17:02:44.0609 2792 TDSS rootkit removing tool 2.6.12.0 Oct 21 2011 11:23:48 17:02:44.0921 2792 ============================================================ 17:02:44.0921 2792 Current date / time: 2011/10/24 17:02:44.0921 17:02:44.0921 2792 SystemInfo: 17:02:44.0921 2792 17:02:44.0921 2792 OS Version: 5.1.2600 ServicePack: 3.0 17:02:44.0921 2792 Product type: Workstation 17:02:44.0921 2792 ComputerName: ASUS 17:02:44.0921 2792 UserName: Krzysztof 17:02:44.0921 2792 Windows directory: D:\WINDOWS 17:02:44.0921 2792 System windows directory: D:\WINDOWS 17:02:44.0921 2792 Processor architecture: Intel x86 17:02:44.0921 2792 Number of processors: 2 17:02:44.0921 2792 Page size: 0x1000 17:02:44.0921 2792 Boot type: Normal boot 17:02:44.0921 2792 ============================================================ 17:02:46.0437 2792 Initialize success 17:02:51.0828 3428 ============================================================ 17:02:51.0828 3428 Scan started 17:02:51.0828 3428 Mode: Manual; SigCheck; TDLFS; 17:02:51.0828 3428 ============================================================ 17:02:53.0484 3428 Abiosdsk - ok 17:02:53.0500 3428 abp480n5 - ok 17:02:53.0578 3428 ACPI (05118282f5d039595a2b92b4a4afe197) D:\WINDOWS\system32\DRIVERS\ACPI.sys 17:02:54.0203 3428 ACPI - ok 17:02:54.0546 3428 ACPIEC (66a42b7db194e24b973bbcce840a0f3f) D:\WINDOWS\system32\DRIVERS\ACPIEC.sys 17:02:54.0718 3428 ACPIEC - ok 17:02:55.0000 3428 adpu160m - ok 17:02:55.0296 3428 aec (8bed39e3c35d6a489438b8141717a557) D:\WINDOWS\system32\drivers\aec.sys 17:02:55.0421 3428 aec - ok 17:02:55.0796 3428 AFD (4d43e74f2a1239d53929b82600f1971c) D:\WINDOWS\System32\drivers\afd.sys 17:02:55.0828 3428 AFD - ok 17:02:56.0046 3428 Aha154x - ok 17:02:56.0078 3428 aic78u2 - ok 17:02:56.0156 3428 aic78xx - ok 17:02:56.0390 3428 AliIde - ok 17:02:56.0500 3428 amsint - ok 17:02:56.0703 3428 ANIO (920298c7aef97d8168d219d35975d295) D:\WINDOWS\system32\ANIO.SYS 17:02:56.0750 3428 ANIO ( UnsignedFile.Multi.Generic ) - warning 17:02:56.0750 3428 ANIO - detected UnsignedFile.Multi.Generic (1) 17:02:57.0000 3428 AR5416 (864160f5f4fbdd97b6a686854bfebd86) D:\WINDOWS\system32\DRIVERS\athw.sys 17:02:57.0125 3428 AR5416 - ok 17:02:57.0328 3428 asc - ok 17:02:57.0343 3428 asc3350p - ok 17:02:57.0359 3428 asc3550 - ok 17:02:57.0437 3428 Aspi32 (5b01af89d16d562825c4db4530f20cbb) D:\WINDOWS\system32\drivers\aspi32.sys 17:02:57.0453 3428 Aspi32 ( UnsignedFile.Multi.Generic ) - warning 17:02:57.0453 3428 Aspi32 - detected UnsignedFile.Multi.Generic (1) 17:02:57.0734 3428 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) D:\WINDOWS\system32\DRIVERS\asyncmac.sys 17:02:57.0859 3428 AsyncMac - ok 17:02:58.0234 3428 atapi (9f3a2f5aa6875c72bf062c712cfa2674) D:\WINDOWS\system32\DRIVERS\atapi.sys 17:02:58.0359 3428 atapi - ok 17:02:58.0671 3428 Atdisk - ok 17:02:58.0953 3428 Atmarpc (9916c1225104ba14794209cfa8012159) D:\WINDOWS\system32\DRIVERS\atmarpc.sys 17:02:59.0078 3428 Atmarpc - ok 17:02:59.0171 3428 audstub (d9f724aa26c010a217c97606b160ed68) D:\WINDOWS\system32\DRIVERS\audstub.sys 17:02:59.0281 3428 audstub - ok 17:02:59.0328 3428 Beep (da1f27d85e0d1525f6621372e7b685e9) D:\WINDOWS\system32\drivers\Beep.sys 17:02:59.0437 3428 Beep - ok 17:02:59.0500 3428 BT (654ec88329cb5da84ccd88890670490a) D:\WINDOWS\system32\DRIVERS\btnetdrv.sys 17:02:59.0546 3428 BT - ok 17:02:59.0593 3428 BTCOM (8ba02bd1b493860a754a1e55c494376d) D:\WINDOWS\system32\DRIVERS\btcomport.sys 17:02:59.0609 3428 BTCOM - ok 17:02:59.0656 3428 BTCOMBUS (ad30504d3cd564b24653400633c4f4da) D:\WINDOWS\system32\Drivers\btcombus.sys 17:02:59.0671 3428 BTCOMBUS - ok 17:02:59.0734 3428 Btcsrusb (22eb06b1955fa33e2aeed3175585b90b) D:\WINDOWS\system32\Drivers\btcusb.sys 17:02:59.0734 3428 Btcsrusb - ok 17:02:59.0796 3428 BtHidBus (da9e15e55c33392d7dfd7f21116214be) D:\WINDOWS\system32\Drivers\BtHidBus.sys 