Jump to content

Getting redirected - URL:Mal from svchost.exe


Recommended Posts

I'm getting redirected very frequently when clicking on links (i.e. from googles search results), to shady sites. My AV (avast!) tells me a few times (but most of the times it doesn't complain) that there is some typ of URL:Mal from svchost.exe.

I've read about others having similar problems with getting redirected and it being related to svchost.exe.

Can some kind soul help me solve this annoying problem? Awaiting orders! ;)

Thanks in advance!

Link to post
Share on other sites

Hello skatalite and :welcome:! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

  • If you are a paying customer, you have the privilege to contact the help desk at support@malwarebytes.org or here (http://helpdesk.malwarebytes.org/home). If you choose this option to get help, please let me know.
  • I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
  • Make sure you read all of the instructions and fixes thoroughly before continuing with them.
  • Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
  • Post your log files, don't attach them. Every log file should be copy/pasted in your next reply.

Step 1

Download the latest version of TDSSKiller from here and save it to your Desktop.

  1. Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
    tdss_1.jpg
  2. Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.
    tdss_2.jpg
  3. Click the Start Scan button.
    tdss_3.jpg
  4. If a suspicious object is detected, the default action will be Skip, click on Continue.
    tdss_4.jpg
  5. If malicious objects are found, they will show in the Scan results and offer three (3) options.
  6. Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
    tdss_5.jpg
  7. Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.

Step 2

Please visit this webpage for download links, and instructions for running the tool:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Please include the C:\ComboFix.txt in your next reply for further review.

In your next post, please include:

  • TDSSKiller log
  • ComboFix log

Link to post
Share on other sites

Hi, and thanks for helping me!

I am a non-paying costumer, so I will stick to your instructions here.

I have downloaded TDSSkiller.exe from the given link and saved the file to my desktop. When I doubleclick it, a window pops up asking for my permission to run (normal stuff), then nothing happens... What to do? :(

Link to post
Share on other sites

Followed instructions, downloaded, installed, and so on for step 2, but ComboFix froze at the part where it scans for infected files and it says that it will take about 10 minutes. I had it running for an hour before I took the decision to power-nuke my computer.

Link to post
Share on other sites

Depending on how badly your system is infected, ComboFix may take longer to complete its routine than it normally does. However, there are circumstances ComboFix will hang or stall at various stages due to malware interference. Did you disable your AV protection?

Link to post
Share on other sites

By miracle my computer gave birth! Here is one of the logs...

ComboFix 12-02-22.01 - Uffe 2012-02-23 17:43:25.1.2 - x86

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.46.1053.18.2047.1297 [GMT 1:00]

Körs från: c:\users\Uffe\Desktop\ComboFix.exe

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

.

((((((((((((((((((((((((((((((((((((((( Andra raderingar ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

C:\install.exe

c:\programdata\WQacN7FjcE9xAt

C:\readme.txt

c:\windows\system32\SET15B4.tmp

c:\windows\system32\SET231F.tmp

L:\Autorun.inf

.

.

(((((((((((((((((((((((( Filer skapade från 2012-01-23 till 2012-02-23 ))))))))))))))))))))))))))))))

.

.

2012-02-23 17:18 . 2012-02-23 17:20 -------- d-----w- c:\users\Uffe\AppData\Local\temp

2012-02-23 17:18 . 2012-02-23 17:18 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-02-23 13:36 . 2012-02-23 13:36 -------- d-sh--w- c:\programdata\DSS

2012-02-23 10:14 . 2012-02-23 10:14 -------- d-----w- c:\programdata\Electronic Arts

2012-02-23 10:14 . 2012-02-23 10:14 -------- d-----w- c:\programdata\EA Core

2012-02-21 17:19 . 2012-02-21 17:19 388096 ----a-r- c:\users\Uffe\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2012-02-21 17:19 . 2012-02-21 17:19 -------- d-----w- c:\program files\Trend Micro

2012-02-21 17:10 . 2012-02-21 17:10 -------- d-----w- c:\users\Uffe\AppData\Roaming\Malwarebytes

2012-02-21 17:09 . 2012-02-21 17:09 -------- d-----w- c:\programdata\Malwarebytes

2012-02-21 16:52 . 2012-02-21 16:52 378640 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll

2012-02-21 10:44 . 2011-12-14 02:56 1427456 ----a-w- c:\windows\system32\inetcpl.cpl

2012-02-21 10:04 . 2012-02-08 06:03 6552120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{C1E29046-358F-4925-A894-0E259A0F039A}\mpengine.dll

2012-02-18 16:50 . 2012-02-18 16:50 -------- d-----w- c:\program files\GOG.com

2012-02-16 20:15 . 2012-02-16 20:15 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys

2012-02-16 20:09 . 2012-02-16 20:10 -------- d-----w- c:\windows\4E0C6314A8B84026AC15084E8B63AFB5.TMP

2012-02-16 17:37 . 2012-02-23 16:31 -------- d-----w- c:\programdata\Lavasoft

2012-02-16 17:03 . 2012-02-16 20:10 -------- d-----w- C:\sh4ldr

2012-02-16 17:03 . 2012-02-16 17:03 -------- d-----w- c:\program files\Enigma Software Group

2012-02-16 17:02 . 2012-02-16 17:02 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard

2012-02-15 17:56 . 2012-02-15 17:57 -------- d-----w- C:\DOTT.CD

2012-02-15 14:55 . 2012-02-23 16:34 -------- d-----w- c:\programdata\AVAST Software

2012-02-15 14:55 . 2012-02-15 14:55 -------- d-----w- c:\program files\AVAST Software

2012-02-15 14:52 . 2011-12-14 16:17 680448 ----a-w- c:\windows\system32\msvcrt.dll

2012-02-15 14:52 . 2012-01-12 19:52 2044416 ----a-w- c:\windows\system32\win32k.sys

2012-02-15 14:51 . 2011-12-20 10:56 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat

2012-02-15 14:29 . 2012-02-15 14:29 -------- d-----w- c:\program files\CCleaner

2012-02-14 20:18 . 2012-02-14 20:20 -------- d-----w- c:\users\Uffe\AppData\Local\DOSBox

2012-02-14 19:50 . 2012-02-14 19:50 -------- d-----w- c:\program files\DOSBox-0.74

2012-02-14 19:46 . 2012-02-14 19:47 -------- d-----w- C:\DFInstall

2012-01-26 08:00 . 2011-11-17 06:48 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys

2012-01-26 08:00 . 2011-11-16 16:23 377344 ----a-w- c:\windows\system32\winhttp.dll

2012-01-26 08:00 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll

2012-01-26 08:00 . 2011-11-16 16:23 278528 ----a-w- c:\windows\system32\schannel.dll

2012-01-26 08:00 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll

2012-01-26 08:00 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-01-29 04:10 . 2009-10-03 15:26 237072 ------w- c:\windows\system32\MpSigStub.exe

2011-12-31 23:31 . 2011-12-31 23:31 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-02-15 18:03 . 2011-05-08 12:07 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll

.

.

(((((((((((((((((((((((((((((((((( Startpunkter i registret )))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Not* tomma poster & legitima standardposter visas inte.

REGEDIT4

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]

"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]

.

[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]

2011-05-09 09:49 176936 ----a-w- c:\program files\Freecorder\prxtbFre0.dll

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{807ca0aa-7cb3-4f03-bd61-076f618cc82d}]

2009-11-08 08:55 297808 ----a-w- c:\windows\System32\mscoree.dll

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]

"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]

.

[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]

.

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]

"{1392B8D2-5C05-419F-A8F6-B9F15A596612}"= "c:\program files\Freecorder\prxtbFre0.dll" [2011-05-09 176936]

.

[HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"????r"="" [?]

"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]

"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 3784704]

"Acer Empowering Technology Monitor"="c:\windows\system32\SysMonitor.exe" [2006-11-23 319488]

"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2006-11-17 453120]

"NvSvc"="c:\windows\system32\nvsvc.dll" [2007-01-19 90191]

"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-01-19 7770112]

"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-01-19 81920]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

2012-01-02 09:07 843712 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

2012-01-03 21:51 37296 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

2012-02-16 10:38 136176 ----atw- c:\users\Uffe\AppData\Local\Google\Update\GoogleUpdate.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]

2009-04-11 06:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

.

Innehåll i mappen 'Schemalagda aktiviteter':

.

2012-02-23 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2009-08-05 02:48]

.

2012-02-23 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2009-08-05 02:48]

.

2012-02-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2214144576-2560372886-1436887819-1000Core.job

- c:\users\Uffe\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-16 10:38]

.

2012-02-23 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2214144576-2560372886-1436887819-1000UA.job

- c:\users\Uffe\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-16 10:38]

.

.

------- Extra genomsökning -------

.

uStart Page = hxxp://www.google.com/

uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7

mStart Page = hxxp://sv.intl.acer.yahoo.com

uInternet Settings,ProxyOverride = *.local

IE: Download with FLV Blaster - c:\program files\FLV Blaster\Addons\Internet Explorer\script.htm

IE: Download with FLV Blaster\Contexts - 1 (0x1)

IE: Download with FLV Blaster\Flags - 1 (0x1)

TCP: DhcpNameServer = 80.251.201.177 80.251.201.178

FF - ProfilePath - c:\users\Uffe\AppData\Roaming\Mozilla\Firefox\Profiles\w13x1pvi.default\

.

- - - - FöRÄLDRALöSA POSTER SOM TAGITS BORT - - - -

.

HKLM-Run-Acer Tour - (no file)

.

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2012-02-23 18:20

Windows 6.0.6002 Service Pack 2 NTFS

.

scanning hidden processes ...

.

scanning hidden autostart entries ...

.

scanning hidden files ...

.

scan completed successfully

hidden files: 0

.

**************************************************************************

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AgentService]

"ImagePath"="c:\program files\AgentService/AgentService.exe"

.

--------------------- LåSTA REGISTERNYCKLAR ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

Sluttid: 2012-02-23 18:37:24

ComboFix-quarantined-files.txt 2012-02-23 17:37

.

Före genomsökningen: 80 370 962 432 byte ledigt

Efter genomsökningen: 79 007 432 704 byte ledigt

.

- - End Of File - - BB2C4C3FE0E9E4A6DFF1B9AE2D764E9B

Link to post
Share on other sites

1. Close any open browsers.

2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

3. Open notepad and copy/paste the text in the quotebox below into it:

File::
c:\program files\Freecorder\prxtbFre0.dll

Registry::
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"=-

[-HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]

[-HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{1392b8d2-5c05-419f-a8f6-b9f15a596612}"=-

[-HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{1392B8D2-5C05-419F-A8F6-B9F15A596612}"=-

[-HKEY_CLASSES_ROOT\clsid\{1392b8d2-5c05-419f-a8f6-b9f15a596612}]

Save this as CFScript.txt, in the same location as ComboFix.exe

CFScriptB-4.gif

Refering to the picture above, drag CFScript into ComboFix.exe

When finished, it shall produce a log for you at C:\ComboFix.txt which I will require in your next reply.

