09:15:00.0515 2764 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
09:15:00.0640 2764 VSS - ok
09:15:00.0734 2764 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\System32\w32time.dll
09:15:00.0890 2764 W32Time - ok
09:15:00.0937 2764 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:15:01.0078 2764 Wanarp - ok
09:15:01.0078 2764 WDICA - ok
09:15:01.0140 2764 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:15:01.0640 2764 wdmaud - ok
09:15:01.0703 2764 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
09:15:02.0265 2764 WebClient - ok
09:15:02.0375 2764 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:15:02.0500 2764 winmgmt - ok
09:15:02.0562 2764 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:15:02.0578 2764 WmdmPmSN - ok
09:15:02.0656 2764 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
09:15:02.0812 2764 WmiApSrv - ok
09:15:03.0125 2764 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:15:03.0359 2764 WMPNetworkSvc - ok
09:15:03.0390 2764 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
09:15:03.0406 2764 WpdUsb - ok
09:15:03.0453 2764 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
09:15:03.0578 2764 WS2IFSL - ok
09:15:03.0625 2764 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:15:03.0796 2764 wscsvc - ok
09:15:03.0843 2764 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:15:03.0968 2764 WSTCODEC - ok
09:15:04.0000 2764 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\System32\wuauserv.dll
09:15:04.0140 2764 wuauserv - ok
09:15:04.0187 2764 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:15:04.0203 2764 WudfPf - ok
09:15:04.0234 2764 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:15:04.0250 2764 WudfRd - ok
09:15:04.0312 2764 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:15:04.0328 2764 WudfSvc - ok
09:15:04.0468 2764 [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:15:04.0687 2764 WZCSVC - ok
09:15:04.0750 2764 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:15:04.0875 2764 xmlprov - ok
09:15:04.0937 2764 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
09:15:04.0953 2764 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
09:15:05.0015 2764 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
09:15:05.0031 2764 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
09:15:05.0031 2764 ================ Scan global ===============================
09:15:05.0125 2764 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
09:15:05.0234 2764 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:15:05.0343 2764 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:15:05.0406 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
09:15:05.0406 2764 [Global] - ok
09:15:05.0406 2764 ================ Scan MBR ==================================
09:15:05.0437 2764 [ 8CC68602644010DFDB2A22CB60DDF258 ] \Device\Harddisk0\DR0
09:15:05.0828 2764 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:15:05.0828 2764 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:15:05.0828 2764 ================ Scan VBR ==================================
09:15:05.0828 2764 [ 0142BFA700EB464243DCD8C0161288B1 ] \Device\Harddisk0\DR0\Partition1
09:15:05.0828 2764 \Device\Harddisk0\DR0\Partition1 - ok
09:15:05.0843 2764 [ 5B8C2568CEFDEA46DF849AA868747BC1 ] \Device\Harddisk0\DR0\Partition2
09:15:05.0843 2764 \Device\Harddisk0\DR0\Partition2 - ok
09:15:05.0843 2764 ============================================================
09:15:05.0843 2764 Scan finished
09:15:05.0843 2764 ============================================================
09:15:05.0859 3252 Detected object count: 9
09:15:05.0859 3252 Actual detected object count: 9
09:15:11.0796 3252 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe - copied to quarantine
09:15:11.0796 3252 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:11.0828 3252 C:\WINDOWS\system32\drivers\MxlW2k.sys - copied to quarantine
09:15:11.0843 3252 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0140 3252 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys - copied to quarantine
09:15:14.0140 3252 nv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0234 3252 C:\WINDOWS\system32\nvsvc32.exe - copied to quarantine
09:15:14.0234 3252 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0250 3252 C:\WINDOWS\system32\drivers\pfc.sys - copied to quarantine
09:15:14.0250 3252 pfc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0375 3252 C:\WINDOWS\system32\HPZipm12.exe - copied to quarantine
09:15:14.0375 3252 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0406 3252 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys - copied to quarantine
09:15:14.0406 3252 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0484 3252 C:\WINDOWS\System32\Drivers\sunkfilt.sys - copied to quarantine
09:15:14.0484 3252 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0531 3252 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
09:15:14.0531 3252 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
09:15:14.0546 3252 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
09:15:14.0578 3252 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:15:14.0640 3252 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:15:14.0640 3252 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
09:16:15.0078 0352 Deinitialize success
Spooler C:\WINDOWS\system32\spoolsv.exe
09:14:53.0031 2764 Spooler - ok
09:14:53.0062 2764 [ E41B6D037D6CD08461470AF04500DC24 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys
09:14:53.0187 2764 sr - ok
09:14:53.0265 2764 [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice C:\WINDOWS\System32\srsvc.dll
09:14:53.0390 2764 srservice - ok
09:14:53.0515 2764 [ 7A4F147CC6B133F905F6E65E2F8669FB ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys
09:14:53.0609 2764 Srv - ok
09:14:53.0656 2764 [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll
09:14:53.0812 2764 SSDPSRV - ok
09:14:53.0953 2764 [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc C:\WINDOWS\system32\wiaservc.dll