17:02:59.0812 3428 BtHidBus - ok 17:02:59.0828 3428 btnetBUs (7bb8ac22bc9e6a1e7707daecada95cd9) D:\WINDOWS\system32\Drivers\btnetBus.sys 17:02:59.0843 3428 btnetBUs - ok 17:02:59.0843 3428 catchme - ok 17:02:59.0875 3428 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) D:\WINDOWS\system32\drivers\cbidf2k.sys 17:02:59.0984 3428 cbidf2k - ok 17:03:00.0093 3428 CCDECODE (0be5aef125be881c4f854c554f2b025c) D:\WINDOWS\system32\DRIVERS\CCDECODE.sys 17:03:00.0203 3428 CCDECODE - ok 17:03:00.0218 3428 cd20xrnt - ok 17:03:00.0234 3428 Cdaudio (c1b486a7658353d33a10cc15211a873b) D:\WINDOWS\system32\drivers\Cdaudio.sys 17:03:00.0328 3428 Cdaudio - ok 17:03:00.0390 3428 Cdfs (c885b02847f5d2fd45a24e219ed93b32) D:\WINDOWS\system32\drivers\Cdfs.sys 17:03:01.0234 3428 Cdfs - ok 17:03:01.0359 3428 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) D:\WINDOWS\system32\DRIVERS\cdrom.sys 17:03:01.0468 3428 Cdrom - ok 17:03:01.0468 3428 Changer - ok 17:03:01.0562 3428 CmBatt (0f6c187d38d98f8df904589a5f94d411) D:\WINDOWS\system32\DRIVERS\CmBatt.sys 17:03:01.0656 3428 CmBatt - ok 17:03:01.0734 3428 CmdIde - ok 17:03:01.0750 3428 Compbatt (6e4c9f21f0fae8940661144f41b13203) D:\WINDOWS\system32\DRIVERS\compbatt.sys 17:03:01.0859 3428 Compbatt - ok 17:03:01.0937 3428 Cpqarray - ok 17:03:02.0031 3428 cpudrv (d01f685f8b4598d144b0cce9ff95d8d5) D:\Program Files\SystemRequirementsLab\cpudrv.sys 17:03:02.0046 3428 cpudrv - ok 17:03:02.0171 3428 cpuz135 (c2eb4539a4f6ab6edd01bdc191619975) D:\WINDOWS\system32\drivers\cpuz135_x32.sys 17:03:02.0187 3428 cpuz135 - ok 17:03:02.0250 3428 CRFILTER (d18893845ae1c5833b5b2ea9b7f5c670) D:\WINDOWS\system32\DRIVERS\CRFILTER.sys 17:03:02.0281 3428 CRFILTER - ok 17:03:02.0281 3428 dac2w2k - ok 17:03:02.0296 3428 dac960nt - ok 17:03:02.0343 3428 Disk (044452051f3e02e7963599fc8f4f3e25) D:\WINDOWS\system32\DRIVERS\disk.sys 17:03:02.0453 3428 Disk - ok 17:03:02.0703 3428 dmboot (bc9219abc5696942e6f9ac8a9b28670f) D:\WINDOWS\system32\drivers\dmboot.sys 17:03:02.0859 3428 dmboot - ok 17:03:02.0984 3428 dmio (5fa232e3ba6e1346f9f5a7e519320cb0) D:\WINDOWS\system32\drivers\dmio.sys 17:03:03.0093 3428 dmio - ok 17:03:03.0093 3428 dmload (e9317282a63ca4d188c0df5e09c6ac5f) D:\WINDOWS\system32\drivers\dmload.sys 17:03:03.0203 3428 dmload - ok 17:03:03.0296 3428 DMusic (8a208dfcf89792a484e76c40e5f50b45) D:\WINDOWS\system32\drivers\DMusic.sys 17:03:03.0406 3428 DMusic - ok 17:03:03.0421 3428 dpti2o - ok 17:03:03.0437 3428 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) D:\WINDOWS\system32\drivers\drmkaud.sys 17:03:03.0531 3428 drmkaud - ok 17:03:03.0593 3428 ETD (bf3afa622bc91f28d682d0c6e65107a6) D:\WINDOWS\system32\DRIVERS\ETD.sys 17:03:03.0609 3428 ETD - ok 17:03:03.0656 3428 Ext2fs (fbc0e085a5becba5dd3c401eeb6e45bb) D:\WINDOWS\system32\DRIVERS\ext2fs.sys 17:03:03.0687 3428 Ext2fs ( UnsignedFile.Multi.Generic ) - warning 17:03:03.0687 3428 Ext2fs - detected UnsignedFile.Multi.Generic (1) 17:03:03.0796 3428 Fastfat (38d332a6d56af32635675f132548343e) D:\WINDOWS\system32\drivers\Fastfat.sys 17:03:03.0921 3428 Fastfat - ok 17:03:03.0937 3428 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) D:\WINDOWS\system32\drivers\Fdc.sys 17:03:04.0046 3428 Fdc - ok 17:03:04.0062 3428 Fips (09e2a4d33f81a06a8aab2ba0a0b5d235) D:\WINDOWS\system32\drivers\Fips.sys 17:03:04.0171 3428 Fips - ok 17:03:04.0171 3428 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) D:\WINDOWS\system32\drivers\Flpydisk.sys 17:03:04.0281 3428 Flpydisk - ok 17:03:04.0406 3428 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) D:\WINDOWS\system32\DRIVERS\fltMgr.sys 17:03:04.0515 3428 FltMgr - ok 17:03:04.0531 3428 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) D:\WINDOWS\system32\drivers\Fs_Rec.sys 17:03:04.0640 3428 Fs_Rec - ok 17:03:04.0671 3428 FTDIBUS (8142d5d886829b9876cb93af59475c09) D:\WINDOWS\system32\drivers\ftdibus.sys 