21:45:36.0390 1632	TDSS rootkit removing tool 2.7.42.0 Jun 25 2012 21:18:44
21:45:38.0343 1632	============================================================
21:45:38.0343 1632	Current date / time: 2012/06/26 21:45:38.0343
21:45:38.0343 1632	SystemInfo:
21:45:38.0343 1632	
21:45:38.0343 1632	OS Version: 5.1.2600 ServicePack: 2.0
21:45:38.0343 1632	Product type: Workstation
21:45:38.0343 1632	ComputerName: MONIKA-98467D1B
21:45:38.0343 1632	UserName: monika
21:45:38.0343 1632	Windows directory: D:\WINDOWS
21:45:38.0343 1632	System windows directory: D:\WINDOWS
21:45:38.0343 1632	Processor architecture: Intel x86
21:45:38.0343 1632	Number of processors: 1
21:45:38.0343 1632	Page size: 0x1000
21:45:38.0343 1632	Boot type: Normal boot
21:45:38.0343 1632	============================================================
21:45:53.0078 1632	Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
21:45:53.0093 1632	Drive \Device\Harddisk1\DR3 - Size: 0x1F33FE00 (0.49 Gb), SectorSize: 0x200, Cylinders: 0x3F, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:45:53.0093 1632	Drive \Device\Harddisk2\DR7 - Size: 0x3BC00000 (0.93 Gb), SectorSize: 0x200, Cylinders: 0x79, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
21:45:53.0093 1632	============================================================
21:45:53.0093 1632	\Device\Harddisk0\DR0:
21:45:53.0093 1632	MBR partitions:
21:45:53.0109 1632	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F00, BlocksNum 0x1EAFFD4
21:45:53.0109 1632	\Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x1EB3ED4, BlocksNum 0x762375F
21:45:53.0109 1632	\Device\Harddisk1\DR3:
21:45:53.0109 1632	MBR partitions:
21:45:53.0109 1632	\Device\Harddisk1\DR3\Partition0: MBR, Type 0xB, StartLBA 0x20, BlocksNum 0xF99DF
21:45:53.0109 1632	\Device\Harddisk2\DR7:
21:45:53.0109 1632	MBR partitions:
21:45:53.0109 1632	\Device\Harddisk2\DR7\Partition0: MBR, Type 0x6, StartLBA 0x20, BlocksNum 0x1DDFE0
21:45:53.0109 1632	============================================================
21:45:53.0281 1632	C: <-> \Device\Harddisk0\DR0\Partition1
21:45:53.0421 1632	D: <-> \Device\Harddisk0\DR0\Partition0
21:45:53.0421 1632	============================================================
21:45:53.0421 1632	Initialize success
21:45:53.0421 1632	============================================================
21:46:17.0484 0500	============================================================
21:46:17.0484 0500	Scan started
21:46:17.0484 0500	Mode: Manual; 
21:46:17.0484 0500	============================================================
21:46:17.0765 0500	Abiosdsk - ok
21:46:17.0796 0500	abp480n5 - ok
21:46:17.0859 0500	ACPI            (2df89fe8204e56479c10ed6f9def4a4c) D:\WINDOWS\system32\DRIVERS\ACPI.sys
21:46:17.0890 0500	Suspicious file (Forged): D:\WINDOWS\system32\DRIVERS\ACPI.sys. Real md5: 2df89fe8204e56479c10ed6f9def4a4c, Fake md5: a966410ecf83b81f3b0b8e07a71957d4
21:46:17.0890 0500	ACPI ( Virus.Win32.Rloader.a ) - infected
21:46:17.0890 0500	ACPI - detected Virus.Win32.Rloader.a (0)
21:46:17.0937 0500	ACPIEC          (66a42b7db194e24b973bbcce840a0f3f) D:\WINDOWS\system32\DRIVERS\ACPIEC.sys
21:46:17.0968 0500	ACPIEC - ok
21:46:17.0984 0500	adpu160m - ok
21:46:18.0062 0500	aec             (1ee7b434ba961ef845de136224c30fec) D:\WINDOWS\system32\drivers\aec.sys
21:46:18.0078 0500	aec - ok
21:46:18.0140 0500	AFD             (55e6e1c51b6d30e54335750955453702) D:\WINDOWS\System32\drivers\afd.sys
21:46:18.0171 0500	AFD - ok
21:46:18.0203 0500	Aha154x - ok
21:46:18.0218 0500	aic78u2 - ok
21:46:18.0265 0500	aic78xx - ok
21:46:18.0296 0500	Alerter         (f79b5c5b0a77a134c5671992335d1409) D:\WINDOWS\system32\alrsvc.dll
21:46:18.0312 0500	Alerter - ok
21:46:18.0343 0500	ALG             (9d12991bc6b6c5c0fbab4c06e7073df1) D:\WINDOWS\System32\alg.exe
21:46:18.0375 0500	ALG - ok
21:46:18.0406 0500	AliIde - ok
21:46:18.0500 0500	AmFSM           (ef9dd27aa5a3baaf2fd2b44c08a3e622) D:\WINDOWS\system32\DRIVERS\amm8651.sys
21:46:18.0531 0500	AmFSM - ok
21:46:18.0562 0500	amsint - ok
21:46:18.0609 0500	AppMgmt         (8d60b308d061da209cc271d9b480468c) D:\WINDOWS\System32\appmgmts.dll
21:46:18.0656 0500	AppMgmt - ok
21:46:18.0718 0500	AR5211          (3cb8e72b7c9887b42b90000e8cb1e7be) D:\WINDOWS\system32\DRIVERS\ar5211.sys
21:46:18.0765 0500	AR5211 - ok
21:46:18.0796 0500	asc - ok
21:46:18.0828 0500	asc3350p - ok
21:46:18.0859 0500	asc3550 - ok
21:46:18.0906 0500	AsyncMac        (02000abf34af4c218c35d257024807d6) D:\WINDOWS\system32\DRIVERS\asyncmac.sys
21:46:18.0921 0500	AsyncMac - ok
21:46:19.0000 0500	atapi           (cdfe4411a69c224bd1d11b2da92dac51) D:\WINDOWS\system32\DRIVERS\atapi.sys
21:46:19.0015 0500	atapi - ok
21:46:19.0062 0500	Atdisk - ok
21:46:19.0109 0500	Atmarpc         (ec88da854ab7d7752ec8be11a741bb7f) D:\WINDOWS\system32\DRIVERS\atmarpc.sys
21:46:19.0125 0500	Atmarpc - ok
21:46:19.0187 0500	AudioSrv        (18bff5eba35f2562c5aa03eb9c6ba29e) D:\WINDOWS\System32\audiosrv.dll
21:46:19.0203 0500	AudioSrv - ok