Link to post
Share on other sites

ComboFix 12-02-22.01 - Uffe 2012-02-24 11:49:23.2.2 - x86

Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.46.1053.18.2047.1298 [GMT 1:00]

Körs från: c:\users\Uffe\Desktop\ComboFix.exe

Kommandoväxlar som använts :: c:\users\Uffe\Desktop\CFScript.txt

SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

FILE ::

"c:\program files\Freecorder\prxtbFre0.dll"

.

.

((((((((((((((((((((((((((((((((((((((( Andra raderingar ))))))))))))))))))))))))))))))))))))))))))))))))

.

.

c:\program files\Freecorder\prxtbFre0.dll

.

.

(((((((((((((((((((((((( Filer skapade från 2012-01-24 till 2012-02-24 ))))))))))))))))))))))))))))))

.

.

2012-02-24 11:22 . 2012-02-24 11:24 -------- d-----w- c:\users\Uffe\AppData\Local\temp

2012-02-24 11:22 . 2012-02-24 11:22 -------- d-----w- c:\users\Default\AppData\Local\temp

2012-02-24 08:31 . 2012-02-08 06:03 6552120 ----a-w- c:\programdata\Microsoft\Windows Defender\Definition Updates\{105E7765-67BB-42B1-ACB6-221DD3865473}\mpengine.dll

2012-02-23 13:36 . 2012-02-23 13:36 -------- d-sh--w- c:\programdata\DSS

2012-02-23 10:14 . 2012-02-23 10:14 -------- d-----w- c:\programdata\Electronic Arts

2012-02-23 10:14 . 2012-02-23 10:14 -------- d-----w- c:\programdata\EA Core

2012-02-21 17:19 . 2012-02-21 17:19 388096 ----a-r- c:\users\Uffe\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2012-02-21 17:19 . 2012-02-21 17:19 -------- d-----w- c:\program files\Trend Micro

2012-02-21 17:10 . 2012-02-21 17:10 -------- d-----w- c:\users\Uffe\AppData\Roaming\Malwarebytes

2012-02-21 17:09 . 2012-02-21 17:09 -------- d-----w- c:\programdata\Malwarebytes

2012-02-21 16:52 . 2012-02-21 16:52 378640 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll

2012-02-21 10:44 . 2011-12-14 02:56 1427456 ----a-w- c:\windows\system32\inetcpl.cpl

2012-02-18 16:50 . 2012-02-18 16:50 -------- d-----w- c:\program files\GOG.com

2012-02-16 20:15 . 2012-02-16 20:15 101720 ----a-w- c:\windows\system32\drivers\SBREDrv.sys

2012-02-16 20:09 . 2012-02-16 20:10 -------- d-----w- c:\windows\4E0C6314A8B84026AC15084E8B63AFB5.TMP

2012-02-16 17:37 . 2012-02-23 16:31 -------- d-----w- c:\programdata\Lavasoft

2012-02-16 17:03 . 2012-02-16 20:10 -------- d-----w- C:\sh4ldr

2012-02-16 17:03 . 2012-02-16 17:03 -------- d-----w- c:\program files\Enigma Software Group

2012-02-16 17:02 . 2012-02-16 17:02 -------- d-----w- c:\program files\Common Files\Wise Installation Wizard

2012-02-15 17:56 . 2012-02-15 17:57 -------- d-----w- C:\DOTT.CD

2012-02-15 14:55 . 2012-02-23 16:34 -------- d-----w- c:\programdata\AVAST Software

2012-02-15 14:55 . 2012-02-15 14:55 -------- d-----w- c:\program files\AVAST Software

2012-02-15 14:52 . 2011-12-14 16:17 680448 ----a-w- c:\windows\system32\msvcrt.dll

2012-02-15 14:52 . 2012-01-12 19:52 2044416 ----a-w- c:\windows\system32\win32k.sys

2012-02-15 14:51 . 2011-12-20 10:56 2409784 ----a-w- c:\program files\Windows Mail\OESpamFilter.dat

2012-02-15 14:29 . 2012-02-15 14:29 -------- d-----w- c:\program files\CCleaner

2012-02-14 20:18 . 2012-02-14 20:20 -------- d-----w- c:\users\Uffe\AppData\Local\DOSBox

2012-02-14 19:50 . 2012-02-14 19:50 -------- d-----w- c:\program files\DOSBox-0.74

2012-02-14 19:46 . 2012-02-14 19:47 -------- d-----w- C:\DFInstall

2012-01-26 08:00 . 2011-11-17 06:48 440192 ----a-w- c:\windows\system32\drivers\ksecdd.sys

2012-01-26 08:00 . 2011-11-16 16:23 377344 ----a-w- c:\windows\system32\winhttp.dll

2012-01-26 08:00 . 2011-11-16 16:23 72704 ----a-w- c:\windows\system32\secur32.dll

2012-01-26 08:00 . 2011-11-16 16:23 278528 ----a-w- c:\windows\system32\schannel.dll

2012-01-26 08:00 . 2011-11-16 16:21 1259008 ----a-w- c:\windows\system32\lsasrv.dll

2012-01-26 08:00 . 2011-11-16 14:12 9728 ----a-w- c:\windows\system32\lsass.exe

.

.

.

(((((((((((((((((((((((((((((((((((((((( Find3M Rapport )))))))))))))))))))))))))))))))))))))))))))))))))))

.

2012-01-29 04:10 . 2009-10-03 15:26 237072 ------w- c:\windows\system32\MpSigStub.exe

2011-12-31 23:31 . 2011-12-31 23:31 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl

2012-02-24 08:17 . 2011-05-08 12:07 134104 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll

.

.

((((((((((((((((((((((((((((( SnapShot@2012-02-23_17.20.57 )))))))))))))))))))))))))))))))))))))))))

.

- 2006-12-28 00:17 . 2012-02-23 16:19 67008 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin

+ 2006-12-28 00:17 . 2012-02-24 08:12 67008 c:\windows\System32\WDI\ShutdownPerformanceDiagnostics_SystemData.bin

+ 2006-11-02 13:05 . 2012-02-24 08:12 81646 c:\windows\System32\WDI\BootPerformanceDiagnostics_SystemData.bin

- 2008-01-17 16:12 . 2012-02-23 16:20 17438 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2214144576-2560372886-1436887819-1000_UserData.bin

+ 2008-01-17 16:12 . 2012-02-24 08:12 17438 c:\windows\System32\WDI\{86432a0b-3c7d-4ddf-a89c-172faa90485d}\S-1-5-21-2214144576-2560372886-1436887819-1000_UserData.bin

+ 2006-12-28 00:38 . 2012-02-24 08:45 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2006-12-28 00:38 . 2012-02-23 16:17 16384 c:\windows\System32\config\systemprofile\AppData\Roaming\Microsoft\Windows\Cookies\index.dat

- 2006-12-28 00:38 . 2012-02-23 16:17 65536 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

+ 2006-12-28 00:38 . 2012-02-24 08:45 65536 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\index.dat

- 2006-12-28 00:38 . 2012-02-23 16:17 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

+ 2006-12-28 00:38 . 2012-02-24 08:45 16384 c:\windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\History\History.IE5\index.dat

- 2012-02-23 16:17 . 2012-02-23 16:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

+ 2012-02-24 08:10 . 2012-02-24 08:10 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive1.dat

- 2012-02-23 16:17 . 2012-02-23 16:17 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2012-02-24 08:10 . 2012-02-24 08:10 2048 c:\windows\ServiceProfiles\LocalService\AppData\Local\lastalive0.dat

+ 2008-06-19 13:52 . 2012-02-23 21:18 544372 c:\windows\System32\WDI\SuspendPerformanceDiagnostics_SystemData_FastS4.bin

- 2010-10-20 18:24 . 2012-02-23 16:16 247364 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

+ 2010-10-20 18:24 . 2012-02-23 23:14 247364 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-System.dat

+ 2006-11-02 10:22 . 2012-02-23 23:15 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat

- 2006-11-02 10:22 . 2012-02-23 16:31 6553600 c:\windows\System32\SMI\Store\Machine\schema.dat

- 2010-10-20 18:24 . 2012-02-23 16:16 1070956 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2214144576-2560372886-1436887819-1000-8192.dat

+ 2010-10-20 18:24 . 2012-02-23 23:14 1070956 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2214144576-2560372886-1436887819-1000-8192.dat

+ 2011-03-05 00:49 . 2012-02-23 23:15 2315836 c:\windows\ServiceProfiles\LocalService\AppData\Local\FontCache-S-1-5-21-2214144576-2560372886-1436887819-1000-12288.dat

.

(((((((((((((((((((((((((((((((((( Startpunkter i registret )))))))))))))))))))))))))))))))))))))))))))))))

.

.

*Not* tomma poster & legitima standardposter visas inte.

REGEDIT4

.

[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{807ca0aa-7cb3-4f03-bd61-076f618cc82d}]

2009-11-08 08:55 297808 ----a-w- c:\windows\System32\mscoree.dll

.

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"????r"="" [?]

"DAEMON Tools Lite"="c:\program files\DAEMON Tools Lite\DTLite.exe" [2011-01-20 1305408]

"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2008-01-19 125952]

.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]

"RtHDVCpl"="RtHDVCpl.exe" [2006-11-09 3784704]

"Acer Empowering Technology Monitor"="c:\windows\system32\SysMonitor.exe" [2006-11-23 319488]

"eDataSecurity Loader"="c:\acer\Empowering Technology\eDataSecurity\eDSloader.exe" [2006-11-17 453120]

"NvSvc"="c:\windows\system32\nvsvc.dll" [2007-01-19 90191]

"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-01-19 7770112]

"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-01-19 81920]

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]

"EnableUIADesktopToggle"= 0 (0x0)

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]

"aux"=wdmaud.drv

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]

2012-01-02 09:07 843712 ----a-r- c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]

2012-01-03 21:51 37296 ----a-w- c:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]

2012-02-16 10:38 136176 ----atw- c:\users\Uffe\AppData\Local\Google\Update\GoogleUpdate.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]

2009-04-11 06:28 1233920 ----a-w- c:\program files\Windows Sidebar\sidebar.exe

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecAntiVirus]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\SymantecFirewall]

"DisableMonitoring"=dword:00000001

.

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]

HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12

hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc

LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache

.

Innehåll i mappen 'Schemalagda aktiviteter':

.

2012-02-24 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job

- c:\program files\Google\Update\GoogleUpdate.exe [2009-08-05 02:48]

.

2012-02-24 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job

- c:\program files\Google\Update\GoogleUpdate.exe [2009-08-05 02:48]

.

2012-02-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2214144576-2560372886-1436887819-1000Core.job

- c:\users\Uffe\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-16 10:38]

.

2012-02-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-2214144576-2560372886-1436887819-1000UA.job

- c:\users\Uffe\AppData\Local\Google\Update\GoogleUpdate.exe [2012-02-16 10:38]

.

.

