Jump to content

Recommended Posts

Welcome to the forum.

Please remove any usb or external drives from the computer before you run these scan!

Please download Farbar Service Scanner and run it on the computer with the issue.

  • Make sure the following options are checked:
    • Internet Services
    • Windows Firewall
    • System Restore
    • Security Center
    • Windows Update

    [*]Press "Scan".

    [*]It will create a log (FSS.txt) in the same directory the tool is run.

    [*]Please copy and paste the log to your reply.

------------

Next..........

Please download and run RogueKiller.

Choose 1 to scan the system

Post back the report.

MrC

Link to post
Share on other sites

Here is the FSS.txt:

Farbar Service Scanner Version: 18-01-2012 01

Ran by Cherilyn (administrator) on 28-01-2012 at 10:06:36

Microsoft® Windows Vista Home Premium Service Pack 2 (X86)

Boot Mode: Normal

****************************************************************

Internet Services:

============

Connection Status:

==============

Localhost is accessible.

LAN connected.

Attempt to access Google IP returned error: Google IP is offline

Attempt to access Yahoo IP returend error: Yahoo IP is offline

Windows Firewall:

=============

MpsSvc Service is not running. Checking service configuration:

Checking Start type: Attention! Unable to open MpsSvc registry key. The service key does not exist.

Checking ImagePath: Attention! Unable to open MpsSvc registry key. The service key does not exist.

Checking ServiceDll: Attention! Unable to open MpsSvc registry key. The service key does not exist.

Checking LEGACY_MpsSvc: Attention! Unable to open LEGACY_MpsSvc\0000 registry key. The key does not exist.

bfe Service is not running. Checking service configuration:

Checking Start type: Attention! Unable to open bfe registry key. The service key does not exist.

Checking ImagePath: Attention! Unable to open bfe registry key. The service key does not exist.

Checking ServiceDll: Attention! Unable to open bfe registry key. The service key does not exist.

Checking LEGACY_bfe: Attention! Unable to open LEGACY_bfe\0000 registry key. The key does not exist.

mpsdrv Service is not running. Checking service configuration:

The start type of mpsdrv service is OK.

The ImagePath of mpsdrv service is OK.

Firewall Disabled Policy:

==================

System Restore:

============

SDRSVC Service is not running. Checking service configuration:

The start type of SDRSVC service is OK.

The ImagePath of SDRSVC service is OK.

The ServiceDll of SDRSVC service is OK.

Checking LEGACY_SDRSVC: Attention! Unable to open LEGACY_SDRSVC\0000 registry key. The key does not exist.

VSS Service is not running. Checking service configuration:

The start type of VSS service is OK.

The ImagePath of VSS service is OK.

System Restore Disabled Policy:

========================

Security Center:

============

wscsvc Service is not running. Checking service configuration:

Checking Start type: Attention! Unable to open wscsvc registry key. The service key does not exist.

Checking ImagePath: Attention! Unable to open wscsvc registry key. The service key does not exist.

Checking ServiceDll: Attention! Unable to open wscsvc registry key. The service key does not exist.

Checking LEGACY_wscsvc: Attention! Unable to open LEGACY_wscsvc\0000 registry key. The key does not exist.

Windows Update:

===========

wuauserv Service is not running. Checking service configuration:

The start type of wuauserv service is OK.

The ImagePath of wuauserv service is OK.

The ServiceDll of wuauserv service is OK.

File Check:

========

C:\Windows\system32\nsisvc.dll => MD5 is legit

C:\Windows\system32\Drivers\nsiproxy.sys => MD5 is legit

C:\Windows\system32\dhcpcsvc.dll => MD5 is legit

C:\Windows\system32\Drivers\afd.sys => MD5 is legit

C:\Windows\system32\Drivers\tdx.sys => MD5 is legit

C:\Windows\system32\Drivers\tcpip.sys => MD5 is legit

C:\Windows\system32\dnsrslvr.dll => MD5 is legit

C:\Windows\system32\mpssvc.dll => MD5 is legit

C:\Windows\system32\bfe.dll => MD5 is legit

C:\Windows\system32\Drivers\mpsdrv.sys => MD5 is legit

C:\Windows\system32\SDRSVC.dll => MD5 is legit

C:\Windows\system32\vssvc.exe => MD5 is legit

C:\Windows\system32\wscsvc.dll => MD5 is legit

C:\Windows\system32\wbem\WMIsvc.dll => MD5 is legit

C:\Windows\system32\wuaueng.dll => MD5 is legit

C:\Windows\system32\qmgr.dll

[2009-11-01 14:17] - [2009-04-11 00:28] - 0758784 ____A (Microsoft Corporation) 93952506C6D67330367F7E7934B6A02F

C:\Windows\system32\es.dll => MD5 is legit

C:\Windows\system32\cryptsvc.dll

[2009-11-01 14:16] - [2009-04-11 00:28] - 0129024 ____A (Microsoft Corporation) FB27772BEAF8E1D28CCD825C09DA939B

C:\Windows\system32\svchost.exe => MD5 is legit

C:\Windows\system32\rpcss.dll => MD5 is legit

**** End of log ****

And here is the RKreport.txt

RogueKiller V7.0.1 [01/28/2012] by Tigzy

mail: tigzyRK<at>gmail<dot>com

Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/

Blog: http://tigzyrk.blogspot.com

Operating System: Windows Vista (6.0.6002 Service Pack 2) 32 bits version

Started in : Normal mode

User: Cherilyn [Admin rights]

Mode: Scan -- Date : 01/28/2012 10:09:39

€€€ Bad processes: 0 €€€

€€€ Registry Entries: 4 €€€

[HJ] HKCU\[...]\Advanced : Start_ShowPrinters (0) -> FOUND

[HJ] HKLM\[...]\NewStartPanel : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND

[HJ] HKCU\[...]\ClassicStartMenu : {59031a47-3f72-44a7-89c5-5595fe6b30ee} (1) -> FOUND

[HJ] HKLM\[...]\NewStartPanel : {20D04FE0-3AEA-1069-A2D8-08002B30309D} (1) -> FOUND

€€€ Particular Files / Folders: €€€

€€€ Driver: [LOADED] €€€

€€€ Infection : Root.MBR €€€

€€€ HOSTS File: €€€

€€€ MBR Check: €€€

+++++ PhysicalDrive0: +++++

--- User ---

[MBR] f7c3cdec4d561507c597bc1360a2ff20

[bSP] 258f7fe201a52df58eeaab3f062e5d2f : Windows Vista MBR Code

Partition table:

0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1572 Mo1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 118459 MoUser = LL1 ... OK!

User != LL2 ... KO!

--- LL2 ---

[MBR] 5363fe291e8275aa15e737a668547e3e

[bSP] 2943f55d422d2199dab6c5547ae16c61 : PiHar MBR Code!

Partition table:

0 - [XXXXXX] ACER (0x27) [VISIBLE] Offset (sectors): 2048 | Size: 1572 Mo1 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 3074048 | Size: 118459 Mo

Finished : << RKreport[1].txt >>

RKreport[1].txt

Link to post
Share on other sites

ListParts by Farbar

Ran by Cherilyn on 28-01-2012 at 10:30:51

Windows Vista (X86)

Running From: C:\Users\Cherilyn\Desktop

************************************************************

========================= Memory info ======================

Percentage of memory in use: 46%

Total physical RAM: 2037.69 MB

Available physical RAM: 1080.51 MB

Total Pagefile: 4318.65 MB

Available Pagefile: 3110.04 MB

Total Virtual: 2047.88 MB

Available Virtual: 1965.14 MB

======================= Partitions =========================

1 Drive c: (SQ004680V03) (Fixed) (Total:110.32 GB) (Free:47.72 GB) NTFS ==>[Drive with boot components (obtanied from BCD)]

There are no fixed disks to show.

****** End Of Log ******

Link to post
Share on other sites

Please download and run TDSSKiller as outlined in the post below:

http://forums.malwar...howtopic=104821

If a suspicious object is detected, the default action will be Skip, click on Continue

If malicious objects are found, they will show in the Scan results and offer three (3) options.

Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.

Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

Post back the log, MrC

Link to post
Share on other sites

11:06:25.0944 4972 TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27

11:06:26.0459 4972 ============================================================

11:06:26.0459 4972 Current date / time: 2012/01/28 11:06:26.0459

11:06:26.0459 4972 SystemInfo:

11:06:26.0459 4972

11:06:26.0459 4972 OS Version: 6.0.6002 ServicePack: 2.0

11:06:26.0459 4972 Product type: Workstation

11:06:26.0475 4972 ComputerName: CHERILYN-PC

11:06:26.0475 4972 UserName: Cherilyn

11:06:26.0475 4972 Windows directory: C:\Windows

11:06:26.0475 4972 System windows directory: C:\Windows

11:06:26.0475 4972 Processor architecture: Intel x86

11:06:26.0475 4972 Number of processors: 1

11:06:26.0475 4972 Page size: 0x1000

11:06:26.0475 4972 Boot type: Normal boot

11:06:26.0475 4972 ============================================================

11:06:27.0925 4972 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

11:06:27.0972 4972 Initialize success

11:06:43.0368 0840 ============================================================

11:06:43.0368 0840 Scan started

11:06:43.0368 0840 Mode: Manual; SigCheck; TDLFS;

11:06:43.0368 0840 ============================================================

11:06:45.0910 0840 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys

11:06:46.0066 0840 ACPI - ok

11:06:46.0238 0840 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys

11:06:46.0300 0840 adp94xx - ok

11:06:46.0472 0840 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys

11:06:46.0519 0840 adpahci - ok

11:06:46.0659 0840 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys

11:06:46.0675 0840 adpu160m - ok

11:06:46.0815 0840 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys

11:06:46.0862 0840 adpu320 - ok

11:06:47.0018 0840 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys

11:06:47.0236 0840 AFD - ok

11:06:47.0423 0840 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys

11:06:47.0673 0840 AgereSoftModem - ok

11:06:47.0829 0840 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys

11:06:47.0876 0840 agp440 - ok

11:06:48.0016 0840 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

11:06:48.0063 0840 aic78xx - ok

11:06:48.0203 0840 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys

11:06:48.0250 0840 aliide - ok

11:06:48.0390 0840 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys

11:06:48.0453 0840 amdagp - ok

11:06:48.0593 0840 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys

11:06:48.0640 0840 amdide - ok

11:06:48.0796 0840 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys

11:06:48.0983 0840 AmdK7 - ok

11:06:49.0124 0840 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys

11:06:49.0233 0840 AmdK8 - ok

11:06:49.0607 0840 ApfiltrService (7c2f57bce81fa74933f0e1c84a97c9db) C:\Windows\system32\DRIVERS\Apfiltr.sys

11:06:49.0748 0840 ApfiltrService - ok

11:06:49.0981 0840 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys

11:06:50.0013 0840 arc - ok

11:06:50.0262 0840 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys

11:06:50.0340 0840 arcsas - ok

11:06:50.0449 0840 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

11:06:50.0512 0840 AsyncMac - ok

11:06:50.0590 0840 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys

11:06:50.0605 0840 atapi - ok

11:06:50.0793 0840 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys

11:06:51.0011 0840 athr - ok

11:06:51.0136 0840 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys

11:06:51.0635 0840 avgntflt - ok

11:06:51.0760 0840 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys

11:06:51.0775 0840 avipbb - ok

11:06:51.0885 0840 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

11:06:51.0994 0840 Beep - ok

11:06:52.0072 0840 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys

11:06:52.0165 0840 blbdrive - ok

11:06:52.0259 0840 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys

11:06:52.0368 0840 bowser - ok

11:06:52.0508 0840 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

11:06:52.0711 0840 BrFiltLo - ok

11:06:52.0836 0840 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

11:06:52.0930 0840 BrFiltUp - ok

11:06:53.0086 0840 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

11:06:53.0335 0840 Brserid - ok

11:06:53.0476 0840 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

11:06:53.0616 0840 BrSerWdm - ok

11:06:53.0756 0840 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

11:06:53.0881 0840 BrUsbMdm - ok

11:06:54.0006 0840 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

11:06:54.0068 0840 BrUsbSer - ok

11:06:54.0224 0840 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

11:06:54.0318 0840 BTHMODEM - ok

11:06:54.0474 0840 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

11:06:54.0567 0840 cdfs - ok

11:06:54.0692 0840 Cdr4_xp (bf79e659c506674c0497cc9c61f1a165) C:\Windows\system32\drivers\Cdr4_xp.sys

11:06:54.0755 0840 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning

11:06:54.0755 0840 Cdr4_xp - detected UnsignedFile.Multi.Generic (1)

11:06:54.0911 0840 Cdralw2k (2c41cd49d82d5fd85c72d57b6ca25471) C:\Windows\system32\drivers\Cdralw2k.sys

11:06:54.0973 0840 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning

11:06:54.0973 0840 Cdralw2k - detected UnsignedFile.Multi.Generic (1)

11:06:55.0113 0840 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys

11:06:55.0207 0840 cdrom - ok

11:06:55.0347 0840 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys

11:06:55.0425 0840 circlass - ok

11:06:55.0519 0840 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys

11:06:55.0581 0840 CLFS - ok

11:06:55.0691 0840 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys

11:06:55.0784 0840 CmBatt - ok

11:06:55.0940 0840 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys

11:06:55.0987 0840 cmdide - ok

11:06:56.0314 0840 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys

11:06:56.0361 0840 Compbatt - ok

11:06:56.0533 0840 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys

11:06:56.0595 0840 crcdisk - ok

11:06:56.0736 0840 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys

11:06:56.0829 0840 Crusoe - ok

11:06:56.0970 0840 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys

11:06:57.0016 0840 DfsC - ok

11:06:57.0188 0840 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys

11:06:57.0219 0840 disk - ok

11:06:57.0375 0840 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

11:06:57.0469 0840 drmkaud - ok

11:06:57.0625 0840 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys

11:06:57.0656 0840 DXGKrnl - ok

11:06:57.0812 0840 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys

11:06:57.0906 0840 E1G60 - ok

11:06:58.0077 0840 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys

11:06:58.0140 0840 Ecache - ok

11:06:58.0249 0840 eeCtrl (47ce4e650d91dc095a2fddb15631a78a) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys

11:06:58.0311 0840 eeCtrl - ok

11:06:58.0467 0840 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys

11:06:58.0529 0840 elxstor - ok

11:06:58.0685 0840 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys

11:06:58.0763 0840 ErrDev - ok

11:06:58.0935 0840 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys

11:06:59.0029 0840 exfat - ok

11:06:59.0185 0840 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys

11:06:59.0278 0840 fastfat - ok

11:06:59.0434 0840 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys

11:06:59.0528 0840 fdc - ok

11:06:59.0653 0840 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

11:06:59.0699 0840 FileInfo - ok

11:06:59.0840 0840 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

11:06:59.0949 0840 Filetrace - ok

11:07:00.0074 0840 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys

11:07:00.0183 0840 flpydisk - ok

11:07:00.0323 0840 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys

11:07:00.0339 0840 FltMgr - ok

11:07:00.0495 0840 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

11:07:00.0557 0840 Fs_Rec - ok

11:07:00.0698 0840 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys

11:07:00.0744 0840 gagp30kx - ok

11:07:00.0916 0840 GEARAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\Windows\system32\Drivers\GEARAspiWDM.sys

11:07:00.0963 0840 GEARAspiWDM - ok

11:07:01.0181 0840 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

11:07:01.0322 0840 HdAudAddService - ok

11:07:01.0478 0840 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys

11:07:01.0540 0840 HDAudBus - ok

11:07:01.0696 0840 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

11:07:01.0805 0840 HidBth - ok

11:07:01.0946 0840 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

11:07:02.0070 0840 HidIr - ok

11:07:02.0195 0840 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys

11:07:02.0304 0840 HidUsb - ok

11:07:02.0414 0840 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys

11:07:02.0476 0840 HpCISSs - ok

11:07:02.0616 0840 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys

11:07:02.0757 0840 HTTP - ok

11:07:02.0881 0840 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys

11:07:02.0928 0840 i2omp - ok

11:07:03.0069 0840 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys

11:07:03.0147 0840 iaStorV - ok

11:07:03.0256 0840 IDSvix86 (f49b22e2cc15de6e752fc8cb24eb7069) C:\PROGRA~2\Symantec\DEFINI~1\SymcData\idsdefs\20080911.001\IDSvix86.sys

11:07:03.0303 0840 IDSvix86 - ok

11:07:03.0474 0840 igfx (038815297078d236d8cc064c295a74c6) C:\Windows\system32\DRIVERS\igdkmd32.sys

11:07:03.0864 0840 igfx - ok

11:07:04.0005 0840 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

11:07:04.0020 0840 iirsp - ok

11:07:04.0270 0840 IntcAzAudAddService (8a4341616976e47712b60f18c7049dcc) C:\Windows\system32\drivers\RTKVHDA.sys

