17:56:57.0687 3636 TDSS rootkit removing tool 2.7.37.0 May 23 2012 08:15:30 17:56:57.0921 3636 ============================================================ 17:56:57.0921 3636 Current date / time: 2012/05/27 17:56:57.0921 17:56:57.0921 3636 SystemInfo: 17:56:57.0921 3636 17:56:57.0921 3636 OS Version: 5.1.2600 ServicePack: 2.0 17:56:57.0921 3636 Product type: Workstation 17:56:57.0921 3636 ComputerName: HAKER 17:56:57.0921 3636 UserName: haker765 17:56:57.0921 3636 Windows directory: C:\WINDOWS 17:56:57.0921 3636 System windows directory: C:\WINDOWS 17:56:57.0921 3636 Processor architecture: Intel x86 17:56:57.0921 3636 Number of processors: 1 17:56:57.0921 3636 Page size: 0x1000 17:56:57.0921 3636 Boot type: Normal boot 17:56:57.0921 3636 ============================================================ 17:56:58.0187 3636 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 17:56:58.0187 3636 Drive \Device\Harddisk1\DR1 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x764A9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0x10, Type 'K0', Flags 0x00000050 17:56:58.0187 3636 ============================================================ 17:56:58.0187 3636 \Device\Harddisk0\DR0: 17:56:58.0187 3636 MBR partitions: 17:56:58.0187 3636 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x950E482 17:56:58.0203 3636 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x950E500, BlocksNum 0x950A5C1 17:56:58.0203 3636 \Device\Harddisk1\DR1: 17:56:58.0203 3636 MBR partitions: 17:56:58.0203 3636 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0xEA5FDF0, BlocksNum 0xE765B80 17:56:58.0203 3636 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xEA5FDB1 17:56:58.0203 3636 ============================================================ 17:56:58.0296 3636 C: <-> \Device\Harddisk0\DR0\Partition0 17:56:58.0328 3636 D: <-> \Device\Harddisk0\DR0\Partition1 17:56:58.0328 3636 G: <-> \Device\Harddisk1\DR1\Partition1 17:56:58.0328 3636 H: <-> \Device\Harddisk1\DR1\Partition0 17:56:58.0328 3636 ============================================================ 17:56:58.0328 3636 Initialize success 17:56:58.0328 3636 ============================================================ 17:57:09.0109 1792 ============================================================ 17:57:09.0109 1792 Scan started 17:57:09.0109 1792 Mode: Manual; SigCheck; TDLFS; 17:57:09.0109 1792 ============================================================ 17:57:09.0578 1792 93089848 (58169ffb207940d4d84b4e85db02cc1e) C:\WINDOWS\system32\drivers\61268052.sys 17:57:09.0609 1792 Aavmker4 (479c9835b91147be1a92cb76fad9c6de) C:\WINDOWS\system32\drivers\Aavmker4.sys 17:57:10.0468 1792 Aavmker4 - ok 17:57:10.0468 1792 Abiosdsk - ok 17:57:10.0484 1792 abp480n5 - ok 17:57:10.0515 1792 ACPI (a966410ecf83b81f3b0b8e07a71957d4) C:\WINDOWS\system32\DRIVERS\ACPI.sys 17:57:10.0984 1792 ACPI - ok 17:57:11.0000 1792 ACPIEC (66a42b7db194e24b973bbcce840a0f3f) C:\WINDOWS\system32\drivers\ACPIEC.sys 17:57:11.0140 1792 ACPIEC - ok 17:57:11.0296 1792 Adobe LM Service (c1eb9968ec89fba5f3a264e2e57923ab) C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe 17:57:11.0312 1792 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning 17:57:11.0312 1792 Adobe LM Service - detected UnsignedFile.Multi.Generic (1) 17:57:11.0328 1792 adpu160m - ok 17:57:11.0359 1792 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys 17:57:11.0500 1792 aec - ok 17:57:11.0515 1792 AFD (5ac495f4cb807b2b98ad2ad591e6d92e) C:\WINDOWS\System32\drivers\afd.sys 17:57:11.0687 1792 AFD - ok 17:57:11.0687 1792 Aha154x - ok 17:57:11.0687 1792 aic78u2 - ok 17:57:11.0703 1792 aic78xx - ok 17:57:11.0734 1792 alcan5wn (0940030d5a5869067ccc03e3b0b8dec7) C:\WINDOWS\system32\DRIVERS\alcan5wn.sys 17:57:11.0750 1792 alcan5wn ( UnsignedFile.Multi.Generic ) - warning 17:57:11.0750 1792 alcan5wn - detected UnsignedFile.Multi.Generic (1) 17:57:11.0781 1792 alcaudsl (4c9577888c53243e2991456f510488a1) C:\WINDOWS\system32\DRIVERS\alcaudsl.sys 17:57:11.0812 1792 alcaudsl ( UnsignedFile.Multi.Generic ) - warning 17:57:11.0812 1792 alcaudsl - detected UnsignedFile.Multi.Generic (1) 17:57:11.0843 1792 Alerter (f79b5c5b0a77a134c5671992335d1409) C:\WINDOWS\system32\alrsvc.dll 17:57:11.0984 1792 Alerter - ok 17:57:12.0015 1792 ALG (9d12991bc6b6c5c0fbab4c06e7073df1) C:\WINDOWS\System32\alg.exe 17:57:12.0062 1792 ALG - ok 17:57:12.0078 1792 AliIde - ok 17:57:12.0093 1792 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\system32\DRIVERS\AmdK8.sys 17:57:12.0093 1792 AmdK8 - ok 17:57:12.0093 1792 amsint - ok 17:57:12.0125 1792 AppMgmt (8d60b308d061da209cc271d9b480468c) C:\WINDOWS\System32\appmgmts.dll 17:57:12.0187 1792 AppMgmt - ok 17:57:12.0203 1792 asc - ok 17:57:12.0203 1792 asc3350p - ok 17:57:12.0203 1792 asc3550 - ok 17:57:12.0296 1792 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 17:57:12.0296 1792 aspnet_state - ok 17:57:12.0328 1792 aswFsBlk (cba53c5e29ae0a0ce76f9a2be3a40d9e) C:\WINDOWS\system32\drivers\aswFsBlk.sys 17:57:12.0328 1792 aswFsBlk - ok 17:57:12.0359 1792 aswMon2 (a1c52b822b7b8a5c2162d38f579f97b7) C:\WINDOWS\system32\drivers\aswMon2.sys 17:57:12.0359 1792 aswMon2 - ok 17:57:12.0375 1792 aswRdr (b6e8c5874377a42756c282fac2e20836) C:\WINDOWS\system32\drivers\aswRdr.sys 17:57:12.0390 1792 aswRdr - ok 17:57:12.0406 1792 aswSP (b93a553c9b0f14263c8f016a44c3258c) C:\WINDOWS\system32\drivers\aswSP.sys 17:57:12.0421 1792 aswSP - ok 17:57:12.0437 1792 aswTdi (1408421505257846eb336feeef33352d) C:\WINDOWS\system32\drivers\aswTdi.sys 17:57:12.0453 1792 aswTdi - ok 17:57:12.0484 1792 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 17:57:12.0625 1792 AsyncMac - ok 17:57:12.0906 1792 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys 17:57:13.0140 1792 atapi - ok 17:57:13.0140 1792 Atdisk - ok 17:57:13.0187 1792 atidgllk - ok 17:57:13.0250 1792 atksgt (3c4b9850a2631c2263507400d029057b) C:\WINDOWS\system32\DRIVERS\atksgt.sys 17:57:13.0265 1792 atksgt - ok 17:57:13.0265 1792 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 17:57:13.0406 1792 Atmarpc - ok 17:57:13.0437 1792 AudioSrv (18bff5eba35f2562c5aa03eb9c6ba29e) C:\WINDOWS\System32\audiosrv.dll 17:57:13.0578 1792 AudioSrv - ok 17:57:13.0609 1792 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 17:57:13.0750 1792 audstub - ok 17:57:13.0828 1792 avast! Antivirus (25fb74eabce5ec7836ba3cfb3c58449a) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe 17:57:13.0828 1792 avast! Antivirus - ok 17:57:13.0843 1792 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 17:57:13.0984 1792 Beep - ok 17:57:14.0015 1792 BITS (a6bfd910074b02c8794fc65f39cc6b28) C:\WINDOWS\system32\qmgr.dll 17:57:14.0171 1792 BITS - ok 17:57:14.0203 1792 Bridge (e4e6a0922e3d983728c9ad4e8d466954) C:\WINDOWS\system32\DRIVERS\bridge.sys 17:57:14.0265 1792 Bridge - ok 17:57:14.0281 1792 BridgeMP (e4e6a0922e3d983728c9ad4e8d466954) C:\WINDOWS\system32\DRIVERS\bridge.sys 17:57:14.0328 1792 BridgeMP - ok 17:57:14.0359 1792 Browser (210830d2497fef78694076179af8c795) C:\WINDOWS\System32\browser.dll 17:57:14.0484 1792 Browser - ok 17:57:14.0562 1792 btaudio (d4350ad61965cc38e73a0a65cd5a8393) C:\WINDOWS\system32\drivers\btaudio.sys 17:57:14.0593 1792 btaudio ( UnsignedFile.Multi.Generic ) - warning 17:57:14.0593 1792 btaudio - detected UnsignedFile.Multi.Generic (1) 17:57:14.0609 1792 BTDriver (3e180e8d7b36ef15516b2c79b5615304) C:\WINDOWS\system32\DRIVERS\btport.sys 17:57:14.0625 1792 BTDriver ( UnsignedFile.Multi.Generic ) - warning 17:57:14.0625 1792 BTDriver - detected UnsignedFile.Multi.Generic (1) 17:57:14.0703 1792 BTKRNL (5a9fe118b3e77776c885e3f6496758e7) C:\WINDOWS\system32\DRIVERS\btkrnl.sys 17:57:14.0750 1792 BTKRNL ( UnsignedFile.Multi.Generic ) - warning 17:57:14.0750 1792 BTKRNL - detected UnsignedFile.Multi.Generic (1) 17:57:14.0828 1792 btwdins (21490ae34e72c4e6af534b3b4771389c) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe 17:57:14.0828 1792 btwdins ( UnsignedFile.Multi.Generic ) - warning 17:57:14.0828 1792 btwdins - detected UnsignedFile.Multi.Generic (1) 17:57:14.0875 1792 btwhid (c7602ccd265206beb6c26e4f5faeaac0) C:\WINDOWS\system32\DRIVERS\btwhid.sys 17:57:14.0875 1792 btwhid ( UnsignedFile.Multi.Generic ) - warning 17:57:14.0875 1792 btwhid - detected UnsignedFile.Multi.Generic (1) 17:57:14.0890 1792 btwmodem (395b7d6747170c749ae45906286074f5) C:\WINDOWS\system32\DRIVERS\btwmodem.sys 17:57:14.0890 1792 btwmodem ( UnsignedFile.Multi.Generic ) - warning 17:57:14.0890 1792 btwmodem - detected UnsignedFile.Multi.Generic (1) 17:57:14.0921 1792 BTWUSB (f35a32553693a9f7220d174cae95635f) C:\WINDOWS\system32\Drivers\btwusb.sys 17:57:14.0953 1792 BTWUSB ( UnsignedFile.Multi.Generic ) - warning 17:57:14.0953 1792 BTWUSB - detected UnsignedFile.Multi.Generic (1) 17:57:14.0984 1792 BulkUsb (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys 17:57:15.0125 1792 BulkUsb - ok 17:57:15.0218 1792 catchme - ok 17:57:15.0234 1792 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 17:57:15.0375 1792 cbidf2k - ok 17:57:15.0375 1792 cd20xrnt - ok 17:57:15.0406 1792 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 17:57:15.0546 1792 Cdaudio - ok 17:57:15.0562 1792 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys 17:57:15.0703 1792 Cdfs - ok 17:57:15.0734 1792 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys 17:57:15.0890 1792 Cdrom - ok 17:57:15.0890 1792 Changer - ok 17:57:15.0921 1792 cisvc (b4e0a9b9064aa79ae188c0d953543520) C:\WINDOWS\system32\cisvc.exe 17:57:16.0093 1792 cisvc - ok 17:57:16.0125 1792 ClipSrv (1b11121083c32ea9a55abe547a23ff71) C:\WINDOWS\system32\clipsrv.exe 17:57:16.0250 1792 ClipSrv - ok 17:57:16.0328 1792 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 17:57:16.0343 1792 clr_optimization_v2.0.50727_32 - ok 17:57:16.0343 1792 CmdIde - ok 17:57:16.0343 1792 COMSysApp - ok 17:57:16.0359 1792 Cpqarray - ok 17:57:16.0390 1792 CryptSvc (91723cd7c96c5854149f9cae820a90dd) C:\WINDOWS\System32\cryptsvc.dll 17:57:16.0515 1792 CryptSvc - ok 17:57:16.0515 1792 dac2w2k - ok 17:57:16.0531 1792 dac960nt - ok 17:57:16.0593 1792 DcomLaunch (346e5b19fc986fe7185a0c2c43593722) C:\WINDOWS\system32\rpcss.dll 17:57:16.0718 1792 DcomLaunch - ok 17:57:16.0750 1792 dgderdrv (6216fd7fd227de454238a702b218cec7) C:\WINDOWS\system32\drivers\dgderdrv.sys 17:57:16.0765 1792 dgderdrv - ok 17:57:16.0796 1792 dg_ssudbus (919f338fd36f47d860775368d0748780) C:\WINDOWS\system32\DRIVERS\ssudbus.sys 17:57:16.0796 1792 dg_ssudbus - ok 17:57:16.0843 1792 Dhcp (94b49f2d487a7d4a79b3e96b6d5685b0) C:\WINDOWS\System32\dhcpcsvc.dll 17:57:16.0968 1792 Dhcp - ok 17:57:16.0984 1792 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys 17:57:17.0109 1792 Disk - ok 17:57:17.0109 1792 dmadmin - ok 17:57:17.0171 1792 dmboot (3b809ffad55dcebdb156d5ca1bd3da65) C:\WINDOWS\system32\drivers\dmboot.sys 17:57:17.0312 1792 dmboot - ok 17:57:17.0328 1792 dmio (27725b6501201c3080ba73048bce389a) C:\WINDOWS\system32\drivers\dmio.sys 17:57:17.0453 1792 dmio - ok 17:57:17.0484 1792 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 17:57:17.0609 1792 dmload - ok 17:57:17.0640 1792 dmserver (4adbb7593ec0115f7622c335b427c3da) C:\WINDOWS\System32\dmserver.dll 17:57:17.0781 1792 dmserver - ok 17:57:17.0796 1792 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys 17:57:17.0921 1792 DMusic - ok 17:57:17.0937 1792 Dnscache (f61c204ebcaa1d6b5fb5dfe7034741f3) C:\WINDOWS\System32\dnsrslvr.dll 17:57:18.0062 1792 Dnscache - ok 17:57:18.0078 1792 dpti2o - ok 17:57:18.0093 1792 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys 17:57:18.0203 1792 drmkaud - ok 17:57:18.0234 1792 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys 17:57:18.0250 1792 dtsoftbus01 - ok 17:57:18.0250 1792 dwshd - ok 17:57:18.0281 1792 ERSvc (efd32591f9e29c00a5814df3f6d46683) C:\WINDOWS\System32\ersvc.dll 17:57:18.0406 1792 ERSvc - ok 17:57:18.0453 1792 Eventlog (3da8d964d2cc12ef8e8c342471a37917) C:\WINDOWS\system32\services.exe 17:57:18.0609 1792 Eventlog - ok 17:57:18.0671 1792 EventSystem (dc54cc79e1faefa480a8117c9bf105e1) C:\WINDOWS\System32\es.dll 17:57:18.0796 1792 EventSystem - ok 17:57:18.0828 1792 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys 17:57:18.0953 1792 Fastfat - ok 17:57:18.0984 1792 FastUserSwitchingCompatibility (7c8e934687c496edc69fdbbd2c277e63) C:\WINDOWS\System32\shsvcs.dll 17:57:19.0109 1792 FastUserSwitchingCompatibility - ok 17:57:19.0140 1792 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys 17:57:19.0265 1792 Fdc - ok 17:57:19.0281 1792 FileDisk (093913a016845fe257ed9b7fc8e28ed8) C:\WINDOWS\system32\drivers\FileDisk.sys 17:57:19.0281 1792 FileDisk ( UnsignedFile.Multi.Generic ) - warning 17:57:19.0281 1792 FileDisk - detected UnsignedFile.Multi.Generic (1) 17:57:19.0281 1792 Fips (c5fb298257c0a6514ea17835e774ea0a) C:\WINDOWS\system32\drivers\Fips.sys 17:57:19.0421 1792 Fips - ok 17:57:19.0437 1792 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 17:57:19.0578 1792 Flpydisk - ok 17:57:19.0609 1792 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\drivers\fltmgr.sys 17:57:19.0734 1792 FltMgr - ok 17:57:19.0843 1792 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 17:57:19.0859 1792 FontCache3.0.0.0 - ok 17:57:19.0890 1792 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 17:57:20.0000 1792 Fs_Rec - ok 17:57:20.0046 1792 Ftdisk (ed6d921d8ab423138fb35beee6d6a6cb) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 17:57:20.0187 1792 Ftdisk - ok 17:57:20.0218 1792 ggflt (4b5fddbcb9407741f47818b8d1ee4a8e) C:\WINDOWS\system32\DRIVERS\ggflt.sys 17:57:20.0234 1792 ggflt - ok 17:57:20.0250 1792 ggsemc (80bbcc9724b24a708ca9489c1e0a1e5f) C:\WINDOWS\system32\DRIVERS\ggsemc.sys 17:57:20.0250 1792 ggsemc - ok 17:57:20.0265 1792 GMSIPCI - ok 17:57:20.0281 1792 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys 17:57:20.0406 1792 Gpc - ok 17:57:20.0546 1792 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe 17:57:20.0546 1792 gupdate - ok 17:57:20.0546 1792 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe 17:57:20.0562 1792 gupdatem - ok 17:57:20.0593 1792 hamachi (43ae2f414fbccd7287389e7b908a4745) C:\WINDOWS\system32\DRIVERS\hamachi.sys 17:57:20.0609 1792 hamachi ( UnsignedFile.Multi.Generic ) - warning 17:57:20.0609 1792 hamachi - detected UnsignedFile.Multi.Generic (1) 17:57:20.0640 1792 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 17:57:20.0656 1792 HDAudBus - ok 17:57:20.0687 1792 helpsvc (e1552a082e8c0fbb70b758f170b3aff8) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 17:57:20.0828 1792 helpsvc - ok 17:57:20.0843 1792 HidServ (7d00fec9b6de9776b3d0ead70bd71968) C:\WINDOWS\System32\hidserv.dll 17:57:20.0968 1792 HidServ - ok 17:57:20.0984 1792 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys 17:57:21.0125 1792 HidUsb - ok 17:57:21.0125 1792 hpn - ok 17:57:21.0218 1792 hpqcxs08 (38d6b51f04def7fb248fa56e4c47407e) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll 17:57:21.0234 1792 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning 17:57:21.0234 