21:46:19.0250 0500	audstub         (d9f724aa26c010a217c97606b160ed68) D:\WINDOWS\system32\DRIVERS\audstub.sys
21:46:19.0281 0500	audstub - ok
21:46:19.0328 0500	Beep            (da1f27d85e0d1525f6621372e7b685e9) D:\WINDOWS\system32\drivers\Beep.sys
21:46:19.0328 0500	Beep - ok
21:46:19.0390 0500	BITS            (a6bfd910074b02c8794fc65f39cc6b28) D:\WINDOWS\system32\qmgr.dll
21:46:19.0484 0500	BITS - ok
21:46:19.0562 0500	Brother XP spl Service (d3facb34fff5db91adb70987838f8ba7) D:\WINDOWS\system32\brsvc01a.exe
21:46:19.0671 0500	Brother XP spl Service - ok
21:46:19.0718 0500	Browser         (210830d2497fef78694076179af8c795) D:\WINDOWS\System32\browser.dll
21:46:19.0734 0500	Browser - ok
21:46:19.0796 0500	BrScnUsb        (92a964547b96d697e5e9ed43b4297f5a) D:\WINDOWS\system32\Drivers\BrScnUsb.sys
21:46:19.0812 0500	BrScnUsb - ok
21:46:19.0875 0500	BthEnum         (d24b8d1784c68a25060fffbe8ed34b76) D:\WINDOWS\system32\DRIVERS\BthEnum.sys
21:46:19.0890 0500	BthEnum - ok
21:46:19.0937 0500	BTHMODEM        (9df0adf74ce1d6371ed60cf92eb1d9a6) D:\WINDOWS\system32\DRIVERS\bthmodem.sys
21:46:19.0968 0500	BTHMODEM - ok
21:46:20.0031 0500	BthPan          (10355270be12641b9764235da39dcf0f) D:\WINDOWS\system32\DRIVERS\bthpan.sys
21:46:20.0046 0500	BthPan - ok
21:46:20.0140 0500	BTHPORT         (754db723ad08874ab46d7d307caf2209) D:\WINDOWS\system32\Drivers\BTHport.sys
21:46:20.0171 0500	BTHPORT - ok
21:46:20.0234 0500	BthServ         (59ad045153930d27378d26b126bb220f) D:\WINDOWS\System32\bthserv.dll
21:46:20.0250 0500	BthServ - ok
21:46:20.0328 0500	BTHUSB          (f06d4cb9918b462a84d9ac00027efc30) D:\WINDOWS\system32\Drivers\BTHUSB.sys
21:46:20.0343 0500	BTHUSB - ok
21:46:20.0406 0500	cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) D:\WINDOWS\system32\drivers\cbidf2k.sys
21:46:20.0421 0500	cbidf2k - ok
21:46:20.0453 0500	cd20xrnt - ok
21:46:20.0515 0500	Cdaudio         (c1b486a7658353d33a10cc15211a873b) D:\WINDOWS\system32\drivers\Cdaudio.sys
21:46:20.0531 0500	Cdaudio - ok
21:46:20.0734 0500	Cdfs            (cd7d5152df32b47f4e36f710b35aae02) D:\WINDOWS\system32\drivers\Cdfs.sys
21:46:20.0781 0500	Cdfs - ok
21:46:20.0937 0500	Cdrom           (af9c19b3100fe010496b1a27181fbf72) D:\WINDOWS\system32\DRIVERS\cdrom.sys
21:46:21.0046 0500	Cdrom - ok
21:46:21.0078 0500	Changer - ok
21:46:21.0156 0500	CiSvc           (b4e0a9b9064aa79ae188c0d953543520) D:\WINDOWS\system32\cisvc.exe
21:46:21.0171 0500	CiSvc - ok
21:46:21.0218 0500	ClipSrv         (1b11121083c32ea9a55abe547a23ff71) D:\WINDOWS\system32\clipsrv.exe
21:46:21.0250 0500	ClipSrv - ok
21:46:21.0343 0500	CmBatt          (4266be808f85826aedf3c64c1e240203) D:\WINDOWS\system32\DRIVERS\CmBatt.sys
21:46:21.0343 0500	CmBatt - ok
21:46:21.0375 0500	CmdIde - ok
21:46:21.0421 0500	Compbatt        (df1b1a24bf52d0ebc01ed4ece8979f50) D:\WINDOWS\system32\DRIVERS\compbatt.sys
21:46:21.0437 0500	Compbatt - ok
21:46:21.0468 0500	COMSysApp - ok
21:46:21.0531 0500	Cpqarray - ok
21:46:21.0609 0500	CryptSvc        (91723cd7c96c5854149f9cae820a90dd) D:\WINDOWS\System32\cryptsvc.dll
21:46:21.0640 0500	CryptSvc - ok
21:46:21.0656 0500	dac2w2k - ok
21:46:21.0687 0500	dac960nt - ok
21:46:21.0750 0500	DcomLaunch      (b5d78596effbeb82f3b86d9a002538e1) D:\WINDOWS\system32\rpcss.dll
21:46:21.0828 0500	DcomLaunch - ok
21:46:21.0875 0500	Dhcp            (4035e9d4cf275b08a200bf8ac7dc6454) D:\WINDOWS\System32\dhcpcsvc.dll
21:46:21.0906 0500	Dhcp - ok
21:46:21.0968 0500	Disk            (00ca44e4534865f8a3b64f7c0984bff0) D:\WINDOWS\system32\DRIVERS\disk.sys
21:46:22.0000 0500	Disk - ok
21:46:22.0031 0500	dmadmin - ok
21:46:22.0109 0500	dmboot          (3b809ffad55dcebdb156d5ca1bd3da65) D:\WINDOWS\system32\drivers\dmboot.sys
21:46:22.0265 0500	dmboot - ok
21:46:22.0328 0500	dmio            (27725b6501201c3080ba73048bce389a) D:\WINDOWS\system32\drivers\dmio.sys
21:46:22.0343 0500	dmio - ok
21:46:22.0390 0500	dmload          (e9317282a63ca4d188c0df5e09c6ac5f) D:\WINDOWS\system32\drivers\dmload.sys
21:46:22.0406 0500	dmload - ok
21:46:22.0468 0500	dmserver        (4adbb7593ec0115f7622c335b427c3da) D:\WINDOWS\System32\dmserver.dll
21:46:22.0500 0500	dmserver - ok
21:46:22.0593 0500	DMusic          (a6f881284ac1150e37d9ae47ff601267) D:\WINDOWS\system32\drivers\DMusic.sys
21:46:22.0593 0500	DMusic - ok
21:46:22.0640 0500	Dnscache        (d7ccd8ea85aa802afea26fc352e3736e) D:\WINDOWS\System32\dnsrslvr.dll
21:46:22.0671 0500	Dnscache - ok
21:46:22.0703 0500	dpti2o - ok
21:46:22.0750 0500	drmkaud         (1ed4dbbae9f5d558dbba4cc450e3eb2e) D:\WINDOWS\system32\drivers\drmkaud.sys
21:46:22.0781 0500	drmkaud - ok
21:46:22.0843 0500	ERSvc           (efd32591f9e29c00a5814df3f6d46683) D:\WINDOWS\System32\ersvc.dll
21:46:22.0859 0500	ERSvc - ok
21:46:22.0890 0500	Eventlog        (ed4e5391100287b9eabf8f2cf4b42235) D:\WINDOWS\system32\services.exe
21:46:22.0937 0500	Eventlog - ok
21:46:23.0015 0500	EventSystem     (878fa7b8ffbcffdaeb05f0484a99562d) D:\WINDOWS\system32\es.dll
21:46:23.0062 0500	EventSystem - ok
