17:19:11.0515 0760	TDSS rootkit removing tool 2.7.22.0 Mar 21 2012 17:40:00
17:19:13.0562 0760	============================================================
17:19:13.0562 0760	Current date / time: 2012/03/24 17:19:13.0562
17:19:13.0562 0760	SystemInfo:
17:19:13.0562 0760	
17:19:13.0562 0760	OS Version: 5.1.2600 ServicePack: 3.0
17:19:13.0562 0760	Product type: Workstation
17:19:13.0562 0760	ComputerName: KOOB
17:19:13.0562 0760	UserName: Huaynaputina
17:19:13.0562 0760	Windows directory: C:\WINDOWS
17:19:13.0562 0760	System windows directory: C:\WINDOWS
17:19:13.0562 0760	Processor architecture: Intel x86
17:19:13.0562 0760	Number of processors: 1
17:19:13.0562 0760	Page size: 0x1000
17:19:13.0562 0760	Boot type: Normal boot
17:19:13.0562 0760	============================================================
17:19:15.0609 0760	Drive \Device\Harddisk0\DR0 - Size: 0x12A1F16000 (74.53 Gb), SectorSize: 0x200, Cylinders: 0x2601, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
17:19:15.0656 0760	\Device\Harddisk0\DR0:
17:19:15.0656 0760	MBR used
17:19:15.0656 0760	\Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x3A962B1
17:19:15.0703 0760	\Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3A9632F, BlocksNum 0x5A742D1
17:19:15.0953 0760	Initialize success
17:19:15.0953 0760	============================================================
17:19:22.0218 1940	============================================================
17:19:22.0218 1940	Scan started
17:19:22.0218 1940	Mode: Manual; 
17:19:22.0218 1940	============================================================
17:19:22.0562 1940	Abiosdsk - ok
17:19:22.0609 1940	abp480n5 - ok
17:19:22.0687 1940	ACPI            (e28afa761d7ecaa705a00b4a86f68da9) C:\WINDOWS\system32\DRIVERS\ACPI.sys
17:19:22.0687 1940	ACPI - ok
17:19:22.0781 1940	ACPIEC          (cea8d1da7696acbfc69a3823bcf1c738) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys
17:19:22.0781 1940	ACPIEC - ok
17:19:22.0812 1940	adpu160m - ok
17:19:22.0875 1940	aec             (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
17:19:22.0890 1940	aec - ok
17:19:22.0984 1940	AegisP          (12dafd934641dcf61e446313bc261ec2) C:\WINDOWS\system32\DRIVERS\AegisP.sys
17:19:22.0984 1940	AegisP - ok
17:19:23.0062 1940	AFD             (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
17:19:23.0062 1940	AFD - ok
17:19:23.0218 1940	AgereSoftModem  (c41a5740468d0b9cb46e6390a0e15ce3) C:\WINDOWS\system32\DRIVERS\AGRSM.sys
17:19:23.0281 1940	AgereSoftModem - ok
17:19:23.0359 1940	Aha154x - ok
17:19:23.0406 1940	aic78u2 - ok
17:19:23.0437 1940	aic78xx - ok
17:19:23.0515 1940	Alerter         (4bdc19b678e140c900e6973acef7182c) C:\WINDOWS\system32\alrsvc.dll
17:19:23.0515 1940	Alerter - ok
17:19:23.0546 1940	ALG             (1f559252e6d787b9b48463bb2c8ceac2) C:\WINDOWS\System32\alg.exe
17:19:23.0546 1940	ALG - ok
17:19:23.0640 1940	AliIde - ok
17:19:23.0656 1940	amsint - ok
17:19:23.0703 1940	AppMgmt         (49cd07f6a6d14430d773d83e7e60bb07) C:\WINDOWS\System32\appmgmts.dll
17:19:23.0718 1940	AppMgmt - ok
17:19:23.0781 1940	asc - ok
17:19:23.0828 1940	asc3350p - ok
17:19:23.0890 1940	asc3550 - ok
17:19:23.0984 1940	aspnet_state    (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
17:19:24.0015 1940	aspnet_state - ok
17:19:24.0109 1940	AsyncMac        (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
17:19:24.0109 1940	AsyncMac - ok
17:19:24.0187 1940	atapi           (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
17:19:24.0203 1940	atapi - ok
17:19:24.0265 1940	Atdisk - ok
17:19:24.0359 1940	Ati HotKey Poller (bba22521d24625c7a7b8d57fb20a812e) C:\WINDOWS\system32\Ati2evxx.exe
17:19:24.0390 1940	Ati HotKey Poller - ok
17:19:24.0546 1940	ati2mtag        (07ac9a98ea70b5a6655a5797174bd282) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
17:19:24.0578 1940	ati2mtag - ok
17:19:24.0671 1940	Atmarpc         (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
17:19:24.0671 1940	Atmarpc - ok
17:19:24.0750 1940	AudioSrv        (be9255e19aa4ccec236824c034b0f968) C:\WINDOWS\System32\audiosrv.dll
17:19:24.0750 1940	AudioSrv - ok
17:19:24.0812 1940	audstub         (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
17:19:24.0812 1940	audstub - ok
17:19:24.0906 1940	Beep            (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
17:19:24.0921 1940	Beep - ok
