Jump to content

Help please, some sort of redirect virus, bits of it left on machine...


Recommended Posts

Hi guys, just to give you some background, i got one of those nasty java driveby type things a few months back (i have since got noscript) The attack installed some sort of fake antivirus software onto my machine, which was very annyoing. It kept redirecting me to random web pages and search results. So i got the rootkit removal tool "tdsskiller" and ran it. It found a rootkit, and removed it. I ran spybot, and it removed a bunch of crap. I then ran malwarebytes anti-malware and it removed a couple more little bits. I thought the problem had gone, untill recently, when i did a "disk cleanup" on my hard drive (with all options checked). I'm wondering if perhaps this has caused the problem to come back when windows was in the proscess of compressing "old" data or something like that? The problem isn't exactly the same now, the symptoms are characterized by a bunch of spybot reg. change alerts when i start the p.c (spybot is on paranoid mode) things like disabling the task manager and active desktop etc.

Anyway, I apologize for the long ramble ^ Also, i must apologize again because the tool "DDS" causes my machine to freeze up and crash (i left it for a whole day :( and it didn't complete, just froze the computer) however "hijackthis" seems to run ok, so i shall post the log from that if thats ok (also posting a malwarebytes anti-malware log, i have selected to remove all the problems highlighted by anti-malware but wanted to post this before restarting - so the logs say no action taken)

Thanks guys. I will try and run the DDS program again after restart, just incase :)

Kind regards, Joe

hijackthis.log

mbam-log-2011-11-19 (19-26-16).txt

Link to post
Share on other sites

spybot did a scan when my pc booted and produced this:

--- Search result list ---

Win32.Agent.chh: [sBI $336B2B9E] Autorun settings (Iqabupo) (Registry value, fixed)

HKEY_USERS\S-1-5-21-2051069809-3837264466-3968955271-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Iqabupo

Virtumonde.prx: [sBI $B6BF2145] Autorun settings (Bpokevoco) (Registry value, fixed)

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\Bpokevoco

and so i clicked to "remove these problems"

I have had these messages appearing from spybot again, even after running anti-malware, spybot & symantec:

http://s933.photobucket.com/albums/ad174/joe4_9/Spybot/

i'm about to try and run DDS again, i'll let u guys know if it works...

Link to post
Share on other sites

DDS wont work :( the pc froze, i restarted and spybot ran AGAIN and found that the problem is still here.

This is a section of log from spybot:

19/11/2011 22:13:54 Denied (based on user decision) value "ujErFEInePntXg" (new data: "") deleted in System Startup user entry!

19/11/2011 22:14:15 Denied (based on user decision) value "Iqabupo" (new data: "") deleted in System Startup user entry!

19/11/2011 22:14:40 Denied (based on user decision) value "NoDesktop" (new data: "0") changed in System Startup user entry!

19/11/2011 22:14:47 Allowed (based on authenticode whitelist) value "Malwarebytes' Anti-Malware" (new data: ""C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray") added in System Startup global entry!

19/11/2011 22:15:02 Denied (based on user decision) value "conhost" (new data: "") deleted in System Startup global entry!

19/11/2011 22:15:18 Denied (based on user decision) value "Bpokevoco" (new data: "") deleted in System Startup global entry!

19/11/2011 22:15:42 Denied (based on user decision) value "load" (new data: "") changed in NT startup!

19/11/2011 22:22:23 Denied (based on user decision) value "run" (new data: "") added in NT startup!

19/11/2011 22:22:36 Denied (based on user decision) value "Shell" (new data: "") deleted in Winlogon!

19/11/2011 22:22:40 Denied (based on user decision) value "DisableTaskMgr" (new data: "0") changed in Disable Taskmanager!

19/11/2011 22:22:42 Denied (based on user decision) value "%windir%\system32\sessmgr.exe" (new data: "%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019") added in Firewall Authorized Applications!

19/11/2011 22:22:43 Denied (based on user decision) value "%windir%\Network Diagnostic\xpnetdiag.exe" (new data: "%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000") added in Firewall Authorized Applications!

19/11/2011 22:22:44 Denied (based on user decision) value "C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe" (new data: "C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe:*:Enabled:SMC Service") added in Firewall Authorized Applications!

19/11/2011 22:23:48 Denied (based on user decision) value "C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE" (new data: "C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE:*:Enabled:SNAC Service") added in Firewall Authorized Applications!

19/11/2011 22:23:49 Denied (based on user decision) value "C:\Program Files\Common Files\Symantec Shared\ccApp.exe" (new data: "C:\Program Files\Common Files\Symantec Shared\ccApp.exe:*:Enabled:Symantec Email") added in Firewall Authorized Applications!

19/11/2011 22:23:50 Denied (based on user decision) value "C:\WINDOWS\system32\LMabcoms.exE" (new data: "C:\WINDOWS\system32\LMabcoms.exE:*:Enabled:Lexmark Enhanced TCP/IP") added in Firewall Authorized Applications!

19/11/2011 22:29:44 Denied (based on user decision) value "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe" (new data: "C:\Program Files\Veoh Networks\VeohWebPlayer\veohwebplayer.exe:*:Enabled:Veoh Web Player ") added in Firewall Authorized Applications!

I think i need to find out what is creating "ujErFEInePntXg", "Bpokevoco", "Iqabupo", "conhost". and why they keep coming back.

Here is another Hijackthis log (i have made bold the parts which i find suspicious)

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 01:37:50, on 20/11/2011

Platform: Windows XP SP3 (WinNT 5.01.2600)

MSIE: Internet Explorer v8.00 (8.00.6001.18702)

Boot mode: Normal

Running processes:

C:\WINDOWS\System32\smss.exe

C:\WINDOWS\system32\winlogon.exe

C:\WINDOWS\system32\services.exe

C:\WINDOWS\system32\lsass.exe

C:\WINDOWS\system32\svchost.exe

C:\WINDOWS\System32\svchost.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe

C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

C:\WINDOWS\system32\spoolsv.exe

C:\WINDOWS\Explorer.EXE

C:\Program Files\D4\D4.exe

C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe

C:\Program Files\Java\jre6\bin\jqs.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files\Nero\Update\NASvc.exe

C:\WINDOWS\system32\svchost.exe

C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe

C:\Program Files\Symantec\Symantec Endpoint Protection\SmcGui.exe

C:\WINDOWS\system32\SearchIndexer.exe

C:\WINDOWS\system32\hkcmd.exe

C:\WINDOWS\system32\igfxpers.exe

C:\WINDOWS\system32\igfxsrvc.exe

C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

C:\Program Files\Toshiba\Windows Utilities\Hotkey.exe

C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe

C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe

C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe

C:\Program Files\Common Files\Symantec Shared\ccApp.exe

C:\Program Files\D4\D4.exe

C:\WINDOWS\system32\igfxext.exe

C:\Program Files\DivX\DivX Update\DivXUpdate.exe

C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe

C:\Program Files\Messenger\msmsgs.exe

C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

C:\WINDOWS\system32\ctfmon.exe

C:\Program Files\OpenOffice.org 3\program\soffice.exe

C:\Program Files\OpenOffice.org 3\program\soffice.bin

C:\Program Files\Mozilla Firefox\firefox.exe

C:\Program Files\Mozilla Firefox\plugin-container.exe

C:\WINDOWS\system32\NOTEPAD.EXE

C:\Program Files\File Shredder\Shredder.exe

C:\Program Files\Malwarebytes' Anti-Malware\mbam.com

C:\WINDOWS\regedit.exe

C:\Documents and Settings\Joe\My Documents\Downloads\HijackThis.exe

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR

R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKCU\Software\Microsoft\Internet Explorer\SearchURL,(Default) = http://g.msn.co.uk/0SEENGB/SAOS01?FORM=TOOLBR

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Spybot-S&D IE Protection - {53707962-6F74-2D53-2644-206D7942484F} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll

O2 - BHO: JQSIEStartDetectorImpl Class - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll

O2 - BHO: WinAVI FLVSense - {E8DF67A1-B618-4F3F-9E7C-CBE175ADEF5B} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll

