A voir également:
- Vista Antispyware 2012
- Windows live mail 2012 - Télécharger - Mail
- Windows vista - Télécharger - Divers Utilitaires
- Word 2012 - Télécharger - Traitement de texte
- Windows movie maker 2012 - Télécharger - Montage & Édition
- Clé windows vista - Guide
6 réponses
salut
telecharge et enregistre ceci sur ton bureau :
Pre_Scan
Avertissement: tous les processus non-vitaux de windows seront coupés --> pas de panique.
une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition du rapport sur le bureau.
si 'outil est bloqué par l'infection utilise cette version : Version .pif
ou encore cette version renommée : Winlogon.exe
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
Il se peut qu'une multitude de fenêtres noires clignotent , laisse-le travailler
Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra sur le bureau en fin de scan après redemarrage
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
heberge le rapport sur http://pjjoint.malekal.com et donne le lien obtenu
telecharge et enregistre ceci sur ton bureau :
Pre_Scan
Avertissement: tous les processus non-vitaux de windows seront coupés --> pas de panique.
une fois telechargé lance-le , laisse faire le scan jusqu'à l'apparition du rapport sur le bureau.
si 'outil est bloqué par l'infection utilise cette version : Version .pif
ou encore cette version renommée : Winlogon.exe
si l'outil detecte un proxy et que tu n'en as pas installé clique sur "supprimer le proxy"
Il se peut qu'une multitude de fenêtres noires clignotent , laisse-le travailler
Poste Pre_Scan_la_date_et_l'heure.txt qui apparaitra sur le bureau en fin de scan après redemarrage
▶▶▶ NE LE POSTE PAS SUR LE FORUM (il est trop long)
heberge le rapport sur http://pjjoint.malekal.com et donne le lien obtenu
ton windows est loin d'être à jour
================
desinstalle windows search qu toolbar
desinstalle adobe reader 9
desinstalle autocompletePro
desinstalle price gong
================
fais glisser une icone n'importe quel fichier sur Pre_scan , pre_script va apparaitre
Lance Pre_script , une page vierge va s'ouvrir.
selectionne tout le texte en gras ci-dessous, puis (clic droit/copier ou ctrl+c) :
___________________________________________________
Kill::
Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"iTunesHelper"=-
"VX1000"="C:\Windows\vVX1000.exe"
[-HKEY_CLASSES_ROOT\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\ext\settings\{99079a25-328f-4bd4-be04-00955acaa0a7}]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\ext\stats\{99079a25-328f-4bd4-be04-00955acaa0a7}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[-HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}]
[-HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}]
[-HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}]
[-HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}]
[-HKCU\Software\AutocompleteProBHO]
[-HKCU\Software\cacaoweb]
[-HKCU\Software\SweetIM]
[-HKLM\Software\SearchquMediabarTb]
[-HKLM\Software\SweetIM]
file::
C:\Users\moi\Desktop\cacaoweb(1) - Raccourci.lnk
folder::
C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\ghfxxsoe.default\extensions\cacaoweb@cacaoweb.org
C:\Users\moi\AppData\Roaming\8021554a
C:\Users\moi\AppData\Roaming\cacaoweb
C:\ProgramData\7a8ac718
C:\Users\moi\AppData\Local\a313a3bf
C:\Program Files\AutocompletePro
C:\Program Files\PriceGong
C:\Program Files\ToolbarInstaller
C:\Program Files\Windows Searchqu Toolbar
command::
copy /y "C:\Kill'em\vVX1000.exe.kill'em" "C:\Windows\vVX1000.exe"
Mbr::
clean::
Reboot::
___________________________________________________
colle-le ensuite (clic droit/coller ou ctrl+V) dans la page vierge.
puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte
des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille
poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail
======================================
▶ Télécharge Reload_TDSSKiller
▶ Lance le
choisis : lancer le nettoyage
l'outil va automatiquement télécharger la derniere version puis
TDSSKiller va s'ouvrir , clique sur "Start Scan"
Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas
une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer
sinon , ferme tdssKiller et le rapport s'affichera sur le bureau
▶ Copie/Colle son contenu dans ta prochaine réponse.
_g3n-h@ckm@n_Developpement__Pre_Scan_
================
desinstalle windows search qu toolbar
desinstalle adobe reader 9
desinstalle autocompletePro
desinstalle price gong
================
fais glisser une icone n'importe quel fichier sur Pre_scan , pre_script va apparaitre
Lance Pre_script , une page vierge va s'ouvrir.
selectionne tout le texte en gras ci-dessous, puis (clic droit/copier ou ctrl+c) :
___________________________________________________
Kill::
Registry::
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"iTunesHelper"=-
"VX1000"="C:\Windows\vVX1000.exe"
[-HKEY_CLASSES_ROOT\CLSID\{99079a25-328f-4bd4-be04-00955acaa0a7}]
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{99079a25-328f-4bd4-be04-00955acaa0a7}]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\ext\settings\{99079a25-328f-4bd4-be04-00955acaa0a7}]
[-HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\ext\stats\{99079a25-328f-4bd4-be04-00955acaa0a7}]
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\URLSearchHooks]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Shell Extensions\Approved]
"{99079a25-328f-4bd4-be04-00955acaa0a7}"=-
[-HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E}]
[-HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}]
[-HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{9BB47C17-9C68-4BB3-B188-DD9AF0FD2414}]
[-HKLM\Software\Microsoft\Internet Explorer\SearchScopes\{afdbddaa-5d3f-42ee-b79c-185a7020515b}]
[-HKCU\Software\AutocompleteProBHO]
[-HKCU\Software\cacaoweb]
[-HKCU\Software\SweetIM]
[-HKLM\Software\SearchquMediabarTb]
[-HKLM\Software\SweetIM]
file::
C:\Users\moi\Desktop\cacaoweb(1) - Raccourci.lnk
folder::
C:\Users\moi\AppData\Roaming\Mozilla\Firefox\Profiles\ghfxxsoe.default\extensions\cacaoweb@cacaoweb.org
C:\Users\moi\AppData\Roaming\8021554a
C:\Users\moi\AppData\Roaming\cacaoweb
C:\ProgramData\7a8ac718
C:\Users\moi\AppData\Local\a313a3bf
C:\Program Files\AutocompletePro
C:\Program Files\PriceGong
C:\Program Files\ToolbarInstaller
C:\Program Files\Windows Searchqu Toolbar
command::
copy /y "C:\Kill'em\vVX1000.exe.kill'em" "C:\Windows\vVX1000.exe"
Mbr::
clean::
Reboot::
___________________________________________________
colle-le ensuite (clic droit/coller ou ctrl+V) dans la page vierge.
puis onglet fichier => enregistrer (pas enregistrer sous...) , puis ferme le texte
des fenetres noires risquent de clignoter , c'est normal , c'est le programme qui travaille
poste Pre_Script.txt qui apparaitra sur le bureau en fin de travail
======================================
▶ Télécharge Reload_TDSSKiller
▶ Lance le
choisis : lancer le nettoyage
l'outil va automatiquement télécharger la derniere version puis
TDSSKiller va s'ouvrir , clique sur "Start Scan"
Si TDSS.tdl2 est détecté l''option delete sera cochée par défaut.
Si TDSS.tdl3 est détecté assure toi que Cure est bien cochée.
Si TDSS.tdl4(\HardDisk0\MBR) est détecté assure toi que Cure est bien cochée.
Si Suspicious file est indiqué, laisse l''option cochée sur Skip
Si Rootkit.Win32.ZAccess.* est détecté règle sur "cure" en haut , et "delete" en bas
une fois qu'il a terminé , redemarre s'il te le demande pour finir de nettoyer
sinon , ferme tdssKiller et le rapport s'affichera sur le bureau
▶ Copie/Colle son contenu dans ta prochaine réponse.
_g3n-h@ckm@n_Developpement__Pre_Scan_
Vous n’avez pas trouvé la réponse que vous recherchez ?