17:19:24.0984 1940	BITS            (2110ec6988cedfeb9b520af9beb3af7f) C:\WINDOWS\system32\qmgr.dll
17:19:25.0046 1940	BITS - ok
17:19:25.0140 1940	Browser         (598e378a5cb821a0e2968449b73a791b) C:\WINDOWS\System32\browser.dll
17:19:25.0156 1940	Browser - ok
17:19:25.0218 1940	cbidf2k         (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
17:19:25.0234 1940	cbidf2k - ok
17:19:25.0296 1940	cd20xrnt - ok
17:19:25.0375 1940	Cdaudio         (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
17:19:25.0375 1940	Cdaudio - ok
17:19:25.0437 1940	Cdfs            (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
17:19:25.0437 1940	Cdfs - ok
17:19:25.0515 1940	Cdrom           (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
17:19:25.0531 1940	Cdrom - ok
17:19:25.0562 1940	Changer - ok
17:19:25.0656 1940	CiSvc           (fb0de648d9f0fbd13fb2be4d5a4332b5) C:\WINDOWS\system32\cisvc.exe
17:19:25.0656 1940	CiSvc - ok
17:19:25.0718 1940	ClipSrv         (090a713c88805f83d72f315de2ab247f) C:\WINDOWS\system32\clipsrv.exe
17:19:25.0734 1940	ClipSrv - ok
17:19:25.0843 1940	clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
17:19:25.0890 1940	clr_optimization_v2.0.50727_32 - ok
17:19:25.0984 1940	CmBatt          (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
17:19:26.0000 1940	CmBatt - ok
17:19:26.0031 1940	CmdIde - ok
17:19:26.0078 1940	Compbatt        (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
17:19:26.0093 1940	Compbatt - ok
17:19:26.0156 1940	COMSysApp - ok
17:19:26.0203 1940	Cpqarray - ok
17:19:26.0265 1940	CryptSvc        (31c42002b8560e7767b4a99b5ef8d4cb) C:\WINDOWS\System32\cryptsvc.dll
17:19:26.0281 1940	CryptSvc - ok
17:19:26.0343 1940	dac2w2k - ok
17:19:26.0390 1940	dac960nt - ok
17:19:26.0468 1940	DcomLaunch      (293d96b9a523c8d3a5f3ee448405388e) C:\WINDOWS\system32\rpcss.dll
17:19:26.0484 1940	DcomLaunch - ok
17:19:26.0578 1940	Dhcp            (3b6537ad7d31a89c3d5ced4ac1213a46) C:\WINDOWS\System32\dhcpcsvc.dll
17:19:26.0578 1940	Dhcp - ok
17:19:26.0656 1940	Disk            (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
17:19:26.0671 1940	Disk - ok
17:19:26.0750 1940	DKbFltr         (08d30af92c270f2e76787c81589dbad6) C:\WINDOWS\system32\DRIVERS\DKbFltr.sys
17:19:26.0765 1940	DKbFltr - ok
17:19:26.0796 1940	dmadmin - ok
17:19:26.0890 1940	dmboot          (d71be7c02b8b147e85456238d0660478) C:\WINDOWS\system32\drivers\dmboot.sys
17:19:26.0953 1940	dmboot - ok
17:19:27.0062 1940	dmio            (5f25de6f05c986dcc36adaf532c3ce0d) C:\WINDOWS\system32\drivers\dmio.sys
17:19:27.0062 1940	dmio - ok
17:19:27.0109 1940	dmload          (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
17:19:27.0125 1940	dmload - ok
17:19:27.0203 1940	dmserver        (fe2a378def73f20165194f90a8938792) C:\WINDOWS\System32\dmserver.dll
17:19:27.0203 1940	dmserver - ok
17:19:27.0281 1940	DMusic          (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
17:19:27.0281 1940	DMusic - ok
17:19:27.0375 1940	Dnscache        (b6c0b6355545393d4c2b4842c136f658) C:\WINDOWS\System32\dnsrslvr.dll
17:19:27.0375 1940	Dnscache - ok
17:19:27.0484 1940	Dot3svc         (949a1b177b633a7c66c2b57fe73f53aa) C:\WINDOWS\System32\dot3svc.dll
17:19:27.0500 1940	Dot3svc - ok
17:19:27.0531 1940	dpti2o - ok
17:19:27.0609 1940	drmkaud         (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
17:19:27.0625 1940	drmkaud - ok
17:19:27.0687 1940	eamon           (1ceb779239965000b8f6adee17d4515b) C:\WINDOWS\system32\DRIVERS\eamon.sys
17:19:27.0687 1940	eamon - ok
17:19:27.0781 1940	EapHost         (05a36b2b002944bbe47d9dd375142543) C:\WINDOWS\System32\eapsvc.dll
17:19:27.0781 1940	EapHost - ok
17:19:27.0875 1940	ehdrv           (7d300a43a7bd8769e0f901bf9e1ae367) C:\WINDOWS\system32\DRIVERS\ehdrv.sys
17:19:27.0875 1940	ehdrv - ok
17:19:27.0984 1940	EhttpSrv        (d83323d7cd5d1cc46b42da9e59409890) C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
17:19:28.0000 1940	EhttpSrv - ok
17:19:28.0078 1940	ekrn            (efa198f8983d064a81052851f7bb80c2) C:\Program Files\ESET\ESET Smart Security\ekrn.exe
17:19:28.0093 1940	ekrn - ok
17:19:28.0187 1940	epfw            (15bfe00f030ea20955117bb0677e9668) C:\WINDOWS\system32\DRIVERS\epfw.sys
17:19:28.0203 1940	epfw - ok
17:19:28.0281 1940	Epfwndis        (52310e0e603d7da79ecca7d764937a91) C:\WINDOWS\system32\DRIVERS\Epfwndis.sys
17:19:28.0281 1940	Epfwndis - ok