21:46:23.0125 0500	Fastfat         (3117f595e9615e04f05a54fc15a03b20) D:\WINDOWS\system32\drivers\Fastfat.sys
21:46:23.0140 0500	Fastfat - ok
21:46:23.0203 0500	FastUserSwitchingCompatibility (e659de1d3e1de67461ec5cc88eb460b2) D:\WINDOWS\System32\shsvcs.dll
21:46:23.0250 0500	FastUserSwitchingCompatibility - ok
21:46:23.0296 0500	Fdc             (ced2e8396a8838e59d8fd529c680e02c) D:\WINDOWS\system32\drivers\Fdc.sys
21:46:23.0343 0500	Fdc - ok
21:46:23.0406 0500	FETND5BV        (47d9ee42ae1659b220df7b1bb2720df1) D:\WINDOWS\system32\DRIVERS\fetnd5bv.sys
21:46:23.0437 0500	FETND5BV - ok
21:46:23.0500 0500	FETNDIS         (e9648254056bce81a85380c0c3647dc4) D:\WINDOWS\system32\DRIVERS\fetnd5.sys
21:46:23.0500 0500	FETNDIS - ok
21:46:23.0593 0500	Fips            (c5fb298257c0a6514ea17835e774ea0a) D:\WINDOWS\system32\drivers\Fips.sys
21:46:23.0609 0500	Fips - ok
21:46:23.0656 0500	Flpydisk        (0dd1de43115b93f4d85e889d7a86f548) D:\WINDOWS\system32\drivers\Flpydisk.sys
21:46:23.0656 0500	Flpydisk - ok
21:46:23.0703 0500	FltMgr          (3d234fb6d6ee875eb009864a299bea29) D:\WINDOWS\system32\DRIVERS\fltMgr.sys
21:46:23.0750 0500	FltMgr - ok
21:46:23.0781 0500	Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) D:\WINDOWS\system32\drivers\Fs_Rec.sys
21:46:23.0812 0500	Fs_Rec - ok
21:46:23.0843 0500	Ftdisk          (ed6d921d8ab423138fb35beee6d6a6cb) D:\WINDOWS\system32\DRIVERS\ftdisk.sys
21:46:23.0875 0500	Ftdisk - ok
21:46:23.0921 0500	Gpc             (c0f1d4a21de5a415df8170616703debf) D:\WINDOWS\system32\DRIVERS\msgpc.sys
21:46:23.0953 0500	Gpc - ok
21:46:24.0015 0500	HdAudAddService (2a013e7530beab6e569faa83f517e836) D:\WINDOWS\system32\drivers\HdAudio.sys
21:46:24.0046 0500	HdAudAddService - ok
21:46:24.0109 0500	HDAudBus        (3fcc124b6e08ee0e9351f717dd136939) D:\WINDOWS\system32\DRIVERS\HDAudBus.sys
21:46:24.0125 0500	HDAudBus - ok
21:46:24.0218 0500	helpsvc         (e1552a082e8c0fbb70b758f170b3aff8) D:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
21:46:24.0234 0500	helpsvc - ok
21:46:24.0265 0500	HidServ - ok
21:46:24.0328 0500	HidUsb          (1de6783b918f540149aa69943bdfeba8) D:\WINDOWS\system32\DRIVERS\hidusb.sys
21:46:24.0328 0500	HidUsb - ok
21:46:24.0375 0500	hpn - ok
21:46:24.0453 0500	HPZid412        (9f1d80908658eb7f1bf70809e0b51470) D:\WINDOWS\system32\DRIVERS\HPZid412.sys
21:46:24.0453 0500	HPZid412 - ok
21:46:24.0515 0500	HPZipr12        (f7e3e9d50f9cd3de28085a8fdaa0a1c3) D:\WINDOWS\system32\DRIVERS\HPZipr12.sys
21:46:24.0531 0500	HPZipr12 - ok
21:46:24.0609 0500	HPZius12        (cf1b7951b4ec8d13f3c93b74bb2b461b) D:\WINDOWS\system32\DRIVERS\HPZius12.sys
21:46:24.0625 0500	HPZius12 - ok
21:46:24.0703 0500	HSFHWAZL        (d8d9ded6dcc4e3aee633e6ba462b75c4) D:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
21:46:24.0765 0500	HSFHWAZL - ok
21:46:24.0843 0500	HSF_DPV         (2df42cf7300b14b15953218a2b32217c) D:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
21:46:24.0968 0500	HSF_DPV - ok
21:46:25.0031 0500	HTTP            (9f8b0f4276f618964fd118be4289b7cd) D:\WINDOWS\system32\Drivers\HTTP.sys
21:46:25.0046 0500	HTTP - ok
21:46:25.0109 0500	HTTPFilter      (2d303caf3c6dcfb246e74550dbed5880) D:\WINDOWS\System32\w3ssl.dll
21:46:25.0125 0500	HTTPFilter - ok
21:46:25.0203 0500	i2omgmt - ok
21:46:25.0234 0500	i2omp - ok
21:46:25.0312 0500	i8042prt        (2656fdfe0a7916c3a16f374454c55dd9) D:\WINDOWS\system32\DRIVERS\i8042prt.sys
21:46:25.0312 0500	i8042prt - ok
21:46:25.0375 0500	Imapi           (f8aa320c6a0409c0380e5d8a99d76ec6) D:\WINDOWS\system32\DRIVERS\imapi.sys
21:46:25.0375 0500	Imapi - ok
21:46:25.0421 0500	ImapiService    (bc74431e59fb0badf3e9162bd8d37b00) D:\WINDOWS\system32\imapi.exe
21:46:25.0468 0500	ImapiService - ok
21:46:25.0515 0500	ini910u - ok
21:46:25.0781 0500	IntcAzAudAddService (60d7460b07012d364ced11dd9fd83e1f) D:\WINDOWS\system32\drivers\RtkHDAud.sys
21:46:26.0125 0500	IntcAzAudAddService - ok
21:46:26.0234 0500	IntelIde - ok
21:46:26.0281 0500	intelppm        (78a353438791c6d04c64013a5abec6bd) D:\WINDOWS\system32\DRIVERS\intelppm.sys
21:46:26.0296 0500	intelppm - ok
21:46:26.0359 0500	Ip6Fw           (4448006b6bc60e6c027932cfc38d6855) D:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
21:46:26.0359 0500	Ip6Fw - ok
21:46:26.0406 0500	IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) D:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
21:46:26.0437 0500	IpFilterDriver - ok
21:46:26.0500 0500	IpInIp          (e1ec7f5da720b640cd8fb8424f1b14bb) D:\WINDOWS\system32\DRIVERS\ipinip.sys
21:46:26.0500 0500	IpInIp - ok
21:46:26.0578 0500	IpNat           (e2168cbc7098ffe963c6f23f472a3593) D:\WINDOWS\system32\DRIVERS\ipnat.sys
21:46:26.0609 0500	IpNat - ok
21:46:26.0671 0500	IPSec           (64537aa5c003a6afeee1df819062d0d1) D:\WINDOWS\system32\DRIVERS\ipsec.sys
21:46:26.0687 0500	IPSec - ok
21:46:26.0718 0500	IRENUM          (50708daa1b1cbb7d6ac1cf8f56a24410) D:\WINDOWS\system32\DRIVERS\irenum.sys
21:46:26.0734 0500	IRENUM - ok
