15:37:56.0531 3360  TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35
15:37:56.0859 3360  ============================================================
15:37:56.0859 3360  Current date / time: 2012/12/13 15:37:56.0859
15:37:56.0859 3360  SystemInfo:
15:37:56.0859 3360  
15:37:56.0859 3360  OS Version: 5.1.2600 ServicePack: 2.0
15:37:56.0859 3360  Product type: Workstation
15:37:56.0859 3360  ComputerName: LAPTOP-B7DCE933
15:37:56.0859 3360  UserName: Marlena Hajman
15:37:56.0859 3360  Windows directory: C:\WINDOWS
15:37:56.0859 3360  System windows directory: C:\WINDOWS
15:37:56.0859 3360  Processor architecture: Intel x86
15:37:56.0859 3360  Number of processors: 1
15:37:56.0859 3360  Page size: 0x1000
15:37:56.0859 3360  Boot type: Normal boot
15:37:56.0859 3360  ============================================================
15:37:58.0250 3360  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
15:37:58.0250 3360  ============================================================
15:37:58.0250 3360  \Device\Harddisk0\DR0:
15:37:58.0250 3360  MBR partitions:
15:37:58.0250 3360  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x61A7927
15:37:58.0281 3360  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x61A79A5, BlocksNum 0x61A7927
15:37:58.0296 3360  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0xC34F30B, BlocksNum 0x66C58F5
15:37:58.0296 3360  ============================================================
15:37:58.0328 3360  C: <-> \Device\Harddisk0\DR0\Partition1
15:37:58.0359 3360  D: <-> \Device\Harddisk0\DR0\Partition2
15:37:58.0390 3360  E: <-> \Device\Harddisk0\DR0\Partition3
15:37:58.0406 3360  ============================================================
15:37:58.0406 3360  Initialize success
15:37:58.0406 3360  ============================================================
15:38:22.0656 3828  ============================================================
15:38:22.0656 3828  Scan started
15:38:22.0656 3828  Mode: Manual; 
15:38:22.0656 3828  ============================================================
15:38:23.0015 3828  ================ Scan system memory ========================
15:38:23.0015 3828  System memory - ok
15:38:23.0031 3828  ================ Scan services =============================
15:38:23.0125 3828  Abiosdsk - ok
15:38:23.0140 3828  abp480n5 - ok
15:38:23.0187 3828  [ 2DF89FE8204E56479C10ED6F9DEF4A4C ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:38:23.0187 3828  Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\ACPI.sys. Real md5: 2DF89FE8204E56479C10ED6F9DEF4A4C, Fake md5: A966410ECF83B81F3B0B8E07A71957D4
15:38:23.0187 3828  ACPI ( Virus.Win32.Rloader.a ) - infected
15:38:23.0187 3828  ACPI - detected Virus.Win32.Rloader.a (0)
15:38:23.0218 3828  [ 66A42B7DB194E24B973BBCCE840A0F3F ] ACPIEC          C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
15:38:23.0218 3828  ACPIEC - ok
15:38:23.0218 3828  adpu160m - ok
15:38:23.0250 3828  [ 841F385C6CFAF66B58FBD898722BB4F0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
15:38:23.0250 3828  aec - ok
15:38:23.0265 3828  [ 5AC495F4CB807B2B98AD2AD591E6D92E ] AFD             C:\WINDOWS\System32\drivers\afd.sys
15:38:23.0265 3828  AFD - ok
15:38:23.0265 3828  Aha154x - ok
15:38:23.0281 3828  aic78u2 - ok
15:38:23.0281 3828  aic78xx - ok
15:38:23.0312 3828  [ F79B5C5B0A77A134C5671992335D1409 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
15:38:23.0328 3828  Alerter - ok
15:38:23.0343 3828  [ 9D12991BC6B6C5C0FBAB4C06E7073DF1 ] ALG             C:\WINDOWS\System32\alg.exe
15:38:23.0359 3828  ALG - ok
15:38:23.0359 3828  AliIde - ok
15:38:23.0359 3828  amsint - ok
15:38:23.0390 3828  [ 8D60B308D061DA209CC271D9B480468C ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
15:38:23.0390 3828  AppMgmt - ok
15:38:23.0437 3828  [ 6D5F95602B8D0D994D31A864872B38EF ] AR5211          C:\WINDOWS\system32\DRIVERS\ar5211.sys
15:38:23.0437 3828  AR5211 - ok
15:38:23.0484 3828  [ F0D692B0BFFB46E30EB3CEA168BBC49F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys
15:38:23.0484 3828  Arp1394 - ok
15:38:23.0484 3828  asc - ok
15:38:23.0500 3828  asc3350p - ok
15:38:23.0500 3828  asc3550 - ok
15:38:23.0531 3828  [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:38:23.0531 3828  AsyncMac - ok