1792 hpqcxs08 - detected UnsignedFile.Multi.Generic (1) 17:57:21.0265 1792 hpqddsvc (3ee4a63539ec04ee2d4bd293985087ab) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll 17:57:21.0281 1792 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning 17:57:21.0281 1792 hpqddsvc - detected UnsignedFile.Multi.Generic (1) 17:57:21.0281 1792 hpt3xx - ok 17:57:21.0312 1792 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys 17:57:21.0359 1792 HPZid412 - ok 17:57:21.0375 1792 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys 17:57:21.0421 1792 HPZipr12 - ok 17:57:21.0468 1792 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys 17:57:21.0484 1792 HPZius12 - ok 17:57:21.0531 1792 HTTP (c19b522a9ae0bbc3293397f3055e80a1) C:\WINDOWS\system32\Drivers\HTTP.sys 17:57:21.0640 1792 HTTP - ok 17:57:21.0671 1792 HTTPFilter (2d303caf3c6dcfb246e74550dbed5880) C:\WINDOWS\System32\w3ssl.dll 17:57:21.0796 1792 HTTPFilter - ok 17:57:21.0796 1792 i2omgmt - ok 17:57:21.0812 1792 i2omp - ok 17:57:21.0828 1792 i8042prt (2656fdfe0a7916c3a16f374454c55dd9) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 17:57:21.0937 1792 i8042prt - ok 17:57:22.0000 1792 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe 17:57:22.0000 1792 IDriverT ( UnsignedFile.Multi.Generic ) - warning 17:57:22.0000 1792 IDriverT - detected UnsignedFile.Multi.Generic (1) 17:57:22.0156 1792 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 17:57:22.0218 1792 idsvc - ok 17:57:22.0234 1792 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys 17:57:22.0343 1792 Imapi - ok 17:57:22.0375 1792 ImapiService (bc74431e59fb0badf3e9162bd8d37b00) C:\WINDOWS\system32\imapi.exe 17:57:22.0500 1792 ImapiService - ok 17:57:22.0500 1792 ini910u - ok 17:57:22.0703 1792 IntcAzAudAddService (e37589414437a60797e94c0f57c546db) C:\WINDOWS\system32\drivers\RtkHDAud.sys 17:57:22.0906 1792 IntcAzAudAddService - ok 17:57:22.0984 1792 IntelIde - ok 17:57:23.0015 1792 ip6fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\drivers\ip6fw.sys 17:57:23.0156 1792 ip6fw - ok 17:57:23.0187 1792 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 17:57:23.0312 1792 IpFilterDriver - ok 17:57:23.0328 1792 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys 17:57:23.0453 1792 IpInIp - ok 17:57:23.0484 1792 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys 17:57:23.0609 1792 IpNat - ok 17:57:23.0609 1792 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys 17:57:23.0734 1792 IPSec - ok 17:57:23.0750 1792 irda (86c204836feec22510d434982d4221b8) C:\WINDOWS\system32\DRIVERS\irda.sys 17:57:23.0812 1792 irda - ok 17:57:23.0828 1792 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys 17:57:23.0890 1792 IRENUM - ok 17:57:23.0921 1792 Irmon (8b96d185866cb5ab844875588a60b065) C:\WINDOWS\System32\irmon.dll 17:57:23.0968 1792 Irmon - ok 17:57:23.0984 1792 irsir (0501f0b9ab08425f8c0eacbdcc04aa32) C:\WINDOWS\system32\DRIVERS\irsir.sys 17:57:24.0046 1792 irsir - ok 17:57:24.0078 1792 isapnp (01a9e68528f4f34e5702123d27c67bd4) C:\WINDOWS\system32\DRIVERS\isapnp.sys 17:57:24.0203 1792 isapnp - ok 17:57:24.0312 1792 JavaQuickStarterService (0a5709543986843d37a92290b7838340) C:\Program Files\Java\jre6\bin\jqs.exe 17:57:24.0312 1792 JavaQuickStarterService - ok 17:57:24.0343 1792 Kbdclass (cc13db862f929ae33f64c3bedc01cd31) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 17:57:24.0453 1792 Kbdclass - ok 17:57:24.0484 1792 kbdhid (831be9197bdace6bdcac1bfdbe1c380f) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 17:57:24.0625 1792 kbdhid - ok 17:57:24.0656 1792 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys 17:57:24.0781 1792 kmixer - ok 17:57:24.0796 1792 KSecDD (eb7ffe87fd367ea8fca0506f74a87fbb) C:\WINDOWS\system32\drivers\KSecDD.sys 17:57:24.0906 1792 KSecDD - ok 17:57:24.0921 1792 lanmanserver (83ec18ee52dbf7cce9520f848f4e6584) C:\WINDOWS\System32\srvsvc.dll 17:57:25.0046 1792 lanmanserver - ok 17:57:25.0078 1792 lanmanworkstation (ff68cd5b967cd210562c292cbd263555) C:\WINDOWS\System32\wkssvc.dll 17:57:25.0187 1792 lanmanworkstation - ok 17:57:25.0203 1792 lbrtfdc - ok 17:57:25.0234 1792 lirsgt (4127e8b6ddb4090e815c1f8852c277d3) C:\WINDOWS\system32\DRIVERS\lirsgt.sys 17:57:25.0250 1792 lirsgt - ok 17:57:25.0250 1792 LmHosts (94136b41f35666254de29006dccc30fc) C:\WINDOWS\System32\lmhsvc.dll 17:57:25.0359 1792 LmHosts - ok 17:57:25.0375 1792 Messenger (1d0ebf9edae8a61cbf56ed1ff8489fac) C:\WINDOWS\System32\msgsvc.dll 17:57:25.0500 1792 Messenger - ok 17:57:25.0562 1792 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe 17:57:25.0578 1792 Microsoft Office Groove Audit Service - ok 17:57:25.0609 1792 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 17:57:25.0718 1792 mnmdd - ok 17:57:25.0750 1792 mnmsrvc (db082aafd0859e28744e6629b64e0a91) C:\WINDOWS\System32\mnmsrvc.exe 17:57:25.0859 1792 mnmsrvc - ok 17:57:25.0890 1792 Modem (15f33d12d604d0198ce5561f102cd9c5) C:\WINDOWS\system32\drivers\Modem.sys 17:57:25.0984 1792 Modem - ok 17:57:26.0015 1792 Mouclass (69c12b99ae8b6b99ec314e9b99833728) C:\WINDOWS\system32\DRIVERS\mouclass.sys 17:57:26.0125 1792 Mouclass - ok 17:57:26.0125 1792 mouhid (ecec1e6cd558ab80f944f31326e9d3b5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 17:57:26.0250 1792 mouhid - ok 17:57:26.0265 1792 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys 17:57:26.0375 1792 MountMgr - ok 17:57:26.0375 1792 mraid35x - ok 17:57:26.0406 1792 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 17:57:26.0515 1792 MRxDAV - ok 17:57:26.0578 1792 MRxSmb (1fd607fc67f7f7c633c3da65bfc53d18) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 17:57:26.0687 1792 MRxSmb - ok 17:57:26.0718 1792 MSDTC (fb68f196b215782333fa1467cbafc8b0) C:\WINDOWS\System32\msdtc.exe 17:57:26.0828 1792 MSDTC - ok 17:57:26.0843 1792 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys 17:57:26.0968 1792 Msfs - ok 17:57:26.0968 1792 MSIServer - ok 17:57:27.0000 1792 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys 17:57:27.0109 1792 MSKSSRV - ok 17:57:27.0109 1792 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 17:57:27.0218 1792 MSPCLOCK - ok 17:57:27.0234 1792 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys 17:57:27.0343 1792 MSPQM - ok 17:57:27.0359 1792 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 17:57:27.0468 1792 mssmbios - ok 17:57:27.0500 1792 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys 17:57:27.0593 1792 Mup - ok 17:57:27.0812 1792 MySql (b90e7dd15d998ed0665d34a0c53193c0) c:\usr/MYSQL/bin/mysqld.exe 17:57:27.0812 1792 Suspicious file (Hidden): c:\usr/MYSQL/bin/mysqld.exe. md5: b90e7dd15d998ed0665d34a0c53193c0 17:57:27.0812 1792 MySql ( HiddenFile.Multi.Generic ) - warning 17:57:27.0812 1792 MySql - detected HiddenFile.Multi.Generic (1) 17:57:27.0906 1792 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys 17:57:28.0046 1792 NDIS - ok 17:57:28.0062 1792 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 17:57:28.0171 1792 NdisTapi - ok 17:57:28.0203 1792 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 17:57:28.0328 1792 Ndisuio - ok 17:57:28.0343 1792 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 17:57:28.0453 1792 NdisWan - ok 17:57:28.0468 1792 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys 17:57:28.0578 1792 NDProxy - ok 17:57:28.0625 1792 Net Driver HPZ12 (51c6d8bfbd4ea5b62a1ba7f4469250d3) C:\WINDOWS\system32\HPZinw12.dll 17:57:28.0640 1792 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 17:57:28.0640 1792 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 17:57:28.0656 1792 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys 17:57:28.0781 1792 NetBIOS - ok 17:57:28.0796 1792 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys 17:57:28.0921 1792 NetBT - ok 17:57:28.0937 1792 NetDDE (8de3841527161abdfae5c44ab570f8e1) C:\WINDOWS\system32\netdde.exe 17:57:29.0062 1792 NetDDE - ok 17:57:29.0062 1792 NetDDEdsdm (8de3841527161abdfae5c44ab570f8e1) C:\WINDOWS\system32\netdde.exe 17:57:29.0187 1792 NetDDEdsdm - ok 17:57:29.0203 1792 Netlogon (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\system32\lsass.exe 17:57:29.0328 1792 Netlogon - ok 17:57:29.0343 1792 Netman (3e7b6583269bc118720d0020b03cc71e) C:\WINDOWS\System32\netman.dll 17:57:29.0453 1792 Netman - ok 17:57:29.0578 1792 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 17:57:29.0593 1792 NetTcpPortSharing - ok 17:57:29.0625 1792 Nla (83387067b25e000e64b178a62e5dcd24) C:\WINDOWS\System32\mswsock.dll 17:57:29.0718 1792 Nla - ok 17:57:29.0750 1792 nm (60cf8c7192b3614f240838ddbaa4a245) C:\WINDOWS\system32\DRIVERS\NMnt.sys 17:57:29.0859 1792 nm - ok 17:57:29.0890 1792 NPF (6623e51595c0076755c29c00846c4eb2) C:\WINDOWS\system32\drivers\npf.sys 17:57:29.0906 1792 NPF - ok 17:57:29.0921 1792 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys 17:57:30.0015 1792 Npfs - ok 17:57:30.0062 1792 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys 17:57:30.0203 1792 Ntfs - ok 17:57:30.0203 1792 NtLmSsp (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\System32\lsass.exe 17:57:30.0312 1792 NtLmSsp - ok 17:57:30.0359 1792 NtmsSvc (c8ce1566b0537c3f5f7ae1ca458a6697) C:\WINDOWS\system32\ntmssvc.dll 17:57:30.0468 1792 NtmsSvc - ok 17:57:30.0500 1792 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 17:57:30.0609 1792 Null - ok 17:57:30.0937 1792 nv (9f4384aa43548ddd438f7b7825d11699) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 17:57:31.0171 1792 nv - ok 17:57:31.0296 1792 nvata (b7fb72492b753930ec70a0f49d04f12f) C:\WINDOWS\system32\DRIVERS\nvata.sys 17:57:31.0328 1792 nvata - ok 17:57:31.0375 1792 NVENETFD (cc34564bca235ebad8b308d871efa2df) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys 17:57:31.0390 1792 NVENETFD - ok 17:57:31.0453 1792 nvnetbus (46fdb8d07dd4fc81093b0acb243a525d) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys 17:57:31.0453 1792 nvnetbus - ok 17:57:31.0484 1792 NVSvc (0c41c4acfe00d826db479c40c1d9edc8) C:\WINDOWS\system32\nvsvc32.exe 17:57:31.0515 1792 NVSvc - ok 17:57:31.0531 1792 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 17:57:31.0656 1792 NwlnkFlt - ok 17:57:31.0671 1792 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 17:57:31.0765 1792 NwlnkFwd - ok 17:57:31.0875 1792 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 17:57:31.0890 1792 odserv - ok 17:57:31.0937 1792 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 17:57:31.0937 1792 ose - ok 17:57:31.0968 1792 Parport (2ff48d8fdc815a8492fb2bd81e6999c2) C:\WINDOWS\system32\DRIVERS\parport.sys 17:57:32.0078 1792 Parport - ok 17:57:32.0109 1792 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys 17:57:32.0218 1792 PartMgr - ok 17:57:32.0250 1792 ParVdm (453ec2c2a20a1382f564541918520eeb) C:\WINDOWS\system32\drivers\ParVdm.sys 17:57:32.0359 1792 ParVdm - ok 17:57:32.0359 1792 PCASp50 - ok 17:57:32.0390 1792 PCI (5fd05c92ec56f696eaa50b68cef1b84a) C:\WINDOWS\system32\DRIVERS\pci.sys 17:57:32.0484 1792 PCI - ok 17:57:32.0484 1792 PCIDump - ok 17:57:32.0515 1792 PCIIde (548cf2d6369eae441a4c6baa75bc4f0a) C:\WINDOWS\system32\DRIVERS\pciide.sys 17:57:32.0625 1792 PCIIde - ok 17:57:32.0640 1792 PCLEPCI (1bebe7de8508a02650cdce45c664c2a2) C:\WINDOWS\system32\drivers\pclepci.sys 17:57:32.0640 1792 PCLEPCI ( UnsignedFile.Multi.Generic ) - warning 17:57:32.0640 1792 PCLEPCI - detected UnsignedFile.Multi.Generic (1) 17:57:32.0671 1792 Pcmcia (2849812217ecec059cb45f80eb6e52d4) C:\WINDOWS\system32\drivers\Pcmcia.sys 17:57:32.0781 1792 Pcmcia - ok 17:57:32.0796 1792 PDCOMP - ok 17:57:32.0796 1792 PDFRAME - ok 17:57:32.0812 1792 PDRELI - ok 17:57:32.0812 1792 PDRFRAME - ok 17:57:32.0828 1792 perc2 - ok 17:57:32.0828 1792 perc2hib - ok 17:57:32.0875 1792 PlugPlay (3da8d964d2cc12ef8e8c342471a37917) C:\WINDOWS\system32\services.exe 17:57:32.0984 1792 PlugPlay - ok 17:57:33.0015 1792 Pml Driver HPZ12 (79834aa2fbf9fe81eebb229024f6f7fc) C:\WINDOWS\system32\HPZipm12.dll 17:57:33.0031 1792 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 17:57:33.0031 1792 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 17:57:33.0046 1792 PolicyAgent (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\system32\lsass.exe 17:57:33.0140 1792 PolicyAgent - ok 17:57:33.0156 1792 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys 17:57:33.0265 1792 PptpMiniport - ok 17:57:33.0281 1792 Processor (0914733fb2fc58f69cda0e929bf2df22) C:\WINDOWS\system32\DRIVERS\processr.sys 17:57:33.0390 1792 Processor - ok 17:57:33.0390 1792 ProtectedStorage (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\system32\lsass.exe 17:57:33.0500 1792 ProtectedStorage - ok 17:57:33.0515 1792 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys 17:57:33.0625 1792 PSched - ok 17:57:33.0671 1792 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 17:57:33.0765 1792 Ptilink - ok 17:57:33.0781 1792 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys 17:57:33.0796 1792 PxHelp20 - ok 17:57:33.0796 1792 ql1080 - ok 17:57:33.0812 1792 Ql10wnt - ok 17:57:33.0812 1792 ql12160 - ok 17:57:33.0828 1792 ql1240 - ok 17:57:33.0828 1792 ql1280 - ok 17:57:33.0843 1792 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 17:57:33.0953 1792 RasAcd - ok 17:57:33.0968 1792 RasAuto (5ed5af86ee8cc13f6392b37a81af5d5b) C:\WINDOWS\System32\rasauto.dll 17:57:34.0078 1792 RasAuto - ok 17:57:34.0078 1792 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys 17:57:34.0140 1792 Rasirda - ok 17:57:34.0156 1792 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 17:57:34.0265 1792 Rasl2tp - ok 17:57:34.0296 1792 RasMan (ff59ec9427760470de7ffca75738ecb8) C:\WINDOWS\System32\rasmans.dll 17:57:34.0406 1792 RasMan - ok 17:57:34.0421 1792 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 17:57:34.0562 1792 RasPppoe - ok 17:57:34.0578 1792 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 17:57:34.0671 1792 Raspti - ok 17:57:34.0703 1792 Rdbss (29d66245adba878fff574cd66abd2884) C:\WINDOWS\system32\DRIVERS\rdbss.sys 17:57:34.0812 1792 Rdbss - ok 17:57:34.0828 1792 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 17:57:34.0937 1792 RDPCDD - ok 17:57:34.0968 1792 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 17:57:35.0078 1792 rdpdr - ok 17:57:35.0109 1792 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys 17:57:35.0218 1792 RDPWD - ok 17:57:35.0234 1792 RDSessMgr (ee93399bc7cd84624ab7890dd7d8b296) C:\WINDOWS\system32\sessmgr.exe 17:57:35.0343 1792 RDSessMgr - ok 17:57:35.0343 1792 redbook (bddcece9acdad26841c987d10376f6f7) C:\WINDOWS\system32\DRIVERS\redbook.sys 17:57:35.0453 1792 redbook - ok 17:57:35.0484 1792 RemoteAccess (6a9cb0c18b634b187b8b5a32b0fc2773) C:\WINDOWS\System32\mprdim.dll 17:57:35.0593 1792 RemoteAccess - ok 17:57:35.0625 1792 RemoteRegistry (a19bfed61736127db5b8b815afb35190) C:\WINDOWS\system32\regsvc.dll 17:57:35.0734 1792 RemoteRegistry - ok 17:57:35.0812 1792 RichVideo (1d4061cc5bc8e823d05e1e6e6c1224e3) C:\Program Files\CyberLink\Shared Files\RichVideo.exe 17:57:35.0828 1792 RichVideo - ok 17:57:35.0843 1792 