21:46:26.0796 0500	isapnp          (01a9e68528f4f34e5702123d27c67bd4) D:\WINDOWS\system32\DRIVERS\isapnp.sys
21:46:26.0812 0500	isapnp - ok
21:46:26.0937 0500	JavaQuickStarterService (9dba73c2f1e76ec4cb837e67c5743596) D:\Program Files\Java\jre6\bin\jqs.exe
21:46:26.0953 0500	JavaQuickStarterService - ok
21:46:26.0984 0500	Kbdclass        (cc13db862f929ae33f64c3bedc01cd31) D:\WINDOWS\system32\DRIVERS\kbdclass.sys
21:46:27.0015 0500	Kbdclass - ok
21:46:27.0093 0500	kmixer          (ba5deda4d934e6288c2f66caf58d2562) D:\WINDOWS\system32\drivers\kmixer.sys
21:46:27.0125 0500	kmixer - ok
21:46:27.0187 0500	KSecDD          (674d3e5a593475915dc6643317192403) D:\WINDOWS\system32\drivers\KSecDD.sys
21:46:27.0234 0500	KSecDD - ok
21:46:27.0312 0500	lanmanserver    (85bd4942637cd12470f29f31595d04d3) D:\WINDOWS\System32\srvsvc.dll
21:46:27.0343 0500	lanmanserver - ok
21:46:27.0406 0500	lanmanworkstation (f8442b1e1a60aad8824cb540d2b20fb2) D:\WINDOWS\System32\wkssvc.dll
21:46:27.0453 0500	lanmanworkstation - ok
21:46:27.0484 0500	lbrtfdc - ok
21:46:27.0562 0500	LmHosts         (94136b41f35666254de29006dccc30fc) D:\WINDOWS\System32\lmhsvc.dll
21:46:27.0578 0500	LmHosts - ok
21:46:27.0656 0500	MBAMProtector   (fb097bbc1a18f044bd17bd2fccf97865) D:\WINDOWS\system32\drivers\mbam.sys
21:46:27.0687 0500	MBAMProtector - ok
21:46:27.0765 0500	MBAMService     (ba400ed640bca1eae5c727ae17c10207) D:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
21:46:27.0859 0500	MBAMService - ok
21:46:27.0921 0500	mdmxsdk         (e246a32c445056996074a397da56e815) D:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
21:46:27.0953 0500	mdmxsdk - ok
21:46:28.0015 0500	Messenger       (1d0ebf9edae8a61cbf56ed1ff8489fac) D:\WINDOWS\System32\msgsvc.dll
21:46:28.0031 0500	Messenger - ok
21:46:28.0093 0500	mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) D:\WINDOWS\system32\drivers\mnmdd.sys
21:46:28.0093 0500	mnmdd - ok
21:46:28.0156 0500	mnmsrvc         (db082aafd0859e28744e6629b64e0a91) D:\WINDOWS\system32\mnmsrvc.exe
21:46:28.0203 0500	mnmsrvc - ok
21:46:28.0250 0500	Modem           (15f33d12d604d0198ce5561f102cd9c5) D:\WINDOWS\system32\drivers\Modem.sys
21:46:28.0250 0500	Modem - ok
21:46:28.0296 0500	Mouclass        (69c12b99ae8b6b99ec314e9b99833728) D:\WINDOWS\system32\DRIVERS\mouclass.sys
21:46:28.0296 0500	Mouclass - ok
21:46:28.0359 0500	mouhid          (ecec1e6cd558ab80f944f31326e9d3b5) D:\WINDOWS\system32\DRIVERS\mouhid.sys
21:46:28.0359 0500	mouhid - ok
21:46:28.0406 0500	MountMgr        (65653f3b4477f3c63e68a9659f85ee2e) D:\WINDOWS\system32\drivers\MountMgr.sys
21:46:28.0437 0500	MountMgr - ok
21:46:28.0468 0500	mraid35x - ok
21:46:28.0843 0500	MRxDAV          (29414447eb5bde2f8397dc965dbb3156) D:\WINDOWS\system32\DRIVERS\mrxdav.sys
21:46:28.0906 0500	MRxDAV - ok
21:46:29.0000 0500	MRxSmb          (fb6c89bb3ce282b08bdb1e3c179e1c39) D:\WINDOWS\system32\DRIVERS\mrxsmb.sys
21:46:29.0046 0500	MRxSmb - ok
21:46:29.0125 0500	MSDTC           (fb68f196b215782333fa1467cbafc8b0) D:\WINDOWS\system32\msdtc.exe
21:46:29.0140 0500	MSDTC - ok
21:46:29.0218 0500	Msfs            (561b3a4333ca2dbdba28b5b956822519) D:\WINDOWS\system32\drivers\Msfs.sys
21:46:29.0250 0500	Msfs - ok
21:46:29.0281 0500	MSIServer - ok
21:46:29.0343 0500	MSKSSRV         (ae431a8dd3c1d0d0610cdbac16057ad0) D:\WINDOWS\system32\drivers\MSKSSRV.sys
21:46:29.0343 0500	MSKSSRV - ok
21:46:29.0390 0500	MSPCLOCK        (13e75fef9dfeb08eeded9d0246e1f448) D:\WINDOWS\system32\drivers\MSPCLOCK.sys
21:46:29.0390 0500	MSPCLOCK - ok
21:46:29.0437 0500	MSPQM           (1988a33ff19242576c3d0ef9ce785da7) D:\WINDOWS\system32\drivers\MSPQM.sys
21:46:29.0453 0500	MSPQM - ok
21:46:29.0500 0500	mssmbios        (469541f8bfd2b32659d5d463a6714bce) D:\WINDOWS\system32\DRIVERS\mssmbios.sys
21:46:29.0500 0500	mssmbios - ok
21:46:29.0546 0500	Mup             (82035e0f41c2dd05ae41d27fe6cf7de1) D:\WINDOWS\system32\drivers\Mup.sys
21:46:29.0562 0500	Mup - ok
21:46:29.0640 0500	NDIS            (558635d3af1c7546d26067d5d9b6959e) D:\WINDOWS\system32\drivers\NDIS.sys
21:46:29.0687 0500	NDIS - ok
21:46:29.0734 0500	NdisTapi        (08d43bbdacdf23f34d79e44ed35c1b4c) D:\WINDOWS\system32\DRIVERS\ndistapi.sys
21:46:29.0828 0500	NdisTapi - ok
21:46:29.0875 0500	Ndisuio         (34d6cd56409da9a7ed573e1c90a308bf) D:\WINDOWS\system32\DRIVERS\ndisuio.sys
21:46:29.0890 0500	Ndisuio - ok
21:46:29.0953 0500	NdisWan         (0b90e255a9490166ab368cd55a529893) D:\WINDOWS\system32\DRIVERS\ndiswan.sys
21:46:29.0968 0500	NdisWan - ok
21:46:30.0046 0500	NDProxy         (59fc3fb44d2669bc144fd87826bb571f) D:\WINDOWS\system32\drivers\NDProxy.sys
21:46:30.0046 0500	NDProxy - ok
21:46:30.0093 0500	NetBIOS         (3a2aca8fc1d7786902ca434998d7ceb4) D:\WINDOWS\system32\DRIVERS\netbios.sys
21:46:30.0093 0500	NetBIOS - ok
21:46:30.0156 0500	NetBT           (0c80e410cd2f47134407ee7dd19cc86b) D:\WINDOWS\system32\DRIVERS\netbt.sys
21:46:30.0171 0500	NetBT - ok
21:46:30.0234 0500	NetDDE          (8de3841527161abdfae5c44ab570f8e1) D:\WINDOWS\system32\netdde.exe
