15:40:47.0493 3636	TDSS rootkit removing tool 2.7.41.0 Jun 20 2012 20:53:32
15:40:47.0734 3636	============================================================
15:40:47.0734 3636	Current date / time: 2012/06/25 15:40:47.0734
15:40:47.0734 3636	SystemInfo:
15:40:47.0734 3636	
15:40:47.0734 3636	OS Version: 6.0.6002 ServicePack: 2.0
15:40:47.0734 3636	Product type: Workstation
15:40:47.0734 3636	ComputerName: WOO-PC
15:40:47.0734 3636	UserName: Woo -PC
15:40:47.0734 3636	Windows directory: C:\Windows
15:40:47.0734 3636	System windows directory: C:\Windows
15:40:47.0734 3636	Processor architecture: Intel x86
15:40:47.0734 3636	Number of processors: 2
15:40:47.0734 3636	Page size: 0x1000
15:40:47.0734 3636	Boot type: Normal boot
15:40:47.0734 3636	============================================================
15:40:49.0477 3636	Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
15:40:49.0479 3636	============================================================
15:40:49.0479 3636	\Device\Harddisk0\DR0:
15:40:49.0479 3636	MBR partitions:
15:40:49.0479 3636	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
15:40:49.0479 3636	============================================================
15:40:49.0535 3636	C: <-> \Device\Harddisk0\DR0\Partition0
15:40:49.0535 3636	============================================================
15:40:49.0535 3636	Initialize success
15:40:49.0535 3636	============================================================
15:40:58.0054 2608	============================================================
15:40:58.0055 2608	Scan started
15:40:58.0055 2608	Mode: Manual; 
15:40:58.0055 2608	============================================================
15:40:59.0842 2608	ACPI            (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
15:40:59.0856 2608	ACPI - ok
15:40:59.0943 2608	AdobeARMservice (62b7936f9036dd6ed36e6a7efa805dc0) C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
15:40:59.0949 2608	AdobeARMservice - ok
15:41:00.0127 2608	AdobeFlashPlayerUpdateSvc (990dc6edc9f933194d7cd4e65146bc94) C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
15:41:00.0142 2608	AdobeFlashPlayerUpdateSvc - ok
15:41:00.0205 2608	adp94xx         (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
15:41:00.0298 2608	adp94xx - ok
15:41:00.0330 2608	adpahci         (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
15:41:00.0345 2608	adpahci - ok
15:41:00.0361 2608	adpu160m        (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
15:41:00.0386 2608	adpu160m - ok
15:41:00.0403 2608	adpu320         (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
15:41:00.0406 2608	adpu320 - ok
15:41:00.0657 2608	AdvancedSystemCareService5 (e410da575ff48d976b41670c6d262a82) C:\Program Files\IObit\Advanced SystemCare 5\ASCService.exe
15:41:00.0683 2608	AdvancedSystemCareService5 - ok
15:41:00.0741 2608	AeLookupSvc     (9d1fda9e086ba64e3c93c9de32461bcf) C:\Windows\System32\aelupsvc.dll
15:41:00.0750 2608	AeLookupSvc - ok
15:41:00.0945 2608	AFD             (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
15:41:00.0960 2608	AFD - ok
15:41:01.0028 2608	AGCoreService   (ead9c3ab25a3159abd7b05dcac607a61) C:\Program Files\AGI\core\4.2.0.10754\AGCoreService.exe
15:41:01.0031 2608	AGCoreService - ok
15:41:01.0075 2608	agp440          (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
15:41:01.0099 2608	agp440 - ok
15:41:01.0112 2608	aic78xx         (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
15:41:01.0115 2608	aic78xx - ok
15:41:01.0133 2608	ALG             (a1545b731579895d8cc44fc0481c1192) C:\Windows\System32\alg.exe
15:41:01.0137 2608	ALG - ok
15:41:01.0156 2608	aliide          (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
15:41:01.0157 2608	aliide - ok
15:41:01.0186 2608	amdagp          (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
15:41:01.0217 2608	amdagp - ok
15:41:01.0230 2608	amdide          (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
15:41:01.0252 2608	amdide - ok
15:41:01.0294 2608	AmdK7           (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
15:41:01.0296 2608	AmdK7 - ok
15:41:01.0322 2608	AmdK8           (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
15:41:01.0344 2608	AmdK8 - ok
15:41:01.0395 2608	Appinfo         (c6d704c7f0434dc791aac37cac4b6e14) C:\Windows\System32\appinfo.dll
15:41:01.0397 2608	Appinfo - ok
15:41:01.0413 2608	arc             (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
15:41:01.0436 2608	arc - ok
15:41:01.0450 2608	arcsas          (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
15:41:01.0454 2608	arcsas - ok
15:41:01.0665 2608	aspnet_state    (776acefa0ca9df0faa51a5fb2f435705) C:\Windows\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
15:41:01.0675 2608	aspnet_state - ok
15:41:01.0695 2608	AsyncMac        (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
15:41:01.0734 2608	AsyncMac - ok
15:41:01.0772 2608	atapi           (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
15:41:01.0794 2608	atapi - ok
15:41:01.0920 2608	AudioEndpointBuilder (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
15:41:01.0966 2608	AudioEndpointBuilder - ok
15:41:01.0973 2608	Audiosrv        (68e2a1a0407a66cf50da0300852424ab) C:\Windows\System32\Audiosrv.dll
15:41:01.0977 2608	Audiosrv - ok
15:41:02.0015 2608	Beep            (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
15:41:02.0018 2608	Beep - ok
15:41:02.0107 2608	BITS            (93952506c6d67330367f7e7934b6a02f) C:\Windows\System32\qmgr.dll
15:41:02.0130 2608	BITS - ok
15:41:02.0142 2608	blbdrive        (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
15:41:02.0183 2608	blbdrive - ok
15:41:02.0224 2608	bowser          (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
15:41:02.0262 2608	bowser - ok
15:41:02.0286 2608	BrFiltLo        (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
15:41:02.0290 2608	BrFiltLo - ok
15:41:02.0315 2608	BrFiltUp        (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
15:41:02.0320 2608	BrFiltUp - ok
15:41:02.0344 2608	Browser         (a3629a0c4226f9e9c72faaeebc3ad33c) C:\Windows\System32\browser.dll
15:41:02.0348 2608	Browser - ok