15:38:23.0562 3828  [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
15:38:23.0562 3828  atapi - ok
15:38:23.0562 3828  Atdisk - ok
15:38:23.0578 3828  [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:38:23.0578 3828  Atmarpc - ok
15:38:23.0625 3828  [ 18BFF5EBA35F2562C5AA03EB9C6BA29E ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
15:38:23.0625 3828  AudioSrv - ok
15:38:23.0671 3828  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
15:38:23.0671 3828  audstub - ok
15:38:23.0703 3828  [ F96038AA1EC4013A93D2420FC689D1E9 ] b57w2k          C:\WINDOWS\system32\DRIVERS\b57xp32.sys
15:38:23.0703 3828  b57w2k - ok
15:38:23.0734 3828  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
15:38:23.0734 3828  Beep - ok
15:38:23.0765 3828  [ 210830D2497FEF78694076179AF8C795 ] Browser         C:\WINDOWS\System32\browser.dll
15:38:23.0765 3828  Browser - ok
15:38:23.0781 3828  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
15:38:23.0796 3828  cbidf2k - ok
15:38:23.0828 3828  [ 6163ED60B684BAB19D3352AB22FC48B2 ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
15:38:23.0828 3828  CCDECODE - ok
15:38:23.0828 3828  cd20xrnt - ok
15:38:23.0843 3828  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
15:38:23.0843 3828  Cdaudio - ok
15:38:23.0890 3828  [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
15:38:23.0890 3828  Cdfs - ok
15:38:23.0937 3828  [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:38:23.0937 3828  Cdrom - ok
15:38:23.0937 3828  Changer - ok
15:38:23.0968 3828  [ B4E0A9B9064AA79AE188C0D953543520 ] CiSvc           C:\WINDOWS\system32\cisvc.exe
15:38:23.0968 3828  CiSvc - ok
15:38:23.0968 3828  [ 1B11121083C32EA9A55ABE547A23FF71 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
15:38:23.0968 3828  ClipSrv - ok
15:38:24.0015 3828  [ 4266BE808F85826AEDF3C64C1E240203 ] CmBatt          C:\WINDOWS\system32\DRIVERS\CmBatt.sys
15:38:24.0015 3828  CmBatt - ok
15:38:24.0031 3828  CmdIde - ok
15:38:24.0031 3828  [ DF1B1A24BF52D0EBC01ED4ECE8979F50 ] Compbatt        C:\WINDOWS\system32\DRIVERS\compbatt.sys
15:38:24.0031 3828  Compbatt - ok
15:38:24.0046 3828  COMSysApp - ok
15:38:24.0046 3828  Cpqarray - ok
15:38:24.0078 3828  [ 91723CD7C96C5854149F9CAE820A90DD ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
15:38:24.0093 3828  CryptSvc - ok
15:38:24.0093 3828  dac2w2k - ok
15:38:24.0093 3828  dac960nt - ok
15:38:24.0125 3828  [ 346E5B19FC986FE7185A0C2C43593722 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
15:38:24.0171 3828  DcomLaunch - ok
15:38:24.0187 3828  [ 94B49F2D487A7D4A79B3E96B6D5685B0 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
15:38:24.0203 3828  Dhcp - ok
15:38:24.0250 3828  [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
15:38:24.0250 3828  Disk - ok
15:38:24.0250 3828  dmadmin - ok
15:38:24.0312 3828  [ 3B809FFAD55DCEBDB156D5CA1BD3DA65 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
15:38:24.0328 3828  dmboot - ok
15:38:24.0343 3828  [ 27725B6501201C3080BA73048BCE389A ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
15:38:24.0343 3828  dmio - ok
15:38:24.0375 3828  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
15:38:24.0375 3828  dmload - ok
15:38:24.0390 3828  [ 4ADBB7593EC0115F7622C335B427C3DA ] dmserver        C:\WINDOWS\System32\dmserver.dll
15:38:24.0390 3828  dmserver - ok
15:38:24.0421 3828  [ A6F881284AC1150E37D9AE47FF601267 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
15:38:24.0437 3828  DMusic - ok
15:38:24.0453 3828  [ F61C204EBCAA1D6B5FB5DFE7034741F3 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
15:38:24.0453 3828  Dnscache - ok
15:38:24.0453 3828  dpti2o - ok
15:38:24.0468 3828  [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
15:38:24.0468 3828  drmkaud - ok
15:38:24.0484 3828  [ EFD32591F9E29C00A5814DF3F6D46683 ] ERSvc           C:\WINDOWS\System32\ersvc.dll
15:38:24.0484 3828  ERSvc - ok
15:38:24.0515 3828  [ 3DA8D964D2CC12EF8E8C342471A37917 ] Eventlog        C:\WINDOWS\system32\services.exe
15:38:24.0515 3828  Eventlog - ok
15:38:24.0546 3828  [ DC54CC79E1FAEFA480A8117C9BF105E1 ] EventSystem     C:\WINDOWS\system32\es.dll
15:38:24.0546 3828  EventSystem - ok
15:38:24.0578 3828  [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
15:38:24.0578 3828  Fastfat - ok