------- Extra genomsökning -------

.

uStart Page = hxxp://www.google.com/

uSearchMigratedDefaultURL = hxxp://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7

mStart Page = hxxp://sv.intl.acer.yahoo.com

uInternet Settings,ProxyOverride = *.local

IE: Download with FLV Blaster - c:\program files\FLV Blaster\Addons\Internet Explorer\script.htm

IE: Download with FLV Blaster\Contexts - 1 (0x1)

IE: Download with FLV Blaster\Flags - 1 (0x1)

TCP: DhcpNameServer = 80.251.201.177 80.251.201.178

FF - ProfilePath - c:\users\Uffe\AppData\Roaming\Mozilla\Firefox\Profiles\w13x1pvi.default\

.

.

**************************************************************************

.

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net

Rootkit scan 2012-02-24 12:23

Windows 6.0.6002 Service Pack 2 NTFS

.

scanning hidden processes ...

.

scanning hidden autostart entries ...

.

scanning hidden files ...

.

scan completed successfully

hidden files: 0

.

**************************************************************************

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Services\AgentService]

"ImagePath"="c:\program files\AgentService/AgentService.exe"

.

--------------------- LåSTA REGISTERNYCKLAR ---------------------

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]

@Denied: (A) (Users)

@Denied: (A) (Everyone)

@Allowed: (B 1 2 3 4 5) (S-1-5-20)

"BlindDial"=dword:00000000

.

Sluttid: 2012-02-24 12:39:06

ComboFix-quarantined-files.txt 2012-02-24 11:38

ComboFix2.txt 2012-02-23 17:37

.

Före genomsökningen: 76 546 187 264 byte ledigt

Efter genomsökningen: 76 505 190 400 byte ledigt

.

- - End Of File - - B62BE362718A3F02D15B202F4E843046

Link to post
Share on other sites

"Monster," I shrieked, "be thou juggler, enchanter, dream, or devil, no more will I endure thy mockeries. Either thou or I must perish."

- Edwin A. Abbott, Flatland, 1884

That's how I feel about viruses and malware whilst waiting on ComboFix to do it's magic...

Link to post
Share on other sites

:)

Step 1

  • Launch Malwarebytes' Anti-Malware
  • Go to Update" tab and select Check for Updates. If an update is found, it will download and install the latest version.
  • Go to Scanner tab and select Perform Quick Scan, then click Scan.
  • The scan may take some time to finish,so please be patient.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Make sure that everything is checked, and click Remove Selected.
  • When disinfection is completed, a log will open in Notepad and you may be prompted to Restart. (See Extra Note)
  • The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
  • Copy&Paste the entire report in your next reply.

Extra Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer,please do so immediately.

Step 2

Please run a free online scan with the ESET Online Scanner

Note: You will need to use Internet Explorer for this scan

  • Tick the box next to YES, I accept the Terms of Use
  • Click Start
  • When asked, allow the ActiveX control to install
  • Click Start
  • Make sure that the options Remove found threats and the option Scan unwanted applications is checked
  • Click Scan (This scan can take several hours, so please be patient)
  • Once the scan is completed, you may close the window
  • Use Notepad to open the logfile located at C:\Program Files\EsetOnlineScanner\log.txt
  • Copy and paste that log as a reply to this topic

In your next post, please include:

  • Malwarebytes' Anti-Malware log
  • ESET Online Scanner log

Link to post
Share on other sites

I had MBAM installed in english, but it turned out to be a swede after all... sorry... just tell me if you need anything translated.

Step 1, MBAM log:

Malwarebytes Anti-Malware (Testversion) 1.60.1.1000

www.malwarebytes.org

Databasversion: v2012.02.24.01

Windows Vista Service Pack 2 x86 NTFS

Internet Explorer 9.0.8112.16421

Uffe :: GLORIAS [administratör]

Skydd: Inaktiverad

2012-02-24 14:38:48

mbam-log-2012-02-24 (14-38-48).txt

Skanningstyp: Snabbskanning

Aktiverade skanningsalternativ: Minne | Start | Register | Filsystem | Heuristik/Extra | Heuristik/Shuriken | PUP | PUM

Inaktiverade skanningsalternativ: P2P

Antal skannade objekt: 181529

Förfluten tid: 4 minut(er), 47 sekund(er)

Upptäckta minnesprocesser: 0

(Inga skadliga poster hittades)

Upptäckta minnesmoduler: 0

(Inga skadliga poster hittades)

Upptäckta registernycklar: 0

(Inga skadliga poster hittades)

Upptäckta registervärden: 0

(Inga skadliga poster hittades)

Upptäckta registerdataposter: 0

(Inga skadliga poster hittades)

Upptäckta mappar: 0

(Inga skadliga poster hittades)

Upptäckta filer: 0

(Inga skadliga poster hittades)

(klar)

Step 2, ESET log:

ESETSmartInstaller@High as CAB hook log:

OnlineScanner.ocx - registred OK

# version=7

# iexplore.exe=9.00.8112.16421 (WIN7_IE9_RTM.110308-0330)

# OnlineScanner.ocx=1.0.0.6583

# api_version=3.0.2

# EOSSerial=cccd0b67aa851040bca60f60ba474826

# end=finished

# remove_checked=true

# archives_checked=false

# unwanted_checked=true

# unsafe_checked=false

# antistealth_checked=true

# utc_time=2012-02-24 03:13:52

# local_time=2012-02-24 04:13:52 (+0100, Västeuropa, normaltid)

# country="Sweden"

# lang=1033

# osver=6.0.6002 NT Service Pack 2

# compatibility_mode=512 16777215 100 0 250440 250440 0 0

# compatibility_mode=5892 16776573 100 100 22919 167624319 0 0

# compatibility_mode=8192 67108863 100 0 3849 3849 0 0

# scanned=202272

# found=1

# cleaned=1

# scan_time=4841

C:\Users\Uffe\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\7\143b51c7-44228c29 a variant of Java/TrojanDownloader.OpenStream.NCC trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C

Link to post
Share on other sites

Download AVPTool from Here to your desktop

Run the programme you have just downloaded to your desktop (it will be randomly named)

Click the cog in the upper right

AVPfront.gif

Select down to and including your main drive, once done select the Automatic scan tab and press Start Scan

avpsettings.gif

Allow AVP to delete all infections found

Once it has finished select report tab (last tab)

Select Detected threads report from the left and press Save button

Save it to your desktop and post it in your next reply.

Link to post
Share on other sites

That program takes an eternity to complete its scan. I've tried to run it twice, it has detected four infections or so, but it has shut down both of the times because of some shennanigangs with my computer while I've left it running. I'll try to run it again now, and when that is done, I'll write again...

Link to post
Share on other sites

This time TDSSKiller worked. I followed the instructions of the original first step, and found 9 suspicious object. Here is the report:

23:18:13.0265 2316 TDSS rootkit removing tool 2.7.17.0 Feb 29 2012 14:02:24

23:18:13.0733 2316 ============================================================

23:18:13.0733 2316 Current date / time: 2012/03/01 23:18:13.0733

23:18:13.0733 2316 SystemInfo:

23:18:13.0733 2316

23:18:13.0733 2316 OS Version: 6.0.6002 ServicePack: 2.0

23:18:13.0733 2316 Product type: Workstation

23:18:13.0733 2316 ComputerName: GLORIAS

23:18:13.0733 2316 UserName: Uffe

23:18:13.0733 2316 Windows directory: C:\Windows

23:18:13.0733 2316 System windows directory: C:\Windows

23:18:13.0733 2316 Processor architecture: Intel x86

23:18:13.0733 2316 Number of processors: 2

23:18:13.0733 2316 Page size: 0x1000

23:18:13.0733 2316 Boot type: Normal boot

23:18:13.0748 2316 ============================================================

23:18:15.0152 2316 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050

23:18:15.0152 2316 Drive \Device\Harddisk1\DR1 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x1000, Cylinders: 0x980, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'

23:18:16.0104 2316 \Device\Harddisk0\DR0:

23:18:16.0120 2316 MBR used

23:18:16.0120 2316 \Device\Harddisk0\DR0\Partition0: MBR, Type 0xC, StartLBA 0x3F, BlocksNum 0x2542D682

23:18:16.0120 2316 \Device\Harddisk1\DR1:

23:18:16.0120 2316 MBR used

23:18:16.0120 2316 \Device\Harddisk1\DR1\Partition0: MBR, Type 0xC, StartLBA 0x40, BlocksNum 0x2542940

23:18:16.0135 2316 Initialize success

23:18:16.0135 2316 ============================================================

23:18:38.0568 0892 ============================================================

23:18:38.0568 0892 Scan started

23:18:38.0568 0892 Mode: Manual;

23:18:38.0568 0892 ============================================================

23:18:39.0582 0892 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys

23:18:39.0582 0892 ACPI - ok

23:18:39.0629 0892 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys

23:18:39.0629 0892 adp94xx - ok

23:18:39.0832 0892 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys

23:18:39.0863 0892 adpahci - ok

23:18:39.0956 0892 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys

23:18:39.0956 0892 adpu160m - ok

23:18:40.0066 0892 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys

23:18:40.0066 0892 adpu320 - ok

23:18:40.0206 0892 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys

23:18:40.0222 0892 AFD - ok

23:18:40.0331 0892 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys

23:18:40.0331 0892 agp440 - ok

23:18:40.0362 0892 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

23:18:40.0362 0892 aic78xx - ok

23:18:40.0393 0892 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys

23:18:40.0393 0892 aliide - ok

23:18:40.0502 0892 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys

23:18:40.0502 0892 amdagp - ok

23:18:40.0518 0892 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys

23:18:40.0518 0892 amdide - ok

23:18:40.0612 0892 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys

23:18:40.0612 0892 AmdK7 - ok

23:18:40.0643 0892 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys

23:18:40.0643 0892 AmdK8 - ok

23:18:40.0799 0892 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys

23:18:40.0814 0892 arc - ok

23:18:40.0892 0892 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys

23:18:40.0892 0892 arcsas - ok

23:18:40.0970 0892 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

23:18:40.0986 0892 AsyncMac - ok

23:18:41.0080 0892 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys

23:18:41.0080 0892 atapi - ok

23:18:41.0251 0892 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

23:18:41.0251 0892 Beep - ok

23:18:41.0345 0892 blbdrive - ok

23:18:41.0423 0892 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys

23:18:41.0423 0892 bowser - ok

23:18:41.0470 0892 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

23:18:41.0485 0892 BrFiltLo - ok

23:18:41.0563 0892 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

23:18:41.0563 0892 BrFiltUp - ok

23:18:41.0704 0892 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

23:18:41.0704 0892 Brserid - ok

23:18:41.0719 0892 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

23:18:41.0735 0892 BrSerWdm - ok

23:18:41.0797 0892 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

23:18:41.0797 0892 BrUsbMdm - ok

23:18:41.0813 0892 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

23:18:41.0813 0892 BrUsbSer - ok

23:18:41.0860 0892 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

23:18:41.0860 0892 BTHMODEM - ok

23:18:42.0016 0892 catchme - ok

23:18:42.0140 0892 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

23:18:42.0140 0892 cdfs - ok

23:18:42.0265 0892 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys

23:18:42.0281 0892 cdrom - ok

23:18:42.0374 0892 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys

23:18:42.0374 0892 circlass - ok

23:18:42.0421 0892 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys

23:18:42.0421 0892 CLFS - ok

23:18:42.0546 0892 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys

23:18:42.0562 0892 cmdide - ok

23:18:42.0593 0892 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys

23:18:42.0593 0892 Compbatt - ok

23:18:42.0640 0892 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys

23:18:42.0640 0892 crcdisk - ok

23:18:42.0702 0892 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys

23:18:42.0702 0892 Crusoe - ok

23:18:42.0780 0892 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys

23:18:42.0780 0892 DfsC - ok

23:18:42.0905 0892 DgiVecp (770471de2550820feeb7e5d24bf2e273) C:\Windows\system32\Drivers\DgiVecp.sys

