BleepingComputer.com: Infected with System Restore virus, keep getting google redirect

17:27:29.0074 3456 TDSS rootkit removing tool 2.6.11.0 Oct 19 2011 13:50:27
17:27:29.0354 3456 ============================================================
17:27:29.0354 3456 Current date / time: 2011/10/19 17:27:29.0354
17:27:29.0354 3456 SystemInfo:
17:27:29.0354 3456
17:27:29.0354 3456 OS Version: 6.0.6001 ServicePack: 1.0
17:27:29.0354 3456 Product type: Workstation
17:27:29.0354 3456 ComputerName: WALDO
17:27:29.0354 3456 UserName: Becca
17:27:29.0354 3456 Windows directory: C:\Windows
17:27:29.0354 3456 System windows directory: C:\Windows
17:27:29.0354 3456 Processor architecture: Intel x86
17:27:29.0354 3456 Number of processors: 1
17:27:29.0354 3456 Page size: 0x1000
17:27:29.0354 3456 Boot type: Normal boot
17:27:29.0354 3456 ============================================================
17:27:30.0134 3456 Initialize success
17:27:34.0518 3868 ============================================================
17:27:34.0518 3868 Scan started
17:27:34.0518 3868 Mode: Manual;
17:27:34.0518 3868 ============================================================
17:27:35.0657 3868 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
17:27:35.0704 3868 ACPI - ok
17:27:35.0844 3868 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
17:27:35.0891 3868 adp94xx - ok
17:27:36.0031 3868 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
17:27:36.0062 3868 adpahci - ok
17:27:36.0218 3868 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
17:27:36.0250 3868 adpu160m - ok
17:27:36.0421 3868 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
17:27:36.0468 3868 adpu320 - ok
17:27:36.0655 3868 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
17:27:36.0702 3868 AFD - ok
17:27:36.0842 3868 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
17:27:36.0874 3868 agp440 - ok
17:27:37.0014 3868 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
17:27:37.0045 3868 aic78xx - ok
17:27:37.0186 3868 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
17:27:37.0217 3868 aliide - ok
17:27:37.0342 3868 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
17:27:37.0404 3868 amdagp - ok
17:27:37.0513 3868 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
17:27:37.0513 3868 amdide - ok
17:27:37.0638 3868 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
17:27:37.0669 3868 AmdK7 - ok
17:27:37.0794 3868 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
17:27:37.0841 3868 AmdK8 - ok
17:27:38.0044 3868 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
17:27:38.0090 3868 arc - ok
17:27:38.0231 3868 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
17:27:38.0262 3868 arcsas - ok
17:27:38.0387 3868 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
17:27:38.0402 3868 AsyncMac - ok
17:27:38.0527 3868 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
17:27:38.0558 3868 atapi - ok
17:27:38.0714 3868 athr (4d9d710254410a7caef269819ea7b53c) C:\Windows\system32\DRIVERS\athr.sys
17:27:38.0761 3868 athr - ok
17:27:38.0917 3868 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
17:27:38.0917 3868 avgntflt - ok
17:27:39.0104 3868 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
17:27:39.0167 3868 avipbb - ok
17:27:39.0307 3868 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
17:27:39.0323 3868 Beep - ok
17:27:39.0448 3868 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
17:27:39.0479 3868 blbdrive - ok
17:27:39.0666 3868 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
17:27:39.0697 3868 bowser - ok
17:27:39.0806 3868 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
17:27:39.0822 3868 BrFiltLo - ok
17:27:39.0931 3868 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
17:27:39.0947 3868 BrFiltUp - ok
17:27:40.0103 3868 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\DRIVERS\BrSerId.sys
17:27:40.0134 3868 Brserid - ok
17:27:40.0243 3868 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
17:27:40.0259 3868 BrSerWdm - ok
17:27:40.0399 3868 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
17:27:40.0399 3868 BrUsbMdm - ok
17:27:40.0524 3868 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\DRIVERS\BrUsbSer.sys
17:27:40.0555 3868 BrUsbSer - ok
17:27:40.0696 3868 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