15:38:24.0609 3828  [ 7C8E934687C496EDC69FDBBD2C277E63 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:38:24.0609 3828  FastUserSwitchingCompatibility - ok
15:38:24.0625 3828  [ CED2E8396A8838E59D8FD529C680E02C ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
15:38:24.0625 3828  Fdc - ok
15:38:24.0640 3828  [ C5FB298257C0A6514EA17835E774EA0A ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
15:38:24.0640 3828  Fips - ok
15:38:24.0656 3828  [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
15:38:24.0656 3828  Flpydisk - ok
15:38:24.0687 3828  [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
15:38:24.0703 3828  FltMgr - ok
15:38:24.0703 3828  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:38:24.0703 3828  Fs_Rec - ok
15:38:24.0718 3828  [ ED6D921D8AB423138FB35BEEE6D6A6CB ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:38:24.0718 3828  Ftdisk - ok
15:38:24.0734 3828  [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:38:24.0734 3828  Gpc - ok
15:38:24.0781 3828  [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
15:38:24.0781 3828  HDAudBus - ok
15:38:24.0828 3828  [ E1552A082E8C0FBB70B758F170B3AFF8 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:38:24.0828 3828  helpsvc - ok
15:38:24.0843 3828  HidServ - ok
15:38:24.0875 3828  [ 1DE6783B918F540149AA69943BDFEBA8 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:38:24.0875 3828  HidUsb - ok
15:38:24.0875 3828  hpn - ok
15:38:24.0906 3828  [ 6A5C4732D6803F84E2987EDD8E4359CE ] HSFHWAZL        C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
15:38:24.0906 3828  HSFHWAZL - ok
15:38:24.0968 3828  [ 21C31273C6CC4826E74BE8AE3B09D4A8 ] HSF_DPV         C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
15:38:24.0984 3828  HSF_DPV - ok
15:38:25.0031 3828  [ C19B522A9AE0BBC3293397F3055E80A1 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
15:38:25.0046 3828  HTTP - ok
15:38:25.0078 3828  [ 2D303CAF3C6DCFB246E74550DBED5880 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
15:38:25.0078 3828  HTTPFilter - ok
15:38:25.0078 3828  i2omgmt - ok
15:38:25.0093 3828  i2omp - ok
15:38:25.0125 3828  [ 2656FDFE0A7916C3A16F374454C55DD9 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:38:25.0125 3828  i8042prt - ok
15:38:25.0296 3828  [ 12C7F8D581C4A9F126F5F8F5683A1C29 ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
15:38:25.0437 3828  ialm - ok
15:38:25.0468 3828  [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
15:38:25.0468 3828  Imapi - ok
15:38:25.0484 3828  [ BC74431E59FB0BADF3E9162BD8D37B00 ] ImapiService    C:\WINDOWS\system32\imapi.exe
15:38:25.0500 3828  ImapiService - ok
15:38:25.0500 3828  ini910u - ok
15:38:25.0656 3828  [ B45A576AD280DD4F605F58B24CDAAFE1 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RtkHDAud.sys
15:38:25.0687 3828  IntcAzAudAddService - ok
15:38:25.0687 3828  IntelIde - ok
15:38:25.0734 3828  [ 78A353438791C6D04C64013A5ABEC6BD ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:38:25.0734 3828  intelppm - ok
15:38:25.0765 3828  [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
15:38:25.0765 3828  Ip6Fw - ok
15:38:25.0781 3828  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:38:25.0796 3828  IpFilterDriver - ok
15:38:25.0796 3828  [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:38:25.0796 3828  IpInIp - ok
15:38:25.0812 3828  [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:38:25.0828 3828  IpNat - ok
15:38:25.0843 3828  [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:38:25.0843 3828  IPSec - ok
15:38:25.0875 3828  [ 86C204836FEEC22510D434982D4221B8 ] irda            C:\WINDOWS\system32\DRIVERS\irda.sys
15:38:25.0875 3828  irda - ok
15:38:25.0906 3828  [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
15:38:25.0906 3828  IRENUM - ok
15:38:25.0921 3828  [ 8B96D185866CB5AB844875588A60B065 ] Irmon           C:\WINDOWS\System32\irmon.dll
15:38:25.0921 3828  Irmon - ok
15:38:25.0968 3828  [ 01A9E68528F4F34E5702123D27C67BD4 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:38:25.0968 3828  isapnp - ok
15:38:26.0062 3828  [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe
15:38:26.0062 3828  JavaQuickStarterService - ok
15:38:26.0093 3828  [ CC13DB862F929AE33F64C3BEDC01CD31 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:38:26.0093 3828  Kbdclass - ok