17:19:28.0343 1940	epfwtdi         (bdde7dd8fcdb1de7e879bb320b0605c0) C:\WINDOWS\system32\DRIVERS\epfwtdi.sys
17:19:28.0343 1940	epfwtdi - ok
17:19:28.0406 1940	ERSvc           (5fea86eafeb2985444e924510707c8f4) C:\WINDOWS\System32\ersvc.dll
17:19:28.0421 1940	ERSvc - ok
17:19:28.0500 1940	Eventlog        (94824eefebe244036335e644eb5ff3ac) C:\WINDOWS\system32\services.exe
17:19:28.0515 1940	Eventlog - ok
17:19:28.0640 1940	EventSystem     (a371f11ef07653591c8de26afb13ce7f) C:\WINDOWS\system32\es.dll
17:19:28.0640 1940	EventSystem - ok
17:19:28.0781 1940	EvtEng          (56ded3ade453272e6a0ad582d945d1a4) C:\Program Files\Intel\Wireless\Bin\EvtEng.exe
17:19:28.0781 1940	EvtEng - ok
17:19:28.0890 1940	Fastfat         (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
17:19:28.0890 1940	Fastfat - ok
17:19:28.0968 1940	FastUserSwitchingCompatibility (4833467d7268a5bf34fcc5e66a331ea6) C:\WINDOWS\System32\shsvcs.dll
17:19:28.0968 1940	FastUserSwitchingCompatibility - ok
17:19:29.0078 1940	Fdc             (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
17:19:29.0078 1940	Fdc - ok
17:19:29.0125 1940	Fips            (1541a3a7a460decd6a2221065794a0de) C:\WINDOWS\system32\drivers\Fips.sys
17:19:29.0125 1940	Fips - ok
17:19:29.0265 1940	FLEXnet Licensing Service (227846995afeefa70d328bf5334a86a5) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
17:19:29.0328 1940	FLEXnet Licensing Service - ok
17:19:29.0421 1940	Flpydisk        (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
17:19:29.0437 1940	Flpydisk - ok
17:19:29.0515 1940	FltMgr          (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
17:19:29.0531 1940	FltMgr - ok
17:19:29.0625 1940	FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
17:19:29.0625 1940	FontCache3.0.0.0 - ok
17:19:29.0734 1940	Fs_Rec          (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
17:19:29.0734 1940	Fs_Rec - ok
17:19:29.0796 1940	Ftdisk          (fdd9e4cf0c558f64a58115cb2fc197ac) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
17:19:29.0812 1940	Ftdisk - ok
17:19:29.0890 1940	Gpc             (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
17:19:29.0906 1940	Gpc - ok
17:19:30.0000 1940	HDAudBus        (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
17:19:30.0000 1940	HDAudBus - ok
17:19:30.0093 1940	helpsvc         (01e26bf2718ef2fe403ade932c91c096) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
17:19:30.0093 1940	helpsvc - ok
17:19:30.0140 1940	HidServ - ok
17:19:30.0234 1940	hidusb          (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
17:19:30.0250 1940	hidusb - ok
17:19:30.0328 1940	hkmsvc          (fc69696ddef5ef99036a2cad69a0a4ed) C:\WINDOWS\System32\kmsvc.dll
17:19:30.0343 1940	hkmsvc - ok
17:19:30.0406 1940	hpn - ok
17:19:30.0515 1940	HTTP            (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
17:19:30.0562 1940	HTTP - ok
17:19:30.0656 1940	HTTPFilter      (62520b6b40283b593b87849d0aadda1d) C:\WINDOWS\System32\w3ssl.dll
17:19:30.0671 1940	HTTPFilter - ok
17:19:30.0718 1940	i2omgmt - ok
17:19:30.0781 1940	i2omp - ok
17:19:30.0875 1940	i8042prt        (f9850bdd47dffd2797e984fe60c8b3b6) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
17:19:30.0875 1940	i8042prt - ok
17:19:30.0968 1940	idsvc           (c01ac32dc5c03076cfb852cb5da5229c) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
17:19:31.0031 1940	idsvc - ok
17:19:31.0140 1940	Imapi           (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
17:19:31.0140 1940	Imapi - ok
17:19:31.0218 1940	ImapiService    (883597bb9deed9d68732668f1702b504) C:\WINDOWS\system32\imapi.exe
17:19:31.0234 1940	ImapiService - ok
17:19:31.0312 1940	ini910u - ok
17:19:31.0578 1940	IntcAzAudAddService (19eedb7e20d269d547ce74af90feae2d) C:\WINDOWS\system32\drivers\RtkHDAud.sys
17:19:31.0640 1940	IntcAzAudAddService - ok
17:19:31.0718 1940	IntelIde - ok
17:19:31.0781 1940	intelppm        (5151dff0faa3cccc38a9de9b4001d09b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
17:19:31.0781 1940	intelppm - ok
17:19:31.0906 1940	Ip6Fw           (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
17:19:31.0906 1940	Ip6Fw - ok
17:19:31.0968 1940	IpFilterDriver  (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
17:19:31.0984 1940	IpFilterDriver - ok
17:19:32.0078 1940	IpInIp          (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