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys 17:57:35.0953 1792 ROOTMODEM - ok 17:57:35.0968 1792 rpcapd (e51a8d02b4bd33eba1f7a5b76c3766ed) C:\Program Files\WinPcap\rpcapd.exe 17:57:35.0984 1792 rpcapd - ok 17:57:36.0000 1792 RpcLocator (6be739f700580f23740efa1d1b57c0a5) C:\WINDOWS\System32\locator.exe 17:57:36.0109 1792 RpcLocator - ok 17:57:36.0156 1792 RpcSs (346e5b19fc986fe7185a0c2c43593722) C:\WINDOWS\System32\rpcss.dll 17:57:36.0265 1792 RpcSs - ok 17:57:36.0312 1792 RSVP (9acee3313020a01235336c2a483afd1a) C:\WINDOWS\System32\rsvp.exe 17:57:36.0421 1792 RSVP - ok 17:57:36.0437 1792 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS 17:57:36.0546 1792 rtl8139 - ok 17:57:36.0578 1792 s116bus (815445f4676cc96bc9aeec303c727e19) C:\WINDOWS\system32\DRIVERS\s116bus.sys 17:57:36.0578 1792 s116bus - ok 17:57:36.0609 1792 s116mdfl (333d1e0743e6de1779c3c418ac601c3a) C:\WINDOWS\system32\DRIVERS\s116mdfl.sys 17:57:36.0609 1792 s116mdfl - ok 17:57:36.0656 1792 s116mdm (50d6e5b021e9ec7553ab8a3553cc1b6b) C:\WINDOWS\system32\DRIVERS\s116mdm.sys 17:57:36.0656 1792 s116mdm - ok 17:57:36.0687 1792 s116mgmt (1589aa53e43f8d193a7d4d580d3ffa95) C:\WINDOWS\system32\DRIVERS\s116mgmt.sys 17:57:36.0687 1792 s116mgmt - ok 17:57:36.0718 1792 s116nd5 (306f85733671fe507470f0273025e768) C:\WINDOWS\system32\DRIVERS\s116nd5.sys 17:57:36.0718 1792 s116nd5 - ok 17:57:36.0765 1792 s116obex (ec32601f04a5a5de89315d0f55e73d66) C:\WINDOWS\system32\DRIVERS\s116obex.sys 17:57:36.0765 1792 s116obex - ok 17:57:36.0796 1792 s116unic (32e3ecb4b2b5887426eaf241a8149cde) C:\WINDOWS\system32\DRIVERS\s116unic.sys 17:57:36.0812 1792 s116unic - ok 17:57:36.0843 1792 s3017bus (aa786ad3a2684d39630744787b00e6f4) C:\WINDOWS\system32\DRIVERS\s3017bus.sys 17:57:36.0859 1792 s3017bus - ok 17:57:36.0875 1792 s3017mdfl (cba4ca5bce44084e98ce420fd6692d3a) C:\WINDOWS\system32\DRIVERS\s3017mdfl.sys 17:57:36.0875 1792 s3017mdfl - ok 17:57:36.0906 1792 s3017mdm (68036eff647970d6c0399789c8707cad) C:\WINDOWS\system32\DRIVERS\s3017mdm.sys 17:57:36.0921 1792 s3017mdm - ok 17:57:36.0937 1792 s3017mgmt (3672e7f9349bd98fd3f5ac33e7b2b1a6) C:\WINDOWS\system32\DRIVERS\s3017mgmt.sys 17:57:36.0953 1792 s3017mgmt - ok 17:57:36.0968 1792 s3017nd5 (b1133b37eb184aef81d56b4302dbae9c) C:\WINDOWS\system32\DRIVERS\s3017nd5.sys 17:57:36.0968 1792 s3017nd5 - ok 17:57:36.0984 1792 s3017obex (d81b1d504aa1426622e7ec09f25130a9) C:\WINDOWS\system32\DRIVERS\s3017obex.sys 17:57:37.0000 1792 s3017obex - ok 17:57:37.0031 1792 s3017unic (7b95c53ea8bb585013767eef2875c0a0) C:\WINDOWS\system32\DRIVERS\s3017unic.sys 17:57:37.0046 1792 s3017unic - ok 17:57:37.0062 1792 s816bus (8c156e6b568aa927eb5deadeb870bdd2) C:\WINDOWS\system32\DRIVERS\s816bus.sys 17:57:37.0078 1792 s816bus - ok 17:57:37.0093 1792 s816mdfl (d4ed429953a2b8b09c702805813a26c8) C:\WINDOWS\system32\DRIVERS\s816mdfl.sys 17:57:37.0093 1792 s816mdfl - ok 17:57:37.0125 1792 s816mdm (94306f371a6ff8b690bea81157111b3b) C:\WINDOWS\system32\DRIVERS\s816mdm.sys 17:57:37.0125 1792 s816mdm - ok 17:57:37.0156 1792 SamSs (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\system32\lsass.exe 17:57:37.0265 1792 SamSs - ok 17:57:37.0296 1792 SCardSvr (8df7262f72c3ab75486d21ba78b9f749) C:\WINDOWS\System32\SCardSvr.exe 17:57:37.0406 1792 SCardSvr - ok 17:57:37.0437 1792 Schedule (e5f1c9ead4c6617acd40ca90882cc7d4) C:\WINDOWS\system32\schedsvc.dll 17:57:37.0546 1792 Schedule - ok 17:57:37.0593 1792 se45bus (531ebc57db331c8500c042d9f8a6aef2) C:\WINDOWS\system32\DRIVERS\se45bus.sys 17:57:37.0609 1792 se45bus ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0609 1792 se45bus - detected UnsignedFile.Multi.Generic (1) 17:57:37.0625 1792 se45mdfl (148e7e813681d3a0a05f09826080cc2b) C:\WINDOWS\system32\DRIVERS\se45mdfl.sys 17:57:37.0640 1792 se45mdfl ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0640 1792 se45mdfl - detected UnsignedFile.Multi.Generic (1) 17:57:37.0671 1792 se45mdm (b4ce022564d0d3fd7b0e5459aa12aa72) C:\WINDOWS\system32\DRIVERS\se45mdm.sys 17:57:37.0687 1792 se45mdm ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0687 1792 se45mdm - detected UnsignedFile.Multi.Generic (1) 17:57:37.0703 1792 se45mgmt (6d04ea9c049ebd78d64ade447de3f7eb) C:\WINDOWS\system32\DRIVERS\se45mgmt.sys 17:57:37.0718 1792 se45mgmt ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0718 1792 se45mgmt - detected UnsignedFile.Multi.Generic (1) 17:57:37.0750 1792 se45nd5 (fdc74beaa13a801fac574bc7af1450c4) C:\WINDOWS\system32\DRIVERS\se45nd5.sys 17:57:37.0750 1792 se45nd5 ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0750 1792 se45nd5 - detected UnsignedFile.Multi.Generic (1) 17:57:37.0781 1792 se45obex (5e003693822460d37516d9a262de9e11) C:\WINDOWS\system32\DRIVERS\se45obex.sys 17:57:37.0796 1792 se45obex ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0796 1792 se45obex - detected UnsignedFile.Multi.Generic (1) 17:57:37.0828 1792 se45unic (fc7021adb632200da591a55a35a78acc) C:\WINDOWS\system32\DRIVERS\se45unic.sys 17:57:37.0828 1792 se45unic ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0828 1792 se45unic - detected UnsignedFile.Multi.Generic (1) 17:57:37.0875 1792 se46bus (d3279a8f45724495e9379328f09b979a) C:\WINDOWS\system32\DRIVERS\se46bus.sys 17:57:37.0875 1792 se46bus ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0875 1792 se46bus - detected UnsignedFile.Multi.Generic (1) 17:57:37.0921 1792 se46mdfl (0ab37b65bf21cd829428cf821f654941) C:\WINDOWS\system32\DRIVERS\se46mdfl.sys 17:57:37.0921 1792 se46mdfl ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0921 1792 se46mdfl - detected UnsignedFile.Multi.Generic (1) 17:57:37.0968 1792 se46mdm (b722c5c0a249dc75304800d2c1a1297e) C:\WINDOWS\system32\DRIVERS\se46mdm.sys 17:57:37.0968 1792 se46mdm ( UnsignedFile.Multi.Generic ) - warning 17:57:37.0968 1792 se46mdm - detected UnsignedFile.Multi.Generic (1) 17:57:37.0984 1792 se46mgmt (816ee5a445a8448dd60652bbc3512ee3) C:\WINDOWS\system32\DRIVERS\se46mgmt.sys 17:57:38.0000 1792 se46mgmt ( UnsignedFile.Multi.Generic ) - warning 17:57:38.0000 1792 se46mgmt - detected UnsignedFile.Multi.Generic (1) 17:57:38.0031 1792 se46nd5 (0fb6918b49357c339336937e704f9a15) C:\WINDOWS\system32\DRIVERS\se46nd5.sys 17:57:38.0031 1792 se46nd5 ( UnsignedFile.Multi.Generic ) - warning 17:57:38.0031 1792 se46nd5 - detected UnsignedFile.Multi.Generic (1) 17:57:38.0046 1792 se46obex (da3f1b71767ad9636f72988be9eb807d) C:\WINDOWS\system32\DRIVERS\se46obex.sys 17:57:38.0062 1792 se46obex ( UnsignedFile.Multi.Generic ) - warning 17:57:38.0062 1792 se46obex - detected UnsignedFile.Multi.Generic (1) 17:57:38.0078 1792 se46unic (509edaa80a34e5c82e443219160d1b34) C:\WINDOWS\system32\DRIVERS\se46unic.sys 17:57:38.0093 1792 se46unic ( UnsignedFile.Multi.Generic ) - warning 17:57:38.0093 1792 se46unic - detected UnsignedFile.Multi.Generic (1) 17:57:38.0109 1792 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys 17:57:38.0171 1792 Secdrv - ok 17:57:38.0187 1792 seclogon (60255ac385a08aaf4897ab4a42483500) C:\WINDOWS\System32\seclogon.dll 17:57:38.0296 1792 seclogon - ok 17:57:38.0328 1792 SENS (1398df553e701c7948188a7d4e347a18) C:\WINDOWS\system32\sens.dll 17:57:38.0437 1792 SENS - ok 17:57:38.0453 1792 Ser2pl - ok 17:57:38.0468 1792 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys 17:57:38.0578 1792 serenum - ok 17:57:38.0593 1792 Serial (859bc6f8c3d58cfda9181e9926c7ddb9) C:\WINDOWS\system32\DRIVERS\serial.sys 17:57:38.0703 1792 Serial - ok 17:57:38.0734 1792 sfdrv01 (b659e4af7534e3516ddc0b820db8f910) C:\WINDOWS\system32\drivers\sfdrv01.sys 17:57:38.0750 1792 sfdrv01 ( UnsignedFile.Multi.Generic ) - warning 17:57:38.0750 1792 sfdrv01 - detected UnsignedFile.Multi.Generic (1) 17:57:38.0796 1792 sfhlp02 (64b9ab76f1b16eb059cb6cdd906c067a) C:\WINDOWS\system32\drivers\sfhlp02.sys 17:57:38.0796 1792 sfhlp02 ( UnsignedFile.Multi.Generic ) - warning 17:57:38.0796 1792 sfhlp02 - detected UnsignedFile.Multi.Generic (1) 17:57:38.0812 1792 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys 17:57:38.0921 1792 Sfloppy - ok 17:57:38.0953 1792 sfsync02 (3fcb3fe43737b0ef6fe759fc0b886a69) C:\WINDOWS\system32\drivers\sfsync02.sys 17:57:38.0968 1792 sfsync02 ( UnsignedFile.Multi.Generic ) - warning 17:57:38.0968 1792 sfsync02 - detected UnsignedFile.Multi.Generic (1) 17:57:39.0000 1792 SharedAccess (ddc87adf808d192a5212cc8a1e7f8e87) C:\WINDOWS\System32\ipnathlp.dll 17:57:39.0140 1792 SharedAccess - ok 17:57:39.0171 1792 ShellHWDetection (7c8e934687c496edc69fdbbd2c277e63) C:\WINDOWS\System32\shsvcs.dll 17:57:39.0281 1792 ShellHWDetection - ok 17:57:39.0281 1792 Simbad - ok 17:57:39.0296 1792 Sparrow - ok 17:57:39.0312 1792 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys 17:57:39.0421 1792 splitter - ok 17:57:39.0437 1792 Spooler (bebe8a85954ff460374fd5a0cd21e19b) C:\WINDOWS\system32\spoolsv.exe 17:57:39.0562 1792 Spooler - ok 17:57:39.0625 1792 sptd (ab5c8f6e63674dbad9c1e449e8fd77ce) C:\WINDOWS\System32\Drivers\sptd.sys 17:57:39.0656 1792 sptd - ok 17:57:39.0671 1792 sr (6145ca23bccda679a772ec0af42d6eb5) C:\WINDOWS\system32\DRIVERS\sr.sys 17:57:39.0734 1792 sr - ok 17:57:39.0781 1792 srservice (f309d9894fca821e3c2f557a8032d47a) C:\WINDOWS\System32\srsvc.dll 17:57:39.0843 1792 srservice - ok 17:57:39.0859 1792 Srv (20b7e396720353e4117d64d9dcb926ca) C:\WINDOWS\system32\DRIVERS\srv.sys 17:57:40.0000 1792 Srv - ok 17:57:40.0015 1792 SSDPSRV (bb754c4be0b18f0faf01a7ebde7025c4) C:\WINDOWS\System32\ssdpsrv.dll 17:57:40.0078 1792 SSDPSRV - ok 17:57:40.0125 1792 ssudmdm (8f299012ef58246f1c98de7b7e48dbf0) C:\WINDOWS\system32\DRIVERS\ssudmdm.sys 17:57:40.0140 1792 ssudmdm - ok 17:57:40.0218 1792 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe 17:57:40.0265 1792 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning 17:57:40.0265 1792 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1) 17:57:40.0312 1792 sterownik - ok 17:57:40.0343 1792 stisvc (c6718154a50fe6c55e382cdbdedce7a7) C:\WINDOWS\system32\wiaservc.dll 17:57:40.0453 1792 stisvc - ok 17:57:40.0484 1792 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys 17:57:40.0593 1792 swenum - ok 17:57:40.0625 1792 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys 17:57:40.0734 1792 swmidi - ok 17:57:40.0750 1792 SwPrv - ok 17:57:40.0750 1792 symc810 - ok 17:57:40.0765 1792 symc8xx - ok 17:57:40.0765 1792 sym_hi - ok 17:57:40.0781 1792 sym_u3 - ok 17:57:40.0828 1792 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys 17:57:40.0937 1792 sysaudio - ok 17:57:40.0937 1792 SysmonLog (5893b3b5b966233cae426b2fedc34ddf) C:\WINDOWS\system32\smlogsvc.exe 17:57:41.0046 1792 SysmonLog - ok 17:57:41.0078 1792 TapiSrv (0a695b77564d8e9333e846b526f95ab2) C:\WINDOWS\System32\tapisrv.dll 17:57:41.0187 1792 TapiSrv - ok 17:57:41.0218 1792 TBPanel (04e1c782cf14b7282ebc633b0fd3ed16) C:\WINDOWS\system32\drivers\TBPanel.sys 17:57:41.0218 1792 TBPanel - ok 17:57:41.0265 1792 Tcpip (bb3249f81ac040a2505245e1c2bd82ab) C:\WINDOWS\system32\DRIVERS\tcpip.sys 17:57:41.0281 1792 Tcpip ( UnsignedFile.Multi.Generic ) - warning 17:57:41.0281 1792 Tcpip - detected UnsignedFile.Multi.Generic (1) 17:57:41.0296 1792 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys 17:57:41.0406 1792 TDPIPE - ok 17:57:41.0437 1792 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys 17:57:41.0531 1792 TDTCP - ok 17:57:41.0546 1792 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys 17:57:41.0656 1792 TermDD - ok 17:57:41.0687 1792 TermService (2c28157229925280916b3041ccc5fe4b) C:\WINDOWS\System32\termsrv.dll 17:57:41.0796 1792 TermService - ok 17:57:41.0828 1792 Themes (7c8e934687c496edc69fdbbd2c277e63) C:\WINDOWS\System32\shsvcs.dll 17:57:41.0937 1792 Themes - ok 17:57:41.0968 1792 TlntSvr (cac717418ccdf09110f406108017bfa6) C:\WINDOWS\System32\tlntsvr.exe 17:57:42.0031 1792 TlntSvr - ok 17:57:42.0031 1792 TosIde - ok 17:57:42.0078 1792 TrkWks (facbc230aa93401d2fe88976e7cb7369) C:\WINDOWS\system32\trkwks.dll 17:57:42.0187 1792 TrkWks - ok 17:57:42.0203 1792 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys 17:57:42.0312 1792 Udfs - ok 17:57:42.0312 1792 ultra - ok 17:57:42.0343 1792 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys 17:57:42.0453 1792 Update - ok 17:57:42.0484 1792 upnphost (387d2a06c8e7cccea8e9a350c8fe6781) C:\WINDOWS\System32\upnphost.dll 17:57:42.0546 1792 upnphost - ok 17:57:42.0578 1792 UPS (576a2c38cf3904f2ca1107f922288435) C:\WINDOWS\System32\ups.exe 17:57:42.0687 1792 UPS - ok 17:57:42.0718 1792 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 17:57:42.0828 1792 usbccgp - ok 17:57:42.0859 1792 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys 17:57:42.0968 1792 usbehci - ok 17:57:42.0984 1792 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys 17:57:43.0078 1792 usbhub - ok 17:57:43.0093 1792 usbohci (bdfe799a8531bad8a5a985821fe78760) C:\WINDOWS\system32\DRIVERS\usbohci.sys 17:57:43.0187 1792 usbohci - ok 17:57:43.0218 1792 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys 17:57:43.0328 1792 usbprint - ok 17:57:43.0359 1792 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys 17:57:43.0468 1792 usbscan - ok 17:57:43.0484 1792 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 17:57:43.0578 1792 USBSTOR - ok 17:57:43.0609 1792 UTSCSI (8afffda081cff3057391fedbbb483601) C:\WINDOWS\system32\UTSCSI.EXE 17:57:43.0609 1792 UTSCSI ( UnsignedFile.Multi.Generic ) - warning 17:57:43.0609 1792 UTSCSI - detected UnsignedFile.Multi.Generic (1) 17:57:43.0640 1792 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys 17:57:43.0734 1792 VgaSave - ok 17:57:43.0750 1792 ViaIde - ok 17:57:43.0781 1792 VolSnap (ecd173739b8ec10a814cc18653df5a36) C:\WINDOWS\system32\drivers\VolSnap.sys 17:57:43.0890 1792 VolSnap - ok 17:57:43.0921 1792 VSS (fec1e19b91972105044960b23c442949) C:\WINDOWS\System32\vssvc.exe 17:57:43.0984 1792 VSS - ok 17:57:44.0015 1792 W32Time (000a0d516a2e20441e77aea44e46b19b) C:\WINDOWS\system32\w32time.dll 17:57:44.0109 1792 W32Time - ok 17:57:44.0125 1792 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys 17:57:44.0234 1792 Wanarp - ok 17:57:44.0265 1792 wceusbsh (46a247f6617526afe38b6f12f5512120) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys 17:57:44.0281 1792 wceusbsh - ok 17:57:44.0328 1792 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys 17:57:44.0343 1792 Wdf01000 - ok 17:57:44.0359 1792 WDICA - ok 17:57:44.0390 1792 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys 17:57:44.0515 1792 wdmaud - ok 17:57:44.0546 1792 WebClient (f796befe565c59a30a4c61b640557276) C:\WINDOWS\System32\webclnt.dll 17:57:44.0671 1792 WebClient - ok 17:57:44.0703 1792 winmgmt (482435b2a2de8e06c83c3b1eb3237c2c) C:\WINDOWS\system32\wbem\WMIsvc.dll 17:57:44.0812 1792 winmgmt - ok 17:57:44.0843 1792 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll 17:57:44.0859 1792 WmdmPmSN - ok 17:57:44.0921 1792 Wmi (5822b8baf16f7cae6b56e839d65a8bfb) C:\WINDOWS\System32\advapi32.dll 17:57:45.0046 1792 Wmi - ok 17:57:45.0078 1792 WmiApSrv (45e43704611d7c2202a180ff87e63550) C:\WINDOWS\System32\wbem\wmiapsrv.exe 