15:41:02.0365 2608	Brserid         (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
15:41:02.0372 2608	Brserid - ok
15:41:02.0387 2608	BrSerWdm        (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
15:41:02.0392 2608	BrSerWdm - ok
15:41:02.0405 2608	BrUsbMdm        (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
15:41:02.0408 2608	BrUsbMdm - ok
15:41:02.0415 2608	BrUsbSer        (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
15:41:02.0416 2608	BrUsbSer - ok
15:41:02.0435 2608	BTHMODEM        (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
15:41:02.0458 2608	BTHMODEM - ok
15:41:02.0467 2608	Cardex - ok
15:41:02.0539 2608	cdfs            (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
15:41:02.0546 2608	cdfs - ok
15:41:02.0646 2608	cdrom           (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
15:41:02.0726 2608	cdrom - ok
15:41:02.0794 2608	CertPropSvc     (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:41:02.0826 2608	CertPropSvc - ok
15:41:02.0891 2608	circlass        (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
15:41:02.0895 2608	circlass - ok
15:41:03.0039 2608	CLFS            (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
15:41:03.0056 2608	CLFS - ok
15:41:03.0159 2608	clr_optimization_v2.0.50727_32 (8ee772032e2fe80a924f3b8dd5082194) C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
15:41:03.0165 2608	clr_optimization_v2.0.50727_32 - ok
15:41:03.0269 2608	clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
15:41:03.0302 2608	clr_optimization_v4.0.30319_32 - ok
15:41:03.0339 2608	cmdide          (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
15:41:03.0357 2608	cmdide - ok
15:41:03.0373 2608	Compbatt        (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
15:41:03.0375 2608	Compbatt - ok
15:41:03.0388 2608	COMSysApp - ok
15:41:03.0404 2608	crcdisk         (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
15:41:03.0432 2608	crcdisk - ok
15:41:03.0445 2608	Crusoe          (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
15:41:03.0463 2608	Crusoe - ok
15:41:03.0682 2608	CryptSvc        (75c6a297e364014840b48eccd7525e30) C:\Windows\system32\cryptsvc.dll
15:41:03.0684 2608	CryptSvc - ok
15:41:03.0779 2608	DcomLaunch      (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:41:03.0825 2608	DcomLaunch - ok
15:41:03.0864 2608	DfsC            (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
15:41:03.0885 2608	DfsC - ok
15:41:04.0666 2608	DFSR            (2cc3dcfb533a1035b13dcab6160ab38b) C:\Windows\system32\DFSR.exe
15:41:04.0702 2608	DFSR - ok
15:41:04.0957 2608	Dhcp            (9028559c132146fb75eb7acf384b086a) C:\Windows\System32\dhcpcsvc.dll
15:41:04.0999 2608	Dhcp - ok
15:41:05.0140 2608	disk            (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
15:41:05.0193 2608	disk - ok
15:41:05.0339 2608	Dnscache        (57d762f6f5974af0da2be88a3349baaa) C:\Windows\System32\dnsrslvr.dll
15:41:05.0359 2608	Dnscache - ok
15:41:05.0411 2608	dot3svc         (324fd74686b1ef5e7c19a8af49e748f6) C:\Windows\System32\dot3svc.dll
15:41:05.0433 2608	dot3svc - ok
15:41:05.0469 2608	DPS             (a622e888f8aa2f6b49e9bc466f0e5def) C:\Windows\system32\dps.dll
15:41:05.0510 2608	DPS - ok
15:41:05.0537 2608	drmkaud         (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
15:41:05.0543 2608	drmkaud - ok
15:41:05.0632 2608	DXGKrnl         (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
15:41:05.0669 2608	DXGKrnl - ok
15:41:05.0705 2608	E1G60           (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
15:41:05.0718 2608	E1G60 - ok
15:41:05.0782 2608	eamon           (9307bb1b5c3ed19517056e1f122d8c77) C:\Windows\system32\DRIVERS\eamon.sys
15:41:05.0824 2608	eamon - ok
15:41:05.0873 2608	EapHost         (c0b95e40d85cd807d614e264248a45b9) C:\Windows\System32\eapsvc.dll
15:41:05.0875 2608	EapHost - ok
15:41:05.0890 2608	easdrv          (df91159321c0991a2e2eb97c84dc4110) C:\Windows\system32\DRIVERS\easdrv.sys
15:41:05.0893 2608	easdrv - ok
15:41:05.0939 2608	Ecache          (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
15:41:05.0946 2608	Ecache - ok
15:41:06.0056 2608	EhttpSrv        (18773d7229a47612c063e39b8ea07ebb) C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
15:41:06.0060 2608	EhttpSrv - ok
15:41:06.0128 2608	ekrn            (64544dfe6ddb9be893d0067d1ca2f034) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
15:41:06.0142 2608	ekrn - ok
15:41:06.0225 2608	elxstor         (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
15:41:06.0284 2608	elxstor - ok
15:41:06.0365 2608	EMDMgmt         (4e6b23dfc917ea39306b529b773950f4) C:\Windows\system32\emdmgmt.dll
15:41:06.0380 2608	EMDMgmt - ok
15:41:06.0423 2608	epfwtdir        (62787d051e9ce5dd6217c21468177aa0) C:\Windows\system32\DRIVERS\epfwtdir.sys
15:41:06.0457 2608	epfwtdir - ok
15:41:06.0480 2608	ErrDev          (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
15:41:06.0500 2608	ErrDev - ok
15:41:06.0537 2608	EventSystem     (67058c46504bc12d821f38cf99b7b28f) C:\Windows\system32\es.dll
15:41:06.0552 2608	EventSystem - ok
15:41:06.0589 2608	exfat           (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
15:41:06.0652 2608	exfat - ok
15:41:06.0803 2608	fastfat         (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
15:41:06.0844 2608	fastfat - ok
15:41:06.0871 2608	fdc             (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
15:41:06.0873 2608	fdc - ok
15:41:06.0911 2608	fdPHost         (6629b5f0e98151f4afdd87567ea32ba3) C:\Windows\system32\fdPHost.dll
15:41:06.0913 2608	fdPHost - ok
15:41:06.0931 2608	FDResPub        (89ed56dce8e47af40892778a5bd31fd2) C:\Windows\system32\fdrespub.dll
15:41:06.0933 2608	FDResPub - ok
15:41:06.0948 2608	FileInfo        (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
15:41:06.0989 2608	FileInfo - ok
15:41:07.0021 2608	Filetrace       (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
15:41:07.0043 2608	Filetrace - ok
15:41:07.0092 2608	flpydisk        (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
15:41:07.0132 2608	flpydisk - ok
15:41:07.0221 2608	FltMgr          (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