Posez votre question
19:13:46.0310 5840 TDSS rootkit removing tool 2.7.2.0 Jan 14 2012 20:07:30
19:13:46.0463 5840 ============================================================
19:13:46.0463 5840 Current date / time: 2012/01/16 19:13:46.0463
19:13:46.0464 5840 SystemInfo:
19:13:46.0464 5840
19:13:46.0464 5840 OS Version: 6.0.6002 ServicePack: 2.0
19:13:46.0464 5840 Product type: Workstation
19:13:46.0464 5840 ComputerName: PC-DE-MOI
19:13:46.0464 5840 UserName: moi
19:13:46.0464 5840 Windows directory: C:\Windows
19:13:46.0464 5840 System windows directory: C:\Windows
19:13:46.0464 5840 Processor architecture: Intel x86
19:13:46.0464 5840 Number of processors: 2
19:13:46.0464 5840 Page size: 0x1000
19:13:46.0464 5840 Boot type: Normal boot
19:13:46.0464 5840 ============================================================
19:13:47.0530 5840 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000, SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K', Flags 0x00000050
19:13:47.0545 5840 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000, SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K', Flags 0x00000050
19:13:47.0833 5840 Initialize success
19:13:54.0257 5036 ============================================================
19:13:54.0257 5036 Scan started
19:13:54.0257 5036 Mode: Manual;
19:13:54.0257 5036 ============================================================
19:13:55.0393 5036 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
19:13:55.0398 5036 ACPI - ok
19:13:55.0462 5036 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
19:13:55.0480 5036 adp94xx - ok
19:13:55.0514 5036 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
19:13:55.0531 5036 adpahci - ok
19:13:55.0554 5036 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
19:13:55.0562 5036 adpu160m - ok
19:13:55.0591 5036 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
19:13:55.0596 5036 adpu320 - ok
19:13:55.0635 5036 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
19:13:55.0653 5036 AFD - ok
19:13:55.0687 5036 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
19:13:55.0690 5036 agp440 - ok
19:13:55.0714 5036 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
19:13:55.0718 5036 aic78xx - ok
19:13:55.0737 5036 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
19:13:55.0739 5036 aliide - ok
19:13:55.0800 5036 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
19:13:55.0803 5036 amdagp - ok
19:13:55.0827 5036 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
19:13:55.0830 5036 amdide - ok
19:13:55.0882 5036 amdiox86 (ff258424f0b2ef25eb98f04ee386e6e3) C:\Windows\system32\DRIVERS\amdiox86.sys
19:13:55.0897 5036 amdiox86 - ok
19:13:55.0934 5036 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
19:13:55.0937 5036 AmdK7 - ok
19:13:55.0953 5036 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
19:13:55.0955 5036 AmdK8 - ok
19:13:55.0992 5036 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
19:13:55.0995 5036 arc - ok
19:13:56.0026 5036 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
19:13:56.0037 5036 arcsas - ok
19:13:56.0071 5036 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
19:13:56.0072 5036 AsyncMac - ok
19:13:56.0106 5036 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
19:13:56.0107 5036 atapi - ok
19:13:56.0204 5036 athrusb (44fa26470d4c8123ccf71f4200b782d3) C:\Windows\system32\DRIVERS\athrusb.sys
19:13:56.0238 5036 athrusb - ok
19:13:56.0361 5036 AtiHdmiService (f48d470154cc58cd6520771464fbec3f) C:\Windows\system32\drivers\AtiHdmi.sys
19:13:56.0365 5036 AtiHdmiService - ok
19:13:57.0016 5036 atikmdag (757c145660fd0fe04d76ebc350c90165) C:\Windows\system32\DRIVERS\atikmdag.sys
19:13:57.0372 5036 atikmdag - ok
19:13:57.0491 5036 AVGIDSDriver (1c8d965bbcaa9ee5defdb54743437086) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
19:13:57.0496 5036 AVGIDSDriver - ok
19:13:57.0525 5036 AVGIDSEH (c59c9bc3f0612bd207ccdc5d8cb9ce39) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
19:13:57.0531 5036 AVGIDSEH - ok
19:13:57.0703 5036 AVGIDSFilter (c5559de2ec66cede15a1664f6d183d8e) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
19:13:57.0705 5036 AVGIDSFilter - ok
19:13:57.0768 5036 AVGIDSShim (ae5e9667fa40206796d1bd5bd0427a8a) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
19:13:57.0772 5036 AVGIDSShim - ok
19:13:57.0806 5036 Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\Windows\system32\DRIVERS\avgldx86.sys
19:13:57.0812 5036 Avgldx86 - ok
19:13:57.0997 5036 Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\Windows\system32\DRIVERS\avgmfx86.sys
19:13:58.0000 5036 Avgmfx86 - ok
19:13:58.0065 5036 Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\Windows\system32\DRIVERS\avgrkx86.sys
19:13:58.0074 5036 Avgrkx86 - ok
19:13:58.0102 5036 Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\Windows\system32\DRIVERS\avgtdix.sys
19:13:58.0118 5036 Avgtdix - ok
19:13:58.0155 5036 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
19:13:58.0158 5036 Beep - ok
19:13:58.0196 5036 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
19:13:58.0201 5036 blbdrive - ok
19:13:58.0258 5036 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
19:13:58.0262 5036 bowser - ok
19:13:58.0290 5036 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
19:13:58.0293 5036 BrFiltLo - ok
19:13:58.0314 5036 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
19:13:58.0317 5036 BrFiltUp - ok
19:13:58.0339 5036 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
19:13:58.0343 5036 Brserid - ok
19:13:58.0359 5036 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
19:13:58.0363 5036 BrSerWdm - ok
19:13:58.0385 5036 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
19:13:58.0388 5036 BrUsbMdm - ok
19:13:58.0408 5036 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
19:13:58.0411 5036 BrUsbSer - ok
19:13:58.0441 5036 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
19:13:58.0444 5036 BthEnum - ok
19:13:58.0492 5036 BTHMODEM (9a966a8e86d1771911ae34a20d11bff3) C:\Windows\system32\DRIVERS\bthmodem.sys
19:13:58.0504 5036 BTHMODEM - ok
19:13:58.0645 5036 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
19:13:58.0649 5036 BthPan - ok
19:13:58.0726 5036 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
19:13:58.0827 5036 BTHPORT - ok
19:13:58.0934 5036 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
19:13:58.0937 5036 BTHUSB - ok
19:13:58.0980 5036 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
19:13:58.0982 5036 cdfs - ok
19:13:59.0041 5036 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
19:13:59.0046 5036 cdrom - ok
19:13:59.0070 5036 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
19:13:59.0073 5036 circlass - ok
19:13:59.0113 5036 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
19:13:59.0118 5036 CLFS - ok
19:13:59.0196 5036 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
19:13:59.0211 5036 cmdide - ok
19:13:59.0233 5036 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
19:13:59.0237 5036 Compbatt - ok
19:13:59.0259 5036 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
19:13:59.0262 5036 crcdisk - ok
19:13:59.0301 5036 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
19:13:59.0305 5036 Crusoe - ok
19:13:59.0375 5036 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
19:13:59.0377 5036 DfsC - ok
19:13:59.0474 5036 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
19:13:59.0477 5036 disk - ok
19:13:59.0571 5036 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
19:13:59.0574 5036 driverhardwarev2 - ok
19:13:59.0662 5036 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
19:13:59.0665 5036 drmkaud - ok
19:13:59.0715 5036 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:13:59.0719 5036 dtsoftbus01 - ok
19:13:59.0760 5036 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
19:13:59.0776 5036 DXGKrnl - ok
19:13:59.0996 5036 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
19:14:00.0000 5036 E1G60 - ok
19:14:00.0113 5036 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
19:14:00.0118 5036 Ecache - ok
19:14:00.0229 5036 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
19:14:00.0258 5036 elxstor - ok
19:14:00.0326 5036 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
19:14:00.0329 5036 ErrDev - ok
19:14:00.0351 5036 EverestDriver - ok
19:14:00.0435 5036 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
19:14:00.0447 5036 exfat - ok
19:14:00.0562 5036 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
19:14:00.0570 5036 fastfat - ok