17:57:45.0203 1792 WmiApSrv - ok 17:57:45.0312 1792 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe 17:57:45.0343 1792 WMPNetworkSvc - ok 17:57:45.0390 1792 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys 17:57:45.0406 1792 WpdUsb - ok 17:57:45.0437 1792 wscsvc (390d0951271908c46eecf89893876424) C:\WINDOWS\system32\wscsvc.dll 17:57:45.0546 1792 wscsvc - ok 17:57:45.0578 1792 wuauserv (40c600488ff127953aa2f1835e5fd433) C:\WINDOWS\System32\wuauserv.dll 17:57:45.0671 1792 wuauserv - ok 17:57:45.0703 1792 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 17:57:45.0718 1792 WudfPf - ok 17:57:45.0734 1792 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 17:57:45.0765 1792 WudfRd - ok 17:57:45.0796 1792 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll 17:57:45.0828 1792 WudfSvc - ok 17:57:45.0859 1792 WZCSVC (98a8014dbe72349f73462262cf493574) C:\WINDOWS\System32\wzcsvc.dll 17:57:45.0968 1792 WZCSVC - ok 17:57:46.0015 1792 xmlprov (e3c9ef5bcc9eb171bd81051cd19bded7) C:\WINDOWS\System32\xmlprov.dll 17:57:46.0125 1792 xmlprov - ok 17:57:46.0203 1792 {95808DC4-FA4A-4c74-92FE-5B863F82066B} (8098180b3f6c430a4e60333bc036f936) C:\Program Files\CyberLink\PowerDVD\000.fcl 17:57:46.0203 1792 {95808DC4-FA4A-4c74-92FE-5B863F82066B} - ok 17:57:46.0234 1792 MBR (0x1B8) (32052574bf9f325ae309abc7bfd04460) \Device\Harddisk0\DR0 17:57:46.0765 1792 \Device\Harddisk0\DR0 - ok 17:57:46.0781 1792 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1 17:57:46.0828 1792 \Device\Harddisk1\DR1 - ok 17:57:46.0828 1792 Boot (0x1200) (c1ff39874adafe511f7401e17ac68adc) \Device\Harddisk0\DR0\Partition0 17:57:46.0843 1792 \Device\Harddisk0\DR0\Partition0 - ok 17:57:46.0859 1792 Boot (0x1200) (742646a7400afd9607d76b740e764c81) \Device\Harddisk0\DR0\Partition1 17:57:46.0859 1792 \Device\Harddisk0\DR0\Partition1 - ok 17:57:46.0859 1792 Boot (0x1200) (4ac8e70bd2348331f216f6490778cfd4) \Device\Harddisk1\DR1\Partition0 17:57:46.0875 1792 \Device\Harddisk1\DR1\Partition0 - ok 17:57:46.0875 1792 Boot (0x1200) (5ce5f86136b90eea386239c1de30f29b) \Device\Harddisk1\DR1\Partition1 17:57:46.0875 1792 \Device\Harddisk1\DR1\Partition1 - ok 17:57:46.0875 1792 ============================================================ 17:57:46.0875 1792 Scan finished 17:57:46.0875 1792 ============================================================ 17:57:47.0046 3880 Detected object count: 39 17:57:47.0046 3880 Actual detected object count: 39 17:58:00.0546 3880 C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe - copied to quarantine 17:58:00.0546 3880 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:00.0625 3880 C:\WINDOWS\system32\DRIVERS\alcan5wn.sys - copied to quarantine 17:58:00.0625 3880 alcan5wn ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:00.0671 3880 C:\WINDOWS\system32\DRIVERS\alcaudsl.sys - copied to quarantine 17:58:00.0671 3880 alcaudsl ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:00.0781 3880 C:\WINDOWS\system32\drivers\btaudio.sys - copied to quarantine 17:58:00.0781 3880 btaudio ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:00.0812 3880 C:\WINDOWS\system32\DRIVERS\btport.sys - copied to quarantine 17:58:00.0812 3880 BTDriver ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:00.0984 3880 C:\WINDOWS\system32\DRIVERS\btkrnl.sys - copied to quarantine 17:58:00.0984 3880 BTKRNL ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0093 3880 C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe - copied to quarantine 17:58:01.0093 3880 btwdins ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0140 3880 C:\WINDOWS\system32\DRIVERS\btwhid.sys - copied to quarantine 17:58:01.0140 3880 btwhid ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0187 3880 C:\WINDOWS\system32\DRIVERS\btwmodem.sys - copied to quarantine 17:58:01.0187 3880 btwmodem ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0218 3880 C:\WINDOWS\system32\Drivers\btwusb.sys - copied to quarantine 17:58:01.0218 3880 BTWUSB ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0265 3880 C:\WINDOWS\system32\drivers\FileDisk.sys - copied to quarantine 17:58:01.0265 3880 FileDisk ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0296 3880 C:\WINDOWS\system32\DRIVERS\hamachi.sys - copied to quarantine 17:58:01.0296 3880 hamachi ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0437 3880 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - copied to quarantine 17:58:01.0437 3880 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0468 3880 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - copied to quarantine 17:58:01.0468 3880 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0546 3880 C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe - copied to quarantine 17:58:01.0546 3880 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0796 3880 c:\usr/MYSQL/bin/mysqld.exe - copied to quarantine 17:58:01.0796 3880 MySql ( HiddenFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0921 3880 C:\WINDOWS\system32\HPZinw12.dll - copied to quarantine 17:58:01.0921 3880 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:01.0968 3880 C:\WINDOWS\system32\drivers\pclepci.sys - copied to quarantine 17:58:01.0968 3880 PCLEPCI ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0031 3880 C:\WINDOWS\system32\HPZipm12.dll - copied to quarantine 17:58:02.0031 3880 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0062 3880 C:\WINDOWS\system32\DRIVERS\se45bus.sys - copied to quarantine 17:58:02.0062 3880 se45bus ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0109 3880 C:\WINDOWS\system32\DRIVERS\se45mdfl.sys - copied to quarantine 17:58:02.0109 3880 se45mdfl ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0156 3880 C:\WINDOWS\system32\DRIVERS\se45mdm.sys - copied to quarantine 17:58:02.0156 3880 se45mdm ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0218 3880 C:\WINDOWS\system32\DRIVERS\se45mgmt.sys - copied to quarantine 17:58:02.0218 3880 se45mgmt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0234 3880 C:\WINDOWS\system32\DRIVERS\se45nd5.sys - copied to quarantine 17:58:02.0234 3880 se45nd5 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0296 3880 C:\WINDOWS\system32\DRIVERS\se45obex.sys - copied to quarantine 17:58:02.0296 3880 se45obex ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0328 3880 C:\WINDOWS\system32\DRIVERS\se45unic.sys - copied to quarantine 17:58:02.0328 3880 se45unic ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0390 3880 C:\WINDOWS\system32\DRIVERS\se46bus.sys - copied to quarantine 17:58:02.0390 3880 se46bus ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0437 3880 C:\WINDOWS\system32\DRIVERS\se46mdfl.sys - copied to quarantine 17:58:02.0437 3880 se46mdfl ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0500 3880 C:\WINDOWS\system32\DRIVERS\se46mdm.sys - copied to quarantine 17:58:02.0500 3880 se46mdm ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0531 3880 C:\WINDOWS\system32\DRIVERS\se46mgmt.sys - copied to quarantine 17:58:02.0531 3880 se46mgmt ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0593 3880 C:\WINDOWS\system32\DRIVERS\se46nd5.sys - copied to quarantine 17:58:02.0593 3880 se46nd5 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0625 3880 C:\WINDOWS\system32\DRIVERS\se46obex.sys - copied to quarantine 17:58:02.0625 3880 se46obex ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0687 3880 C:\WINDOWS\system32\DRIVERS\se46unic.sys - copied to quarantine 17:58:02.0687 3880 se46unic ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0718 3880 C:\WINDOWS\system32\drivers\sfdrv01.sys - copied to quarantine 17:58:02.0734 3880 sfdrv01 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0812 3880 C:\WINDOWS\system32\drivers\sfhlp02.sys - copied to quarantine 17:58:02.0812 3880 sfhlp02 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0843 3880 C:\WINDOWS\system32\drivers\sfsync02.sys - copied to quarantine 17:58:02.0843 3880 sfsync02 ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:02.0984 3880 C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe - copied to quarantine 17:58:02.0984 3880 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:03.0078 3880 C:\WINDOWS\system32\DRIVERS\tcpip.sys - copied to quarantine 17:58:03.0078 3880 Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:03.0140 3880 C:\WINDOWS\system32\UTSCSI.EXE - copied to quarantine 17:58:03.0140 3880 UTSCSI ( UnsignedFile.Multi.Generic ) - User select action: Quarantine 17:58:06.0375 1676 ============================================================ 17:58:06.0375 1676 Scan started 17:58:06.0375 1676 Mode: Manual; SigCheck; TDLFS; 17:58:06.0375 1676 ============================================================ 17:58:06.0953 1676 93089848 (58169ffb207940d4d84b4e85db02cc1e) C:\WINDOWS\system32\drivers\61268052.sys 17:58:06.0984 1676 Aavmker4 (479c9835b91147be1a92cb76fad9c6de) C:\WINDOWS\system32\drivers\Aavmker4.sys 17:58:07.0000 1676 Aavmker4 - ok 17:58:07.0000 1676 Abiosdsk - ok 17:58:07.0015 1676 abp480n5 - ok 17:58:07.0046 1676 ACPI (a966410ecf83b81f3b0b8e07a71957d4) C:\WINDOWS\system32\DRIVERS\ACPI.sys 17:58:07.0156 1676 ACPI - ok 17:58:07.0187 1676 ACPIEC (66a42b7db194e24b973bbcce840a0f3f) C:\WINDOWS\system32\drivers\ACPIEC.sys 17:58:07.0296 1676 ACPIEC - ok 17:58:07.0328 1676 Adobe LM Service (c1eb9968ec89fba5f3a264e2e57923ab) C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe 17:58:07.0343 1676 Adobe LM Service ( UnsignedFile.Multi.Generic ) - warning 17:58:07.0343 1676 Adobe LM Service - detected UnsignedFile.Multi.Generic (1) 17:58:07.0359 1676 adpu160m - ok 17:58:07.0375 1676 aec (841f385c6cfaf66b58fbd898722bb4f0) C:\WINDOWS\system32\drivers\aec.sys 17:58:07.0500 1676 aec - ok 17:58:07.0515 1676 AFD (5ac495f4cb807b2b98ad2ad591e6d92e) C:\WINDOWS\System32\drivers\afd.sys 17:58:07.0625 1676 AFD - ok 17:58:07.0625 1676 Aha154x - ok 17:58:07.0625 1676 aic78u2 - ok 17:58:07.0640 1676 aic78xx - ok 17:58:07.0671 1676 alcan5wn (0940030d5a5869067ccc03e3b0b8dec7) C:\WINDOWS\system32\DRIVERS\alcan5wn.sys 17:58:07.0671 1676 alcan5wn ( UnsignedFile.Multi.Generic ) - warning 17:58:07.0671 1676 alcan5wn - detected UnsignedFile.Multi.Generic (1) 17:58:07.0703 1676 alcaudsl (4c9577888c53243e2991456f510488a1) C:\WINDOWS\system32\DRIVERS\alcaudsl.sys 17:58:07.0703 1676 alcaudsl ( UnsignedFile.Multi.Generic ) - warning 17:58:07.0703 1676 alcaudsl - detected UnsignedFile.Multi.Generic (1) 17:58:07.0750 1676 Alerter (f79b5c5b0a77a134c5671992335d1409) C:\WINDOWS\system32\alrsvc.dll 17:58:07.0843 1676 Alerter - ok 17:58:07.0875 1676 ALG (9d12991bc6b6c5c0fbab4c06e7073df1) C:\WINDOWS\System32\alg.exe 17:58:07.0937 1676 ALG - ok 17:58:07.0937 1676 AliIde - ok 17:58:07.0968 1676 AmdK8 (59301936898ae62245a6f09c0aba9475) C:\WINDOWS\system32\DRIVERS\AmdK8.sys 17:58:07.0984 1676 AmdK8 - ok 17:58:07.0984 1676 amsint - ok 17:58:08.0000 1676 AppMgmt (8d60b308d061da209cc271d9b480468c) C:\WINDOWS\System32\appmgmts.dll 17:58:08.0062 1676 AppMgmt - ok 17:58:08.0078 1676 asc - ok 17:58:08.0078 1676 asc3350p - ok 17:58:08.0093 1676 asc3550 - ok 17:58:08.0171 1676 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe 17:58:08.0187 1676 aspnet_state - ok 17:58:08.0203 1676 aswFsBlk (cba53c5e29ae0a0ce76f9a2be3a40d9e) C:\WINDOWS\system32\drivers\aswFsBlk.sys 17:58:08.0218 1676 aswFsBlk - ok 17:58:08.0234 1676 aswMon2 (a1c52b822b7b8a5c2162d38f579f97b7) C:\WINDOWS\system32\drivers\aswMon2.sys 17:58:08.0250 1676 aswMon2 - ok 17:58:08.0265 1676 aswRdr (b6e8c5874377a42756c282fac2e20836) C:\WINDOWS\system32\drivers\aswRdr.sys 17:58:08.0281 1676 aswRdr - ok 17:58:08.0296 1676 aswSP (b93a553c9b0f14263c8f016a44c3258c) C:\WINDOWS\system32\drivers\aswSP.sys 17:58:08.0312 1676 aswSP - ok 17:58:08.0343 1676 aswTdi (1408421505257846eb336feeef33352d) C:\WINDOWS\system32\drivers\aswTdi.sys 17:58:08.0343 1676 aswTdi - ok 17:58:08.0375 1676 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 17:58:08.0484 1676 AsyncMac - ok 17:58:08.0500 1676 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys 17:58:08.0625 1676 atapi - ok 17:58:08.0625 1676 Atdisk - ok 17:58:08.0687 1676 atidgllk - ok 17:58:08.0734 1676 atksgt (3c4b9850a2631c2263507400d029057b) C:\WINDOWS\system32\DRIVERS\atksgt.sys 17:58:08.0750 1676 atksgt - ok 17:58:08.0781 1676 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 17:58:08.0906 1676 Atmarpc - ok 17:58:08.0921 1676 AudioSrv (18bff5eba35f2562c5aa03eb9c6ba29e) C:\WINDOWS\System32\audiosrv.dll 17:58:09.0046 1676 AudioSrv - ok 17:58:09.0062 1676 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 17:58:09.0171 1676 audstub - ok 17:58:09.0250 1676 avast! Antivirus (25fb74eabce5ec7836ba3cfb3c58449a) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe 17:58:09.0250 1676 avast! Antivirus - ok 17:58:09.0281 1676 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 17:58:09.0390 1676 Beep - ok 17:58:09.0421 1676 BITS (a6bfd910074b02c8794fc65f39cc6b28) C:\WINDOWS\system32\qmgr.dll 17:58:09.0562 1676 BITS - ok 17:58:09.0593 1676 Bridge (e4e6a0922e3d983728c9ad4e8d466954) C:\WINDOWS\system32\DRIVERS\bridge.sys 17:58:09.0640 1676 Bridge - ok 17:58:09.0656 1676 BridgeMP (e4e6a0922e3d983728c9ad4e8d466954) C:\WINDOWS\system32\DRIVERS\bridge.sys 17:58:09.0703 1676 BridgeMP - ok 17:58:09.0734 1676 Browser (210830d2497fef78694076179af8c795) C:\WINDOWS\System32\browser.dll 17:58:09.0843 1676 Browser - ok 17:58:09.0890 1676 btaudio (d4350ad61965cc38e73a0a65cd5a8393) C:\WINDOWS\system32\drivers\btaudio.sys 17:58:09.0906 1676 btaudio ( UnsignedFile.Multi.Generic ) - warning 17:58:09.0906 1676 btaudio - detected UnsignedFile.Multi.Generic (1) 17:58:09.0937 1676 BTDriver (3e180e8d7b36ef15516b2c79b5615304) C:\WINDOWS\system32\DRIVERS\btport.sys 17:58:09.0937 1676 BTDriver ( UnsignedFile.Multi.Generic ) - warning 17:58:09.0937 1676 BTDriver - detected UnsignedFile.Multi.Generic (1) 17:58:10.0015 1676 BTKRNL (5a9fe118b3e77776c885e3f6496758e7) C:\WINDOWS\system32\DRIVERS\btkrnl.sys 17:58:10.0078 1676 BTKRNL ( UnsignedFile.Multi.Generic ) - warning 17:58:10.0078 1676 BTKRNL - detected UnsignedFile.Multi.Generic (1) 17:58:10.0156 1676 btwdins (21490ae34e72c4e6af534b3b4771389c) C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe 17:58:10.0156 1676 btwdins ( UnsignedFile.Multi.Generic ) - warning 17:58:10.0156 1676 btwdins - detected UnsignedFile.Multi.Generic (1) 17:58:10.0187 1676 btwhid (c7602ccd265206beb6c26e4f5faeaac0) C:\WINDOWS\system32\DRIVERS\btwhid.sys 17:58:10.0203 1676 btwhid ( UnsignedFile.Multi.Generic ) - warning 17:58:10.0203 1676 btwhid - detected UnsignedFile.Multi.Generic (1) 17:58:10.0203 1676 btwmodem (395b7d6747170c749ae45906286074f5) C:\WINDOWS\system32\DRIVERS\btwmodem.sys 17:58:10.0218 1676 btwmodem ( UnsignedFile.Multi.Generic ) - warning 17:58:10.0218 1676 btwmodem - detected UnsignedFile.Multi.Generic (1) 17:58:10.0250 1676 BTWUSB (f35a32553693a9f7220d174cae95635f) C:\WINDOWS\system32\Drivers\btwusb.sys 17:58:10.0265 1676 BTWUSB ( UnsignedFile.Multi.Generic ) - warning 17:58:10.0265 1676 BTWUSB - detected UnsignedFile.Multi.Generic (1) 17:58:10.0281 1676 BulkUsb (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys 17:58:10.0390 1676 BulkUsb - ok 17:58:10.0484 1676 catchme - ok 17:58:10.0531 1676 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 17:58:10.0656 1676 cbidf2k - ok 17:58:10.0671 1676 cd20xrnt - ok 17:58:10.0671 1676 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 17:58:10.0796 1676 Cdaudio - ok 17:58:10.0812 1676 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys 17:58:10.0921 1676 Cdfs - ok 17:58:10.0953 1676 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys 17:58:11.0062 1676 Cdrom - ok 17:58:11.0062 1676 Changer - ok 17:58:11.0093 1676 cisvc (b4e0a9b9064aa79ae188c0d953543520) C:\WINDOWS\system32\cisvc.exe 17:58:11.0203 1676 cisvc - ok 17:58:11.0234 1676 ClipSrv (1b11121083c32ea9a55abe547a23ff71) C:\WINDOWS\system32\clipsrv.exe 17:58:11.0343 1676 ClipSrv - ok 17:58:11.0421 1676 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe 17:58:11.0421 1676 clr_optimization_v2.0.50727_32 - ok 17:58:11.0437 1676 CmdIde - ok 17:58:11.0437 1676 COMSysApp - ok 17:58:11.0453 1676 Cpqarray - ok 17:58:11.0484 1676 CryptSvc (91723cd7c96c5854149f9cae820a90dd) C:\WINDOWS\System32\cryptsvc.dll 17:58:11.0609 1676 CryptSvc - ok 17:58:11.0609 1676 dac2w2k - ok 17:58:11.0625 1676 dac960nt - ok 17:58:11.0687 1676 DcomLaunch (346e5b19fc986fe7185a0c2c43593722) C:\WINDOWS\system32\rpcss.dll 17:58:11.0796 1676 DcomLaunch - ok 17:58:11.0828 1676 dgderdrv (6216fd7fd227de454238a702b218cec7) C:\WINDOWS\system32\drivers\dgderdrv.sys 17:58:11.0843 1676 dgderdrv - ok 17:58:11.0875 1676 dg_ssudbus (919f338fd36f47d860775368d0748780) C:\WINDOWS\system32\DRIVERS\ssudbus.sys 17:58:11.0875 1676 dg_ssudbus - ok 17:58:11.0890 1676 Dhcp (94b49f2d487a7d4a79b3e96b6d5685b0) C:\WINDOWS\System32\dhcpcsvc.dll 17:58:12.0015 1676 Dhcp - ok 17:58:12.0015 1676 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys 17:58:12.0125 1676 Disk - ok 17:58:12.0125 1676 dmadmin - ok 17:58:12.0203 1676 dmboot (3b809ffad55dcebdb156d5ca1bd3da65) C:\WINDOWS\system32\drivers\dmboot.sys 17:58:12.0312 1676 dmboot - ok 17:58:12.0343 1676 dmio (27725b6501201c3080ba73048bce389a) C:\WINDOWS\system32\drivers\dmio.sys 17:58:12.0453 1676 dmio - ok 17:58:12.0828 1676 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 17:58:12.0968 1676 dmload - ok 17:58:12.0984 1676 dmserver (4adbb7593ec0115f7622c335b427c3da) C:\WINDOWS\System32\dmserver.dll 17:58:13.0109 1676 dmserver - ok 17:58:13.0140 1676 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys 17:58:13.0265 1676 DMusic - ok 17:58:13.0281 1676 Dnscache (f61c204ebcaa1d6b5fb5dfe7034741f3) C:\WINDOWS\System32\dnsrslvr.dll 17:58:13.0390 1676 Dnscache - ok 17:58:13.0406 1676 dpti2o - ok 17:58:13.0421 1676 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys 17:58:13.0546 1676 drmkaud - ok 17:58:13.0562 1676 dtsoftbus01 (687af6bb383885ff6a64071b189a7f3e) C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys 17:58:13.0578 1676 dtsoftbus01 - ok 17:58:13.0578 1676 dwshd - ok 17:58:13.0609 1676 ERSvc (efd32591f9e29c00a5814df3f6d46683) C:\WINDOWS\System32\ersvc.dll 17:58:13.0734 1676 ERSvc - ok 17:58:13.0781 1676 Eventlog (3da8d964d2cc12ef8e8c342471a37917) C:\WINDOWS\system32\services.exe 17:58:13.0906 1676 Eventlog - ok 17:58:13.0937 1676 EventSystem (dc54cc79e1faefa480a8117c9bf105e1) C:\WINDOWS\System32\es.dll 17:58:14.0062 1676 EventSystem - ok 17:58:14.0109 1676 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys 17:58:14.0218 1676 Fastfat - ok 17:58:14.0265 1676 FastUserSwitchingCompatibility (7c8e934687c496edc69fdbbd2c277e63) C:\WINDOWS\System32\shsvcs.dll 17:58:14.0375 1676 FastUserSwitchingCompatibility - ok 17:58:14.0390 1676 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys 17:58:14.0515 1676 Fdc - ok 17:58:14.0546 1676 FileDisk (093913a016845fe257ed9b7fc8e28ed8) C:\WINDOWS\system32\drivers\FileDisk.sys 17:58:14.0562 1676 FileDisk ( UnsignedFile.Multi.Generic ) - warning 17:58:14.0562 1676 FileDisk - detected UnsignedFile.Multi.Generic (1) 17:58:14.0593 1676 Fips (c5fb298257c0a6514ea17835e774ea0a) C:\WINDOWS\system32\drivers\Fips.sys 17:58:14.0703 1676 Fips - ok 17:58:14.0703 1676 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 17:58:14.0843 1676 Flpydisk - ok 17:58:14.0875 1676 FltMgr (157754f0df355a9e0a6f54721914f9c6) C:\WINDOWS\system32\drivers\fltmgr.sys 17:58:14.0984 1676 FltMgr - ok 17:58:15.0078 1676 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe 17:58:15.0093 1676 FontCache3.0.0.0 - ok 17:58:15.0109 1676 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 17:58:15.0234 1676 Fs_Rec - ok 17:58:15.0250 1676 Ftdisk (ed6d921d8ab423138fb35beee6d6a6cb) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 17:58:15.0375 1676 Ftdisk - ok 17:58:15.0390 1676 ggflt (4b5fddbcb9407741f47818b8d1ee4a8e) C:\WINDOWS\system32\DRIVERS\ggflt.sys 17:58:15.0406 1676 ggflt - ok 17:58:15.0437 1676 ggsemc (80bbcc9724b24a708ca9489c1e0a1e5f) C:\WINDOWS\system32\DRIVERS\ggsemc.sys 17:58:15.0437 1676 ggsemc - ok 17:58:15.0453 1676 GMSIPCI - ok 17:58:15.0468 1676 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys 17:58:15.0593 1676 Gpc - ok 17:58:15.0687 1676 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe 17:58:15.0687 1676 gupdate - ok 17:58:15.0703 1676 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe 17:58:15.0718 1676 gupdatem - ok 17:58:15.0765 1676 hamachi (43ae2f414fbccd7287389e7b908a4745) C:\WINDOWS\system32\DRIVERS\hamachi.sys 17:58:15.0765 1676 hamachi ( UnsignedFile.Multi.Generic ) - warning 17:58:15.0765 1676 hamachi - detected UnsignedFile.Multi.Generic (1) 17:58:15.0796 1676 HDAudBus (3fcc124b6e08ee0e9351f717dd136939) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 17:58:15.0812 1676 HDAudBus - ok 17:58:15.0843 1676 helpsvc (e1552a082e8c0fbb70b758f170b3aff8) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 17:58:15.0968 1676 helpsvc - ok 17:58:15.0984 1676 HidServ (7d00fec9b6de9776b3d0ead70bd71968) C:\WINDOWS\System32\hidserv.dll 17:58:16.0109 1676 HidServ - ok 17:58:16.0109 1676 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys 17:58:16.0234 1676 HidUsb - ok 17:58:16.0234 1676 hpn - ok 17:58:16.0328 1676 hpqcxs08 (38d6b51f04def7fb248fa56e4c47407e) C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll 17:58:16.0343 1676 hpqcxs08 ( UnsignedFile.Multi.Generic ) - warning 17:58:16.0343 1676 hpqcxs08 - detected UnsignedFile.Multi.Generic (1) 17:58:16.0375 1676 hpqddsvc (3ee4a63539ec04ee2d4bd293985087ab) C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll 17:58:16.0390 1676 hpqddsvc ( UnsignedFile.Multi.Generic ) - warning 17:58:16.0390 1676 hpqddsvc - detected UnsignedFile.Multi.Generic (1) 17:58:16.0390 1676 hpt3xx - ok 17:58:16.0421 1676 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys 17:58:16.0453 1676 HPZid412 - ok 17:58:16.0468 1676 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys 17:58:16.0484 1676 HPZipr12 - ok 17:58:16.0515 1676 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys 17:58:16.0562 1676 HPZius12 - ok 17:58:16.0609 1676 HTTP (c19b522a9ae0bbc3293397f3055e80a1) C:\WINDOWS\system32\Drivers\HTTP.sys 17:58:16.0718 1676 HTTP - ok 17:58:16.0750 1676 HTTPFilter (2d303caf3c6dcfb246e74550dbed5880) C:\WINDOWS\System32\w3ssl.dll 17:58:16.0875 1676 HTTPFilter - ok 17:58:16.0875 1676 i2omgmt - ok 17:58:16.0875 1676 i2omp - ok 17:58:16.0906 1676 i8042prt (2656fdfe0a7916c3a16f374454c55dd9) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 17:58:17.0015 1676 i8042prt - ok 17:58:17.0078 1676 IDriverT (daf66902f08796f9c694901660e5a64a) C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe 17:58:17.0093 1676 IDriverT ( UnsignedFile.Multi.Generic ) - warning 17:58:17.0093 1676 IDriverT - detected UnsignedFile.Multi.Generic (1) 17:58:17.0250 1676 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe 17:58:17.0281 1676 idsvc - ok 17:58:17.0312 1676 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys 17:58:17.0437 1676 Imapi - ok 17:58:17.0468 1676 ImapiService (bc74431e59fb0badf3e9162bd8d37b00) C:\WINDOWS\system32\imapi.exe 17:58:17.0593 1676 ImapiService - ok 17:58:17.0609 1676 ini910u - ok 17:58:17.0828 1676 IntcAzAudAddService (e37589414437a60797e94c0f57c546db) C:\WINDOWS\system32\drivers\RtkHDAud.sys 17:58:18.0015 1676 IntcAzAudAddService - ok 17:58:18.0109 1676 IntelIde - ok 17:58:18.0140 1676 ip6fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\drivers\ip6fw.sys 17:58:18.0250 1676 ip6fw - ok 17:58:18.0281 1676 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 17:58:18.0406 1676 IpFilterDriver - ok 17:58:18.0421 1676 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys 17:58:18.0546 1676 IpInIp - ok 17:58:18.0578 1676 IpNat (b5a8e215ac29d24d60b4d1250ef05ace) C:\WINDOWS\system32\DRIVERS\ipnat.sys 17:58:18.0703 1676 IpNat - ok 17:58:18.0718 1676 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys 17:58:18.0843 1676 IPSec - ok 17:58:18.0875 1676 irda (86c204836feec22510d434982d4221b8) C:\WINDOWS\system32\DRIVERS\irda.sys 17:58:18.0937 1676 irda - ok 17:58:18.0953 1676 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys 17:58:19.0015 1676 IRENUM - ok 17:58:19.0046 1676 Irmon (8b96d185866cb5ab844875588a60b065) C:\WINDOWS\System32\irmon.dll 17:58:19.0109 1676 Irmon - ok 17:58:19.0125 1676 irsir (0501f0b9ab08425f8c0eacbdcc04aa32) C:\WINDOWS\system32\DRIVERS\irsir.sys 17:58:19.0187 1676 irsir - ok 17:58:19.0218 1676 isapnp (01a9e68528f4f34e5702123d27c67bd4) C:\WINDOWS\system32\DRIVERS\isapnp.sys 17:58:19.0328 1676 isapnp - ok 17:58:19.0421 1676 JavaQuickStarterService (0a5709543986843d37a92290b7838340) C:\Program Files\Java\jre6\bin\jqs.exe 17:58:19.0437 1676 JavaQuickStarterService - ok 17:58:19.0453 1676 Kbdclass (cc13db862f929ae33f64c3bedc01cd31) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 17:58:19.0578 1676 Kbdclass - ok 17:58:19.0593 1676 kbdhid (831be9197bdace6bdcac1bfdbe1c380f) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 17:58:19.0718 1676 kbdhid - ok 17:58:19.0765 1676 kmixer (d93cad07c5683db066b0b2d2d3790ead) C:\WINDOWS\system32\drivers\kmixer.sys 17:58:19.0921 1676 kmixer - ok 17:58:19.0937 1676 KSecDD (eb7ffe87fd367ea8fca0506f74a87fbb) C:\WINDOWS\system32\drivers\KSecDD.sys 17:58:20.0046 1676 KSecDD - ok 17:58:20.0078 1676 lanmanserver (83ec18ee52dbf7cce9520f848f4e6584) C:\WINDOWS\System32\srvsvc.dll 17:58:20.0203 1676 lanmanserver - ok 17:58:20.0234 1676 lanmanworkstation (ff68cd5b967cd210562c292cbd263555) C:\WINDOWS\System32\wkssvc.dll 17:58:20.0375 1676 lanmanworkstation - ok 17:58:20.0375 1676 lbrtfdc - ok 17:58:20.0421 1676 lirsgt (4127e8b6ddb4090e815c1f8852c277d3) C:\WINDOWS\system32\DRIVERS\lirsgt.sys 17:58:20.0421 1676 lirsgt - ok 17:58:20.0437 1676 LmHosts (94136b41f35666254de29006dccc30fc) C:\WINDOWS\System32\lmhsvc.dll 17:58:20.0562 1676 LmHosts - ok 17:58:20.0593 1676 Messenger (1d0ebf9edae8a61cbf56ed1ff8489fac) C:\WINDOWS\System32\msgsvc.dll 17:58:20.0703 1676 Messenger - ok 17:58:20.0765 1676 Microsoft Office Groove Audit Service (fafe367d032ed82e9332b4c741a20216) C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe 17:58:20.0781 1676 Microsoft Office Groove Audit Service - ok 17:58:20.0812 1676 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 17:58:20.0953 1676 mnmdd - ok 17:58:20.0968 1676 mnmsrvc (db082aafd0859e28744e6629b64e0a91) C:\WINDOWS\System32\mnmsrvc.exe 17:58:21.0093 1676 mnmsrvc - ok 17:58:21.0109 1676 Modem (15f33d12d604d0198ce5561f102cd9c5) C:\WINDOWS\system32\drivers\Modem.sys 17:58:21.0218 1676 Modem - ok 17:58:21.0234 1676 Mouclass (69c12b99ae8b6b99ec314e9b99833728) C:\WINDOWS\system32\DRIVERS\mouclass.sys 17:58:21.0343 1676 Mouclass - ok 17:58:21.0359 1676 mouhid (ecec1e6cd558ab80f944f31326e9d3b5) C:\WINDOWS\system32\DRIVERS\mouhid.sys 17:58:21.0484 1676 mouhid - ok 17:58:21.0500 1676 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys 17:58:21.0609 1676 MountMgr - ok 17:58:21.0625 1676 mraid35x - ok 17:58:21.0640 1676 MRxDAV (46edcc8f2db2f322c24f48785cb46366) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 17:58:21.0750 1676 MRxDAV - ok 17:58:21.0796 1676 MRxSmb (1fd607fc67f7f7c633c3da65bfc53d18) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 17:58:21.0921 1676 MRxSmb - ok 17:58:21.0953 1676 MSDTC (fb68f196b215782333fa1467cbafc8b0) C:\WINDOWS\System32\msdtc.exe 17:58:22.0062 1676 MSDTC - ok 17:58:22.0078 1676 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys 17:58:22.0187 1676 Msfs - ok 17:58:22.0203 1676 MSIServer - ok 17:58:22.0218 1676 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys 17:58:22.0343 1676 MSKSSRV - ok 17:58:22.0343 1676 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 17:58:22.0453 1676 MSPCLOCK - ok 17:58:22.0468 1676 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys 17:58:22.0578 1676 MSPQM - ok 17:58:22.0609 1676 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 17:58:22.0750 1676 mssmbios - ok 17:58:22.0781 1676 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys 17:58:22.0890 1676 Mup - ok 17:58:23.0093 1676 MySql (b90e7dd15d998ed0665d34a0c53193c0) c:\usr/MYSQL/bin/mysqld.exe 17:58:23.0093 1676 Suspicious file (Hidden): c:\usr/MYSQL/bin/mysqld.exe. md5: b90e7dd15d998ed0665d34a0c53193c0 17:58:23.0109 1676 MySql ( HiddenFile.Multi.Generic ) - warning 17:58:23.0109 1676 MySql - detected HiddenFile.Multi.Generic (1) 17:58:23.0218 1676 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys 17:58:23.0343 1676 NDIS - ok 17:58:23.0359 1676 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 17:58:23.0484 1676 NdisTapi - ok 17:58:23.0515 1676 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 17:58:23.0640 1676 Ndisuio - ok 17:58:23.0656 1676 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 17:58:23.0796 1676 NdisWan - ok 17:58:23.0812 1676 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys 17:58:23.0953 1676 NDProxy - ok 17:58:23.0984 1676 Net Driver HPZ12 (51c6d8bfbd4ea5b62a1ba7f4469250d3) C:\WINDOWS\system32\HPZinw12.dll 17:58:23.0984 1676 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 17:58:23.0984 1676 Net Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 17:58:24.0000 1676 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys 17:58:24.0125 1676 NetBIOS - ok 17:58:24.0140 1676 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys 17:58:24.0265 1676 NetBT - ok 17:58:24.0296 1676 NetDDE (8de3841527161abdfae5c44ab570f8e1) C:\WINDOWS\system32\netdde.exe 17:58:24.0421 1676 NetDDE - ok 17:58:24.0421 1676 NetDDEdsdm (8de3841527161abdfae5c44ab570f8e1) C:\WINDOWS\system32\netdde.exe 17:58:24.0546 1676 NetDDEdsdm - ok 17:58:24.0578 1676 Netlogon (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\system32\lsass.exe 17:58:24.0687 1676 Netlogon - ok 17:58:24.0734 1676 Netman (3e7b6583269bc118720d0020b03cc71e) C:\WINDOWS\System32\netman.dll 17:58:24.0859 1676 Netman - ok 17:58:24.0984 1676 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe 17:58:25.0000 1676 NetTcpPortSharing - ok 17:58:25.0031 1676 Nla (83387067b25e000e64b178a62e5dcd24) C:\WINDOWS\System32\mswsock.dll 17:58:25.0156 1676 Nla - ok 17:58:25.0187 1676 nm (60cf8c7192b3614f240838ddbaa4a245) C:\WINDOWS\system32\DRIVERS\NMnt.sys 17:58:25.0312 1676 nm - ok 17:58:25.0328 1676 NPF (6623e51595c0076755c29c00846c4eb2) C:\WINDOWS\system32\drivers\npf.sys 17:58:25.0343 1676 NPF - ok 17:58:25.0359 1676 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys 17:58:25.0468 1676 Npfs - ok 17:58:25.0500 1676 Ntfs (b78be402c3f63dd55521f73876951cdd) C:\WINDOWS\system32\drivers\Ntfs.sys 17:58:25.0656 1676 Ntfs - ok 17:58:25.0656 1676 NtLmSsp (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\System32\lsass.exe 17:58:25.0781 1676 NtLmSsp - ok 17:58:25.0828 1676 NtmsSvc (c8ce1566b0537c3f5f7ae1ca458a6697) C:\WINDOWS\system32\ntmssvc.dll 17:58:25.0968 1676 NtmsSvc - ok 17:58:26.0000 1676 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 17:58:26.0109 1676 Null - ok 17:58:26.0531 1676 nv (9f4384aa43548ddd438f7b7825d11699) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 17:58:26.0828 1676 nv - ok 17:58:26.0937 1676 nvata (b7fb72492b753930ec70a0f49d04f12f) C:\WINDOWS\system32\DRIVERS\nvata.sys 17:58:26.0953 1676 nvata - ok 17:58:27.0000 1676 NVENETFD (cc34564bca235ebad8b308d871efa2df) C:\WINDOWS\system32\DRIVERS\NVENETFD.sys 17:58:27.0031 1676 NVENETFD - ok 17:58:27.0046 1676 nvnetbus (46fdb8d07dd4fc81093b0acb243a525d) C:\WINDOWS\system32\DRIVERS\nvnetbus.sys 17:58:27.0078 1676 nvnetbus - ok 17:58:27.0093 1676 NVSvc (0c41c4acfe00d826db479c40c1d9edc8) C:\WINDOWS\system32\nvsvc32.exe 17:58:27.0125 1676 NVSvc - ok 17:58:27.0140 1676 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 17:58:27.0265 1676 NwlnkFlt - ok 17:58:27.0281 1676 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 17:58:27.0390 1676 NwlnkFwd - ok 17:58:27.0500 1676 odserv (84de1dd996b48b05ace31ad015fa108a) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE 17:58:27.0531 1676 odserv - ok 17:58:27.0562 1676 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE 17:58:27.0578 1676 ose - ok 17:58:27.0609 1676 Parport (2ff48d8fdc815a8492fb2bd81e6999c2) C:\WINDOWS\system32\DRIVERS\parport.sys 17:58:27.0734 1676 Parport - ok 17:58:27.0750 1676 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys 17:58:27.0875 1676 PartMgr - ok 17:58:27.0890 1676 ParVdm (453ec2c2a20a1382f564541918520eeb) C:\WINDOWS\system32\drivers\ParVdm.sys 17:58:28.0015 1676 ParVdm - ok 17:58:28.0015 1676 PCASp50 - ok 17:58:28.0046 1676 PCI (5fd05c92ec56f696eaa50b68cef1b84a) C:\WINDOWS\system32\DRIVERS\pci.sys 17:58:28.0171 1676 PCI - ok 17:58:28.0171 1676 PCIDump - ok 17:58:28.0187 1676 PCIIde (548cf2d6369eae441a4c6baa75bc4f0a) C:\WINDOWS\system32\DRIVERS\pciide.sys 17:58:28.0296 1676 PCIIde - ok 17:58:28.0312 1676 PCLEPCI (1bebe7de8508a02650cdce45c664c2a2) C:\WINDOWS\system32\drivers\pclepci.sys 17:58:28.0328 1676 PCLEPCI ( UnsignedFile.Multi.Generic ) - warning 17:58:28.0328 1676 PCLEPCI - detected UnsignedFile.Multi.Generic (1) 17:58:28.0359 1676 Pcmcia (2849812217ecec059cb45f80eb6e52d4) C:\WINDOWS\system32\drivers\Pcmcia.sys 17:58:28.0484 1676 Pcmcia - ok 17:58:28.0484 1676 PDCOMP - ok 17:58:28.0500 1676 PDFRAME - ok 17:58:28.0500 1676 PDRELI - ok 17:58:28.0515 1676 PDRFRAME - ok 17:58:28.0515 1676 perc2 - ok 17:58:28.0515 1676 perc2hib - ok 17:58:28.0562 1676 PlugPlay (3da8d964d2cc12ef8e8c342471a37917) C:\WINDOWS\system32\services.exe 17:58:28.0671 1676 PlugPlay - ok 17:58:28.0703 1676 Pml Driver HPZ12 (79834aa2fbf9fe81eebb229024f6f7fc) C:\WINDOWS\system32\HPZipm12.dll 17:58:28.0718 1676 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - warning 17:58:28.0718 1676 Pml Driver HPZ12 - detected UnsignedFile.Multi.Generic (1) 17:58:28.0750 1676 PolicyAgent (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\system32\lsass.exe 17:58:28.0859 1676 PolicyAgent - ok 17:58:28.0890 1676 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys 17:58:29.0000 1676 PptpMiniport - ok 17:58:29.0031 1676 Processor (0914733fb2fc58f69cda0e929bf2df22) C:\WINDOWS\system32\DRIVERS\processr.sys 17:58:29.0156 1676 Processor - ok 17:58:29.0156 1676 ProtectedStorage (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\system32\lsass.exe 17:58:29.0265 1676 ProtectedStorage - ok 17:58:29.0296 1676 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys 17:58:29.0421 1676 PSched - ok 17:58:29.0453 1676 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 17:58:29.0578 1676 Ptilink - ok 17:58:29.0609 1676 PxHelp20 (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys 17:58:29.0625 1676 PxHelp20 - ok 17:58:29.0625 1676 ql1080 - ok 17:58:29.0625 1676 Ql10wnt - ok 17:58:29.0640 1676 ql12160 - ok 17:58:29.0656 1676 ql1240 - ok 17:58:29.0656 1676 ql1280 - ok 17:58:29.0671 1676 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 17:58:29.0796 1676 RasAcd - ok 17:58:29.0812 1676 RasAuto (5ed5af86ee8cc13f6392b37a81af5d5b) C:\WINDOWS\System32\rasauto.dll 17:58:29.0937 1676 RasAuto - ok 17:58:29.0937 1676 Rasirda (0207d26ddf796a193ccd9f83047bb5fc) C:\WINDOWS\system32\DRIVERS\rasirda.sys 17:58:30.0000 1676 Rasirda - ok 17:58:30.0015 1676 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 17:58:30.0125 1676 Rasl2tp - ok 17:58:30.0171 1676 RasMan (ff59ec9427760470de7ffca75738ecb8) C:\WINDOWS\System32\rasmans.dll 17:58:30.0296 1676 RasMan - ok 17:58:30.0312 1676 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 17:58:30.0421 1676 RasPppoe - ok 17:58:30.0437 1676 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 17:58:30.0562 1676 Raspti - ok 17:58:30.0578 1676 Rdbss (29d66245adba878fff574cd66abd2884) C:\WINDOWS\system32\DRIVERS\rdbss.sys 17:58:30.0703 1676 Rdbss - ok 17:58:30.0734 1676 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 17:58:30.0859 1676 RDPCDD - ok 17:58:30.0890 1676 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 17:58:31.0031 1676 rdpdr - ok 17:58:31.0062 1676 RDPWD (d4f5643d7714ef499ae9527fdcd50894) C:\WINDOWS\system32\drivers\RDPWD.sys 17:58:31.0171 1676 RDPWD - ok 17:58:31.0187 1676 RDSessMgr (ee93399bc7cd84624ab7890dd7d8b296) C:\WINDOWS\system32\sessmgr.exe 17:58:31.0328 1676 RDSessMgr - ok 17:58:31.0343 1676 redbook (bddcece9acdad26841c987d10376f6f7) C:\WINDOWS\system32\DRIVERS\redbook.sys 17:58:31.0468 1676 redbook - ok 17:58:31.0484 1676 RemoteAccess (6a9cb0c18b634b187b8b5a32b0fc2773) C:\WINDOWS\System32\mprdim.dll 17:58:31.0593 1676 RemoteAccess - ok 17:58:31.0625 1676 RemoteRegistry (a19bfed61736127db5b8b815afb35190) C:\WINDOWS\system32\regsvc.dll 17:58:31.0765 1676 RemoteRegistry - ok 17:58:31.0843 1676 RichVideo (1d4061cc5bc8e823d05e1e6e6c1224e3) C:\Program Files\CyberLink\Shared Files\RichVideo.exe 17:58:31.0859 1676 RichVideo - ok 17:58:31.0890 1676 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys 17:58:32.0015 1676 ROOTMODEM - ok 17:58:32.0031 1676 rpcapd (e51a8d02b4bd33eba1f7a5b76c3766ed) C:\Program Files\WinPcap\rpcapd.exe 17:58:32.0046 1676 rpcapd - ok 17:58:32.0062 1676 RpcLocator (6be739f700580f23740efa1d1b57c0a5) C:\WINDOWS\System32\locator.exe 17:58:32.0187 1676 RpcLocator - ok 17:58:32.0234 1676 RpcSs (346e5b19fc986fe7185a0c2c43593722) C:\WINDOWS\System32\rpcss.dll 17:58:32.0359 1676 RpcSs - ok 17:58:32.0390 1676 RSVP (9acee3313020a01235336c2a483afd1a) C:\WINDOWS\System32\rsvp.exe 17:58:32.0500 1676 RSVP - ok 17:58:32.0546 1676 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS 17:58:32.0656 1676 rtl8139 - ok 17:58:32.0687 1676 s116bus (815445f4676cc96bc9aeec303c727e19) C:\WINDOWS\system32\DRIVERS\s116bus.sys 17:58:32.0703 1676 s116bus - ok 17:58:32.0718 1676 s116mdfl (333d1e0743e6de1779c3c418ac601c3a) C:\WINDOWS\system32\DRIVERS\s116mdfl.sys 17:58:32.0734 1676 s116mdfl - ok 17:58:32.0750 1676 s116mdm (50d6e5b021e9ec7553ab8a3553cc1b6b) C:\WINDOWS\system32\DRIVERS\s116mdm.sys 17:58:32.0765 1676 s116mdm - ok 17:58:32.0796 1676 s116mgmt (1589aa53e43f8d193a7d4d580d3ffa95) C:\WINDOWS\system32\DRIVERS\s116mgmt.sys 17:58:32.0812 1676 s116mgmt - ok 17:58:32.0843 1676 s116nd5 (306f85733671fe507470f0273025e768) C:\WINDOWS\system32\DRIVERS\s116nd5.sys 17:58:32.0859 1676 s116nd5 - ok 17:58:32.0875 1676 s116obex (ec32601f04a5a5de89315d0f55e73d66) C:\WINDOWS\system32\DRIVERS\s116obex.sys 17:58:32.0875 1676 s116obex - ok 17:58:32.0906 1676 s116unic (32e3ecb4b2b5887426eaf241a8149cde) C:\WINDOWS\system32\DRIVERS\s116unic.sys 17:58:32.0921 1676 s116unic - ok 17:58:32.0953 1676 s3017bus (aa786ad3a2684d39630744787b00e6f4) C:\WINDOWS\system32\DRIVERS\s3017bus.sys 17:58:32.0953 1676 s3017bus - ok 17:58:32.0968 1676 s3017mdfl (cba4ca5bce44084e98ce420fd6692d3a) C:\WINDOWS\system32\DRIVERS\s3017mdfl.sys 17:58:32.0984 1676 s3017mdfl - ok 17:58:33.0000 1676 s3017mdm (68036eff647970d6c0399789c8707cad) C:\WINDOWS\system32\DRIVERS\s3017mdm.sys 17:58:33.0015 1676 s3017mdm - ok 17:58:33.0031 1676 s3017mgmt (3672e7f9349bd98fd3f5ac33e7b2b1a6) C:\WINDOWS\system32\DRIVERS\s3017mgmt.sys 17:58:33.0031 1676 s3017mgmt - ok 17:58:33.0062 1676 s3017nd5 (b1133b37eb184aef81d56b4302dbae9c) C:\WINDOWS\system32\DRIVERS\s3017nd5.sys 17:58:33.0062 1676 s3017nd5 - ok 17:58:33.0093 1676 s3017obex (d81b1d504aa1426622e7ec09f25130a9) C:\WINDOWS\system32\DRIVERS\s3017obex.sys 17:58:33.0093 1676 s3017obex - ok 17:58:33.0140 1676 s3017unic (7b95c53ea8bb585013767eef2875c0a0) C:\WINDOWS\system32\DRIVERS\s3017unic.sys 17:58:33.0140 1676 s3017unic - ok 17:58:33.0171 1676 s816bus (8c156e6b568aa927eb5deadeb870bdd2) C:\WINDOWS\system32\DRIVERS\s816bus.sys 17:58:33.0171 1676 s816bus - ok 17:58:33.0187 1676 s816mdfl (d4ed429953a2b8b09c702805813a26c8) C:\WINDOWS\system32\DRIVERS\s816mdfl.sys 17:58:33.0203 1676 s816mdfl - ok 17:58:33.0218 1676 s816mdm (94306f371a6ff8b690bea81157111b3b) C:\WINDOWS\system32\DRIVERS\s816mdm.sys 17:58:33.0218 1676 s816mdm - ok 17:58:33.0250 1676 SamSs (f485fefc8cc4fd29243d800be5d275d1) C:\WINDOWS\system32\lsass.exe 17:58:33.0359 1676 SamSs - ok 17:58:33.0390 1676 SCardSvr (8df7262f72c3ab75486d21ba78b9f749) C:\WINDOWS\System32\SCardSvr.exe 17:58:33.0515 1676 SCardSvr - ok 17:58:33.0546 1676 Schedule (e5f1c9ead4c6617acd40ca90882cc7d4) C:\WINDOWS\system32\schedsvc.dll 17:58:33.0671 1676 Schedule - ok 17:58:33.0718 1676 se45bus (531ebc57db331c8500c042d9f8a6aef2) C:\WINDOWS\system32\DRIVERS\se45bus.sys 17:58:33.0750 1676 se45bus ( UnsignedFile.Multi.Generic ) - warning 17:58:33.0750 1676 se45bus - detected UnsignedFile.Multi.Generic (1) 17:58:33.0765 1676 se45mdfl (148e7e813681d3a0a05f09826080cc2b) C:\WINDOWS\system32\DRIVERS\se45mdfl.sys 17:58:33.0781 1676 se45mdfl ( UnsignedFile.Multi.Generic ) - warning 17:58:33.0781 1676 se45mdfl - detected UnsignedFile.Multi.Generic (1) 17:58:33.0812 1676 se45mdm (b4ce022564d0d3fd7b0e5459aa12aa72) C:\WINDOWS\system32\DRIVERS\se45mdm.sys 17:58:33.0828 1676 se45mdm ( UnsignedFile.Multi.Generic ) - warning 17:58:33.0828 1676 se45mdm - detected UnsignedFile.Multi.Generic (1) 17:58:33.0859 1676 se45mgmt (6d04ea9c049ebd78d64ade447de3f7eb) C:\WINDOWS\system32\DRIVERS\se45mgmt.sys 17:58:33.0859 1676 se45mgmt ( UnsignedFile.Multi.Generic ) - warning 17:58:33.0859 1676 se45mgmt - detected UnsignedFile.Multi.Generic (1) 17:58:33.0890 1676 se45nd5 (fdc74beaa13a801fac574bc7af1450c4) C:\WINDOWS\system32\DRIVERS\se45nd5.sys 17:58:33.0890 1676 se45nd5 ( UnsignedFile.Multi.Generic ) - warning 17:58:33.0890 1676 se45nd5 - detected UnsignedFile.Multi.Generic (1) 17:58:33.0906 1676 se45obex (5e003693822460d37516d9a262de9e11) C:\WINDOWS\system32\DRIVERS\se45obex.sys 17:58:33.0921 1676 se45obex ( UnsignedFile.Multi.Generic ) - warning 17:58:33.0921 1676 se45obex - detected UnsignedFile.Multi.Generic (1) 17:58:33.0953 1676 se45unic (fc7021adb632200da591a55a35a78acc) C:\WINDOWS\system32\DRIVERS\se45unic.sys 17:58:33.0968 1676 se45unic ( UnsignedFile.Multi.Generic ) - warning 17:58:33.0968 1676 se45unic - detected UnsignedFile.Multi.Generic (1) 17:58:34.0015 1676 se46bus (d3279a8f45724495e9379328f09b979a) C:\WINDOWS\system32\DRIVERS\se46bus.sys 17:58:34.0015 1676 se46bus ( UnsignedFile.Multi.Generic ) - warning 17:58:34.0015 1676 se46bus - detected UnsignedFile.Multi.Generic (1) 17:58:34.0031 1676 se46mdfl (0ab37b65bf21cd829428cf821f654941) C:\WINDOWS\system32\DRIVERS\se46mdfl.sys 17:58:34.0046 1676 se46mdfl ( UnsignedFile.Multi.Generic ) - warning 17:58:34.0046 1676 se46mdfl - detected UnsignedFile.Multi.Generic (1) 17:58:34.0062 1676 se46mdm (b722c5c0a249dc75304800d2c1a1297e) C:\WINDOWS\system32\DRIVERS\se46mdm.sys 17:58:34.0062 1676 se46mdm ( UnsignedFile.Multi.Generic ) - warning 17:58:34.0062 1676 se46mdm - detected UnsignedFile.Multi.Generic (1) 17:58:34.0109 1676 se46mgmt (816ee5a445a8448dd60652bbc3512ee3) C:\WINDOWS\system32\DRIVERS\se46mgmt.sys 17:58:34.0125 1676 se46mgmt ( UnsignedFile.Multi.Generic ) - warning 17:58:34.0125 1676 se46mgmt - detected UnsignedFile.Multi.Generic (1) 17:58:34.0140 1676 se46nd5 (0fb6918b49357c339336937e704f9a15) C:\WINDOWS\system32\DRIVERS\se46nd5.sys 17:58:34.0140 1676 se46nd5 ( UnsignedFile.Multi.Generic ) - warning 17:58:34.0140 1676 se46nd5 - detected UnsignedFile.Multi.Generic (1) 17:58:34.0171 1676 se46obex (da3f1b71767ad9636f72988be9eb807d) C:\WINDOWS\system32\DRIVERS\se46obex.sys 17:58:34.0187 1676 se46obex ( UnsignedFile.Multi.Generic ) - warning 17:58:34.0187 1676 se46obex - detected UnsignedFile.Multi.Generic (1) 17:58:34.0203 1676 se46unic (509edaa80a34e5c82e443219160d1b34) C:\WINDOWS\system32\DRIVERS\se46unic.sys 17:58:34.0218 1676 se46unic ( UnsignedFile.Multi.Generic ) - warning 17:58:34.0218 1676 se46unic - detected UnsignedFile.Multi.Generic (1) 17:58:34.0234 1676 Secdrv (d26e26ea516450af9d072635c60387f4) C:\WINDOWS\system32\DRIVERS\secdrv.sys 17:58:34.0296 1676 Secdrv - ok 17:58:34.0312 1676 seclogon (60255ac385a08aaf4897ab4a42483500) C:\WINDOWS\System32\seclogon.dll 17:58:34.0421 1676 seclogon - ok 17:58:34.0453 1676 SENS (1398df553e701c7948188a7d4e347a18) C:\WINDOWS\system32\sens.dll 17:58:34.0593 1676 SENS - ok 17:58:34.0609 1676 Ser2pl - ok 17:58:34.0640 1676 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys 17:58:34.0765 1676 serenum - ok 17:58:34.0796 1676 Serial (859bc6f8c3d58cfda9181e9926c7ddb9) C:\WINDOWS\system32\DRIVERS\serial.sys 17:58:34.0906 1676 Serial - ok 17:58:34.0937 1676 sfdrv01 (b659e4af7534e3516ddc0b820db8f910) C:\WINDOWS\system32\drivers\sfdrv01.sys 17:58:34.0953 1676 sfdrv01 ( UnsignedFile.Multi.Generic ) - warning 17:58:34.0953 1676 sfdrv01 - detected UnsignedFile.Multi.Generic (1) 17:58:34.0984 1676 sfhlp02 (64b9ab76f1b16eb059cb6cdd906c067a) C:\WINDOWS\system32\drivers\sfhlp02.sys 17:58:34.0984 1676 sfhlp02 ( UnsignedFile.Multi.Generic ) - warning 17:58:34.0984 1676 sfhlp02 - detected UnsignedFile.Multi.Generic (1) 17:58:35.0015 1676 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys 17:58:35.0140 1676 Sfloppy - ok 17:58:35.0156 1676 sfsync02 (3fcb3fe43737b0ef6fe759fc0b886a69) C:\WINDOWS\system32\drivers\sfsync02.sys 17:58:35.0171 1676 sfsync02 ( UnsignedFile.Multi.Generic ) - warning 17:58:35.0171 1676 sfsync02 - detected UnsignedFile.Multi.Generic (1) 17:58:35.0218 