17:19:32.0078 1940	IpInIp - ok
17:19:32.0125 1940	IpNat           (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
17:19:32.0140 1940	IpNat - ok
17:19:32.0250 1940	IPSec           (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
17:19:32.0250 1940	IPSec - ok
17:19:32.0328 1940	IRENUM          (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
17:19:32.0343 1940	IRENUM - ok
17:19:32.0421 1940	isapnp          (1c93959977cad7168b4c816e8b29fe9b) C:\WINDOWS\system32\DRIVERS\isapnp.sys
17:19:32.0437 1940	isapnp - ok
17:19:32.0593 1940	JavaQuickStarterService (9dba73c2f1e76ec4cb837e67c5743596) C:\Program Files\Java\jre6\bin\jqs.exe
17:19:32.0593 1940	JavaQuickStarterService - ok
17:19:32.0671 1940	Kbdclass        (2b0018de01bfb628d0a49a301f34b46f) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
17:19:32.0687 1940	Kbdclass - ok
17:19:32.0734 1940	kmixer          (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
17:19:32.0765 1940	kmixer - ok
17:19:32.0843 1940	KSecDD          (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
17:19:32.0843 1940	KSecDD - ok
17:19:32.0937 1940	lanmanserver    (00e83005d0cf2fad89a3a4b30287ac29) C:\WINDOWS\System32\srvsvc.dll
17:19:32.0953 1940	lanmanserver - ok
17:19:33.0031 1940	lanmanworkstation (78f51b0fb6831f0064c6abded88f1134) C:\WINDOWS\System32\wkssvc.dll
17:19:33.0046 1940	lanmanworkstation - ok
17:19:33.0125 1940	lbrtfdc - ok
17:19:33.0203 1940	LmHosts         (17ff4dc871d53168d9c628835eb727f1) C:\WINDOWS\System32\lmhsvc.dll
17:19:33.0203 1940	LmHosts - ok
17:19:33.0281 1940	MBAMProtector   (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys
17:19:33.0296 1940	MBAMProtector - ok
17:19:33.0453 1940	MBAMService     (056b19651bd7b7ce5f89a3ac46dbdc08) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
17:19:33.0468 1940	MBAMService - ok
17:19:33.0562 1940	Messenger       (1cea42e9b7dc30fc313c8277ebdc8fcf) C:\WINDOWS\System32\msgsvc.dll
17:19:33.0578 1940	Messenger - ok
17:19:33.0656 1940	mnmdd           (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
17:19:33.0671 1940	mnmdd - ok
17:19:33.0765 1940	mnmsrvc         (ff4b67544b14f2c0fecc1d6745bc9e69) C:\WINDOWS\system32\mnmsrvc.exe
17:19:33.0765 1940	mnmsrvc - ok
17:19:33.0875 1940	Modem           (5bced2c68331a18534ab8dbae71d93fc) C:\WINDOWS\system32\drivers\Modem.sys
17:19:33.0875 1940	Modem - ok
17:19:33.0937 1940	Mouclass        (cbb891fda0c5ec9f557abba86ca5cb76) C:\WINDOWS\system32\DRIVERS\mouclass.sys
17:19:33.0953 1940	Mouclass - ok
17:19:34.0031 1940	mouhid          (dcf669a6b5682768d3fcf2906453ea97) C:\WINDOWS\system32\DRIVERS\mouhid.sys
17:19:34.0046 1940	mouhid - ok
17:19:34.0140 1940	MountMgr        (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
17:19:34.0140 1940	MountMgr - ok
17:19:34.0203 1940	mraid35x - ok
17:19:34.0312 1940	MRxDAV          (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
17:19:34.0359 1940	MRxDAV - ok
17:19:34.0500 1940	MRxSmb          (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
17:19:34.0531 1940	MRxSmb - ok
17:19:34.0609 1940	MSDTC           (c06b2b7c7cc4dc1060924021bca25b97) C:\WINDOWS\system32\msdtc.exe
17:19:34.0609 1940	MSDTC - ok
17:19:34.0718 1940	Msfs            (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
17:19:34.0718 1940	Msfs - ok
17:19:34.0781 1940	MSIServer - ok
17:19:34.0843 1940	MSKSSRV         (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
17:19:34.0843 1940	MSKSSRV - ok
17:19:34.0906 1940	MSPCLOCK        (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
17:19:34.0906 1940	MSPCLOCK - ok
17:19:34.0953 1940	MSPQM           (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
17:19:34.0968 1940	MSPQM - ok
17:19:35.0015 1940	mssmbios        (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
17:19:35.0015 1940	mssmbios - ok
17:19:35.0078 1940	Mup             (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
17:19:35.0078 1940	Mup - ok
17:19:35.0203 1940	napagent        (af7ee86468a06c98cb30e61735179be1) C:\WINDOWS\System32\qagentrt.dll
17:19:35.0218 1940	napagent - ok
17:19:35.0328 1940	NDIS            (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
17:19:35.0359 1940	NDIS - ok
17:19:35.0437 1940	NdisTapi        (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
17:19:35.0453 1940	NdisTapi - ok
17:19:35.0531 1940	Ndisuio         (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