O4 - HKLM\..\Run: [igfxTray] C:\WINDOWS\system32\igfxtray.exe

O4 - HKLM\..\Run: [HotKeysCmds] C:\WINDOWS\system32\hkcmd.exe

O4 - HKLM\..\Run: [Persistence] C:\WINDOWS\system32\igfxpers.exe

O4 - HKLM\..\Run: [synTPLpr] C:\Program Files\Synaptics\SynTP\SynTPLpr.exe

O4 - HKLM\..\Run: [synTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe

O4 - HKLM\..\Run: [Toshiba Hotkey Utility] "C:\Program Files\Toshiba\Windows Utilities\Hotkey.exe" /lang en

O4 - HKLM\..\Run: [NDSTray.exe] NDSTray.exe

O4 - HKLM\..\Run: [smoothView] C:\Program Files\TOSHIBA\TOSHIBA Zooming Utility\SmoothView.exe

O4 - HKLM\..\Run: [PadTouch] C:\Program Files\TOSHIBA\Touch and Launch\PadExe.exe

O4 - HKLM\..\Run: [ccApp] "C:\Program Files\Common Files\Symantec Shared\ccApp.exe"

O4 - HKLM\..\Run: [Dimension4] C:\Program Files\D4\D4.exe

O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [DivXUpdate] "C:\Program Files\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

O4 - HKLM\..\Run: [conhost] C:\Documents and Settings\Joe\Application Data\Microsoft\conhost.exe

O4 - HKCU\..\Run: [TOSCDSPD] C:\Program Files\TOSHIBA\TOSCDSPD\toscdspd.exe

O4 - HKCU\..\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background

O4 - HKCU\..\Run: [spybotSD TeaTimer] C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe

O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe

O4 - HKCU\..\Run: [iqabupo] rundll32.exe "C:\WINDOWS\wiscse.dll",Startup

O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')

O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')

O4 - Startup: OpenOffice.org 3.1.lnk = C:\Program Files\OpenOffice.org 3\program\quickstart.exe

O4 - Startup: Shortcut to winlogon.lnk = C:\WINDOWS\ServicePackFiles\i386\winlogon.exe

O8 - Extra context menu item: &Download FLV by WinAVI... - C:\Program Files\WinAVI FLV Converter\flv_link.htm

O9 - Extra button: WinAVI FLV Manager - {DE365254-2F9B-4908-9E3A-7AAA6EC90BCC} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll

O9 - Extra 'Tools' menuitem: WinAVI FLV Manager - {DE365254-2F9B-4908-9E3A-7AAA6EC90BCC} - C:\Program Files\WinAVI FLV Converter\FLVTune.dll

O9 - Extra button: (no name) - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra 'Tools' menuitem: Spybot - Search & Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\PROGRA~1\SPYBOT~1\SDHelper.dll

O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe

O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe

O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} (MUWebControl Class) - http://www.update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1247793416250

O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} -

O17 - HKLM\System\CCS\Services\Tcpip\..\{93D51028-FFF7-4953-ABAA-DF9CC7D11385}: NameServer = 192.168.0.100,158.43.128.1

O17 - HKLM\System\CCS\Services\Tcpip\..\{E835F6D0-1699-4FF4-979C-F9F57D3A8E8C}: NameServer = 192.168.0.100,158.43.128.1

O22 - SharedTaskScheduler: Browseui preloader - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll

O23 - Service: Symantec Event Manager (ccEvtMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

O23 - Service: Symantec Settings Manager (ccSetMgr) - Symantec Corporation - C:\Program Files\Common Files\Symantec Shared\ccSvcHst.exe

O23 - Service: Dimension4 - Thinking Man Software - C:\Program Files\D4\D4.exe

O23 - Service: Diskeeper - Diskeeper Corporation - C:\Program Files\Diskeeper Corporation\Diskeeper\DkService.exe

O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe

O23 - Service: LiveUpdate - Symantec Corporation - C:\PROGRA~1\Symantec\LIVEUP~1\LUCOMS~1.EXE

O23 - Service: lmab_device - Lexmark International, Inc. - C:\WINDOWS\system32\LMabcoms.exe

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe

O23 - Service: Remote Packet Capture Protocol v.0 (experimental) (rpcapd) - CACE Technologies, Inc. - C:\Program Files\WinPcap\rpcapd.exe

O23 - Service: ServiceLayer - Nokia - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

O23 - Service: Symantec Management Client (SmcService) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Smc.exe

O23 - Service: Symantec Network Access Control (SNAC) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\SNAC.EXE

O23 - Service: Symantec Endpoint Protection (Symantec AntiVirus) - Symantec Corporation - C:\Program Files\Symantec\Symantec Endpoint Protection\Rtvscan.exe

--

End of file - 9474 bytes

So to explain a bit better the problem is my computer displays a blank (black) screen at seemingly random times. I am sure it is caused by some sort of malware but i dont know how to remove it. I have tried to use norton fileshredder on those bolded files but it won't let me because they are "in use" apparently. Also, i can't see this files in explorer, despite having used "unhide.exe".

Please help!!

here is another tdss log i just ran:

02:00:05.0051 6020 TDSS rootkit removing tool 2.6.19.0 Nov 16 2011 12:18:50

02:00:05.0285 6020 ============================================================

02:00:05.0285 6020 Current date / time: 2011/11/20 02:00:05.0285

02:00:05.0285 6020 SystemInfo:

02:00:05.0285 6020

02:00:05.0285 6020 OS Version: 5.1.2600 ServicePack: 3.0

02:00:05.0285 6020 Product type: Workstation

02:00:05.0285 6020 ComputerName: FARNSWORTH

02:00:05.0285 6020 UserName: Joe

02:00:05.0285 6020 Windows directory: C:\WINDOWS

02:00:05.0285 6020 System windows directory: C:\WINDOWS

02:00:05.0285 6020 Processor architecture: Intel x86

02:00:05.0285 6020 Number of processors: 1

02:00:05.0285 6020 Page size: 0x1000

02:00:05.0285 6020 Boot type: Normal boot

02:00:05.0285 6020 ============================================================

02:00:07.0894 6020 Initialize success

02:00:20.0332 5296 ============================================================

02:00:20.0332 5296 Scan started

02:00:20.0332 5296 Mode: Manual;

02:00:20.0332 5296 ============================================================

02:00:23.0863 5296 Abiosdsk - ok

02:00:23.0894 5296 abp480n5 - ok

02:00:24.0004 5296 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys

02:00:24.0004 5296 ACPI - ok

02:00:24.0097 5296 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys

02:00:24.0113 5296 ACPIEC - ok

02:00:24.0129 5296 adpu160m - ok

02:00:24.0176 5296 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

02:00:24.0191 5296 aec - ok

02:00:24.0254 5296 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys

02:00:24.0254 5296 AFD - ok

02:00:24.0285 5296 Aha154x - ok

02:00:24.0301 5296 aic78u2 - ok

02:00:24.0316 5296 aic78xx - ok

02:00:24.0347 5296 AliIde - ok

02:00:24.0379 5296 amsint - ok

02:00:24.0394 5296 asc - ok

02:00:24.0426 5296 asc3350p - ok

02:00:24.0441 5296 asc3550 - ok

02:00:24.0519 5296 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

02:00:24.0519 5296 AsyncMac - ok

02:00:24.0535 5296 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

02:00:24.0535 5296 atapi - ok

02:00:24.0566 5296 Atdisk - ok

02:00:24.0613 5296 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

02:00:24.0629 5296 Atmarpc - ok

02:00:24.0722 5296 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

02:00:24.0722 5296 audstub - ok

02:00:24.0879 5296 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

02:00:24.0879 5296 Beep - ok

02:00:24.0957 5296 BoiHwsetup (141befbd4f2a84a66e2f54b9e32e40d1) C:\WINDOWS\system32\drivers\BoiHwSetup.sys

02:00:24.0957 5296 BoiHwsetup - ok

02:00:25.0035 5296 CAMCAUD (cce1f3c7c8e7383b90372229454999cf) C:\WINDOWS\system32\drivers\camc6aud.sys