19:14:00.0638 5036 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
19:14:00.0643 5036 fdc - ok
19:14:00.0677 5036 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
19:14:00.0680 5036 FileInfo - ok
19:14:00.0697 5036 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
19:14:00.0699 5036 Filetrace - ok
19:14:00.0719 5036 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
19:14:00.0721 5036 flpydisk - ok
19:14:00.0772 5036 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
19:14:00.0775 5036 FltMgr - ok
19:14:01.0011 5036 fssfltr - ok
19:14:01.0237 5036 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
19:14:01.0239 5036 Fs_Rec - ok
19:14:01.0325 5036 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
19:14:01.0327 5036 gagp30kx - ok
19:14:01.0360 5036 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:14:01.0362 5036 GEARAspiWDM - ok
19:14:01.0428 5036 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
19:14:01.0433 5036 HdAudAddService - ok
19:14:01.0514 5036 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:14:01.0531 5036 HDAudBus - ok
19:14:01.0554 5036 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
19:14:01.0557 5036 HidBth - ok
19:14:01.0583 5036 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
19:14:01.0586 5036 HidIr - ok
19:14:01.0614 5036 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
19:14:01.0617 5036 HidUsb - ok
19:14:01.0669 5036 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
19:14:01.0682 5036 HpCISSs - ok
19:14:01.0975 5036 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
19:14:02.0065 5036 HTTP - ok
19:14:02.0138 5036 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
19:14:02.0144 5036 i2omp - ok
19:14:02.0184 5036 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
19:14:02.0187 5036 i8042prt - ok
19:14:02.0230 5036 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
19:14:02.0237 5036 iaStorV - ok
19:14:02.0297 5036 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
19:14:02.0301 5036 iirsp - ok
19:14:02.0340 5036 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
19:14:02.0343 5036 intelide - ok
19:14:02.0368 5036 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
19:14:02.0371 5036 intelppm - ok
19:14:02.0405 5036 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:14:02.0408 5036 IpFilterDriver - ok
19:14:02.0425 5036 IpInIp - ok
19:14:02.0454 5036 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
19:14:02.0457 5036 IPMIDRV - ok
19:14:02.0484 5036 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
19:14:02.0488 5036 IPNAT - ok
19:14:02.0519 5036 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
19:14:02.0522 5036 IRENUM - ok
19:14:02.0556 5036 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
19:14:02.0558 5036 isapnp - ok
19:14:02.0591 5036 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
19:14:02.0594 5036 iScsiPrt - ok
19:14:02.0612 5036 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
19:14:02.0615 5036 iteatapi - ok
19:14:02.0765 5036 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
19:14:02.0769 5036 iteraid - ok
19:14:02.0815 5036 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
19:14:02.0817 5036 kbdclass - ok
19:14:02.0853 5036 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
19:14:02.0855 5036 kbdhid - ok
19:14:03.0157 5036 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
19:14:03.0179 5036 KSecDD - ok
19:14:03.0274 5036 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
19:14:03.0275 5036 lltdio - ok
19:14:03.0349 5036 LSI_FC (c5d62097bd2a075aaa213ab21bb60d12) C:\Windows\system32\drivers\lsi_fc.sys
19:14:03.0357 5036 Suspicious file (Forged): C:\Windows\system32\drivers\lsi_fc.sys. Real md5: c5d62097bd2a075aaa213ab21bb60d12, Fake md5: c7e15e82879bf3235b559563d4185365
19:14:03.0358 5036 LSI_FC ( ForgedFile.Multi.Generic ) - warning
19:14:03.0358 5036 LSI_FC - detected ForgedFile.Multi.Generic (1)
19:14:03.0429 5036 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
19:14:03.0447 5036 LSI_SAS - ok
19:14:03.0496 5036 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
19:14:03.0499 5036 LSI_SCSI - ok
19:14:03.0528 5036 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
19:14:03.0530 5036 luafv - ok
19:14:03.0585 5036 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
19:14:03.0588 5036 megasas - ok
19:14:03.0627 5036 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
19:14:03.0645 5036 MegaSR - ok
19:14:03.0667 5036 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
19:14:03.0670 5036 Modem - ok
19:14:03.0705 5036 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
19:14:03.0707 5036 monitor - ok
19:14:03.0856 5036 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
19:14:03.0859 5036 mouclass - ok
19:14:03.0903 5036 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
19:14:03.0907 5036 mouhid - ok
19:14:03.0937 5036 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
19:14:03.0939 5036 MountMgr - ok
19:14:03.0966 5036 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
19:14:03.0970 5036 mpio - ok
19:14:04.0221 5036 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
19:14:04.0225 5036 mpsdrv - ok
19:14:04.0402 5036 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
19:14:04.0413 5036 Mraid35x - ok
19:14:04.0488 5036 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
19:14:04.0492 5036 MRxDAV - ok
19:14:04.0527 5036 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:14:04.0531 5036 mrxsmb - ok
19:14:04.0572 5036 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:14:04.0578 5036 mrxsmb10 - ok
19:14:04.0588 5036 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:14:04.0592 5036 mrxsmb20 - ok
19:14:04.0681 5036 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
19:14:04.0683 5036 msahci - ok
19:14:04.0824 5036 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
19:14:04.0899 5036 msdsm - ok
19:14:04.0992 5036 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
19:14:04.0995 5036 Msfs - ok
19:14:05.0022 5036 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
19:14:05.0025 5036 msisadrv - ok
19:14:05.0057 5036 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
19:14:05.0060 5036 MSKSSRV - ok
19:14:05.0089 5036 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
19:14:05.0092 5036 MSPCLOCK - ok
19:14:05.0115 5036 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
19:14:05.0118 5036 MSPQM - ok
19:14:05.0173 5036 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
19:14:05.0178 5036 MsRPC - ok
19:14:05.0197 5036 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
19:14:05.0198 5036 mssmbios - ok
19:14:05.0227 5036 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
19:14:05.0230 5036 MSTEE - ok
19:14:05.0252 5036 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
19:14:05.0254 5036 Mup - ok
19:14:05.0302 5036 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
19:14:05.0305 5036 NativeWifiP - ok
19:14:05.0422 5036 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
19:14:05.0439 5036 NDIS - ok
19:14:05.0506 5036 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
19:14:05.0509 5036 NdisTapi - ok
19:14:05.0555 5036 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
19:14:05.0568 5036 Ndisuio - ok
19:14:05.0602 5036 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:14:05.0607 5036 NdisWan - ok
19:14:05.0625 5036 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
19:14:05.0628 5036 NDProxy - ok
19:14:05.0656 5036 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
19:14:05.0658 5036 NetBIOS - ok
19:14:05.0702 5036 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
19:14:05.0718 5036 netbt - ok
19:14:05.0757 5036 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
19:14:05.0760 5036 nfrd960 - ok
19:14:05.0881 5036 NPF (b48dc6abcd3aeff8618350ccbdc6b09a) C:\Windows\system32\drivers\npf.sys
19:14:05.0884 5036 NPF - ok
19:14:05.0932 5036 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
19:14:05.0934 5036 Npfs - ok
19:14:05.0978 5036 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
19:14:05.0981 5036 nsiproxy - ok
19:14:06.0035 5036 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
19:14:06.0153 5036 Ntfs - ok
19:14:06.0254 5036 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
19:14:06.0257 5036 ntrigdigi - ok
19:14:06.0268 5036 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
19:14:06.0271 5036 Null - ok
19:14:06.0297 5036 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
19:14:06.0302 5036 nvraid - ok