15:38:26.0125 3828  [ D93CAD07C5683DB066B0B2D2D3790EAD ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
15:38:26.0125 3828  kmixer - ok
15:38:26.0140 3828  [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
15:38:26.0140 3828  KSecDD - ok
15:38:26.0156 3828  [ 83EC18EE52DBF7CCE9520F848F4E6584 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
15:38:26.0171 3828  lanmanserver - ok
15:38:26.0218 3828  [ FF68CD5B967CD210562C292CBD263555 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:38:26.0218 3828  lanmanworkstation - ok
15:38:26.0234 3828  lbrtfdc - ok
15:38:26.0250 3828  [ 5712DCBE52D68865CCA91AE04807B755 ] LightScribeService C:\Program Files\Common Files\LightScribe\LSSrvc.exe
15:38:26.0250 3828  LightScribeService - ok
15:38:26.0265 3828  [ 94136B41F35666254DE29006DCCC30FC ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
15:38:26.0281 3828  LmHosts - ok
15:38:26.0328 3828  [ C599BC49523D347ED3BA0478D8453984 ] MDM             C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
15:38:26.0328 3828  MDM - ok
15:38:26.0328 3828  [ 0CEA2D0D3FA284B85ED5B68365114F76 ] mdmxsdk         C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
15:38:26.0343 3828  mdmxsdk - ok
15:38:26.0359 3828  [ 1D0EBF9EDAE8A61CBF56ED1FF8489FAC ] Messenger       C:\WINDOWS\System32\msgsvc.dll
15:38:26.0359 3828  Messenger - ok
15:38:26.0390 3828  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
15:38:26.0390 3828  mnmdd - ok
15:38:26.0421 3828  [ DB082AAFD0859E28744E6629B64E0A91 ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
15:38:26.0421 3828  mnmsrvc - ok
15:38:26.0453 3828  [ 15F33D12D604D0198CE5561F102CD9C5 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
15:38:26.0453 3828  Modem - ok
15:38:26.0468 3828  [ 69C12B99AE8B6B99EC314E9B99833728 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:38:26.0468 3828  Mouclass - ok
15:38:26.0500 3828  [ ECEC1E6CD558AB80F944F31326E9D3B5 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:38:26.0500 3828  mouhid - ok
15:38:26.0515 3828  [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
15:38:26.0515 3828  MountMgr - ok
15:38:26.0578 3828  [ 8C7336950F1E69CDFD811CBBD9CF00A2 ] MozillaMaintenance C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
15:38:26.0593 3828  MozillaMaintenance - ok
15:38:26.0593 3828  mraid35x - ok
15:38:26.0609 3828  [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:38:26.0625 3828  MRxDAV - ok
15:38:26.0656 3828  [ 1FD607FC67F7F7C633C3DA65BFC53D18 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:38:26.0671 3828  MRxSmb - ok
15:38:26.0703 3828  [ FB68F196B215782333FA1467CBAFC8B0 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
15:38:26.0703 3828  MSDTC - ok
15:38:26.0718 3828  [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
15:38:26.0718 3828  Msfs - ok
15:38:26.0734 3828  MSIServer - ok
15:38:26.0750 3828  [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:38:26.0750 3828  MSKSSRV - ok
15:38:26.0781 3828  [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:38:26.0781 3828  MSPCLOCK - ok
15:38:26.0781 3828  [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
15:38:26.0781 3828  MSPQM - ok
15:38:26.0828 3828  [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:38:26.0828 3828  mssmbios - ok
15:38:26.0859 3828  [ BF13612142995096AB084F2DB7F40F77 ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys
15:38:26.0859 3828  MSTEE - ok
15:38:26.0875 3828  [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
15:38:26.0875 3828  Mup - ok
15:38:26.0906 3828  [ 5C8DC6429C43DC6177C1FA5B76290D1A ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
15:38:26.0906 3828  NABTSFEC - ok
15:38:26.0921 3828  [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
15:38:26.0937 3828  NDIS - ok
15:38:26.0984 3828  [ 520CE427A8B298F54112857BCF6BDE15 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys
15:38:26.0984 3828  NdisIP - ok
15:38:27.0015 3828  [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:38:27.0015 3828  NdisTapi - ok
15:38:27.0062 3828  [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:38:27.0062 3828  Ndisuio - ok
15:38:27.0078 3828  [ 0B90E255A9490166AB368CD55A529893 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:38:27.0078 3828  NdisWan - ok