17:03:04.0687 3428 FTDIBUS - ok 17:03:04.0718 3428 Ftdisk (ed6d921d8ab423138fb35beee6d6a6cb) D:\WINDOWS\system32\DRIVERS\ftdisk.sys 17:03:04.0828 3428 Ftdisk - ok 17:03:04.0937 3428 FTSER2K (63d72a4cf9f163b59db0ceed940a7d76) D:\WINDOWS\system32\drivers\ftser2k.sys 17:03:04.0953 3428 FTSER2K - ok 17:03:05.0015 3428 giveio (77ebf3e9386daa51551af429052d88d0) D:\WINDOWS\system32\giveio.sys 17:03:05.0031 3428 giveio ( UnsignedFile.Multi.Generic ) - warning 17:03:05.0031 3428 giveio - detected UnsignedFile.Multi.Generic (1) 17:03:05.0078 3428 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) D:\WINDOWS\system32\DRIVERS\msgpc.sys 17:03:05.0187 3428 Gpc - ok 17:03:05.0312 3428 hamachi (833051c6c6c42117191935f734cfbd97) D:\WINDOWS\system32\DRIVERS\hamachi.sys 17:03:05.0312 3428 hamachi - ok 17:03:05.0375 3428 HDAudBus (573c7d0a32852b48f3058cfd8026f511) D:\WINDOWS\system32\DRIVERS\HDAudBus.sys 17:03:05.0468 3428 HDAudBus - ok 17:03:05.0593 3428 hidusb (ccf82c5ec8a7326c3066de870c06daf1) D:\WINDOWS\system32\DRIVERS\hidusb.sys 17:03:05.0703 3428 hidusb - ok 17:03:05.0703 3428 hpn - ok 17:03:05.0781 3428 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) D:\WINDOWS\system32\DRIVERS\HPZid412.sys 17:03:05.0812 3428 HPZid412 - ok 17:03:05.0843 3428 HPZipr12 (89f41658929393487b6b7d13c8528ce3) D:\WINDOWS\system32\DRIVERS\HPZipr12.sys 17:03:05.0890 3428 HPZipr12 - ok 17:03:05.0921 3428 HPZius12 (abcb05ccdbf03000354b9553820e39f8) D:\WINDOWS\system32\DRIVERS\HPZius12.sys 17:03:05.0968 3428 HPZius12 - ok 17:03:06.0062 3428 HTCAND32 (cbd09ed9cf6822177ee85aea4d8816a2) D:\WINDOWS\system32\Drivers\ANDROIDUSB.sys 17:03:06.0109 3428 HTCAND32 - ok 17:03:06.0156 3428 htcnprot (04e3b3554076b8192a668efe88a682a1) D:\WINDOWS\system32\DRIVERS\htcnprot.sys 17:03:06.0171 3428 htcnprot - ok 17:03:06.0218 3428 HTTP (f6aacf5bce2893e0c1754afeb672e5c9) D:\WINDOWS\system32\Drivers\HTTP.sys 17:03:06.0328 3428 HTTP - ok 17:03:06.0421 3428 i2omgmt - ok 17:03:06.0437 3428 i2omp - ok 17:03:06.0500 3428 i8042prt (177b372af55c4460d0968b5f1d02aa1c) D:\WINDOWS\system32\DRIVERS\i8042prt.sys 17:03:06.0609 3428 i8042prt - ok 17:03:06.0718 3428 ialm (2f91ca49fb204262d234cae40e51c8cd) D:\WINDOWS\system32\DRIVERS\igxpmp32.sys 17:03:06.0828 3428 ialm - ok 17:03:06.0953 3428 IfsMount (f3f825fcc70471fd967126e1871b2cdc) D:\WINDOWS\system32\DRIVERS\ifsmount.sys 17:03:06.0968 3428 IfsMount ( UnsignedFile.Multi.Generic ) - warning 17:03:06.0968 3428 IfsMount - detected UnsignedFile.Multi.Generic (1) 17:03:07.0078 3428 Imapi (083a052659f5310dd8b6a6cb05edcf8e) D:\WINDOWS\system32\DRIVERS\imapi.sys 17:03:07.0187 3428 Imapi - ok 17:03:07.0281 3428 ini910u - ok 17:03:07.0296 3428 IntelIde - ok 17:03:07.0375 3428 intelppm (da153edc09de8c4f846c085caa39d1cc) D:\WINDOWS\system32\DRIVERS\intelppm.sys 17:03:07.0484 3428 intelppm - ok 17:03:07.0625 3428 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) D:\WINDOWS\system32\DRIVERS\Ip6Fw.sys 17:03:07.0765 3428 Ip6Fw - ok 17:03:07.0859 3428 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) D:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 17:03:07.0953 3428 IpFilterDriver - ok 17:03:08.0062 3428 IpInIp (b87ab476dcf76e72010632b5550955f5) D:\WINDOWS\system32\DRIVERS\ipinip.sys 17:03:08.0156 3428 IpInIp - ok 17:03:08.0265 3428 IpNat (cc748ea12c6effde940ee98098bf96bb) D:\WINDOWS\system32\DRIVERS\ipnat.sys 17:03:08.0359 3428 IpNat - ok 17:03:08.0453 3428 IPSec (23c74d75e36e7158768dd63d92789a91) D:\WINDOWS\system32\DRIVERS\ipsec.sys 17:03:08.0562 3428 IPSec - ok 17:03:08.0593 3428 IRENUM - ok 17:03:08.0687 3428 isapnp (c8eef2e93835b81bd335de2123121283) D:\WINDOWS\system32\DRIVERS\isapnp.sys 17:03:08.0781 3428 isapnp - ok 17:03:08.0921 3428 IvtBtBUs (132eb047e3f94dc9eab83c74e8c2e85a) D:\WINDOWS\system32\Drivers\IvtBtBus.sys 17:03:08.0937 3428 IvtBtBUs - ok 17:03:09.0000 