15:41:07.0284 2608	FltMgr - ok
15:41:07.0360 2608	FontCache       (8ce364388c8eca59b14b539179276d44) C:\Windows\system32\FntCache.dll
15:41:07.0411 2608	FontCache - ok
15:41:07.0521 2608	FontCache3.0.0.0 (c7fbdd1ed42f82bfa35167a5c9803ea3) C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
15:41:07.0539 2608	FontCache3.0.0.0 - ok
15:41:07.0582 2608	Fs_Rec          (b972a66758577e0bfd1de0f91aaa27b5) C:\Windows\system32\drivers\Fs_Rec.sys
15:41:07.0613 2608	Fs_Rec - ok
15:41:07.0664 2608	gagp30kx        (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
15:41:07.0667 2608	gagp30kx - ok
15:41:07.0738 2608	gpsvc           (cd5d0aeee35dfd4e986a5aa1500a6e66) C:\Windows\System32\gpsvc.dll
15:41:07.0757 2608	gpsvc - ok
15:41:08.0018 2608	gupdate         (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
15:41:08.0026 2608	gupdate - ok
15:41:08.0034 2608	gupdatem        (8f0de4fef8201e306f9938b0905ac96a) C:\Program Files\Google\Update\GoogleUpdate.exe
15:41:08.0036 2608	gupdatem - ok
15:41:08.0071 2608	hamachi         (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
15:41:08.0073 2608	hamachi - ok
15:41:08.0783 2608	Hamachi2Svc     (fa89c0429821c7c429eec7a0ce1c02d3) C:\Gry\LogMeIn Hamachi\hamachi-2.exe
15:41:08.0809 2608	Hamachi2Svc - ok
15:41:09.0078 2608	HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
15:41:09.0135 2608	HdAudAddService - ok
15:41:09.0190 2608	HDAudBus        (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
15:41:09.0236 2608	HDAudBus - ok
15:41:09.0277 2608	HidBth          (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
15:41:09.0280 2608	HidBth - ok
15:41:09.0296 2608	HidIr           (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
15:41:09.0318 2608	HidIr - ok
15:41:09.0381 2608	hidserv         (84067081f3318162797385e11a8f0582) C:\Windows\system32\hidserv.dll
15:41:09.0384 2608	hidserv - ok
15:41:09.0421 2608	HidUsb          (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
15:41:09.0442 2608	HidUsb - ok
15:41:09.0464 2608	hkmsvc          (d8ad255b37da92434c26e4876db7d418) C:\Windows\system32\kmsvc.dll
15:41:09.0467 2608	hkmsvc - ok
15:41:09.0487 2608	HpCISSs         (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
15:41:09.0490 2608	HpCISSs - ok
15:41:09.0547 2608	HTTP            (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
15:41:09.0560 2608	HTTP - ok
15:41:09.0579 2608	i2omp           (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
15:41:09.0581 2608	i2omp - ok
15:41:09.0595 2608	i8042prt        (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
15:41:09.0597 2608	i8042prt - ok
15:41:09.0625 2608	iaStorV         (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
15:41:09.0645 2608	iaStorV - ok
15:41:09.0730 2608	IDriverT        (1cf03c69b49acb70c722df92755c0c8c) C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
15:41:09.0735 2608	IDriverT - ok
15:41:09.0921 2608	idsvc           (98477b08e61945f974ed9fdc4cb6bdab) C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
15:41:09.0998 2608	idsvc - ok
15:41:10.0024 2608	iirsp           (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
15:41:10.0048 2608	iirsp - ok
15:41:10.0232 2608	IKEEXT          (9908d8a397b76cd8d31d0d383c5773c9) C:\Windows\System32\ikeext.dll
15:41:10.0277 2608	IKEEXT - ok
15:41:10.0844 2608	IntcAzAudAddService (7c5afed75cf690df0610df01a9561aeb) C:\Windows\system32\drivers\RTKVHDA.sys
15:41:10.0966 2608	IntcAzAudAddService - ok
15:41:11.0225 2608	intelide        (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
15:41:11.0256 2608	intelide - ok
15:41:11.0319 2608	intelppm        (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
15:41:11.0359 2608	intelppm - ok
15:41:11.0397 2608	IPBusEnum       (9ac218c6e6105477484c6fdbe7d409a4) C:\Windows\system32\ipbusenum.dll
15:41:11.0411 2608	IPBusEnum - ok
15:41:11.0432 2608	IpFilterDriver  (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:41:11.0436 2608	IpFilterDriver - ok
15:41:11.0455 2608	IpInIp - ok
15:41:11.0474 2608	IPMIDRV         (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
15:41:11.0477 2608	IPMIDRV - ok
15:41:11.0502 2608	IPNAT           (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
15:41:11.0505 2608	IPNAT - ok
15:41:11.0523 2608	IRENUM          (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
15:41:11.0540 2608	IRENUM - ok
15:41:11.0557 2608	isapnp          (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
15:41:11.0577 2608	isapnp - ok
15:41:11.0612 2608	iScsiPrt        (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
15:41:11.0623 2608	iScsiPrt - ok
15:41:11.0645 2608	iteatapi        (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
15:41:11.0677 2608	iteatapi - ok
15:41:11.0746 2608	iteraid         (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
15:41:11.0779 2608	iteraid - ok
15:41:11.0803 2608	kbdclass        (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
15:41:11.0806 2608	kbdclass - ok
15:41:11.0838 2608	kbdhid          (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
15:41:11.0840 2608	kbdhid - ok
15:41:11.0874 2608	KeyIso          (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:41:11.0878 2608	KeyIso - ok
15:41:11.0907 2608	KMWDFILTER      (566c5fd480fdbce3ba5cf9fbcffaea9a) C:\Windows\system32\DRIVERS\KMWDFILTER.sys
15:41:11.0910 2608	KMWDFILTER - ok
15:41:11.0953 2608	KSecDD          (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
15:41:12.0016 2608	KSecDD - ok
15:41:12.0055 2608	KtmRm           (8078f8f8f7a79e2e6b494523a828c585) C:\Windows\system32\msdtckrm.dll
15:41:12.0069 2608	KtmRm - ok
15:41:12.0253 2608	LanmanServer    (1bf5eebfd518dd7298434d8c862f825d) C:\Windows\system32\srvsvc.dll
15:41:12.0262 2608	LanmanServer - ok
15:41:12.0381 2608	LanmanWorkstation (1db69705b695b987082c8baec0c6b34f) C:\Windows\System32\wkssvc.dll
15:41:12.0388 2608	LanmanWorkstation - ok
15:41:12.0431 2608	lltdio          (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
15:41:12.0434 2608	lltdio - ok
15:41:12.0470 2608	lltdsvc         (2d5a428872f1442631d0959a34abff63) C:\Windows\System32\lltdsvc.dll