15:38:27.0125 3828  [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
15:38:27.0125 3828  NDProxy - ok
15:38:27.0140 3828  [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
15:38:27.0140 3828  NetBIOS - ok
15:38:27.0156 3828  [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
15:38:27.0156 3828  NetBT - ok
15:38:27.0171 3828  [ 8DE3841527161ABDFAE5C44AB570F8E1 ] NetDDE          C:\WINDOWS\system32\netdde.exe
15:38:27.0171 3828  NetDDE - ok
15:38:27.0187 3828  [ 8DE3841527161ABDFAE5C44AB570F8E1 ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
15:38:27.0187 3828  NetDDEdsdm - ok
15:38:27.0203 3828  [ F485FEFC8CC4FD29243D800BE5D275D1 ] Netlogon        C:\WINDOWS\system32\lsass.exe
15:38:27.0203 3828  Netlogon - ok
15:38:27.0250 3828  [ 3E7B6583269BC118720D0020B03CC71E ] Netman          C:\WINDOWS\System32\netman.dll
15:38:27.0250 3828  Netman - ok
15:38:27.0312 3828  [ 5C5C53DB4FEF16CF87B9911C7E8C6FBC ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys
15:38:27.0312 3828  NIC1394 - ok
15:38:27.0343 3828  [ 83387067B25E000E64B178A62E5DCD24 ] Nla             C:\WINDOWS\System32\mswsock.dll
15:38:27.0343 3828  Nla - ok
15:38:27.0390 3828  [ B9730495E0CF674680121E34BD95A73B ] NPF             C:\WINDOWS\system32\drivers\NPF.sys
15:38:27.0390 3828  NPF - ok
15:38:27.0406 3828  [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
15:38:27.0406 3828  Npfs - ok
15:38:27.0437 3828  [ 6216798D29C3BA9D0D6F40BBBAB694A5 ] NSCIRDA         C:\WINDOWS\system32\DRIVERS\nscirda.sys
15:38:27.0437 3828  NSCIRDA - ok
15:38:27.0468 3828  [ B78BE402C3F63DD55521F73876951CDD ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
15:38:27.0531 3828  Ntfs - ok
15:38:27.0546 3828  [ F485FEFC8CC4FD29243D800BE5D275D1 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
15:38:27.0546 3828  NtLmSsp - ok
15:38:27.0593 3828  [ C8CE1566B0537C3F5F7AE1CA458A6697 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
15:38:27.0593 3828  NtmsSvc - ok
15:38:27.0625 3828  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
15:38:27.0625 3828  Null - ok
15:38:27.0656 3828  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:38:27.0656 3828  NwlnkFlt - ok
15:38:27.0671 3828  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:38:27.0671 3828  NwlnkFwd - ok
15:38:27.0671 3828  [ 0951DB8E5823EA366B0E408D71E1BA2A ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys
15:38:27.0687 3828  ohci1394 - ok
15:38:27.0734 3828  [ EB0F54FBCB622957051CF507885BF66F ] PAC207          C:\WINDOWS\system32\DRIVERS\PFC027.SYS
15:38:27.0734 3828  PAC207 - ok
15:38:27.0750 3828  [ 2FF48D8FDC815A8492FB2BD81E6999C2 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
15:38:27.0765 3828  Parport - ok
15:38:27.0765 3828  [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
15:38:27.0765 3828  PartMgr - ok
15:38:27.0812 3828  [ 453EC2C2A20A1382F564541918520EEB ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
15:38:27.0812 3828  ParVdm - ok
15:38:27.0843 3828  [ B670C5D89F0726B7A2A7DFB4E968CDF8 ] PCAMPR5         C:\WINDOWS\system32\PCAMPR5.SYS
15:38:27.0843 3828  PCAMPR5 - ok
15:38:27.0859 3828  [ ECD2F9D67B06606064DAF6961A6D5EFE ] PCANDIS5        C:\WINDOWS\system32\PCANDIS5.SYS
15:38:27.0859 3828  PCANDIS5 - ok
15:38:27.0875 3828  [ 5FD05C92EC56F696EAA50B68CEF1B84A ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
15:38:27.0875 3828  PCI - ok
15:38:27.0890 3828  PCIDump - ok
15:38:27.0890 3828  [ 548CF2D6369EAE441A4C6BAA75BC4F0A ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
15:38:27.0890 3828  PCIIde - ok
15:38:27.0921 3828  [ 2849812217ECEC059CB45F80EB6E52D4 ] Pcmcia          C:\WINDOWS\system32\DRIVERS\pcmcia.sys
15:38:27.0921 3828  Pcmcia - ok
15:38:27.0921 3828  PDCOMP - ok
15:38:27.0937 3828  PDFRAME - ok
15:38:27.0937 3828  PDRELI - ok
15:38:27.0953 3828  PDRFRAME - ok
15:38:27.0953 3828  perc2 - ok
15:38:27.0968 3828  perc2hib - ok
15:38:28.0000 3828  [ 3DA8D964D2CC12EF8E8C342471A37917 ] PlugPlay        C:\WINDOWS\system32\services.exe
15:38:28.0000 3828  PlugPlay - ok
15:38:28.0000 3828  [ F485FEFC8CC4FD29243D800BE5D275D1 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
15:38:28.0000 3828  PolicyAgent - ok
15:38:28.0015 3828  [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:38:28.0015 3828  PptpMiniport - ok
