Malwarebytes intercepting svchost.exe pings

[biffgnar]

DLL deleted.

Ran TDSSkiller again. My options for the suspicious objects are Skip, Copy to Quarantine or Delete. Am I Deleting?

[LDTate]

On the safe side, lets Quarantine

[biffgnar]

OK, here are the TDSSKiller and aswMBR logs. Looks like one file still showing up in aswMBR log as infected. Only option it gives me is "FixMBR". Waiting for your advice to hit that. Or maybe at this point we've drilled through enough noise that we go back to something simple like running an updated MBAM. Will do whatever you recommend. By the way, haven't seen MBAM intercept messages at all in the last 24 hours.

TDSSKiller:

06:53:35.0566 5452 TDSS rootkit removing tool 2.6.25.0 Dec 23 2011 14:51:16

06:53:35.0878 5452 ============================================================

06:53:35.0878 5452 Current date / time: 2012/01/09 06:53:35.0878

06:53:35.0878 5452 SystemInfo:

06:53:35.0878 5452

06:53:35.0878 5452 OS Version: 6.0.6002 ServicePack: 2.0

06:53:35.0878 5452 Product type: Workstation

06:53:35.0878 5452 ComputerName: ALIENWARE

06:53:35.0878 5452 UserName: Eric

06:53:35.0878 5452 Windows directory: C:\Windows

06:53:35.0878 5452 System windows directory: C:\Windows

06:53:35.0878 5452 Processor architecture: Intel x86

06:53:35.0878 5452 Number of processors: 2

06:53:35.0878 5452 Page size: 0x1000

06:53:35.0878 5452 Boot type: Normal boot

06:53:35.0878 5452 ============================================================

06:53:38.0816 5452 Initialize success

06:53:41.0316 4108 ============================================================

06:53:41.0316 4108 Scan started

06:53:41.0316 4108 Mode: Manual;

06:53:41.0316 4108 ============================================================

06:53:43.0005 4108 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys

06:53:43.0005 4108 ACPI - ok

06:53:43.0083 4108 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys

06:53:43.0099 4108 adp94xx - ok

06:53:43.0115 4108 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys

06:53:43.0130 4108 adpahci - ok

06:53:43.0146 4108 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys

06:53:43.0146 4108 adpu160m - ok

06:53:43.0177 4108 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys

06:53:43.0177 4108 adpu320 - ok

06:53:43.0302 4108 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys

06:53:43.0302 4108 AFD - ok

06:53:43.0474 4108 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys

06:53:43.0505 4108 AgereSoftModem - ok

06:53:43.0552 4108 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys

06:53:43.0552 4108 agp440 - ok

06:53:43.0615 4108 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

06:53:43.0615 4108 aic78xx - ok

06:53:43.0694 4108 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys

06:53:43.0694 4108 aliide - ok

06:53:43.0709 4108 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys

06:53:43.0709 4108 amdagp - ok

06:53:43.0741 4108 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys

06:53:43.0741 4108 amdide - ok

06:53:43.0787 4108 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys

06:53:43.0787 4108 AmdK7 - ok

06:53:43.0803 4108 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys

06:53:43.0803 4108 AmdK8 - ok

06:53:43.0912 4108 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys

06:53:43.0928 4108 arc - ok

06:53:44.0006 4108 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys

06:53:44.0022 4108 arcsas - ok

06:53:44.0053 4108 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

06:53:44.0053 4108 AsyncMac - ok

06:53:44.0100 4108 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys

06:53:44.0100 4108 atapi - ok

06:53:44.0178 4108 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

06:53:44.0178 4108 Beep - ok

06:53:44.0334 4108 BHDrvx86 (76154fa6a742c613b44bb636b1a7c057) C:\Windows\System32\Drivers\N360\0308030.006\BHDrvx86.sys

06:53:44.0334 4108 BHDrvx86 - ok

06:53:44.0412 4108 blbdrive - ok

06:53:44.0459 4108 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys

06:53:44.0475 4108 bowser - ok

06:53:44.0522 4108 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

06:53:44.0537 4108 BrFiltLo - ok

06:53:44.0553 4108 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

06:53:44.0553 4108 BrFiltUp - ok

06:53:44.0631 4108 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

06:53:44.0631 4108 Brserid - ok

06:53:44.0648 4108 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

06:53:44.0680 4108 BrSerWdm - ok

06:53:44.0711 4108 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

06:53:44.0711 4108 BrUsbMdm - ok

06:53:44.0758 4108 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

06:53:44.0758 4108 BrUsbSer - ok

06:53:44.0789 4108 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys

06:53:44.0789 4108 BthEnum - ok

06:53:44.0852 4108 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

06:53:44.0852 4108 BTHMODEM - ok

06:53:44.0914 4108 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys

06:53:44.0914 4108 BthPan - ok

06:53:44.0993 4108 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys

06:53:44.0993 4108 BTHPORT - ok

06:53:45.0024 4108 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys

06:53:45.0024 4108 BTHUSB - ok

06:53:45.0086 4108 btwaudio (c879f83c1f1fc1f8c7d568cb56cfc3ab) C:\Windows\system32\drivers\btwaudio.sys

06:53:45.0086 4108 btwaudio - ok

06:53:45.0133 4108 btwavdt (032d5459bb8af9266ce95b18f9cd59b2) C:\Windows\system32\drivers\btwavdt.sys

06:53:45.0133 4108 btwavdt - ok

06:53:45.0227 4108 btwrchid (0f3408c5934752db8316df09fccd7b33) C:\Windows\system32\DRIVERS\btwrchid.sys

06:53:45.0243 4108 btwrchid - ok

06:53:45.0383 4108 Cam5603D (232d5686aa08e8acd3c3203c86559ace) C:\Windows\system32\Drivers\BisonCam.sys

06:53:45.0414 4108 Cam5603D - ok

06:53:45.0539 4108 catchme - ok

06:53:45.0760 4108 ccHP (3182b846490dc4d71fabd4a8cb6b73ea) C:\Windows\System32\Drivers\N360\0308030.006\ccHPx86.sys

06:53:45.0760 4108 ccHP - ok

06:53:45.0823 4108 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

06:53:45.0823 4108 cdfs - ok

06:53:46.0010 4108 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys

06:53:46.0010 4108 cdrom - ok

06:53:46.0088 4108 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys

06:53:46.0088 4108 circlass - ok

06:53:46.0135 4108 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys

06:53:46.0151 4108 CLFS - ok

06:53:46.0229 4108 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys

06:53:46.0229 4108 CmBatt - ok

06:53:46.0276 4108 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys

06:53:46.0276 4108 cmdide - ok

06:53:46.0323 4108 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys

06:53:46.0323 4108 Compbatt - ok

06:53:46.0338 4108 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys

06:53:46.0338 4108 crcdisk - ok

06:53:46.0370 4108 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys

06:53:46.0370 4108 Crusoe - ok

06:53:46.0448 4108 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys

06:53:46.0448 4108 DfsC - ok

06:53:46.0682 4108 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys

06:53:46.0715 4108 disk - ok

06:53:46.0793 4108 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

06:53:46.0793 4108 drmkaud - ok

06:53:46.0903 4108 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys

06:53:46.0934 4108 DXGKrnl - ok

06:53:47.0059 4108 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys

06:53:47.0075 4108 E1G60 - ok

06:53:47.0153 4108 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys

06:53:47.0168 4108 Ecache - ok

06:53:47.0278 4108 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys

06:53:47.0293 4108 eeCtrl - ok

06:53:47.0559 4108 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys

06:53:47.0621 4108 elxstor - ok

06:53:47.0842 4108 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

06:53:47.0858 4108 EraserUtilRebootDrv - ok

06:53:48.0295 4108 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys

06:53:48.0327 4108 exfat - ok

06:53:48.0686 4108 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys

06:53:48.0717 4108 fastfat - ok

06:53:48.0984 4108 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys

06:53:48.0999 4108 fdc - ok

06:53:49.0156 4108 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

06:53:49.0156 4108 FileInfo - ok

06:53:49.0203 4108 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

06:53:49.0203 4108 Filetrace - ok

06:53:49.0234 4108 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys

06:53:49.0234 4108 flpydisk - ok

06:53:49.0265 4108 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys

06:53:49.0265 4108 FltMgr - ok

06:53:49.0343 4108 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

06:53:49.0359 4108 Fs_Rec - ok

06:53:49.0406 4108 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys

06:53:49.0406 4108 gagp30kx - ok

06:53:49.0453 4108 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

06:53:49.0453 4108 GEARAspiWDM - ok

06:53:49.0531 4108 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

06:53:49.0531 4108 HdAudAddService - ok

06:53:49.0624 4108 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys

06:53:49.0640 4108 HDAudBus - ok

06:53:49.0671 4108 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

06:53:49.0671 4108 HidBth - ok

06:53:49.0703 4108 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

06:53:49.0703 4108 HidIr - ok

06:53:49.0782 4108 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys

06:53:49.0782 4108 HidUsb - ok

06:53:49.0828 4108 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys

06:53:49.0844 4108 HpCISSs - ok

06:53:49.0875 4108 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys

06:53:49.0891 4108 HTTP - ok

06:53:49.0907 4108 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys

06:53:49.0922 4108 i2omp - ok

06:53:49.0969 4108 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys

06:53:49.0969 4108 i8042prt - ok

06:53:50.0000 4108 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys

06:53:50.0016 4108 iaStorV - ok

06:53:50.0313 4108 IDSVix86 (9bc8840de4140e8e2a6fc3192e054a8c) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20120106.002\IDSvix86.sys