09:14:54.0171 2764 stisvc - ok
09:14:54.0218 2764 [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys
09:14:54.0343 2764 streamip - ok
09:14:54.0390 2764 [ 2087B202CFE8A2F8A59CECFFFBEC58D5 ] SunkFilt C:\WINDOWS\System32\Drivers\sunkfilt.sys
09:14:54.0390 2764 SunkFilt ( UnsignedFile.Multi.Generic ) - warning
09:14:54.0390 2764 SunkFilt - detected UnsignedFile.Multi.Generic (1)
09:14:54.0406 2764 Sunkfiltp - ok
09:14:54.0421 2764 [ 03C1BAE4766E2450219D20B993D6E046 ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys
09:14:54.0546 2764 swenum - ok
09:14:54.0593 2764 [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys
09:14:54.0734 2764 swmidi - ok
09:14:54.0750 2764 SwPrv - ok
09:14:54.0765 2764 symc810 - ok
09:14:54.0765 2764 symc8xx - ok
09:14:54.0781 2764 sym_hi - ok
09:14:54.0796 2764 sym_u3 - ok
09:14:54.0843 2764 [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys
09:14:54.0968 2764 sysaudio - ok
09:14:55.0031 2764 [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe
09:14:55.0187 2764 SysmonLog - ok
09:14:55.0281 2764 [ FB78839B36025AA286A51289ED28B73E ] TapiSrv C:\WINDOWS\System32\tapisrv.dll
09:14:55.0843 2764 TapiSrv - ok
09:14:55.0984 2764 [ 2A5554FC5B1E04E131230E3CE035C3F9 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys
09:14:56.0125 2764 Tcpip - ok
09:14:56.0156 2764 [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys
09:14:56.0281 2764 TDPIPE - ok
09:14:56.0312 2764 [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys
09:14:56.0437 2764 TDTCP - ok
09:14:56.0468 2764 [ A540A99C281D933F3D69D55E48727F47 ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys
09:14:56.0593 2764 TermDD - ok
09:14:56.0703 2764 [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService C:\WINDOWS\System32\termsrv.dll
09:14:56.0859 2764 TermService - ok
09:14:56.0921 2764 [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes C:\WINDOWS\System32\shsvcs.dll
09:14:57.0062 2764 Themes - ok
09:14:57.0078 2764 TosIde - ok
09:14:57.0125 2764 [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks C:\WINDOWS\system32\trkwks.dll
09:14:57.0265 2764 TrkWks - ok
09:14:57.0312 2764 [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys
09:14:57.0437 2764 Udfs - ok
09:14:57.0437 2764 ultra - ok
09:14:57.0531 2764 [ A4815A4884898F355A3513E60843A4FD ] Update C:\WINDOWS\system32\DRIVERS\update.sys
09:14:58.0078 2764 Update - ok
09:14:58.0171 2764 [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost C:\WINDOWS\System32\upnphost.dll
09:14:58.0312 2764 upnphost - ok
09:14:58.0328 2764 [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS C:\WINDOWS\System32\ups.exe
09:14:58.0468 2764 UPS - ok
09:14:58.0500 2764 [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys
09:14:58.0640 2764 usbccgp - ok
09:14:58.0671 2764 [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys
09:14:58.0812 2764 usbehci - ok
09:14:58.0843 2764 [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys
09:14:58.0953 2764 usbhub - ok
09:14:59.0000 2764 [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci C:\WINDOWS\system32\DRIVERS\usbohci.sys
09:14:59.0125 2764 usbohci - ok
09:14:59.0156 2764 [ A42369B7CD8886CD7C70F33DA6FCBCF5 ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys
09:14:59.0281 2764 usbprint - ok
09:14:59.0296 2764 [ A6BC71402F4F7DD5B77FD7F4A8DDBA85 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys
09:14:59.0421 2764 usbscan - ok
09:14:59.0437 2764 [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
09:14:59.0562 2764 USBSTOR - ok
09:14:59.0593 2764 [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys
09:14:59.0718 2764 usbuhci - ok
09:14:59.0734 2764 [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys
09:14:59.0875 2764 VgaSave - ok
09:14:59.0921 2764 [ 4B039BBD037B01F5DB5A144C837F283A ] viaagp1 C:\WINDOWS\system32\DRIVERS\viaagp1.sys
09:14:59.0937 2764 viaagp1 - ok
09:15:00.0031 2764 [ E8C619C6C6BDE90D130DDA87150E1944 ] viagfx C:\WINDOWS\system32\DRIVERS\vtmini.sys
09:15:00.0062 2764 viagfx - ok
09:15:00.0093 2764 [ 59CB1338AD3654417BEA49636457F65D ] ViaIde C:\WINDOWS\System32\DRIVERS\viaide.sys
09:15:00.0234 2764 ViaIde - ok
09:15:00.0265 2764 [ EE4660083DEBA849FF6C485D944B379B ] VolSnap C:\WINDOWS\system32\drivers\VolSnap.sys
09:15:00.0390 2764 VolSnap - ok
09:15:00.0515 2764 [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS C:\WINDOWS\System32\vssvc.exe
09:15:00.0640 2764 VSS - ok
09:15:00.0734 2764 [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time C:\WINDOWS\System32\w32time.dll
09:15:00.0890 2764 W32Time - ok
09:15:00.0937 2764 [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys
09:15:01.0078 2764 Wanarp - ok
09:15:01.0078 2764 WDICA - ok
09:15:01.0140 2764 [ EFD235CA22B57C81118C1AEB4798F1C1 ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys
09:15:01.0640 2764 wdmaud - ok
09:15:01.0703 2764 [ 265F534EF76832435AFBF771EC97176D ] WebClient C:\WINDOWS\System32\webclnt.dll
09:15:02.0265 2764 WebClient - ok
09:15:02.0375 2764 [ F399242A80C4066FD155EFA4CF96658E ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll
09:15:02.0500 2764 winmgmt - ok
09:15:02.0562 2764 [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN C:\WINDOWS\system32\MsPMSNSv.dll
09:15:02.0578 2764 WmdmPmSN - ok
09:15:02.0656 2764 [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv C:\WINDOWS\System32\wbem\wmiapsrv.exe
09:15:02.0812 2764 WmiApSrv - ok
09:15:03.0125 2764 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files\Windows Media Player\WMPNetwk.exe
09:15:03.0359 2764 WMPNetworkSvc - ok
09:15:03.0390 2764 [ CF4DEF1BF66F06964DC0D91844239104 ] WpdUsb C:\WINDOWS\system32\DRIVERS\wpdusb.sys
09:15:03.0406 2764 WpdUsb - ok
09:15:03.0453 2764 [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL C:\WINDOWS\System32\drivers\ws2ifsl.sys
09:15:03.0578 2764 WS2IFSL - ok
09:15:03.0625 2764 [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc C:\WINDOWS\system32\wscsvc.dll
09:15:03.0796 2764 wscsvc - ok
09:15:03.0843 2764 [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