15:38:28.0031 3828  [ F485FEFC8CC4FD29243D800BE5D275D1 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:38:28.0031 3828  ProtectedStorage - ok
15:38:28.0031 3828  [ 48671F327553DCF1D27F6197F622A668 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
15:38:28.0031 3828  PSched - ok
15:38:28.0046 3828  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:38:28.0046 3828  Ptilink - ok
15:38:28.0046 3828  ql1080 - ok
15:38:28.0062 3828  Ql10wnt - ok
15:38:28.0062 3828  ql12160 - ok
15:38:28.0078 3828  ql1240 - ok
15:38:28.0078 3828  ql1280 - ok
15:38:28.0093 3828  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:38:28.0093 3828  RasAcd - ok
15:38:28.0125 3828  [ 5ED5AF86EE8CC13F6392B37A81AF5D5B ] RasAuto         C:\WINDOWS\System32\rasauto.dll
15:38:28.0125 3828  RasAuto - ok
15:38:28.0171 3828  [ 0207D26DDF796A193CCD9F83047BB5FC ] Rasirda         C:\WINDOWS\system32\DRIVERS\rasirda.sys
15:38:28.0171 3828  Rasirda - ok
15:38:28.0187 3828  [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:38:28.0187 3828  Rasl2tp - ok
15:38:28.0203 3828  [ FF59EC9427760470DE7FFCA75738ECB8 ] RasMan          C:\WINDOWS\System32\rasmans.dll
15:38:28.0203 3828  RasMan - ok
15:38:28.0218 3828  [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:38:28.0218 3828  RasPppoe - ok
15:38:28.0234 3828  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
15:38:28.0234 3828  Raspti - ok
15:38:28.0250 3828  [ 29D66245ADBA878FFF574CD66ABD2884 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:38:28.0250 3828  Rdbss - ok
15:38:28.0265 3828  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:38:28.0265 3828  RDPCDD - ok
15:38:28.0281 3828  [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:38:28.0281 3828  rdpdr - ok
15:38:28.0343 3828  [ D4F5643D7714EF499AE9527FDCD50894 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
15:38:28.0343 3828  RDPWD - ok
15:38:28.0390 3828  [ EE93399BC7CD84624AB7890DD7D8B296 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
15:38:28.0390 3828  RDSessMgr - ok
15:38:28.0406 3828  [ BDDCECE9ACDAD26841C987D10376F6F7 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
15:38:28.0421 3828  redbook - ok
15:38:28.0453 3828  [ 6A9CB0C18B634B187B8B5A32B0FC2773 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
15:38:28.0453 3828  RemoteAccess - ok
15:38:28.0484 3828  [ A19BFED61736127DB5B8B815AFB35190 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
15:38:28.0484 3828  RemoteRegistry - ok
15:38:28.0515 3828  [ 6BE739F700580F23740EFA1D1B57C0A5 ] RpcLocator      C:\WINDOWS\system32\locator.exe
15:38:28.0531 3828  RpcLocator - ok
15:38:28.0562 3828  [ 346E5B19FC986FE7185A0C2C43593722 ] RpcSs           C:\WINDOWS\System32\rpcss.dll
15:38:28.0562 3828  RpcSs - ok
15:38:28.0593 3828  [ 9ACEE3313020A01235336C2A483AFD1A ] RSVP            C:\WINDOWS\system32\rsvp.exe
15:38:28.0593 3828  RSVP - ok
15:38:28.0609 3828  [ F485FEFC8CC4FD29243D800BE5D275D1 ] SamSs           C:\WINDOWS\system32\lsass.exe
15:38:28.0609 3828  SamSs - ok
15:38:28.0640 3828  [ 8DF7262F72C3AB75486D21BA78B9F749 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
15:38:28.0656 3828  SCardSvr - ok
15:38:28.0718 3828  [ E5F1C9EAD4C6617ACD40CA90882CC7D4 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
15:38:28.0718 3828  Schedule - ok
15:38:28.0734 3828  [ 02FC71B020EC8700EE8A46C58BC6F276 ] sdbus           C:\WINDOWS\system32\DRIVERS\sdbus.sys
15:38:28.0734 3828  sdbus - ok
15:38:28.0765 3828  [ D26E26EA516450AF9D072635C60387F4 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:38:28.0765 3828  Secdrv - ok
15:38:28.0796 3828  [ 60255AC385A08AAF4897AB4A42483500 ] seclogon        C:\WINDOWS\System32\seclogon.dll
15:38:28.0796 3828  seclogon - ok
15:38:28.0796 3828  [ 1398DF553E701C7948188A7D4E347A18 ] SENS            C:\WINDOWS\system32\sens.dll
15:38:28.0796 3828  SENS - ok
15:38:28.0812 3828  [ 859BC6F8C3D58CFDA9181E9926C7DDB9 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
15:38:28.0812 3828  Serial - ok
15:38:28.0828 3828  [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
15:38:28.0828 3828  Sfloppy - ok
15:38:28.0859 3828  [ 7C8E934687C496EDC69FDBBD2C277E63 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:38:28.0859 3828  ShellHWDetection - ok
15:38:28.0859 3828  Simbad - ok
15:38:28.0890 3828  [ 5CAEED86821FA2C6139E32E9E05CCDC9 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys
15:38:28.0890 3828  SLIP - ok
15:38:28.0890 3828  Sparrow - ok
15:38:28.0937 3828  [ 8E186B8F23295D1E42C573B82B80D548 ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
15:38:28.0937 3828  splitter - ok
15:38:28.0937 3828  [ BEBE8A85954FF460374FD5A0CD21E19B ] Spooler         C:\WINDOWS\system32\spoolsv.exe
15:38:28.0953 3828  Spooler - ok
15:38:28.0953 3828  sptd - ok
15:38:29.0000 3828  [ 6145CA23BCCDA679A772EC0AF42D6EB5 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
15:38:29.0000 3828  sr - ok
15:38:29.0015 3828  [ F309D9894FCA821E3C2F557A8032D47A ] srservice       C:\WINDOWS\system32\srsvc.dll
15:38:29.0015 3828  srservice - ok
15:38:29.0046 3828  [ 20B7E396720353E4117D64D9DCB926CA ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
15:38:29.0046 3828  Srv - ok
15:38:29.0078 3828  [ BB754C4BE0B18F0FAF01A7EBDE7025C4 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
15:38:29.0078 3828  SSDPSRV - ok
15:38:29.0093 3828  [ C6718154A50FE6C55E382CDBDEDCE7A7 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
15:38:29.0109 3828  stisvc - ok
15:38:29.0140 3828  [ 284C57DF5DC7ABCA656BC2B96A667AFB ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys
15:38:29.0140 3828  streamip - ok
15:38:29.0171 3828  [ 03C1BAE4766E2450219D20B993D6E046 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
15:38:29.0171 3828  swenum - ok
15:38:29.0187 3828  [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
15:38:29.0187 3828  swmidi - ok
15:38:29.0187 3828  SwPrv - ok
15:38:29.0203 3828  symc810 - ok
15:38:29.0203 3828  symc8xx - ok
15:38:29.0218 3828  sym_hi - ok
15:38:29.0218 3828  sym_u3 - ok
15:38:29.0234 3828  [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
15:38:29.0250 3828  sysaudio - ok
15:38:29.0265 3828  [ 5893B3B5B966233CAE426B2FEDC34DDF ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
15:38:29.0281 3828  SysmonLog - ok
15:38:29.0296 3828  [ 0A695B77564D8E9333E846B526F95AB2 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
15:38:29.0312 3828  TapiSrv - ok
15:38:29.0343 3828  [ 9F4B36614A0FC234525BA224957DE55C ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:38:29.0343 3828  Tcpip - ok
15:38:29.0359 3828  [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
15:38:29.0359 3828  TDPIPE - ok
15:38:29.0375 3828  [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
15:38:29.0390 3828  TDTCP - ok
15:38:29.0406 3828  [ A540A99C281D933F3D69D55E48727F47 ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
15:38:29.0406 3828  TermDD - ok
15:38:29.0453 3828  [ 2C28157229925280916B3041CCC5FE4B ] TermService     C:\WINDOWS\System32\termsrv.dll
15:38:29.0468 3828  TermService - ok
15:38:29.0484 3828  [ 7C8E934687C496EDC69FDBBD2C277E63 ] Themes          C:\WINDOWS\System32\shsvcs.dll
15:38:29.0484 3828  Themes - ok
15:38:29.0546 3828  [ 78213F01CE781F93180BEF5EB5B3AD81 ] tifm21          C:\WINDOWS\system32\drivers\tifm21.sys
15:38:29.0546 3828  tifm21 - ok
15:38:29.0578 3828  [ CAC717418CCDF09110F406108017BFA6 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
15:38:29.0578 3828  TlntSvr - ok
15:38:29.0578 3828  TosIde - ok
15:38:29.0625 3828  [ FACBC230AA93401D2FE88976E7CB7369 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
15:38:29.0625 3828  TrkWks - ok
15:38:29.0640 3828  [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
15:38:29.0640 3828  Udfs - ok
15:38:29.0656 3828  ultra - ok
15:38:29.0687 3828  [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
15:38:29.0687 3828  Update - ok
15:38:29.0718 3828  [ 387D2A06C8E7CCCEA8E9A350C8FE6781 ] upnphost        C:\WINDOWS\System32\upnphost.dll
15:38:29.0718 3828  upnphost - ok
15:38:29.0718 3828  [ 576A2C38CF3904F2CA1107F922288435 ] UPS             C:\WINDOWS\System32\ups.exe
15:38:29.0734 3828  UPS - ok
15:38:29.0765 3828  [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:38:29.0765 3828  usbehci - ok
15:38:29.0765 3828  [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:38:29.0765 3828  usbhub - ok
15:38:29.0812 3828  [ BDFE799A8531BAD8A5A985821FE78760 ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys
15:38:29.0812 3828  usbohci - ok
15:38:29.0843 3828  [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:38:29.0843 3828  USBSTOR - ok