23:18:42.0905 0892 DgiVecp - ok

23:18:42.0983 0892 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys

23:18:42.0983 0892 disk - ok

23:18:43.0123 0892 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys

23:18:43.0139 0892 Dot4 - ok

23:18:43.0232 0892 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys

23:18:43.0232 0892 Dot4Print - ok

23:18:43.0264 0892 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys

23:18:43.0264 0892 dot4usb - ok

23:18:43.0326 0892 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

23:18:43.0326 0892 drmkaud - ok

23:18:43.0435 0892 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\Windows\system32\DRIVERS\dtsoftbus01.sys

23:18:43.0435 0892 dtsoftbus01 - ok

23:18:43.0560 0892 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys

23:18:43.0560 0892 DXGKrnl - ok

23:18:43.0654 0892 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys

23:18:43.0654 0892 E1G60 - ok

23:18:43.0732 0892 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys

23:18:43.0732 0892 Ecache - ok

23:18:43.0981 0892 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys

23:18:43.0997 0892 elxstor - ok

23:18:44.0075 0892 esgiguard - ok

23:18:44.0246 0892 ewusbnet (921878114f48949cfae9abe6fc4c4cc3) C:\Windows\system32\DRIVERS\ewusbnet.sys

23:18:44.0246 0892 ewusbnet - ok

23:18:44.0387 0892 ew_hwusbdev (e98a64c7f106740a38fb2b78197816f8) C:\Windows\system32\DRIVERS\ew_hwusbdev.sys

23:18:44.0387 0892 ew_hwusbdev - ok

23:18:44.0558 0892 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys

23:18:44.0558 0892 exfat - ok

23:18:44.0668 0892 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys

23:18:44.0668 0892 fastfat - ok

23:18:44.0761 0892 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys

23:18:44.0761 0892 fdc - ok

23:18:44.0824 0892 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

23:18:44.0824 0892 FileInfo - ok

23:18:44.0855 0892 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

23:18:44.0855 0892 Filetrace - ok

23:18:44.0964 0892 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys

23:18:44.0980 0892 flpydisk - ok

23:18:45.0011 0892 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys

23:18:45.0011 0892 FltMgr - ok

23:18:45.0167 0892 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

23:18:45.0182 0892 Fs_Rec - ok

23:18:45.0245 0892 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys

23:18:45.0245 0892 gagp30kx - ok

23:18:45.0307 0892 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys

23:18:45.0307 0892 GEARAspiWDM - ok

23:18:45.0432 0892 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

23:18:45.0432 0892 HdAudAddService - ok

23:18:45.0494 0892 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys

23:18:45.0510 0892 HDAudBus - ok

23:18:45.0588 0892 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

23:18:45.0619 0892 HidBth - ok

23:18:45.0650 0892 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

23:18:45.0650 0892 HidIr - ok

23:18:45.0760 0892 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys

23:18:45.0791 0892 HidUsb - ok

23:18:45.0806 0892 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys

23:18:45.0806 0892 HpCISSs - ok

23:18:45.0869 0892 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys

23:18:45.0884 0892 HTTP - ok

23:18:45.0962 0892 huawei_enumerator (22a4b14530194fc57c1c849fb5afee17) C:\Windows\system32\DRIVERS\ew_jubusenum.sys

23:18:45.0962 0892 huawei_enumerator - ok

23:18:46.0025 0892 hwdatacard (0b3957226ec94b1ecb7b9348bb535a23) C:\Windows\system32\DRIVERS\ewusbmdm.sys

23:18:46.0025 0892 hwdatacard - ok

23:18:46.0134 0892 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys

23:18:46.0134 0892 i2omp - ok

23:18:46.0212 0892 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys

23:18:46.0212 0892 i8042prt - ok

23:18:46.0306 0892 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys

23:18:46.0306 0892 iaStorV - ok

23:18:46.0352 0892 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

23:18:46.0352 0892 iirsp - ok

23:18:46.0680 0892 IntcAzAudAddService (a47b2875680ad67b35c6150bd0203056) C:\Windows\system32\drivers\RTKVHDA.sys

23:18:46.0696 0892 IntcAzAudAddService - ok

23:18:46.0805 0892 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys

23:18:46.0805 0892 intelide - ok

23:18:46.0852 0892 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys

23:18:46.0852 0892 intelppm - ok

23:18:47.0008 0892 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

23:18:47.0023 0892 IpFilterDriver - ok

23:18:47.0039 0892 IpInIp - ok

23:18:47.0086 0892 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys

23:18:47.0101 0892 IPMIDRV - ok

23:18:47.0210 0892 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

23:18:47.0210 0892 IPNAT - ok

23:18:47.0366 0892 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

23:18:47.0382 0892 IRENUM - ok

23:18:47.0413 0892 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys

23:18:47.0413 0892 isapnp - ok

23:18:47.0538 0892 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys

23:18:47.0538 0892 iScsiPrt - ok

23:18:47.0881 0892 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

23:18:47.0897 0892 iteatapi - ok

23:18:47.0944 0892 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

23:18:47.0944 0892 iteraid - ok

23:18:48.0068 0892 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

23:18:48.0068 0892 kbdclass - ok

23:18:48.0146 0892 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys

23:18:48.0162 0892 kbdhid - ok

23:18:48.0209 0892 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys

23:18:48.0224 0892 KSecDD - ok

23:18:48.0240 0892 Lavasoft Kernexplorer - ok

23:18:48.0521 0892 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

23:18:48.0521 0892 lltdio - ok

23:18:48.0911 0892 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys

23:18:48.0911 0892 LSI_FC - ok

23:18:49.0098 0892 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys

23:18:49.0145 0892 LSI_SAS - ok

23:18:49.0363 0892 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys

23:18:49.0379 0892 LSI_SCSI - ok

23:18:49.0472 0892 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

23:18:49.0472 0892 luafv - ok

23:18:49.0519 0892 MBAMProtector - ok

23:18:49.0582 0892 MDC8021X (d7010580bf4e45d5e793a1fe75758c69) C:\Windows\system32\DRIVERS\mdc8021x.sys

23:18:49.0582 0892 MDC8021X - ok

23:18:49.0722 0892 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys

23:18:49.0722 0892 megasas - ok

23:18:49.0753 0892 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

23:18:49.0769 0892 Modem - ok

23:18:49.0862 0892 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

23:18:49.0878 0892 monitor - ok

23:18:49.0972 0892 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

23:18:49.0972 0892 mouclass - ok

23:18:50.0486 0892 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys

23:18:50.0502 0892 mouhid - ok

23:18:50.0798 0892 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

23:18:50.0814 0892 MountMgr - ok

23:18:51.0126 0892 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys

23:18:51.0126 0892 mpio - ok

23:18:51.0610 0892 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

23:18:51.0625 0892 mpsdrv - ok

23:18:52.0140 0892 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

23:18:52.0171 0892 Mraid35x - ok

23:18:52.0514 0892 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys

23:18:52.0514 0892 MRxDAV - ok

23:18:52.0702 0892 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys

23:18:52.0717 0892 mrxsmb - ok

23:18:52.0920 0892 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys

23:18:52.0920 0892 mrxsmb10 - ok

23:18:53.0092 0892 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

23:18:53.0092 0892 mrxsmb20 - ok

23:18:53.0279 0892 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys

23:18:53.0279 0892 msahci - ok

23:18:53.0482 0892 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys

23:18:53.0497 0892 msdsm - ok

23:18:54.0199 0892 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

23:18:54.0230 0892 Msfs - ok

23:18:54.0698 0892 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys

23:18:54.0714 0892 msisadrv - ok

23:18:55.0260 0892 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

23:18:55.0260 0892 MSKSSRV - ok

23:18:55.0884 0892 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

23:18:55.0978 0892 MSPCLOCK - ok

23:18:56.0882 0892 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

23:18:56.0929 0892 MSPQM - ok

23:18:57.0912 0892 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys

23:18:57.0959 0892 MsRPC - ok

23:18:58.0723 0892 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys

23:18:58.0723 0892 mssmbios - ok

23:18:59.0238 0892 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

23:18:59.0238 0892 MSTEE - ok

23:18:59.0612 0892 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys

23:18:59.0612 0892 Mup - ok

23:18:59.0846 0892 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys

23:18:59.0862 0892 NativeWifiP - ok

23:19:00.0049 0892 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys

23:19:00.0065 0892 NDIS - ok

23:19:00.0330 0892 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

23:19:00.0330 0892 NdisTapi - ok

23:19:00.0595 0892 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

23:19:00.0611 0892 Ndisuio - ok

23:19:00.0689 0892 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys

23:19:00.0704 0892 NdisWan - ok

23:19:00.0767 0892 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

23:19:00.0782 0892 NDProxy - ok

23:19:00.0907 0892 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

23:19:00.0907 0892 NetBIOS - ok

23:19:01.0016 0892 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys

23:19:01.0032 0892 netbt - ok

23:19:01.0375 0892 netr73 (757f999aa72b55780ee810d4cd1bdd47) C:\Windows\system32\DRIVERS\netr73.sys

23:19:01.0375 0892 netr73 - ok

23:19:01.0640 0892 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

23:19:01.0640 0892 nfrd960 - ok

23:19:01.0750 0892 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys

23:19:01.0750 0892 Npfs - ok

23:19:01.0859 0892 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

23:19:01.0859 0892 nsiproxy - ok

23:19:01.0952 0892 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys

23:19:01.0968 0892 Ntfs - ok

23:19:01.0999 0892 NTIDrvr (7f1c1f78d709c4a54cbb46ede7e0b48d) C:\Windows\system32\DRIVERS\NTIDrvr.sys

23:19:01.0999 0892 NTIDrvr - ok

23:19:02.0062 0892 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

23:19:02.0062 0892 ntrigdigi - ok

23:19:02.0077 0892 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

23:19:02.0077 0892 Null - ok

23:19:02.0436 0892 nvlddmkm (214e7895a6dd70685e44d0df4fdf2dea) C:\Windows\system32\DRIVERS\nvlddmkm.sys

23:19:02.0561 0892 nvlddmkm - ok

23:19:02.0717 0892 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys

23:19:02.0732 0892 nvraid - ok

23:19:02.0779 0892 nvstor (4a5fcab82d9bf6af8a023a66802fe9e9) C:\Windows\system32\DRIVERS\nvstor.sys