3428 Kbdclass (2aeca45d4aeaacbdcb77ad11184e4601) D:\WINDOWS\system32\DRIVERS\kbdclass.sys 17:03:09.0109 3428 Kbdclass - ok 17:03:09.0140 3428 kbdhid (f718dcddac2544bc693f22977d06f78b) D:\WINDOWS\system32\DRIVERS\kbdhid.sys 17:03:09.0250 3428 kbdhid - ok 17:03:09.0312 3428 kl1 (8eb0825b9d9f38c7ace67f012776c323) D:\WINDOWS\system32\drivers\kl1.sys 17:03:09.0312 3428 kl1 - ok 17:03:09.0375 3428 kl2 (713576569667ac9e0f8556076004a96b) D:\WINDOWS\system32\DRIVERS\kl2.sys 17:03:09.0390 3428 kl2 - ok 17:03:09.0515 3428 klif (854167a8a1c7300282ee5e157c3e1fbe) D:\WINDOWS\system32\drivers\klif.sys 17:03:09.0531 3428 klif ( UnsignedFile.Multi.Generic ) - warning 17:03:09.0531 3428 klif - detected UnsignedFile.Multi.Generic (1) 17:03:09.0578 3428 klim5 (967e2224217431b21f1d04fbb4c68a4b) D:\WINDOWS\system32\DRIVERS\klim5.sys 17:03:09.0593 3428 klim5 - ok 17:03:09.0656 3428 klmouflt (3959530f69e19da56f1f24f2c89f1e2c) D:\WINDOWS\system32\DRIVERS\klmouflt.sys 17:03:09.0671 3428 klmouflt - ok 17:03:09.0734 3428 kmixer (692bcf44383d056aed41b045a323d378) D:\WINDOWS\system32\drivers\kmixer.sys 17:03:09.0828 3428 kmixer - ok 17:03:09.0921 3428 KSecDD (1705745d900dabf2d89f90ebaddc7517) D:\WINDOWS\system32\drivers\KSecDD.sys 17:03:10.0015 3428 KSecDD - ok 17:03:10.0109 3428 L1e (1c2eed062dc77b0c16eb4f3ed58f044b) D:\WINDOWS\system32\DRIVERS\l1e51x86.sys 17:03:10.0140 3428 L1e - ok 17:03:10.0156 3428 lbrtfdc - ok 17:03:10.0234 3428 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) D:\WINDOWS\system32\drivers\mnmdd.sys 17:03:10.0328 3428 mnmdd - ok 17:03:10.0546 3428 Modem (4a068db7dc37d5afedb6512d2931d7b3) D:\WINDOWS\system32\drivers\Modem.sys 17:03:10.0984 3428 Modem - ok 17:03:11.0078 3428 monfilt (9fa7207d1b1adead88ae8eed9cdbbaa5) D:\WINDOWS\system32\drivers\monfilt.sys 17:03:11.0187 3428 monfilt - ok 17:03:11.0312 3428 Mouclass (fbed3df6b884f8cf00447b73507f2c48) D:\WINDOWS\system32\DRIVERS\mouclass.sys 17:03:11.0406 3428 Mouclass - ok 17:03:11.0578 3428 mouhid (ecec1e6cd558ab80f944f31326e9d3b5) D:\WINDOWS\system32\DRIVERS\mouhid.sys 17:03:11.0687 3428 mouhid - ok 17:03:11.0843 3428 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) D:\WINDOWS\system32\drivers\MountMgr.sys 17:03:11.0937 3428 MountMgr - ok 17:03:11.0984 3428 mraid35x - ok 17:03:12.0031 3428 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) D:\WINDOWS\system32\DRIVERS\mrxdav.sys 17:03:12.0125 3428 MRxDAV - ok 17:03:12.0140 3428 MRxSmb (7170ab42b51954def2781a4d1cce65f4) D:\WINDOWS\system32\DRIVERS\mrxsmb.sys 17:03:12.0156 3428 MRxSmb - ok 17:03:12.0187 3428 Msfs (c941ea2454ba8350021d774daf0f1027) D:\WINDOWS\system32\drivers\Msfs.sys 17:03:12.0296 3428 Msfs - ok 17:03:12.0421 3428 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) D:\WINDOWS\system32\drivers\MSKSSRV.sys 17:03:12.0515 3428 MSKSSRV - ok 17:03:12.0546 3428 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) D:\WINDOWS\system32\drivers\MSPCLOCK.sys 17:03:12.0656 3428 MSPCLOCK - ok 17:03:12.0703 3428 MSPQM (bad59648ba099da4a17680b39730cb3d) D:\WINDOWS\system32\drivers\MSPQM.sys 17:03:12.0812 3428 MSPQM - ok 17:03:12.0859 3428 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) D:\WINDOWS\system32\DRIVERS\mssmbios.sys 17:03:12.0953 3428 mssmbios - ok 17:03:12.0984 3428 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) D:\WINDOWS\system32\drivers\MSTEE.sys 17:03:13.0093 3428 MSTEE - ok 17:03:13.0140 3428 MTsensor (e333010a50bf603acc350f6019e9ce02) D:\WINDOWS\system32\DRIVERS\ATKACPI.sys 17:03:13.0156 3428 MTsensor - ok 17:03:13.0203 3428 Mup (2f625d11385b1a94360bfc70aaefdee1) D:\WINDOWS\system32\drivers\Mup.sys 17:03:13.0296 3428 Mup - ok 17:03:13.0343 3428 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) D:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 17:03:13.0453 3428 NABTSFEC - ok 17:03:13.0578 3428 NDIS (1df7f42665c94b825322fae71721130d) D:\WINDOWS\system32\drivers\NDIS.sys 17:03:13.0671 3428 NDIS - ok 17:03:13.0812 3428 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) D:\WINDOWS\system32\DRIVERS\NdisIP.sys 17:03:13.0906 3428 NdisIP - ok 17:03:13.0968 3428 NdisTapi (1ab3d00c991ab086e69db84b6c0ed78f) D:\WINDOWS\system32\DRIVERS\ndistapi.sys 17:03:14.0062 3428 NdisTapi - ok 17:03:14.0093 3428 Ndisuio (f927a4434c5028758a842943ef1a3849) D:\WINDOWS\system32\DRIVERS\ndisuio.sys 17:03:14.0187 3428 Ndisuio - ok 17:03:14.0203 3428 NdisWan (edc1531a49c80614b2cfda43ca8659ab) D:\WINDOWS\system32\DRIVERS\ndiswan.sys 17:03:14.0312 3428 NdisWan - ok 17:03:14.0453 3428 NDProxy (6215023940cfd3702b46abc304e1d45a) D:\WINDOWS\system32\drivers\NDProxy.sys 17:03:14.0546 3428 NDProxy - ok 17:03:14.0578 3428 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) D:\WINDOWS\system32\DRIVERS\netbios.sys 17:03:14.0671 3428 NetBIOS - ok 17:03:14.0812 3428 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) D:\WINDOWS\system32\DRIVERS\netbt.sys 17:03:14.0906 3428 NetBT - ok 17:03:15.0078 3428 nmwcd (48fb907b069524f2dc7ba62a0762850c) D:\WINDOWS\system32\drivers\ccdcmb.sys 17:03:15.0125 3428 nmwcd - ok 17:03:15.0203 3428 nmwcdc (2914ceb789964141ac6e22c6bc980c42) D:\WINDOWS\system32\drivers\ccdcmbo.sys 17:03:15.0281 3428 nmwcdc - ok 17:03:15.0359 3428 NPF (b48dc6abcd3aeff8618350ccbdc6b09a) D:\WINDOWS\system32\drivers\npf.sys 17:03:15.0359 3428 NPF - ok 17:03:15.0421 3428 Npfs (3182d64ae053d6fb034f44b6def8034a) D:\WINDOWS\system32\drivers\Npfs.sys 17:03:15.0515 3428 Npfs - ok 17:03:15.0546 3428 NSNDIS5 (53f7546e8daefb3a0813f5e19c4613c9) D:\WINDOWS\system32\NSNDIS5.SYS 17:03:15.0562 3428 NSNDIS5 ( UnsignedFile.Multi.Generic ) - warning 17:03:15.0562 3428 NSNDIS5 - detected UnsignedFile.Multi.Generic (1) 17:03:15.0640 3428 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) D:\WINDOWS\system32\drivers\Ntfs.sys 17:03:15.0734 3428 Ntfs - ok 17:03:15.0781 3428 Null (73c1e1f395918bc2c6dd67af7591a3ad) D:\WINDOWS\system32\drivers\Null.sys 17:03:15.0890 3428 Null - ok 17:03:15.0921 3428 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) D:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 17:03:16.0015 3428 NwlnkFlt - ok 17:03:16.0046 3428 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) D:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 17:03:16.0125 3428 NwlnkFwd - ok 17:03:16.0203 3428 Parport (2d4cdaebced17743aa9e25d3016dc229) D:\WINDOWS\system32\drivers\Parport.sys 17:03:16.0296 3428 Parport - ok 17:03:16.0453 3428 PartMgr (beb3ba25197665d82ec7065b724171c6) D:\WINDOWS\system32\drivers\PartMgr.sys 17:03:16.0531 3428 PartMgr - ok 17:03:16.0640 3428 ParVdm (453ec2c2a20a1382f564541918520eeb) D:\WINDOWS\system32\drivers\ParVdm.sys 17:03:16.0734 3428 ParVdm - ok 17:03:16.0890 3428 pccsmcfd (fd2041e9ba03db7764b2248f02475079) D:\WINDOWS\system32\DRIVERS\pccsmcfd.sys 17:03:16.0937 3428 pccsmcfd - ok 17:03:17.0000 3428 PCI (6862c69168d787b85a7d95ccd33c694e) D:\WINDOWS\system32\DRIVERS\pci.sys 17:03:17.0078 3428 PCI - ok 17:03:17.0187 3428 PCIDump - ok 17:03:17.0218 3428 PCIIde (548cf2d6369eae441a4c6baa75bc4f0a) D:\WINDOWS\system32\DRIVERS\pciide.sys 17:03:17.0328 3428 PCIIde - ok 17:03:17.0390 3428 Pcmcia (8db27f1ae9593c94095485305a583862) D:\WINDOWS\system32\drivers\Pcmcia.sys 17:03:17.0484 3428 Pcmcia - ok 17:03:17.0546 3428 PDCOMP - ok 17:03:17.0562 3428 PDFRAME - ok 17:03:17.0578 3428 PDRELI - ok 17:03:17.0593 3428 PDRFRAME - ok 17:03:17.0609 3428 perc2 - ok 17:03:17.0625 3428 perc2hib - ok 17:03:17.0687 3428 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) D:\WINDOWS\system32\DRIVERS\raspptp.sys 17:03:17.0796 3428 PptpMiniport - ok 17:03:17.0812 3428 PSched (09298ec810b07e5d582cb3a3f9255424) D:\WINDOWS\system32\DRIVERS\psched.sys 17:03:17.0921 3428 PSched - ok 17:03:17.0968 3428 