15:38:29.0859 3828  [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:38:29.0859 3828  usbuhci - ok
15:38:29.0875 3828  [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
15:38:29.0875 3828  VgaSave - ok
15:38:29.0875 3828  ViaIde - ok
15:38:29.0890 3828  [ ECD173739B8EC10A814CC18653DF5A36 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
15:38:29.0890 3828  VolSnap - ok
15:38:29.0937 3828  [ FEC1E19B91972105044960B23C442949 ] VSS             C:\WINDOWS\System32\vssvc.exe
15:38:29.0953 3828  VSS - ok
15:38:29.0984 3828  [ 000A0D516A2E20441E77AEA44E46B19B ] W32Time         C:\WINDOWS\system32\w32time.dll
15:38:29.0984 3828  W32Time - ok
15:38:30.0031 3828  [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:38:30.0031 3828  Wanarp - ok
15:38:30.0046 3828  WDICA - ok
15:38:30.0062 3828  [ 2797F33EBF50466020C430EE4F037933 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
15:38:30.0062 3828  wdmaud - ok
15:38:30.0078 3828  [ F796BEFE565C59A30A4C61B640557276 ] WebClient       C:\WINDOWS\System32\webclnt.dll
15:38:30.0078 3828  WebClient - ok
15:38:30.0125 3828  [ 307D248F97835B6879BDD361086924FE ] winachsf        C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
15:38:30.0140 3828  winachsf - ok
15:38:30.0203 3828  [ 482435B2A2DE8E06C83C3B1EB3237C2C ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
15:38:30.0218 3828  winmgmt - ok
15:38:30.0265 3828  [ FA83DF4EE3B86E5CE53A5EA425F3F472 ] WmdmPmSN        C:\WINDOWS\system32\mspmsnsv.dll
15:38:30.0265 3828  WmdmPmSN - ok
15:38:30.0296 3828  [ 5822B8BAF16F7CAE6B56E839D65A8BFB ] Wmi             C:\WINDOWS\System32\advapi32.dll
15:38:30.0312 3828  Wmi - ok
15:38:30.0328 3828  [ AE2C8544E747C20062DB27456EA2D67A ] WmiAcpi         C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
15:38:30.0328 3828  WmiAcpi - ok
15:38:30.0375 3828  [ 45E43704611D7C2202A180FF87E63550 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:38:30.0375 3828  WmiApSrv - ok
15:38:30.0406 3828  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
15:38:30.0406 3828  WS2IFSL - ok
15:38:30.0453 3828  [ D5842484F05E12121C511AA93F6439EC ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
15:38:30.0453 3828  WSTCODEC - ok
15:38:30.0484 3828  [ 98A8014DBE72349F73462262CF493574 ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
15:38:30.0515 3828  WZCSVC - ok
15:38:30.0546 3828  [ E3C9EF5BCC9EB171BD81051CD19BDED7 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
15:38:30.0546 3828  xmlprov - ok
15:38:30.0562 3828  ================ Scan global ===============================
15:38:30.0593 3828  [ FF952713E6B51D49B68BBA9233FBAA81 ] C:\WINDOWS\system32\basesrv.dll
15:38:30.0609 3828  [ 143B9018051E3A3CFDE92A861F8080E9 ] C:\WINDOWS\system32\winsrv.dll
15:38:30.0625 3828  [ 143B9018051E3A3CFDE92A861F8080E9 ] C:\WINDOWS\system32\winsrv.dll
15:38:30.0640 3828  [ 3DA8D964D2CC12EF8E8C342471A37917 ] C:\WINDOWS\system32\services.exe
15:38:30.0640 3828  [Global] - ok
15:38:30.0640 3828  ================ Scan MBR ==================================
15:38:30.0671 3828  [ 32052574BF9F325AE309ABC7BFD04460 ] \Device\Harddisk0\DR0
15:38:30.0890 3828  \Device\Harddisk0\DR0 - ok
15:38:30.0906 3828  ================ Scan VBR ==================================
15:38:30.0906 3828  [ 72549018092C593DD03F5281E6F57736 ] \Device\Harddisk0\DR0\Partition1
15:38:30.0906 3828  \Device\Harddisk0\DR0\Partition1 - ok
15:38:30.0921 3828  [ 38B828268B4B8590E71FFF10AE1C9CC9 ] \Device\Harddisk0\DR0\Partition2
15:38:30.0921 3828  \Device\Harddisk0\DR0\Partition2 - ok
15:38:30.0953 3828  [ 78270940843489695639289DCD00D85A ] \Device\Harddisk0\DR0\Partition3
15:38:30.0953 3828  \Device\Harddisk0\DR0\Partition3 - ok
15:38:30.0953 3828  ============================================================
15:38:30.0953 3828  Scan finished
15:38:30.0953 3828  ============================================================
15:38:30.0968 3816  Detected object count: 1
15:38:30.0968 3816  Actual detected object count: 1
15:38:36.0343 3816  C:\WINDOWS\system32\DRIVERS\ACPI.sys - copied to quarantine
15:38:37.0375 3816  Backup copy found, using it..
15:38:37.0406 3816  C:\WINDOWS\system32\DRIVERS\ACPI.sys - will be cured on reboot
15:38:37.0406 3816  ACPI ( Virus.Win32.Rloader.a ) - User select action: Cure 
15:38:42.0203 3356  Deinitialize success