02:00:25.0035 5296 CAMCAUD - ok

02:00:25.0082 5296 CAMCHALA (9a3bbde74dab737efa82de7ef4b40bea) C:\WINDOWS\system32\drivers\camc6hal.sys

02:00:25.0097 5296 CAMCHALA - ok

02:00:25.0160 5296 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

02:00:25.0176 5296 cbidf2k - ok

02:00:25.0207 5296 cd20xrnt - ok

02:00:25.0254 5296 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

02:00:25.0269 5296 Cdaudio - ok

02:00:25.0332 5296 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

02:00:25.0347 5296 Cdfs - ok

02:00:25.0457 5296 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

02:00:25.0457 5296 Cdrom - ok

02:00:25.0488 5296 Changer - ok

02:00:25.0535 5296 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys

02:00:25.0535 5296 CmBatt - ok

02:00:25.0551 5296 CmdIde - ok

02:00:25.0644 5296 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\WINDOWS\system32\Drivers\COH_Mon.sys

02:00:25.0676 5296 COH_Mon - ok

02:00:25.0707 5296 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys

02:00:25.0707 5296 Compbatt - ok

02:00:25.0754 5296 Cpqarray - ok

02:00:25.0863 5296 cpuz130 - ok

02:00:25.0910 5296 dac2w2k - ok

02:00:25.0941 5296 dac960nt - ok

02:00:26.0019 5296 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

02:00:26.0019 5296 Disk - ok

02:00:26.0285 5296 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys

02:00:26.0316 5296 dmboot - ok

02:00:26.0441 5296 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys

02:00:26.0441 5296 dmio - ok

02:00:26.0472 5296 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

02:00:26.0488 5296 dmload - ok

02:00:26.0597 5296 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

02:00:26.0597 5296 DMusic - ok

02:00:26.0660 5296 dpti2o - ok

02:00:26.0722 5296 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

02:00:26.0722 5296 drmkaud - ok

02:00:26.0863 5296 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys

02:00:26.0910 5296 eeCtrl - ok

02:00:26.0972 5296 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.sys

02:00:26.0988 5296 ENTECH - ok

02:00:27.0051 5296 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

02:00:27.0066 5296 EraserUtilRebootDrv - ok

02:00:27.0410 5296 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

02:00:27.0644 5296 Fastfat - ok

02:00:27.0863 5296 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys

02:00:27.0879 5296 Fdc - ok

02:00:27.0926 5296 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys

02:00:27.0957 5296 Fips - ok

02:00:27.0972 5296 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys

02:00:27.0988 5296 Flpydisk - ok

02:00:28.0066 5296 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys

02:00:28.0066 5296 FltMgr - ok

02:00:28.0113 5296 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

02:00:28.0129 5296 Fs_Rec - ok

02:00:28.0160 5296 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

02:00:28.0176 5296 Ftdisk - ok

02:00:28.0222 5296 gatkpgri (e6d35f3aa51a65eb35c1f2340154a25e) C:\WINDOWS\system32\drivers\cukbgtyv.sys

02:00:28.0238 5296 gatkpgri - ok

02:00:28.0285 5296 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

02:00:28.0285 5296 Gpc - ok

02:00:28.0332 5296 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys

02:00:28.0332 5296 HidUsb - ok

02:00:28.0441 5296 hpn - ok

02:00:28.0535 5296 HSFHWICH (a4877a17e87d6e6ab959b36b9ef3de8a) C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys

02:00:28.0551 5296 HSFHWICH - ok

02:00:28.0629 5296 HSF_DPV (5a8585e84425e823d6cf22515cabf5d0) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys

02:00:28.0676 5296 HSF_DPV - ok

02:00:28.0769 5296 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys

02:00:28.0785 5296 HTTP - ok

02:00:28.0863 5296 i2omgmt - ok

02:00:28.0894 5296 i2omp - ok

02:00:29.0019 5296 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys

02:00:29.0019 5296 i8042prt - ok

02:00:29.0113 5296 ialm (4007984827e19e6a5b6faf8532eaefba) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys

02:00:29.0176 5296 ialm - ok

02:00:29.0207 5296 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

02:00:29.0222 5296 Imapi - ok

02:00:29.0254 5296 ini910u - ok

02:00:29.0285 5296 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys

02:00:29.0285 5296 IntelIde - ok

02:00:29.0316 5296 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys

02:00:29.0332 5296 intelppm - ok

02:00:29.0363 5296 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys

02:00:29.0363 5296 Ip6Fw - ok

02:00:29.0426 5296 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

02:00:29.0426 5296 IpInIp - ok

02:00:29.0472 5296 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

02:00:29.0472 5296 IpNat - ok

02:00:29.0519 5296 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

02:00:29.0519 5296 IPSec - ok

02:00:29.0644 5296 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

02:00:29.0644 5296 IRENUM - ok

02:00:29.0676 5296 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys

02:00:29.0676 5296 isapnp - ok

02:00:29.0738 5296 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

02:00:29.0738 5296 Kbdclass - ok

02:00:29.0769 5296 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

02:00:29.0785 5296 kmixer - ok

02:00:29.0847 5296 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys

02:00:29.0863 5296 KSecDD - ok

02:00:29.0894 5296 lbrtfdc - ok

02:00:29.0972 5296 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys

02:00:29.0988 5296 MBAMProtector - ok

02:00:30.0019 5296 MBAMSwissArmy - ok

02:00:30.0082 5296 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys

02:00:30.0082 5296 mdmxsdk - ok

02:00:30.0144 5296 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys

02:00:30.0160 5296 mnmdd - ok

02:00:30.0191 5296 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys

02:00:30.0207 5296 Modem - ok

02:00:30.0222 5296 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys

02:00:30.0222 5296 Mouclass - ok

02:00:30.0285 5296 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys

02:00:30.0285 5296 mouhid - ok

02:00:30.0426 5296 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

02:00:30.0441 5296 MountMgr - ok

02:00:30.0457 5296 mraid35x - ok

02:00:30.0488 5296 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

02:00:30.0488 5296 MRxDAV - ok

02:00:30.0566 5296 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

02:00:30.0597 5296 MRxSmb - ok

02:00:30.0644 5296 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

02:00:30.0660 5296 Msfs - ok

02:00:30.0707 5296 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

02:00:30.0707 5296 MSKSSRV - ok

02:00:30.0738 5296 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

02:00:30.0738 5296 MSPCLOCK - ok

02:00:30.0769 5296 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

02:00:30.0769 5296 MSPQM - ok

02:00:30.0801 5296 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

02:00:30.0816 5296 mssmbios - ok

02:00:30.0847 5296 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys

02:00:30.0879 5296 Mup - ok

02:00:31.0082 5296 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20111118.020\NAVENG.SYS

02:00:31.0082 5296 NAVENG - ok

02:00:31.0269 5296 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20111118.020\NAVEX15.SYS

02:00:31.0285 5296 NAVEX15 - ok

02:00:31.0457 5296 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

02:00:31.0629 5296 NDIS - ok

02:00:31.0691 5296 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

02:00:31.0691 5296 NdisTapi - ok

02:00:31.0832 5296 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

02:00:31.0832 5296 Ndisuio - ok

02:00:31.0972 5296 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

02:00:31.0972 5296 NdisWan - ok

02:00:32.0035 5296 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys

02:00:32.0051 5296 NDProxy - ok

02:00:32.0097 5296 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

02:00:32.0097 5296 NetBIOS - ok

02:00:32.0144 5296 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

02:00:32.0144 5296 NetBT - ok

02:00:32.0222 5296 Netdevio (1265eb253ed4ebe4acb3bd5f548ff796) C:\WINDOWS\system32\DRIVERS\netdevio.sys

02:00:32.0222 5296 Netdevio - ok

02:00:32.0285 5296 nmwcd (357ddb51e03cae598c096d95497373d0) C:\WINDOWS\system32\drivers\ccdcmb.sys

02:00:32.0301 5296 nmwcd - ok

02:00:32.0347 5296 nmwcdc (7cd443f9d36c80e152fadb274089577a) C:\WINDOWS\system32\drivers\ccdcmbo.sys