23:19:02.0779 0892 nvstor - ok

23:19:03.0013 0892 nvstor32 (86b1b96806829066982ed67b7aba74ef) C:\Windows\system32\drivers\nvstor32.sys

23:19:03.0044 0892 nvstor32 - ok

23:19:03.0154 0892 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys

23:19:03.0154 0892 nv_agp - ok

23:19:03.0169 0892 NwlnkFlt - ok

23:19:03.0185 0892 NwlnkFwd - ok

23:19:03.0247 0892 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys

23:19:03.0247 0892 ohci1394 - ok

23:19:03.0372 0892 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys

23:19:03.0372 0892 Parport - ok

23:19:03.0419 0892 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys

23:19:03.0419 0892 partmgr - ok

23:19:03.0497 0892 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys

23:19:03.0497 0892 Parvdm - ok

23:19:03.0544 0892 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys

23:19:03.0544 0892 pci - ok

23:19:03.0637 0892 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys

23:19:03.0637 0892 pciide - ok

23:19:03.0668 0892 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys

23:19:03.0684 0892 pcmcia - ok

23:19:03.0746 0892 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

23:19:03.0778 0892 PEAUTH - ok

23:19:04.0168 0892 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

23:19:04.0183 0892 PptpMiniport - ok

23:19:04.0308 0892 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys

23:19:04.0324 0892 Processor - ok

23:19:04.0402 0892 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys

23:19:04.0417 0892 PSched - ok

23:19:04.0698 0892 PSDFilter (88b72d2a800300eb05c69f3c6c3180f2) C:\Windows\system32\DRIVERS\psdfilter.sys

23:19:04.0698 0892 PSDFilter - ok

23:19:04.0807 0892 PSDNServ (9649e11fc5459bf6b2c9e8e327e45c3a) C:\Windows\system32\drivers\PSDNServ.sys

23:19:04.0823 0892 PSDNServ - ok

23:19:05.0275 0892 psdvdisk (3d0be1373b9dfe9fc7b64f090e4d59e3) C:\Windows\system32\drivers\psdvdisk.sys

23:19:05.0306 0892 psdvdisk - ok

23:19:05.0665 0892 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys

23:19:05.0681 0892 ql2300 - ok

23:19:05.0790 0892 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

23:19:05.0790 0892 ql40xx - ok

23:19:05.0821 0892 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

23:19:05.0821 0892 QWAVEdrv - ok

23:19:05.0930 0892 R300 (554685122b4f973e21d66c2baaf29543) C:\Windows\system32\DRIVERS\atikmdag.sys

23:19:05.0930 0892 R300 - ok

23:19:06.0227 0892 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

23:19:06.0242 0892 RasAcd - ok

23:19:06.0305 0892 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

23:19:06.0320 0892 Rasl2tp - ok

23:19:06.0367 0892 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys

23:19:06.0367 0892 RasPppoe - ok

23:19:06.0383 0892 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys

23:19:06.0383 0892 RasSstp - ok

23:19:06.0445 0892 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys

23:19:06.0461 0892 rdbss - ok

23:19:06.0617 0892 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

23:19:06.0632 0892 RDPCDD - ok

23:19:06.0820 0892 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys

23:19:06.0835 0892 rdpdr - ok

23:19:06.0898 0892 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

23:19:06.0898 0892 RDPENCDD - ok

23:19:06.0944 0892 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys

23:19:06.0960 0892 RDPWD - ok

23:19:07.0319 0892 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

23:19:07.0334 0892 rspndr - ok

23:19:07.0506 0892 RT73 (91d44aa2a61006136da32118a179bf12) C:\Windows\system32\DRIVERS\Dr71WU.sys

23:19:07.0506 0892 RT73 - ok

23:19:07.0600 0892 s1039bus (d259d085f215b57b7170dc2d0b646b2a) C:\Windows\system32\DRIVERS\s1039bus.sys

23:19:07.0615 0892 s1039bus - ok

23:19:07.0724 0892 s1039mdfl (4d2b6621b5913e8b1cbb650a6037b8a2) C:\Windows\system32\DRIVERS\s1039mdfl.sys

23:19:07.0724 0892 s1039mdfl - ok

23:19:07.0787 0892 s1039mdm (8149799844ab2e91ea92e9cad4224254) C:\Windows\system32\DRIVERS\s1039mdm.sys

23:19:07.0787 0892 s1039mdm - ok

23:19:07.0849 0892 s1039mgmt (5e91068b3f5e003b83d8a99dc0c76e2c) C:\Windows\system32\DRIVERS\s1039mgmt.sys

23:19:07.0849 0892 s1039mgmt - ok

23:19:07.0958 0892 s1039nd5 (df54dbf1c4105d2074d07929f6ba91aa) C:\Windows\system32\DRIVERS\s1039nd5.sys

23:19:07.0974 0892 s1039nd5 - ok

23:19:08.0052 0892 s1039obex (1bc084b0708d42e29e2222346149e52f) C:\Windows\system32\DRIVERS\s1039obex.sys

23:19:08.0068 0892 s1039obex - ok

23:19:08.0380 0892 s1039unic (2e8ccb7bf5b1eb34bcf4ebf880b3e11c) C:\Windows\system32\DRIVERS\s1039unic.sys

23:19:08.0411 0892 s1039unic - ok

23:19:08.0551 0892 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

23:19:08.0551 0892 sbp2port - ok

23:19:08.0801 0892 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

23:19:08.0816 0892 secdrv - ok

23:19:09.0284 0892 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys

23:19:09.0316 0892 Serenum - ok

23:19:09.0487 0892 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys

23:19:09.0487 0892 Serial - ok

23:19:09.0659 0892 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

23:19:09.0674 0892 sermouse - ok

23:19:09.0799 0892 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys

23:19:09.0799 0892 sffdisk - ok

23:19:09.0830 0892 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys

23:19:09.0830 0892 sffp_mmc - ok

23:19:09.0862 0892 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys

23:19:09.0862 0892 sffp_sd - ok

23:19:09.0877 0892 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

23:19:09.0877 0892 sfloppy - ok

23:19:09.0971 0892 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys

23:19:09.0971 0892 sisagp - ok

23:19:10.0018 0892 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys

23:19:10.0033 0892 SiSRaid2 - ok

23:19:10.0064 0892 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys

23:19:10.0064 0892 SiSRaid4 - ok

23:19:10.0111 0892 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys

23:19:10.0127 0892 Smb - ok

23:19:10.0454 0892 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

23:19:10.0454 0892 spldr - ok

23:19:10.0798 0892 sptd (71e276f6d189413266ea22171806597b) C:\Windows\system32\Drivers\sptd.sys

23:19:10.0798 0892 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 71e276f6d189413266ea22171806597b

23:19:10.0798 0892 sptd ( LockedFile.Multi.Generic ) - warning

23:19:10.0798 0892 sptd - detected LockedFile.Multi.Generic (1)

23:19:11.0266 0892 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys

23:19:11.0266 0892 srv - ok

23:19:11.0687 0892 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys

23:19:11.0687 0892 srv2 - ok

23:19:11.0796 0892 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys

23:19:11.0796 0892 srvnet - ok

23:19:11.0952 0892 SSPORT (ef3458337d7341a05169cefc73709264) C:\Windows\system32\Drivers\SSPORT.sys

23:19:11.0952 0892 SSPORT - ok

23:19:12.0264 0892 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys

23:19:12.0264 0892 swenum - ok

23:19:12.0560 0892 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

23:19:12.0560 0892 Symc8xx - ok

23:19:12.0872 0892 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

23:19:12.0888 0892 Sym_hi - ok

23:19:13.0247 0892 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

23:19:13.0247 0892 Sym_u3 - ok

23:19:13.0808 0892 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys

23:19:13.0808 0892 Tcpip - ok

23:19:14.0339 0892 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys

23:19:14.0354 0892 Tcpip6 - ok

23:19:14.0604 0892 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys

23:19:14.0635 0892 tcpipreg - ok

23:19:14.0698 0892 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

23:19:14.0698 0892 TDPIPE - ok

23:19:14.0729 0892 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

23:19:14.0744 0892 TDTCP - ok

23:19:14.0776 0892 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys

23:19:14.0791 0892 tdx - ok

23:19:14.0822 0892 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys

23:19:14.0822 0892 TermDD - ok

23:19:14.0916 0892 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

23:19:14.0932 0892 tssecsrv - ok

23:19:14.0994 0892 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

23:19:15.0010 0892 tunmp - ok

23:19:15.0103 0892 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys

23:19:15.0103 0892 tunnel - ok

23:19:15.0322 0892 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys

23:19:15.0322 0892 uagp35 - ok

23:19:15.0368 0892 UBHelper (e0c67be430c6de490d6ccaecfa071f9e) C:\Windows\system32\drivers\UBHelper.sys

23:19:15.0368 0892 UBHelper - ok

23:19:15.0415 0892 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys

23:19:15.0431 0892 udfs - ok

23:19:15.0478 0892 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys

23:19:15.0478 0892 uliagpkx - ok

23:19:15.0509 0892 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys

23:19:15.0509 0892 uliahci - ok

23:19:15.0618 0892 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

23:19:15.0634 0892 UlSata - ok

23:19:15.0665 0892 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

23:19:15.0665 0892 ulsata2 - ok

23:19:15.0883 0892 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

23:19:15.0883 0892 umbus - ok

23:19:16.0226 0892 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

23:19:16.0242 0892 usbccgp - ok

23:19:16.0492 0892 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

23:19:16.0492 0892 usbcir - ok

23:19:16.0632 0892 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys

23:19:16.0648 0892 usbehci - ok

23:19:16.0694 0892 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys

23:19:16.0694 0892 usbhub - ok

23:19:16.0772 0892 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys

23:19:16.0772 0892 usbohci - ok

23:19:16.0819 0892 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys

23:19:16.0819 0892 usbprint - ok

23:19:16.0850 0892 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys

23:19:16.0850 0892 usbscan - ok

23:19:16.0928 0892 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS

23:19:16.0928 0892 USBSTOR - ok

23:19:16.0975 0892 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys

23:19:16.0975 0892 usbuhci - ok

23:19:17.0069 0892 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys

23:19:17.0069 0892 vga - ok

23:19:17.0116 0892 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

23:19:17.0116 0892 VgaSave - ok

23:19:17.0162 0892 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys

23:19:17.0162 0892 viaagp - ok

23:19:17.0225 0892 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys

23:19:17.0225 0892 ViaC7 - ok

23:19:17.0256 0892 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys

23:19:17.0256 0892 viaide - ok

23:19:17.0303 0892 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys

23:19:17.0303 0892 volmgr - ok

23:19:17.0474 0892 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys

23:19:17.0490 0892 volmgrx - ok

23:19:17.0599 0892 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys

23:19:17.0615 0892 volsnap - ok

23:19:17.0646 0892 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys

23:19:17.0646 0892 vsmraid - ok

23:19:17.0818 0892 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

23:19:17.0818 0892 WacomPen - ok

23:19:17.0880 0892 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

23:19:17.0880 0892 Wanarp - ok

23:19:17.0927 0892 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

23:19:17.0927 0892 Wanarpv6 - ok

23:19:18.0083 0892 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys

23:19:18.0083 0892 Wd - ok

23:19:18.0145 0892 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys

23:19:18.0145 0892 Wdf01000 - ok

23:19:18.0364 0892 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys

23:19:18.0364 0892 WmiAcpi - ok

23:19:18.0504 0892 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys

23:19:18.0504 0892 WpdUsb - ok

23:19:18.0551 0892 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

23:19:18.0551 0892 ws2ifsl - ok

23:19:18.0691 0892 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

23:19:18.0691 0892 WUDFRd - ok

23:19:18.0722 0892 yukonwlh (bfab14d10543963dbda7128adabfa51d) C:\Windows\system32\DRIVERS\yk60x86.sys