11:07:04.0441 0840 IntcAzAudAddService - ok

11:07:04.0566 0840 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys

11:07:04.0613 0840 intelide - ok

11:07:04.0753 0840 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys

11:07:04.0800 0840 intelppm - ok

11:07:04.0925 0840 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

11:07:05.0018 0840 IpFilterDriver - ok

11:07:05.0143 0840 IpInIp - ok

11:07:05.0284 0840 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys

11:07:05.0362 0840 IPMIDRV - ok

11:07:05.0486 0840 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

11:07:05.0564 0840 IPNAT - ok

11:07:05.0689 0840 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

11:07:05.0767 0840 IRENUM - ok

11:07:05.0892 0840 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys

11:07:05.0908 0840 isapnp - ok

11:07:06.0048 0840 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys

11:07:06.0079 0840 iScsiPrt - ok

11:07:06.0188 0840 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

11:07:06.0235 0840 iteatapi - ok

11:07:06.0376 0840 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

11:07:06.0422 0840 iteraid - ok

11:07:06.0578 0840 jswpslwf (7e72514a3a1c5a9f3bff0660b3866c2b) C:\Windows\system32\DRIVERS\jswpslwf.sys

11:07:06.0656 0840 jswpslwf - ok

11:07:06.0781 0840 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

11:07:06.0828 0840 kbdclass - ok

11:07:06.0968 0840 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys

11:07:07.0062 0840 kbdhid - ok

11:07:07.0202 0840 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys

11:07:07.0296 0840 KR10I - ok

11:07:07.0436 0840 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys

11:07:07.0514 0840 KR10N - ok

11:07:07.0655 0840 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys

11:07:07.0733 0840 KSecDD - ok

11:07:07.0920 0840 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

11:07:08.0013 0840 lltdio - ok

11:07:08.0185 0840 LPCFilter (515fc18cabee0158a324b08b1c2667cf) C:\Windows\system32\DRIVERS\LPCFilter.sys

11:07:08.0279 0840 LPCFilter - ok

11:07:08.0403 0840 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys

11:07:08.0466 0840 LSI_FC - ok

11:07:08.0591 0840 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys

11:07:08.0622 0840 LSI_SAS - ok

11:07:08.0746 0840 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys

11:07:08.0793 0840 LSI_SCSI - ok

11:07:08.0918 0840 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

11:07:08.0965 0840 luafv - ok

11:07:09.0292 0840 LVUVC (a240e42a7402e927a71b6e8aa4629b13) C:\Windows\system32\DRIVERS\lvuvc.sys

11:07:10.0291 0840 LVUVC - ok

11:07:10.0462 0840 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys

11:07:10.0478 0840 MBAMProtector - ok

11:07:10.0665 0840 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys

11:07:10.0681 0840 megasas - ok

11:07:10.0821 0840 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys

11:07:10.0868 0840 MegaSR - ok

11:07:11.0008 0840 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

11:07:11.0055 0840 Modem - ok

11:07:11.0180 0840 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

11:07:11.0211 0840 monitor - ok

11:07:11.0258 0840 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

11:07:11.0305 0840 mouclass - ok

11:07:11.0336 0840 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys

11:07:11.0367 0840 mouhid - ok

11:07:11.0414 0840 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

11:07:11.0445 0840 MountMgr - ok

11:07:11.0554 0840 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys

11:07:11.0585 0840 mpio - ok

11:07:11.0710 0840 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

11:07:11.0773 0840 mpsdrv - ok

11:07:11.0913 0840 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

11:07:11.0960 0840 Mraid35x - ok

11:07:12.0100 0840 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys

11:07:12.0241 0840 MRxDAV - ok

11:07:12.0490 0840 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys

11:07:12.0568 0840 mrxsmb - ok

11:07:12.0896 0840 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys

11:07:12.0974 0840 mrxsmb10 - ok

11:07:13.0098 0840 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

11:07:13.0176 0840 mrxsmb20 - ok

11:07:13.0332 0840 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys

11:07:13.0379 0840 msahci - ok

11:07:13.0504 0840 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys

11:07:13.0551 0840 msdsm - ok

11:07:13.0707 0840 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

11:07:13.0800 0840 Msfs - ok

11:07:13.0956 0840 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys

11:07:13.0972 0840 msisadrv - ok

11:07:14.0097 0840 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

11:07:14.0175 0840 MSKSSRV - ok

11:07:14.0331 0840 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

11:07:14.0424 0840 MSPCLOCK - ok

11:07:14.0549 0840 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

11:07:14.0596 0840 MSPQM - ok

11:07:14.0736 0840 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys

11:07:14.0783 0840 MsRPC - ok

11:07:14.0923 0840 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys

11:07:14.0939 0840 mssmbios - ok

11:07:15.0048 0840 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

11:07:15.0079 0840 MSTEE - ok

11:07:15.0142 0840 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys

11:07:15.0204 0840 Mup - ok

11:07:15.0376 0840 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys

11:07:15.0469 0840 NativeWifiP - ok

11:07:15.0547 0840 NAVENG (d8f9e712479f2f8dc8c3524a62365f95) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20080916.003\NAVENG.SYS

11:07:15.0594 0840 NAVENG - ok

11:07:15.0657 0840 NAVEX15 (0b127bbe41300dede016e86e47329cdd) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20080916.003\NAVEX15.SYS

11:07:15.0750 0840 NAVEX15 - ok

11:07:16.0015 0840 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys

11:07:16.0062 0840 NDIS - ok

11:07:16.0171 0840 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

11:07:16.0265 0840 NdisTapi - ok

11:07:16.0405 0840 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

11:07:16.0468 0840 Ndisuio - ok

11:07:16.0624 0840 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys

11:07:16.0717 0840 NdisWan - ok

11:07:16.0936 0840 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

11:07:17.0029 0840 NDProxy - ok

11:07:17.0232 0840 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

11:07:17.0326 0840 NetBIOS - ok

11:07:17.0466 0840 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys

11:07:17.0560 0840 netbt - ok

11:07:17.0778 0840 NETw3v32 (35d5458d9a1b26b2005abffbf4c1c5e7) C:\Windows\system32\DRIVERS\NETw3v32.sys

11:07:18.0090 0840 NETw3v32 - ok

11:07:18.0215 0840 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

11:07:18.0262 0840 nfrd960 - ok

11:07:18.0449 0840 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys

11:07:18.0496 0840 Npfs - ok

11:07:18.0558 0840 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

11:07:18.0605 0840 nsiproxy - ok

11:07:18.0854 0840 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys

11:07:18.0948 0840 Ntfs - ok

11:07:19.0073 0840 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

11:07:19.0151 0840 ntrigdigi - ok

11:07:19.0291 0840 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

11:07:19.0369 0840 Null - ok

11:07:19.0525 0840 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys

11:07:19.0572 0840 nvraid - ok

11:07:19.0712 0840 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys

11:07:19.0743 0840 nvstor - ok

11:07:19.0868 0840 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys

11:07:19.0884 0840 nv_agp - ok

11:07:19.0993 0840 NwlnkFlt - ok

11:07:20.0087 0840 NwlnkFwd - ok

11:07:20.0227 0840 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys

11:07:20.0289 0840 ohci1394 - ok

11:07:20.0461 0840 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys

11:07:20.0570 0840 Parport - ok

11:07:20.0726 0840 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys

11:07:20.0773 0840 partmgr - ok

11:07:20.0913 0840 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys

11:07:21.0023 0840 Parvdm - ok

11:07:21.0163 0840 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys

11:07:21.0225 0840 pci - ok

11:07:21.0366 0840 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys

11:07:21.0412 0840 pciide - ok

11:07:21.0584 0840 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys

11:07:21.0646 0840 pcmcia - ok

11:07:21.0818 0840 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

11:07:21.0943 0840 PEAUTH - ok

11:07:22.0208 0840 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

11:07:22.0286 0840 PptpMiniport - ok

11:07:22.0411 0840 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys

11:07:22.0473 0840 Processor - ok

11:07:22.0629 0840 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys

11:07:22.0676 0840 PSched - ok

11:07:22.0801 0840 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys

11:07:22.0816 0840 PxHelp20 - ok

11:07:22.0957 0840 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys

11:07:23.0019 0840 ql2300 - ok

11:07:23.0191 0840 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

11:07:23.0206 0840 ql40xx - ok

11:07:23.0347 0840 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

11:07:23.0393 0840 QWAVEdrv - ok

11:07:23.0565 0840 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

11:07:23.0643 0840 RasAcd - ok

11:07:23.0799 0840 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

11:07:23.0893 0840 Rasl2tp - ok

11:07:24.0033 0840 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys

11:07:24.0111 0840 RasPppoe - ok

11:07:24.0236 0840 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys

11:07:24.0314 0840 RasSstp - ok

11:07:24.0439 0840 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys

11:07:24.0485 0840 rdbss - ok

11:07:24.0579 0840 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

11:07:24.0673 0840 RDPCDD - ok

11:07:24.0782 0840 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys

11:07:24.0813 0840 rdpdr - ok

11:07:24.0953 0840 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

11:07:25.0031 0840 RDPENCDD - ok

11:07:25.0172 0840 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys

11:07:25.0265 0840 RDPWD - ok

11:07:25.0421 0840 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

11:07:25.0468 0840 rspndr - ok

11:07:25.0593 0840 RTL8169 (b8b159fa669c6386a458fcd468ebb1e6) C:\Windows\system32\DRIVERS\Rtlh86.sys