06:53:50.0344 4108 IDSVix86 - ok

06:53:50.0453 4108 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

06:53:50.0469 4108 iirsp - ok

06:53:50.0578 4108 IntcAzAudAddService (f92f433a1b38041b365bfd4b021e42d2) C:\Windows\system32\drivers\RTKVHDA.sys

06:53:50.0625 4108 IntcAzAudAddService - ok

06:53:50.0814 4108 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys

06:53:50.0814 4108 intelide - ok

06:53:50.0861 4108 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys

06:53:50.0861 4108 intelppm - ok

06:53:50.0923 4108 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

06:53:50.0923 4108 IpFilterDriver - ok

06:53:50.0939 4108 IpInIp - ok

06:53:50.0970 4108 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys

06:53:50.0986 4108 IPMIDRV - ok

06:53:51.0048 4108 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

06:53:51.0064 4108 IPNAT - ok

06:53:51.0111 4108 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

06:53:51.0111 4108 IRENUM - ok

06:53:51.0158 4108 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys

06:53:51.0158 4108 isapnp - ok

06:53:51.0220 4108 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys

06:53:51.0236 4108 iScsiPrt - ok

06:53:51.0267 4108 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

06:53:51.0267 4108 iteatapi - ok

06:53:51.0298 4108 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

06:53:51.0298 4108 iteraid - ok

06:53:51.0329 4108 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

06:53:51.0345 4108 kbdclass - ok

06:53:51.0361 4108 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys

06:53:51.0361 4108 kbdhid - ok

06:53:51.0439 4108 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys

06:53:51.0454 4108 KSecDD - ok

06:53:51.0486 4108 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

06:53:51.0486 4108 lltdio - ok

06:53:51.0548 4108 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys

06:53:51.0564 4108 LSI_FC - ok

06:53:51.0626 4108 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys

06:53:51.0642 4108 LSI_SAS - ok

06:53:51.0673 4108 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys

06:53:51.0673 4108 LSI_SCSI - ok

06:53:51.0720 4108 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

06:53:51.0720 4108 luafv - ok

06:53:51.0767 4108 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys

06:53:51.0783 4108 MBAMProtector - ok

06:53:51.0863 4108 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys

06:53:51.0863 4108 megasas - ok

06:53:51.0894 4108 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

06:53:51.0910 4108 Modem - ok

06:53:51.0941 4108 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

06:53:51.0941 4108 monitor - ok

06:53:52.0003 4108 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

06:53:52.0003 4108 mouclass - ok

06:53:52.0050 4108 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys

06:53:52.0050 4108 mouhid - ok

06:53:52.0097 4108 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

06:53:52.0097 4108 MountMgr - ok

06:53:52.0128 4108 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys

06:53:52.0128 4108 mpio - ok

06:53:52.0191 4108 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

06:53:52.0191 4108 mpsdrv - ok

06:53:52.0222 4108 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

06:53:52.0222 4108 Mraid35x - ok

06:53:52.0253 4108 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys

06:53:52.0269 4108 MRxDAV - ok

06:53:52.0316 4108 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys

06:53:52.0316 4108 mrxsmb - ok

06:53:52.0347 4108 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys

06:53:52.0363 4108 mrxsmb10 - ok

06:53:52.0394 4108 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

06:53:52.0394 4108 mrxsmb20 - ok

06:53:52.0425 4108 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys

06:53:52.0425 4108 msahci - ok

06:53:52.0472 4108 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys

06:53:52.0472 4108 msdsm - ok

06:53:52.0535 4108 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

06:53:52.0535 4108 Msfs - ok

06:53:52.0613 4108 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys

06:53:52.0613 4108 msisadrv - ok

06:53:52.0675 4108 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

06:53:52.0675 4108 MSKSSRV - ok

06:53:52.0691 4108 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

06:53:52.0691 4108 MSPCLOCK - ok

06:53:52.0738 4108 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

06:53:52.0738 4108 MSPQM - ok

06:53:52.0769 4108 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys

06:53:52.0785 4108 MsRPC - ok

06:53:52.0833 4108 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys

06:53:52.0849 4108 mssmbios - ok

06:53:52.0896 4108 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

06:53:52.0896 4108 MSTEE - ok

06:53:52.0943 4108 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys

06:53:52.0943 4108 Mup - ok

06:53:53.0021 4108 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys

06:53:53.0021 4108 NativeWifiP - ok

06:53:53.0224 4108 NAVENG (862f55824ac81295837b0ab63f91071f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20120108.006\NAVENG.SYS

06:53:53.0240 4108 NAVENG - ok

06:53:53.0901 4108 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20120108.006\NAVEX15.SYS

06:53:53.0963 4108 NAVEX15 - ok

06:53:54.0338 4108 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys

06:53:54.0354 4108 NDIS - ok

06:53:54.0432 4108 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

06:53:54.0448 4108 NdisTapi - ok

06:53:54.0495 4108 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

06:53:54.0495 4108 Ndisuio - ok

06:53:54.0635 4108 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys

06:53:54.0651 4108 NdisWan - ok

06:53:54.0698 4108 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

06:53:54.0698 4108 NDProxy - ok

06:53:54.0729 4108 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

06:53:54.0729 4108 NetBIOS - ok

06:53:54.0791 4108 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys

06:53:54.0838 4108 netbt - ok

06:53:55.0151 4108 NETw3v32 (acc6170d80c69e50145b370023b64ed3) C:\Windows\system32\DRIVERS\NETw3v32.sys

06:53:55.0198 4108 NETw3v32 - ok

06:53:55.0291 4108 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

06:53:55.0291 4108 nfrd960 - ok

06:53:55.0338 4108 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys

06:53:55.0370 4108 Npfs - ok

06:53:55.0432 4108 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

06:53:55.0448 4108 nsiproxy - ok

06:53:55.0526 4108 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys

06:53:55.0557 4108 Ntfs - ok

06:53:55.0604 4108 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

06:53:55.0604 4108 ntrigdigi - ok

06:53:55.0635 4108 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

06:53:55.0635 4108 Null - ok

06:53:55.0995 4108 nvlddmkm (8ead4e71cf31962b124cdace9c29c714) C:\Windows\system32\DRIVERS\nvlddmkm.sys