09:15:03.0968 2764 WSTCODEC - ok
09:15:04.0000 2764 [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv C:\WINDOWS\System32\wuauserv.dll
09:15:04.0140 2764 wuauserv - ok
09:15:04.0187 2764 [ F15FEAFFFBB3644CCC80C5DA584E6311 ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys
09:15:04.0203 2764 WudfPf - ok
09:15:04.0234 2764 [ 28B524262BCE6DE1F7EF9F510BA3985B ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys
09:15:04.0250 2764 WudfRd - ok
09:15:04.0312 2764 [ 05231C04253C5BC30B26CBAAE680ED89 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll
09:15:04.0328 2764 WudfSvc - ok
09:15:04.0468 2764 [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll
09:15:04.0687 2764 WZCSVC - ok
09:15:04.0750 2764 [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov C:\WINDOWS\System32\xmlprov.dll
09:15:04.0875 2764 xmlprov - ok
09:15:04.0937 2764 [ FD1F4E9CF06C71C8D73A24ACF18D8296 ] {6080A529-897E-4629-A488-ABA0C29B635E} C:\WINDOWS\system32\drivers\ialmsbw.sys
09:15:04.0953 2764 {6080A529-897E-4629-A488-ABA0C29B635E} - ok
09:15:05.0015 2764 [ D4D7331D33D1FA73E588E5CE0D90A4C1 ] {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} C:\WINDOWS\system32\drivers\ialmkchw.sys
09:15:05.0031 2764 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok
09:15:05.0031 2764 ================ Scan global ===============================
09:15:05.0125 2764 [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
09:15:05.0234 2764 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:15:05.0343 2764 [ 31F2735965A8AD1EB56F774D703DDAF9 ] C:\WINDOWS\system32\winsrv.dll
09:15:05.0406 2764 [ 37561F8D4160D62DA86D24AE41FAE8DE ] C:\WINDOWS\system32\services.exe
09:15:05.0406 2764 [Global] - ok
09:15:05.0406 2764 ================ Scan MBR ==================================
09:15:05.0437 2764 [ 8CC68602644010DFDB2A22CB60DDF258 ] \Device\Harddisk0\DR0
09:15:05.0828 2764 \Device\Harddisk0\DR0 ( TDSS File System ) - warning
09:15:05.0828 2764 \Device\Harddisk0\DR0 - detected TDSS File System (1)
09:15:05.0828 2764 ================ Scan VBR ==================================
09:15:05.0828 2764 [ 0142BFA700EB464243DCD8C0161288B1 ] \Device\Harddisk0\DR0\Partition1
09:15:05.0828 2764 \Device\Harddisk0\DR0\Partition1 - ok
09:15:05.0843 2764 [ 5B8C2568CEFDEA46DF849AA868747BC1 ] \Device\Harddisk0\DR0\Partition2
09:15:05.0843 2764 \Device\Harddisk0\DR0\Partition2 - ok
09:15:05.0843 2764 ============================================================
09:15:05.0843 2764 Scan finished
09:15:05.0843 2764 ============================================================
09:15:05.0859 3252 Detected object count: 9
09:15:05.0859 3252 Actual detected object count: 9
09:15:11.0796 3252 C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_state.exe - copied to quarantine
09:15:11.0796 3252 aspnet_state ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:11.0828 3252 C:\WINDOWS\system32\drivers\MxlW2k.sys - copied to quarantine
09:15:11.0843 3252 MxlW2k ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0140 3252 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys - copied to quarantine
09:15:14.0140 3252 nv ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0234 3252 C:\WINDOWS\system32\nvsvc32.exe - copied to quarantine
09:15:14.0234 3252 NVSvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0250 3252 C:\WINDOWS\system32\drivers\pfc.sys - copied to quarantine
09:15:14.0250 3252 pfc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0375 3252 C:\WINDOWS\system32\HPZipm12.exe - copied to quarantine
09:15:14.0375 3252 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0406 3252 C:\WINDOWS\system32\DRIVERS\PxHelp20.sys - copied to quarantine
09:15:14.0406 3252 PxHelp20 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0484 3252 C:\WINDOWS\System32\Drivers\sunkfilt.sys - copied to quarantine
09:15:14.0484 3252 SunkFilt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine
09:15:14.0531 3252 \Device\Harddisk0\DR0\TDLFS\cfg.ini - copied to quarantine
09:15:14.0531 3252 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine
09:15:14.0546 3252 \Device\Harddisk0\DR0\TDLFS\bckfg.tmp - copied to quarantine
09:15:14.0578 3252 \Device\Harddisk0\DR0\TDLFS\cmd.dll - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr16 - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine
09:15:14.0625 3252 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine
09:15:14.0640 3252 \Device\Harddisk0\DR0\TDLFS\cmd64.dll - copied to quarantine
09:15:14.0640 3252 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine
09:16:15.0078 0352 Deinitialize success
Ok, continue on with the following procedure.
Download and Run ComboFix
If you already have Combofix, please delete this copy and download it again as it's being updated regularly.
In your next reply please post:
Download and Run ComboFix
If you already have Combofix, please delete this copy and download it again as it's being updated regularly.
- Download this file here :
Combofix
- When the page loads click on the blue combofix download link next to the BleepingComputer Mirror.
- Save the file to your windows desktop. The combofix icon will look like this when it has downloaded to your desktop.
- We are almost ready to start ComboFix, but before we do so, we need to take some preventative measures so that there are no conflicts with other programs when running ComboFix. At this point you should do the following:
- Close all open Windows including this one.
- Close or disable all running Antivirus, Antispyware, and Firewall programs as they may interfere with the proper running of ComboFix. Instructions on disabling these type of programs can be found here.
Once these two steps have been completed, double-click on the ComboFix icon found on your desktop. Please note, that once you start ComboFix you should not click anywhere on the ComboFix window as it can cause the program to stall. In fact, when ComboFix is running, do not touch your computer at all. The scan could take a while, so please be patient.