21:46:30.0281 0500	NetDDE - ok
21:46:30.0312 0500	NetDDEdsdm      (8de3841527161abdfae5c44ab570f8e1) D:\WINDOWS\system32\netdde.exe
21:46:30.0312 0500	NetDDEdsdm - ok
21:46:30.0375 0500	Netlogon        (f485fefc8cc4fd29243d800be5d275d1) D:\WINDOWS\system32\lsass.exe
21:46:30.0375 0500	Netlogon - ok
21:46:30.0437 0500	Netman          (d7714c689005359e16aafbc15f31aa3f) D:\WINDOWS\System32\netman.dll
21:46:30.0500 0500	Netman - ok
21:46:30.0531 0500	Nla             (d4abfcd86af9533ef94f291a1bb3e9a2) D:\WINDOWS\System32\mswsock.dll
21:46:30.0578 0500	Nla - ok
21:46:30.0640 0500	nm              (60cf8c7192b3614f240838ddbaa4a245) D:\WINDOWS\system32\DRIVERS\NMnt.sys
21:46:30.0671 0500	nm - ok
21:46:30.0750 0500	NPF             (b9730495e0cf674680121e34bd95a73b) D:\WINDOWS\system32\drivers\NPF.sys
21:46:30.0765 0500	NPF - ok
21:46:30.0812 0500	Npfs            (4f601bcb8f64ea3ac0994f98fed03f8e) D:\WINDOWS\system32\drivers\Npfs.sys
21:46:30.0828 0500	Npfs - ok
21:46:30.0906 0500	Ntfs            (19a811ef5f1ed5c926a028ce107ff1af) D:\WINDOWS\system32\drivers\Ntfs.sys
21:46:31.0000 0500	Ntfs - ok
21:46:31.0031 0500	NtLmSsp         (f485fefc8cc4fd29243d800be5d275d1) D:\WINDOWS\system32\lsass.exe
21:46:31.0031 0500	NtLmSsp - ok
21:46:31.0093 0500	NtmsSvc         (c8ce1566b0537c3f5f7ae1ca458a6697) D:\WINDOWS\system32\ntmssvc.dll
21:46:31.0187 0500	NtmsSvc - ok
21:46:31.0234 0500	Null            (73c1e1f395918bc2c6dd67af7591a3ad) D:\WINDOWS\system32\drivers\Null.sys
21:46:31.0234 0500	Null - ok
21:46:31.0296 0500	NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) D:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
21:46:31.0312 0500	NwlnkFlt - ok
21:46:31.0343 0500	NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) D:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
21:46:31.0359 0500	NwlnkFwd - ok
21:46:31.0484 0500	odserv          (e54aa592a65f317390eee386a8821692) D:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
21:46:31.0562 0500	odserv - ok
21:46:31.0687 0500	ose             (5a432a042dae460abe7199b758e8606c) D:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
21:46:31.0750 0500	ose - ok
21:46:31.0984 0500	Panda Software Controller (78b7642b0c51f24f0835c0226540d58b) D:\Program Files\Panda Security\Panda Antivirus Pro 2012\PsCtrls.exe
21:46:31.0984 0500	Panda Software Controller - ok
21:46:32.0062 0500	Parport         (2ff48d8fdc815a8492fb2bd81e6999c2) D:\WINDOWS\system32\drivers\Parport.sys
21:46:32.0078 0500	Parport - ok
21:46:32.0140 0500	PartMgr         (3334430c29dc338092f79c38ef7b4cd0) D:\WINDOWS\system32\drivers\PartMgr.sys
21:46:32.0140 0500	PartMgr - ok
21:46:32.0187 0500	ParVdm          (453ec2c2a20a1382f564541918520eeb) D:\WINDOWS\system32\drivers\ParVdm.sys
21:46:32.0187 0500	ParVdm - ok
21:46:32.0265 0500	pavboot         (55d654258a9c509b671310c314bd30b4) D:\WINDOWS\system32\Drivers\pavboot.sys
21:46:32.0281 0500	pavboot - ok
21:46:32.0375 0500	PAVFNSVR        (ae848c1613c8738bb83adab4f0845e84) D:\Program Files\Panda Security\Panda Antivirus Pro 2012\PavFnSvr.exe
21:46:32.0406 0500	PAVFNSVR - ok
21:46:32.0500 0500	PavProc         (a110035fdc4b8f8f0cd5e71d031274e1) D:\WINDOWS\system32\DRIVERS\PavProc.sys
21:46:32.0562 0500	PavProc - ok
21:46:32.0609 0500	PavPrSrv        (2ae3f6b23448443bbef5de207159213b) D:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
21:46:32.0625 0500	PavPrSrv - ok
21:46:32.0718 0500	PAVSRV          (97005413310966001fb6f4a5c503149c) D:\Program Files\Panda Security\Panda Antivirus Pro 2012\pavsrvx86.exe
21:46:33.0343 0500	PAVSRV - ok
21:46:33.0421 0500	PavTPK.sys - ok
21:46:33.0484 0500	PCI             (5fd05c92ec56f696eaa50b68cef1b84a) D:\WINDOWS\system32\DRIVERS\pci.sys
21:46:33.0515 0500	PCI - ok
21:46:33.0562 0500	PCIDump - ok
21:46:33.0625 0500	PCIIde          (548cf2d6369eae441a4c6baa75bc4f0a) D:\WINDOWS\system32\DRIVERS\pciide.sys
21:46:33.0625 0500	PCIIde - ok
21:46:33.0687 0500	Pcmcia          (2849812217ecec059cb45f80eb6e52d4) D:\WINDOWS\system32\drivers\Pcmcia.sys
21:46:33.0718 0500	Pcmcia - ok
21:46:33.0750 0500	PDCOMP - ok
21:46:33.0765 0500	PDFRAME - ok
21:46:33.0796 0500	PDRELI - ok
21:46:33.0812 0500	PDRFRAME - ok
21:46:33.0843 0500	perc2 - ok
21:46:33.0875 0500	perc2hib - ok
21:46:34.0000 0500	PlugPlay        (ed4e5391100287b9eabf8f2cf4b42235) D:\WINDOWS\system32\services.exe
21:46:34.0000 0500	PlugPlay - ok
21:46:34.0093 0500	Pml Driver HPZ12 (9d84376931440f3679beef2a414fa493) D:\WINDOWS\system32\HPZipm12.exe
21:46:34.0140 0500	Pml Driver HPZ12 - ok
21:46:34.0203 0500	PolicyAgent     (f485fefc8cc4fd29243d800be5d275d1) D:\WINDOWS\system32\lsass.exe
21:46:34.0203 0500	PolicyAgent - ok
21:46:34.0250 0500	PptpMiniport    (1c5cc65aac0783c344f16353e60b72ac) D:\WINDOWS\system32\DRIVERS\raspptp.sys
21:46:34.0281 0500	PptpMiniport - ok
21:46:34.0312 0500	ProtectedStorage (f485fefc8cc4fd29243d800be5d275d1) D:\WINDOWS\system32\lsass.exe
21:46:34.0312 0500	ProtectedStorage - ok