15:41:12.0480 2608	lltdsvc - ok
15:41:12.0509 2608	lmhosts         (35d40113e4a5b961b6ce5c5857702518) C:\Windows\System32\lmhsvc.dll
15:41:12.0512 2608	lmhosts - ok
15:41:12.0533 2608	LSI_FC          (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
15:41:12.0536 2608	LSI_FC - ok
15:41:12.0559 2608	LSI_SAS         (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
15:41:12.0583 2608	LSI_SAS - ok
15:41:12.0604 2608	LSI_SCSI        (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
15:41:12.0629 2608	LSI_SCSI - ok
15:41:12.0648 2608	luafv           (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
15:41:12.0651 2608	luafv - ok
15:41:12.0673 2608	megasas         (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
15:41:12.0697 2608	megasas - ok
15:41:12.0735 2608	MegaSR          (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
15:41:12.0772 2608	MegaSR - ok
15:41:12.0816 2608	MMCSS           (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:41:12.0820 2608	MMCSS - ok
15:41:12.0838 2608	Modem           (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
15:41:12.0860 2608	Modem - ok
15:41:12.0895 2608	monitor         (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
15:41:12.0897 2608	monitor - ok
15:41:12.0914 2608	mouclass        (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
15:41:12.0917 2608	mouclass - ok
15:41:12.0928 2608	mouhid          (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
15:41:12.0949 2608	mouhid - ok
15:41:12.0964 2608	MountMgr        (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
15:41:12.0967 2608	MountMgr - ok
15:41:13.0092 2608	MozillaMaintenance (15d5398eed42c2504bb3d4fc875c15d1) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:41:13.0104 2608	MozillaMaintenance - ok
15:41:13.0136 2608	mpio            (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
15:41:13.0156 2608	mpio - ok
15:41:13.0178 2608	mpsdrv          (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
15:41:13.0182 2608	mpsdrv - ok
15:41:13.0199 2608	Mraid35x        (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
15:41:13.0256 2608	Mraid35x - ok
15:41:13.0309 2608	MRxDAV          (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
15:41:13.0334 2608	MRxDAV - ok
15:41:13.0388 2608	mrxsmb          (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:41:13.0392 2608	mrxsmb - ok
15:41:13.0449 2608	mrxsmb10        (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:41:13.0454 2608	mrxsmb10 - ok
15:41:13.0467 2608	mrxsmb20        (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:41:13.0486 2608	mrxsmb20 - ok
15:41:13.0527 2608	msahci          (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
15:41:13.0545 2608	msahci - ok
15:41:13.0585 2608	msdsm           (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
15:41:13.0589 2608	msdsm - ok
15:41:13.0632 2608	MSDTC           (fd7520cc3a80c5fc8c48852bb24c6ded) C:\Windows\System32\msdtc.exe
15:41:13.0636 2608	MSDTC - ok
15:41:13.0671 2608	Msfs            (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
15:41:13.0691 2608	Msfs - ok
15:41:13.0705 2608	msisadrv        (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
15:41:13.0726 2608	msisadrv - ok
15:41:13.0804 2608	MSiSCSI         (85466c0757a23d9a9aecdc0755203cb2) C:\Windows\system32\iscsiexe.dll
15:41:13.0809 2608	MSiSCSI - ok
15:41:13.0816 2608	msiserver - ok
15:41:13.0835 2608	MSKSSRV         (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
15:41:13.0855 2608	MSKSSRV - ok
15:41:13.0865 2608	MSPCLOCK        (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
15:41:13.0869 2608	MSPCLOCK - ok
15:41:13.0875 2608	MSPQM           (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
15:41:13.0876 2608	MSPQM - ok
15:41:13.0924 2608	MsRPC           (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
15:41:13.0936 2608	MsRPC - ok
15:41:13.0956 2608	mssmbios        (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
15:41:13.0959 2608	mssmbios - ok
15:41:13.0970 2608	MSTEE           (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
15:41:13.0992 2608	MSTEE - ok
15:41:14.0032 2608	Mup             (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
15:41:14.0054 2608	Mup - ok
15:41:14.0369 2608	napagent        (e4eaf0c5c1b41b5c83386cf212ca9584) C:\Windows\system32\qagentRT.dll
15:41:14.0422 2608	napagent - ok
15:41:14.0491 2608	NativeWifiP     (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
15:41:14.0497 2608	NativeWifiP - ok
15:41:14.0613 2608	NDIS            (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
15:41:14.0672 2608	NDIS - ok
15:41:14.0701 2608	NdisTapi        (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
15:41:14.0704 2608	NdisTapi - ok
15:41:14.0726 2608	Ndisuio         (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
15:41:14.0765 2608	Ndisuio - ok
15:41:14.0833 2608	NdisWan         (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
15:41:14.0845 2608	NdisWan - ok
15:41:14.0866 2608	NDProxy         (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
15:41:14.0869 2608	NDProxy - ok
15:41:14.0884 2608	NetBIOS         (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
15:41:14.0899 2608	NetBIOS - ok
15:41:14.0967 2608	netbt           (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
15:41:14.0992 2608	netbt - ok
15:41:15.0028 2608	Netlogon        (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:41:15.0030 2608	Netlogon - ok
15:41:15.0067 2608	Netman          (c8052711daecc48b982434c5116ca401) C:\Windows\System32\netman.dll
15:41:15.0088 2608	Netman - ok
15:41:15.0172 2608	NetMsmqActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:41:15.0225 2608	NetMsmqActivator - ok
15:41:15.0237 2608	NetPipeActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:41:15.0241 2608	NetPipeActivator - ok
15:41:15.0293 2608	netprofm        (2ef3bbe22e5a5acd1428ee387a0d0172) C:\Windows\System32\netprofm.dll
15:41:15.0335 2608	netprofm - ok
15:41:15.0341 2608	NetTcpActivator (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:41:15.0343 2608	NetTcpActivator - ok