1676 SharedAccess (ddc87adf808d192a5212cc8a1e7f8e87) C:\WINDOWS\System32\ipnathlp.dll 17:58:35.0375 1676 SharedAccess - ok 17:58:35.0390 1676 ShellHWDetection (7c8e934687c496edc69fdbbd2c277e63) C:\WINDOWS\System32\shsvcs.dll 17:58:35.0515 1676 ShellHWDetection - ok 17:58:35.0531 1676 Simbad - ok 17:58:35.0546 1676 Sparrow - ok 17:58:35.0562 1676 splitter (8e186b8f23295d1e42c573b82b80d548) C:\WINDOWS\system32\drivers\splitter.sys 17:58:35.0671 1676 splitter - ok 17:58:35.0703 1676 Spooler (bebe8a85954ff460374fd5a0cd21e19b) C:\WINDOWS\system32\spoolsv.exe 17:58:35.0828 1676 Spooler - ok 17:58:35.0890 1676 sptd (ab5c8f6e63674dbad9c1e449e8fd77ce) C:\WINDOWS\System32\Drivers\sptd.sys 17:58:35.0921 1676 sptd - ok 17:58:35.0953 1676 sr (6145ca23bccda679a772ec0af42d6eb5) C:\WINDOWS\system32\DRIVERS\sr.sys 17:58:36.0015 1676 sr - ok 17:58:36.0062 1676 srservice (f309d9894fca821e3c2f557a8032d47a) C:\WINDOWS\System32\srsvc.dll 17:58:36.0140 1676 srservice - ok 17:58:36.0171 1676 Srv (20b7e396720353e4117d64d9dcb926ca) C:\WINDOWS\system32\DRIVERS\srv.sys 17:58:36.0328 1676 Srv - ok 17:58:36.0359 1676 SSDPSRV (bb754c4be0b18f0faf01a7ebde7025c4) C:\WINDOWS\System32\ssdpsrv.dll 17:58:36.0421 1676 SSDPSRV - ok 17:58:36.0453 1676 ssudmdm (8f299012ef58246f1c98de7b7e48dbf0) C:\WINDOWS\system32\DRIVERS\ssudmdm.sys 17:58:36.0468 1676 ssudmdm - ok 17:58:36.0562 1676 StarWindServiceAE (e5c796b621f6fba8616511063d7f0ffe) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe 17:58:36.0578 1676 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - warning 17:58:36.0578 1676 StarWindServiceAE - detected UnsignedFile.Multi.Generic (1) 17:58:36.0640 1676 sterownik - ok 17:58:36.0687 1676 stisvc (c6718154a50fe6c55e382cdbdedce7a7) C:\WINDOWS\system32\wiaservc.dll 17:58:36.0812 1676 stisvc - ok 17:58:36.0843 1676 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys 17:58:36.0984 1676 swenum - ok 17:58:37.0015 1676 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys 17:58:37.0125 1676 swmidi - ok 17:58:37.0140 1676 SwPrv - ok 17:58:37.0156 1676 symc810 - ok 17:58:37.0156 1676 symc8xx - ok 17:58:37.0171 1676 sym_hi - ok 17:58:37.0171 1676 sym_u3 - ok 17:58:37.0234 1676 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys 17:58:37.0468 1676 sysaudio - ok 17:58:37.0500 1676 SysmonLog (5893b3b5b966233cae426b2fedc34ddf) C:\WINDOWS\system32\smlogsvc.exe 17:58:37.0609 1676 SysmonLog - ok 17:58:37.0640 1676 TapiSrv (0a695b77564d8e9333e846b526f95ab2) C:\WINDOWS\System32\tapisrv.dll 17:58:37.0750 1676 TapiSrv - ok 17:58:37.0781 1676 TBPanel (04e1c782cf14b7282ebc633b0fd3ed16) C:\WINDOWS\system32\drivers\TBPanel.sys 17:58:37.0796 1676 TBPanel - ok 17:58:37.0828 1676 Tcpip (bb3249f81ac040a2505245e1c2bd82ab) C:\WINDOWS\system32\DRIVERS\tcpip.sys 17:58:37.0843 1676 Tcpip ( UnsignedFile.Multi.Generic ) - warning 17:58:37.0843 1676 Tcpip - detected UnsignedFile.Multi.Generic (1) 17:58:37.0875 1676 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys 17:58:38.0000 1676 TDPIPE - ok 17:58:38.0015 1676 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys 17:58:38.0125 1676 TDTCP - ok 17:58:38.0140 1676 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys 17:58:38.0250 1676 TermDD - ok 17:58:38.0281 1676 TermService (2c28157229925280916b3041ccc5fe4b) C:\WINDOWS\System32\termsrv.dll 17:58:38.0406 1676 TermService - ok 17:58:38.0437 1676 Themes (7c8e934687c496edc69fdbbd2c277e63) C:\WINDOWS\System32\shsvcs.dll 17:58:38.0562 1676 Themes - ok 17:58:38.0593 1676 TlntSvr (cac717418ccdf09110f406108017bfa6) C:\WINDOWS\System32\tlntsvr.exe 17:58:38.0656 1676 TlntSvr - ok 17:58:38.0656 1676 TosIde - ok 17:58:38.0687 1676 TrkWks (facbc230aa93401d2fe88976e7cb7369) C:\WINDOWS\system32\trkwks.dll 17:58:38.0796 1676 TrkWks - ok 17:58:38.0828 1676 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys 17:58:38.0953 1676 Udfs - ok 17:58:38.0953 1676 ultra - ok 17:58:39.0000 1676 Update (aff2e5045961bbc0a602bb6f95eb1345) C:\WINDOWS\system32\DRIVERS\update.sys 17:58:39.0109 1676 Update - ok 17:58:39.0125 1676 upnphost (387d2a06c8e7cccea8e9a350c8fe6781) C:\WINDOWS\System32\upnphost.dll 17:58:39.0187 1676 upnphost - ok 17:58:39.0218 1676 UPS (576a2c38cf3904f2ca1107f922288435) C:\WINDOWS\System32\ups.exe 17:58:39.0328 1676 UPS - ok 17:58:39.0359 1676 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 17:58:39.0468 1676 usbccgp - ok 17:58:39.0500 1676 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys 17:58:39.0671 1676 usbehci - ok 17:58:39.0687 1676 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys 17:58:39.0828 1676 usbhub - ok 17:58:39.0843 1676 usbohci (bdfe799a8531bad8a5a985821fe78760) C:\WINDOWS\system32\DRIVERS\usbohci.sys 17:58:39.0953 1676 usbohci - ok 17:58:39.0984 1676 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys 17:58:40.0125 1676 usbprint - ok 17:58:40.0156 1676 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys 17:58:40.0265 1676 usbscan - ok 17:58:40.0281 1676 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 17:58:40.0406 1676 USBSTOR - ok 17:58:40.0421 1676 UTSCSI (8afffda081cff3057391fedbbb483601) C:\WINDOWS\system32\UTSCSI.EXE 17:58:40.0437 1676 UTSCSI ( UnsignedFile.Multi.Generic ) - warning 17:58:40.0437 1676 UTSCSI - detected UnsignedFile.Multi.Generic (1) 17:58:40.0453 1676 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys 17:58:40.0578 1676 VgaSave - ok 17:58:40.0593 1676 ViaIde - ok 17:58:40.0609 1676 VolSnap (ecd173739b8ec10a814cc18653df5a36) C:\WINDOWS\system32\drivers\VolSnap.sys 17:58:40.0718 1676 VolSnap - ok 17:58:40.0750 1676 VSS (fec1e19b91972105044960b23c442949) C:\WINDOWS\System32\vssvc.exe 17:58:40.0828 1676 VSS - ok 17:58:40.0859 1676 W32Time (000a0d516a2e20441e77aea44e46b19b) C:\WINDOWS\system32\w32time.dll 17:58:40.0984 1676 W32Time - ok 17:58:41.0015 1676 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys 17:58:41.0125 1676 Wanarp - ok 17:58:41.0156 1676 wceusbsh (46a247f6617526afe38b6f12f5512120) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys 17:58:41.0171 1676 wceusbsh - ok 17:58:41.0218 1676 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys 17:58:41.0234 1676 Wdf01000 - ok 17:58:41.0250 1676 WDICA - ok 17:58:41.0265 1676 wdmaud (2797f33ebf50466020c430ee4f037933) C:\WINDOWS\system32\drivers\wdmaud.sys 17:58:41.0390 1676 wdmaud - ok 17:58:41.0421 1676 WebClient (f796befe565c59a30a4c61b640557276) C:\WINDOWS\System32\webclnt.dll 17:58:41.0546 1676 WebClient - ok 17:58:41.0578 1676 winmgmt (482435b2a2de8e06c83c3b1eb3237c2c) C:\WINDOWS\system32\wbem\WMIsvc.dll 17:58:41.0687 1676 winmgmt - ok 17:58:41.0734 1676 WmdmPmSN (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll 17:58:41.0765 1676 WmdmPmSN - ok 17:58:41.0859 1676 Wmi (5822b8baf16f7cae6b56e839d65a8bfb) C:\WINDOWS\System32\advapi32.dll 17:58:41.0984 1676 Wmi - ok 17:58:42.0015 1676 WmiApSrv (45e43704611d7c2202a180ff87e63550) C:\WINDOWS\System32\wbem\wmiapsrv.exe 17:58:42.0125 1676 WmiApSrv - ok 17:58:42.0234 1676 WMPNetworkSvc (f74e3d9a7fa9556c3bbb14d4e5e63d3b) C:\Program Files\Windows Media Player\WMPNetwk.exe 17:58:42.0281 1676 WMPNetworkSvc - ok 17:58:42.0312 1676 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys 17:58:42.0343 1676 WpdUsb - ok 17:58:42.0375 1676 wscsvc (390d0951271908c46eecf89893876424) C:\WINDOWS\system32\wscsvc.dll 17:58:42.0500 1676 wscsvc - ok 17:58:42.0515 1676 wuauserv (40c600488ff127953aa2f1835e5fd433) C:\WINDOWS\System32\wuauserv.dll 17:58:42.0656 1676 wuauserv - ok 17:58:42.0671 1676 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 17:58:42.0687 1676 WudfPf - ok 17:58:42.0718 1676 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys 17:58:42.0718 1676 WudfRd - ok 17:58:42.0750 1676 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll 17:58:42.0781 1676 WudfSvc - ok 17:58:42.0812 1676 WZCSVC (98a8014dbe72349f73462262cf493574) C:\WINDOWS\System32\wzcsvc.dll 17:58:42.0968 1676 WZCSVC - ok 17:58:43.0000 1676 xmlprov (e3c9ef5bcc9eb171bd81051cd19bded7) C:\WINDOWS\System32\xmlprov.dll 17:58:43.0109 1676 xmlprov - ok 17:58:43.0203 1676 {95808DC4-FA4A-4c74-92FE-5B863F82066B} (8098180b3f6c430a4e60333bc036f936) C:\Program Files\CyberLink\PowerDVD\000.fcl 17:58:43.0203 1676 {95808DC4-FA4A-4c74-92FE-5B863F82066B} - ok 17:58:43.0234 1676 MBR (0x1B8) (32052574bf9f325ae309abc7bfd04460) \Device\Harddisk0\DR0 17:58:43.0765 1676 \Device\Harddisk0\DR0 - ok 17:58:43.0765 1676 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1 17:58:43.0796 1676 \Device\Harddisk1\DR1 - ok 17:58:43.0796 1676 Boot (0x1200) (c1ff39874adafe511f7401e17ac68adc) \Device\Harddisk0\DR0\Partition0 17:58:43.0796 1676 \Device\Harddisk0\DR0\Partition0 - ok 17:58:43.0828 1676 Boot (0x1200) (742646a7400afd9607d76b740e764c81) \Device\Harddisk0\DR0\Partition1 17:58:43.0828 1676 \Device\Harddisk0\DR0\Partition1 - ok 17:58:43.0828 1676 Boot (0x1200) (4ac8e70bd2348331f216f6490778cfd4) \Device\Harddisk1\DR1\Partition0 17:58:43.0828 1676 \Device\Harddisk1\DR1\Partition0 - ok 17:58:43.0828 1676 Boot (0x1200) (5ce5f86136b90eea386239c1de30f29b) \Device\Harddisk1\DR1\Partition1 17:58:43.0843 1676 \Device\Harddisk1\DR1\Partition1 - ok 17:58:43.0843 1676 ============================================================ 17:58:43.0843 1676 Scan finished 17:58:43.0843 1676 ============================================================ 17:58:43.0843 1984 Detected object count: 39 17:58:43.0843 1984 Actual detected object count: 39 18:00:05.0062 1984 C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe - copied to quarantine 18:00:05.0062 1984 HKLM\SYSTEM\ControlSet001\services\Adobe LM Service - will be deleted on reboot 18:00:05.0062 1984 HKLM\SYSTEM\ControlSet002\services\Adobe LM Service - will be deleted on reboot 18:00:05.0062 1984 HKLM\SYSTEM\ControlSet003\services\Adobe LM Service - will be deleted on reboot 18:00:05.0062 1984 C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe - will be deleted on reboot 18:00:05.0062 1984 Adobe LM Service ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0125 1984 C:\WINDOWS\system32\DRIVERS\alcan5wn.sys - copied to quarantine 18:00:05.0140 1984 HKLM\SYSTEM\ControlSet001\services\alcan5wn - will be deleted on reboot 18:00:05.0140 1984 HKLM\SYSTEM\ControlSet002\services\alcan5wn - will be deleted on reboot 18:00:05.0140 1984 HKLM\SYSTEM\ControlSet003\services\alcan5wn - will be deleted on reboot 18:00:05.0140 1984 C:\WINDOWS\system32\DRIVERS\alcan5wn.sys - will be deleted on reboot 18:00:05.0140 1984 alcan5wn ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0187 1984 C:\WINDOWS\system32\DRIVERS\alcaudsl.sys - copied to quarantine 18:00:05.0187 1984 HKLM\SYSTEM\ControlSet001\services\alcaudsl - will be deleted on reboot 18:00:05.0187 1984 HKLM\SYSTEM\ControlSet002\services\alcaudsl - will be deleted on reboot 18:00:05.0187 1984 HKLM\SYSTEM\ControlSet003\services\alcaudsl - will be deleted on reboot 18:00:05.0187 1984 C:\WINDOWS\system32\DRIVERS\alcaudsl.sys - will be deleted on reboot 18:00:05.0187 1984 alcaudsl ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0296 1984 C:\WINDOWS\system32\drivers\btaudio.sys - copied to quarantine 18:00:05.0328 1984 HKLM\SYSTEM\ControlSet001\services\btaudio - will be deleted on reboot 18:00:05.0328 1984 HKLM\SYSTEM\ControlSet002\services\btaudio - will be deleted on reboot 18:00:05.0328 1984 HKLM\SYSTEM\ControlSet003\services\btaudio - will be deleted on reboot 18:00:05.0328 1984 C:\WINDOWS\system32\drivers\btaudio.sys - will be deleted on reboot 18:00:05.0328 1984 btaudio ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0359 1984 C:\WINDOWS\system32\DRIVERS\btport.sys - copied to quarantine 18:00:05.0359 1984 HKLM\SYSTEM\ControlSet001\services\BTDriver - will be deleted on reboot 18:00:05.0359 1984 HKLM\SYSTEM\ControlSet002\services\BTDriver - will be deleted on reboot 18:00:05.0359 1984 HKLM\SYSTEM\ControlSet003\services\BTDriver - will be deleted on reboot 18:00:05.0359 1984 C:\WINDOWS\system32\DRIVERS\btport.sys - will be deleted on reboot 18:00:05.0359 1984 BTDriver ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0468 1984 C:\WINDOWS\system32\DRIVERS\btkrnl.sys - copied to quarantine 18:00:05.0468 1984 HKLM\SYSTEM\ControlSet001\services\BTKRNL - will be deleted on reboot 18:00:05.0468 1984 HKLM\SYSTEM\ControlSet002\services\BTKRNL - will be deleted on reboot 18:00:05.0484 1984 HKLM\SYSTEM\ControlSet003\services\BTKRNL - will be deleted on reboot 18:00:05.0484 1984 C:\WINDOWS\system32\DRIVERS\btkrnl.sys - will be deleted on reboot 18:00:05.0484 1984 BTKRNL ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0578 1984 C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe - copied to quarantine 18:00:05.0578 1984 HKLM\SYSTEM\ControlSet001\services\btwdins - will be deleted on reboot 18:00:05.0578 1984 HKLM\SYSTEM\ControlSet002\services\btwdins - will be deleted on reboot 18:00:05.0578 1984 HKLM\SYSTEM\ControlSet003\services\btwdins - will be deleted on reboot 18:00:05.0593 1984 C:\Program Files\WIDCOMM\Bluetooth Software\bin\btwdins.exe - will be deleted on reboot 18:00:05.0593 1984 btwdins ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0656 1984 C:\WINDOWS\system32\DRIVERS\btwhid.sys - copied to quarantine 18:00:05.0671 1984 HKLM\SYSTEM\ControlSet001\services\btwhid - will be deleted on reboot 18:00:05.0671 1984 HKLM\SYSTEM\ControlSet002\services\btwhid - will be deleted on reboot 18:00:05.0671 1984 HKLM\SYSTEM\ControlSet003\services\btwhid - will be deleted on reboot 18:00:05.0671 1984 C:\WINDOWS\system32\DRIVERS\btwhid.sys - will be deleted on reboot 18:00:05.0671 1984 btwhid ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0703 1984 C:\WINDOWS\system32\DRIVERS\btwmodem.sys - copied to quarantine 18:00:05.0703 1984 HKLM\SYSTEM\ControlSet001\services\btwmodem - will be deleted on reboot 18:00:05.0703 1984 HKLM\SYSTEM\ControlSet002\services\btwmodem - will be deleted on reboot 18:00:05.0703 1984 HKLM\SYSTEM\ControlSet003\services\btwmodem - will be deleted on reboot 18:00:05.0703 1984 C:\WINDOWS\system32\DRIVERS\btwmodem.sys - will be deleted on reboot 18:00:05.0703 1984 btwmodem ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0781 1984 C:\WINDOWS\system32\Drivers\btwusb.sys - copied to quarantine 18:00:05.0781 1984 HKLM\SYSTEM\ControlSet001\services\BTWUSB - will be deleted on reboot 18:00:05.0781 1984 HKLM\SYSTEM\ControlSet002\services\BTWUSB - will be deleted on reboot 18:00:05.0781 1984 HKLM\SYSTEM\ControlSet003\services\BTWUSB - will be deleted on reboot 18:00:05.0781 1984 C:\WINDOWS\system32\Drivers\btwusb.sys - will be deleted on reboot 18:00:05.0781 1984 BTWUSB ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0812 1984 C:\WINDOWS\system32\drivers\FileDisk.sys - copied to quarantine 18:00:05.0812 1984 HKLM\SYSTEM\ControlSet001\services\FileDisk - will be deleted on reboot 18:00:05.0812 1984 HKLM\SYSTEM\ControlSet002\services\FileDisk - will be deleted on reboot 18:00:05.0812 1984 HKLM\SYSTEM\ControlSet003\services\FileDisk - will be deleted on reboot 18:00:05.0812 1984 C:\WINDOWS\system32\drivers\FileDisk.sys - will be deleted on reboot 18:00:05.0812 1984 FileDisk ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0875 1984 C:\WINDOWS\system32\DRIVERS\hamachi.sys - copied to quarantine 18:00:05.0890 1984 HKLM\SYSTEM\ControlSet001\services\hamachi - will be deleted on reboot 18:00:05.0890 1984 HKLM\SYSTEM\ControlSet002\services\hamachi - will be deleted on reboot 18:00:05.0890 1984 HKLM\SYSTEM\ControlSet003\services\hamachi - will be deleted on reboot 18:00:05.0890 1984 C:\WINDOWS\system32\DRIVERS\hamachi.sys - will be deleted on reboot 18:00:05.0890 1984 hamachi ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:05.0984 1984 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - copied to quarantine 18:00:05.0984 1984 HKLM\SYSTEM\ControlSet001\services\hpqcxs08 - will be deleted on reboot 18:00:05.0984 1984 HKLM\SYSTEM\ControlSet002\services\hpqcxs08 - will be deleted on reboot 18:00:05.0984 1984 HKLM\SYSTEM\ControlSet003\services\hpqcxs08 - will be deleted on reboot 18:00:05.0984 1984 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll - will be deleted on reboot 18:00:05.0984 1984 hpqcxs08 ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0046 1984 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - copied to quarantine 18:00:06.0046 1984 HKLM\SYSTEM\ControlSet001\services\hpqddsvc - will be deleted on reboot 18:00:06.0046 1984 HKLM\SYSTEM\ControlSet002\services\hpqddsvc - will be deleted on reboot 18:00:06.0046 1984 HKLM\SYSTEM\ControlSet003\services\hpqddsvc - will be deleted on reboot 18:00:06.0062 1984 C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll - will be deleted on reboot 18:00:06.0062 1984 hpqddsvc ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0156 1984 C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe - copied to quarantine 18:00:06.0156 1984 HKLM\SYSTEM\ControlSet001\services\IDriverT - will be deleted on reboot 18:00:06.0156 1984 HKLM\SYSTEM\ControlSet002\services\IDriverT - will be deleted on reboot 18:00:06.0156 1984 HKLM\SYSTEM\ControlSet003\services\IDriverT - will be deleted on reboot 18:00:06.0156 1984 C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe - will be deleted on reboot 18:00:06.0156 1984 IDriverT ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0406 1984 c:\usr/MYSQL/bin/mysqld.exe - copied to quarantine 18:00:06.0406 1984 HKLM\SYSTEM\ControlSet001\services\MySql - will be deleted on reboot 18:00:06.0406 1984 HKLM\SYSTEM\ControlSet002\services\MySql - will be deleted on reboot 18:00:06.0406 1984 HKLM\SYSTEM\ControlSet003\services\MySql - will be deleted on reboot 18:00:06.0421 1984 c:\usr/MYSQL/bin/mysqld.exe - will be deleted on reboot 18:00:06.0421 1984 MySql ( HiddenFile.Multi.Generic ) - User select action: Delete 18:00:06.0562 1984 C:\WINDOWS\system32\HPZinw12.dll - copied to quarantine 18:00:06.0562 1984 HKLM\SYSTEM\ControlSet001\services\Net Driver HPZ12 - will be deleted on reboot 18:00:06.0562 1984 HKLM\SYSTEM\ControlSet002\services\Net Driver HPZ12 - will be deleted on reboot 18:00:06.0562 1984 HKLM\SYSTEM\ControlSet003\services\Net Driver HPZ12 - will be deleted on reboot 18:00:06.0562 1984 C:\WINDOWS\system32\HPZinw12.dll - will be deleted on reboot 18:00:06.0562 1984 Net Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0625 1984 C:\WINDOWS\system32\drivers\pclepci.sys - copied to quarantine 18:00:06.0625 1984 HKLM\SYSTEM\ControlSet001\services\PCLEPCI - will be deleted on reboot 18:00:06.0625 1984 HKLM\SYSTEM\ControlSet002\services\PCLEPCI - will be deleted on reboot 18:00:06.0625 1984 HKLM\SYSTEM\ControlSet003\services\PCLEPCI - will be deleted on reboot 18:00:06.0625 1984 C:\WINDOWS\system32\drivers\pclepci.sys - will be deleted on reboot 18:00:06.0625 1984 PCLEPCI ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0703 1984 C:\WINDOWS\system32\HPZipm12.dll - copied to quarantine 18:00:06.0703 1984 HKLM\SYSTEM\ControlSet001\services\Pml Driver HPZ12 - will be deleted on reboot 18:00:06.0703 1984 HKLM\SYSTEM\ControlSet002\services\Pml Driver HPZ12 - will be deleted on reboot 18:00:06.0703 1984 HKLM\SYSTEM\ControlSet003\services\Pml Driver HPZ12 - will be deleted on reboot 18:00:06.0703 1984 C:\WINDOWS\system32\HPZipm12.dll - will be deleted on reboot 18:00:06.0703 1984 Pml Driver HPZ12 ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0765 1984 C:\WINDOWS\system32\DRIVERS\se45bus.sys - copied to quarantine 18:00:06.0765 1984 HKLM\SYSTEM\ControlSet001\services\se45bus - will be deleted on reboot 18:00:06.0765 1984 HKLM\SYSTEM\ControlSet002\services\se45bus - will be deleted on reboot 18:00:06.0765 1984 HKLM\SYSTEM\ControlSet003\services\se45bus - will be deleted on reboot 18:00:06.0765 1984 C:\WINDOWS\system32\DRIVERS\se45bus.sys - will be deleted on reboot 18:00:06.0765 1984 se45bus ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0828 1984 C:\WINDOWS\system32\DRIVERS\se45mdfl.sys - copied to quarantine 18:00:06.0828 1984 HKLM\SYSTEM\ControlSet001\services\se45mdfl - will be deleted on reboot 18:00:06.0828 1984 HKLM\SYSTEM\ControlSet002\services\se45mdfl - will be deleted on reboot 18:00:06.0828 1984 HKLM\SYSTEM\ControlSet003\services\se45mdfl - will be deleted on reboot 18:00:06.0843 1984 C:\WINDOWS\system32\DRIVERS\se45mdfl.sys - will be deleted on reboot 18:00:06.0843 1984 se45mdfl ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0875 1984 C:\WINDOWS\system32\DRIVERS\se45mdm.sys - copied to quarantine 18:00:06.0890 1984 HKLM\SYSTEM\ControlSet001\services\se45mdm - will be deleted on reboot 18:00:06.0890 1984 HKLM\SYSTEM\ControlSet002\services\se45mdm - will be deleted on reboot 18:00:06.0890 1984 HKLM\SYSTEM\ControlSet003\services\se45mdm - will be deleted on reboot 18:00:06.0890 1984 C:\WINDOWS\system32\DRIVERS\se45mdm.sys - will be deleted on reboot 18:00:06.0890 1984 se45mdm ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0953 1984 C:\WINDOWS\system32\DRIVERS\se45mgmt.sys - copied to quarantine 18:00:06.0953 1984 HKLM\SYSTEM\ControlSet001\services\se45mgmt - will be deleted on reboot 18:00:06.0953 1984 HKLM\SYSTEM\ControlSet002\services\se45mgmt - will be deleted on reboot 18:00:06.0953 1984 HKLM\SYSTEM\ControlSet003\services\se45mgmt - will be deleted on reboot 18:00:06.0953 1984 C:\WINDOWS\system32\DRIVERS\se45mgmt.sys - will be deleted on reboot 18:00:06.0953 1984 se45mgmt ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:06.0984 1984 C:\WINDOWS\system32\DRIVERS\se45nd5.sys - copied to quarantine 18:00:06.0984 1984 HKLM\SYSTEM\ControlSet001\services\se45nd5 - will be deleted on reboot 18:00:06.0984 1984 HKLM\SYSTEM\ControlSet002\services\se45nd5 - will be deleted on reboot 18:00:06.0984 1984 HKLM\SYSTEM\ControlSet003\services\se45nd5 - will be deleted on reboot 18:00:07.0000 1984 C:\WINDOWS\system32\DRIVERS\se45nd5.sys - will be deleted on reboot 18:00:07.0000 1984 se45nd5 ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0062 1984 C:\WINDOWS\system32\DRIVERS\se45obex.sys - copied to quarantine 18:00:07.0062 1984 HKLM\SYSTEM\ControlSet001\services\se45obex - will be deleted on reboot 18:00:07.0062 1984 HKLM\SYSTEM\ControlSet002\services\se45obex - will be deleted on reboot 18:00:07.0062 1984 HKLM\SYSTEM\ControlSet003\services\se45obex - will be deleted on reboot 18:00:07.0062 1984 C:\WINDOWS\system32\DRIVERS\se45obex.sys - will be deleted on reboot 18:00:07.0062 1984 se45obex ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0109 1984 C:\WINDOWS\system32\DRIVERS\se45unic.sys - copied to quarantine 18:00:07.0109 1984 HKLM\SYSTEM\ControlSet001\services\se45unic - will be deleted on reboot 18:00:07.0109 1984 HKLM\SYSTEM\ControlSet002\services\se45unic - will be deleted on reboot 18:00:07.0109 1984 HKLM\SYSTEM\ControlSet003\services\se45unic - will be deleted on reboot 18:00:07.0109 1984 C:\WINDOWS\system32\DRIVERS\se45unic.sys - will be deleted on reboot 18:00:07.0109 1984 se45unic ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0218 1984 C:\WINDOWS\system32\DRIVERS\se46bus.sys - copied to quarantine 18:00:07.0218 1984 HKLM\SYSTEM\ControlSet001\services\se46bus - will be deleted on reboot 18:00:07.0218 1984 HKLM\SYSTEM\ControlSet002\services\se46bus - will be deleted on reboot 18:00:07.0218 1984 HKLM\SYSTEM\ControlSet003\services\se46bus - will be deleted on reboot 18:00:07.0218 1984 C:\WINDOWS\system32\DRIVERS\se46bus.sys - will be deleted on reboot 18:00:07.0218 1984 se46bus ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0250 1984 C:\WINDOWS\system32\DRIVERS\se46mdfl.sys - copied to quarantine 18:00:07.0250 1984 HKLM\SYSTEM\ControlSet001\services\se46mdfl - will be deleted on reboot 18:00:07.0250 1984 HKLM\SYSTEM\ControlSet002\services\se46mdfl - will be deleted on reboot 18:00:07.0250 1984 HKLM\SYSTEM\ControlSet003\services\se46mdfl - will be deleted on reboot 18:00:07.0265 1984 C:\WINDOWS\system32\DRIVERS\se46mdfl.sys - will be deleted on reboot 18:00:07.0265 1984 se46mdfl ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0328 1984 C:\WINDOWS\system32\DRIVERS\se46mdm.sys - copied to quarantine 18:00:07.0328 1984 HKLM\SYSTEM\ControlSet001\services\se46mdm - will be deleted on reboot 18:00:07.0328 1984 HKLM\SYSTEM\ControlSet002\services\se46mdm - will be deleted on reboot 18:00:07.0328 1984 HKLM\SYSTEM\ControlSet003\services\se46mdm - will be deleted on reboot 18:00:07.0343 1984 C:\WINDOWS\system32\DRIVERS\se46mdm.sys - will be deleted on reboot 18:00:07.0343 1984 se46mdm ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0359 1984 C:\WINDOWS\system32\DRIVERS\se46mgmt.sys - copied to quarantine 18:00:07.0359 1984 HKLM\SYSTEM\ControlSet001\services\se46mgmt - will be deleted on reboot 18:00:07.0359 1984 HKLM\SYSTEM\ControlSet002\services\se46mgmt - will be deleted on reboot 18:00:07.0359 1984 HKLM\SYSTEM\ControlSet003\services\se46mgmt - will be deleted on reboot 18:00:07.0375 1984 C:\WINDOWS\system32\DRIVERS\se46mgmt.sys - will be deleted on reboot 18:00:07.0375 1984 se46mgmt ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0437 1984 C:\WINDOWS\system32\DRIVERS\se46nd5.sys - copied to quarantine 18:00:07.0437 1984 HKLM\SYSTEM\ControlSet001\services\se46nd5 - will be deleted on reboot 18:00:07.0437 1984 HKLM\SYSTEM\ControlSet002\services\se46nd5 - will be deleted on reboot 18:00:07.0437 1984 HKLM\SYSTEM\ControlSet003\services\se46nd5 - will be deleted on reboot 18:00:07.0437 1984 C:\WINDOWS\system32\DRIVERS\se46nd5.sys - will be deleted on reboot 18:00:07.0453 1984 se46nd5 ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0468 1984 C:\WINDOWS\system32\DRIVERS\se46obex.sys - copied to quarantine 18:00:07.0468 1984 HKLM\SYSTEM\ControlSet001\services\se46obex - will be deleted on reboot 18:00:07.0468 1984 HKLM\SYSTEM\ControlSet002\services\se46obex - will be deleted on reboot 18:00:07.0468 1984 HKLM\SYSTEM\ControlSet003\services\se46obex - will be deleted on reboot 18:00:07.0484 1984 C:\WINDOWS\system32\DRIVERS\se46obex.sys - will be deleted on reboot 18:00:07.0484 1984 se46obex ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0531 1984 C:\WINDOWS\system32\DRIVERS\se46unic.sys - copied to quarantine 18:00:07.0546 1984 HKLM\SYSTEM\ControlSet001\services\se46unic - will be deleted on reboot 18:00:07.0546 1984 HKLM\SYSTEM\ControlSet002\services\se46unic - will be deleted on reboot 18:00:07.0546 1984 HKLM\SYSTEM\ControlSet003\services\se46unic - will be deleted on reboot 18:00:07.0546 1984 C:\WINDOWS\system32\DRIVERS\se46unic.sys - will be deleted on reboot 18:00:07.0546 1984 se46unic ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0593 1984 C:\WINDOWS\system32\drivers\sfdrv01.sys - copied to quarantine 18:00:07.0593 1984 HKLM\SYSTEM\ControlSet001\services\sfdrv01 - will be deleted on reboot 18:00:07.0593 1984 HKLM\SYSTEM\ControlSet002\services\sfdrv01 - will be deleted on reboot 18:00:07.0593 1984 HKLM\SYSTEM\ControlSet003\services\sfdrv01 - will be deleted on reboot 18:00:07.0593 1984 C:\WINDOWS\system32\drivers\sfdrv01.sys - will be deleted on reboot 18:00:07.0593 1984 sfdrv01 ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0656 1984 C:\WINDOWS\system32\drivers\sfhlp02.sys - copied to quarantine 18:00:07.0656 1984 HKLM\SYSTEM\ControlSet001\services\sfhlp02 - will be deleted on reboot 18:00:07.0671 1984 HKLM\SYSTEM\ControlSet002\services\sfhlp02 - will be deleted on reboot 18:00:07.0671 1984 HKLM\SYSTEM\ControlSet003\services\sfhlp02 - will be deleted on reboot 18:00:07.0671 1984 C:\WINDOWS\system32\drivers\sfhlp02.sys - will be deleted on reboot 18:00:07.0671 1984 sfhlp02 ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0703 1984 C:\WINDOWS\system32\drivers\sfsync02.sys - copied to quarantine 18:00:07.0703 1984 HKLM\SYSTEM\ControlSet001\services\sfsync02 - will be deleted on reboot 18:00:07.0703 1984 HKLM\SYSTEM\ControlSet002\services\sfsync02 - will be deleted on reboot 18:00:07.0703 1984 HKLM\SYSTEM\ControlSet003\services\sfsync02 - will be deleted on reboot 18:00:07.0718 1984 C:\WINDOWS\system32\drivers\sfsync02.sys - will be deleted on reboot 18:00:07.0718 1984 sfsync02 ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:07.0921 1984 C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe - copied to quarantine 18:00:07.0921 1984 HKLM\SYSTEM\ControlSet001\services\StarWindServiceAE - will be deleted on reboot 18:00:07.0921 1984 HKLM\SYSTEM\ControlSet002\services\StarWindServiceAE - will be deleted on reboot 18:00:07.0921 1984 HKLM\SYSTEM\ControlSet003\services\StarWindServiceAE - will be deleted on reboot 18:00:07.0921 1984 C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe - will be deleted on reboot 18:00:07.0921 1984 StarWindServiceAE ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:08.0015 1984 C:\WINDOWS\system32\DRIVERS\tcpip.sys - copied to quarantine 18:00:08.0015 1984 HKLM\SYSTEM\ControlSet001\services\Tcpip - will be deleted on reboot 18:00:08.0015 1984 HKLM\SYSTEM\ControlSet001\control\safeboot\Network\Tcpip - will be deleted on reboot 18:00:08.0015 1984 HKLM\SYSTEM\ControlSet002\services\Tcpip - will be deleted on reboot 18:00:08.0031 1984 HKLM\SYSTEM\ControlSet002\control\safeboot\Network\Tcpip - will be deleted on reboot 18:00:08.0031 1984 HKLM\SYSTEM\ControlSet003\services\Tcpip - will be deleted on reboot 18:00:08.0031 1984 HKLM\SYSTEM\ControlSet003\control\safeboot\Network\Tcpip - will be deleted on reboot 18:00:08.0031 1984 C:\WINDOWS\system32\DRIVERS\tcpip.sys - will be deleted on reboot 18:00:08.0031 1984 Tcpip ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:08.0125 1984 C:\WINDOWS\system32\UTSCSI.EXE - copied to quarantine 18:00:08.0125 1984 HKLM\SYSTEM\ControlSet001\services\UTSCSI - will be deleted on reboot 18:00:08.0125 1984 HKLM\SYSTEM\ControlSet002\services\UTSCSI - will be deleted on reboot 18:00:08.0125 1984 HKLM\SYSTEM\ControlSet003\services\UTSCSI - will be deleted on reboot 18:00:08.0125 1984 C:\WINDOWS\system32\UTSCSI.EXE - will be deleted on reboot 18:00:08.0125 1984 UTSCSI ( UnsignedFile.Multi.Generic ) - User select action: Delete 18:00:12.0687 0748 Deinitialize success