23:19:18.0722 0892 yukonwlh - ok

23:19:18.0816 0892 MBR (0x1B8) (beedf9b7f43a72a91456f7131afc11b2) \Device\Harddisk0\DR0

23:19:19.0409 0892 \Device\Harddisk0\DR0 - ok

23:19:20.0345 0892 MBR (0x1B8) (180dbde3af7ea48b3db3ac27b1ddf401) \Device\Harddisk1\DR1

23:19:20.0938 0892 \Device\Harddisk1\DR1 - ok

23:19:20.0969 0892 Boot (0x1200) (14f1f642edf38b8af3267b55717793a7) \Device\Harddisk0\DR0\Partition0

23:19:20.0984 0892 \Device\Harddisk0\DR0\Partition0 - ok

23:19:20.0984 0892 Boot (0x1200) (22d438d50e5e87bb71c418c0304d33da) \Device\Harddisk1\DR1\Partition0

23:19:20.0984 0892 \Device\Harddisk1\DR1\Partition0 - ok

23:19:20.0984 0892 ============================================================

23:19:20.0984 0892 Scan finished

23:19:20.0984 0892 ============================================================

23:19:21.0000 2236 Detected object count: 1

23:19:21.0000 2236 Actual detected object count: 1

23:24:03.0323 2236 sptd ( LockedFile.Multi.Generic ) - skipped by user

23:24:03.0323 2236 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

23:25:12.0760 3964 ============================================================

23:25:12.0760 3964 Scan started

23:25:12.0760 3964 Mode: Manual; SigCheck; TDLFS;

23:25:12.0760 3964 ============================================================

23:25:13.0524 3964 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys

23:25:13.0696 3964 ACPI - ok

23:25:14.0148 3964 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys

23:25:14.0179 3964 adp94xx - ok

23:25:14.0756 3964 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys

23:25:14.0772 3964 adpahci - ok

23:25:15.0153 3964 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys

23:25:15.0163 3964 adpu160m - ok

23:25:15.0659 3964 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys

23:25:15.0669 3964 adpu320 - ok

23:25:16.0185 3964 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys

23:25:16.0297 3964 AFD - ok

23:25:16.0812 3964 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys

23:25:16.0821 3964 agp440 - ok

23:25:17.0288 3964 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys

23:25:17.0288 3964 aic78xx - ok

23:25:17.0553 3964 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys

23:25:17.0553 3964 aliide - ok

23:25:17.0678 3964 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys

23:25:17.0694 3964 amdagp - ok

23:25:17.0990 3964 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys

23:25:18.0006 3964 amdide - ok

23:25:18.0287 3964 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys

23:25:20.0377 3964 AmdK7 - ok

23:25:20.0549 3964 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys

23:25:21.0687 3964 AmdK8 - ok

23:25:22.0296 3964 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys

23:25:22.0296 3964 arc - ok

23:25:22.0717 3964 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys

23:25:22.0733 3964 arcsas - ok

23:25:23.0341 3964 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys

23:25:23.0419 3964 AsyncMac - ok

23:25:23.0996 3964 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys

23:25:24.0012 3964 atapi - ok

23:25:24.0573 3964 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys

23:25:24.0636 3964 Beep - ok

23:25:25.0213 3964 blbdrive - ok

23:25:25.0728 3964 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys

23:25:25.0775 3964 bowser - ok

23:25:26.0211 3964 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys

23:25:26.0742 3964 BrFiltLo - ok

23:25:27.0179 3964 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys

23:25:27.0241 3964 BrFiltUp - ok

23:25:27.0725 3964 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys

23:25:27.0834 3964 Brserid - ok

23:25:28.0395 3964 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys

23:25:28.0520 3964 BrSerWdm - ok

23:25:28.0957 3964 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys

23:25:29.0035 3964 BrUsbMdm - ok

23:25:29.0363 3964 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys

23:25:29.0441 3964 BrUsbSer - ok

23:25:29.0799 3964 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys

23:25:29.0877 3964 BTHMODEM - ok

23:25:30.0049 3964 catchme - ok

23:25:30.0657 3964 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys

23:25:30.0720 3964 cdfs - ok

23:25:31.0203 3964 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys

23:25:31.0281 3964 cdrom - ok

23:25:31.0874 3964 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys

23:25:31.0937 3964 circlass - ok

23:25:32.0436 3964 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys

23:25:32.0436 3964 CLFS - ok

23:25:32.0919 3964 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys

23:25:32.0935 3964 cmdide - ok

23:25:33.0450 3964 Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys

23:25:33.0450 3964 Compbatt - ok

23:25:33.0902 3964 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys

23:25:33.0902 3964 crcdisk - ok

23:25:34.0339 3964 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys

23:25:34.0433 3964 Crusoe - ok

23:25:34.0901 3964 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys

23:25:34.0963 3964 DfsC - ok

23:25:35.0509 3964 DgiVecp (770471de2550820feeb7e5d24bf2e273) C:\Windows\system32\Drivers\DgiVecp.sys

23:25:35.0556 3964 DgiVecp ( UnsignedFile.Multi.Generic ) - warning

23:25:35.0556 3964 DgiVecp - detected UnsignedFile.Multi.Generic (1)

23:25:36.0055 3964 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys

23:25:36.0071 3964 disk - ok

23:25:36.0585 3964 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys

23:25:36.0632 3964 Dot4 - ok

23:25:37.0131 3964 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys

23:25:37.0147 3964 Dot4Print - ok

23:25:37.0506 3964 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys

23:25:37.0553 3964 dot4usb - ok

23:25:37.0958 3964 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys

23:25:38.0005 3964 drmkaud - ok

23:25:38.0426 3964 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\Windows\system32\DRIVERS\dtsoftbus01.sys

23:25:50.0579 3964 dtsoftbus01 - ok

23:25:50.0906 3964 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys

23:25:50.0922 3964 DXGKrnl - ok

23:25:51.0156 3964 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys

23:25:51.0203 3964 E1G60 - ok

23:25:51.0437 3964 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys

23:25:51.0437 3964 Ecache - ok

23:25:51.0530 3964 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys

23:25:51.0546 3964 elxstor - ok

23:25:51.0608 3964 esgiguard - ok

23:25:51.0717 3964 ewusbnet (921878114f48949cfae9abe6fc4c4cc3) C:\Windows\system32\DRIVERS\ewusbnet.sys

23:25:51.0764 3964 ewusbnet - ok

23:25:51.0811 3964 ew_hwusbdev (e98a64c7f106740a38fb2b78197816f8) C:\Windows\system32\DRIVERS\ew_hwusbdev.sys

23:25:51.0827 3964 ew_hwusbdev - ok

23:25:51.0936 3964 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys

23:25:51.0983 3964 exfat - ok

23:25:51.0998 3964 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys

23:25:52.0029 3964 fastfat - ok

23:25:52.0217 3964 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys

23:25:52.0279 3964 fdc - ok

23:25:52.0341 3964 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys

23:25:52.0357 3964 FileInfo - ok

23:25:52.0373 3964 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys

23:25:52.0404 3964 Filetrace - ok

23:25:52.0435 3964 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys

23:25:52.0482 3964 flpydisk - ok

23:25:52.0560 3964 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys

23:25:52.0575 3964 FltMgr - ok

23:25:52.0607 3964 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys

23:25:52.0638 3964 Fs_Rec - ok

23:25:52.0669 3964 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys

23:25:52.0685 3964 gagp30kx - ok

23:25:52.0747 3964 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys

23:25:52.0763 3964 GEARAspiWDM - ok

23:25:52.0809 3964 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys

23:25:52.0872 3964 HdAudAddService - ok

23:25:52.0950 3964 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys

23:25:52.0981 3964 HDAudBus - ok

23:25:53.0262 3964 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys

23:25:53.0324 3964 HidBth - ok

23:25:53.0558 3964 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys

23:25:53.0636 3964 HidIr - ok

23:25:53.0745 3964 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys

23:25:53.0792 3964 HidUsb - ok

23:25:53.0823 3964 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys

23:25:53.0823 3964 HpCISSs - ok

23:25:54.0291 3964 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys

23:25:54.0338 3964 HTTP - ok

23:25:54.0713 3964 huawei_enumerator (22a4b14530194fc57c1c849fb5afee17) C:\Windows\system32\DRIVERS\ew_jubusenum.sys

23:25:54.0806 3964 huawei_enumerator - ok

23:25:54.0931 3964 hwdatacard (0b3957226ec94b1ecb7b9348bb535a23) C:\Windows\system32\DRIVERS\ewusbmdm.sys

23:25:54.0978 3964 hwdatacard - ok

23:25:55.0305 3964 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys

23:25:55.0321 3964 i2omp - ok

23:25:55.0727 3964 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys

23:25:55.0742 3964 i8042prt - ok

23:25:56.0319 3964 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys

23:25:56.0335 3964 iaStorV - ok

23:25:56.0834 3964 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys

23:25:56.0850 3964 iirsp - ok

23:25:57.0567 3964 IntcAzAudAddService (a47b2875680ad67b35c6150bd0203056) C:\Windows\system32\drivers\RTKVHDA.sys