15:41:15.0351 2608	NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) c:\Windows\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe
15:41:15.0353 2608	NetTcpPortSharing - ok
15:41:15.0425 2608	nfrd960         (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
15:41:15.0448 2608	nfrd960 - ok
15:41:15.0480 2608	NlaSvc          (2997b15415f9bbe05b5a4c1c85e0c6a2) C:\Windows\System32\nlasvc.dll
15:41:15.0491 2608	NlaSvc - ok
15:41:15.0529 2608	Npfs            (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
15:41:15.0551 2608	Npfs - ok
15:41:15.0571 2608	nsi             (8bb86f0c7eea2bded6fe095d0b4ca9bd) C:\Windows\system32\nsisvc.dll
15:41:15.0578 2608	nsi - ok
15:41:15.0614 2608	nsiproxy        (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
15:41:15.0636 2608	nsiproxy - ok
15:41:16.0002 2608	Ntfs            (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
15:41:16.0043 2608	Ntfs - ok
15:41:16.0082 2608	ntrigdigi       (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
15:41:16.0123 2608	ntrigdigi - ok
15:41:16.0139 2608	Null            (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
15:41:16.0166 2608	Null - ok
15:41:16.0304 2608	NVENETFD        (d958a2b5f6ad5c3b8ccdc4d7da62466c) C:\Windows\system32\DRIVERS\nvmfdx32.sys
15:41:16.0328 2608	NVENETFD - ok
15:41:17.0758 2608	nvlddmkm        (b6b0ce8024432d39e88694676d3c9937) C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:41:17.0910 2608	nvlddmkm - ok
15:41:18.0105 2608	nvraid          (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
15:41:18.0137 2608	nvraid - ok
15:41:18.0155 2608	nvstor          (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
15:41:18.0158 2608	nvstor - ok
15:41:18.0220 2608	nvsvc           (1d392e0d053e6b86fdfc4324af3018c5) C:\Windows\system32\nvvsvc.exe
15:41:18.0263 2608	nvsvc - ok
15:41:18.0283 2608	nv_agp          (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
15:41:18.0286 2608	nv_agp - ok
15:41:18.0291 2608	NwlnkFlt - ok
15:41:18.0300 2608	NwlnkFwd - ok
15:41:18.0375 2608	ohci1394        (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
15:41:18.0380 2608	ohci1394 - ok
15:41:18.0446 2608	p2pimsvc        (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:41:18.0480 2608	p2pimsvc - ok
15:41:18.0496 2608	p2psvc          (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:41:18.0505 2608	p2psvc - ok
15:41:18.0543 2608	Parport         (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
15:41:18.0546 2608	Parport - ok
15:41:18.0594 2608	partmgr         (b9c2b89f08670e159f7181891e449cd9) C:\Windows\system32\drivers\partmgr.sys
15:41:18.0613 2608	partmgr - ok
15:41:18.0635 2608	Parvdm          (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
15:41:18.0652 2608	Parvdm - ok
15:41:18.0687 2608	PcaSvc          (c6276ad11f4bb49b58aa1ed88537f14a) C:\Windows\System32\pcasvc.dll
15:41:18.0690 2608	PcaSvc - ok
15:41:18.0733 2608	pci             (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
15:41:18.0737 2608	pci - ok
15:41:18.0750 2608	pciide          (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
15:41:18.0769 2608	pciide - ok
15:41:18.0793 2608	pcmcia          (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
15:41:18.0796 2608	pcmcia - ok
15:41:18.0900 2608	PEAUTH          (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
15:41:18.0921 2608	PEAUTH - ok
15:41:19.0318 2608	pla             (b1689df169143f57053f795390c99db3) C:\Windows\system32\pla.dll
15:41:19.0344 2608	pla - ok
15:41:19.0549 2608	PlugPlay        (c5e7f8a996ec0a82d508fd9064a5569e) C:\Windows\system32\umpnpmgr.dll
15:41:19.0565 2608	PlugPlay - ok
15:41:19.0607 2608	PnkBstrA        (19e83b09ab8ee1d837665da941e2ac44) C:\Windows\system32\PnkBstrA.exe
15:41:19.0610 2608	PnkBstrA - ok
15:41:19.0628 2608	PnkBstrB        (e24106a5eaecddff00b25497049dd65f) C:\Windows\system32\PnkBstrB.exe
15:41:19.0634 2608	PnkBstrB - ok
15:41:19.0681 2608	PNRPAutoReg     (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:41:19.0689 2608	PNRPAutoReg - ok
15:41:19.0700 2608	PNRPsvc         (0c8e8e61ad1eb0b250b846712c917506) C:\Windows\system32\p2psvc.dll
15:41:19.0708 2608	PNRPsvc - ok
15:41:19.0877 2608	PolicyAgent     (d0494460421a03cd5225cca0059aa146) C:\Windows\System32\ipsecsvc.dll
15:41:19.0894 2608	PolicyAgent - ok
15:41:20.0023 2608	PptpMiniport    (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
15:41:20.0110 2608	PptpMiniport - ok
15:41:20.0158 2608	Processor       (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
15:41:20.0161 2608	Processor - ok
15:41:20.0219 2608	ProfSvc         (0508faa222d28835310b7bfca7a77346) C:\Windows\system32\profsvc.dll
15:41:20.0248 2608	ProfSvc - ok
15:41:20.0277 2608	ProtectedStorage (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:41:20.0279 2608	ProtectedStorage - ok
15:41:20.0324 2608	PSched          (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
15:41:20.0325 2608	PSched - ok
15:41:20.0527 2608	ql2300          (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
15:41:20.0563 2608	ql2300 - ok
15:41:20.0794 2608	ql40xx          (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
15:41:20.0845 2608	ql40xx - ok
15:41:21.0120 2608	QWAVE           (e9ecae663f47e6cb43962d18ab18890f) C:\Windows\system32\qwave.dll
15:41:21.0133 2608	QWAVE - ok
15:41:21.0161 2608	QWAVEdrv        (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
15:41:21.0164 2608	QWAVEdrv - ok
15:41:21.0192 2608	RasAcd          (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
15:41:21.0195 2608	RasAcd - ok
15:41:21.0259 2608	RasAuto         (f6a452eb4ceadbb51c9e0ee6b3ecef0f) C:\Windows\System32\rasauto.dll
15:41:21.0280 2608	RasAuto - ok
15:41:21.0301 2608	Rasl2tp         (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:41:21.0384 2608	Rasl2tp - ok
15:41:21.0484 2608	RasMan          (75d47445d70ca6f9f894b032fbc64fcf) C:\Windows\System32\rasmans.dll
15:41:21.0500 2608	RasMan - ok
15:41:21.0619 2608	RasPppoe        (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
15:41:21.0689 2608	RasPppoe - ok
15:41:21.0881 2608	RasSstp         (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
15:41:21.0923 2608	RasSstp - ok