02:00:32.0347 5296 nmwcdc - ok

02:00:32.0519 5296 nmwcdnsu (02120406f27f5895dfce4c640e6ee237) C:\WINDOWS\system32\drivers\nmwcdnsu.sys

02:00:32.0535 5296 nmwcdnsu - ok

02:00:32.0613 5296 NPF (b48dc6abcd3aeff8618350ccbdc6b09a) C:\WINDOWS\system32\drivers\npf.sys

02:00:32.0613 5296 NPF - ok

02:00:32.0691 5296 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

02:00:32.0722 5296 Npfs - ok

02:00:32.0769 5296 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

02:00:32.0816 5296 Ntfs - ok

02:00:32.0910 5296 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

02:00:32.0926 5296 Null - ok

02:00:32.0988 5296 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

02:00:32.0988 5296 NwlnkFlt - ok

02:00:33.0160 5296 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

02:00:33.0160 5296 NwlnkFwd - ok

02:00:33.0222 5296 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys

02:00:33.0238 5296 Parport - ok

02:00:33.0269 5296 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

02:00:33.0285 5296 PartMgr - ok

02:00:33.0347 5296 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys

02:00:33.0363 5296 ParVdm - ok

02:00:33.0426 5296 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys

02:00:33.0426 5296 pccsmcfd - ok

02:00:33.0504 5296 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys

02:00:33.0504 5296 PCI - ok

02:00:33.0519 5296 PCIDump - ok

02:00:33.0566 5296 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys

02:00:33.0566 5296 PCIIde - ok

02:00:33.0644 5296 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys

02:00:33.0644 5296 Pcmcia - ok

02:00:33.0894 5296 PDCOMP - ok

02:00:33.0926 5296 PDFRAME - ok

02:00:33.0972 5296 PDRELI - ok

02:00:33.0988 5296 PDRFRAME - ok

02:00:34.0019 5296 perc2 - ok

02:00:34.0035 5296 perc2hib - ok

02:00:34.0129 5296 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

02:00:34.0129 5296 PptpMiniport - ok

02:00:34.0191 5296 prodrv06 (bc91060f244722a5d1c0e8016d9b0173) C:\WINDOWS\System32\drivers\prodrv06.sys

02:00:34.0191 5296 prodrv06 - ok

02:00:34.0238 5296 prohlp02 (880dc7832fd1dd7411e608cad45cf4a1) C:\WINDOWS\system32\drivers\prohlp02.sys

02:00:34.0238 5296 prohlp02 - ok

02:00:34.0332 5296 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

02:00:34.0332 5296 PSched - ok

02:00:34.0472 5296 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

02:00:34.0472 5296 Ptilink - ok

02:00:34.0535 5296 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys

02:00:34.0535 5296 PxHelp20 - ok

02:00:34.0582 5296 qkbfiltr (c50faa6fda843fa2172aa2b9c3cd1dab) C:\WINDOWS\system32\drivers\qkbfiltr.sys

02:00:34.0597 5296 qkbfiltr - ok

02:00:34.0613 5296 ql1080 - ok

02:00:34.0629 5296 Ql10wnt - ok

02:00:34.0660 5296 ql12160 - ok

02:00:34.0676 5296 ql1240 - ok

02:00:34.0707 5296 ql1280 - ok

02:00:34.0754 5296 qmofiltr (8652b9e134c3478be948bf089df8ed5e) C:\WINDOWS\system32\drivers\qmofiltr.sys

02:00:34.0754 5296 qmofiltr - ok

02:00:34.0816 5296 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

02:00:34.0816 5296 RasAcd - ok

02:00:34.0894 5296 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

02:00:34.0894 5296 Rasl2tp - ok

02:00:34.0972 5296 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

02:00:34.0972 5296 RasPppoe - ok

02:00:35.0004 5296 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

02:00:35.0004 5296 Raspti - ok

02:00:35.0097 5296 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

02:00:35.0097 5296 Rdbss - ok

02:00:35.0144 5296 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

02:00:35.0144 5296 RDPCDD - ok

02:00:35.0222 5296 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys

02:00:35.0222 5296 rdpdr - ok

02:00:35.0316 5296 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys

02:00:35.0347 5296 RDPWD - ok

02:00:35.0379 5296 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys

02:00:35.0394 5296 redbook - ok

02:00:35.0488 5296 RTL8023xp (cf84b1f0e8b14d4120aaf9cf35cbb265) C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys

02:00:35.0504 5296 RTL8023xp - ok

02:00:35.0629 5296 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS

02:00:35.0644 5296 rtl8139 - ok

02:00:35.0754 5296 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

02:00:35.0754 5296 Secdrv - ok

02:00:35.0801 5296 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys

02:00:35.0816 5296 Serial - ok

02:00:35.0941 5296 sfhlp01 (462aee0ea0481ea8bd45cac876a4ccc4) C:\WINDOWS\system32\drivers\sfhlp01.sys

02:00:35.0941 5296 sfhlp01 - ok

02:00:36.0004 5296 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys

02:00:36.0004 5296 Sfloppy - ok

02:00:36.0066 5296 Simbad - ok

02:00:36.0129 5296 Sparrow - ok

02:00:36.0269 5296 SPBBCDrv (cb5a4e90451d80d415f0a6dbb86d1d9f) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys

02:00:36.0301 5296 SPBBCDrv - ok

02:00:36.0441 5296 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

02:00:36.0441 5296 splitter - ok

02:00:36.0488 5296 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys

02:00:36.0504 5296 sr - ok

02:00:36.0535 5296 SRTSP (fdb49acd281d72c5d5392d066eda9c1a) C:\WINDOWS\system32\Drivers\SRTSP.SYS

02:00:36.0535 5296 SRTSP - ok

02:00:36.0785 5296 SRTSPL (45bc2cabb0a65bb91f7f5b6aae809ef3) C:\WINDOWS\system32\Drivers\SRTSPL.SYS

02:00:36.0801 5296 SRTSPL - ok

02:00:36.0863 5296 SRTSPX (c285bb1258d2a87d4068722937d0bf03) C:\WINDOWS\system32\Drivers\SRTSPX.SYS

02:00:36.0863 5296 SRTSPX - ok

02:00:36.0926 5296 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys

02:00:36.0941 5296 Srv - ok

02:00:37.0019 5296 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

02:00:37.0019 5296 swenum - ok

02:00:37.0051 5296 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

02:00:37.0051 5296 swmidi - ok

02:00:37.0082 5296 symc810 - ok

02:00:37.0113 5296 symc8xx - ok

02:00:37.0144 5296 SymEvent (4517bd567d4eab459194feccfa654a51) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS

02:00:37.0176 5296 SymEvent - ok

02:00:37.0301 5296 SYMREDRV (829830a3ca1c5e329d68e26c9cd2de8d) C:\WINDOWS\System32\Drivers\SYMREDRV.SYS

02:00:37.0301 5296 SYMREDRV - ok

02:00:37.0379 5296 SYMTDI (b1aa9704124b494c34e8d372e6654196) C:\WINDOWS\System32\Drivers\SYMTDI.SYS

02:00:37.0379 5296 SYMTDI - ok

02:00:37.0457 5296 sym_hi - ok

02:00:37.0488 5296 sym_u3 - ok

02:00:37.0582 5296 SynTP (eb363ddfbe8b6d51003ccab29d93d744) C:\WINDOWS\system32\DRIVERS\SynTP.sys

02:00:37.0597 5296 SynTP - ok

02:00:37.0676 5296 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

02:00:37.0676 5296 sysaudio - ok

02:00:37.0816 5296 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

02:00:37.0832 5296 Tcpip - ok

02:00:37.0879 5296 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

02:00:37.0894 5296 TDPIPE - ok

02:00:37.0926 5296 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

02:00:37.0941 5296 TDTCP - ok

02:00:37.0988 5296 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

02:00:38.0004 5296 TermDD - ok

02:00:38.0066 5296 TosIde - ok

02:00:38.0097 5296 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

02:00:38.0113 5296 Udfs - ok

02:00:38.0144 5296 ultra - ok

02:00:38.0176 5296 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

02:00:38.0191 5296 Update - ok

02:00:38.0285 5296 upperdev (15629e4d65f97ab5432d6d9597cf6a33) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys

02:00:38.0301 5296 upperdev - ok

02:00:38.0519 5296 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys

02:00:38.0535 5296 usbccgp - ok

02:00:38.0644 5296 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys

02:00:38.0644 5296 usbehci - ok

02:00:38.0801 5296 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

02:00:38.0801 5296 usbhub - ok

02:00:38.0879 5296 usbser (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\DRIVERS\usbser.sys

02:00:38.0879 5296 usbser - ok

02:00:38.0988 5296 UsbserFilt (5c17e6a11aa8be53f79fd364ba19f0ce) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys

02:00:38.0988 5296 UsbserFilt - ok

02:00:39.0066 5296 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

02:00:39.0066 5296 USBSTOR - ok

02:00:39.0129 5296 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys

02:00:39.0129 5296 usbuhci - ok

02:00:39.0207 5296 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

02:00:39.0207 5296 VgaSave - ok

02:00:39.0269 5296 ViaIde - ok

02:00:39.0347 5296 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys

02:00:39.0379 5296 VolSnap - ok

02:00:39.0394 5296 vsdatant - ok

02:00:39.0644 5296 w29n51 (c89da341fcc883a3d79dc11727484fc2) C:\WINDOWS\system32\DRIVERS\w29n51.sys

02:00:39.0816 5296 w29n51 - ok

02:00:39.0926 5296 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

02:00:39.0926 5296 Wanarp - ok

02:00:40.0035 5296 Wdf01000 (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys

02:00:40.0066 5296 Wdf01000 - ok

02:00:40.0144 5296 WDICA - ok

02:00:40.0191 5296 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

02:00:40.0191 5296 wdmaud - ok

02:00:40.0363 5296 winachsf (473ee64c368ce2eed110376c11960259) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys

02:00:40.0410 5296 winachsf - ok

02:00:40.0551 5296 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys

02:00:40.0551 5296 WpdUsb - ok

02:00:40.0691 5296 WudfPf (6ff66513d372d479ef1810223c8d20ce) C:\WINDOWS\system32\DRIVERS\WudfPf.sys

02:00:40.0691 5296 WudfPf - ok

02:00:40.0754 5296 WudfRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\WINDOWS\system32\DRIVERS\wudfrd.sys

02:00:40.0754 5296 WudfRd - ok

02:00:40.0816 5296 MBR (0x1B8) (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk0\DR0

02:00:40.0988 5296 \Device\Harddisk0\DR0 - ok

02:00:41.0004 5296 Boot (0x1200) (142ff293a7ba646562672705c50380b9) \Device\Harddisk0\DR0\Partition0

02:00:41.0004 5296 \Device\Harddisk0\DR0\Partition0 - ok

02:00:41.0004 5296 ============================================================

02:00:41.0004 5296 Scan finished

02:00:41.0004 5296 ============================================================

02:00:41.0035 3660 Detected object count: 0

02:00:41.0035 3660 Actual detected object count: 0

02:00:53.0332 4824 ============================================================

02:00:53.0332 4824 Scan started

02:00:53.0332 4824 Mode: Manual; SigCheck; TDLFS;

02:00:53.0332 4824 ============================================================

02:00:54.0301 4824 Abiosdsk - ok

02:00:54.0332 4824 abp480n5 - ok

02:00:54.0472 4824 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys

02:00:56.0957 4824 ACPI - ok

02:00:57.0144 4824 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys

02:00:57.0316 4824 ACPIEC - ok

02:00:57.0347 4824 adpu160m - ok

02:00:57.0426 4824 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys

02:00:57.0566 4824 aec - ok

02:00:57.0613 4824 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys

02:00:57.0691 4824 AFD - ok

02:00:57.0707 4824 Aha154x - ok

02:00:57.0722 4824 aic78u2 - ok

02:00:57.0754 4824 aic78xx - ok

02:00:57.0769 4824 AliIde - ok

02:00:57.0785 4824 amsint - ok

02:00:57.0801 4824 asc - ok

02:00:57.0816 4824 asc3350p - ok

02:00:57.0847 4824 asc3550 - ok

02:00:57.0894 4824 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys

02:00:58.0066 4824 AsyncMac - ok

02:00:58.0191 4824 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys

02:00:58.0472 4824 atapi - ok

02:00:58.0488 4824 Atdisk - ok

02:00:58.0535 4824 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys

02:00:58.0785 4824 Atmarpc - ok

02:00:58.0847 4824 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys

02:00:58.0988 4824 audstub - ok

02:00:59.0066 4824 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys

02:00:59.0222 4824 Beep - ok

02:00:59.0316 4824 BoiHwsetup (141befbd4f2a84a66e2f54b9e32e40d1) C:\WINDOWS\system32\drivers\BoiHwSetup.sys

02:00:59.0379 4824 BoiHwsetup - ok

02:00:59.0504 4824 CAMCAUD (cce1f3c7c8e7383b90372229454999cf) C:\WINDOWS\system32\drivers\camc6aud.sys

02:00:59.0566 4824 CAMCAUD - ok

02:00:59.0629 4824 CAMCHALA (9a3bbde74dab737efa82de7ef4b40bea) C:\WINDOWS\system32\drivers\camc6hal.sys

02:00:59.0644 4824 CAMCHALA - ok

02:00:59.0707 4824 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys

02:00:59.0863 4824 cbidf2k - ok

02:00:59.0894 4824 cd20xrnt - ok

02:00:59.0941 4824 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys

02:01:00.0066 4824 Cdaudio - ok

02:01:00.0129 4824 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys

02:01:00.0285 4824 Cdfs - ok

02:01:00.0316 4824 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys

02:01:00.0551 4824 Cdrom - ok

02:01:00.0644 4824 Changer - ok

02:01:00.0738 4824 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys

02:01:00.0879 4824 CmBatt - ok

02:01:00.0926 4824 CmdIde - ok

02:01:00.0988 4824 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\WINDOWS\system32\Drivers\COH_Mon.sys

02:01:01.0019 4824 COH_Mon - ok

02:01:01.0082 4824 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys

02:01:01.0363 4824 Compbatt - ok

02:01:01.0394 4824 Cpqarray - ok

02:01:01.0488 4824 cpuz130 - ok

02:01:01.0535 4824 dac2w2k - ok

02:01:01.0551 4824 dac960nt - ok

02:01:01.0582 4824 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys

02:01:01.0722 4824 Disk - ok

02:01:01.0801 4824 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys

02:01:01.0972 4824 dmboot - ok

02:01:02.0097 4824 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys

02:01:02.0269 4824 dmio - ok

02:01:02.0316 4824 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys

02:01:02.0535 4824 dmload - ok

02:01:02.0644 4824 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys

02:01:02.0910 4824 DMusic - ok

02:01:02.0988 4824 dpti2o - ok

02:01:03.0035 4824 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys

02:01:03.0222 4824 drmkaud - ok

02:01:03.0363 4824 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys

02:01:04.0472 4824 eeCtrl - ok

02:01:04.0754 4824 ENTECH (16ebd8bf1d5090923694cc972c7ce1b4) C:\WINDOWS\system32\DRIVERS\ENTECH.sys

02:01:04.0801 4824 ENTECH - ok

02:01:04.0988 4824 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

02:01:05.0035 4824 EraserUtilRebootDrv - ok

02:01:05.0144 4824 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys

02:01:05.0426 4824 Fastfat - ok

02:01:05.0519 4824 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys

02:01:05.0676 4824 Fdc - ok

02:01:05.0738 4824 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys

02:01:05.0879 4824 Fips - ok

02:01:05.0926 4824 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys

02:01:06.0082 4824 Flpydisk - ok

02:01:06.0129 4824 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys

02:01:06.0254 4824 FltMgr - ok

02:01:06.0301 4824 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys

02:01:06.0441 4824 Fs_Rec - ok

02:01:06.0551 4824 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys

02:01:06.0707 4824 Ftdisk - ok

02:01:06.0847 4824 gatkpgri (e6d35f3aa51a65eb35c1f2340154a25e) C:\WINDOWS\system32\drivers\cukbgtyv.sys