17:19:35.0531 1940	Ndisuio - ok
17:19:35.0625 1940	NdisWan         (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
17:19:35.0640 1940	NdisWan - ok
17:19:35.0703 1940	NDProxy         (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
17:19:35.0718 1940	NDProxy - ok
17:19:35.0812 1940	NetBIOS         (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
17:19:35.0812 1940	NetBIOS - ok
17:19:35.0890 1940	NetBT           (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
17:19:35.0906 1940	NetBT - ok
17:19:36.0000 1940	NetDDE          (860714ee75c888265f483de3d8c61f1d) C:\WINDOWS\system32\netdde.exe
17:19:36.0015 1940	NetDDE - ok
17:19:36.0015 1940	NetDDEdsdm      (860714ee75c888265f483de3d8c61f1d) C:\WINDOWS\system32\netdde.exe
17:19:36.0031 1940	NetDDEdsdm - ok
17:19:36.0140 1940	Netlogon        (17c1ac326238efadf17a0612afd822ad) C:\WINDOWS\system32\lsass.exe
17:19:36.0140 1940	Netlogon - ok
17:19:36.0218 1940	Netman          (e6fd229cfe63179917c7e4fab088cfe5) C:\WINDOWS\System32\netman.dll
17:19:36.0218 1940	Netman - ok
17:19:36.0343 1940	NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
17:19:36.0343 1940	NetTcpPortSharing - ok
17:19:36.0453 1940	Nla             (acf375ee942a751f05912ec1600fb469) C:\WINDOWS\System32\mswsock.dll
17:19:36.0453 1940	Nla - ok
17:19:36.0546 1940	Npfs            (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
17:19:36.0546 1940	Npfs - ok
17:19:36.0640 1940	Ntfs            (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
17:19:36.0703 1940	Ntfs - ok
17:19:36.0796 1940	NtLmSsp         (17c1ac326238efadf17a0612afd822ad) C:\WINDOWS\system32\lsass.exe
17:19:36.0796 1940	NtLmSsp - ok
17:19:37.0031 1940	NtmsSvc         (8e6a3aac5a889ad59479a05a990e8ed3) C:\WINDOWS\system32\ntmssvc.dll
17:19:37.0093 1940	NtmsSvc - ok
17:19:37.0187 1940	Null            (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
17:19:37.0187 1940	Null - ok
17:19:37.0265 1940	NwlnkFlt        (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
17:19:37.0281 1940	NwlnkFlt - ok
17:19:37.0343 1940	NwlnkFwd        (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
17:19:37.0343 1940	NwlnkFwd - ok
17:19:37.0453 1940	ose             (7a56cf3e3f12e8af599963b16f50fb6a) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
17:19:37.0453 1940	ose - ok
17:19:37.0531 1940	Parport         (fa3a44ade1d355be8e29d3b6bf0ba702) C:\WINDOWS\system32\drivers\Parport.sys
17:19:37.0546 1940	Parport - ok
17:19:37.0625 1940	PartMgr         (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
17:19:37.0625 1940	PartMgr - ok
17:19:37.0734 1940	ParVdm          (f6167f46184c50a9bc2feb87067d1b97) C:\WINDOWS\system32\drivers\ParVdm.sys
17:19:37.0734 1940	ParVdm - ok
17:19:37.0859 1940	PCI             (f9b93d158c4d9f54fbdf1a9c807a1a5a) C:\WINDOWS\system32\DRIVERS\pci.sys
17:19:37.0859 1940	PCI - ok
17:19:37.0937 1940	PCIDump - ok
17:19:37.0984 1940	PCIIde          (0d5ea82e0b16fa4c162635fa78e2ddc3) C:\WINDOWS\system32\DRIVERS\pciide.sys
17:19:38.0000 1940	PCIIde - ok
17:19:38.0109 1940	Pcmcia          (b266a636c370476f25d307b30894d990) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
17:19:38.0125 1940	Pcmcia - ok
17:19:38.0156 1940	PDCOMP - ok
17:19:38.0203 1940	PDFRAME - ok
17:19:38.0281 1940	PDRELI - ok
17:19:38.0328 1940	PDRFRAME - ok
17:19:38.0406 1940	perc2 - ok
17:19:38.0468 1940	perc2hib - ok
17:19:38.0609 1940	PlugPlay        (94824eefebe244036335e644eb5ff3ac) C:\WINDOWS\system32\services.exe
17:19:38.0609 1940	PlugPlay - ok
17:19:38.0671 1940	PolicyAgent     (17c1ac326238efadf17a0612afd822ad) C:\WINDOWS\system32\lsass.exe
17:19:38.0671 1940	PolicyAgent - ok
17:19:38.0859 1940	PptpMiniport    (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
17:19:38.0859 1940	PptpMiniport - ok
17:19:38.0953 1940	ProtectedStorage (17c1ac326238efadf17a0612afd822ad) C:\WINDOWS\system32\lsass.exe
17:19:38.0953 1940	ProtectedStorage - ok
17:19:39.0046 1940	PSched          (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
17:19:39.0046 1940	PSched - ok
17:19:39.0125 1940	Ptilink         (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
17:19:39.0140 1940	Ptilink - ok
17:19:39.0203 1940	PxHelp20        (153d02480a0a2f45785522e814c634b6) C:\WINDOWS\system32\Drivers\PxHelp20.sys
17:19:39.0218 1940	PxHelp20 - ok
17:19:39.0265 1940	ql1080 - ok
17:19:39.0312 1940	Ql10wnt - ok