- Please click on I agree on the disclaimer window.
- ComboFix will now install itself on to your computer. When it is done, a blue screen will appear as shown below.
- ComboFix is now preparing to run. When it has finished ComboFix will automatically attempt to create a System Restore point so that if any problems occur while using the program you can restore back to your previous configuration. When ComboFix has finished creating the restore point, it will then backup your Windows Registry as shown in the image below.
- Once the Windows Registry has finished being backed up, ComboFix will attempt to detect if you have the Windows Recovery Console installed. If you already have it installed, you can skip to this section and continue reading. Otherwise you will see the following message as shown below:
- At the above message box, please click on the Yes button in order for ComboFix to continue. Please follow the steps and instructions given by ComboFix in order to finish the installation of the Recovery Console.
- Please click on yes in the next window to continue scanning for malware.
- ComboFix will now disconnect your computer from the Internet, so do not be surprised or concerned if you receive any warnings stating that you are no longer on the Internet. When ComboFix has finished it will automatically restore your Internet connection.
- ComboFix will now start scanning your computer for known infections. This procedure can take some time, so please be patient.
- While the program is scanning your computer, it will change your clock format, so do not be concerned when you see this happen. When ComboFix is finished it will restore your clock settings to their previous settings. You will also see the text in the ComboFix window being updated as it goes through the various stages of its scan. An example of this can be seen below.
- When ComboFix has finished running, you will see a screen stating that it is preparing the log report.
- This can take a while, so please be patient. If you see your Windows desktop disappear, do not worry. This is normal and ComboFix will restore your desktop before it is finished. Eventually you will see a new screen that states the program is almost finished and telling you the programs log file, or report, will be located at C:\ComboFix.txt.
- When ComboFix has finished, it will automatically close the program and change your clock back to its original format. It will then display the log file automatically for you.
- Now you just click on the edit menu and click on select all, then click on the edit menu again and click on copy. Then come to the forum in your reply and right click on your mouse and click on paste.
In your next reply please post:
- The ComboFix log
- A fresh HiJackThis log
- An update on how your computer is running
Windows BIOS
OOOOOK - Finally got it to go. Here are the latest combofix and hijackthis reports. As far as how the comp runs, at least it rebooted during the combofix to the windows desktop, which I hope is a good sign. How do this gobbledy-gook look to you? Thanks John:
ComboFix 12-11-29.02 - Owner 11/29/2012 22:02:46.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1535.698 [GMT -5:00]
Running from: c:\documents and settings\Owner\My Documents\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\WINDOWS
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\Default User\WINDOWS
c:\documents and settings\Owner\My Documents\~WRL0004.tmp
c:\documents and settings\Owner\WINDOWS
c:\windows\system32\config\systemprofile\WINDOWS
c:\windows\system32\Packet.dll
c:\windows\system32\ps2.bat
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
c:\windows\system32\wpcap.dll
c:\windows\Tasks\At1.job
c:\windows\Tasks\At10.job
c:\windows\Tasks\At11.job
c:\windows\Tasks\At12.job
c:\windows\Tasks\At13.job
c:\windows\Tasks\At14.job
c:\windows\Tasks\At15.job
c:\windows\Tasks\At16.job
c:\windows\Tasks\At17.job
c:\windows\Tasks\At18.job
c:\windows\Tasks\At19.job
c:\windows\Tasks\At2.job
c:\windows\Tasks\At20.job
c:\windows\Tasks\At21.job
c:\windows\Tasks\At22.job
c:\windows\Tasks\At23.job
c:\windows\Tasks\At24.job
c:\windows\Tasks\At3.job
c:\windows\Tasks\At4.job
c:\windows\Tasks\At5.job
c:\windows\Tasks\At6.job
c:\windows\Tasks\At7.job
c:\windows\Tasks\At8.job
c:\windows\Tasks\At9.job
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_NPF
.
.
((((((((((((((((((((((((( Files Created from 2012-10-28 to 2012-11-30 )))))))))))))))))))))))))))))))
.
.
2012-11-30 02:20 . 2012-11-30 02:20 -------- d-----w- C:\TDSSKiller_Quarantine
2012-11-29 13:59 . 2012-11-29 13:59 388096 ----a-r- c:\documents and settings\Owner\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-11-09 12:59 . 2012-11-09 12:59 -------- d-----w- c:\documents and settings\Owner\Application Data\Southwest Airlines
2012-11-09 12:59 . 2012-11-09 12:59 8192 ----a-r- c:\documents and settings\Owner\Application Data\Microsoft\Installer\{84031A18-BA9A-4156-A74F-E05B52DDFCE2}\Icon84031A18.exe
2012-11-09 12:59 . 2012-11-09 12:59 -------- d-----w- c:\program files\Southwest Airlines
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-14 13:27 . 2012-08-28 13:14 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-11-14 13:27 . 2011-06-28 19:55 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-30 23:51 . 2011-06-22 17:29 361032 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-10-30 23:51 . 2011-06-22 17:29 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-10-30 23:51 . 2011-06-22 17:29 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-10-30 23:51 . 2011-06-22 17:29 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-10-30 23:51 . 2011-06-22 17:28 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-10-30 23:51 . 2011-06-22 17:28 89752 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-10-30 23:51 . 2011-06-22 17:29 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-10-30 23:51 . 2011-06-22 17:28 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-10-30 23:51 . 2011-06-22 17:28 41224 ----a-w- c:\windows\avastSS.scr
2012-10-30 23:50 . 2011-06-22 17:28 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-10-27 21:27 . 2012-10-27 21:26 35088 ----a-w- c:\windows\system32\drivers\npf.sys
2012-09-29 23:54 . 2011-06-24 23:33 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2011-05-30 15:33 2495816 ----a-w- c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816]
.
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816]
.