11:07:25.0655 0840 RTL8169 - ok

11:07:25.0796 0840 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

11:07:25.0842 0840 sbp2port - ok

11:07:26.0014 0840 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys

11:07:26.0045 0840 sdbus - ok

11:07:26.0170 0840 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

11:07:26.0264 0840 secdrv - ok

11:07:26.0404 0840 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys

11:07:26.0513 0840 Serenum - ok

11:07:26.0654 0840 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys

11:07:26.0732 0840 Serial - ok

11:07:26.0856 0840 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

11:07:26.0903 0840 sermouse - ok

11:07:27.0044 0840 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\DRIVERS\sffdisk.sys

11:07:27.0106 0840 sffdisk - ok

11:07:27.0231 0840 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys

11:07:27.0278 0840 sffp_mmc - ok

11:07:27.0402 0840 sffp_sd (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\DRIVERS\sffp_sd.sys

11:07:27.0480 0840 sffp_sd - ok

11:07:27.0605 0840 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

11:07:27.0745 0840 sfloppy - ok

11:07:27.0886 0840 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys

11:07:27.0933 0840 sisagp - ok

11:07:28.0073 0840 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys

11:07:28.0089 0840 SiSRaid2 - ok

11:07:28.0229 0840 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys

11:07:28.0276 0840 SiSRaid4 - ok

11:07:28.0432 0840 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys

11:07:28.0525 0840 Smb - ok

11:07:28.0635 0840 SPBBCDrv (cdea9a0a0e547fef4c44ccae35a9b09c) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys

11:07:28.0681 0840 SPBBCDrv - ok

11:07:28.0806 0840 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

11:07:28.0853 0840 spldr - ok

11:07:28.0993 0840 SRTSP (655773f2f1a3730c6cf20280a49f4ee1) C:\Windows\system32\Drivers\SRTSP.SYS

11:07:29.0040 0840 SRTSP - ok

11:07:29.0181 0840 SRTSPL (2a0aaf370d4c6574a34ae2f4a0709cae) C:\Windows\system32\Drivers\SRTSPL.SYS

11:07:29.0243 0840 SRTSPL - ok

11:07:29.0399 0840 SRTSPX (3104bdceace2d5710776dd05e6a286c1) C:\Windows\system32\Drivers\SRTSPX.SYS

11:07:29.0446 0840 SRTSPX - ok

11:07:29.0602 0840 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys

11:07:29.0664 0840 srv - ok

11:07:29.0789 0840 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys

11:07:29.0851 0840 srv2 - ok

11:07:29.0976 0840 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys

11:07:30.0038 0840 srvnet - ok

11:07:30.0179 0840 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys

11:07:30.0241 0840 ssmdrv - ok

11:07:30.0382 0840 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys

11:07:30.0413 0840 swenum - ok

11:07:30.0569 0840 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

11:07:30.0616 0840 Symc8xx - ok

11:07:30.0787 0840 SYMDNS (a16d76baa5d2cbe45c57fa582c1208e5) C:\Windows\System32\Drivers\SYMDNS.SYS

11:07:30.0818 0840 SYMDNS - ok

11:07:30.0974 0840 SymEvent (c5eafb6a8c73fb26b73ee613c1a5aef6) C:\Windows\system32\Drivers\SYMEVENT.SYS

11:07:31.0021 0840 SymEvent - ok

11:07:31.0115 0840 SYMFW (c64d200569a18ea6c676266dee3ac158) C:\Windows\System32\Drivers\SYMFW.SYS

11:07:31.0177 0840 SYMFW - ok

11:07:31.0318 0840 SYMIDS (7764d3d7a3c858f04ced3c1f16410d89) C:\Windows\System32\Drivers\SYMIDS.SYS

11:07:31.0364 0840 SYMIDS - ok

11:07:31.0520 0840 SYMNDISV (d193684004658fe4f3f143ca6dd9ef8b) C:\Windows\System32\Drivers\SYMNDISV.SYS

11:07:31.0567 0840 SYMNDISV - ok

11:07:31.0801 0840 SYMREDRV (829830a3ca1c5e329d68e26c9cd2de8d) C:\Windows\System32\Drivers\SYMREDRV.SYS

11:07:31.0863 0840 SYMREDRV - ok

11:07:31.0957 0840 SYMTDI (b1aa9704124b494c34e8d372e6654196) C:\Windows\System32\Drivers\SYMTDI.SYS

11:07:32.0035 0840 SYMTDI - ok

11:07:32.0113 0840 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

11:07:32.0175 0840 Sym_hi - ok

11:07:32.0300 0840 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

11:07:32.0347 0840 Sym_u3 - ok

11:07:32.0503 0840 SynTP (5efcedcf3daf5c8d9e8b77a34a4eec99) C:\Windows\system32\DRIVERS\SynTP.sys

11:07:32.0550 0840 SynTP - ok

11:07:32.0940 0840 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys

11:07:33.0002 0840 Tcpip - ok

11:07:33.0205 0840 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys

11:07:33.0252 0840 Tcpip6 - ok

11:07:33.0423 0840 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys

11:07:33.0501 0840 tcpipreg - ok

11:07:33.0642 0840 tdcmdpst (1825bceb47bf41c5a9f0e44de82fc27a) C:\Windows\system32\DRIVERS\tdcmdpst.sys

11:07:33.0735 0840 tdcmdpst - ok

11:07:33.0907 0840 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

11:07:33.0985 0840 TDPIPE - ok

11:07:34.0125 0840 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

11:07:34.0219 0840 TDTCP - ok

11:07:34.0359 0840 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys

11:07:34.0422 0840 tdx - ok

11:07:34.0827 0840 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys

11:07:34.0936 0840 TermDD - ok

11:07:35.0124 0840 tifm21 (e4c85c291ddb3dc5e4a2f227ca465ba6) C:\Windows\system32\drivers\tifm21.sys

11:07:35.0186 0840 tifm21 - ok

11:07:35.0404 0840 tosporte (8d624d3bd1f2d78bd1c01a2d4e954b4e) C:\Windows\system32\DRIVERS\tosporte.sys

11:07:35.0451 0840 tosporte - ok

11:07:35.0607 0840 Tosrfcom (e90ace3b4fa7a85f992bc21eb779c407) C:\Windows\system32\Drivers\tosrfcom.sys

11:07:35.0701 0840 Tosrfcom - ok

11:07:35.0841 0840 tosrfec (5c4103544612e5011ef46301b93d1aa6) C:\Windows\system32\DRIVERS\tosrfec.sys

11:07:35.0919 0840 tosrfec - ok

11:07:36.0075 0840 tos_sps32 (1ea5f27c29405bf49799feca77186da9) C:\Windows\system32\DRIVERS\tos_sps32.sys