17:19:39.0343 1940	ql12160 - ok
17:19:39.0406 1940	ql1240 - ok
17:19:39.0437 1940	ql1280 - ok
17:19:39.0484 1940	RasAcd          (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
17:19:39.0484 1940	RasAcd - ok
17:19:39.0531 1940	RasAuto         (c7f1c27d7cd10b86079cb62800974880) C:\WINDOWS\System32\rasauto.dll
17:19:39.0531 1940	RasAuto - ok
17:19:39.0625 1940	Rasl2tp         (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
17:19:39.0625 1940	Rasl2tp - ok
17:19:39.0734 1940	RasMan          (b82b8ef94df80f3efd83720519e44da3) C:\WINDOWS\System32\rasmans.dll
17:19:39.0734 1940	RasMan - ok
17:19:39.0812 1940	RasPppoe        (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
17:19:39.0812 1940	RasPppoe - ok
17:19:39.0906 1940	Raspti          (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
17:19:39.0906 1940	Raspti - ok
17:19:39.0968 1940	Rdbss           (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
17:19:39.0984 1940	Rdbss - ok
17:19:40.0078 1940	RDPCDD          (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
17:19:40.0078 1940	RDPCDD - ok
17:19:40.0156 1940	rdpdr           (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
17:19:40.0187 1940	rdpdr - ok
17:19:40.0281 1940	RDPWD           (5b3055daa788bd688594d2f5981f2a83) C:\WINDOWS\system32\drivers\RDPWD.sys
17:19:40.0296 1940	RDPWD - ok
17:19:40.0375 1940	RDSessMgr       (79caaa94e8598cfabb06025ad5476e3b) C:\WINDOWS\system32\sessmgr.exe
17:19:40.0421 1940	RDSessMgr - ok
17:19:40.0500 1940	redbook         (868c8de05325f3b250f806666de18f0d) C:\WINDOWS\system32\DRIVERS\redbook.sys
17:19:40.0515 1940	redbook - ok
17:19:40.0656 1940	RegSrvc         (1b2857ef12d79a9f9adba14b0637cbf8) C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe
17:19:40.0703 1940	RegSrvc - ok
17:19:40.0812 1940	RemoteAccess    (f9cb60b29efd582ee92cd32fc8cc2bb9) C:\WINDOWS\System32\mprdim.dll
17:19:40.0828 1940	RemoteAccess - ok
17:19:40.0906 1940	RemoteRegistry  (7ae94a5cedb2916f20a2811e14ddfd7e) C:\WINDOWS\system32\regsvc.dll
17:19:40.0906 1940	RemoteRegistry - ok
17:19:41.0000 1940	RpcLocator      (db0a7358ed55a40a84dafec6459d62dd) C:\WINDOWS\system32\locator.exe
17:19:41.0015 1940	RpcLocator - ok
17:19:41.0109 1940	RpcSs           (293d96b9a523c8d3a5f3ee448405388e) C:\WINDOWS\system32\rpcss.dll
17:19:41.0125 1940	RpcSs - ok
17:19:41.0187 1940	RSVP            (5b7cb4cc88a53a90c6f56d92ed5d55ce) C:\WINDOWS\system32\rsvp.exe
17:19:41.0203 1940	RSVP - ok
17:19:41.0312 1940	rtl8139         (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
17:19:41.0312 1940	rtl8139 - ok
17:19:41.0484 1940	S24EventMonitor (6c5155cc0e805c7be6028bff7ac14524) C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe
17:19:41.0531 1940	S24EventMonitor - ok
17:19:41.0640 1940	s24trans        (1cc074e0d48383d4e9bffc6a26c2a58a) C:\WINDOWS\system32\DRIVERS\s24trans.sys
17:19:41.0640 1940	s24trans - ok
17:19:41.0718 1940	SamSs           (17c1ac326238efadf17a0612afd822ad) C:\WINDOWS\system32\lsass.exe
17:19:41.0718 1940	SamSs - ok
17:19:41.0812 1940	SCardSvr        (f896e628bdea97e323773d604473d1e9) C:\WINDOWS\System32\SCardSvr.exe
17:19:41.0828 1940	SCardSvr - ok
17:19:41.0906 1940	Schedule        (962e76142bfe6aa160855326a488e778) C:\WINDOWS\system32\schedsvc.dll
17:19:41.0937 1940	Schedule - ok
17:19:42.0062 1940	sdbus           (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
17:19:42.0078 1940	sdbus - ok
17:19:42.0171 1940	Secdrv          (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
17:19:42.0171 1940	Secdrv - ok
17:19:42.0421 1940	seclogon        (90c86f09afbf236076955b92b8f09dda) C:\WINDOWS\System32\seclogon.dll
17:19:42.0437 1940	seclogon - ok
17:19:42.0625 1940	SENS            (0d1da74be08251fe76e911dc3f1a7774) C:\WINDOWS\system32\sens.dll
17:19:42.0625 1940	SENS - ok
17:19:42.0718 1940	Serial          (27645ae9dcc60be467f3c92ddabed1b0) C:\WINDOWS\system32\drivers\Serial.sys
17:19:42.0734 1940	Serial - ok
17:19:42.0796 1940	Sfloppy         (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
17:19:42.0796 1940	Sfloppy - ok
17:19:42.0921 1940	SharedAccess    (2775ebf5e8ae690a784c8a71183edf69) C:\WINDOWS\System32\ipnathlp.dll
17:19:42.0921 1940	SharedAccess - ok
17:19:42.0984 1940	ShellHWDetection (4833467d7268a5bf34fcc5e66a331ea6) C:\WINDOWS\System32\shsvcs.dll
17:19:42.0984 1940	ShellHWDetection - ok
17:19:43.0062 1940	Simbad - ok