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 23:50 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-11-06 4763008]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-07-03 39408]
"NETGEARGenie"="c:\program files\NETGEAR Genie\bin\NETGEARGenie.exe" [2012-06-15 1040712]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LTMSG"="LTMSG.exe 7" [X]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2003-04-07 114688]
"HPHmon05"="c:\windows\System32\hphmon05.exe" [2003-05-23 483328]
"KBD"="c:\hp\KBD\KBD.EXE" [2003-02-12 61440]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2002-09-14 212992]
"PS2"="c:\windows\system32\ps2.exe" [2002-10-16 81920]
"Sunkist2k"="c:\program files\Multimedia Card Reader\shwicon2k.exe" [2003-08-15 139264]
"AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 57344]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-19 7700480]
"nwiz"="nwiz.exe" [2007-04-19 1626112]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-04-19 86016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2004-05-12 241664]
.
c:\documents and settings\Default User\Start Menu\Programs\Startup\
AutoTBar.exe [2003-6-18 53248]
.
c:\documents and settings\Administrator\Start Menu\Programs\Startup\
AutoTBar.exe [2003-6-18 53248]
.
c:\documents and settings\Owner\Start Menu\Programs\Startup\
DING!.lnk - c:\program files\Southwest Airlines\Ding\Ding.exe [2006-6-22 462848]
spamsubtract.lnk.disabled [2003-10-14 817]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2004-5-28 241664]
HP Digital Imaging Monitor.lnk.disabled [2003-10-10 1808]
HP Image Zone Fast Start.lnk - c:\program files\HP\Digital Imaging\bin\hpqthb08.exe [2004-5-28 53248]
Quicken Scheduled Updates.lnk.disabled [2003-10-11 675]
Updates from HP.lnk - c:\program files\Updates from HP\137903\Program\BackWeb-137903.exe [2003-10-11 16384]
Updates from HP.lnk.disabled [2011-2-19 1865]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-08-04 113024]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-27 20:51 919008 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask]
2003-07-23 23:37 53248 ----a-w- c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2007-04-16 20:28 577536 ----a-w- c:\windows\soundman.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"ERSvc"=2 (0x2)
"AVG Security Toolbar Service"=3 (0x3)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" /background
"Radio365Agent"=c:\program files\Live365\Radio365\Radio365TrayAgent.exe
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"AutoTKit"=c:\hp\bin\AUTOTKIT.EXE
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" -osboot
"CamMonitor"=c:\program files\HP\Digital Imaging\Unload\hpqcmon.exe
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"VTTimer"=VTTimer.exe
"UpdateManager"="c:\program files\Common Files\Sonic\Update Manager\sgtray.exe" /r
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Updates from HP\\137903\\Program\\BackWeb-137903.exe"=
"c:\\Program Files\\NETGEAR Genie\\bin\\NETGEARGenie.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [6/22/2011 12:29 PM 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [6/22/2011 12:29 PM 361032]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2/17/2010 1:25 PM 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [5/10/2010 1:41 PM 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [6/29/2010 12:48 PM 116608]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [6/22/2011 12:29 PM 21256]
S2 NETGEARGenieDaemon;NETGEARGenieDaemon;c:\program files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [7/9/2012 8:49 PM 195400]
S4 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG10\Toolbar\ToolbarBroker.exe [6/22/2011 11:59 AM 1025352]
.
Contents of the 'Scheduled Tasks' folder
.
2012-11-30 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-28 13:27]
.
2012-11-30 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-03 23:50]
.
2012-11-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-21 12:09]
.
2012-11-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-21 12:09]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uDefault_Search_URL = hxxp://srch-us10.hpwis.com/
mSearch Bar = hxxp://srch-us10.hpwis.com/
uInternet Settings,ProxyOverride = localhost
IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\Office12\EXCEL.EXE/3000
LSP: SpSubLSP.dll
TCP: DhcpNameServer = 10.0.0.1
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-HPHUPD05 - c:\program files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-11-29 22:23
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'lsass.exe'(720)
c:\windows\system32\SpSubLSP.dll
.
- - - - - - - > 'explorer.exe'(2800)
c:\windows\system32\WININET.dll
c:\docume~1\Owner\LOCALS~1\Temp\IadHide4.dll
c:\windows\system32\msi.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\nvsvc32.exe
c:\windows\LTMSG.exe
c:\windows\system32\HPZipm12.exe
c:\program files\HP\Digital Imaging\bin\hpqgalry.exe
c:\program files\NETGEAR Genie\bin\genie2_tray.exe
.
**************************************************************************
.
Completion time: 2012-11-29 22:33:18 - machine was rebooted
ComboFix-quarantined-files.txt 2012-11-30 03:33
ComboFix2.txt 2010-06-09 01:24
ComboFix3.txt 2010-04-09 22:01
ComboFix4.txt 2010-04-09 00:49
ComboFix5.txt 2012-11-30 02:59
.
Pre-Run: 259,467,513,856 bytes free
Post-Run: 260,063,571,968 bytes free
.