11:07:36.0169 0840 tos_sps32 - ok

11:07:36.0262 0840 TpChoice - ok

11:07:36.0418 0840 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

11:07:36.0481 0840 tssecsrv - ok

11:07:36.0637 0840 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

11:07:36.0715 0840 tunmp - ok

11:07:36.0871 0840 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys

11:07:36.0933 0840 tunnel - ok

11:07:37.0058 0840 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS

11:07:37.0120 0840 TVALZ - ok

11:07:37.0276 0840 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys

11:07:37.0323 0840 uagp35 - ok

11:07:37.0417 0840 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys

11:07:37.0463 0840 udfs - ok

11:07:37.0604 0840 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys

11:07:37.0651 0840 uliagpkx - ok

11:07:37.0806 0840 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys

11:07:37.0853 0840 uliahci - ok

11:07:37.0994 0840 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

11:07:38.0040 0840 UlSata - ok

11:07:38.0181 0840 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

11:07:38.0212 0840 ulsata2 - ok

11:07:38.0352 0840 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

11:07:38.0430 0840 umbus - ok

11:07:38.0602 0840 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys

11:07:38.0664 0840 usbaudio - ok

11:07:38.0805 0840 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

11:07:38.0883 0840 usbccgp - ok

11:07:39.0023 0840 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

11:07:39.0132 0840 usbcir - ok

11:07:39.0257 0840 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys

11:07:39.0304 0840 usbehci - ok

11:07:39.0351 0840 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys

11:07:39.0429 0840 usbhub - ok

11:07:39.0569 0840 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys

11:07:39.0663 0840 usbohci - ok

11:07:39.0788 0840 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys

11:07:39.0881 0840 usbprint - ok

11:07:40.0115 0840 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS

11:07:40.0162 0840 USBSTOR - ok

11:07:40.0240 0840 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys

11:07:40.0287 0840 usbuhci - ok

11:07:40.0427 0840 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys

11:07:40.0521 0840 usbvideo - ok

11:07:40.0599 0840 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys

11:07:40.0692 0840 vga - ok

11:07:40.0817 0840 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

11:07:40.0911 0840 VgaSave - ok

11:07:41.0035 0840 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys

11:07:41.0098 0840 viaagp - ok

11:07:41.0238 0840 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys

11:07:41.0285 0840 ViaC7 - ok

11:07:41.0425 0840 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys

11:07:41.0457 0840 viaide - ok

11:07:41.0581 0840 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys

11:07:41.0628 0840 volmgr - ok

11:07:41.0784 0840 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys

11:07:41.0862 0840 volmgrx - ok

11:07:42.0002 0840 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys

11:07:42.0034 0840 volsnap - ok

11:07:42.0174 0840 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys

11:07:42.0221 0840 vsmraid - ok

11:07:42.0392 0840 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

11:07:42.0517 0840 WacomPen - ok

11:07:42.0642 0840 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

11:07:42.0704 0840 Wanarp - ok

11:07:42.0720 0840 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

11:07:42.0736 0840 Wanarpv6 - ok

11:07:42.0892 0840 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys

11:07:42.0907 0840 Wd - ok

11:07:43.0048 0840 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys

11:07:43.0172 0840 Wdf01000 - ok

11:07:43.0391 0840 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys

11:07:43.0438 0840 WmiAcpi - ok

11:07:43.0578 0840 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

11:07:43.0672 0840 ws2ifsl - ok

11:07:43.0828 0840 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

11:07:43.0890 0840 WUDFRd - ok

11:07:43.0952 0840 MBR (0x1B8) (b5d3b89509933463264ff7748b075c37) \Device\Harddisk0\DR0

11:07:43.0968 0840 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - infected

11:07:43.0968 0840 \Device\Harddisk0\DR0 - detected Rootkit.Boot.Pihar.b (0)

11:07:44.0046 0840 \Device\Harddisk0\DR0 ( TDSS File System ) - warning

11:07:44.0046 0840 \Device\Harddisk0\DR0 - detected TDSS File System (1)

11:07:44.0093 0840 Boot (0x1200) (bcaf97a13b1d31bc3778ca91dc7dfa31) \Device\Harddisk0\DR0\Partition0

11:07:44.0093 0840 \Device\Harddisk0\DR0\Partition0 - ok

11:07:44.0093 0840 ============================================================

11:07:44.0093 0840 Scan finished

11:07:44.0093 0840 ============================================================

11:07:44.0108 4896 Detected object count: 4

11:07:44.0108 4896 Actual detected object count: 4

11:08:38.0141 4896 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user

11:08:38.0141 4896 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip

11:08:38.0141 4896 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user

11:08:38.0141 4896 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip

11:08:38.0188 4896 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - will be cured on reboot

11:08:38.0188 4896 \Device\Harddisk0\DR0 - ok

11:08:38.0188 4896 \Device\Harddisk0\DR0 ( Rootkit.Boot.Pihar.b ) - User select action: Cure

11:08:38.0188 4896 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user

11:08:38.0188 4896 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

11:08:41.0168 6076 Deinitialize success

Link to post
Share on other sites

Looks like it is

11:35:07.0377 3176 TDSS rootkit removing tool 2.7.7.0 Jan 24 2012 16:44:27

11:35:07.0861 3176 ============================================================

11:35:07.0861 3176 Current date / time: 2012/01/28 11:35:07.0861

11:35:07.0861 3176 SystemInfo:

11:35:07.0861 3176

11:35:07.0861 3176 OS Version: 6.0.6002 ServicePack: 2.0

11:35:07.0861 3176 Product type: Workstation

11:35:07.0861 3176 ComputerName: CHERILYN-PC

11:35:07.0861 3176 UserName: Cherilyn

11:35:07.0861 3176 Windows directory: C:\Windows

11:35:07.0861 3176 System windows directory: C:\Windows

11:35:07.0861 3176 Processor architecture: Intel x86

11:35:07.0861 3176 Number of processors: 1

11:35:07.0861 3176 Page size: 0x1000

11:35:07.0861 3176 Boot type: Normal boot

11:35:07.0861 3176 ============================================================

11:35:09.0124 3176 Drive \Device\Harddisk0\DR0 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

11:35:09.0171 3176 Initialize success

11:35:17.0455 1412 ============================================================

11:35:17.0455 1412 Scan started

11:35:17.0455 1412 Mode: Manual; SigCheck; TDLFS;

11:35:17.0455 1412 ============================================================

11:35:18.0281 1412 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys

11:35:18.0437 1412 ACPI - ok

11:35:18.0515 1412 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys

11:35:18.0562 1412 adp94xx - ok

11:35:18.0687 1412 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys

11:35:18.0718 1412 adpahci - ok

11:35:18.0749 1412 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys

11:35:18.0781 1412 adpu160m - ok

11:35:18.0827 1412 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys

11:35:18.0859 1412 adpu320 - ok

11:35:18.0999 1412 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys

11:35:19.0061 1412 AFD - ok

11:35:19.0233 1412 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys

11:35:19.0280 1412 AgereSoftModem - ok

11:35:19.0405 1412 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys

11:35:19.0420 1412 agp440 - ok

11:35:19.0483 1412 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

11:35:19.0498 1412 aic78xx - ok

11:35:19.0545 1412 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys

11:35:19.0545 1412 aliide - ok

11:35:19.0592 1412 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys

11:35:19.0623 1412 amdagp - ok

11:35:19.0717 1412 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys

11:35:19.0732 1412 amdide - ok

11:35:19.0795 1412 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys

11:35:19.0857 1412 AmdK7 - ok

11:35:19.0951 1412 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys

11:35:20.0013 1412 AmdK8 - ok

11:35:20.0153 1412 ApfiltrService (7c2f57bce81fa74933f0e1c84a97c9db) C:\Windows\system32\DRIVERS\Apfiltr.sys

11:35:20.0231 1412 ApfiltrService - ok

11:35:20.0356 1412 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys

11:35:20.0387 1412 arc - ok

11:35:20.0465 1412 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys

11:35:20.0481 1412 arcsas - ok

11:35:20.0543 1412 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

11:35:20.0621 1412 AsyncMac - ok

11:35:20.0715 1412 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys

11:35:20.0731 1412 atapi - ok

11:35:20.0824 1412 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys

11:35:20.0871 1412 athr - ok

11:35:21.0043 1412 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys

11:35:21.0121 1412 avgntflt - ok

11:35:21.0339 1412 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys

11:35:21.0370 1412 avipbb - ok

11:35:21.0464 1412 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

11:35:21.0526 1412 Beep - ok

11:35:21.0667 1412 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys

11:35:21.0713 1412 blbdrive - ok

11:35:21.0854 1412 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys

11:35:21.0901 1412 bowser - ok

11:35:22.0041 1412 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

11:35:22.0057 1412 BrFiltLo - ok

11:35:22.0181 1412 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

11:35:22.0244 1412 BrFiltUp - ok

11:35:22.0400 1412 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

11:35:22.0493 1412 Brserid - ok

11:35:22.0618 1412 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

11:35:22.0712 1412 BrSerWdm - ok

11:35:22.0759 1412 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

11:35:22.0837 1412 BrUsbMdm - ok

11:35:22.0961 1412 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

11:35:23.0024 1412 BrUsbSer - ok

11:35:23.0164 1412 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

11:35:23.0242 1412 BTHMODEM - ok

11:35:23.0429 1412 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

11:35:23.0476 1412 cdfs - ok

11:35:23.0601 1412 Cdr4_xp (bf79e659c506674c0497cc9c61f1a165) C:\Windows\system32\drivers\Cdr4_xp.sys

11:35:23.0617 1412 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning

11:35:23.0617 1412 Cdr4_xp - detected UnsignedFile.Multi.Generic (1)

11:35:23.0757 1412 Cdralw2k (2c41cd49d82d5fd85c72d57b6ca25471) C:\Windows\system32\drivers\Cdralw2k.sys

11:35:23.0804 1412 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning

11:35:23.0804 1412 Cdralw2k - detected UnsignedFile.Multi.Generic (1)