23:25:57.0630 3964 IntcAzAudAddService - ok

23:25:57.0708 3964 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys

23:25:57.0723 3964 intelide - ok

23:25:58.0129 3964 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys

23:25:58.0191 3964 intelppm - ok

23:25:58.0457 3964 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys

23:25:58.0503 3964 IpFilterDriver - ok

23:25:58.0581 3964 IpInIp - ok

23:25:58.0722 3964 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys

23:25:58.0784 3964 IPMIDRV - ok

23:25:59.0237 3964 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys

23:25:59.0268 3964 IPNAT - ok

23:25:59.0829 3964 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys

23:25:59.0876 3964 IRENUM - ok

23:26:00.0375 3964 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys

23:26:00.0375 3964 isapnp - ok

23:26:00.0828 3964 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys

23:26:00.0843 3964 iScsiPrt - ok

23:26:01.0389 3964 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys

23:26:01.0389 3964 iteatapi - ok

23:26:01.0561 3964 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys

23:26:01.0561 3964 iteraid - ok

23:26:01.0779 3964 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys

23:26:01.0795 3964 kbdclass - ok

23:26:01.0951 3964 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys

23:26:01.0982 3964 kbdhid - ok

23:26:02.0279 3964 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys

23:26:02.0310 3964 KSecDD - ok

23:26:02.0341 3964 Lavasoft Kernexplorer - ok

23:26:02.0559 3964 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys

23:26:02.0622 3964 lltdio - ok

23:26:02.0747 3964 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys

23:26:02.0762 3964 LSI_FC - ok

23:26:03.0230 3964 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys

23:26:03.0246 3964 LSI_SAS - ok

23:26:03.0854 3964 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys

23:26:03.0870 3964 LSI_SCSI - ok

23:26:04.0322 3964 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys

23:26:04.0369 3964 luafv - ok

23:26:04.0431 3964 MBAMProtector - ok

23:26:04.0463 3964 MDC8021X (d7010580bf4e45d5e793a1fe75758c69) C:\Windows\system32\DRIVERS\mdc8021x.sys

23:26:04.0494 3964 MDC8021X ( UnsignedFile.Multi.Generic ) - warning

23:26:04.0494 3964 MDC8021X - detected UnsignedFile.Multi.Generic (1)

23:26:04.0541 3964 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys

23:26:04.0556 3964 megasas - ok

23:26:04.0899 3964 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys

23:26:04.0931 3964 Modem - ok

23:26:05.0258 3964 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys

23:26:05.0289 3964 monitor - ok

23:26:05.0321 3964 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys

23:26:05.0336 3964 mouclass - ok

23:26:05.0648 3964 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys

23:26:05.0695 3964 mouhid - ok

23:26:05.0867 3964 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys

23:26:05.0882 3964 MountMgr - ok

23:26:06.0101 3964 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys

23:26:06.0116 3964 mpio - ok

23:26:06.0787 3964 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys

23:26:06.0834 3964 mpsdrv - ok

23:26:07.0286 3964 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys

23:26:07.0286 3964 Mraid35x - ok

23:26:07.0614 3964 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys

23:26:07.0661 3964 MRxDAV - ok

23:26:07.0770 3964 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys

23:26:07.0801 3964 mrxsmb - ok

23:26:07.0988 3964 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys

23:26:08.0019 3964 mrxsmb10 - ok

23:26:08.0316 3964 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys

23:26:08.0347 3964 mrxsmb20 - ok

23:26:08.0441 3964 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys

23:26:08.0441 3964 msahci - ok

23:26:08.0690 3964 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys

23:26:08.0721 3964 msdsm - ok

23:26:08.0893 3964 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys

23:26:08.0971 3964 Msfs - ok

23:26:09.0314 3964 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys

23:26:09.0330 3964 msisadrv - ok

23:26:09.0626 3964 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys

23:26:09.0657 3964 MSKSSRV - ok

23:26:09.0923 3964 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys

23:26:09.0969 3964 MSPCLOCK - ok

23:26:10.0032 3964 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys

23:26:10.0063 3964 MSPQM - ok

23:26:10.0219 3964 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys

23:26:10.0235 3964 MsRPC - ok

23:26:10.0593 3964 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys

23:26:10.0593 3964 mssmbios - ok

23:26:10.0937 3964 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys

23:26:10.0968 3964 MSTEE - ok

23:26:11.0155 3964 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys

23:26:11.0171 3964 Mup - ok

23:26:11.0545 3964 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys

23:26:11.0576 3964 NativeWifiP - ok

23:26:11.0888 3964 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys

23:26:11.0935 3964 NDIS - ok

23:26:12.0216 3964 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys

23:26:12.0263 3964 NdisTapi - ok

23:26:12.0356 3964 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys

23:26:12.0372 3964 Ndisuio - ok

23:26:12.0403 3964 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys

23:26:12.0434 3964 NdisWan - ok

23:26:12.0637 3964 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys

23:26:12.0668 3964 NDProxy - ok

23:26:12.0777 3964 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys

23:26:12.0824 3964 NetBIOS - ok

23:26:13.0058 3964 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys

23:26:13.0105 3964 netbt - ok

23:26:13.0277 3964 netr73 (757f999aa72b55780ee810d4cd1bdd47) C:\Windows\system32\DRIVERS\netr73.sys

23:26:13.0323 3964 netr73 - ok

23:26:13.0479 3964 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys

23:26:13.0495 3964 nfrd960 - ok

23:26:13.0526 3964 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys

23:26:13.0557 3964 Npfs - ok

23:26:13.0682 3964 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys

23:26:13.0729 3964 nsiproxy - ok

23:26:14.0041 3964 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys

23:26:14.0135 3964 Ntfs - ok

23:26:14.0415 3964 NTIDrvr (7f1c1f78d709c4a54cbb46ede7e0b48d) C:\Windows\system32\DRIVERS\NTIDrvr.sys

23:26:14.0462 3964 NTIDrvr ( UnsignedFile.Multi.Generic ) - warning

23:26:14.0462 3964 NTIDrvr - detected UnsignedFile.Multi.Generic (1)

23:26:14.0868 3964 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys

23:26:14.0930 3964 ntrigdigi - ok

23:26:15.0024 3964 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys

23:26:15.0071 3964 Null - ok

23:26:16.0459 3964 nvlddmkm (214e7895a6dd70685e44d0df4fdf2dea) C:\Windows\system32\DRIVERS\nvlddmkm.sys

23:26:17.0167 3964 nvlddmkm - ok

23:26:17.0497 3964 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys

23:26:17.0509 3964 nvraid - ok

23:26:17.0686 3964 nvstor (4a5fcab82d9bf6af8a023a66802fe9e9) C:\Windows\system32\DRIVERS\nvstor.sys

23:26:17.0735 3964 nvstor - ok

23:26:17.0908 3964 nvstor32 (86b1b96806829066982ed67b7aba74ef) C:\Windows\system32\drivers\nvstor32.sys

23:26:20.0508 3964 nvstor32 - ok

23:26:20.0594 3964 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys

23:26:20.0605 3964 nv_agp - ok

23:26:20.0615 3964 NwlnkFlt - ok

23:26:20.0625 3964 NwlnkFwd - ok

23:26:20.0650 3964 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys

23:26:20.0694 3964 ohci1394 - ok

23:26:20.0933 3964 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys

23:26:20.0969 3964 Parport - ok

23:26:21.0314 3964 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys

23:26:21.0324 3964 partmgr - ok

23:26:21.0675 3964 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys

23:26:21.0738 3964 Parvdm - ok

23:26:21.0835 3964 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys

23:26:21.0861 3964 pci - ok

23:26:22.0001 3964 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys

23:26:22.0014 3964 pciide - ok

23:26:22.0134 3964 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys

23:26:22.0150 3964 pcmcia - ok

23:26:22.0306 3964 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys

23:26:22.0399 3964 PEAUTH - ok

23:26:22.0586 3964 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys

23:26:22.0633 3964 PptpMiniport - ok

23:26:22.0649 3964 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys

23:26:22.0711 3964 Processor - ok

23:26:22.0867 3964 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys

23:26:22.0908 3964 PSched - ok

23:26:23.0044 3964 PSDFilter (88b72d2a800300eb05c69f3c6c3180f2) C:\Windows\system32\DRIVERS\psdfilter.sys

23:26:23.0078 3964 PSDFilter ( UnsignedFile.Multi.Generic ) - warning

23:26:23.0078 3964 PSDFilter - detected UnsignedFile.Multi.Generic (1)

23:26:23.0549 3964 PSDNServ (9649e11fc5459bf6b2c9e8e327e45c3a) C:\Windows\system32\drivers\PSDNServ.sys

23:26:23.0614 3964 PSDNServ ( UnsignedFile.Multi.Generic ) - warning

23:26:23.0614 3964 PSDNServ - detected UnsignedFile.Multi.Generic (1)

23:26:23.0904 3964 psdvdisk (3d0be1373b9dfe9fc7b64f090e4d59e3) C:\Windows\system32\drivers\psdvdisk.sys

23:26:23.0945 3964 psdvdisk ( UnsignedFile.Multi.Generic ) - warning

23:26:23.0945 3964 psdvdisk - detected UnsignedFile.Multi.Generic (1)

23:26:24.0340 3964 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys

23:26:24.0381 3964 ql2300 - ok

23:26:24.0539 3964 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys

23:26:24.0562 3964 ql40xx - ok

23:26:24.0765 3964 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys

23:26:24.0811 3964 QWAVEdrv - ok

23:26:25.0045 3964 R300 (554685122b4f973e21d66c2baaf29543) C:\Windows\system32\DRIVERS\atikmdag.sys

23:26:25.0139 3964 R300 - ok

23:26:25.0264 3964 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys

23:26:25.0311 3964 RasAcd - ok

23:26:25.0449 3964 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys

23:26:25.0474 3964 Rasl2tp - ok

23:26:25.0544 3964 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys

23:26:25.0599 3964 RasPppoe - ok

23:26:25.0945 3964 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys

23:26:25.0962 3964 RasSstp - ok

23:26:26.0157 3964 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys

23:26:26.0203 3964 rdbss - ok

23:26:26.0568 3964 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys

23:26:26.0621 3964 RDPCDD - ok

23:26:26.0911 3964 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys

23:26:26.0982 3964 rdpdr - ok

23:26:27.0318 3964 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys

23:26:27.0385 3964 RDPENCDD - ok

23:26:27.0537 3964 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys

23:26:27.0605 3964 RDPWD - ok

23:26:27.0824 3964 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys

23:26:27.0875 3964 rspndr - ok

23:26:28.0208 3964 RT73 (91d44aa2a61006136da32118a179bf12) C:\Windows\system32\DRIVERS\Dr71WU.sys

23:26:28.0362 3964 RT73 - ok

23:26:28.0767 3964 s1039bus (d259d085f215b57b7170dc2d0b646b2a) C:\Windows\system32\DRIVERS\s1039bus.sys

23:26:28.0785 3964 s1039bus - ok

23:26:29.0088 3964 s1039mdfl (4d2b6621b5913e8b1cbb650a6037b8a2) C:\Windows\system32\DRIVERS\s1039mdfl.sys

23:26:29.0111 3964 s1039mdfl - ok

23:26:29.0178 3964 s1039mdm (8149799844ab2e91ea92e9cad4224254) C:\Windows\system32\DRIVERS\s1039mdm.sys

23:26:29.0191 3964 s1039mdm - ok

23:26:29.0245 3964 s1039mgmt (5e91068b3f5e003b83d8a99dc0c76e2c) C:\Windows\system32\DRIVERS\s1039mgmt.sys