- - End Of File - - BE0EACAC243AC208828F7D445B65C16E
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:45:19 PM, on 11/29/2012
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\System32\hphmon05.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\LTMSG.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\NETGEAR Genie\bin\genie2_tray.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [NETGEARGenie] "C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect
O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Startup: DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe
O4 - Startup: spamsubtract.lnk.disabled
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk.disabled
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Quicken Scheduled Updates.lnk.disabled
O4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe
O4 - Global Startup: Updates from HP.lnk.disabled
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1308704215945
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NETGEARGenieDaemon - NETGEAR - C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
--
End of file - 9292 bytes
OOOOOK - Finally got it to go. Here are the latest combofix and hijackthis reports. As far as how the comp runs, at least it rebooted during the combofix to the windows desktop, which I hope is a good sign. How do this gobbledy-gook look to you? Thanks John:
ComboFix 12-11-29.02 - Owner 11/29/2012 22:02:46.1.2 - x86
Microsoft Windows XP Home Edition 5.1.2600.2.1252.1.1033.18.1535.698 [GMT -5:00]
Running from: c:\documents and settings\Owner\My Documents\ComboFix.exe
AV: avast! Antivirus *Disabled/Updated* {7591DB91-41F0-48A3-B128-1A293FD8233D}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\documents and settings\Administrator\WINDOWS
c:\documents and settings\All Users\Application Data\TEMP
c:\documents and settings\Default User\WINDOWS
c:\documents and settings\Owner\My Documents\~WRL0004.tmp
c:\documents and settings\Owner\WINDOWS
c:\windows\system32\config\systemprofile\WINDOWS
c:\windows\system32\Packet.dll
c:\windows\system32\ps2.bat
c:\windows\system32\URTTemp
c:\windows\system32\URTTemp\fusion.dll
c:\windows\system32\URTTemp\mscoree.dll
c:\windows\system32\URTTemp\mscoree.dll.local
c:\windows\system32\URTTemp\mscorsn.dll
c:\windows\system32\URTTemp\mscorwks.dll
c:\windows\system32\URTTemp\msvcr71.dll
c:\windows\system32\URTTemp\regtlib.exe
c:\windows\system32\wpcap.dll
c:\windows\Tasks\At1.job
c:\windows\Tasks\At10.job
c:\windows\Tasks\At11.job
c:\windows\Tasks\At12.job
c:\windows\Tasks\At13.job
c:\windows\Tasks\At14.job
c:\windows\Tasks\At15.job
c:\windows\Tasks\At16.job
c:\windows\Tasks\At17.job
c:\windows\Tasks\At18.job
c:\windows\Tasks\At19.job
c:\windows\Tasks\At2.job
c:\windows\Tasks\At20.job
c:\windows\Tasks\At21.job
c:\windows\Tasks\At22.job
c:\windows\Tasks\At23.job
c:\windows\Tasks\At24.job
c:\windows\Tasks\At3.job
c:\windows\Tasks\At4.job
c:\windows\Tasks\At5.job
c:\windows\Tasks\At6.job
c:\windows\Tasks\At7.job
c:\windows\Tasks\At8.job
c:\windows\Tasks\At9.job
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_NPF
-------\Service_NPF
.
.
((((((((((((((((((((((((( Files Created from 2012-10-28 to 2012-11-30 )))))))))))))))))))))))))))))))
.
.
2012-11-30 02:20 . 2012-11-30 02:20 -------- d-----w- C:\TDSSKiller_Quarantine
2012-11-29 13:59 . 2012-11-29 13:59 388096 ----a-r- c:\documents and settings\Owner\Application Data\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-11-09 12:59 . 2012-11-09 12:59 -------- d-----w- c:\documents and settings\Owner\Application Data\Southwest Airlines
2012-11-09 12:59 . 2012-11-09 12:59 8192 ----a-r- c:\documents and settings\Owner\Application Data\Microsoft\Installer\{84031A18-BA9A-4156-A74F-E05B52DDFCE2}\Icon84031A18.exe
2012-11-09 12:59 . 2012-11-09 12:59 -------- d-----w- c:\program files\Southwest Airlines
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-11-14 13:27 . 2012-08-28 13:14 697272 ----a-w- c:\windows\system32\FlashPlayerApp.exe
2012-11-14 13:27 . 2011-06-28 19:55 73656 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2012-10-30 23:51 . 2011-06-22 17:29 361032 ----a-w- c:\windows\system32\drivers\aswSP.sys
2012-10-30 23:51 . 2011-06-22 17:29 738504 ----a-w- c:\windows\system32\drivers\aswSnx.sys
2012-10-30 23:51 . 2011-06-22 17:29 54232 ----a-w- c:\windows\system32\drivers\aswTdi.sys
2012-10-30 23:51 . 2011-06-22 17:29 35928 ----a-w- c:\windows\system32\drivers\aswRdr.sys
2012-10-30 23:51 . 2011-06-22 17:28 97608 ----a-w- c:\windows\system32\drivers\aswmon2.sys
2012-10-30 23:51 . 2011-06-22 17:28 89752 ----a-w- c:\windows\system32\drivers\aswmon.sys
2012-10-30 23:51 . 2011-06-22 17:29 21256 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
2012-10-30 23:51 . 2011-06-22 17:28 25256 ----a-w- c:\windows\system32\drivers\aavmker4.sys
2012-10-30 23:51 . 2011-06-22 17:28 41224 ----a-w- c:\windows\avastSS.scr
2012-10-30 23:50 . 2011-06-22 17:28 227648 ----a-w- c:\windows\system32\aswBoot.exe
2012-10-27 21:27 . 2012-10-27 21:26 35088 ----a-w- c:\windows\system32\drivers\npf.sys
2012-09-29 23:54 . 2011-06-24 23:33 22856 ----a-w- c:\windows\system32\drivers\mbam.sys
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{A3BC75A2-1F87-4686-AA43-5347D756017C}]
2011-05-30 15:33 2495816 ----a-w- c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816]
.
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{CCC7A320-B3CA-4199-B1A6-9F516DD69829}"= "c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll" [2011-05-30 2495816]
.
[HKEY_CLASSES_ROOT\clsid\{ccc7a320-b3ca-4199-b1a6-9f516dd69829}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
@="{472083B0-C522-11CF-8763-00608CC02F24}"
[HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
2012-10-30 23:50 121528 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2012-11-06 4763008]
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2012-07-03 39408]
"NETGEARGenie"="c:\program files\NETGEAR Genie\bin\NETGEARGenie.exe" [2012-06-15 1040712]
"ctfmon.exe"="c:\windows\system32\ctfmon.exe" [2004-08-04 15360]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"LTMSG"="LTMSG.exe 7" [X]
"hpsysdrv"="c:\windows\system\hpsysdrv.exe" [1998-05-07 52736]
"HotKeysCmds"="c:\windows\System32\hkcmd.exe" [2003-04-07 114688]
"HPHmon05"="c:\windows\System32\hphmon05.exe" [2003-05-23 483328]
"KBD"="c:\hp\KBD\KBD.EXE" [2003-02-12 61440]
"Recguard"="c:\windows\SMINST\RECGUARD.EXE" [2002-09-14 212992]
"PS2"="c:\windows\system32\ps2.exe" [2002-10-16 81920]
"Sunkist2k"="c:\program files\Multimedia Card Reader\shwicon2k.exe" [2003-08-15 139264]
"AlcxMonitor"="ALCXMNTR.EXE" [2004-09-07 57344]
"avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2012-10-30 4297136]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-04-19 7700480]
"nwiz"="nwiz.exe" [2007-04-19 1626112]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-04-19 86016]
"GrooveMonitor"="c:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2009-02-26 30040]
"HP Software Update"="c:\program files\HP\HP Software Update\HPWuSchd2.exe" [2007-05-08 54840]
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2004-05-12 241664]
.