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) D:\WINDOWS\system32\DRIVERS\ptilink.sys 17:03:18.0062 3428 Ptilink - ok 17:03:18.0203 3428 PxHelp20 (153d02480a0a2f45785522e814c634b6) D:\WINDOWS\system32\Drivers\PxHelp20.sys 17:03:18.0218 3428 PxHelp20 - ok 17:03:18.0234 3428 ql1080 - ok 17:03:18.0250 3428 Ql10wnt - ok 17:03:18.0250 3428 ql12160 - ok 17:03:18.0265 3428 ql1240 - ok 17:03:18.0281 3428 ql1280 - ok 17:03:18.0296 3428 RAMDiskXP - ok 17:03:18.0312 3428 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) D:\WINDOWS\system32\DRIVERS\rasacd.sys 17:03:18.0406 3428 RasAcd - ok 17:03:18.0468 3428 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) D:\WINDOWS\system32\DRIVERS\rasl2tp.sys 17:03:18.0546 3428 Rasl2tp - ok 17:03:18.0625 3428 RasPppoe (5bc962f2654137c9909c3d4603587dee) D:\WINDOWS\system32\DRIVERS\raspppoe.sys 17:03:18.0718 3428 RasPppoe - ok 17:03:18.0796 3428 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) D:\WINDOWS\system32\DRIVERS\raspti.sys 17:03:18.0906 3428 Raspti - ok 17:03:18.0968 3428 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) D:\WINDOWS\system32\DRIVERS\rdbss.sys 17:03:19.0062 3428 Rdbss - ok 17:03:19.0109 3428 RDPCDD (4912d5b403614ce99c28420f75353332) D:\WINDOWS\system32\DRIVERS\RDPCDD.sys 17:03:19.0203 3428 RDPCDD - ok 17:03:19.0250 3428 rdpdr (15cabd0f7c00c47c70124907916af3f1) D:\WINDOWS\system32\DRIVERS\rdpdr.sys 17:03:19.0343 3428 rdpdr - ok 17:03:19.0406 3428 RDPWD (6728e45b66f93c08f11de2e316fc70dd) D:\WINDOWS\system32\drivers\RDPWD.sys 17:03:19.0515 3428 RDPWD - ok 17:03:19.0656 3428 redbook (e0c7bbd18040b58651bac700c804861d) D:\WINDOWS\system32\DRIVERS\redbook.sys 17:03:19.0734 3428 redbook - ok 17:03:19.0859 3428 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) D:\WINDOWS\system32\Drivers\RootMdm.sys 17:03:19.0953 3428 ROOTMODEM - ok 17:03:20.0062 3428 RT73 (c7bcf9808e2a1b4cabe16ff7fbce5fab) D:\WINDOWS\system32\DRIVERS\Dr71WU.sys 17:03:20.0093 3428 RT73 - ok 17:03:20.0187 3428 Secdrv (90a3935d05b494a5a39d37e71f09a677) D:\WINDOWS\system32\DRIVERS\secdrv.sys 17:03:20.0265 3428 Secdrv - ok 17:03:20.0390 3428 Serenum (0f29512ccd6bead730039fb4bd2c85ce) D:\WINDOWS\system32\DRIVERS\serenum.sys 17:03:20.0484 3428 Serenum - ok 17:03:20.0640 3428 Serial (d07b02f88165e69b9f17162cf592c8a6) D:\WINDOWS\system32\drivers\Serial.sys 17:03:20.0734 3428 Serial - ok 17:03:20.0796 3428 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) D:\WINDOWS\system32\drivers\Sfloppy.sys 17:03:20.0875 3428 Sfloppy - ok 17:03:20.0890 3428 Simbad - ok 17:03:20.0937 3428 SLIP (866d538ebe33709a5c9f5c62b73b7d14) D:\WINDOWS\system32\DRIVERS\SLIP.sys 17:03:21.0031 3428 SLIP - ok 17:03:21.0171 3428 SONYPVU1 (a1eceeaa5c5e74b2499eb51d38185b84) D:\WINDOWS\system32\DRIVERS\SONYPVU1.SYS 17:03:21.0250 3428 SONYPVU1 - ok 17:03:21.0328 3428 Sparrow - ok 17:03:21.0406 3428 speedfan (3fa2e254bfbce52b3c6f1bf23aab6911) D:\WINDOWS\system32\speedfan.sys 17:03:21.0421 3428 speedfan - ok 17:03:21.0437 3428 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) D:\WINDOWS\system32\drivers\splitter.sys 17:03:21.0531 3428 splitter - ok 17:03:21.0671 3428 sptd (cdddec541bc3c96f91ecb48759673505) D:\WINDOWS\system32\Drivers\sptd.sys 17:03:21.0671 3428 Suspicious file (NoAccess): D:\WINDOWS\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505 17:03:21.0671 3428 sptd ( LockedFile.Multi.Generic ) - warning 17:03:21.0671 3428 sptd - detected LockedFile.Multi.Generic (1) 17:03:21.0718 3428 sr (eb032822be406ef220d546ddffcf0002) D:\WINDOWS\system32\DRIVERS\sr.sys 17:03:21.0781 3428 sr - ok 17:03:21.0953 3428 Srv (e89b42b216bc86ada4345908284519cb) D:\WINDOWS\system32\DRIVERS\srv.sys 17:03:21.0984 3428 Srv - ok 17:03:22.0078 3428 streamip (77813007ba6265c4b6098187e6ed79d2) D:\WINDOWS\system32\DRIVERS\StreamIP.sys 17:03:22.0171 3428 streamip - ok 17:03:22.0265 3428 swenum (3941d127aef12e93addf6fe6ee027e0f) D:\WINDOWS\system32\DRIVERS\swenum.sys 