19:14:06.0319 5036 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
19:14:06.0322 5036 nvstor - ok
19:14:06.0339 5036 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
19:14:06.0344 5036 nv_agp - ok
19:14:06.0479 5036 NwlnkFlt - ok
19:14:06.0520 5036 NwlnkFwd - ok
19:14:06.0585 5036 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
19:14:06.0586 5036 ohci1394 - ok
19:14:06.0713 5036 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
19:14:06.0717 5036 Parport - ok
19:14:06.0813 5036 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
19:14:06.0816 5036 partmgr - ok
19:14:06.0851 5036 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
19:14:06.0858 5036 Parvdm - ok
19:14:06.0915 5036 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
19:14:06.0988 5036 pci - ok
19:14:07.0202 5036 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
19:14:07.0205 5036 pciide - ok
19:14:07.0275 5036 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
19:14:07.0279 5036 pcmcia - ok
19:14:07.0371 5036 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
19:14:07.0446 5036 PEAUTH - ok
19:14:07.0510 5036 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
19:14:07.0514 5036 PptpMiniport - ok
19:14:07.0542 5036 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
19:14:07.0576 5036 Processor - ok
19:14:07.0705 5036 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
19:14:07.0707 5036 PSched - ok
19:14:07.0772 5036 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
19:14:07.0820 5036 ql2300 - ok
19:14:07.0846 5036 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
19:14:07.0852 5036 ql40xx - ok
19:14:08.0050 5036 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
19:14:08.0052 5036 QWAVEdrv - ok
19:14:08.0102 5036 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
19:14:08.0104 5036 RasAcd - ok
19:14:08.0134 5036 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:14:08.0138 5036 Rasl2tp - ok
19:14:08.0180 5036 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
19:14:08.0183 5036 RasPppoe - ok
19:14:08.0203 5036 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
19:14:08.0208 5036 RasSstp - ok
19:14:08.0255 5036 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
19:14:08.0260 5036 rdbss - ok
19:14:08.0282 5036 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:14:08.0286 5036 RDPCDD - ok
19:14:08.0313 5036 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
19:14:08.0320 5036 rdpdr - ok
19:14:08.0343 5036 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
19:14:08.0346 5036 RDPENCDD - ok
19:14:08.0388 5036 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
19:14:08.0393 5036 RDPWD - ok
19:14:08.0452 5036 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
19:14:08.0457 5036 RFCOMM - ok
19:14:08.0625 5036 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\Windows\system32\DRIVERS\RimSerial.sys
19:14:08.0628 5036 RimVSerPort - ok
19:14:08.0682 5036 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
19:14:08.0685 5036 ROOTMODEM - ok
19:14:08.0733 5036 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
19:14:08.0736 5036 rspndr - ok
19:14:09.0020 5036 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
19:14:09.0024 5036 sbp2port - ok
19:14:09.0100 5036 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
19:14:09.0104 5036 secdrv - ok
19:14:09.0132 5036 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
19:14:09.0134 5036 Serenum - ok
19:14:09.0167 5036 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
19:14:09.0171 5036 Serial - ok
19:14:09.0200 5036 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
19:14:09.0211 5036 sermouse - ok
19:14:09.0245 5036 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
19:14:09.0248 5036 sffdisk - ok
19:14:09.0415 5036 sffp_mmc - ok
19:14:09.0517 5036 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
19:14:09.0520 5036 sffp_sd - ok
19:14:09.0558 5036 sfloppy (c33bfbd6e9e41fcd9ffef9729e9faed6) C:\Windows\system32\DRIVERS\sfloppy.sys
19:14:09.0560 5036 sfloppy - ok
19:14:09.0597 5036 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
19:14:09.0599 5036 sisagp - ok
19:14:09.0619 5036 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
19:14:09.0622 5036 SiSRaid2 - ok
19:14:09.0640 5036 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
19:14:09.0648 5036 SiSRaid4 - ok
19:14:09.0703 5036 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
19:14:09.0714 5036 Smb - ok
19:14:09.0736 5036 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
19:14:09.0740 5036 spldr - ok
19:14:09.0818 5036 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
19:14:09.0819 5036 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
19:14:09.0822 5036 sptd ( LockedFile.Multi.Generic ) - warning
19:14:09.0822 5036 sptd - detected LockedFile.Multi.Generic (1)
19:14:09.0868 5036 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
19:14:09.0968 5036 srv - ok
19:14:10.0059 5036 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
19:14:10.0063 5036 srv2 - ok
19:14:10.0079 5036 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
19:14:10.0083 5036 srvnet - ok
19:14:10.0163 5036 ssm_bus (9ece19a1a4f4896597c3bb840fbfa721) C:\Windows\system32\DRIVERS\ssm_bus.sys
19:14:10.0167 5036 ssm_bus - ok
19:14:10.0192 5036 ssm_mdfl (8e93a17a5253999a0e7c332f475699dc) C:\Windows\system32\DRIVERS\ssm_mdfl.sys
19:14:10.0195 5036 ssm_mdfl - ok
19:14:10.0219 5036 ssm_mdm (c0ba1357c63deacf3b3ccf4b989fef06) C:\Windows\system32\DRIVERS\ssm_mdm.sys
19:14:10.0224 5036 ssm_mdm - ok
19:14:10.0259 5036 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
19:14:10.0261 5036 swenum - ok
19:14:10.0290 5036 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
19:14:10.0304 5036 Symc8xx - ok
19:14:10.0329 5036 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
19:14:10.0331 5036 Sym_hi - ok
19:14:10.0350 5036 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
19:14:10.0353 5036 Sym_u3 - ok
19:14:10.0418 5036 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
19:14:10.0443 5036 Tcpip - ok
19:14:10.0481 5036 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
19:14:10.0489 5036 Tcpip6 - ok
19:14:10.0527 5036 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
19:14:10.0530 5036 tcpipreg - ok
19:14:10.0565 5036 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
19:14:10.0568 5036 TDPIPE - ok
19:14:10.0589 5036 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
19:14:10.0592 5036 TDTCP - ok
19:14:10.0627 5036 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
19:14:10.0631 5036 tdx - ok
19:14:10.0670 5036 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
19:14:10.0687 5036 TermDD - ok
19:14:10.0737 5036 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
19:14:10.0742 5036 TrueSight - ok
19:14:10.0829 5036 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:14:10.0831 5036 tssecsrv - ok
19:14:10.0874 5036 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
19:14:10.0878 5036 tunmp - ok
19:14:10.0925 5036 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
19:14:10.0928 5036 tunnel - ok
19:14:10.0962 5036 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
19:14:10.0965 5036 uagp35 - ok
19:14:11.0027 5036 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
19:14:11.0032 5036 udfs - ok
19:14:11.0071 5036 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
19:14:11.0074 5036 uliagpkx - ok
19:14:11.0100 5036 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
19:14:11.0106 5036 uliahci - ok
19:14:11.0132 5036 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
19:14:11.0188 5036 UlSata - ok
19:14:11.0288 5036 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
19:14:11.0292 5036 ulsata2 - ok
19:14:11.0420 5036 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
19:14:11.0423 5036 umbus - ok
19:14:11.0513 5036 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
19:14:11.0528 5036 USBAAPL - ok
19:14:11.0582 5036 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
19:14:11.0586 5036 usbaudio - ok
19:14:11.0618 5036 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
19:14:11.0621 5036 usbccgp - ok
19:14:11.0665 5036 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
19:14:11.0668 5036 usbcir - ok
19:14:11.0715 5036 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
19:14:11.0718 5036 usbehci - ok
19:14:11.0750 5036 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
19:14:11.0754 5036 usbhub - ok
19:14:11.0768 5036 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
19:14:11.0771 5036 usbohci - ok