c:\documents and settings\Default User\Start Menu\Programs\Startup\
AutoTBar.exe [2003-6-18 53248]
.
c:\documents and settings\Administrator\Start Menu\Programs\Startup\
AutoTBar.exe [2003-6-18 53248]
.
c:\documents and settings\Owner\Start Menu\Programs\Startup\
DING!.lnk - c:\program files\Southwest Airlines\Ding\Ding.exe [2006-6-22 462848]
spamsubtract.lnk.disabled [2003-10-14 817]
.
c:\documents and settings\All Users\Start Menu\Programs\Startup\
HP Digital Imaging Monitor.lnk - c:\program files\HP\Digital Imaging\bin\hpqtra08.exe [2004-5-28 241664]
HP Digital Imaging Monitor.lnk.disabled [2003-10-10 1808]
HP Image Zone Fast Start.lnk - c:\program files\HP\Digital Imaging\bin\hpqthb08.exe [2004-5-28 53248]
Quicken Scheduled Updates.lnk.disabled [2003-10-11 675]
Updates from HP.lnk - c:\program files\Updates from HP\137903\Program\BackWeb-137903.exe [2003-10-11 16384]
Updates from HP.lnk.disabled [2011-2-19 1865]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\program files\SUPERAntiSpyware\SASSEH.DLL" [2011-08-04 113024]
.
[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\session manager]
BootExecute REG_MULTI_SZ autocheck autochk *\0c:\progra~1\AVG\AVG10\avgchsvx.exe /sync\0c:\progra~1\AVG\AVG10\avgrsx.exe /sync /restart
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
@=""
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-07-27 20:51 919008 ----a-w- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mmtask]
2003-07-23 23:37 53248 ----a-w- c:\program files\MUSICMATCH\MUSICMATCH Jukebox\mmtask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan]
2007-04-16 20:28 577536 ----a-w- c:\windows\soundman.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"ERSvc"=2 (0x2)
"AVG Security Toolbar Service"=3 (0x3)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\run-]
"MSMSGS"="c:\program files\Messenger\msmsgs.exe" /background
"Radio365Agent"=c:\program files\Live365\Radio365\Radio365TrayAgent.exe
"swg"="c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"AutoTKit"=c:\hp\bin\AUTOTKIT.EXE
"TkBellExe"="c:\program files\Common Files\Real\Update_OB\realsched.exe" -osboot
"CamMonitor"=c:\program files\HP\Digital Imaging\Unload\hpqcmon.exe
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
"VTTimer"=VTTimer.exe
"UpdateManager"="c:\program files\Common Files\Sonic\Update Manager\sgtray.exe" /r
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Program Files\\Updates from HP\\137903\\Program\\BackWeb-137903.exe"=
"c:\\Program Files\\NETGEAR Genie\\bin\\NETGEARGenie.exe"=
.
R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [6/22/2011 12:29 PM 738504]
R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [6/22/2011 12:29 PM 361032]
R1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2/17/2010 1:25 PM 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [5/10/2010 1:41 PM 67664]
R2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [6/29/2010 12:48 PM 116608]
R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [6/22/2011 12:29 PM 21256]
S2 NETGEARGenieDaemon;NETGEARGenieDaemon;c:\program files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe [7/9/2012 8:49 PM 195400]
S4 AVG Security Toolbar Service;AVG Security Toolbar Service;c:\program files\AVG\AVG10\Toolbar\ToolbarBroker.exe [6/22/2011 11:59 AM 1025352]
.
Contents of the 'Scheduled Tasks' folder
.
2012-11-30 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe [2012-08-28 13:27]
.
2012-11-30 c:\windows\Tasks\avast! Emergency Update.job
- c:\program files\AVAST Software\Avast\AvastEmUpdate.exe [2012-07-03 23:50]
.
2012-11-30 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-21 12:09]
.
2012-11-30 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2012-03-21 12:09]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.google.com/
uDefault_Search_URL = hxxp://srch-us10.hpwis.com/
mSearch Bar = hxxp://srch-us10.hpwis.com/
uInternet Settings,ProxyOverride = localhost
IE: E&xport to Microsoft Excel - c:\progra~1\MI1933~1\Office12\EXCEL.EXE/3000
LSP: SpSubLSP.dll
TCP: DhcpNameServer = 10.0.0.1
Handler: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - c:\program files\AVG\AVG10\Toolbar\IEToolbar.dll
.
- - - - ORPHANS REMOVED - - - -
.
HKLM-Run-HPHUPD05 - c:\program files\HP\{45B6180B-DCAB-4093-8EE8-6164457517F0}\hphupd05.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-11-29 22:23
Windows 5.1.2600 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="FlashBroker"
"LocalizedString"="@c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe,-101"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled"=dword:00000001
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@="c:\\WINDOWS\\system32\\Macromed\\Flash\\FlashUtil32_11_5_502_110_ActiveX.exe"
.
[HKEY_LOCAL_MACHINE\software\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@="IFlashBroker5"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@="{00020424-0000-0000-C000-000000000046}"
.
[HKEY_LOCAL_MACHINE\software\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@="{FAB3E735-69C7-453B-A446-B6823C6DF1C9}"
"Version"="1.0"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'lsass.exe'(720)
c:\windows\system32\SpSubLSP.dll
.