17:03:22.0359 3428 swenum - ok 17:03:22.0375 3428 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) D:\WINDOWS\system32\drivers\swmidi.sys 17:03:22.0468 3428 swmidi - ok 17:03:22.0484 3428 symc810 - ok 17:03:22.0500 3428 symc8xx - ok 17:03:22.0500 3428 sym_hi - ok 17:03:22.0515 3428 sym_u3 - ok 17:03:22.0531 3428 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) D:\WINDOWS\system32\drivers\sysaudio.sys 17:03:22.0625 3428 sysaudio - ok 17:03:22.0703 3428 Tcpip (accf5a9a1ffaa490f33dba1c632b95e1) D:\WINDOWS\system32\DRIVERS\tcpip.sys 17:03:22.0734 3428 Tcpip ( UnsignedFile.Multi.Generic ) - warning 17:03:22.0734 3428 Tcpip - detected UnsignedFile.Multi.Generic (1) 17:03:22.0781 3428 TDPIPE (6471a66807f5e104e4885f5b67349397) D:\WINDOWS\system32\drivers\TDPIPE.sys 17:03:22.0890 3428 TDPIPE - ok 17:03:23.0031 3428 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) D:\WINDOWS\system32\drivers\TDTCP.sys 17:03:23.0140 3428 TDTCP - ok 17:03:23.0234 3428 TermDD (88155247177638048422893737429d9e) D:\WINDOWS\system32\DRIVERS\termdd.sys 17:03:23.0343 3428 TermDD - ok 17:03:23.0437 3428 TosIde - ok 17:03:23.0515 3428 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) D:\WINDOWS\system32\drivers\Udfs.sys 17:03:23.0593 3428 Udfs - ok 17:03:23.0609 3428 ultra - ok 17:03:23.0687 3428 Update (402ddc88356b1bac0ee3dd1580c76a31) D:\WINDOWS\system32\DRIVERS\update.sys 17:03:23.0781 3428 Update - ok 17:03:23.0828 3428 upperdev (e526a166e6acafd0a9b3841d3941669e) D:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys 17:03:23.0906 3428 upperdev - ok 17:03:23.0968 3428 usbccgp (173f317ce0db8e21322e71b7e60a27e8) D:\WINDOWS\system32\DRIVERS\usbccgp.sys 17:03:24.0046 3428 usbccgp - ok 17:03:24.0109 3428 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) D:\WINDOWS\system32\DRIVERS\usbehci.sys 17:03:24.0203 3428 usbehci - ok 17:03:24.0218 3428 usbhub (1ab3cdde553b6e064d2e754efe20285c) D:\WINDOWS\system32\DRIVERS\usbhub.sys 17:03:24.0312 3428 usbhub - ok 17:03:24.0390 3428 usbprint (a717c8721046828520c9edf31288fc00) D:\WINDOWS\system32\DRIVERS\usbprint.sys 17:03:24.0468 3428 usbprint - ok 17:03:24.0531 3428 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) D:\WINDOWS\system32\DRIVERS\usbscan.sys 17:03:24.0625 3428 usbscan - ok 17:03:24.0671 3428 usbser (1c888b000c2f9492f4b15b5b6b84873e) D:\WINDOWS\system32\DRIVERS\usbser.sys 17:03:24.0750 3428 usbser - ok 17:03:24.0796 3428 UsbserFilt (6f3e3c6811b930d2414552a2e4a40f36) D:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys 17:03:24.0875 3428 UsbserFilt - ok 17:03:24.0921 3428 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 17:03:25.0015 3428 USBSTOR - ok 17:03:25.0078 3428 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) D:\WINDOWS\system32\DRIVERS\usbuhci.sys 17:03:25.0171 3428 usbuhci - ok 17:03:25.0234 3428 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) D:\WINDOWS\system32\Drivers\usbvideo.sys 17:03:25.0328 3428 usbvideo - ok 17:03:25.0375 3428 VBoxDrv (2ac3ec0aaf2329f4012a625fd29db678) D:\WINDOWS\system32\DRIVERS\VBoxDrv.sys 17:03:25.0812 3428 VBoxDrv - ok 17:03:25.0875 3428 VBoxNetAdp (bf69f5c6ecaf24ca5ff0d9394baad7b9) D:\WINDOWS\system32\DRIVERS\VBoxNetAdp.sys 17:03:25.0875 3428 VBoxNetAdp - ok 17:03:25.0890 3428 VBoxNetFlt (c75785cb32f683924088040904cb544d) D:\WINDOWS\system32\DRIVERS\VBoxNetFlt.sys 17:03:25.0906 3428 VBoxNetFlt - ok 17:03:25.0968 3428 VBoxUSB (39360829ec583282e511038ed05c4890) D:\WINDOWS\system32\Drivers\VBoxUSB.sys 17:03:25.0984 3428 VBoxUSB - ok 17:03:26.0015 3428 VBoxUSBMon (80f6738ad80a1d7dc8d890ce156dc4ad) D:\WINDOWS\system32\DRIVERS\VBoxUSBMon.sys 17:03:26.0031 3428 VBoxUSBMon - ok 17:03:26.0046 3428 VComm - ok 17:03:26.0062 3428 VcommMgr - ok 17:03:26.0125 3428 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) D:\WINDOWS\System32\drivers\vga.sys 