15:41:21.0997 2608	rdbss           (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
15:41:22.0015 2608	rdbss - ok
15:41:22.0039 2608	RDPCDD          (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:41:22.0042 2608	RDPCDD - ok
15:41:22.0247 2608	rdpdr           (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
15:41:22.0278 2608	rdpdr - ok
15:41:22.0290 2608	RDPENCDD        (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
15:41:22.0293 2608	RDPENCDD - ok
15:41:22.0543 2608	RDPWD           (c127ebd5afab31524662c48dfceb773a) C:\Windows\system32\drivers\RDPWD.sys
15:41:22.0558 2608	RDPWD - ok
15:41:22.0584 2608	RemoteAccess    (bcdd6b4804d06b1f7ebf29e53a57ece9) C:\Windows\System32\mprdim.dll
15:41:22.0589 2608	RemoteAccess - ok
15:41:22.0792 2608	RemoteRegistry  (9e6894ea18daff37b63e1005f83ae4ab) C:\Windows\system32\regsvc.dll
15:41:22.0816 2608	RemoteRegistry - ok
15:41:22.0839 2608	RpcLocator      (5123f83cbc4349d065534eeb6bbdc42b) C:\Windows\system32\locator.exe
15:41:22.0850 2608	RpcLocator - ok
15:41:22.0931 2608	RpcSs           (3b5b4d53fec14f7476ca29a20cc31ac9) C:\Windows\system32\rpcss.dll
15:41:22.0944 2608	RpcSs - ok
15:41:23.0063 2608	rspndr          (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
15:41:23.0121 2608	rspndr - ok
15:41:23.0167 2608	SamSs           (a3e186b4b935905b829219502557314e) C:\Windows\system32\lsass.exe
15:41:23.0169 2608	SamSs - ok
15:41:23.0238 2608	sbp2port        (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
15:41:23.0299 2608	sbp2port - ok
15:41:23.0372 2608	SCardSvr        (77b7a11a0c3d78d3386398fbbea1b632) C:\Windows\System32\SCardSvr.dll
15:41:23.0377 2608	SCardSvr - ok
15:41:23.0712 2608	Schedule        (1a58069db21d05eb2ab58ee5753ebe8d) C:\Windows\system32\schedsvc.dll
15:41:23.0824 2608	Schedule - ok
15:41:23.0915 2608	SCPolicySvc     (312ec3e37a0a1f2006534913e37b4423) C:\Windows\System32\certprop.dll
15:41:23.0917 2608	SCPolicySvc - ok
15:41:24.0047 2608	SDRSVC          (716313d9f6b0529d03f726d5aaf6f191) C:\Windows\System32\SDRSVC.dll
15:41:24.0062 2608	SDRSVC - ok
15:41:24.0090 2608	secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
15:41:24.0094 2608	secdrv - ok
15:41:24.0123 2608	seclogon        (fd5199d4d8a521005e4b5ee7fe00fa9b) C:\Windows\system32\seclogon.dll
15:41:24.0157 2608	seclogon - ok
15:41:24.0179 2608	SENS            (a9bbab5759771e523f55563d6cbe140f) C:\Windows\System32\sens.dll
15:41:24.0193 2608	SENS - ok
15:41:24.0222 2608	Serenum         (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
15:41:24.0225 2608	Serenum - ok
15:41:24.0401 2608	Serial          (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
15:41:24.0459 2608	Serial - ok
15:41:24.0483 2608	sermouse        (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
15:41:24.0486 2608	sermouse - ok
15:41:24.0781 2608	SessionEnv      (d2193326f729b163125610dbf3e17d57) C:\Windows\system32\sessenv.dll
15:41:24.0784 2608	SessionEnv - ok
15:41:24.0817 2608	sffdisk         (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
15:41:24.0838 2608	sffdisk - ok
15:41:24.0884 2608	sffp_mmc        (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
15:41:24.0909 2608	sffp_mmc - ok
15:41:24.0978 2608	sffp_sd         (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
15:41:24.0979 2608	sffp_sd - ok
15:41:25.0004 2608	sfloppy         (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
15:41:25.0025 2608	sfloppy - ok
15:41:25.0704 2608	SharedAccess    (e1499bd0ff76b1b2fbbf1af339d91165) C:\Windows\System32\ipnathlp.dll
15:41:25.0729 2608	SharedAccess - ok
15:41:25.0853 2608	ShellHWDetection (c7230fbee14437716701c15be02c27b8) C:\Windows\System32\shsvcs.dll
15:41:25.0871 2608	ShellHWDetection - ok
15:41:25.0896 2608	sisagp          (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
15:41:25.0899 2608	sisagp - ok
15:41:25.0918 2608	SiSRaid2        (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
15:41:25.0921 2608	SiSRaid2 - ok
15:41:25.0935 2608	SiSRaid4        (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
15:41:25.0977 2608	SiSRaid4 - ok
15:41:26.0367 2608	slsvc           (862bb4cbc05d80c5b45be430e5ef872f) C:\Windows\system32\SLsvc.exe
15:41:26.0445 2608	slsvc - ok
15:41:26.0626 2608	SLUINotify      (6edc422215cd78aa8a9cde6b30abbd35) C:\Windows\system32\SLUINotify.dll
15:41:26.0637 2608	SLUINotify - ok
15:41:26.0773 2608	Smb             (e5b803571e3897d092577040e84d734f) C:\Windows\system32\DRIVERS\smb.sys
15:41:26.0813 2608	Suspicious file (NoAccess): C:\Windows\system32\DRIVERS\smb.sys. md5: e5b803571e3897d092577040e84d734f
15:41:26.0815 2608	Smb ( Virus.Win32.ZAccess.k ) - infected
15:41:26.0815 2608	Smb - detected Virus.Win32.ZAccess.k (0)
15:41:26.0875 2608	SNMPTRAP        (2a146a055b4401c16ee62d18b8e2a032) C:\Windows\System32\snmptrap.exe
15:41:26.0881 2608	SNMPTRAP - ok
15:41:27.0017 2608	spldr           (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
15:41:27.0034 2608	spldr - ok
15:41:27.0188 2608	Spooler         (8554097e5136c3bf9f69fe578a1b35f4) C:\Windows\System32\spoolsv.exe
15:41:27.0218 2608	Spooler - ok
15:41:27.0855 2608	sptd            (614deea4bdcec3fd5a07bdc705723ad7) C:\Windows\System32\Drivers\sptd.sys
15:41:27.0856 2608	Suspicious file (NoAccess): C:\Windows\System32\Drivers\sptd.sys. md5: 614deea4bdcec3fd5a07bdc705723ad7
15:41:27.0859 2608	sptd ( LockedFile.Multi.Generic ) - warning
15:41:27.0859 2608	sptd - detected LockedFile.Multi.Generic (1)
15:41:28.0007 2608	srv             (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
15:41:28.0038 2608	srv - ok
15:41:28.0094 2608	srv2            (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
15:41:28.0138 2608	srv2 - ok
15:41:28.0195 2608	srvnet          (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
15:41:28.0214 2608	srvnet - ok
15:41:28.0264 2608	SSDPSRV         (03d50b37234967433a5ea5ba72bc0b62) C:\Windows\System32\ssdpsrv.dll
15:41:28.0275 2608	SSDPSRV - ok
15:41:28.0375 2608	SstpSvc         (6f1a32e7b7b30f004d9a20afadb14944) C:\Windows\system32\sstpsvc.dll
15:41:28.0382 2608	SstpSvc - ok
15:41:28.0489 2608	Steam Client Service - ok