21:46:34.0343 0500	PSched          (48671f327553dcf1d27f6197f622a668) D:\WINDOWS\system32\DRIVERS\psched.sys
21:46:34.0359 0500	PSched - ok
21:46:34.0437 0500	PSIMSVC         (196c450f2779d0b462c444da4906ea7f) D:\Program Files\Panda Security\Panda Antivirus Pro 2012\PsImSvc.exe
21:46:34.0984 0500	PSIMSVC - ok
21:46:35.0062 0500	PskSvcRetail    (341457b79b3fc31a80c346c767045879) D:\Program Files\Panda Security\Panda Antivirus Pro 2012\PskSvc.exe
21:46:35.0078 0500	PskSvcRetail - ok
21:46:35.0125 0500	Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) D:\WINDOWS\system32\DRIVERS\ptilink.sys
21:46:35.0453 0500	Ptilink - ok
21:46:35.0562 0500	PxHelp20        (0c8da0a8b0d227319c285e0eae65defd) D:\WINDOWS\system32\Drivers\PxHelp20.sys
21:46:35.0562 0500	PxHelp20 - ok
21:46:35.0593 0500	ql1080 - ok
21:46:35.0625 0500	Ql10wnt - ok
21:46:35.0656 0500	ql12160 - ok
21:46:35.0687 0500	ql1240 - ok
21:46:35.0718 0500	ql1280 - ok
21:46:35.0812 0500	RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) D:\WINDOWS\system32\DRIVERS\rasacd.sys
21:46:35.0812 0500	RasAcd - ok
21:46:35.0875 0500	RasAuto         (5ed5af86ee8cc13f6392b37a81af5d5b) D:\WINDOWS\System32\rasauto.dll
21:46:35.0906 0500	RasAuto - ok
21:46:35.0968 0500	Rasl2tp         (98faeb4a4dcf812ba1c6fca4aa3e115c) D:\WINDOWS\system32\DRIVERS\rasl2tp.sys
21:46:35.0984 0500	Rasl2tp - ok
21:46:36.0062 0500	RasMan          (aaa8287f49e398a297b59f01f1519f57) D:\WINDOWS\System32\rasmans.dll
21:46:36.0109 0500	RasMan - ok
21:46:36.0156 0500	RasPppoe        (7306eeed8895454cbed4669be9f79faa) D:\WINDOWS\system32\DRIVERS\raspppoe.sys
21:46:36.0171 0500	RasPppoe - ok
21:46:36.0203 0500	Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) D:\WINDOWS\system32\DRIVERS\raspti.sys
21:46:36.0218 0500	Raspti - ok
21:46:36.0250 0500	Rdbss           (03b965b1ca47f6ef60eb5e51cb50e0af) D:\WINDOWS\system32\DRIVERS\rdbss.sys
21:46:36.0296 0500	Rdbss - ok
21:46:36.0328 0500	RDPCDD          (4912d5b403614ce99c28420f75353332) D:\WINDOWS\system32\DRIVERS\RDPCDD.sys
21:46:36.0328 0500	RDPCDD - ok
21:46:36.0421 0500	rdpdr           (a2cae2c60bc37e0751ef9dda7ceaf4ad) D:\WINDOWS\system32\DRIVERS\rdpdr.sys
21:46:36.0437 0500	rdpdr - ok
21:46:36.0500 0500	RDPWD           (b54cd38a9ebfbf2b3561426e3fe26f62) D:\WINDOWS\system32\drivers\RDPWD.sys
21:46:36.0531 0500	RDPWD - ok
21:46:36.0593 0500	RDSessMgr       (ee93399bc7cd84624ab7890dd7d8b296) D:\WINDOWS\system32\sessmgr.exe
21:46:36.0640 0500	RDSessMgr - ok
21:46:36.0687 0500	redbook         (bddcece9acdad26841c987d10376f6f7) D:\WINDOWS\system32\DRIVERS\redbook.sys
21:46:36.0687 0500	redbook - ok
21:46:36.0781 0500	RemoteAccess    (6a9cb0c18b634b187b8b5a32b0fc2773) D:\WINDOWS\System32\mprdim.dll
21:46:36.0828 0500	RemoteAccess - ok
21:46:36.0890 0500	RemoteRegistry  (a19bfed61736127db5b8b815afb35190) D:\WINDOWS\system32\regsvc.dll
21:46:36.0906 0500	RemoteRegistry - ok
21:46:37.0015 0500	RFCOMM          (99c4b74981a1413f142a3903130088cb) D:\WINDOWS\system32\DRIVERS\rfcomm.sys
21:46:37.0015 0500	RFCOMM - ok
21:46:37.0125 0500	RpcLocator      (6be739f700580f23740efa1d1b57c0a5) D:\WINDOWS\system32\locator.exe
21:46:37.0140 0500	RpcLocator - ok
21:46:37.0187 0500	RpcSs           (b5d78596effbeb82f3b86d9a002538e1) D:\WINDOWS\system32\rpcss.dll
21:46:37.0203 0500	RpcSs - ok
21:46:37.0359 0500	RSVP            (9acee3313020a01235336c2a483afd1a) D:\WINDOWS\system32\rsvp.exe
21:46:37.0390 0500	RSVP - ok
21:46:37.0500 0500	S3GIGP          (0c963b81c842b49cc87123f165224e5a) D:\WINDOWS\system32\DRIVERS\S3gIGPm.sys
21:46:37.0593 0500	S3GIGP - ok
21:46:37.0671 0500	SamSs           (f485fefc8cc4fd29243d800be5d275d1) D:\WINDOWS\system32\lsass.exe
21:46:37.0671 0500	SamSs - ok
21:46:37.0718 0500	SCardSvr        (8df7262f72c3ab75486d21ba78b9f749) D:\WINDOWS\System32\SCardSvr.exe
21:46:37.0750 0500	SCardSvr - ok
21:46:37.0843 0500	Schedule        (e5f1c9ead4c6617acd40ca90882cc7d4) D:\WINDOWS\system32\schedsvc.dll
21:46:37.0875 0500	Schedule - ok
21:46:37.0937 0500	Secdrv          (90a3935d05b494a5a39d37e71f09a677) D:\WINDOWS\system32\DRIVERS\secdrv.sys
21:46:37.0937 0500	Secdrv - ok
21:46:38.0000 0500	seclogon        (60255ac385a08aaf4897ab4a42483500) D:\WINDOWS\System32\seclogon.dll
21:46:38.0000 0500	seclogon - ok
21:46:38.0078 0500	SENS            (1398df553e701c7948188a7d4e347a18) D:\WINDOWS\system32\sens.dll
21:46:38.0093 0500	SENS - ok
21:46:38.0140 0500	Serial          (859bc6f8c3d58cfda9181e9926c7ddb9) D:\WINDOWS\system32\drivers\Serial.sys
21:46:38.0156 0500	Serial - ok
21:46:38.0187 0500	Sfloppy         (0d13b6df6e9e101013a7afb0ce629fe0) D:\WINDOWS\system32\drivers\Sfloppy.sys
21:46:38.0218 0500	Sfloppy - ok
21:46:38.0281 0500	SharedAccess    (ddc87adf808d192a5212cc8a1e7f8e87) D:\WINDOWS\System32\ipnathlp.dll
21:46:38.0359 0500	SharedAccess - ok
21:46:38.0421 0500	ShellHWDetection (e659de1d3e1de67461ec5cc88eb460b2) D:\WINDOWS\System32\shsvcs.dll
21:46:38.0421 0500	ShellHWDetection - ok
21:46:38.0500 0500	ShldDrv         (32d6f7632234f0354c79e915ca4613d4) D:\WINDOWS\system32\DRIVERS\ShlDrv51.sys