17:19:43.0109 1940	Sparrow - ok
17:19:43.0171 1940	splitter        (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
17:19:43.0171 1940	splitter - ok
17:19:43.0265 1940	Spooler         (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
17:19:43.0281 1940	Spooler - ok
17:19:43.0375 1940	sptd            (614deea4bdcec3fd5a07bdc705723ad7) C:\WINDOWS\System32\Drivers\sptd.sys
17:19:43.0375 1940	Suspicious file (NoAccess): C:\WINDOWS\System32\Drivers\sptd.sys. md5: 614deea4bdcec3fd5a07bdc705723ad7
17:19:43.0375 1940	sptd ( LockedFile.Multi.Generic ) - warning
17:19:43.0375 1940	sptd - detected LockedFile.Multi.Generic (1)
17:19:43.0453 1940	sr              (4a7b3b22c87f0897a68821734afe9528) C:\WINDOWS\system32\DRIVERS\sr.sys
17:19:43.0453 1940	sr - ok
17:19:43.0562 1940	srservice       (44dfd21576643453c1cb3a03d655bf7b) C:\WINDOWS\system32\srsvc.dll
17:19:43.0578 1940	srservice - ok
17:19:43.0703 1940	Srv             (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
17:19:43.0718 1940	Srv - ok
17:19:43.0796 1940	SSDPSRV         (1f6a48b6ee85a23764cac6466f164009) C:\WINDOWS\System32\ssdpsrv.dll
17:19:43.0812 1940	SSDPSRV - ok
17:19:43.0875 1940	stisvc          (7bf256f38e77b02dfeb0cce6a5d39611) C:\WINDOWS\system32\wiaservc.dll
17:19:43.0890 1940	stisvc - ok
17:19:43.0984 1940	swenum          (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
17:19:43.0984 1940	swenum - ok
17:19:44.0046 1940	swmidi          (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
17:19:44.0062 1940	swmidi - ok
17:19:44.0093 1940	SwPrv - ok
17:19:44.0187 1940	symc810 - ok
17:19:44.0250 1940	symc8xx - ok
17:19:44.0296 1940	sym_hi - ok
17:19:44.0343 1940	sym_u3 - ok
17:19:44.0421 1940	sysaudio        (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
17:19:44.0421 1940	sysaudio - ok
17:19:44.0515 1940	SysmonLog       (046964a82253fe8f5097e127c563d505) C:\WINDOWS\system32\smlogsvc.exe
17:19:44.0531 1940	SysmonLog - ok
17:19:44.0609 1940	TapiSrv         (b2918c85efdebe5cbc5fc930a4e4635c) C:\WINDOWS\System32\tapisrv.dll
17:19:44.0609 1940	TapiSrv - ok
17:19:44.0718 1940	Tcpip           (cbeebeb899e31ef52b962cb31fc8ca5c) C:\WINDOWS\system32\DRIVERS\tcpip.sys
17:19:44.0750 1940	Tcpip - ok
17:19:44.0859 1940	TDPIPE          (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
17:19:44.0859 1940	TDPIPE - ok
17:19:44.0890 1940	TDTCP           (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
17:19:44.0890 1940	TDTCP - ok
17:19:44.0937 1940	TermDD          (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
17:19:44.0937 1940	TermDD - ok
17:19:45.0046 1940	TermService     (804a741e1806e8c33c8c642781896c0d) C:\WINDOWS\System32\termsrv.dll
17:19:45.0078 1940	TermService - ok
17:19:45.0171 1940	Themes          (4833467d7268a5bf34fcc5e66a331ea6) C:\WINDOWS\System32\shsvcs.dll
17:19:45.0171 1940	Themes - ok
17:19:45.0250 1940	tifm21          (9179e07503630d6fb2e4162ff0196191) C:\WINDOWS\system32\drivers\tifm21.sys
17:19:45.0281 1940	tifm21 - ok
17:19:45.0375 1940	TlntSvr         (111d0582e34bc10e7dddc014f1e4e352) C:\WINDOWS\system32\tlntsvr.exe
17:19:45.0406 1940	TlntSvr - ok
17:19:45.0484 1940	TosIde - ok
17:19:45.0562 1940	TrkWks          (7291c77298d55136daea2bfbea702b93) C:\WINDOWS\system32\trkwks.dll
17:19:45.0562 1940	TrkWks - ok
17:19:45.0671 1940	Udfs            (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
17:19:45.0687 1940	Udfs - ok
17:19:45.0765 1940	ujezmzaz        (817d8d89fe54e6e207bf50582c1c0e4b) C:\WINDOWS\system32\Drivers\ujezmzaz.sys
17:19:45.0781 1940	ujezmzaz - ok
17:19:45.0828 1940	ultra - ok
17:19:45.0953 1940	UnlockerDriver5 (d0cb75386d9e89c864d808d64ec9160f) C:\Program Files\Unlocker\UnlockerDriver5.sys
17:19:45.0953 1940	UnlockerDriver5 - ok
17:19:46.0062 1940	Update          (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
17:19:46.0109 1940	Update - ok
17:19:46.0218 1940	upnphost        (973e83b801ce31fdc76378b826364dbb) C:\WINDOWS\System32\upnphost.dll
17:19:46.0234 1940	upnphost - ok
17:19:46.0296 1940	UPS             (55100f548265f1a9932122cb64359245) C:\WINDOWS\System32\ups.exe
17:19:46.0296 1940	UPS - ok
17:19:46.0390 1940	usbaudio        (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
17:19:46.0406 1940	usbaudio - ok
17:19:46.0468 1940	usbccgp         (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
17:19:46.0484 1940	usbccgp - ok