11:35:23.0944 1412 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys

11:35:23.0991 1412 cdrom - ok

11:35:24.0116 1412 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys

11:35:24.0163 1412 circlass - ok

11:35:24.0272 1412 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys

11:35:24.0303 1412 CLFS - ok

11:35:24.0412 1412 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys

11:35:24.0459 1412 CmBatt - ok

11:35:24.0599 1412 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys

11:35:24.0631 1412 cmdide - ok

11:35:24.0755 1412 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys

11:35:24.0771 1412 Compbatt - ok

11:35:24.0943 1412 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys

11:35:24.0958 1412 crcdisk - ok

11:35:25.0099 1412 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys

11:35:25.0145 1412 Crusoe - ok

11:35:25.0286 1412 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys

11:35:25.0333 1412 DfsC - ok

11:35:25.0520 1412 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys

11:35:25.0535 1412 disk - ok

11:35:25.0707 1412 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

11:35:25.0769 1412 drmkaud - ok

11:35:25.0925 1412 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys

11:35:25.0957 1412 DXGKrnl - ok

11:35:26.0097 1412 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys

11:35:26.0159 1412 E1G60 - ok

11:35:26.0315 1412 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys

11:35:26.0331 1412 Ecache - ok

11:35:26.0440 1412 eeCtrl (47ce4e650d91dc095a2fddb15631a78a) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys

11:35:26.0487 1412 eeCtrl - ok

11:35:26.0643 1412 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys

11:35:26.0674 1412 elxstor - ok

11:35:26.0830 1412 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys

11:35:26.0877 1412 ErrDev - ok

11:35:27.0049 1412 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys

11:35:27.0095 1412 exfat - ok

11:35:27.0251 1412 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys

11:35:27.0298 1412 fastfat - ok

11:35:27.0470 1412 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys

11:35:27.0517 1412 fdc - ok

11:35:27.0657 1412 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

11:35:27.0673 1412 FileInfo - ok

11:35:27.0797 1412 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

11:35:27.0844 1412 Filetrace - ok

11:35:27.0985 1412 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys

11:35:28.0063 1412 flpydisk - ok

11:35:28.0187 1412 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys

11:35:28.0219 1412 FltMgr - ok

11:35:28.0406 1412 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

11:35:28.0437 1412 Fs_Rec - ok

11:35:28.0577 1412 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys

11:35:28.0593 1412 gagp30kx - ok

11:35:28.0749 1412 GEARAspiWDM (4ac51459805264affd5f6fdfb9d9235f) C:\Windows\system32\Drivers\GEARAspiWDM.sys

11:35:28.0765 1412 GEARAspiWDM - ok

11:35:28.0967 1412 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

11:35:29.0061 1412 HdAudAddService - ok

11:35:29.0186 1412 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys

11:35:29.0264 1412 HDAudBus - ok

11:35:29.0404 1412 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

11:35:29.0482 1412 HidBth - ok

11:35:29.0607 1412 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

11:35:29.0701 1412 HidIr - ok

11:35:29.0857 1412 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys

11:35:29.0903 1412 HidUsb - ok

11:35:30.0044 1412 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys

11:35:30.0059 1412 HpCISSs - ok

11:35:30.0200 1412 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys

11:35:30.0247 1412 HTTP - ok

11:35:30.0387 1412 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys

11:35:30.0403 1412 i2omp - ok

11:35:30.0543 1412 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys

11:35:30.0574 1412 iaStorV - ok

11:35:30.0683 1412 IDSvix86 (f49b22e2cc15de6e752fc8cb24eb7069) C:\PROGRA~2\Symantec\DEFINI~1\SymcData\idsdefs\20080911.001\IDSvix86.sys

11:35:30.0699 1412 IDSvix86 - ok

11:35:30.0886 1412 igfx (038815297078d236d8cc064c295a74c6) C:\Windows\system32\DRIVERS\igdkmd32.sys

11:35:31.0058 1412 igfx - ok

11:35:31.0183 1412 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

11:35:31.0198 1412 iirsp - ok

11:35:31.0401 1412 IntcAzAudAddService (8a4341616976e47712b60f18c7049dcc) C:\Windows\system32\drivers\RTKVHDA.sys

11:35:31.0479 1412 IntcAzAudAddService - ok

11:35:31.0635 1412 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys

11:35:31.0651 1412 intelide - ok

11:35:31.0791 1412 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys

11:35:31.0838 1412 intelppm - ok

11:35:31.0963 1412 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

11:35:32.0009 1412 IpFilterDriver - ok

11:35:32.0119 1412 IpInIp - ok

11:35:32.0228 1412 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys

11:35:32.0275 1412 IPMIDRV - ok

11:35:32.0321 1412 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

11:35:32.0353 1412 IPNAT - ok

11:35:32.0399 1412 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

11:35:32.0446 1412 IRENUM - ok

11:35:32.0571 1412 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys

11:35:32.0571 1412 isapnp - ok

11:35:32.0711 1412 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys

11:35:32.0727 1412 iScsiPrt - ok

11:35:32.0852 1412 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

11:35:32.0852 1412 iteatapi - ok

11:35:32.0977 1412 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

11:35:32.0992 1412 iteraid - ok

11:35:33.0148 1412 jswpslwf (7e72514a3a1c5a9f3bff0660b3866c2b) C:\Windows\system32\DRIVERS\jswpslwf.sys

11:35:33.0179 1412 jswpslwf - ok

11:35:33.0320 1412 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

11:35:33.0335 1412 kbdclass - ok

11:35:33.0476 1412 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys

11:35:33.0523 1412 kbdhid - ok

11:35:33.0663 1412 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys

11:35:33.0694 1412 KR10I - ok

11:35:33.0835 1412 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys

11:35:33.0866 1412 KR10N - ok

11:35:34.0006 1412 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys

11:35:34.0037 1412 KSecDD - ok

11:35:34.0225 1412 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

11:35:34.0271 1412 lltdio - ok

11:35:34.0427 1412 LPCFilter (515fc18cabee0158a324b08b1c2667cf) C:\Windows\system32\DRIVERS\LPCFilter.sys

11:35:34.0474 1412 LPCFilter - ok

11:35:34.0615 1412 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys

11:35:34.0646 1412 LSI_FC - ok

11:35:34.0771 1412 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys

11:35:34.0786 1412 LSI_SAS - ok

11:35:34.0895 1412 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys

11:35:34.0911 1412 LSI_SCSI - ok

11:35:35.0036 1412 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

11:35:35.0067 1412 luafv - ok

11:35:35.0395 1412 LVUVC (a240e42a7402e927a71b6e8aa4629b13) C:\Windows\system32\DRIVERS\lvuvc.sys

11:35:35.0847 1412 LVUVC - ok

11:35:36.0003 1412 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys

11:35:36.0034 1412 MBAMProtector - ok

11:35:36.0159 1412 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys

11:35:36.0175 1412 megasas - ok

11:35:36.0299 1412 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys

11:35:36.0331 1412 MegaSR - ok

11:35:36.0393 1412 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

11:35:36.0440 1412 Modem - ok

11:35:36.0549 1412 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

11:35:36.0580 1412 monitor - ok

11:35:36.0705 1412 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

11:35:36.0721 1412 mouclass - ok

11:35:36.0752 1412 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys

11:35:36.0783 1412 mouhid - ok

11:35:36.0814 1412 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

11:35:36.0845 1412 MountMgr - ok

11:35:36.0986 1412 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys

11:35:37.0017 1412 mpio - ok

11:35:37.0142 1412 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

11:35:37.0189 1412 mpsdrv - ok

11:35:37.0329 1412 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

11:35:37.0345 1412 Mraid35x - ok

11:35:37.0485 1412 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys

11:35:37.0532 1412 MRxDAV - ok

11:35:37.0657 1412 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys

11:35:37.0688 1412 mrxsmb - ok

11:35:37.0828 1412 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys

11:35:37.0859 1412 mrxsmb10 - ok

11:35:37.0984 1412 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

11:35:38.0015 1412 mrxsmb20 - ok

11:35:38.0140 1412 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys

11:35:38.0156 1412 msahci - ok

11:35:38.0265 1412 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys

11:35:38.0281 1412 msdsm - ok

11:35:38.0452 1412 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

11:35:38.0499 1412 Msfs - ok

11:35:38.0608 1412 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys

11:35:38.0624 1412 msisadrv - ok

11:35:38.0764 1412 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

11:35:38.0795 1412 MSKSSRV - ok

11:35:38.0951 1412 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

11:35:38.0983 1412 MSPCLOCK - ok

11:35:39.0107 1412 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

11:35:39.0154 1412 MSPQM - ok

11:35:39.0295 1412 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys

11:35:39.0326 1412 MsRPC - ok

11:35:39.0451 1412 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys

11:35:39.0466 1412 mssmbios - ok

11:35:39.0575 1412 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

11:35:39.0607 1412 MSTEE - ok

11:35:39.0747 1412 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys

11:35:39.0763 1412 Mup - ok

11:35:39.0887 1412 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys

11:35:39.0934 1412 NativeWifiP - ok

11:35:40.0028 1412 NAVENG (d8f9e712479f2f8dc8c3524a62365f95) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20080916.003\NAVENG.SYS