19:14:11.0799 5036 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
19:14:11.0816 5036 usbprint - ok
19:14:11.0850 5036 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
19:14:11.0853 5036 usbscan - ok
19:14:11.0888 5036 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:14:11.0901 5036 USBSTOR - ok
19:14:11.0941 5036 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
19:14:11.0944 5036 usbuhci - ok
19:14:11.0970 5036 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
19:14:11.0973 5036 vga - ok
19:14:11.0992 5036 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
19:14:11.0995 5036 VgaSave - ok
19:14:12.0021 5036 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
19:14:12.0024 5036 viaagp - ok
19:14:12.0050 5036 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
19:14:12.0054 5036 ViaC7 - ok
19:14:12.0075 5036 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
19:14:12.0077 5036 viaide - ok
19:14:12.0099 5036 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
19:14:12.0102 5036 volmgr - ok
19:14:12.0143 5036 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
19:14:12.0161 5036 volmgrx - ok
19:14:12.0193 5036 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
19:14:12.0198 5036 volsnap - ok
19:14:12.0406 5036 vsmraid - ok
19:14:12.0733 5036 VX1000 (d22c6b9c2f840d403fd387ad207a4b16) C:\Windows\system32\DRIVERS\VX1000.sys
19:14:12.0775 5036 VX1000 - ok
19:14:12.0983 5036 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
19:14:12.0986 5036 WacomPen - ok
19:14:13.0049 5036 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:14:13.0053 5036 Wanarp - ok
19:14:13.0058 5036 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:14:13.0059 5036 Wanarpv6 - ok
19:14:13.0091 5036 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
19:14:13.0093 5036 Wd - ok
19:14:13.0125 5036 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
19:14:13.0143 5036 Wdf01000 - ok
19:14:13.0235 5036 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:14:13.0236 5036 WmiAcpi - ok
19:14:13.0313 5036 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
19:14:13.0317 5036 WpdUsb - ok
19:14:13.0356 5036 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
19:14:13.0358 5036 ws2ifsl - ok
19:14:13.0401 5036 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:14:13.0405 5036 WUDFRd - ok
19:14:13.0446 5036 yukonwlh (04e268adfc81964c49dc0c082d520f7e) C:\Windows\system32\DRIVERS\yk60x86.sys
19:14:13.0452 5036 yukonwlh - ok
19:14:13.0502 5036 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
19:14:13.0563 5036 \Device\Harddisk0\DR0 - ok
19:14:13.0588 5036 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
19:14:13.0592 5036 \Device\Harddisk1\DR1 - ok
19:14:13.0596 5036 Boot (0x1200) (615570ed205c5a0801076d3d5535b51c) \Device\Harddisk0\DR0\Partition0
19:14:13.0598 5036 \Device\Harddisk0\DR0\Partition0 - ok
19:14:13.0625 5036 Boot (0x1200) (88e0fbccb19f258c6dbd49064bb74793) \Device\Harddisk0\DR0\Partition1
19:14:13.0626 5036 \Device\Harddisk0\DR0\Partition1 - ok
19:14:13.0630 5036 Boot (0x1200) (b1e27aa018409de6bfd73f8afb883a65) \Device\Harddisk1\DR1\Partition0
19:14:13.0631 5036 \Device\Harddisk1\DR1\Partition0 - ok
19:14:13.0647 5036 Boot (0x1200) (8a7265d5a833b7968750b63bad91ea41) \Device\Harddisk1\DR1\Partition1
19:14:13.0648 5036 \Device\Harddisk1\DR1\Partition1 - ok
19:14:13.0669 5036 Boot (0x1200) (9603950e279fe49279728edc2508fca3) \Device\Harddisk1\DR1\Partition2
19:14:13.0670 5036 \Device\Harddisk1\DR1\Partition2 - ok
19:14:13.0670 5036 ============================================================
19:14:13.0670 5036 Scan finished
19:14:13.0670 5036 ============================================================
19:14:13.0689 4276 Detected object count: 2
19:14:13.0689 4276 Actual detected object count: 2
19:14:45.0512 4276 C:\Windows\system32\drivers\lsi_fc.sys - copied to quarantine
19:14:45.0513 4276 LSI_FC ( ForgedFile.Multi.Generic ) - User select action: Quarantine
19:14:45.0649 4276 C:\Windows\system32\Drivers\sptd.sys - copied to quarantine
19:14:45.0649 4276 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
19:14:56.0295 5264 Deinitialize success
19:13:46.0463 5840 ============================================================
19:13:46.0463 5840 Current date / time: 2012/01/16 19:13:46.0463
19:13:46.0464 5840 SystemInfo:
19:13:46.0464 5840
19:13:46.0464 5840 OS Version: 6.0.6002 ServicePack: 2.0
19:13:46.0464 5840 Product type: Workstation
19:13:46.0464 5840 ComputerName: PC-DE-MOI
19:13:46.0464 5840 UserName: moi
19:13:46.0464 5840 Windows directory: C:\Windows
19:13:46.0464 5840 System windows directory: C:\Windows
19:13:46.0464 5840 Processor architecture: Intel x86
19:13:46.0464 5840 Number of processors: 2
19:13:46.0464 5840 Page size: 0x1000
19:13:46.0464 5840 Boot type: Normal boot
19:13:46.0464 5840 ============================================================
19:13:47.0530 5840 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000, SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K', Flags 0x00000050
19:13:47.0545 5840 Drive \Device\Harddisk1\DR1 - Size: 0xE8E0DB6000, SectorSize: 0x200, Cylinders: 0x1DB01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K', Flags 0x00000050
19:13:47.0833 5840 Initialize success
19:13:54.0257 5036 ============================================================
19:13:54.0257 5036 Scan started
19:13:54.0257 5036 Mode: Manual;
19:13:54.0257 5036 ============================================================
19:13:55.0393 5036 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
19:13:55.0398 5036 ACPI - ok
19:13:55.0462 5036 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
19:13:55.0480 5036 adp94xx - ok
19:13:55.0514 5036 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
19:13:55.0531 5036 adpahci - ok
19:13:55.0554 5036 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
19:13:55.0562 5036 adpu160m - ok
19:13:55.0591 5036 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
19:13:55.0596 5036 adpu320 - ok
19:13:55.0635 5036 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
19:13:55.0653 5036 AFD - ok
19:13:55.0687 5036 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
19:13:55.0690 5036 agp440 - ok
19:13:55.0714 5036 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
19:13:55.0718 5036 aic78xx - ok
19:13:55.0737 5036 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
19:13:55.0739 5036 aliide - ok
19:13:55.0800 5036 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
19:13:55.0803 5036 amdagp - ok
19:13:55.0827 5036 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
19:13:55.0830 5036 amdide - ok
19:13:55.0882 5036 amdiox86 (ff258424f0b2ef25eb98f04ee386e6e3) C:\Windows\system32\DRIVERS\amdiox86.sys
19:13:55.0897 5036 amdiox86 - ok
19:13:55.0934 5036 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
19:13:55.0937 5036 AmdK7 - ok
19:13:55.0953 5036 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
19:13:55.0955 5036 AmdK8 - ok
19:13:55.0992 5036 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
19:13:55.0995 5036 arc - ok
19:13:56.0026 5036 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
19:13:56.0037 5036 arcsas - ok
19:13:56.0071 5036 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
19:13:56.0072 5036 AsyncMac - ok
19:13:56.0106 5036 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
19:13:56.0107 5036 atapi - ok
19:13:56.0204 5036 athrusb (44fa26470d4c8123ccf71f4200b782d3) C:\Windows\system32\DRIVERS\athrusb.sys
19:13:56.0238 5036 athrusb - ok
19:13:56.0361 5036 AtiHdmiService (f48d470154cc58cd6520771464fbec3f) C:\Windows\system32\drivers\AtiHdmi.sys
19:13:56.0365 5036 AtiHdmiService - ok
19:13:57.0016 5036 atikmdag (757c145660fd0fe04d76ebc350c90165) C:\Windows\system32\DRIVERS\atikmdag.sys
19:13:57.0372 5036 atikmdag - ok
19:13:57.0491 5036 AVGIDSDriver (1c8d965bbcaa9ee5defdb54743437086) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
19:13:57.0496 5036 AVGIDSDriver - ok
19:13:57.0525 5036 AVGIDSEH (c59c9bc3f0612bd207ccdc5d8cb9ce39) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
19:13:57.0531 5036 AVGIDSEH - ok
19:13:57.0703 5036 AVGIDSFilter (c5559de2ec66cede15a1664f6d183d8e) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
19:13:57.0705 5036 AVGIDSFilter - ok
19:13:57.0768 5036 AVGIDSShim (ae5e9667fa40206796d1bd5bd0427a8a) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
19:13:57.0772 5036 AVGIDSShim - ok
19:13:57.0806 5036 Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\Windows\system32\DRIVERS\avgldx86.sys
19:13:57.0812 5036 Avgldx86 - ok