02:01:06.0879 4824 gatkpgri ( UnsignedFile.Multi.Generic ) - warning

02:01:06.0879 4824 gatkpgri - detected UnsignedFile.Multi.Generic (1)

02:01:07.0019 4824 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys

02:01:07.0254 4824 Gpc - ok

02:01:07.0316 4824 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys

02:01:07.0457 4824 HidUsb - ok

02:01:07.0519 4824 hpn - ok

02:01:07.0613 4824 HSFHWICH (a4877a17e87d6e6ab959b36b9ef3de8a) C:\WINDOWS\system32\DRIVERS\HSFHWICH.sys

02:01:07.0676 4824 HSFHWICH - ok

02:01:08.0066 4824 HSF_DPV (5a8585e84425e823d6cf22515cabf5d0) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys

02:01:08.0191 4824 HSF_DPV - ok

02:01:08.0301 4824 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys

02:01:08.0426 4824 HTTP - ok

02:01:08.0488 4824 i2omgmt - ok

02:01:08.0519 4824 i2omp - ok

02:01:08.0597 4824 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys

02:01:08.0926 4824 i8042prt - ok

02:01:09.0129 4824 ialm (4007984827e19e6a5b6faf8532eaefba) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys

02:01:09.0269 4824 ialm - ok

02:01:09.0347 4824 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys

02:01:09.0519 4824 Imapi - ok

02:01:09.0535 4824 ini910u - ok

02:01:09.0582 4824 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys

02:01:09.0754 4824 IntelIde - ok

02:01:09.0847 4824 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys

02:01:09.0988 4824 intelppm - ok

02:01:10.0082 4824 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys

02:01:10.0207 4824 Ip6Fw - ok

02:01:10.0301 4824 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys

02:01:10.0457 4824 IpInIp - ok

02:01:10.0488 4824 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys

02:01:10.0644 4824 IpNat - ok

02:01:10.0738 4824 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys

02:01:10.0941 4824 IPSec - ok

02:01:11.0004 4824 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys

02:01:11.0191 4824 IRENUM - ok

02:01:11.0254 4824 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys

02:01:11.0426 4824 isapnp - ok

02:01:11.0582 4824 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys

02:01:11.0754 4824 Kbdclass - ok

02:01:11.0801 4824 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys

02:01:11.0972 4824 kmixer - ok

02:01:12.0004 4824 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys

02:01:12.0113 4824 KSecDD - ok

02:01:12.0176 4824 lbrtfdc - ok

02:01:12.0254 4824 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys

02:01:12.0285 4824 MBAMProtector - ok

02:01:12.0316 4824 MBAMSwissArmy - ok

02:01:12.0363 4824 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys

02:01:12.0394 4824 mdmxsdk - ok

02:01:12.0441 4824 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys

02:01:12.0676 4824 mnmdd - ok

02:01:12.0832 4824 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys

02:01:13.0051 4824 Modem - ok

02:01:13.0097 4824 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys

02:01:13.0207 4824 Mouclass - ok

02:01:13.0269 4824 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys

02:01:13.0410 4824 mouhid - ok

02:01:13.0457 4824 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys

02:01:13.0582 4824 MountMgr - ok

02:01:13.0644 4824 mraid35x - ok

02:01:13.0691 4824 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys

02:01:13.0847 4824 MRxDAV - ok

02:01:14.0004 4824 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

02:01:14.0082 4824 MRxSmb - ok

02:01:14.0144 4824 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys

02:01:14.0347 4824 Msfs - ok

02:01:14.0410 4824 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys

02:01:14.0613 4824 MSKSSRV - ok

02:01:14.0676 4824 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys

02:01:14.0879 4824 MSPCLOCK - ok

02:01:14.0957 4824 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys

02:01:15.0160 4824 MSPQM - ok

02:01:15.0222 4824 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys

02:01:15.0410 4824 mssmbios - ok

02:01:15.0504 4824 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys

02:01:15.0566 4824 Mup - ok

02:01:15.0676 4824 NAVENG (862f55824ac81295837b0ab63f91071f) C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20111118.020\NAVENG.SYS

02:01:15.0707 4824 NAVENG - ok

02:01:15.0801 4824 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\PROGRA~1\COMMON~1\SYMANT~1\VIRUSD~1\20111118.020\NAVEX15.SYS

02:01:15.0972 4824 NAVEX15 - ok

02:01:16.0097 4824 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys

02:01:16.0426 4824 NDIS - ok

02:01:16.0535 4824 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys

02:01:16.0629 4824 NdisTapi - ok

02:01:16.0691 4824 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys

02:01:16.0832 4824 Ndisuio - ok

02:01:16.0863 4824 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys

02:01:17.0051 4824 NdisWan - ok

02:01:17.0113 4824 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys

02:01:17.0176 4824 NDProxy - ok

02:01:17.0285 4824 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys

02:01:17.0504 4824 NetBIOS - ok

02:01:17.0597 4824 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys

02:01:17.0847 4824 NetBT - ok

02:01:17.0926 4824 Netdevio (1265eb253ed4ebe4acb3bd5f548ff796) C:\WINDOWS\system32\DRIVERS\netdevio.sys

02:01:17.0957 4824 Netdevio ( UnsignedFile.Multi.Generic ) - warning

02:01:17.0957 4824 Netdevio - detected UnsignedFile.Multi.Generic (1)

02:01:18.0004 4824 nmwcd (357ddb51e03cae598c096d95497373d0) C:\WINDOWS\system32\drivers\ccdcmb.sys

02:01:18.0222 4824 nmwcd - ok

02:01:18.0347 4824 nmwcdc (7cd443f9d36c80e152fadb274089577a) C:\WINDOWS\system32\drivers\ccdcmbo.sys

02:01:18.0426 4824 nmwcdc - ok

02:01:18.0504 4824 nmwcdnsu (02120406f27f5895dfce4c640e6ee237) C:\WINDOWS\system32\drivers\nmwcdnsu.sys

02:01:18.0613 4824 nmwcdnsu - ok

02:01:18.0676 4824 NPF (b48dc6abcd3aeff8618350ccbdc6b09a) C:\WINDOWS\system32\drivers\npf.sys

02:01:18.0691 4824 NPF - ok

02:01:18.0738 4824 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys

02:01:18.0957 4824 Npfs - ok

02:01:19.0019 4824 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys

02:01:19.0238 4824 Ntfs - ok

02:01:19.0316 4824 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys

02:01:19.0535 4824 Null - ok

02:01:19.0707 4824 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

02:01:19.0910 4824 NwlnkFlt - ok

02:01:19.0988 4824 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

02:01:20.0207 4824 NwlnkFwd - ok

02:01:20.0301 4824 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys

02:01:20.0504 4824 Parport - ok

02:01:20.0551 4824 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys

02:01:20.0769 4824 PartMgr - ok

02:01:20.0816 4824 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys

02:01:21.0035 4824 ParVdm - ok

02:01:21.0160 4824 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys

02:01:21.0207 4824 pccsmcfd - ok

02:01:21.0222 4824 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys

02:01:21.0426 4824 PCI - ok

02:01:21.0441 4824 PCIDump - ok

02:01:21.0504 4824 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys

02:01:21.0707 4824 PCIIde - ok

02:01:21.0722 4824 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\DRIVERS\pcmcia.sys

02:01:21.0879 4824 Pcmcia - ok

02:01:21.0894 4824 PDCOMP - ok

02:01:21.0910 4824 PDFRAME - ok

02:01:21.0926 4824 PDRELI - ok

02:01:21.0941 4824 PDRFRAME - ok

02:01:21.0957 4824 perc2 - ok

02:01:21.0988 4824 perc2hib - ok

02:01:22.0051 4824 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys

02:01:22.0238 4824 PptpMiniport - ok

02:01:22.0347 4824 prodrv06 (bc91060f244722a5d1c0e8016d9b0173) C:\WINDOWS\System32\drivers\prodrv06.sys