11:35:40.0043 1412 NAVENG - ok

11:35:40.0121 1412 NAVEX15 (0b127bbe41300dede016e86e47329cdd) C:\PROGRA~2\Symantec\DEFINI~1\VIRUSD~1\20080916.003\NAVEX15.SYS

11:35:40.0168 1412 NAVEX15 - ok

11:35:40.0324 1412 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys

11:35:40.0355 1412 NDIS - ok

11:35:40.0480 1412 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

11:35:40.0511 1412 NdisTapi - ok

11:35:40.0652 1412 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

11:35:40.0683 1412 Ndisuio - ok

11:35:40.0823 1412 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys

11:35:40.0886 1412 NdisWan - ok

11:35:41.0011 1412 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

11:35:41.0057 1412 NDProxy - ok

11:35:41.0182 1412 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

11:35:41.0213 1412 NetBIOS - ok

11:35:41.0354 1412 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys

11:35:41.0401 1412 netbt - ok

11:35:41.0603 1412 NETw3v32 (35d5458d9a1b26b2005abffbf4c1c5e7) C:\Windows\system32\DRIVERS\NETw3v32.sys

11:35:41.0822 1412 NETw3v32 - ok

11:35:41.0947 1412 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

11:35:41.0962 1412 nfrd960 - ok

11:35:42.0103 1412 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys

11:35:42.0134 1412 Npfs - ok

11:35:42.0259 1412 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

11:35:42.0305 1412 nsiproxy - ok

11:35:42.0477 1412 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys

11:35:42.0539 1412 Ntfs - ok

11:35:42.0664 1412 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

11:35:42.0727 1412 ntrigdigi - ok

11:35:42.0851 1412 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

11:35:42.0898 1412 Null - ok

11:35:43.0023 1412 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys

11:35:43.0054 1412 nvraid - ok

11:35:43.0179 1412 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys

11:35:43.0210 1412 nvstor - ok

11:35:43.0335 1412 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys

11:35:43.0351 1412 nv_agp - ok

11:35:43.0460 1412 NwlnkFlt - ok

11:35:43.0553 1412 NwlnkFwd - ok

11:35:43.0694 1412 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys

11:35:43.0741 1412 ohci1394 - ok

11:35:43.0912 1412 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys

11:35:43.0975 1412 Parport - ok

11:35:44.0115 1412 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys

11:35:44.0131 1412 partmgr - ok

11:35:44.0240 1412 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys

11:35:44.0318 1412 Parvdm - ok

11:35:44.0443 1412 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys

11:35:44.0458 1412 pci - ok

11:35:44.0583 1412 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys

11:35:44.0599 1412 pciide - ok

11:35:44.0755 1412 pcmcia (3bb2244f343b610c29c98035504c9b75) C:\Windows\system32\DRIVERS\pcmcia.sys

11:35:44.0770 1412 pcmcia - ok

11:35:44.0926 1412 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

11:35:45.0035 1412 PEAUTH - ok

11:35:45.0223 1412 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

11:35:45.0269 1412 PptpMiniport - ok

11:35:45.0394 1412 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys

11:35:45.0441 1412 Processor - ok

11:35:45.0581 1412 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys

11:35:45.0628 1412 PSched - ok

11:35:45.0753 1412 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\Windows\system32\Drivers\PxHelp20.sys

11:35:45.0769 1412 PxHelp20 - ok

11:35:45.0909 1412 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys

11:35:45.0956 1412 ql2300 - ok

11:35:46.0143 1412 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

11:35:46.0159 1412 ql40xx - ok

11:35:46.0330 1412 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

11:35:46.0377 1412 QWAVEdrv - ok

11:35:46.0517 1412 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

11:35:46.0564 1412 RasAcd - ok

11:35:46.0705 1412 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

11:35:46.0751 1412 Rasl2tp - ok

11:35:46.0876 1412 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys

11:35:46.0923 1412 RasPppoe - ok

11:35:46.0954 1412 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys

11:35:47.0001 1412 RasSstp - ok

11:35:47.0141 1412 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys

11:35:47.0173 1412 rdbss - ok

11:35:47.0329 1412 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

11:35:47.0391 1412 RDPCDD - ok

11:35:47.0547 1412 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys

11:35:47.0578 1412 rdpdr - ok

11:35:47.0719 1412 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

11:35:47.0765 1412 RDPENCDD - ok

11:35:47.0906 1412 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys

11:35:47.0937 1412 RDPWD - ok

11:35:48.0140 1412 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

11:35:48.0171 1412 rspndr - ok

11:35:48.0249 1412 RTL8169 (b8b159fa669c6386a458fcd468ebb1e6) C:\Windows\system32\DRIVERS\Rtlh86.sys

11:35:48.0280 1412 RTL8169 - ok

11:35:48.0421 1412 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

11:35:48.0452 1412 sbp2port - ok

11:35:48.0623 1412 sdbus (8f36b54688c31eed4580129040c6a3d3) C:\Windows\system32\DRIVERS\sdbus.sys

11:35:48.0655 1412 sdbus - ok

11:35:48.0779 1412 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

11:35:48.0842 1412 secdrv - ok

11:35:48.0998 1412 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys

11:35:49.0060 1412 Serenum - ok

11:35:49.0232 1412 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys

11:35:49.0310 1412 Serial - ok

11:35:49.0435 1412 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

11:35:49.0481 1412 sermouse - ok

11:35:49.0622 1412 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\DRIVERS\sffdisk.sys

11:35:49.0653 1412 sffdisk - ok

11:35:49.0778 1412 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys

11:35:49.0825 1412 sffp_mmc - ok

11:35:49.0949 1412 sffp_sd (9f66a46c55d6f1ccabc79bb7afccc545) C:\Windows\system32\DRIVERS\sffp_sd.sys

11:35:49.0996 1412 sffp_sd - ok

11:35:50.0137 1412 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

11:35:50.0215 1412 sfloppy - ok

11:35:50.0355 1412 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys

11:35:50.0371 1412 sisagp - ok

11:35:50.0495 1412 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys

11:35:50.0511 1412 SiSRaid2 - ok

11:35:50.0651 1412 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys

11:35:50.0667 1412 SiSRaid4 - ok

11:35:50.0839 1412 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys

11:35:50.0870 1412 Smb - ok

11:35:50.0995 1412 SPBBCDrv (cdea9a0a0e547fef4c44ccae35a9b09c) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys

11:35:51.0026 1412 SPBBCDrv - ok

11:35:51.0182 1412 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

11:35:51.0213 1412 spldr - ok

11:35:51.0353 1412 SRTSP (655773f2f1a3730c6cf20280a49f4ee1) C:\Windows\system32\Drivers\SRTSP.SYS

11:35:51.0385 1412 SRTSP - ok

11:35:51.0525 1412 SRTSPL (2a0aaf370d4c6574a34ae2f4a0709cae) C:\Windows\system32\Drivers\SRTSPL.SYS

11:35:51.0556 1412 SRTSPL - ok

11:35:51.0681 1412 SRTSPX (3104bdceace2d5710776dd05e6a286c1) C:\Windows\system32\Drivers\SRTSPX.SYS

11:35:51.0712 1412 SRTSPX - ok

11:35:51.0853 1412 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys

11:35:51.0884 1412 srv - ok

11:35:52.0024 1412 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys

11:35:52.0055 1412 srv2 - ok

11:35:52.0180 1412 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys

11:35:52.0227 1412 srvnet - ok

11:35:52.0367 1412 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys

11:35:52.0383 1412 ssmdrv - ok

11:35:52.0539 1412 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys

11:35:52.0555 1412 swenum - ok

11:35:52.0695 1412 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

11:35:52.0711 1412 Symc8xx - ok

11:35:52.0867 1412 SYMDNS (a16d76baa5d2cbe45c57fa582c1208e5) C:\Windows\System32\Drivers\SYMDNS.SYS

11:35:52.0882 1412 SYMDNS - ok

11:35:53.0023 1412 SymEvent (c5eafb6a8c73fb26b73ee613c1a5aef6) C:\Windows\system32\Drivers\SYMEVENT.SYS

11:35:53.0038 1412 SymEvent - ok

11:35:53.0179 1412 SYMFW (c64d200569a18ea6c676266dee3ac158) C:\Windows\System32\Drivers\SYMFW.SYS