06:53:56.0370 4108 nvlddmkm - ok

06:53:56.0729 4108 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys

06:53:56.0729 4108 nvraid - ok

06:53:56.0823 4108 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys

06:53:56.0823 4108 nvstor - ok

06:53:56.0885 4108 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys

06:53:56.0901 4108 nv_agp - ok

06:53:56.0932 4108 NwlnkFlt - ok

06:53:56.0932 4108 NwlnkFwd - ok

06:53:56.0995 4108 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys

06:53:57.0010 4108 ohci1394 - ok

06:53:57.0041 4108 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys

06:53:57.0057 4108 Parport - ok

06:53:57.0088 4108 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys

06:53:57.0088 4108 partmgr - ok

06:53:57.0104 4108 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys

06:53:57.0104 4108 Parvdm - ok

06:53:57.0198 4108 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys

06:53:57.0229 4108 pci - ok

06:53:57.0245 4108 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys

06:53:57.0245 4108 pciide - ok

06:53:57.0276 4108 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys

06:53:57.0291 4108 pcmcia - ok

06:53:57.0354 4108 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

06:53:57.0385 4108 PEAUTH - ok

06:53:57.0448 4108 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

06:53:57.0448 4108 PptpMiniport - ok

06:53:57.0510 4108 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys

06:53:57.0510 4108 Processor - ok

06:53:57.0510 4108 PROCEXP151 - ok

06:53:57.0588 4108 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys

06:53:57.0588 4108 PSched - ok

06:53:57.0698 4108 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys

06:53:57.0729 4108 ql2300 - ok

06:53:57.0776 4108 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

06:53:57.0776 4108 ql40xx - ok

06:53:57.0823 4108 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

06:53:57.0838 4108 QWAVEdrv - ok

06:53:58.0120 4108 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys

06:53:58.0182 4108 R300 - ok

06:53:58.0229 4108 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

06:53:58.0229 4108 RasAcd - ok

06:53:58.0432 4108 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

06:53:58.0432 4108 Rasl2tp - ok

06:53:58.0495 4108 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys

06:53:58.0495 4108 RasPppoe - ok

06:53:58.0526 4108 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys

06:53:58.0541 4108 RasSstp - ok

06:53:58.0588 4108 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys

06:53:58.0588 4108 rdbss - ok

06:53:58.0635 4108 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

06:53:58.0635 4108 RDPCDD - ok

06:53:58.0682 4108 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys

06:53:58.0713 4108 rdpdr - ok

06:53:58.0760 4108 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

06:53:58.0760 4108 RDPENCDD - ok

06:53:58.0791 4108 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys

06:53:58.0791 4108 RDPWD - ok

06:53:58.0916 4108 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys

06:53:58.0916 4108 RFCOMM - ok

06:53:58.0979 4108 rimmptsk (b39f1bd472e4992382875baf0b645c6d) C:\Windows\system32\DRIVERS\rimmptsk.sys

06:53:58.0979 4108 rimmptsk - ok

06:53:58.0995 4108 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys

06:53:58.0995 4108 rimsptsk - ok

06:53:59.0041 4108 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

06:53:59.0041 4108 rspndr - ok

06:53:59.0120 4108 RTL8169 (283392af1860ecdb5e0f8ebd7f3d72df) C:\Windows\system32\DRIVERS\Rtlh86.sys

06:53:59.0120 4108 RTL8169 - ok

06:53:59.0198 4108 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS

06:53:59.0198 4108 SASDIFSV - ok

06:53:59.0229 4108 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS

06:53:59.0229 4108 SASKUTIL - ok

06:53:59.0338 4108 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

06:53:59.0354 4108 sbp2port - ok

06:53:59.0416 4108 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys

06:53:59.0416 4108 sdbus - ok

06:53:59.0432 4108 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

06:53:59.0432 4108 secdrv - ok

06:53:59.0463 4108 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys

06:53:59.0463 4108 Serenum - ok

06:53:59.0495 4108 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys

06:53:59.0495 4108 Serial - ok

06:53:59.0541 4108 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

06:53:59.0557 4108 sermouse - ok

06:53:59.0604 4108 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys

06:53:59.0604 4108 sffdisk - ok

06:53:59.0651 4108 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys

06:53:59.0666 4108 sffp_mmc - ok

06:53:59.0823 4108 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys

06:53:59.0885 4108 sffp_sd - ok

06:53:59.0932 4108 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

06:53:59.0932 4108 sfloppy - ok

06:53:59.0948 4108 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys

06:53:59.0963 4108 sisagp - ok

06:53:59.0979 4108 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys

06:53:59.0979 4108 SiSRaid2 - ok

06:54:00.0073 4108 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys

06:54:00.0073 4108 SiSRaid4 - ok

06:54:00.0166 4108 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys

06:54:00.0198 4108 Smb - ok

06:54:00.0526 4108 smserial (c8a58fc905c9184fa70e37f71060c64d) C:\Windows\system32\DRIVERS\smserial.sys

06:54:00.0588 4108 smserial - ok

06:54:00.0885 4108 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

06:54:00.0885 4108 spldr - ok

06:54:01.0245 4108 SRTSP (e81f6caeab9ad5732e94c07c97866aa2) C:\Windows\System32\Drivers\N360\0308030.006\SRTSP.SYS

06:54:01.0276 4108 SRTSP - ok

06:54:01.0635 4108 SRTSPX (e28de499d942b08058bffac69d4122b6) C:\Windows\system32\drivers\N360\0308030.006\SRTSPX.SYS

06:54:01.0651 4108 SRTSPX - ok

06:54:01.0745 4108 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys

06:54:01.0745 4108 srv - ok

06:54:01.0791 4108 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys

06:54:01.0807 4108 srv2 - ok

06:54:01.0823 4108 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys

06:54:01.0823 4108 srvnet - ok

06:54:01.0901 4108 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys

06:54:01.0916 4108 swenum - ok

06:54:02.0041 4108 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

06:54:02.0088 4108 Symc8xx - ok

06:54:02.0760 4108 SymEFA (d0885f6e24259a6c65e68d6ad749910a) C:\Windows\system32\drivers\N360\0308030.006\SYMEFA.SYS

06:54:02.0776 4108 SymEFA - ok

06:54:03.0463 4108 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\Windows\system32\Drivers\SYMEVENT.SYS

06:54:03.0495 4108 SymEvent - ok

06:54:04.0182 4108 SYMFW (a8c45c36309ee066f9191e511f88ed76) C:\Windows\System32\Drivers\N360\0308030.006\SYMFW.SYS

06:54:04.0245 4108 SYMFW - ok

06:54:04.0401 4108 SymIM (34f1c9d5dcc19df1e824d6b73767b8af) C:\Windows\system32\DRIVERS\SymIMv.sys

06:54:04.0432 4108 SymIM - ok

06:54:04.0760 4108 SYMNDISV (d8b16289f39b63456f48ea95243a788a) C:\Windows\System32\Drivers\N360\0308030.006\SYMNDISV.SYS

06:54:04.0760 4108 SYMNDISV - ok

06:54:05.0058 4108 SYMTDI (26bc80ec79d7ba478249c266cbdf17b4) C:\Windows\System32\Drivers\N360\0308030.006\SYMTDI.SYS

06:54:05.0058 4108 SYMTDI - ok

06:54:05.0245 4108 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

06:54:05.0261 4108 Sym_hi - ok

06:54:05.0292 4108 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

06:54:05.0292 4108 Sym_u3 - ok

06:54:05.0386 4108 SynTP (1f452f22df0c00dd2529867e1ea0dc25) C:\Windows\system32\DRIVERS\SynTP.sys

06:54:05.0402 4108 SynTP - ok

06:54:05.0574 4108 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys

06:54:05.0605 4108 Tcpip - ok

06:54:05.0730 4108 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys

06:54:05.0745 4108 Tcpip6 - ok

06:54:05.0870 4108 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys

06:54:05.0870 4108 tcpipreg - ok

06:54:05.0933 4108 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

06:54:05.0933 4108 TDPIPE - ok

06:54:05.0964 4108 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

06:54:05.0964 4108 TDTCP - ok

06:54:06.0011 4108 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys

06:54:06.0011 4108 tdx - ok

06:54:06.0058 4108 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys

06:54:06.0074 4108 TermDD - ok

06:54:06.0136 4108 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

06:54:06.0136 4108 tssecsrv - ok

06:54:06.0199 4108 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

06:54:06.0199 4108 tunmp - ok

06:54:06.0245 4108 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys

06:54:06.0245 4108 tunnel - ok

06:54:06.0277 4108 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys

06:54:06.0277 4108 uagp35 - ok

06:54:06.0308 4108 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys

06:54:06.0308 4108 udfs - ok

06:54:06.0355 4108 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys

06:54:06.0370 4108 uliagpkx - ok

06:54:06.0417 4108 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys

06:54:06.0417 4108 uliahci - ok

06:54:06.0464 4108 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

06:54:06.0480 4108 UlSata - ok

06:54:06.0542 4108 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

06:54:06.0558 4108 ulsata2 - ok

06:54:06.0605 4108 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

06:54:06.0605 4108 umbus - ok

06:54:06.0667 4108 USBAAPL (5c2bdc152bbab34f36473deaf7713f22) C:\Windows\system32\Drivers\usbaapl.sys