02:01:22.0363 4824 prodrv06 ( UnsignedFile.Multi.Generic ) - warning

02:01:22.0363 4824 prodrv06 - detected UnsignedFile.Multi.Generic (1)

02:01:22.0426 4824 prohlp02 (880dc7832fd1dd7411e608cad45cf4a1) C:\WINDOWS\system32\drivers\prohlp02.sys

02:01:22.0457 4824 prohlp02 ( UnsignedFile.Multi.Generic ) - warning

02:01:22.0457 4824 prohlp02 - detected UnsignedFile.Multi.Generic (1)

02:01:22.0519 4824 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys

02:01:22.0660 4824 PSched - ok

02:01:22.0832 4824 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys

02:01:23.0051 4824 Ptilink - ok

02:01:23.0082 4824 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\WINDOWS\system32\Drivers\PxHelp20.sys

02:01:23.0113 4824 PxHelp20 - ok

02:01:23.0160 4824 qkbfiltr (c50faa6fda843fa2172aa2b9c3cd1dab) C:\WINDOWS\system32\drivers\qkbfiltr.sys

02:01:23.0176 4824 qkbfiltr ( UnsignedFile.Multi.Generic ) - warning

02:01:23.0176 4824 qkbfiltr - detected UnsignedFile.Multi.Generic (1)

02:01:23.0191 4824 ql1080 - ok

02:01:23.0222 4824 Ql10wnt - ok

02:01:23.0238 4824 ql12160 - ok

02:01:23.0254 4824 ql1240 - ok

02:01:23.0269 4824 ql1280 - ok

02:01:23.0301 4824 qmofiltr (8652b9e134c3478be948bf089df8ed5e) C:\WINDOWS\system32\drivers\qmofiltr.sys

02:01:23.0332 4824 qmofiltr ( UnsignedFile.Multi.Generic ) - warning

02:01:23.0332 4824 qmofiltr - detected UnsignedFile.Multi.Generic (1)

02:01:23.0426 4824 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys

02:01:23.0644 4824 RasAcd - ok

02:01:23.0754 4824 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

02:01:24.0004 4824 Rasl2tp - ok

02:01:24.0066 4824 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys

02:01:24.0191 4824 RasPppoe - ok

02:01:24.0301 4824 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys

02:01:24.0426 4824 Raspti - ok

02:01:24.0457 4824 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys

02:01:24.0613 4824 Rdbss - ok

02:01:24.0644 4824 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

02:01:24.0769 4824 RDPCDD - ok

02:01:24.0847 4824 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys

02:01:24.0972 4824 rdpdr - ok

02:01:25.0066 4824 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys

02:01:25.0144 4824 RDPWD - ok

02:01:25.0222 4824 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys

02:01:25.0363 4824 redbook - ok

02:01:25.0488 4824 RTL8023xp (cf84b1f0e8b14d4120aaf9cf35cbb265) C:\WINDOWS\system32\DRIVERS\Rtnicxp.sys

02:01:25.0613 4824 RTL8023xp - ok

02:01:25.0691 4824 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS

02:01:25.0863 4824 rtl8139 - ok

02:01:25.0957 4824 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys

02:01:26.0222 4824 Secdrv - ok

02:01:26.0332 4824 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys

02:01:26.0457 4824 Serial - ok

02:01:26.0582 4824 sfhlp01 (462aee0ea0481ea8bd45cac876a4ccc4) C:\WINDOWS\system32\drivers\sfhlp01.sys

02:01:26.0597 4824 sfhlp01 ( UnsignedFile.Multi.Generic ) - warning

02:01:26.0597 4824 sfhlp01 - detected UnsignedFile.Multi.Generic (1)

02:01:26.0629 4824 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys

02:01:26.0769 4824 Sfloppy - ok

02:01:26.0801 4824 Simbad - ok

02:01:26.0832 4824 Sparrow - ok

02:01:26.0941 4824 SPBBCDrv (cb5a4e90451d80d415f0a6dbb86d1d9f) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys

02:01:26.0972 4824 SPBBCDrv - ok

02:01:27.0019 4824 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys

02:01:27.0207 4824 splitter - ok

02:01:27.0238 4824 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys

02:01:27.0457 4824 sr - ok

02:01:27.0519 4824 SRTSP (fdb49acd281d72c5d5392d066eda9c1a) C:\WINDOWS\system32\Drivers\SRTSP.SYS

02:01:27.0566 4824 SRTSP - ok

02:01:27.0644 4824 SRTSPL (45bc2cabb0a65bb91f7f5b6aae809ef3) C:\WINDOWS\system32\Drivers\SRTSPL.SYS

02:01:27.0676 4824 SRTSPL - ok

02:01:27.0801 4824 SRTSPX (c285bb1258d2a87d4068722937d0bf03) C:\WINDOWS\system32\Drivers\SRTSPX.SYS

02:01:27.0832 4824 SRTSPX - ok

02:01:27.0894 4824 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys

02:01:27.0988 4824 Srv - ok

02:01:28.0097 4824 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys

02:01:28.0363 4824 swenum - ok

02:01:28.0426 4824 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys

02:01:28.0597 4824 swmidi - ok

02:01:28.0629 4824 symc810 - ok

02:01:28.0676 4824 symc8xx - ok

02:01:28.0754 4824 SymEvent (4517bd567d4eab459194feccfa654a51) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS

02:01:28.0769 4824 SymEvent - ok

02:01:28.0832 4824 SYMREDRV (829830a3ca1c5e329d68e26c9cd2de8d) C:\WINDOWS\System32\Drivers\SYMREDRV.SYS

02:01:28.0863 4824 SYMREDRV - ok

02:01:28.0972 4824 SYMTDI (b1aa9704124b494c34e8d372e6654196) C:\WINDOWS\System32\Drivers\SYMTDI.SYS

02:01:29.0004 4824 SYMTDI - ok

02:01:29.0035 4824 sym_hi - ok

02:01:29.0051 4824 sym_u3 - ok

02:01:29.0097 4824 SynTP (eb363ddfbe8b6d51003ccab29d93d744) C:\WINDOWS\system32\DRIVERS\SynTP.sys

02:01:29.0160 4824 SynTP - ok

02:01:29.0254 4824 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys

02:01:29.0394 4824 sysaudio - ok

02:01:29.0504 4824 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys

02:01:29.0691 4824 Tcpip - ok

02:01:29.0785 4824 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys

02:01:29.0972 4824 TDPIPE - ok

02:01:30.0019 4824 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys

02:01:30.0254 4824 TDTCP - ok

02:01:30.0347 4824 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys

02:01:30.0488 4824 TermDD - ok

02:01:30.0551 4824 TosIde - ok

02:01:30.0582 4824 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys

02:01:30.0738 4824 Udfs - ok

02:01:30.0754 4824 ultra - ok

02:01:30.0816 4824 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys

02:01:31.0004 4824 Update - ok

02:01:31.0051 4824 upperdev (15629e4d65f97ab5432d6d9597cf6a33) C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys

02:01:31.0129 4824 upperdev - ok

02:01:31.0222 4824 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys

02:01:31.0347 4824 usbccgp - ok

02:01:31.0441 4824 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys

02:01:31.0629 4824 usbehci - ok

02:01:31.0785 4824 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys

02:01:31.0972 4824 usbhub - ok

02:01:32.0035 4824 usbser (1c888b000c2f9492f4b15b5b6b84873e) C:\WINDOWS\system32\DRIVERS\usbser.sys

02:01:32.0238 4824 usbser - ok

02:01:32.0332 4824 UsbserFilt (5c17e6a11aa8be53f79fd364ba19f0ce) C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys

02:01:32.0426 4824 UsbserFilt - ok

02:01:32.0551 4824 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

02:01:32.0754 4824 USBSTOR - ok

02:01:32.0816 4824 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys

02:01:33.0051 4824 usbuhci - ok

02:01:33.0113 4824 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys

02:01:33.0238 4824 VgaSave - ok

02:01:33.0254 4824 ViaIde - ok

02:01:33.0316 4824 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys

02:01:33.0472 4824 VolSnap - ok

02:01:33.0472 4824 vsdatant - ok

02:01:33.0676 4824 w29n51 (c89da341fcc883a3d79dc11727484fc2) C:\WINDOWS\system32\DRIVERS\w29n51.sys

02:01:33.0972 4824 w29n51 - ok

02:01:34.0082 4824 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys

02:01:34.0301 4824 Wanarp - ok

02:01:34.0426 4824 Wdf01000 (bbcfeab7e871cddac2d397ee7fa91fdc) C:\WINDOWS\system32\Drivers\wdf01000.sys

02:01:34.0457 4824 Wdf01000 - ok

02:01:34.0504 4824 WDICA - ok

02:01:34.0597 4824 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys

02:01:34.0738 4824 wdmaud - ok

02:01:34.0847 4824 winachsf (473ee64c368ce2eed110376c11960259) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys

02:01:34.0941 4824 winachsf - ok

02:01:35.0113 4824 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys

02:01:35.0207 4824 WpdUsb - ok

02:01:35.0379 4824 WudfPf (6ff66513d372d479ef1810223c8d20ce) C:\WINDOWS\system32\DRIVERS\WudfPf.sys

02:01:35.0472 4824 WudfPf - ok

02:01:35.0551 4824 WudfRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\WINDOWS\system32\DRIVERS\wudfrd.sys

02:01:35.0629 4824 WudfRd - ok

02:01:35.0707 4824 MBR (0x1B8) (671b81004fdd1588fa9ed1331c9ceca9) \Device\Harddisk0\DR0

02:01:35.0926 4824 \Device\Harddisk0\DR0 - ok

02:01:35.0957 4824 Boot (0x1200) (142ff293a7ba646562672705c50380b9) \Device\Harddisk0\DR0\Partition0

02:01:35.0957 4824 \Device\Harddisk0\DR0\Partition0 - ok

02:01:35.0957 4824 ============================================================

02:01:35.0957 4824 Scan finished

02:01:35.0957 4824 ============================================================

02:01:36.0082 5964 Detected object count: 7

02:01:36.0082 5964 Actual detected object count: 7

02:02:13.0082 5964 HKLM\SYSTEM\ControlSet001\services\gatkpgri - will be deleted on reboot

02:02:13.0097 5964 C:\WINDOWS\system32\drivers\cukbgtyv.sys - will be deleted on reboot

02:02:13.0097 5964 gatkpgri ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0097 5964 HKLM\SYSTEM\ControlSet001\services\Netdevio - will be deleted on reboot

02:02:13.0113 5964 HKLM\SYSTEM\ControlSet003\services\Netdevio - will be deleted on reboot

02:02:13.0144 5964 C:\WINDOWS\system32\DRIVERS\netdevio.sys - will be deleted on reboot

02:02:13.0144 5964 Netdevio ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet001\services\prodrv06 - will be deleted on reboot

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet003\services\prodrv06 - will be deleted on reboot

02:02:13.0144 5964 C:\WINDOWS\System32\drivers\prodrv06.sys - will be deleted on reboot

02:02:13.0144 5964 prodrv06 ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet001\services\prohlp02 - will be deleted on reboot

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet003\services\prohlp02 - will be deleted on reboot

02:02:13.0144 5964 C:\WINDOWS\system32\drivers\prohlp02.sys - will be deleted on reboot

02:02:13.0144 5964 prohlp02 ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet001\services\qkbfiltr - will be deleted on reboot

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet003\services\qkbfiltr - will be deleted on reboot

02:02:13.0160 5964 C:\WINDOWS\system32\drivers\qkbfiltr.sys - will be deleted on reboot

02:02:13.0160 5964 qkbfiltr ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0160 5964 HKLM\SYSTEM\ControlSet001\services\qmofiltr - will be deleted on reboot

02:02:13.0160 5964 HKLM\SYSTEM\ControlSet003\services\qmofiltr - will be deleted on reboot

02:02:13.0160 5964 C:\WINDOWS\system32\drivers\qmofiltr.sys - will be deleted on reboot

02:02:13.0160 5964 qmofiltr ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0160 5964 HKLM\SYSTEM\ControlSet001\services\sfhlp01 - will be deleted on reboot

02:02:13.0160 5964 HKLM\SYSTEM\ControlSet003\services\sfhlp01 - will be deleted on reboot

02:02:13.0176 5964 C:\WINDOWS\system32\drivers\sfhlp01.sys - will be deleted on reboot

02:02:13.0176 5964 sfhlp01 ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:22.0519 4140 Deinitialize success

Link to post
Share on other sites

... ok so now the keyboard n mouse dont work, i cant even log on after the latest restart. how do i replace these drivers?

02:02:13.0082 5964 HKLM\SYSTEM\ControlSet001\services\gatkpgri - will be deleted on reboot

02:02:13.0097 5964 C:\WINDOWS\system32\drivers\cukbgtyv.sys - will be deleted on reboot

02:02:13.0097 5964 gatkpgri ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0097 5964 HKLM\SYSTEM\ControlSet001\services\Netdevio - will be deleted on reboot

02:02:13.0113 5964 HKLM\SYSTEM\ControlSet003\services\Netdevio - will be deleted on reboot

02:02:13.0144 5964 C:\WINDOWS\system32\DRIVERS\netdevio.sys - will be deleted on reboot

02:02:13.0144 5964 Netdevio ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet001\services\prodrv06 - will be deleted on reboot

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet003\services\prodrv06 - will be deleted on reboot

02:02:13.0144 5964 C:\WINDOWS\System32\drivers\prodrv06.sys - will be deleted on reboot

02:02:13.0144 5964 prodrv06 ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet001\services\prohlp02 - will be deleted on reboot

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet003\services\prohlp02 - will be deleted on reboot

02:02:13.0144 5964 C:\WINDOWS\system32\drivers\prohlp02.sys - will be deleted on reboot

02:02:13.0144 5964 prohlp02 ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet001\services\qkbfiltr - will be deleted on reboot

02:02:13.0144 5964 HKLM\SYSTEM\ControlSet003\services\qkbfiltr - will be deleted on reboot

02:02:13.0160 5964 C:\WINDOWS\system32\drivers\qkbfiltr.sys - will be deleted on reboot

02:02:13.0160 5964 qkbfiltr ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0160 5964 HKLM\SYSTEM\ControlSet001\services\qmofiltr - will be deleted on reboot

02:02:13.0160 5964 HKLM\SYSTEM\ControlSet003\services\qmofiltr - will be deleted on reboot

02:02:13.0160 5964 C:\WINDOWS\system32\drivers\qmofiltr.sys - will be deleted on reboot

02:02:13.0160 5964 qmofiltr ( UnsignedFile.Multi.Generic ) - User select action: Delete

02:02:13.0160 5964 HKLM\SYSTEM\ControlSet001\services\sfhlp01 - will be deleted on reboot

02:02:13.0160 5964 HKLM\SYSTEM\ControlSet003\services\sfhlp01 - will be deleted on reboot

02:02:13.0176 5964 C:\WINDOWS\system32\drivers\sfhlp01.sys - will be deleted on reboot

02:02:13.0176 5964 sfhlp01 ( UnsignedFile.Multi.Generic ) - User select action: Delete

PLEASE HELP

...posted this from my fone

Link to post
Share on other sites

...seeing as the pc i was using is now completely screwed thanks to windows being a unsecure useless p.o.s im switching back to a linux distro, i only had a windows installation for work(i.t ppl refuse to support *nix operationg systems :( ...), they will just have to get over it lol. mods, admins etc feel free to delete this thread, sorry for wasting your board space!!

thanks,

joe

Link to post
Share on other sites

  • 2 weeks later...
  • 2 weeks later...
  • Staff

Due to the lack of feedback this topic is closed to prevent others from posting here. If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
 Share

  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.