17:03:26.0218 3428 VgaSave - ok 17:03:26.0296 3428 VIAHdAudAddService (bcd82dd4870000fc34be215fd116d371) D:\WINDOWS\system32\drivers\viahduaa.sys 17:03:26.0375 3428 VIAHdAudAddService - ok 17:03:26.0484 3428 ViaIde - ok 17:03:26.0546 3428 VolSnap (56b191ac5fc0df219949c95a6c87afe7) D:\WINDOWS\system32\drivers\VolSnap.sys 17:03:26.0640 3428 VolSnap - ok 17:03:26.0781 3428 wacmoumonitor (f24ee97511fb901189e11cbbd51605ba) D:\WINDOWS\system32\DRIVERS\wacmoumonitor.sys 17:03:26.0796 3428 wacmoumonitor - ok 17:03:26.0843 3428 wacommousefilter (427a8bc96f16c40df81c2d2f4edd32dd) D:\WINDOWS\system32\DRIVERS\wacommousefilter.sys 17:03:26.0843 3428 wacommousefilter - ok 17:03:27.0015 3428 wacomvhid (846b58ea44bf8c92e4b59f4e2252c4c0) D:\WINDOWS\system32\DRIVERS\wacomvhid.sys 17:03:27.0031 3428 wacomvhid - ok 17:03:27.0093 3428 Wanarp (e20b95baedb550f32dd489265c1da1f6) D:\WINDOWS\system32\DRIVERS\wanarp.sys 17:03:27.0187 3428 Wanarp - ok 17:03:27.0234 3428 Wdf01000 (d918617b46457b9ac28027722e30f647) D:\WINDOWS\system32\Drivers\wdf01000.sys 17:03:27.0265 3428 Wdf01000 - ok 17:03:27.0265 3428 WDICA - ok 17:03:27.0296 3428 wdmaud (6768acf64b18196494413695f0c3a00f) D:\WINDOWS\system32\drivers\wdmaud.sys 17:03:27.0390 3428 wdmaud - ok 17:03:27.0468 3428 WinUSB (fd600b032e741eb6aab509fc630f7c42) D:\WINDOWS\system32\DRIVERS\WinUSB.sys 17:03:27.0484 3428 WinUSB - ok 17:03:27.0562 3428 WpdUsb (cf4def1bf66f06964dc0d91844239104) D:\WINDOWS\system32\DRIVERS\wpdusb.sys 17:03:27.0593 3428 WpdUsb - ok 17:03:27.0640 3428 WSTCODEC (c98b39829c2bbd34e454150633c62c78) D:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 17:03:27.0734 3428 WSTCODEC - ok 17:03:27.0781 3428 WudfPf (f15feafffbb3644ccc80c5da584e6311) D:\WINDOWS\system32\DRIVERS\WudfPf.sys 17:03:27.0796 3428 WudfPf - ok 17:03:27.0828 3428 WudfRd (28b524262bce6de1f7ef9f510ba3985b) D:\WINDOWS\system32\DRIVERS\wudfrd.sys 17:03:27.0859 3428 WudfRd - ok 17:03:27.0937 3428 MBR (0x1B8) (d24edf2bfed4a0eb4d98d4828a187e51) \Device\Harddisk0\DR0 17:03:28.0046 3428 \Device\Harddisk0\DR0 - ok 17:03:28.0078 3428 Boot (0x1200) (ac42487c8560ab1f1d261c9b1cad15dc) \Device\Harddisk0\DR0\Partition0 17:03:28.0093 3428 \Device\Harddisk0\DR0\Partition0 - ok 17:03:28.0093 3428 ============================================================ 17:03:28.0093 3428 Scan finished 17:03:28.0093 3428 ============================================================ 17:03:28.0203 0488 Detected object count: 9 17:03:28.0203 0488 Actual detected object count: 9 17:03:38.0921 0488 ANIO ( UnsignedFile.Multi.Generic ) - skipped by user 17:03:38.0921 0488 ANIO ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:03:38.0921 0488 Aspi32 ( UnsignedFile.Multi.Generic ) - skipped by user 17:03:38.0921 0488 Aspi32 ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:03:38.0921 0488 Ext2fs ( UnsignedFile.Multi.Generic ) - skipped by user 17:03:38.0921 0488 Ext2fs ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:03:38.0921 0488 giveio ( UnsignedFile.Multi.Generic ) - skipped by user 17:03:38.0921 0488 giveio ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:03:38.0921 0488 IfsMount ( UnsignedFile.Multi.Generic ) - skipped by user 17:03:38.0921 0488 IfsMount ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:03:38.0937 0488 klif ( UnsignedFile.Multi.Generic ) - skipped by user 17:03:38.0937 0488 klif ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:03:38.0937 0488 NSNDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user 17:03:38.0937 0488 NSNDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:03:38.0937 0488 sptd ( LockedFile.Multi.Generic ) - skipped by user 17:03:38.0937 0488 sptd ( LockedFile.Multi.Generic ) - User select action: Skip 17:03:38.0937 0488 Tcpip ( UnsignedFile.Multi.Generic ) - skipped by user 17:03:38.0937 0488 Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Skip