23:26:29.0256 3964 s1039mgmt - ok

23:26:29.0307 3964 s1039nd5 (df54dbf1c4105d2074d07929f6ba91aa) C:\Windows\system32\DRIVERS\s1039nd5.sys

23:26:29.0326 3964 s1039nd5 - ok

23:26:29.0553 3964 s1039obex (1bc084b0708d42e29e2222346149e52f) C:\Windows\system32\DRIVERS\s1039obex.sys

23:26:29.0563 3964 s1039obex - ok

23:26:29.0668 3964 s1039unic (2e8ccb7bf5b1eb34bcf4ebf880b3e11c) C:\Windows\system32\DRIVERS\s1039unic.sys

23:26:29.0683 3964 s1039unic - ok

23:26:29.0748 3964 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys

23:26:29.0767 3964 sbp2port - ok

23:26:30.0046 3964 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys

23:26:30.0126 3964 secdrv - ok

23:26:30.0350 3964 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys

23:26:30.0523 3964 Serenum - ok

23:26:31.0072 3964 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys

23:26:31.0110 3964 Serial - ok

23:26:31.0602 3964 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys

23:26:31.0637 3964 sermouse - ok

23:26:31.0886 3964 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys

23:26:31.0955 3964 sffdisk - ok

23:26:32.0043 3964 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys

23:26:32.0096 3964 sffp_mmc - ok

23:26:32.0339 3964 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys

23:26:32.0410 3964 sffp_sd - ok

23:26:32.0517 3964 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys

23:26:32.0591 3964 sfloppy - ok

23:26:32.0807 3964 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys

23:26:32.0831 3964 sisagp - ok

23:26:33.0047 3964 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys

23:26:33.0055 3964 SiSRaid2 - ok

23:26:33.0084 3964 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys

23:26:33.0092 3964 SiSRaid4 - ok

23:26:33.0554 3964 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys

23:26:33.0587 3964 Smb - ok

23:26:33.0846 3964 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys

23:26:33.0855 3964 spldr - ok

23:26:34.0080 3964 sptd (71e276f6d189413266ea22171806597b) C:\Windows\system32\Drivers\sptd.sys

23:26:34.0080 3964 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 71e276f6d189413266ea22171806597b

23:26:34.0083 3964 sptd ( LockedFile.Multi.Generic ) - warning

23:26:34.0083 3964 sptd - detected LockedFile.Multi.Generic (1)

23:26:34.0446 3964 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys

23:26:34.0505 3964 srv - ok

23:26:34.0821 3964 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys

23:26:34.0880 3964 srv2 - ok

23:26:34.0962 3964 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys

23:26:34.0990 3964 srvnet - ok

23:26:35.0032 3964 SSPORT (ef3458337d7341a05169cefc73709264) C:\Windows\system32\Drivers\SSPORT.sys

23:26:35.0069 3964 SSPORT ( UnsignedFile.Multi.Generic ) - warning

23:26:35.0069 3964 SSPORT - detected UnsignedFile.Multi.Generic (1)

23:26:35.0187 3964 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys

23:26:35.0195 3964 swenum - ok

23:26:35.0227 3964 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys

23:26:35.0237 3964 Symc8xx - ok

23:26:35.0324 3964 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys

23:26:35.0333 3964 Sym_hi - ok

23:26:35.0362 3964 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys

23:26:35.0378 3964 Sym_u3 - ok

23:26:35.0715 3964 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys

23:26:35.0812 3964 Tcpip - ok

23:26:36.0048 3964 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys

23:26:36.0079 3964 Tcpip6 - ok

23:26:36.0197 3964 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys

23:26:36.0247 3964 tcpipreg - ok

23:26:36.0536 3964 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys

23:26:36.0577 3964 TDPIPE - ok

23:26:36.0921 3964 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys

23:26:36.0962 3964 TDTCP - ok

23:26:37.0068 3964 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys

23:26:37.0115 3964 tdx - ok

23:26:37.0259 3964 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys

23:26:37.0269 3964 TermDD - ok

23:26:37.0397 3964 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys

23:26:37.0420 3964 tssecsrv - ok

23:26:37.0635 3964 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys

23:26:37.0686 3964 tunmp - ok

23:26:37.0874 3964 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys

23:26:37.0911 3964 tunnel - ok

23:26:37.0983 3964 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys

23:26:37.0991 3964 uagp35 - ok

23:26:38.0021 3964 UBHelper (e0c67be430c6de490d6ccaecfa071f9e) C:\Windows\system32\drivers\UBHelper.sys

23:26:38.0040 3964 UBHelper ( UnsignedFile.Multi.Generic ) - warning

23:26:38.0040 3964 UBHelper - detected UnsignedFile.Multi.Generic (1)

23:26:38.0131 3964 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys

23:26:38.0160 3964 udfs - ok

23:26:38.0498 3964 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys

23:26:38.0519 3964 uliagpkx - ok

23:26:38.0880 3964 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys

23:26:38.0894 3964 uliahci - ok

23:26:39.0121 3964 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys

23:26:39.0132 3964 UlSata - ok

23:26:39.0385 3964 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys

23:26:39.0401 3964 ulsata2 - ok

23:26:39.0506 3964 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys

23:26:39.0550 3964 umbus - ok

23:26:39.0589 3964 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys

23:26:39.0621 3964 usbccgp - ok

23:26:40.0062 3964 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys

23:26:40.0124 3964 usbcir - ok

23:26:40.0727 3964 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys

23:26:40.0770 3964 usbehci - ok

23:26:41.0108 3964 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys

23:26:41.0218 3964 usbhub - ok

23:26:41.0345 3964 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys

23:26:41.0364 3964 usbohci - ok

23:26:41.0875 3964 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys

23:26:41.0911 3964 usbprint - ok

23:26:42.0572 3964 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys

23:26:42.0617 3964 usbscan - ok

23:26:43.0060 3964 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS

23:26:43.0103 3964 USBSTOR - ok

23:26:43.0600 3964 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys

23:26:43.0670 3964 usbuhci - ok

23:26:43.0860 3964 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys

23:26:43.0915 3964 vga - ok

23:26:44.0095 3964 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys

23:26:44.0137 3964 VgaSave - ok

23:26:44.0203 3964 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys

23:26:44.0212 3964 viaagp - ok

23:26:44.0270 3964 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys

23:26:44.0330 3964 ViaC7 - ok

23:26:44.0877 3964 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys

23:26:44.0897 3964 viaide - ok

23:26:45.0097 3964 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys

23:26:45.0139 3964 volmgr - ok

23:26:45.0514 3964 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys

23:26:45.0547 3964 volmgrx - ok

23:26:45.0699 3964 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys

23:26:45.0733 3964 volsnap - ok

23:26:46.0105 3964 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys

23:26:46.0139 3964 vsmraid - ok

23:26:46.0823 3964 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys

23:26:46.0902 3964 WacomPen - ok

23:26:47.0107 3964 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

23:26:47.0143 3964 Wanarp - ok

23:26:47.0147 3964 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys

23:26:47.0168 3964 Wanarpv6 - ok

23:26:47.0306 3964 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys

23:26:47.0330 3964 Wd - ok

23:26:47.0514 3964 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys

23:26:47.0546 3964 Wdf01000 - ok

23:26:47.0753 3964 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys

23:26:47.0813 3964 WmiAcpi - ok

23:26:48.0030 3964 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys

23:26:48.0088 3964 WpdUsb - ok

23:26:48.0458 3964 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys

23:26:48.0522 3964 ws2ifsl - ok

23:26:48.0968 3964 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys

23:26:49.0005 3964 WUDFRd - ok

23:26:49.0353 3964 yukonwlh (bfab14d10543963dbda7128adabfa51d) C:\Windows\system32\DRIVERS\yk60x86.sys

23:26:49.0422 3964 yukonwlh - ok

23:26:49.0506 3964 MBR (0x1B8) (beedf9b7f43a72a91456f7131afc11b2) \Device\Harddisk0\DR0

23:26:51.0292 3964 \Device\Harddisk0\DR0 - ok

23:26:53.0080 3964 MBR (0x1B8) (180dbde3af7ea48b3db3ac27b1ddf401) \Device\Harddisk1\DR1

23:26:53.0891 3964 \Device\Harddisk1\DR1 - ok

23:26:53.0922 3964 Boot (0x1200) (14f1f642edf38b8af3267b55717793a7) \Device\Harddisk0\DR0\Partition0

23:26:53.0946 3964 \Device\Harddisk0\DR0\Partition0 - ok

23:26:53.0950 3964 Boot (0x1200) (22d438d50e5e87bb71c418c0304d33da) \Device\Harddisk1\DR1\Partition0

23:26:53.0952 3964 \Device\Harddisk1\DR1\Partition0 - ok

23:26:53.0952 3964 ============================================================

23:26:53.0952 3964 Scan finished

23:26:53.0952 3964 ============================================================

23:26:53.0964 3032 Detected object count: 9

23:26:53.0964 3032 Actual detected object count: 9

23:27:51.0297 3032 DgiVecp ( UnsignedFile.Multi.Generic ) - skipped by user

23:27:51.0297 3032 DgiVecp ( UnsignedFile.Multi.Generic ) - User select action: Skip

23:27:51.0297 3032 MDC8021X ( UnsignedFile.Multi.Generic ) - skipped by user

23:27:51.0297 3032 MDC8021X ( UnsignedFile.Multi.Generic ) - User select action: Skip

23:27:51.0300 3032 NTIDrvr ( UnsignedFile.Multi.Generic ) - skipped by user

23:27:51.0300 3032 NTIDrvr ( UnsignedFile.Multi.Generic ) - User select action: Skip

23:27:51.0302 3032 PSDFilter ( UnsignedFile.Multi.Generic ) - skipped by user

23:27:51.0302 3032 PSDFilter ( UnsignedFile.Multi.Generic ) - User select action: Skip

23:27:51.0305 3032 PSDNServ ( UnsignedFile.Multi.Generic ) - skipped by user

23:27:51.0305 3032 PSDNServ ( UnsignedFile.Multi.Generic ) - User select action: Skip

23:27:51.0309 3032 psdvdisk ( UnsignedFile.Multi.Generic ) - skipped by user

23:27:51.0309 3032 psdvdisk ( UnsignedFile.Multi.Generic ) - User select action: Skip

23:27:51.0312 3032 sptd ( LockedFile.Multi.Generic ) - skipped by user

23:27:51.0312 3032 sptd ( LockedFile.Multi.Generic ) - User select action: Skip

23:27:51.0314 3032 SSPORT ( UnsignedFile.Multi.Generic ) - skipped by user

23:27:51.0314 3032 SSPORT ( UnsignedFile.Multi.Generic ) - User select action: Skip

23:27:51.0317 3032 UBHelper ( UnsignedFile.Multi.Generic ) - skipped by user

23:27:51.0317 3032 UBHelper ( UnsignedFile.Multi.Generic ) - User select action: Skip

Link to post
Share on other sites

Guest
This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.