06:54:06.0667 4108 USBAAPL - ok

06:54:06.0730 4108 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

06:54:06.0730 4108 usbccgp - ok

06:54:06.0777 4108 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

06:54:06.0777 4108 usbcir - ok

06:54:06.0839 4108 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys

06:54:06.0839 4108 usbehci - ok

06:54:06.0918 4108 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys

06:54:06.0950 4108 usbhub - ok

06:54:06.0965 4108 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys

06:54:06.0981 4108 usbohci - ok

06:54:06.0996 4108 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys

06:54:07.0012 4108 usbprint - ok

06:54:07.0059 4108 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys

06:54:07.0059 4108 usbscan - ok

06:54:07.0137 4108 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS

06:54:07.0137 4108 USBSTOR - ok

06:54:07.0184 4108 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys

06:54:07.0200 4108 usbuhci - ok

06:54:07.0246 4108 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys

06:54:07.0246 4108 vga - ok

06:54:07.0278 4108 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

06:54:07.0293 4108 VgaSave - ok

06:54:07.0325 4108 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys

06:54:07.0325 4108 viaagp - ok

06:54:07.0356 4108 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys

06:54:07.0356 4108 ViaC7 - ok

06:54:07.0403 4108 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys

06:54:07.0403 4108 viaide - ok

06:54:07.0450 4108 viamraid (25700f5d901d8a8f4c7e851788a2707d) C:\Windows\system32\drivers\viamraid.sys

06:54:07.0450 4108 viamraid - ok

06:54:07.0512 4108 VirtualCamX86 (316397f47355e19075f3bacb11067e7c) C:\Windows\system32\DRIVERS\Ddpcvcam.sys

06:54:07.0512 4108 VirtualCamX86 - ok

06:54:07.0543 4108 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys

06:54:07.0559 4108 volmgr - ok

06:54:07.0621 4108 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys

06:54:07.0637 4108 volmgrx - ok

06:54:07.0684 4108 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys

06:54:07.0700 4108 volsnap - ok

06:54:07.0762 4108 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys

06:54:07.0778 4108 vsmraid - ok

06:54:07.0825 4108 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

06:54:07.0825 4108 WacomPen - ok

06:54:07.0903 4108 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

06:54:07.0903 4108 Wanarp - ok

06:54:07.0903 4108 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

06:54:07.0903 4108 Wanarpv6 - ok

06:54:07.0950 4108 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys

06:54:07.0950 4108 Wd - ok

06:54:08.0059 4108 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys

06:54:08.0121 4108 Wdf01000 - ok

06:54:08.0559 4108 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys

06:54:08.0575 4108 WimFltr - ok

06:54:08.0793 4108 WinDriver6 (097a8291df541f9b9af2c500797cdcaa) C:\Windows\system32\drivers\windrvr6.sys

06:54:08.0793 4108 WinDriver6 - ok

06:54:08.0996 4108 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\DRIVERS\wmiacpi.sys

06:54:09.0012 4108 WmiAcpi - ok

06:54:09.0246 4108 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys

06:54:09.0278 4108 WpdUsb - ok

06:54:09.0325 4108 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

06:54:09.0325 4108 ws2ifsl - ok

06:54:09.0403 4108 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

06:54:09.0418 4108 WUDFRd - ok

06:54:09.0621 4108 yukonwlh (a4822191c7cea271903c2a4fb6d9809d) C:\Windows\system32\DRIVERS\yk60x86.sys

06:54:09.0653 4108 yukonwlh - ok

06:54:09.0684 4108 MBR (0x1B8) (048134312428ad1a401581be277e58b7) \Device\Harddisk0\DR0

06:54:11.0715 4108 \Device\Harddisk0\DR0 - ok

06:54:11.0746 4108 Boot (0x1200) (c503a68adbfd6b4c9c511e45eee1230d) \Device\Harddisk0\DR0\Partition0

06:54:11.0746 4108 \Device\Harddisk0\DR0\Partition0 - ok

06:54:11.0746 4108 ============================================================

06:54:11.0746 4108 Scan finished

06:54:11.0746 4108 ============================================================

06:54:11.0746 1048 Detected object count: 0

06:54:11.0746 1048 Actual detected object count: 0

06:54:31.0717 6076 ============================================================

06:54:31.0717 6076 Scan started

06:54:31.0717 6076 Mode: Manual; SigCheck; TDLFS;

06:54:31.0717 6076 ============================================================

06:54:32.0639 6076 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys

06:54:32.0858 6076 ACPI - ok

06:54:33.0030 6076 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys

06:54:33.0108 6076 adp94xx - ok

06:54:33.0498 6076 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys

06:54:33.0592 6076 adpahci - ok

06:54:33.0748 6076 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys

06:54:33.0795 6076 adpu160m - ok

06:54:33.0827 6076 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys

06:54:33.0967 6076 adpu320 - ok

06:54:34.0233 6076 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys

06:54:34.0342 6076 AFD - ok

06:54:35.0014 6076 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys

06:54:35.0358 6076 AgereSoftModem - ok

06:54:35.0530 6076 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys

06:54:35.0873 6076 agp440 - ok

06:54:35.0983 6076 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

06:54:36.0030 6076 aic78xx - ok

06:54:36.0123 6076 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys

06:54:36.0155 6076 aliide - ok

06:54:36.0202 6076 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys

06:54:36.0327 6076 amdagp - ok

06:54:36.0436 6076 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys

06:54:36.0577 6076 amdide - ok

06:54:36.0780 6076 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys

06:54:37.0123 6076 AmdK7 - ok

06:54:37.0311 6076 AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys

06:54:37.0577 6076 AmdK8 - ok

06:54:37.0670 6076 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys

06:54:37.0811 6076 arc - ok

06:54:37.0920 6076 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys

06:54:38.0202 6076 arcsas - ok

06:54:38.0295 6076 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

06:54:38.0514 6076 AsyncMac - ok

06:54:38.0639 6076 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys

06:54:38.0811 6076 atapi - ok

06:54:38.0905 6076 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

06:54:39.0123 6076 Beep - ok

06:54:39.0280 6076 BHDrvx86 (76154fa6a742c613b44bb636b1a7c057) C:\Windows\System32\Drivers\N360\0308030.006\BHDrvx86.sys

06:54:39.0436 6076 BHDrvx86 - ok

06:54:39.0545 6076 blbdrive - ok

06:54:39.0592 6076 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys

06:54:39.0733 6076 bowser - ok

06:54:39.0827 6076 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

06:54:39.0998 6076 BrFiltLo - ok

06:54:40.0139 6076 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

06:54:40.0436 6076 BrFiltUp - ok

06:54:40.0561 6076 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

06:54:40.0967 6076 Brserid - ok

06:54:41.0123 6076 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

06:54:41.0248 6076 BrSerWdm - ok

06:54:41.0373 6076 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

06:54:41.0452 6076 BrUsbMdm - ok

06:54:41.0639 6076 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

06:54:41.0733 6076 BrUsbSer - ok

06:54:41.0936 6076 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys

06:54:42.0030 6076 BthEnum - ok

06:54:42.0186 6076 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

06:54:42.0248 6076 BTHMODEM - ok

06:54:42.0342 6076 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys

06:54:42.0436 6076 BthPan - ok

06:54:42.0608 6076 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys

06:54:42.0686 6076 BTHPORT - ok

06:54:42.0780 6076 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys

06:54:42.0873 6076 BTHUSB - ok

06:54:42.0999 6076 btwaudio (c879f83c1f1fc1f8c7d568cb56cfc3ab) C:\Windows\system32\drivers\btwaudio.sys

06:54:43.0078 6076 btwaudio - ok

06:54:43.0187 6076 btwavdt (032d5459bb8af9266ce95b18f9cd59b2) C:\Windows\system32\drivers\btwavdt.sys

06:54:43.0218 6076 btwavdt - ok

06:54:43.0265 6076 btwrchid (0f3408c5934752db8316df09fccd7b33) C:\Windows\system32\DRIVERS\btwrchid.sys

06:54:43.0312 6076 btwrchid - ok

06:54:43.0515 6076 Cam5603D (232d5686aa08e8acd3c3203c86559ace) C:\Windows\system32\Drivers\BisonCam.sys

06:54:43.0609 6076 Cam5603D - ok

06:54:43.0703 6076 catchme - ok

06:54:43.0953 6076 ccHP (3182b846490dc4d71fabd4a8cb6b73ea) C:\Windows\System32\Drivers\N360\0308030.006\ccHPx86.sys