15:41:28.0598 2608	stisvc          (5de7d67e49b88f5f07f3e53c4b92a352) C:\Windows\System32\wiaservc.dll
15:41:28.0630 2608	stisvc - ok
15:41:28.0650 2608	swenum          (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
15:41:28.0655 2608	swenum - ok
15:41:28.0739 2608	swprv           (f21fd248040681cca1fb6c9a03aaa93d) C:\Windows\System32\swprv.dll
15:41:28.0753 2608	swprv - ok
15:41:28.0776 2608	Symc8xx         (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
15:41:28.0840 2608	Symc8xx - ok
15:41:28.0866 2608	Sym_hi          (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
15:41:28.0885 2608	Sym_hi - ok
15:41:28.0907 2608	Sym_u3          (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
15:41:28.0926 2608	Sym_u3 - ok
15:41:29.0000 2608	SysMain         (9a51b04e9886aa4ee90093586b0ba88d) C:\Windows\system32\sysmain.dll
15:41:29.0018 2608	SysMain - ok
15:41:29.0063 2608	TabletInputService (2dca225eae15f42c0933e998ee0231c3) C:\Windows\System32\TabSvc.dll
15:41:29.0067 2608	TabletInputService - ok
15:41:29.0219 2608	TapiSrv         (d7673e4b38ce21ee54c59eeeb65e2483) C:\Windows\System32\tapisrv.dll
15:41:29.0230 2608	TapiSrv - ok
15:41:29.0263 2608	TBS             (cb05822cd9cc6c688168e113c603dbe7) C:\Windows\System32\tbssvc.dll
15:41:29.0267 2608	TBS - ok
15:41:29.0347 2608	Tcpip           (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\drivers\tcpip.sys
15:41:29.0371 2608	Tcpip - ok
15:41:29.0384 2608	Tcpip6          (27d470dabc77bc60d0a3b0e4deb6cb91) C:\Windows\system32\DRIVERS\tcpip.sys
15:41:29.0391 2608	Tcpip6 - ok
15:41:29.0473 2608	tcpipreg        (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
15:41:29.0473 2608	tcpipreg - ok
15:41:29.0501 2608	TDPIPE          (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
15:41:29.0530 2608	TDPIPE - ok
15:41:29.0544 2608	TDTCP           (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
15:41:29.0581 2608	TDTCP - ok
15:41:29.0620 2608	tdx             (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
15:41:29.0642 2608	tdx - ok
15:41:29.0699 2608	TermDD          (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
15:41:29.0729 2608	TermDD - ok
15:41:29.0793 2608	TermService     (bb95da09bef6e7a131bff3ba5032090d) C:\Windows\System32\termsrv.dll
15:41:29.0834 2608	TermService - ok
15:41:29.0913 2608	Themes          (c7230fbee14437716701c15be02c27b8) C:\Windows\system32\shsvcs.dll
15:41:29.0918 2608	Themes - ok
15:41:29.0969 2608	THREADORDER     (1076ffcffaae8385fd62dfcb25ac4708) C:\Windows\system32\mmcss.dll
15:41:29.0971 2608	THREADORDER - ok
15:41:30.0006 2608	TrkWks          (ec74e77d0eb004bd3a809b5f8fb8c2ce) C:\Windows\System32\trkwks.dll
15:41:30.0045 2608	TrkWks - ok
15:41:30.0133 2608	TrustedInstaller (97d9d6a04e3ad9b6c626b9931db78dba) C:\Windows\servicing\TrustedInstaller.exe
15:41:30.0135 2608	TrustedInstaller - ok
15:41:30.0166 2608	tssecsrv        (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:41:30.0169 2608	tssecsrv - ok
15:41:30.0201 2608	tunmp           (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
15:41:30.0266 2608	tunmp - ok
15:41:30.0323 2608	tunnel          (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
15:41:30.0325 2608	tunnel - ok
15:41:30.0352 2608	uagp35          (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
15:41:30.0354 2608	uagp35 - ok
15:41:30.0608 2608	udfs            (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
15:41:30.0619 2608	udfs - ok
15:41:30.0651 2608	UI0Detect       (ecef404f62863755951e09c802c94ad5) C:\Windows\system32\UI0Detect.exe
15:41:30.0654 2608	UI0Detect - ok
15:41:30.0685 2608	uliagpkx        (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
15:41:30.0710 2608	uliagpkx - ok
15:41:30.0736 2608	uliahci         (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
15:41:30.0751 2608	uliahci - ok
15:41:30.0772 2608	UlSata          (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
15:41:30.0800 2608	UlSata - ok
15:41:30.0819 2608	ulsata2         (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
15:41:30.0843 2608	ulsata2 - ok
15:41:30.0861 2608	umbus           (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
15:41:30.0866 2608	umbus - ok
15:41:30.0899 2608	upnphost        (68308183f4ae0be7bf8ecd07cb297999) C:\Windows\System32\upnphost.dll
15:41:30.0916 2608	upnphost - ok
15:41:30.0945 2608	usbccgp         (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
15:41:30.0949 2608	usbccgp - ok
15:41:30.0965 2608	usbcir          (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
15:41:30.0988 2608	usbcir - ok
15:41:31.0049 2608	usbehci         (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
15:41:31.0072 2608	usbehci - ok
15:41:31.0303 2608	usbhub          (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
15:41:31.0355 2608	usbhub - ok
15:41:31.0401 2608	usbohci         (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
15:41:31.0439 2608	usbohci - ok
15:41:31.0468 2608	usbprint        (b51e52acf758be00ef3a58ea452fe360) C:\Windows\system32\drivers\usbprint.sys
15:41:31.0490 2608	usbprint - ok
15:41:31.0553 2608	USBSTOR         (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:41:31.0556 2608	USBSTOR - ok
15:41:31.0573 2608	usbuhci         (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
15:41:31.0576 2608	usbuhci - ok
15:41:31.0615 2608	UxSms           (1509e705f3ac1d474c92454a5c2dd81f) C:\Windows\System32\uxsms.dll
15:41:31.0620 2608	UxSms - ok
15:41:31.0691 2608	vds             (cd88d1b7776dc17a119049742ec07eb4) C:\Windows\System32\vds.exe
15:41:31.0710 2608	vds - ok
15:41:31.0754 2608	vga             (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
15:41:31.0777 2608	vga - ok
15:41:31.0794 2608	VgaSave         (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
15:41:31.0835 2608	VgaSave - ok
15:41:31.0848 2608	viaagp          (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
15:41:31.0851 2608	viaagp - ok
15:41:31.0868 2608	ViaC7           (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
15:41:31.0886 2608	ViaC7 - ok
15:41:31.0898 2608	viaide          (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
15:41:31.0917 2608	viaide - ok