11:35:53.0210 1412 SYMFW - ok

11:35:53.0350 1412 SYMIDS (7764d3d7a3c858f04ced3c1f16410d89) C:\Windows\System32\Drivers\SYMIDS.SYS

11:35:53.0366 1412 SYMIDS - ok

11:35:53.0506 1412 SYMNDISV (d193684004658fe4f3f143ca6dd9ef8b) C:\Windows\System32\Drivers\SYMNDISV.SYS

11:35:53.0522 1412 SYMNDISV - ok

11:35:53.0647 1412 SYMREDRV (829830a3ca1c5e329d68e26c9cd2de8d) C:\Windows\System32\Drivers\SYMREDRV.SYS

11:35:53.0662 1412 SYMREDRV - ok

11:35:53.0803 1412 SYMTDI (b1aa9704124b494c34e8d372e6654196) C:\Windows\System32\Drivers\SYMTDI.SYS

11:35:53.0818 1412 SYMTDI - ok

11:35:53.0959 1412 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

11:35:53.0974 1412 Sym_hi - ok

11:35:54.0083 1412 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

11:35:54.0115 1412 Sym_u3 - ok

11:35:54.0239 1412 SynTP (5efcedcf3daf5c8d9e8b77a34a4eec99) C:\Windows\system32\DRIVERS\SynTP.sys

11:35:54.0271 1412 SynTP - ok

11:35:54.0458 1412 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys

11:35:54.0520 1412 Tcpip - ok

11:35:54.0707 1412 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys

11:35:54.0754 1412 Tcpip6 - ok

11:35:54.0895 1412 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys

11:35:54.0941 1412 tcpipreg - ok

11:35:55.0066 1412 tdcmdpst (1825bceb47bf41c5a9f0e44de82fc27a) C:\Windows\system32\DRIVERS\tdcmdpst.sys

11:35:55.0097 1412 tdcmdpst - ok

11:35:55.0222 1412 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

11:35:55.0269 1412 TDPIPE - ok

11:35:55.0409 1412 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

11:35:55.0472 1412 TDTCP - ok

11:35:55.0597 1412 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys

11:35:55.0643 1412 tdx - ok

11:35:55.0784 1412 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys

11:35:55.0815 1412 TermDD - ok

11:35:55.0971 1412 tifm21 (e4c85c291ddb3dc5e4a2f227ca465ba6) C:\Windows\system32\drivers\tifm21.sys

11:35:56.0002 1412 tifm21 - ok

11:35:56.0205 1412 tosporte (8d624d3bd1f2d78bd1c01a2d4e954b4e) C:\Windows\system32\DRIVERS\tosporte.sys

11:35:56.0267 1412 tosporte - ok

11:35:56.0408 1412 Tosrfcom (e90ace3b4fa7a85f992bc21eb779c407) C:\Windows\system32\Drivers\tosrfcom.sys

11:35:56.0455 1412 Tosrfcom - ok

11:35:56.0579 1412 tosrfec (5c4103544612e5011ef46301b93d1aa6) C:\Windows\system32\DRIVERS\tosrfec.sys

11:35:56.0626 1412 tosrfec - ok

11:35:56.0767 1412 tos_sps32 (1ea5f27c29405bf49799feca77186da9) C:\Windows\system32\DRIVERS\tos_sps32.sys

11:35:56.0798 1412 tos_sps32 - ok

11:35:56.0891 1412 TpChoice - ok

11:35:57.0032 1412 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

11:35:57.0079 1412 tssecsrv - ok

11:35:57.0219 1412 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

11:35:57.0250 1412 tunmp - ok

11:35:57.0375 1412 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys

11:35:57.0406 1412 tunnel - ok

11:35:57.0547 1412 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS

11:35:57.0562 1412 TVALZ - ok

11:35:57.0656 1412 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys

11:35:57.0671 1412 uagp35 - ok

11:35:57.0749 1412 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys

11:35:57.0781 1412 udfs - ok

11:35:57.0921 1412 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys

11:35:57.0952 1412 uliagpkx - ok

11:35:58.0077 1412 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys

11:35:58.0108 1412 uliahci - ok

11:35:58.0155 1412 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

11:35:58.0171 1412 UlSata - ok

11:35:58.0233 1412 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

11:35:58.0264 1412 ulsata2 - ok

11:35:58.0342 1412 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

11:35:58.0436 1412 umbus - ok

11:35:58.0592 1412 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys

11:35:58.0623 1412 usbaudio - ok

11:35:58.0732 1412 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

11:35:58.0763 1412 usbccgp - ok

11:35:58.0826 1412 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

11:35:58.0919 1412 usbcir - ok

11:35:59.0044 1412 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys

11:35:59.0091 1412 usbehci - ok

11:35:59.0231 1412 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys

11:35:59.0294 1412 usbhub - ok

11:35:59.0419 1412 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys

11:35:59.0481 1412 usbohci - ok

11:35:59.0606 1412 usbprint (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys

11:35:59.0653 1412 usbprint - ok

11:35:59.0777 1412 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS

11:35:59.0824 1412 USBSTOR - ok

11:35:59.0949 1412 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys

11:36:00.0011 1412 usbuhci - ok

11:36:00.0167 1412 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys

11:36:00.0230 1412 usbvideo - ok

11:36:00.0370 1412 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys

11:36:00.0417 1412 vga - ok

11:36:00.0542 1412 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

11:36:00.0589 1412 VgaSave - ok

11:36:00.0713 1412 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys

11:36:00.0729 1412 viaagp - ok

11:36:00.0869 1412 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys

11:36:00.0932 1412 ViaC7 - ok

11:36:01.0072 1412 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys

11:36:01.0088 1412 viaide - ok

11:36:01.0197 1412 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys

11:36:01.0213 1412 volmgr - ok

11:36:01.0400 1412 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys

11:36:01.0431 1412 volmgrx - ok

11:36:01.0571 1412 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys

11:36:01.0603 1412 volsnap - ok

11:36:01.0743 1412 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys

11:36:01.0759 1412 vsmraid - ok

11:36:01.0915 1412 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

11:36:01.0993 1412 WacomPen - ok

11:36:02.0102 1412 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

11:36:02.0133 1412 Wanarp - ok

11:36:02.0149 1412 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

11:36:02.0195 1412 Wanarpv6 - ok

11:36:02.0242 1412 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys

11:36:02.0258 1412 Wd - ok

11:36:02.0320 1412 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys

11:36:02.0367 1412 Wdf01000 - ok

11:36:02.0539 1412 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys

11:36:02.0570 1412 WmiAcpi - ok

11:36:02.0648 1412 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

11:36:02.0710 1412 ws2ifsl - ok

11:36:02.0835 1412 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

11:36:02.0897 1412 WUDFRd - ok

11:36:02.0960 1412 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0

11:36:03.0100 1412 \Device\Harddisk0\DR0 ( TDSS File System ) - warning

11:36:03.0100 1412 \Device\Harddisk0\DR0 - detected TDSS File System (1)

11:36:03.0116 1412 Boot (0x1200) (bcaf97a13b1d31bc3778ca91dc7dfa31) \Device\Harddisk0\DR0\Partition0

11:36:03.0116 1412 \Device\Harddisk0\DR0\Partition0 - ok

11:36:03.0116 1412 ============================================================

11:36:03.0116 1412 Scan finished

11:36:03.0116 1412 ============================================================

11:36:03.0147 3656 Detected object count: 3

11:36:03.0147 3656 Actual detected object count: 3

11:36:30.0104 3656 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user

11:36:30.0104 3656 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip

11:36:30.0104 3656 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user

11:36:30.0104 3656 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip

11:36:30.0104 3656 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user

11:36:30.0104 3656 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip

11:36:40.0759 3000 Deinitialize success

Link to post
Share on other sites

Both of them say that "Windows cannot start this hardware device because its configuration information (in the registry) is incomplete or damaged. (Code 19)" I clicked the 'Check for Solutions' button and nothing came up. I also tried to update the driver but it says the laptop already has the most up to date driver installed.

Link to post
Share on other sites

I had someone another forum with the exact same problem and it was a Toshiba.

I was never able to resolve the problem.

You don't have any system restore points and I don't see any registry back-ups.

There's no way I can reconstruct the registry entries or determine which ones are missing.

You might want to contact Toshiba and see if they could help.

For now you can use a usb keyboard and mouse.

Let me know, MrC

Link to post
Share on other sites

Glad we could help. :)

If you need this topic reopened, please send a Private Message to any one of the moderating team members. Please include a link to this thread with your request. This applies only to the originator of this thread.

Other members who need assistance please start your own topic in a new thread. Thanks!

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.