06:54:44.0046 6076 ccHP - ok

06:54:44.0218 6076 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

06:54:44.0281 6076 cdfs - ok

06:54:44.0343 6076 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys

06:54:44.0468 6076 cdrom - ok

06:54:44.0656 6076 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys

06:54:44.0749 6076 circlass - ok

06:54:44.0796 6076 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys

06:54:44.0843 6076 CLFS - ok

06:54:44.0921 6076 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys

06:54:45.0015 6076 CmBatt - ok

06:54:45.0187 6076 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys

06:54:45.0203 6076 cmdide - ok

06:54:45.0249 6076 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys

06:54:45.0296 6076 Compbatt - ok

06:54:45.0328 6076 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys

06:54:45.0359 6076 crcdisk - ok

06:54:45.0390 6076 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys

06:54:45.0468 6076 Crusoe - ok

06:54:45.0640 6076 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys

06:54:45.0734 6076 DfsC - ok

06:54:45.0921 6076 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys

06:54:45.0953 6076 disk - ok

06:54:45.0999 6076 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

06:54:46.0093 6076 drmkaud - ok

06:54:46.0249 6076 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys

06:54:46.0343 6076 DXGKrnl - ok

06:54:46.0468 6076 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys

06:54:46.0546 6076 E1G60 - ok

06:54:46.0703 6076 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys

06:54:46.0749 6076 Ecache - ok

06:54:46.0874 6076 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys

06:54:46.0954 6076 eeCtrl - ok

06:54:47.0114 6076 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys

06:54:47.0145 6076 elxstor - ok

06:54:47.0239 6076 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys

06:54:47.0254 6076 EraserUtilRebootDrv - ok

06:54:47.0457 6076 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys

06:54:47.0598 6076 exfat - ok

06:54:47.0801 6076 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys

06:54:47.0957 6076 fastfat - ok

06:54:48.0146 6076 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys

06:54:48.0224 6076 fdc - ok

06:54:48.0365 6076 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

06:54:48.0380 6076 FileInfo - ok

06:54:48.0427 6076 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

06:54:48.0521 6076 Filetrace - ok

06:54:48.0724 6076 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys

06:54:48.0802 6076 flpydisk - ok

06:54:48.0880 6076 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys

06:54:48.0927 6076 FltMgr - ok

06:54:49.0021 6076 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

06:54:49.0083 6076 Fs_Rec - ok

06:54:49.0193 6076 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys

06:54:49.0255 6076 gagp30kx - ok

06:54:49.0318 6076 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

06:54:49.0365 6076 GEARAspiWDM - ok

06:54:49.0380 6076 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

06:54:49.0474 6076 HdAudAddService - ok

06:54:49.0568 6076 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys

06:54:49.0646 6076 HDAudBus - ok

06:54:49.0693 6076 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

06:54:49.0786 6076 HidBth - ok

06:54:49.0943 6076 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

06:54:50.0021 6076 HidIr - ok

06:54:50.0333 6076 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys

06:54:50.0411 6076 HidUsb - ok

06:54:50.0599 6076 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys

06:54:50.0646 6076 HpCISSs - ok

06:54:50.0693 6076 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys

06:54:50.0755 6076 HTTP - ok

06:54:50.0786 6076 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys

06:54:50.0927 6076 i2omp - ok

06:54:51.0178 6076 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys

06:54:51.0319 6076 i8042prt - ok

06:54:51.0694 6076 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys

06:54:51.0772 6076 iaStorV - ok

06:54:52.0367 6076 IDSVix86 (9bc8840de4140e8e2a6fc3192e054a8c) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\ipsdefs\20120106.002\IDSvix86.sys

06:54:52.0429 6076 IDSVix86 - ok

06:54:52.0663 6076 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

06:54:52.0742 6076 iirsp - ok

06:54:53.0633 6076 IntcAzAudAddService (f92f433a1b38041b365bfd4b021e42d2) C:\Windows\system32\drivers\RTKVHDA.sys

06:54:53.0711 6076 IntcAzAudAddService - ok

06:54:53.0883 6076 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys

06:54:53.0930 6076 intelide - ok

06:54:54.0087 6076 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys

06:54:54.0197 6076 intelppm - ok

06:54:54.0369 6076 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

06:54:54.0462 6076 IpFilterDriver - ok

06:54:54.0525 6076 IpInIp - ok

06:54:54.0572 6076 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys

06:54:54.0650 6076 IPMIDRV - ok

06:54:54.0759 6076 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

06:54:54.0806 6076 IPNAT - ok

06:54:54.0869 6076 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

06:54:54.0962 6076 IRENUM - ok

06:54:55.0072 6076 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys

06:54:55.0103 6076 isapnp - ok

06:54:55.0181 6076 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys

06:54:55.0212 6076 iScsiPrt - ok

06:54:55.0275 6076 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

06:54:55.0306 6076 iteatapi - ok

06:54:55.0337 6076 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

06:54:55.0369 6076 iteraid - ok

06:54:55.0415 6076 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

06:54:55.0447 6076 kbdclass - ok

06:54:55.0494 6076 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys

06:54:55.0572 6076 kbdhid - ok

06:54:55.0665 6076 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys

06:54:55.0728 6076 KSecDD - ok

06:54:55.0931 6076 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

06:54:56.0009 6076 lltdio - ok

06:54:56.0181 6076 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys

06:54:56.0212 6076 LSI_FC - ok

06:54:56.0244 6076 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys

06:54:56.0447 6076 LSI_SAS - ok

06:54:56.0806 6076 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys

06:54:56.0853 6076 LSI_SCSI - ok

06:54:56.0915 6076 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

06:54:56.0962 6076 luafv - ok

06:54:57.0040 6076 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys

06:54:57.0087 6076 MBAMProtector - ok

06:54:57.0150 6076 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys

06:54:57.0197 6076 megasas - ok

06:54:57.0462 6076 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

06:54:57.0540 6076 Modem - ok

06:54:57.0619 6076 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

06:54:57.0697 6076 monitor - ok

06:54:57.0869 6076 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

06:54:57.0900 6076 mouclass - ok

06:54:57.0962 6076 mouhid (a3a6dff7e9e757db3df51a833bc28885) C:\Windows\system32\drivers\mouhid.sys

06:54:58.0072 6076 mouhid - ok

06:54:58.0463 6076 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

06:54:58.0510 6076 MountMgr - ok

06:54:58.0557 6076 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys

06:54:58.0588 6076 mpio - ok

06:54:58.0698 6076 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

06:54:58.0760 6076 mpsdrv - ok

06:54:58.0823 6076 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

06:54:58.0854 6076 Mraid35x - ok

06:54:58.0901 6076 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys

06:54:58.0979 6076 MRxDAV - ok

06:54:59.0152 6076 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys

06:54:59.0214 6076 mrxsmb - ok

06:54:59.0292 6076 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys

06:54:59.0324 6076 mrxsmb10 - ok

06:54:59.0370 6076 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

06:54:59.0417 6076 mrxsmb20 - ok

06:54:59.0542 6076 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys

06:54:59.0574 6076 msahci - ok

06:54:59.0652 6076 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys

06:54:59.0683 6076 msdsm - ok

06:54:59.0730 6076 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

06:54:59.0792 6076 Msfs - ok

06:54:59.0855 6076 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys

06:54:59.0886 6076 msisadrv - ok

06:54:59.0917 6076 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

06:54:59.0964 6076 MSKSSRV - ok

06:55:00.0027 6076 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

06:55:00.0089 6076 MSPCLOCK - ok

06:55:00.0278 6076 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

06:55:00.0356 6076 MSPQM - ok

06:55:00.0668 6076 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys

06:55:00.0746 6076 MsRPC - ok

06:55:00.0950 6076 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys

06:55:00.0996 6076 mssmbios - ok

06:55:01.0043 6076 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

06:55:01.0106 6076 MSTEE - ok

06:55:01.0232 6076 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys

06:55:01.0263 6076 Mup - ok

06:55:01.0341 6076 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys

06:55:01.0388 6076 NativeWifiP - ok

06:55:01.0622 6076 NAVENG (862f55824ac81295837b0ab63f91071f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20120108.006\NAVENG.SYS

06:55:01.0669 6076 NAVENG - ok

06:55:01.0888 6076 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\Norton\Definitions\VirusDefs\20120108.006\NAVEX15.SYS

06:55:01.0997 6076 NAVEX15 - ok

06:55:02.0186 6076 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys

06:55:02.0264 6076 NDIS - ok

06:55:02.0295 6076 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

06:55:02.0342 6076 NdisTapi - ok

06:55:02.0405 6076 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

06:55:02.0467 6076 Ndisuio - ok

06:55:02.0530 6076 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys

06:55:02.0623 6076 NdisWan - ok

06:55:02.0780 6076 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

06:55:02.0842 6076 NDProxy - ok

06:55:02.0905 6076 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

06:55:02.0952 6076 NetBIOS - ok

06:55:03.0217 6076 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys

06:55:03.0311 6076 netbt - ok

06:55:03.0811 6076 NETw3v32 (acc6170d80c69e50145b370023b64ed3) C:\Windows\system32\DRIVERS\NETw3v32.sys