19:13:57.0997 5036 Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\Windows\system32\DRIVERS\avgmfx86.sys
19:13:58.0000 5036 Avgmfx86 - ok
19:13:58.0065 5036 Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\Windows\system32\DRIVERS\avgrkx86.sys
19:13:58.0074 5036 Avgrkx86 - ok
19:13:58.0102 5036 Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\Windows\system32\DRIVERS\avgtdix.sys
19:13:58.0118 5036 Avgtdix - ok
19:13:58.0155 5036 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
19:13:58.0158 5036 Beep - ok
19:13:58.0196 5036 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
19:13:58.0201 5036 blbdrive - ok
19:13:58.0258 5036 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
19:13:58.0262 5036 bowser - ok
19:13:58.0290 5036 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
19:13:58.0293 5036 BrFiltLo - ok
19:13:58.0314 5036 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
19:13:58.0317 5036 BrFiltUp - ok
19:13:58.0339 5036 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
19:13:58.0343 5036 Brserid - ok
19:13:58.0359 5036 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
19:13:58.0363 5036 BrSerWdm - ok
19:13:58.0385 5036 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
19:13:58.0388 5036 BrUsbMdm - ok
19:13:58.0408 5036 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
19:13:58.0411 5036 BrUsbSer - ok
19:13:58.0441 5036 BthEnum (6d39c954799b63ba866910234cf7d726) C:\Windows\system32\DRIVERS\BthEnum.sys
19:13:58.0444 5036 BthEnum - ok
19:13:58.0492 5036 BTHMODEM (9a966a8e86d1771911ae34a20d11bff3) C:\Windows\system32\DRIVERS\bthmodem.sys
19:13:58.0504 5036 BTHMODEM - ok
19:13:58.0645 5036 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
19:13:58.0649 5036 BthPan - ok
19:13:58.0726 5036 BTHPORT (611ff3f2f095c8d4a6d4cfd9dcc09793) C:\Windows\system32\Drivers\BTHport.sys
19:13:58.0827 5036 BTHPORT - ok
19:13:58.0934 5036 BTHUSB (d330803eab2a15caec7f011f1d4cb30e) C:\Windows\system32\Drivers\BTHUSB.sys
19:13:58.0937 5036 BTHUSB - ok
19:13:58.0980 5036 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
19:13:58.0982 5036 cdfs - ok
19:13:59.0041 5036 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
19:13:59.0046 5036 cdrom - ok
19:13:59.0070 5036 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
19:13:59.0073 5036 circlass - ok
19:13:59.0113 5036 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
19:13:59.0118 5036 CLFS - ok
19:13:59.0196 5036 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
19:13:59.0211 5036 cmdide - ok
19:13:59.0233 5036 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
19:13:59.0237 5036 Compbatt - ok
19:13:59.0259 5036 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
19:13:59.0262 5036 crcdisk - ok
19:13:59.0301 5036 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
19:13:59.0305 5036 Crusoe - ok
19:13:59.0375 5036 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
19:13:59.0377 5036 DfsC - ok
19:13:59.0474 5036 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
19:13:59.0477 5036 disk - ok
19:13:59.0571 5036 driverhardwarev2 (a694d8db6d360a3bbb0bd1517f1c1aee) C:\Program Files\ma-config.com\Drivers\driverhardwarev2.sys
19:13:59.0574 5036 driverhardwarev2 - ok
19:13:59.0662 5036 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
19:13:59.0665 5036 drmkaud - ok
19:13:59.0715 5036 dtsoftbus01 (555e54ac2f601a8821cef58961653991) C:\Windows\system32\DRIVERS\dtsoftbus01.sys
19:13:59.0719 5036 dtsoftbus01 - ok
19:13:59.0760 5036 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
19:13:59.0776 5036 DXGKrnl - ok
19:13:59.0996 5036 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
19:14:00.0000 5036 E1G60 - ok
19:14:00.0113 5036 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
19:14:00.0118 5036 Ecache - ok
19:14:00.0229 5036 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
19:14:00.0258 5036 elxstor - ok
19:14:00.0326 5036 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
19:14:00.0329 5036 ErrDev - ok
19:14:00.0351 5036 EverestDriver - ok
19:14:00.0435 5036 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
19:14:00.0447 5036 exfat - ok
19:14:00.0562 5036 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
19:14:00.0570 5036 fastfat - ok
19:14:00.0638 5036 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
19:14:00.0643 5036 fdc - ok
19:14:00.0677 5036 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
19:14:00.0680 5036 FileInfo - ok
19:14:00.0697 5036 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
19:14:00.0699 5036 Filetrace - ok
19:14:00.0719 5036 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
19:14:00.0721 5036 flpydisk - ok
19:14:00.0772 5036 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
19:14:00.0775 5036 FltMgr - ok
19:14:01.0011 5036 fssfltr - ok
19:14:01.0237 5036 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
19:14:01.0239 5036 Fs_Rec - ok
19:14:01.0325 5036 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
19:14:01.0327 5036 gagp30kx - ok
19:14:01.0360 5036 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
19:14:01.0362 5036 GEARAspiWDM - ok
19:14:01.0428 5036 HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
19:14:01.0433 5036 HdAudAddService - ok
19:14:01.0514 5036 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:14:01.0531 5036 HDAudBus - ok
19:14:01.0554 5036 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
19:14:01.0557 5036 HidBth - ok
19:14:01.0583 5036 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
19:14:01.0586 5036 HidIr - ok
19:14:01.0614 5036 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
19:14:01.0617 5036 HidUsb - ok
19:14:01.0669 5036 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
19:14:01.0682 5036 HpCISSs - ok
19:14:01.0975 5036 HTTP (0eeeca26c8d4bde2a4664db058a81937) C:\Windows\system32\drivers\HTTP.sys
19:14:02.0065 5036 HTTP - ok
19:14:02.0138 5036 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
19:14:02.0144 5036 i2omp - ok
19:14:02.0184 5036 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
19:14:02.0187 5036 i8042prt - ok
19:14:02.0230 5036 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
19:14:02.0237 5036 iaStorV - ok
19:14:02.0297 5036 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
19:14:02.0301 5036 iirsp - ok
19:14:02.0340 5036 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
19:14:02.0343 5036 intelide - ok
19:14:02.0368 5036 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
19:14:02.0371 5036 intelppm - ok
19:14:02.0405 5036 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:14:02.0408 5036 IpFilterDriver - ok
19:14:02.0425 5036 IpInIp - ok
19:14:02.0454 5036 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
19:14:02.0457 5036 IPMIDRV - ok
19:14:02.0484 5036 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
19:14:02.0488 5036 IPNAT - ok
19:14:02.0519 5036 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
19:14:02.0522 5036 IRENUM - ok
19:14:02.0556 5036 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
19:14:02.0558 5036 isapnp - ok
19:14:02.0591 5036 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
19:14:02.0594 5036 iScsiPrt - ok
19:14:02.0612 5036 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
19:14:02.0615 5036 iteatapi - ok
19:14:02.0765 5036 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
19:14:02.0769 5036 iteraid - ok
19:14:02.0815 5036 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
19:14:02.0817 5036 kbdclass - ok
19:14:02.0853 5036 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
19:14:02.0855 5036 kbdhid - ok
19:14:03.0157 5036 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
19:14:03.0179 5036 KSecDD - ok
19:14:03.0274 5036 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
19:14:03.0275 5036 lltdio - ok
19:14:03.0349 5036 LSI_FC (c5d62097bd2a075aaa213ab21bb60d12) C:\Windows\system32\drivers\lsi_fc.sys
19:14:03.0357 5036 Suspicious file (Forged): C:\Windows\system32\drivers\lsi_fc.sys. Real md5: c5d62097bd2a075aaa213ab21bb60d12, Fake md5: c7e15e82879bf3235b559563d4185365
19:14:03.0358 5036 LSI_FC ( ForgedFile.Multi.Generic ) - warning
19:14:03.0358 5036 LSI_FC - detected ForgedFile.Multi.Generic (1)
19:14:03.0429 5036 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
19:14:03.0447 5036 LSI_SAS - ok
19:14:03.0496 5036 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
19:14:03.0499 5036 LSI_SCSI - ok
19:14:03.0528 5036 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
19:14:03.0530 5036 luafv - ok
19:14:03.0585 5036 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