17:19:46.0593 1940	usbehci         (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
17:19:46.0593 1940	usbehci - ok
17:19:46.0671 1940	usbhub          (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
17:19:46.0671 1940	usbhub - ok
17:19:46.0765 1940	usbscan         (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
17:19:46.0765 1940	usbscan - ok
17:19:46.0828 1940	USBSTOR         (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
17:19:46.0843 1940	USBSTOR - ok
17:19:46.0953 1940	usbuhci         (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
17:19:46.0953 1940	usbuhci - ok
17:19:47.0015 1940	utezmzaz        (524d8d450622db4a7875b111c299a76b) C:\WINDOWS\system32\Drivers\utezmzaz.sys
17:19:47.0015 1940	utezmzaz - ok
17:19:47.0140 1940	VgaSave         (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
17:19:47.0140 1940	VgaSave - ok
17:19:47.0187 1940	ViaIde - ok
17:19:47.0234 1940	VolSnap         (a79d899dfd0467c4df29af19902ecd18) C:\WINDOWS\system32\drivers\VolSnap.sys
17:19:47.0234 1940	VolSnap - ok
17:19:47.0343 1940	VSS             (65dde548ac8d7a5c55fc6352865d80fc) C:\WINDOWS\System32\vssvc.exe
17:19:47.0375 1940	VSS - ok
17:19:47.0453 1940	W32Time         (0db05fa232be7fd41e3db7f896a5a4de) C:\WINDOWS\system32\w32time.dll
17:19:47.0468 1940	W32Time - ok
17:19:47.0625 1940	w39n51          (73395a19fc86461a151d3c330604e8b3) C:\WINDOWS\system32\DRIVERS\w39n51.sys
17:19:47.0687 1940	w39n51 - ok
17:19:47.0812 1940	Wanarp          (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
17:19:47.0812 1940	Wanarp - ok
17:19:47.0843 1940	WDICA - ok
17:19:47.0890 1940	wdmaud          (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
17:19:47.0906 1940	wdmaud - ok
17:19:48.0015 1940	WebClient       (1d4e8123e7a78d1d7684ba0260fc8827) C:\WINDOWS\System32\webclnt.dll
17:19:48.0015 1940	WebClient - ok
17:19:48.0109 1940	winmgmt         (b053995e60dece511bb600645ce3022b) C:\WINDOWS\system32\wbem\WMIsvc.dll
17:19:48.0125 1940	winmgmt - ok
17:19:48.0234 1940	WmdmPmSN        (c51b4a5c05a5475708e3c81c7765b71d) C:\WINDOWS\system32\MsPMSNSv.dll
17:19:48.0250 1940	WmdmPmSN - ok
17:19:48.0343 1940	Wmi             (e124d0064caa770f75191f9c6b83b481) C:\WINDOWS\System32\advapi32.dll
17:19:48.0375 1940	Wmi - ok
17:19:48.0484 1940	WmiAcpi         (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
17:19:48.0484 1940	WmiAcpi - ok
17:19:48.0578 1940	WmiApSrv        (c537b70d8ede999a81e8f7c56f07b665) C:\WINDOWS\system32\wbem\wmiapsrv.exe
17:19:48.0593 1940	WmiApSrv - ok
17:19:48.0687 1940	wscsvc          (da6423c36f766c6ea41dcf147869b407) C:\WINDOWS\system32\wscsvc.dll
17:19:48.0703 1940	wscsvc - ok
17:19:48.0781 1940	wuauserv        (c9f4a98d40483a3e1ab25d4bbfbb5372) C:\WINDOWS\system32\wuauserv.dll
17:19:48.0781 1940	wuauserv - ok
17:19:48.0875 1940	WudfPf          (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
17:19:48.0875 1940	WudfPf - ok
17:19:48.0921 1940	WudfRd          (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
17:19:48.0921 1940	WudfRd - ok
17:19:49.0031 1940	WudfSvc         (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
17:19:49.0046 1940	WudfSvc - ok
17:19:49.0140 1940	WZCSVC          (7f572b42a68f54e4d8f17bbdaf3686c0) C:\WINDOWS\System32\wzcsvc.dll
17:19:49.0140 1940	WZCSVC - ok
17:19:49.0234 1940	xmlprov         (d490b2f1c26d4d038012ea7f3e22b314) C:\WINDOWS\System32\xmlprov.dll
17:19:49.0250 1940	xmlprov - ok
17:19:49.0281 1940	MBR (0x1B8)     (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
17:19:49.0515 1940	\Device\Harddisk0\DR0 - ok
17:19:49.0546 1940	Boot (0x1200)   (8d0ac87e64b795a6af50aeaa9d434e6f) \Device\Harddisk0\DR0\Partition0
17:19:49.0546 1940	\Device\Harddisk0\DR0\Partition0 - ok
17:19:49.0578 1940	Boot (0x1200)   (d5add2440058ca81a44bd9c32272c8fd) \Device\Harddisk0\DR0\Partition1
17:19:49.0578 1940	\Device\Harddisk0\DR0\Partition1 - ok
17:19:49.0578 1940	============================================================
17:19:49.0578 1940	Scan finished
17:19:49.0578 1940	============================================================
17:19:49.0593 1888	Detected object count: 1
17:19:49.0593 1888	Actual detected object count: 1
17:20:24.0125 1888	sptd ( LockedFile.Multi.Generic ) - skipped by user
17:20:24.0125 1888	sptd ( LockedFile.Multi.Generic ) - User select action: Skip 
17:20:35.0265 0752	Deinitialize success