06:55:03.0952 6076 NETw3v32 - ok

06:55:04.0061 6076 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

06:55:04.0092 6076 nfrd960 - ok

06:55:04.0155 6076 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys

06:55:04.0233 6076 Npfs - ok

06:55:04.0373 6076 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

06:55:04.0436 6076 nsiproxy - ok

06:55:04.0623 6076 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys

06:55:04.0733 6076 Ntfs - ok

06:55:04.0827 6076 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

06:55:04.0936 6076 ntrigdigi - ok

06:55:05.0014 6076 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

06:55:05.0061 6076 Null - ok

06:55:05.0405 6076 nvlddmkm (8ead4e71cf31962b124cdace9c29c714) C:\Windows\system32\DRIVERS\nvlddmkm.sys

06:55:05.0717 6076 nvlddmkm - ok

06:55:05.0889 6076 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys

06:55:05.0936 6076 nvraid - ok

06:55:05.0983 6076 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys

06:55:05.0998 6076 nvstor - ok

06:55:06.0061 6076 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys

06:55:06.0092 6076 nv_agp - ok

06:55:06.0139 6076 NwlnkFlt - ok

06:55:06.0155 6076 NwlnkFwd - ok

06:55:06.0217 6076 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys

06:55:06.0264 6076 ohci1394 - ok

06:55:06.0483 6076 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys

06:55:06.0592 6076 Parport - ok

06:55:06.0686 6076 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys

06:55:06.0702 6076 partmgr - ok

06:55:06.0748 6076 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys

06:55:06.0889 6076 Parvdm - ok

06:55:07.0108 6076 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys

06:55:07.0155 6076 pci - ok

06:55:07.0436 6076 pciide (3b1901e401473e03eb8c874271e50c26) C:\Windows\system32\drivers\pciide.sys

06:55:07.0467 6076 pciide - ok

06:55:07.0686 6076 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys

06:55:07.0717 6076 pcmcia - ok

06:55:07.0795 6076 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

06:55:07.0889 6076 PEAUTH - ok

06:55:08.0092 6076 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

06:55:08.0139 6076 PptpMiniport - ok

06:55:08.0217 6076 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys

06:55:08.0311 6076 Processor - ok

06:55:08.0389 6076 PROCEXP151 - ok

06:55:08.0498 6076 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys

06:55:08.0561 6076 PSched - ok

06:55:08.0842 6076 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys

06:55:08.0920 6076 ql2300 - ok

06:55:09.0030 6076 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

06:55:09.0077 6076 ql40xx - ok

06:55:09.0139 6076 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

06:55:09.0202 6076 QWAVEdrv - ok

06:55:09.0389 6076 R300 (e642b131fb74caf4bb8a014f31113142) C:\Windows\system32\DRIVERS\atikmdag.sys

06:55:09.0577 6076 R300 - ok

06:55:09.0827 6076 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

06:55:09.0873 6076 RasAcd - ok

06:55:09.0983 6076 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

06:55:10.0030 6076 Rasl2tp - ok

06:55:10.0155 6076 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys

06:55:10.0234 6076 RasPppoe - ok

06:55:10.0421 6076 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys

06:55:10.0468 6076 RasSstp - ok

06:55:10.0687 6076 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys

06:55:10.0734 6076 rdbss - ok

06:55:10.0890 6076 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

06:55:10.0999 6076 RDPCDD - ok

06:55:11.0485 6076 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys

06:55:11.0578 6076 rdpdr - ok

06:55:11.0719 6076 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

06:55:11.0782 6076 RDPENCDD - ok

06:55:11.0875 6076 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys

06:55:11.0953 6076 RDPWD - ok

06:55:12.0303 6076 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys

06:55:12.0350 6076 RFCOMM - ok

06:55:12.0475 6076 rimmptsk (b39f1bd472e4992382875baf0b645c6d) C:\Windows\system32\DRIVERS\rimmptsk.sys

06:55:12.0553 6076 rimmptsk - ok

06:55:12.0678 6076 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys

06:55:12.0866 6076 rimsptsk - ok

06:55:12.0944 6076 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

06:55:12.0991 6076 rspndr - ok

06:55:13.0037 6076 RTL8169 (283392af1860ecdb5e0f8ebd7f3d72df) C:\Windows\system32\DRIVERS\Rtlh86.sys

06:55:13.0116 6076 RTL8169 - ok

06:55:13.0209 6076 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS

06:55:13.0225 6076 SASDIFSV - ok

06:55:13.0272 6076 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS

06:55:13.0287 6076 SASKUTIL - ok

06:55:13.0475 6076 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

06:55:13.0506 6076 sbp2port - ok

06:55:13.0600 6076 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys

06:55:13.0678 6076 sdbus - ok

06:55:13.0756 6076 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

06:55:13.0866 6076 secdrv - ok

06:55:13.0975 6076 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys

06:55:14.0069 6076 Serenum - ok

06:55:14.0334 6076 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys

06:55:14.0444 6076 Serial - ok

06:55:14.0616 6076 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

06:55:14.0694 6076 sermouse - ok

06:55:14.0944 6076 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys

06:55:14.0991 6076 sffdisk - ok

06:55:15.0053 6076 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys

06:55:15.0131 6076 sffp_mmc - ok

06:55:15.0256 6076 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys

06:55:15.0319 6076 sffp_sd - ok

06:55:15.0444 6076 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

06:55:15.0553 6076 sfloppy - ok

06:55:16.0037 6076 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys

06:55:16.0084 6076 sisagp - ok

06:55:16.0694 6076 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys

06:55:16.0725 6076 SiSRaid2 - ok

06:55:16.0819 6076 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys

06:55:16.0850 6076 SiSRaid4 - ok

06:55:17.0116 6076 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys

06:55:17.0209 6076 Smb - ok

06:55:17.0428 6076 smserial (c8a58fc905c9184fa70e37f71060c64d) C:\Windows\system32\DRIVERS\smserial.sys

06:55:17.0506 6076 smserial - ok

06:55:17.0647 6076 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

06:55:17.0662 6076 spldr - ok

06:55:17.0787 6076 SRTSP (e81f6caeab9ad5732e94c07c97866aa2) C:\Windows\System32\Drivers\N360\0308030.006\SRTSP.SYS

06:55:17.0850 6076 SRTSP - ok

06:55:18.0069 6076 SRTSPX (e28de499d942b08058bffac69d4122b6) C:\Windows\system32\drivers\N360\0308030.006\SRTSPX.SYS

06:55:18.0116 6076 SRTSPX - ok

06:55:18.0459 6076 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys

06:55:18.0537 6076 srv - ok

06:55:18.0772 6076 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys

06:55:18.0881 6076 srv2 - ok

06:55:19.0147 6076 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys

06:55:19.0178 6076 srvnet - ok

06:55:19.0287 6076 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys

06:55:19.0319 6076 swenum - ok

06:55:19.0381 6076 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

06:55:19.0475 6076 Symc8xx - ok

06:55:19.0662 6076 SymEFA (d0885f6e24259a6c65e68d6ad749910a) C:\Windows\system32\drivers\N360\0308030.006\SYMEFA.SYS

06:55:19.0694 6076 SymEFA - ok

06:55:19.0834 6076 SymEvent (a54ff04bd6e75dc4d8cb6f3e352635e0) C:\Windows\system32\Drivers\SYMEVENT.SYS

06:55:19.0866 6076 SymEvent - ok

06:55:19.0959 6076 SYMFW (a8c45c36309ee066f9191e511f88ed76) C:\Windows\System32\Drivers\N360\0308030.006\SYMFW.SYS

06:55:20.0006 6076 SYMFW - ok

06:55:20.0209 6076 SymIM (34f1c9d5dcc19df1e824d6b73767b8af) C:\Windows\system32\DRIVERS\SymIMv.sys

06:55:20.0241 6076 SymIM - ok

06:55:20.0334 6076 SYMNDISV (d8b16289f39b63456f48ea95243a788a) C:\Windows\System32\Drivers\N360\0308030.006\SYMNDISV.SYS

06:55:20.0381 6076 SYMNDISV - ok

06:55:20.0631 6076 SYMTDI (26bc80ec79d7ba478249c266cbdf17b4) C:\Windows\System32\Drivers\N360\0308030.006\SYMTDI.SYS