19:14:03.0588 5036 megasas - ok
19:14:03.0627 5036 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
19:14:03.0645 5036 MegaSR - ok
19:14:03.0667 5036 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
19:14:03.0670 5036 Modem - ok
19:14:03.0705 5036 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
19:14:03.0707 5036 monitor - ok
19:14:03.0856 5036 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
19:14:03.0859 5036 mouclass - ok
19:14:03.0903 5036 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
19:14:03.0907 5036 mouhid - ok
19:14:03.0937 5036 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
19:14:03.0939 5036 MountMgr - ok
19:14:03.0966 5036 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
19:14:03.0970 5036 mpio - ok
19:14:04.0221 5036 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
19:14:04.0225 5036 mpsdrv - ok
19:14:04.0402 5036 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
19:14:04.0413 5036 Mraid35x - ok
19:14:04.0488 5036 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
19:14:04.0492 5036 MRxDAV - ok
19:14:04.0527 5036 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:14:04.0531 5036 mrxsmb - ok
19:14:04.0572 5036 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:14:04.0578 5036 mrxsmb10 - ok
19:14:04.0588 5036 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:14:04.0592 5036 mrxsmb20 - ok
19:14:04.0681 5036 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
19:14:04.0683 5036 msahci - ok
19:14:04.0824 5036 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
19:14:04.0899 5036 msdsm - ok
19:14:04.0992 5036 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
19:14:04.0995 5036 Msfs - ok
19:14:05.0022 5036 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
19:14:05.0025 5036 msisadrv - ok
19:14:05.0057 5036 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
19:14:05.0060 5036 MSKSSRV - ok
19:14:05.0089 5036 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
19:14:05.0092 5036 MSPCLOCK - ok
19:14:05.0115 5036 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
19:14:05.0118 5036 MSPQM - ok
19:14:05.0173 5036 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
19:14:05.0178 5036 MsRPC - ok
19:14:05.0197 5036 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
19:14:05.0198 5036 mssmbios - ok
19:14:05.0227 5036 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
19:14:05.0230 5036 MSTEE - ok
19:14:05.0252 5036 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
19:14:05.0254 5036 Mup - ok
19:14:05.0302 5036 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
19:14:05.0305 5036 NativeWifiP - ok
19:14:05.0422 5036 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
19:14:05.0439 5036 NDIS - ok
19:14:05.0506 5036 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
19:14:05.0509 5036 NdisTapi - ok
19:14:05.0555 5036 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
19:14:05.0568 5036 Ndisuio - ok
19:14:05.0602 5036 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:14:05.0607 5036 NdisWan - ok
19:14:05.0625 5036 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
19:14:05.0628 5036 NDProxy - ok
19:14:05.0656 5036 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
19:14:05.0658 5036 NetBIOS - ok
19:14:05.0702 5036 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
19:14:05.0718 5036 netbt - ok
19:14:05.0757 5036 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
19:14:05.0760 5036 nfrd960 - ok
19:14:05.0881 5036 NPF (b48dc6abcd3aeff8618350ccbdc6b09a) C:\Windows\system32\drivers\npf.sys
19:14:05.0884 5036 NPF - ok
19:14:05.0932 5036 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
19:14:05.0934 5036 Npfs - ok
19:14:05.0978 5036 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
19:14:05.0981 5036 nsiproxy - ok
19:14:06.0035 5036 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
19:14:06.0153 5036 Ntfs - ok
19:14:06.0254 5036 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
19:14:06.0257 5036 ntrigdigi - ok
19:14:06.0268 5036 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
19:14:06.0271 5036 Null - ok
19:14:06.0297 5036 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
19:14:06.0302 5036 nvraid - ok
19:14:06.0319 5036 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
19:14:06.0322 5036 nvstor - ok
19:14:06.0339 5036 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
19:14:06.0344 5036 nv_agp - ok
19:14:06.0479 5036 NwlnkFlt - ok
19:14:06.0520 5036 NwlnkFwd - ok
19:14:06.0585 5036 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
19:14:06.0586 5036 ohci1394 - ok
19:14:06.0713 5036 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
19:14:06.0717 5036 Parport - ok
19:14:06.0813 5036 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
19:14:06.0816 5036 partmgr - ok
19:14:06.0851 5036 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
19:14:06.0858 5036 Parvdm - ok
19:14:06.0915 5036 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
19:14:06.0988 5036 pci - ok
19:14:07.0202 5036 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
19:14:07.0205 5036 pciide - ok
19:14:07.0275 5036 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
19:14:07.0279 5036 pcmcia - ok
19:14:07.0371 5036 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
19:14:07.0446 5036 PEAUTH - ok
19:14:07.0510 5036 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
19:14:07.0514 5036 PptpMiniport - ok
19:14:07.0542 5036 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
19:14:07.0576 5036 Processor - ok
19:14:07.0705 5036 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
19:14:07.0707 5036 PSched - ok
19:14:07.0772 5036 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
19:14:07.0820 5036 ql2300 - ok
19:14:07.0846 5036 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
19:14:07.0852 5036 ql40xx - ok
19:14:08.0050 5036 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
19:14:08.0052 5036 QWAVEdrv - ok
19:14:08.0102 5036 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
19:14:08.0104 5036 RasAcd - ok
19:14:08.0134 5036 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:14:08.0138 5036 Rasl2tp - ok
19:14:08.0180 5036 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
19:14:08.0183 5036 RasPppoe - ok
19:14:08.0203 5036 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
19:14:08.0208 5036 RasSstp - ok
19:14:08.0255 5036 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
19:14:08.0260 5036 rdbss - ok
19:14:08.0282 5036 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:14:08.0286 5036 RDPCDD - ok
19:14:08.0313 5036 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
19:14:08.0320 5036 rdpdr - ok
19:14:08.0343 5036 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
19:14:08.0346 5036 RDPENCDD - ok
19:14:08.0388 5036 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
19:14:08.0393 5036 RDPWD - ok
19:14:08.0452 5036 RFCOMM (6482707f9f4da0ecbab43b2e0398a101) C:\Windows\system32\DRIVERS\rfcomm.sys
19:14:08.0457 5036 RFCOMM - ok
19:14:08.0625 5036 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\Windows\system32\DRIVERS\RimSerial.sys
19:14:08.0628 5036 RimVSerPort - ok
19:14:08.0682 5036 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
19:14:08.0685 5036 ROOTMODEM - ok
19:14:08.0733 5036 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
19:14:08.0736 5036 rspndr - ok
19:14:09.0020 5036 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
19:14:09.0024 5036 sbp2port - ok
19:14:09.0100 5036 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
19:14:09.0104 5036 secdrv - ok
19:14:09.0132 5036 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
19:14:09.0134 5036 Serenum - ok
19:14:09.0167 5036 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
19:14:09.0171 5036 Serial - ok
19:14:09.0200 5036 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
19:14:09.0211 5036 sermouse - ok
19:14:09.0245 5036 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
19:14:09.0248 5036 sffdisk - ok
19:14:09.0415 5036 sffp_mmc - ok
19:14:09.0517 5036 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
19:14:09.0520 5036 sffp_sd - ok
19:14:09.0558 5036 sfloppy (c33bfbd6e9e41fcd9ffef9729e9faed6) C:\Windows\system32\DRIVERS\sfloppy.sys
19:14:09.0560 5036 sfloppy - ok
19:14:09.0597 5036 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
19:14:09.0599 5036 sisagp - ok
19:14:09.0619 5036 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
19:14:09.0622 5036 SiSRaid2 - ok