21:46:38.0515 0500	ShldDrv - ok
21:46:38.0546 0500	Simbad - ok
21:46:38.0578 0500	Sparrow - ok
21:46:38.0656 0500	splitter        (0ce218578fff5f4f7e4201539c45c78f) D:\WINDOWS\system32\drivers\splitter.sys
21:46:38.0656 0500	splitter - ok
21:46:38.0718 0500	Spooler         (da81ec57acd4cdc3d4c51cf3d409af9f) D:\WINDOWS\system32\spoolsv.exe
21:46:38.0734 0500	Spooler - ok
21:46:38.0812 0500	sr              (6145ca23bccda679a772ec0af42d6eb5) D:\WINDOWS\system32\DRIVERS\sr.sys
21:46:38.0828 0500	sr - ok
21:46:38.0890 0500	srservice       (f309d9894fca821e3c2f557a8032d47a) D:\WINDOWS\system32\srsvc.dll
21:46:38.0937 0500	srservice - ok
21:46:39.0031 0500	Srv             (7a4f147cc6b133f905f6e65e2f8669fb) D:\WINDOWS\system32\DRIVERS\srv.sys
21:46:39.0078 0500	Srv - ok
21:46:39.0156 0500	sscdbus         (2d4027c46b4c6e45875e3c4ba3f67492) D:\WINDOWS\system32\DRIVERS\sscdbus.sys
21:46:39.0171 0500	sscdbus - ok
21:46:39.0203 0500	sscdmdfl        (f548f1eba107bc19e91189e6a460bd0e) D:\WINDOWS\system32\DRIVERS\sscdmdfl.sys
21:46:39.0218 0500	sscdmdfl - ok
21:46:39.0343 0500	sscdmdm         (71d348d53597379dfe1de255d70af13c) D:\WINDOWS\system32\DRIVERS\sscdmdm.sys
21:46:39.0375 0500	sscdmdm - ok
21:46:39.0437 0500	SSDPSRV         (bb754c4be0b18f0faf01a7ebde7025c4) D:\WINDOWS\System32\ssdpsrv.dll
21:46:39.0468 0500	SSDPSRV - ok
21:46:39.0531 0500	StarOpen        (306521935042fc0a6988d528643619b3) D:\WINDOWS\system32\drivers\StarOpen.sys
21:46:39.0562 0500	StarOpen - ok
21:46:39.0703 0500	stisvc          (cb07cd1f566a4898a4846e29b17e1a6d) D:\WINDOWS\system32\wiaservc.dll
21:46:39.0765 0500	stisvc - ok
21:46:39.0843 0500	swenum          (03c1bae4766e2450219d20b993d6e046) D:\WINDOWS\system32\DRIVERS\swenum.sys
21:46:39.0843 0500	swenum - ok
21:46:39.0921 0500	swmidi          (94abc808fc4b6d7d2bbf42b85e25bb4d) D:\WINDOWS\system32\drivers\swmidi.sys
21:46:39.0937 0500	swmidi - ok
21:46:39.0968 0500	SwPrv - ok
21:46:40.0000 0500	symc810 - ok
21:46:40.0031 0500	symc8xx - ok
21:46:40.0062 0500	sym_hi - ok
21:46:40.0109 0500	sym_u3 - ok
21:46:40.0187 0500	sysaudio        (650ad082d46bac0e64c9c0e0928492fd) D:\WINDOWS\system32\drivers\sysaudio.sys
21:46:40.0203 0500	sysaudio - ok
21:46:40.0265 0500	SysmonLog       (5893b3b5b966233cae426b2fedc34ddf) D:\WINDOWS\system32\smlogsvc.exe
21:46:40.0312 0500	SysmonLog - ok
21:46:40.0390 0500	TapiSrv         (da38c22eb4a3f9a15b9b9b885f4f5251) D:\WINDOWS\System32\tapisrv.dll
21:46:40.0453 0500	TapiSrv - ok
21:46:40.0578 0500	Tcpip           (2a5554fc5b1e04e131230e3ce035c3f9) D:\WINDOWS\system32\DRIVERS\tcpip.sys
21:46:40.0640 0500	Tcpip - ok
21:46:40.0750 0500	TDPIPE          (38d437cf2d98965f239b0abcd66dcb0f) D:\WINDOWS\system32\drivers\TDPIPE.sys
21:46:40.0765 0500	TDPIPE - ok
21:46:40.0812 0500	TDTCP           (ed0580af02502d00ad8c4c066b156be9) D:\WINDOWS\system32\drivers\TDTCP.sys
21:46:40.0828 0500	TDTCP - ok
21:46:40.0875 0500	TermDD          (a540a99c281d933f3d69d55e48727f47) D:\WINDOWS\system32\DRIVERS\termdd.sys
21:46:40.0890 0500	TermDD - ok
21:46:41.0328 0500	TermService     (2c28157229925280916b3041ccc5fe4b) D:\WINDOWS\System32\termsrv.dll
21:46:41.0453 0500	TermService - ok
21:46:41.0593 0500	Themes          (e659de1d3e1de67461ec5cc88eb460b2) D:\WINDOWS\System32\shsvcs.dll
21:46:41.0609 0500	Themes - ok
21:46:41.0703 0500	TlntSvr         (cac717418ccdf09110f406108017bfa6) D:\WINDOWS\system32\tlntsvr.exe
21:46:41.0718 0500	TlntSvr - ok
21:46:41.0750 0500	TosIde - ok
21:46:42.0703 0500	TPSrv           (eacbb8e02114329dddece593aedc61fe) D:\Program Files\Panda Security\Panda Antivirus Pro 2012\TPSrv.exe
21:46:42.0703 0500	TPSrv - ok
21:46:42.0937 0500	TrkWks          (facbc230aa93401d2fe88976e7cb7369) D:\WINDOWS\system32\trkwks.dll
21:46:42.0968 0500	TrkWks - ok
21:46:43.0078 0500	uagp35          (49c805d42d75eddc9b6a7130999c9054) D:\WINDOWS\system32\DRIVERS\uagp35.sys
21:46:43.0078 0500	uagp35 - ok
21:46:43.0234 0500	Udfs            (12f70256f140cd7d52c58c7048fde657) D:\WINDOWS\system32\drivers\Udfs.sys
21:46:43.0281 0500	Udfs - ok
21:46:43.0312 0500	ultra - ok
21:46:43.0531 0500	Update          (ced744117e91bdc0beb810f7d8608183) D:\WINDOWS\system32\DRIVERS\update.sys
21:46:43.0609 0500	Update - ok
21:46:43.0687 0500	upnphost        (8383e639d93083a91b2804ac482e4ccf) D:\WINDOWS\System32\upnphost.dll
21:46:43.0796 0500	upnphost - ok
21:46:43.0843 0500	UPS             (576a2c38cf3904f2ca1107f922288435) D:\WINDOWS\System32\ups.exe
21:46:43.0875 0500	UPS - ok
21:46:43.0953 0500	usbccgp         (bffd9f120cc63bcbaa3d840f3eef9f79) D:\WINDOWS\system32\DRIVERS\usbccgp.sys
21:46:43.0953 0500	usbccgp - ok
21:46:44.0015 0500	usbehci         (15e993ba2f6946b2bfbbfcd30398621e) D:\WINDOWS\system32\DRIVERS\usbehci.sys
21:46:44.0031 0500	usbehci - ok
21:46:44.0062 0500	usbhub          (c72f40947f92cea56a8fb532edf025f1) D:\WINDOWS\system32\DRIVERS\usbhub.sys
21:46:44.0078 0500	usbhub - ok