06:55:20.0662 6076 SYMTDI - ok

06:55:20.0803 6076 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

06:55:20.0959 6076 Sym_hi - ok

06:55:21.0225 6076 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

06:55:21.0381 6076 Sym_u3 - ok

06:55:21.0584 6076 SynTP (1f452f22df0c00dd2529867e1ea0dc25) C:\Windows\system32\DRIVERS\SynTP.sys

06:55:21.0631 6076 SynTP - ok

06:55:21.0944 6076 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys

06:55:22.0053 6076 Tcpip - ok

06:55:22.0366 6076 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys

06:55:22.0491 6076 Tcpip6 - ok

06:55:22.0662 6076 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys

06:55:22.0725 6076 tcpipreg - ok

06:55:22.0756 6076 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

06:55:22.0819 6076 TDPIPE - ok

06:55:22.0881 6076 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

06:55:22.0912 6076 TDTCP - ok

06:55:23.0006 6076 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys

06:55:23.0053 6076 tdx - ok

06:55:23.0194 6076 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys

06:55:23.0225 6076 TermDD - ok

06:55:23.0272 6076 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

06:55:23.0334 6076 tssecsrv - ok

06:55:23.0366 6076 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

06:55:23.0491 6076 tunmp - ok

06:55:23.0694 6076 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys

06:55:23.0725 6076 tunnel - ok

06:55:23.0787 6076 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys

06:55:23.0819 6076 uagp35 - ok

06:55:23.0912 6076 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys

06:55:23.0959 6076 udfs - ok

06:55:24.0037 6076 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys

06:55:24.0084 6076 uliagpkx - ok

06:55:24.0351 6076 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys

06:55:24.0382 6076 uliahci - ok

06:55:24.0445 6076 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

06:55:24.0476 6076 UlSata - ok

06:55:24.0507 6076 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

06:55:24.0538 6076 ulsata2 - ok

06:55:24.0632 6076 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

06:55:24.0679 6076 umbus - ok

06:55:24.0820 6076 USBAAPL (5c2bdc152bbab34f36473deaf7713f22) C:\Windows\system32\Drivers\usbaapl.sys

06:55:24.0867 6076 USBAAPL ( UnsignedFile.Multi.Generic ) - warning

06:55:24.0867 6076 USBAAPL - detected UnsignedFile.Multi.Generic (1)

06:55:24.0929 6076 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

06:55:24.0945 6076 usbccgp - ok

06:55:25.0023 6076 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

06:55:25.0101 6076 usbcir - ok

06:55:25.0336 6076 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys

06:55:25.0477 6076 usbehci - ok

06:55:25.0664 6076 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys

06:55:25.0836 6076 usbhub - ok

06:55:26.0133 6076 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys

06:55:26.0196 6076 usbohci - ok

06:55:26.0289 6076 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys

06:55:26.0369 6076 usbprint - ok

06:55:26.0572 6076 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys

06:55:26.0650 6076 usbscan - ok

06:55:26.0712 6076 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS

06:55:26.0759 6076 USBSTOR - ok

06:55:26.0822 6076 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys

06:55:26.0869 6076 usbuhci - ok

06:55:26.0978 6076 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys

06:55:27.0056 6076 vga - ok

06:55:27.0150 6076 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

06:55:27.0197 6076 VgaSave - ok

06:55:27.0290 6076 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys

06:55:27.0306 6076 viaagp - ok

06:55:27.0354 6076 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys

06:55:27.0479 6076 ViaC7 - ok

06:55:27.0760 6076 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys

06:55:27.0776 6076 viaide - ok

06:55:27.0823 6076 viamraid (25700f5d901d8a8f4c7e851788a2707d) C:\Windows\system32\drivers\viamraid.sys

06:55:27.0885 6076 viamraid - ok

06:55:28.0073 6076 VirtualCamX86 (316397f47355e19075f3bacb11067e7c) C:\Windows\system32\DRIVERS\Ddpcvcam.sys

06:55:28.0120 6076 VirtualCamX86 - ok

06:55:28.0245 6076 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys

06:55:28.0276 6076 volmgr - ok

06:55:28.0370 6076 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys

06:55:28.0417 6076 volmgrx - ok

06:55:28.0511 6076 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys

06:55:28.0574 6076 volsnap - ok

06:55:28.0652 6076 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys

06:55:28.0683 6076 vsmraid - ok

06:55:28.0792 6076 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

06:55:28.0839 6076 WacomPen - ok

06:55:28.0902 6076 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

06:55:28.0933 6076 Wanarp - ok

06:55:28.0949 6076 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

06:55:28.0980 6076 Wanarpv6 - ok

06:55:29.0183 6076 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys

06:55:29.0230 6076 Wd - ok

06:55:29.0402 6076 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys

06:55:29.0449 6076 Wdf01000 - ok

06:55:29.0730 6076 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys

06:55:29.0761 6076 WimFltr - ok

06:55:29.0839 6076 WinDriver6 (097a8291df541f9b9af2c500797cdcaa) C:\Windows\system32\drivers\windrvr6.sys

06:55:29.0855 6076 WinDriver6 ( UnsignedFile.Multi.Generic ) - warning

06:55:29.0855 6076 WinDriver6 - detected UnsignedFile.Multi.Generic (1)

06:55:29.0933 6076 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\DRIVERS\wmiacpi.sys

06:55:29.0995 6076 WmiAcpi - ok

06:55:30.0089 6076 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys

06:55:30.0136 6076 WpdUsb - ok

06:55:30.0214 6076 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

06:55:30.0261 6076 ws2ifsl - ok

06:55:30.0339 6076 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

06:55:30.0386 6076 WUDFRd - ok

06:55:30.0542 6076 yukonwlh (a4822191c7cea271903c2a4fb6d9809d) C:\Windows\system32\DRIVERS\yk60x86.sys

06:55:30.0620 6076 yukonwlh - ok

06:55:30.0636 6076 MBR (0x1B8) (048134312428ad1a401581be277e58b7) \Device\Harddisk0\DR0

06:55:31.0089 6076 \Device\Harddisk0\DR0 ( TDSS File System ) - warning

06:55:31.0089 6076 \Device\Harddisk0\DR0 - detected TDSS File System (1)

06:55:31.0120 6076 Boot (0x1200) (c503a68adbfd6b4c9c511e45eee1230d) \Device\Harddisk0\DR0\Partition0

06:55:31.0120 6076 \Device\Harddisk0\DR0\Partition0 - ok

06:55:31.0120 6076 ============================================================

06:55:31.0120 6076 Scan finished

06:55:31.0120 6076 ============================================================

06:55:31.0120 5892 Detected object count: 3

06:55:31.0120 5892 Actual detected object count: 3

07:00:03.0674 5892 C:\Windows\system32\Drivers\usbaapl.sys - copied to quarantine

07:00:03.0784 5892 USBAAPL ( UnsignedFile.Multi.Generic ) - User select action: Quarantine

07:00:03.0862 5892 C:\Windows\system32\drivers\windrvr6.sys - copied to quarantine

07:00:03.0987 5892 WinDriver6 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine

07:00:04.0034 5892 \Device\Harddisk0\DR0\TDLFS\phm - copied to quarantine

07:00:04.0034 5892 \Device\Harddisk0\DR0\TDLFS\phs - copied to quarantine

07:00:04.0049 5892 \Device\Harddisk0\DR0\TDLFS\ph.dll - copied to quarantine

07:00:04.0096 5892 \Device\Harddisk0\DR0\TDLFS\phdata - copied to quarantine

07:00:04.0096 5892 \Device\Harddisk0\DR0\TDLFS\phld - copied to quarantine

07:00:04.0096 5892 \Device\Harddisk0\DR0\TDLFS\phln - copied to quarantine

07:00:04.0127 5892 \Device\Harddisk0\DR0\TDLFS\phd - copied to quarantine

07:00:06.0065 5892 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Quarantine

07:00:58.0102 1856 Deinitialize success

aswMBR:

aswMBR version 0.9.9.1297 Copyright© 2011 AVAST Software

Run date: 2012-01-09 07:08:08

-----------------------------

07:08:08.553 OS Version: Windows 6.0.6002 Service Pack 2

07:08:08.553 Number of processors: 2 586 0xF06

07:08:08.556 ComputerName: ALIENWARE UserName: Eric

07:08:34.514 Initialize success

07:09:10.519 AVAST engine defs: 12010900

07:09:16.482 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0

07:09:16.484 Disk 0 Vendor: ST9160823AS 3.ADC Size: 152627MB BusType: 3

07:09:16.569 Disk 0 MBR read successfully

07:09:16.572 Disk 0 MBR scan

07:09:16.578 Disk 0 unknown MBR code

07:09:16.653 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 145196 MB offset 63