19:14:09.0640 5036 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
19:14:09.0648 5036 SiSRaid4 - ok
19:14:09.0703 5036 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
19:14:09.0714 5036 Smb - ok
19:14:09.0736 5036 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
19:14:09.0740 5036 spldr - ok
19:14:09.0818 5036 sptd (cdddec541bc3c96f91ecb48759673505) C:\Windows\system32\Drivers\sptd.sys
19:14:09.0819 5036 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: cdddec541bc3c96f91ecb48759673505
19:14:09.0822 5036 sptd ( LockedFile.Multi.Generic ) - warning
19:14:09.0822 5036 sptd - detected LockedFile.Multi.Generic (1)
19:14:09.0868 5036 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
19:14:09.0968 5036 srv - ok
19:14:10.0059 5036 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
19:14:10.0063 5036 srv2 - ok
19:14:10.0079 5036 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
19:14:10.0083 5036 srvnet - ok
19:14:10.0163 5036 ssm_bus (9ece19a1a4f4896597c3bb840fbfa721) C:\Windows\system32\DRIVERS\ssm_bus.sys
19:14:10.0167 5036 ssm_bus - ok
19:14:10.0192 5036 ssm_mdfl (8e93a17a5253999a0e7c332f475699dc) C:\Windows\system32\DRIVERS\ssm_mdfl.sys
19:14:10.0195 5036 ssm_mdfl - ok
19:14:10.0219 5036 ssm_mdm (c0ba1357c63deacf3b3ccf4b989fef06) C:\Windows\system32\DRIVERS\ssm_mdm.sys
19:14:10.0224 5036 ssm_mdm - ok
19:14:10.0259 5036 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
19:14:10.0261 5036 swenum - ok
19:14:10.0290 5036 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
19:14:10.0304 5036 Symc8xx - ok
19:14:10.0329 5036 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
19:14:10.0331 5036 Sym_hi - ok
19:14:10.0350 5036 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
19:14:10.0353 5036 Sym_u3 - ok
19:14:10.0418 5036 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
19:14:10.0443 5036 Tcpip - ok
19:14:10.0481 5036 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
19:14:10.0489 5036 Tcpip6 - ok
19:14:10.0527 5036 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
19:14:10.0530 5036 tcpipreg - ok
19:14:10.0565 5036 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
19:14:10.0568 5036 TDPIPE - ok
19:14:10.0589 5036 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
19:14:10.0592 5036 TDTCP - ok
19:14:10.0627 5036 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
19:14:10.0631 5036 tdx - ok
19:14:10.0670 5036 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
19:14:10.0687 5036 TermDD - ok
19:14:10.0737 5036 TrueSight (f69641efdb19acb4753b0155f7fdeed5) c:\windows\system32\drivers\TrueSight.sys
19:14:10.0742 5036 TrueSight - ok
19:14:10.0829 5036 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:14:10.0831 5036 tssecsrv - ok
19:14:10.0874 5036 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
19:14:10.0878 5036 tunmp - ok
19:14:10.0925 5036 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
19:14:10.0928 5036 tunnel - ok
19:14:10.0962 5036 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
19:14:10.0965 5036 uagp35 - ok
19:14:11.0027 5036 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
19:14:11.0032 5036 udfs - ok
19:14:11.0071 5036 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
19:14:11.0074 5036 uliagpkx - ok
19:14:11.0100 5036 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
19:14:11.0106 5036 uliahci - ok
19:14:11.0132 5036 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
19:14:11.0188 5036 UlSata - ok
19:14:11.0288 5036 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
19:14:11.0292 5036 ulsata2 - ok
19:14:11.0420 5036 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
19:14:11.0423 5036 umbus - ok
19:14:11.0513 5036 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
19:14:11.0528 5036 USBAAPL - ok
19:14:11.0582 5036 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
19:14:11.0586 5036 usbaudio - ok
19:14:11.0618 5036 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
19:14:11.0621 5036 usbccgp - ok
19:14:11.0665 5036 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
19:14:11.0668 5036 usbcir - ok
19:14:11.0715 5036 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
19:14:11.0718 5036 usbehci - ok
19:14:11.0750 5036 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
19:14:11.0754 5036 usbhub - ok
19:14:11.0768 5036 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
19:14:11.0771 5036 usbohci - ok
19:14:11.0799 5036 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
19:14:11.0816 5036 usbprint - ok
19:14:11.0850 5036 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
19:14:11.0853 5036 usbscan - ok
19:14:11.0888 5036 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:14:11.0901 5036 USBSTOR - ok
19:14:11.0941 5036 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
19:14:11.0944 5036 usbuhci - ok
19:14:11.0970 5036 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
19:14:11.0973 5036 vga - ok
19:14:11.0992 5036 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
19:14:11.0995 5036 VgaSave - ok
19:14:12.0021 5036 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
19:14:12.0024 5036 viaagp - ok
19:14:12.0050 5036 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
19:14:12.0054 5036 ViaC7 - ok
19:14:12.0075 5036 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
19:14:12.0077 5036 viaide - ok
19:14:12.0099 5036 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
19:14:12.0102 5036 volmgr - ok
19:14:12.0143 5036 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
19:14:12.0161 5036 volmgrx - ok
19:14:12.0193 5036 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
19:14:12.0198 5036 volsnap - ok
19:14:12.0406 5036 vsmraid - ok
19:14:12.0733 5036 VX1000 (d22c6b9c2f840d403fd387ad207a4b16) C:\Windows\system32\DRIVERS\VX1000.sys
19:14:12.0775 5036 VX1000 - ok
19:14:12.0983 5036 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
19:14:12.0986 5036 WacomPen - ok
19:14:13.0049 5036 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:14:13.0053 5036 Wanarp - ok
19:14:13.0058 5036 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:14:13.0059 5036 Wanarpv6 - ok
19:14:13.0091 5036 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
19:14:13.0093 5036 Wd - ok
19:14:13.0125 5036 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
19:14:13.0143 5036 Wdf01000 - ok
19:14:13.0235 5036 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
19:14:13.0236 5036 WmiAcpi - ok
19:14:13.0313 5036 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
19:14:13.0317 5036 WpdUsb - ok
19:14:13.0356 5036 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
19:14:13.0358 5036 ws2ifsl - ok
19:14:13.0401 5036 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:14:13.0405 5036 WUDFRd - ok
19:14:13.0446 5036 yukonwlh (04e268adfc81964c49dc0c082d520f7e) C:\Windows\system32\DRIVERS\yk60x86.sys
19:14:13.0452 5036 yukonwlh - ok
19:14:13.0502 5036 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
19:14:13.0563 5036 \Device\Harddisk0\DR0 - ok
19:14:13.0588 5036 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1
19:14:13.0592 5036 \Device\Harddisk1\DR1 - ok
19:14:13.0596 5036 Boot (0x1200) (615570ed205c5a0801076d3d5535b51c) \Device\Harddisk0\DR0\Partition0
19:14:13.0598 5036 \Device\Harddisk0\DR0\Partition0 - ok
19:14:13.0625 5036 Boot (0x1200) (88e0fbccb19f258c6dbd49064bb74793) \Device\Harddisk0\DR0\Partition1
19:14:13.0626 5036 \Device\Harddisk0\DR0\Partition1 - ok
19:14:13.0630 5036 Boot (0x1200) (b1e27aa018409de6bfd73f8afb883a65) \Device\Harddisk1\DR1\Partition0
19:14:13.0631 5036 \Device\Harddisk1\DR1\Partition0 - ok
19:14:13.0647 5036 Boot (0x1200) (8a7265d5a833b7968750b63bad91ea41) \Device\Harddisk1\DR1\Partition1
19:14:13.0648 5036 \Device\Harddisk1\DR1\Partition1 - ok
19:14:13.0669 5036 Boot (0x1200) (9603950e279fe49279728edc2508fca3) \Device\Harddisk1\DR1\Partition2
19:14:13.0670 5036 \Device\Harddisk1\DR1\Partition2 - ok
19:14:13.0670 5036 ============================================================
19:14:13.0670 5036 Scan finished
19:14:13.0670 5036 ============================================================
19:14:13.0689 4276 Detected object count: 2
19:14:13.0689 4276 Actual detected object count: 2
19:14:45.0512 4276 C:\Windows\system32\drivers\lsi_fc.sys - copied to quarantine
19:14:45.0513 4276 LSI_FC ( ForgedFile.Multi.Generic ) - User select action: Quarantine
19:14:45.0649 4276 C:\Windows\system32\Drivers\sptd.sys - copied to quarantine
19:14:45.0649 4276 sptd ( LockedFile.Multi.Generic ) - User select action: Quarantine
19:14:56.0295 5264 Deinitialize success