- - - - - - - > 'explorer.exe'(2800)
c:\windows\system32\WININET.dll
c:\docume~1\Owner\LOCALS~1\Temp\IadHide4.dll
c:\windows\system32\msi.dll
c:\windows\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.762_x-ww_6b128700\MSVCR80.dll
c:\windows\system32\ieframe.dll
c:\windows\system32\webcheck.dll
c:\windows\system32\WPDShServiceObj.dll
c:\windows\system32\PortableDeviceTypes.dll
c:\windows\system32\PortableDeviceApi.dll
.
------------------------ Other Running Processes ------------------------
.
c:\program files\AVAST Software\Avast\AvastSvc.exe
c:\windows\system32\nvsvc32.exe
c:\windows\LTMSG.exe
c:\windows\system32\HPZipm12.exe
c:\program files\HP\Digital Imaging\bin\hpqgalry.exe
c:\program files\NETGEAR Genie\bin\genie2_tray.exe
.
**************************************************************************
.
Completion time: 2012-11-29 22:33:18 - machine was rebooted
ComboFix-quarantined-files.txt 2012-11-30 03:33
ComboFix2.txt 2010-06-09 01:24
ComboFix3.txt 2010-04-09 22:01
ComboFix4.txt 2010-04-09 00:49
ComboFix5.txt 2012-11-30 02:59
.
Pre-Run: 259,467,513,856 bytes free
Post-Run: 260,063,571,968 bytes free
.
- - End Of File - - BE0EACAC243AC208828F7D445B65C16E
Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 10:45:19 PM, on 11/29/2012
Platform: Windows XP SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal
Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\AVAST Software\Avast\AvastSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\wuauclt.exe
C:\windows\system\hpsysdrv.exe
C:\WINDOWS\System32\hphmon05.exe
C:\HP\KBD\KBD.EXE
C:\WINDOWS\LTMSG.exe
C:\Program Files\Multimedia Card Reader\shwicon2k.exe
C:\Program Files\AVAST Software\Avast\avastUI.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe
C:\Program Files\Southwest Airlines\Ding\Ding.exe
C:\WINDOWS\system32\HPZipm12.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\HP\Digital Imaging\bin\hpqgalry.exe
C:\Program Files\NETGEAR Genie\bin\genie2_tray.exe
C:\WINDOWS\explorer.exe
C:\WINDOWS\system32\notepad.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files\Trend Micro\HijackThis\HiJackThis.exe
R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://srch-us10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://srch-us10.hpwis.com/
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: WormRadar.com IESiteBlocker.NavFilter - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG10\avgssie.dll (file missing)
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O2 - BHO: AVG Security Toolbar BHO - {A3BC75A2-1F87-4686-AA43-5347D756017C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.7529.1424\swg.dll
O2 - BHO: (no name) - {FDD3B846-8D59-4ffb-8758-209B6AD74ACC} - (no file)
O3 - Toolbar: HP View - {B2847E28-5D7D-4DEB-8B67-05D28BCF79F5} - C:\Program Files\HP\Digital Imaging\bin\HPDTLK02.dll
O3 - Toolbar: AVG Security Toolbar - {CCC7A320-B3CA-4199-B1A6-9F516DD69829} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [hpsysdrv] c:\windows\system\hpsysdrv.exe
O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\System32\hkcmd.exe
O4 - HKLM\..\Run: [HPHmon05] C:\WINDOWS\System32\hphmon05.exe
O4 - HKLM\..\Run: [KBD] C:\HP\KBD\KBD.EXE
O4 - HKLM\..\Run: [Recguard] C:\WINDOWS\SMINST\RECGUARD.EXE
O4 - HKLM\..\Run: [LTMSG] LTMSG.exe 7
O4 - HKLM\..\Run: [PS2] C:\WINDOWS\system32\ps2.exe
O4 - HKLM\..\Run: [Sunkist2k] C:\Program Files\Multimedia Card Reader\shwicon2k.exe
O4 - HKLM\..\Run: [AlcxMonitor] ALCXMNTR.EXE
O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\HP\HP Software Update\HPWuSchd2.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [NETGEARGenie] "C:\Program Files\NETGEAR Genie\bin\NETGEARGenie.exe" -mini -redirect
O4 - S-1-5-18 Startup: AutoTBar.exe (User 'SYSTEM')
O4 - .DEFAULT Startup: AutoTBar.exe (User 'Default user')
O4 - .DEFAULT User Startup: AutoTBar.exe (User 'Default user')
O4 - Startup: DING!.lnk = C:\Program Files\Southwest Airlines\Ding\Ding.exe
O4 - Startup: spamsubtract.lnk.disabled
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: HP Digital Imaging Monitor.lnk.disabled
O4 - Global Startup: HP Image Zone Fast Start.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqthb08.exe
O4 - Global Startup: Quicken Scheduled Updates.lnk.disabled
O4 - Global Startup: Updates from HP.lnk = C:\Program Files\Updates from HP\137903\Program\BackWeb-137903.exe
O4 - Global Startup: Updates from HP.lnk.disabled
O8 - Extra context menu item: E&xport to Microsoft Excel - res://C:\PROGRA~1\MI1933~1\Office12\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\WINDOWS\System32\msjava.dll (file missing)
O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MI1933~1\Office12\ONBttnIE.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI1933~1\Office12\REFIEBAR.DLL
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1308704215945
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} - http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
O18 - Protocol: avgsecuritytoolbar - {F2DDE6B2-9684-4A55-86D4-E255E237B77C} - C:\Program Files\AVG\AVG10\Toolbar\IEToolbar.dll
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
O18 - Protocol: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG10\avgpp.dll (file missing)
O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\System32\browseui.dll
O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\System32\browseui.dll
O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
O23 - Service: Adobe Flash Player Update Service (AdobeFlashPlayerUpdateSvc) - Adobe Systems Incorporated - C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
O23 - Service: Google Update Service (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Update Service (gupdatem) (gupdatem) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: NETGEARGenieDaemon - NETGEAR - C:\Program Files\NETGEAR Genie\bin\NETGEARGenieDaemon.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Pml Driver HPZ12 - HP - C:\WINDOWS\system32\HPZipm12.exe
--
End of file - 9292 bytes