07:09:16.712 Disk 0 Partition 2 00 12 Compaq diag NTFS 7427 MB offset 297363456

07:09:16.747 Disk 0 scanning sectors +312573952

07:09:16.938 Disk 0 scanning C:\Windows\system32\drivers

07:10:23.873 Service scanning

07:10:29.223 Modules scanning

07:10:53.253 Disk 0 trace - called modules:

07:10:53.283 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS intelide.sys

07:10:53.289 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x84c2fac8]

07:10:53.294 3 CLASSPNP.SYS[87f9d8b3] -> nt!IofCallDriver -> [0x8408d340]

07:10:53.298 5 acpi.sys[806926bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x840527b0]

07:10:54.990 AVAST engine scan C:\Windows

07:11:06.224 File: C:\Windows\PEV.exe **INFECTED** Win32:Rootkit-gen [Rtk]

07:11:33.191 AVAST engine scan C:\Windows\system32

07:16:27.977 AVAST engine scan C:\Windows\system32\drivers

07:16:43.422 AVAST engine scan C:\Users\Eric

07:25:59.194 AVAST engine scan C:\ProgramData

07:35:01.648 Scan finished successfully

18:43:58.812 Disk 0 MBR has been saved successfully to "C:\Users\Eric\Desktop\MBR.dat"

18:43:58.941 The log file has been saved successfully to "C:\Users\Eric\Desktop\aswMBR.txt"

[LDTate]

07:11:06.224 File: C:\Windows\PEV.exe **INFECTED** Win32:Rootkit-gen [Rtk]

That's a combofix file.

Do this please.

Please go to http://www.virustotal.com/, click on Browse, and upload the following file for analysis:

C:\Windows\PEV.exe

Then click Submit. Allow the file to be scanned, and then please copy and paste the results here for me to see.

If virustotal is too busy you can try these.

http://virusscan.jotti.org

http://www.kaspersky.com/scanforvirus.html

[biffgnar]

Can't seem to get the results copy and pasted over without the format getting trashed. Have it open in another tab. Results that showed something were as follows:

Avast - Win32:Rootkit-gen [Rtk]

ClamAV - PUA.Packed.PECompact-1

Emsisoft - Win32.Rootkit!IK

eSafe - Suspicious File

GData - Win32:Rootkit-gen

Ikarus - Win32.Rootkit

SUPERAntispyware - Trojan.Dropper/Gen

[LDTate]

Do you still have combofix installed?

[biffgnar]

Yes, didn't uninstall after last time we ran it. Should I get rid of it?

[LDTate]

Lets uninstall it and then run a new aswMBR scan.

For XP:

• Click START run
  
• Now type ComboFix /Uninstall in the runbox and click OK. Note the space between the X and the /, it needs to be there.
  

For Vista / Windows 7

• Click START Search
  
• Now type ComboFix /Uninstall in the runbox and click OK. Note the space between the X and the /, it needs to be there.
  

[biffgnar]

OK, I feel like an idiot but I can't make that work. When I type that into the search box it brings up a search window. It's like its not recognizing the Uninstall command.

[LDTate]

Are you typing in ComboFix /Uninstall in the search window

[biffgnar]

Yes, and it tells me no items match that search. It sees the file when I type in ComboFix (and I can see the file in the Desktop folder if I go to my C: drive) but when I add the "/Uninstall" it doesn't seem to know what to do with that.

[LDTate]

Are you adding the space? combofix (space) /uninstall

[biffgnar]

Yes, with the space. It shows the file above the search window until I type the "/" and then it goes to the new items meet your seach result. Its not recognize that as command.

How about if I download Combofix again, overwrite the existing Combofix file and then try to uninstall? Maybe the re-download and overwrite would would help Windows get re-organized.

[LDTate]

How about if I download Combofix again, overwrite the existing Combofix file and then try to uninstall? Maybe the re-download and overwrite would would help Windows get re-organized.

Good idea

[biffgnar]

Figured it out. ComboFix was set as "read only". Had to go into properties and take that off. Then it accepted the "/Uninstall" command. Will rerun aswMBR now.

[LDTate]

Good job

[biffgnar]

Here's the log. Looks clean?

aswMBR version 0.9.9.1297 Copyright© 2011 AVAST Software

Run date: 2012-01-09 19:54:29

-----------------------------

19:54:29.911 OS Version: Windows 6.0.6002 Service Pack 2

19:54:29.911 Number of processors: 2 586 0xF06

19:54:29.913 ComputerName: ALIENWARE UserName: Eric

19:54:31.857 Initialize success

19:54:43.908 AVAST engine defs: 12010900

19:54:53.521 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0

19:54:53.524 Disk 0 Vendor: ST9160823AS 3.ADC Size: 152627MB BusType: 3

19:54:53.577 Disk 0 MBR read successfully

19:54:53.590 Disk 0 MBR scan

19:54:53.597 Disk 0 unknown MBR code

19:54:53.605 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 145196 MB offset 63

19:54:53.645 Disk 0 Partition 2 00 12 Compaq diag NTFS 7427 MB offset 297363456

19:54:53.705 Disk 0 scanning sectors +312573952

19:54:53.835 Disk 0 scanning C:\Windows\system32\drivers

19:55:32.852 Service scanning

19:55:34.268 Modules scanning

19:56:16.375 Disk 0 trace - called modules:

19:56:16.408 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS intelide.sys PCIIDEX.SYS atapi.sys

19:56:16.414 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x84c2fac8]

19:56:16.418 3 CLASSPNP.SYS[87f9d8b3] -> nt!IofCallDriver -> [0x8408d340]

19:56:16.421 5 acpi.sys[806926bc] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP0T0L0-0[0x840527b0]

19:56:16.847 AVAST engine scan C:\Windows

19:56:31.601 AVAST engine scan C:\Windows\system32

20:02:08.068 AVAST engine scan C:\Windows\system32\drivers

20:02:34.370 AVAST engine scan C:\Users\Eric

20:18:52.391 AVAST engine scan C:\ProgramData

20:36:46.915 Scan finished successfully

20:38:32.489 Disk 0 MBR has been saved successfully to "C:\Users\Eric\Desktop\MBR.dat"

20:38:32.505 The log file has been saved successfully to "C:\Users\Eric\Desktop\aswMBR.txt"

[LDTate]

Looks great.

You can delete TDSSKIller and aswMBR

Here's my usual all clean post

To be on the safe side, I would also change all my passwords.

This infection appears to have been cleaned, but as the malware could be configured to run any program a remote attacker requires, it's impossible to be 100% sure that any machine is clean.

Log looks good

• Update your AntiVirus Software - It is imperative that you update your Antivirus software at least once a week
  (Even more if you wish). If you do not update your antivirus software then it will not be able to catch any of the new variants that may come out.
  
• Use a Firewall - I can not stress how important it is that you use a Firewall on your computer.
  Without a firewall your computer is succeptible to being hacked and taken over.
  I am very serious about this and see it happen almost every day with my clients.
  Simply using a Firewall in its default configuration can lower your risk greatly.
  
• Using a secure browser plugin M86 SecureBrowsing makes it safe to search, surf and socialize online. This free browser plug-in displays security icons next to links on search engines and social networking sites like Facebook, Twitter and LinkedIn, so you'll know which pages are safe and which ones to avoid.
  •Free browser plug-in for Internet Explorer and Firefox
  •Real-time safety ratings
  •Ideal for Facebook, Twitter and LinkedIn
  
• JAVA Click this link and click on the Free JAVA Download
  
• Visit Microsoft's Windows Update Site Frequently - It is important that you visit http://www.windowsupdate.com regularly.
  This will ensure your computer has always the latest security updates available installed on your computer.
  If there are new updates to install, install them immediately, reboot your computer, and revisit the site
  until there are no more critical updates.
  

Only run one Anti-Virus and Firewall program.

I would suggest you read:

PC Safety and Security--What Do I Need?.

How to Prevent Malware:

The full version of Malwarebytes' Anti-Malware could have helped protect your computer against this threat.

We use different ways of protecting your computer(s):

• Dynamically Blocks Malware Sites & Servers
  
• Malware Execution Prevention
  

Save yourself the hassle and get protected.

[LDTate]

Since this issue is resolved I will close the thread to prevent others from posting here. If you need assistance please start your own topic and someone will be happy to assist you.