15:41:31.0932 2608	volmgr          (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
15:41:31.0934 2608	volmgr - ok
15:41:31.0980 2608	volmgrx         (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
15:41:32.0015 2608	volmgrx - ok
15:41:32.0062 2608	volsnap         (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
15:41:32.0074 2608	volsnap - ok
15:41:32.0091 2608	vsmraid         (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
15:41:32.0120 2608	vsmraid - ok
15:41:32.0576 2608	VSS             (db3d19f850c6eb32bdcb9bc0836acddb) C:\Windows\system32\vssvc.exe
15:41:32.0598 2608	VSS - ok
15:41:32.0835 2608	vvftav211       (af0850cfd99e9e5e142537cd601bcb72) C:\Windows\system32\drivers\vvftav211.sys
15:41:32.0849 2608	vvftav211 - ok
15:41:32.0918 2608	W32Time         (96ea68b9eb310a69c25ebb0282b2b9de) C:\Windows\system32\w32time.dll
15:41:32.0943 2608	W32Time - ok
15:41:32.0969 2608	WacomPen        (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
15:41:32.0972 2608	WacomPen - ok
15:41:32.0985 2608	Wanarp          (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:41:33.0026 2608	Wanarp - ok
15:41:33.0032 2608	Wanarpv6        (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
15:41:33.0033 2608	Wanarpv6 - ok
15:41:33.0250 2608	wcncsvc         (a3cd60fd826381b49f03832590e069af) C:\Windows\System32\wcncsvc.dll
15:41:33.0294 2608	wcncsvc - ok
15:41:33.0336 2608	WcsPlugInService (11bcb7afcdd7aadacb5746f544d3a9c7) C:\Windows\System32\WcsPlugInService.dll
15:41:33.0351 2608	WcsPlugInService - ok
15:41:33.0380 2608	Wd              (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
15:41:33.0422 2608	Wd - ok
15:41:33.0485 2608	Wdf01000        (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
15:41:33.0562 2608	Wdf01000 - ok
15:41:33.0588 2608	WdiServiceHost  (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:41:33.0593 2608	WdiServiceHost - ok
15:41:33.0599 2608	WdiSystemHost   (abfc76b48bb6c96e3338d8943c5d93b5) C:\Windows\system32\wdi.dll
15:41:33.0603 2608	WdiSystemHost - ok
15:41:33.0659 2608	WebClient       (04c37d8107320312fbae09926103d5e2) C:\Windows\System32\webclnt.dll
15:41:33.0671 2608	WebClient - ok
15:41:33.0728 2608	Wecsvc          (ae3736e7e8892241c23e4ebbb7453b60) C:\Windows\system32\wecsvc.dll
15:41:33.0734 2608	Wecsvc - ok
15:41:33.0770 2608	wercplsupport   (670ff720071ed741206d69bd995ea453) C:\Windows\System32\wercplsupport.dll
15:41:33.0807 2608	wercplsupport - ok
15:41:33.0866 2608	WerSvc          (32b88481d3b326da6deb07b1d03481e7) C:\Windows\System32\WerSvc.dll
15:41:33.0879 2608	WerSvc - ok
15:41:33.0892 2608	WinHttpAutoProxySvc - ok
15:41:34.0059 2608	Winmgmt         (6b2a1d0e80110e3d04e6863c6e62fd8a) C:\Windows\system32\wbem\WMIsvc.dll
15:41:34.0072 2608	Winmgmt - ok
15:41:34.0210 2608	WinRM           (7cfe68bdc065e55aa5e8421607037511) C:\Windows\system32\WsmSvc.dll
15:41:34.0272 2608	WinRM - ok
15:41:34.0625 2608	Wlansvc         (c008405e4feeb069e30da1d823910234) C:\Windows\System32\wlansvc.dll
15:41:34.0643 2608	Wlansvc - ok
15:41:34.0879 2608	wlidsvc         (fb01d4ae207b9efdbabfc55dc95c7e31) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
15:41:34.0957 2608	wlidsvc - ok
15:41:35.0138 2608	WmiAcpi         (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
15:41:35.0175 2608	WmiAcpi - ok
15:41:35.0328 2608	wmiApSrv        (43be3875207dcb62a85c8c49970b66cc) C:\Windows\system32\wbem\WmiApSrv.exe
15:41:35.0339 2608	wmiApSrv - ok
15:41:35.0704 2608	WMPNetworkSvc   (3978704576a121a9204f8cc49a301a9b) C:\Program Files\Windows Media Player\wmpnetwk.exe
15:41:35.0762 2608	WMPNetworkSvc - ok
15:41:35.0820 2608	WPCSvc          (cfc5a04558f5070cee3e3a7809f3ff52) C:\Windows\System32\wpcsvc.dll
15:41:35.0842 2608	WPCSvc - ok
15:41:35.0924 2608	WPDBusEnum      (801fbdb89d472b3c467eb112a0fc9246) C:\Windows\system32\wpdbusenum.dll
15:41:35.0929 2608	WPDBusEnum - ok
15:41:36.0014 2608	WpdUsb          (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
15:41:36.0017 2608	WpdUsb - ok
15:41:36.0866 2608	WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
15:41:36.0914 2608	WPFFontCache_v0400 - ok
15:41:36.0969 2608	ws2ifsl         (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
15:41:37.0008 2608	ws2ifsl - ok
15:41:37.0024 2608	WSearch - ok
15:41:38.0169 2608	wuauserv        (fc3ec24fce372c89423e015a2ac1a31e) C:\Windows\system32\wuaueng.dll
15:41:38.0261 2608	wuauserv - ok
15:41:38.0379 2608	WUDFRd          (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:41:38.0383 2608	WUDFRd - ok
15:41:38.0410 2608	wudfsvc         (575a4190d989f64732119e4114045a4f) C:\Windows\System32\WUDFSvc.dll
15:41:38.0415 2608	wudfsvc - ok
15:41:39.0281 2608	ZSMC30x         (e7d4da4044fc93902f407fd3a59d0b17) C:\Windows\system32\Drivers\ZS211.sys
15:41:39.0347 2608	ZSMC30x - ok
15:41:39.0382 2608	MBR (0x1B8)     (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
15:41:40.0709 2608	\Device\Harddisk0\DR0 - ok
15:41:40.0746 2608	Boot (0x1200)   (3057263aa1e671f8a3221382904133ee) \Device\Harddisk0\DR0\Partition0
15:41:40.0751 2608	\Device\Harddisk0\DR0\Partition0 - ok
15:41:40.0752 2608	============================================================
15:41:40.0752 2608	Scan finished
15:41:40.0752 2608	============================================================
15:41:40.0796 3276	Detected object count: 2
15:41:40.0796 3276	Actual detected object count: 2
15:41:55.0549 3276	C:\Windows\system32\DRIVERS\smb.sys - copied to quarantine
15:41:57.0429 3276	C:\Windows\$NtUninstallKB34651$\1399641143\Desktop.ini - copied to quarantine
15:42:04.0690 3276	Backup copy found, using it..
15:42:04.0776 3276	C:\Windows\system32\DRIVERS\smb.sys - will be cured on reboot
15:42:12.0345 3276	C:\Windows\$NtUninstallKB34651$\1399641143\Desktop.ini - will be deleted on reboot
15:42:12.0348 3276	C:\Windows\$NtUninstallKB34651$\233200691 - will be deleted on reboot
15:42:12.0351 3276	Smb ( Virus.Win32.ZAccess.k ) - User select action: Cure 
15:42:12.0352 3276	sptd ( LockedFile.Multi.Generic ) - skipped by user
15:42:12.0352 3276	sptd ( LockedFile.Multi.Generic ) - User select action: Skip 
15:42:30.0508 2228	Deinitialize success