21:46:44.0156 0500	usbprint        (a42369b7cd8886cd7c70f33da6fcbcf5) D:\WINDOWS\system32\DRIVERS\usbprint.sys
21:46:44.0156 0500	usbprint - ok
21:46:44.0312 0500	USBSTOR         (6cd7b22193718f1d17a47a1cd6d37e75) D:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
21:46:44.0328 0500	USBSTOR - ok
21:46:44.0390 0500	usbuhci         (f8fd1400092e23c8f2f31406ef06167b) D:\WINDOWS\system32\DRIVERS\usbuhci.sys
21:46:44.0406 0500	usbuhci - ok
21:46:44.0453 0500	VgaSave         (8a60edd72b4ea5aea8202daf0e427925) D:\WINDOWS\System32\drivers\vga.sys
21:46:44.0500 0500	VgaSave - ok
21:46:44.0531 0500	ViaIde          (59cb1338ad3654417bea49636457f65d) D:\WINDOWS\system32\DRIVERS\viaide.sys
21:46:44.0546 0500	ViaIde - ok
21:46:44.0593 0500	VolSnap         (ecd173739b8ec10a814cc18653df5a36) D:\WINDOWS\system32\drivers\VolSnap.sys
21:46:44.0625 0500	VolSnap - ok
21:46:44.0781 0500	VSS             (fec1e19b91972105044960b23c442949) D:\WINDOWS\System32\vssvc.exe
21:46:44.0843 0500	VSS - ok
21:46:44.0953 0500	W32Time         (000a0d516a2e20441e77aea44e46b19b) D:\WINDOWS\system32\w32time.dll
21:46:45.0015 0500	W32Time - ok
21:46:45.0187 0500	Wanarp          (984ef0b9788abf89974cfed4bfbaacbc) D:\WINDOWS\system32\DRIVERS\wanarp.sys
21:46:45.0203 0500	Wanarp - ok
21:46:45.0234 0500	WDICA - ok
21:46:45.0312 0500	wdmaud          (efd235ca22b57c81118c1aeb4798f1c1) D:\WINDOWS\system32\drivers\wdmaud.sys
21:46:45.0328 0500	wdmaud - ok
21:46:45.0500 0500	WebClient       (af9f5e017fb9b7d6b123b0acdb0b69df) D:\WINDOWS\System32\webclnt.dll
21:46:45.0531 0500	WebClient - ok
21:46:45.0687 0500	winachsf        (86723ea860346fbe5490835344cad939) D:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
21:46:45.0765 0500	winachsf - ok
21:46:45.0890 0500	winmgmt         (482435b2a2de8e06c83c3b1eb3237c2c) D:\WINDOWS\system32\wbem\WMIsvc.dll
21:46:45.0953 0500	winmgmt - ok
21:46:46.0062 0500	WmdmPmSN        (c51b4a5c05a5475708e3c81c7765b71d) D:\WINDOWS\system32\MsPMSNSv.dll
21:46:46.0093 0500	WmdmPmSN - ok
21:46:46.0218 0500	Wmi             (c5507cdda7fb1141b296fd0b9a10130e) D:\WINDOWS\System32\advapi32.dll
21:46:46.0437 0500	Wmi - ok
21:46:46.0515 0500	WmiApSrv        (45e43704611d7c2202a180ff87e63550) D:\WINDOWS\system32\wbem\wmiapsrv.exe
21:46:46.0546 0500	WmiApSrv - ok
21:46:46.0640 0500	WpdUsb          (cf4def1bf66f06964dc0d91844239104) D:\WINDOWS\system32\DRIVERS\wpdusb.sys
21:46:46.0640 0500	WpdUsb - ok
21:46:46.0750 0500	wscsvc          (390d0951271908c46eecf89893876424) D:\WINDOWS\system32\wscsvc.dll
21:46:46.0796 0500	wscsvc - ok
21:46:46.0859 0500	wuauserv        (40c600488ff127953aa2f1835e5fd433) D:\WINDOWS\system32\wuauserv.dll
21:46:46.0890 0500	wuauserv - ok
21:46:46.0953 0500	WudfPf          (f15feafffbb3644ccc80c5da584e6311) D:\WINDOWS\system32\DRIVERS\WudfPf.sys
21:46:46.0968 0500	WudfPf - ok
21:46:47.0046 0500	WudfRd          (28b524262bce6de1f7ef9f510ba3985b) D:\WINDOWS\system32\DRIVERS\wudfrd.sys
21:46:47.0078 0500	WudfRd - ok
21:46:47.0140 0500	WudfSvc         (05231c04253c5bc30b26cbaae680ed89) D:\WINDOWS\System32\WUDFSvc.dll
21:46:47.0156 0500	WudfSvc - ok
21:46:47.0234 0500	WZCSVC          (98a8014dbe72349f73462262cf493574) D:\WINDOWS\System32\wzcsvc.dll
21:46:47.0296 0500	WZCSVC - ok
21:46:47.0343 0500	xmlprov         (e3c9ef5bcc9eb171bd81051cd19bded7) D:\WINDOWS\System32\xmlprov.dll
21:46:47.0375 0500	xmlprov - ok
21:46:47.0468 0500	MBR (0x1B8)     (32052574bf9f325ae309abc7bfd04460) \Device\Harddisk0\DR0
21:46:47.0859 0500	\Device\Harddisk0\DR0 - ok
21:46:47.0890 0500	MBR (0x1B8)     (7a3e8e0a4f525e09d88033b04a731b81) \Device\Harddisk1\DR3
21:46:49.0718 0500	\Device\Harddisk1\DR3 - ok
21:46:49.0750 0500	MBR (0x1B8)     (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR7
21:46:53.0765 0500	\Device\Harddisk2\DR7 - ok
21:46:53.0812 0500	Boot (0x1200)   (33cf2bd3d7c85462d1de8f963d4340d9) \Device\Harddisk0\DR0\Partition0
21:46:53.0843 0500	\Device\Harddisk0\DR0\Partition0 - ok
21:46:53.0875 0500	Boot (0x1200)   (68205e6272aa863d4a80a2aeb5448b23) \Device\Harddisk0\DR0\Partition1
21:46:53.0890 0500	\Device\Harddisk0\DR0\Partition1 - ok
21:46:53.0906 0500	Boot (0x1200)   (8866376da995e815a443dd031af8bebd) \Device\Harddisk1\DR3\Partition0
21:46:53.0906 0500	\Device\Harddisk1\DR3\Partition0 - ok
21:46:53.0937 0500	Boot (0x1200)   (8e19cb53764fdba2a9a450484408b96b) \Device\Harddisk2\DR7\Partition0
21:46:53.0937 0500	\Device\Harddisk2\DR7\Partition0 - ok
21:46:53.0953 0500	============================================================
21:46:53.0953 0500	Scan finished
21:46:53.0953 0500	============================================================
21:46:54.0000 4088	Detected object count: 1
21:46:54.0000 4088	Actual detected object count: 1
21:47:48.0984 4088	D:\WINDOWS\system32\DRIVERS\ACPI.sys - copied to quarantine
21:47:50.0750 4088	Backup copy found, using it..
21:47:50.0796 4088	D:\WINDOWS\system32\DRIVERS\ACPI.sys - will be cured on reboot
21:47:50.0796 4088	ACPI ( Virus.Win32.Rloader.a ) - User select action: Cure 
21:48:08.0312 3420	Deinitialize success