17:27:40.0696 3868 BTHMODEM - ok
17:27:40.0961 3868 catchme - ok
17:27:41.0429 3868 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
17:27:41.0460 3868 cdfs - ok
17:27:41.0710 3868 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
17:27:41.0741 3868 cdrom - ok
17:27:41.0850 3868 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
17:27:41.0897 3868 circlass - ok
17:27:41.0990 3868 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
17:27:42.0022 3868 CLFS - ok
17:27:42.0334 3868 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
17:27:42.0365 3868 CmBatt - ok
17:27:42.0474 3868 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
17:27:42.0490 3868 cmdide - ok
17:27:42.0614 3868 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
17:27:42.0646 3868 Compbatt - ok
17:27:42.0770 3868 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
17:27:42.0770 3868 crcdisk - ok
17:27:42.0895 3868 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
17:27:42.0926 3868 Crusoe - ok
17:27:43.0067 3868 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
17:27:43.0098 3868 DfsC - ok
17:27:43.0238 3868 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
17:27:43.0270 3868 disk - ok
17:27:43.0519 3868 DKbFltr (c701324c9e0c25dd9d60311bd87fbc84) C:\Windows\system32\DRIVERS\DKbFltr.sys
17:27:43.0550 3868 DKbFltr - ok
17:27:43.0660 3868 DPMemGridVista (2b3d2909393a3e35f930b78c5f260a2a) C:\Program Files\GridVista\DPMemGridVista.sys
17:27:43.0675 3868 DPMemGridVista - ok
17:27:43.0816 3868 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
17:27:43.0831 3868 drmkaud - ok
17:27:43.0972 3868 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
17:27:44.0003 3868 DXGKrnl - ok
17:27:44.0128 3868 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
17:27:44.0206 3868 E1G60 - ok
17:27:44.0408 3868 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
17:27:44.0440 3868 Ecache - ok
17:27:44.0876 3868 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
17:27:44.0908 3868 elxstor - ok
17:27:45.0064 3868 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
17:27:45.0064 3868 ErrDev - ok
17:27:45.0251 3868 ewusbnet (e1556af3fb0284c32896b9ac8494d9c2) C:\Windows\system32\DRIVERS\ewusbnet.sys
17:27:45.0282 3868 ewusbnet - ok
17:27:45.0407 3868 ew_hwusbdev (57c171ea22f0a7f068fcb0caedd1e8e7) C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
17:27:45.0438 3868 ew_hwusbdev - ok
17:27:45.0563 3868 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
17:27:45.0594 3868 exfat - ok
17:27:45.0719 3868 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
17:27:45.0734 3868 fastfat - ok
17:27:45.0859 3868 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
17:27:45.0875 3868 fdc - ok
17:27:46.0015 3868 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
17:27:46.0046 3868 FileInfo - ok
17:27:46.0156 3868 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
17:27:46.0187 3868 Filetrace - ok
17:27:46.0312 3868 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
17:27:46.0343 3868 flpydisk - ok
17:27:46.0468 3868 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
17:27:46.0608 3868 FltMgr - ok
17:27:46.0748 3868 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
17:27:46.0764 3868 Fs_Rec - ok
17:27:46.0889 3868 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
17:27:46.0920 3868 gagp30kx - ok
17:27:47.0029 3868 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
17:27:47.0045 3868 GEARAspiWDM - ok
17:27:47.0216 3868 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
17:27:47.0248 3868 HdAudAddService - ok
17:27:47.0372 3868 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
17:27:47.0404 3868 HDAudBus - ok
17:27:47.0528 3868 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
17:27:47.0560 3868 HidBth - ok
17:27:47.0794 3868 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
17:27:47.0825 3868 HidIr - ok
17:27:47.0950 3868 HidUsb (e2b5bd48afcc0f0974fb44641b223250) C:\Windows\system32\DRIVERS\hidusb.sys
17:27:47.0981 3868 HidUsb - ok
17:27:48.0106 3868 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
17:27:48.0137 3868 HpCISSs - ok
17:27:48.0308 3868 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
17:27:48.0355 3868 HTTP - ok
17:27:48.0449 3868 huawei_enumerator (bed3a9f86a637cc6c2c5296cd82423d8) C:\Windows\system32\DRIVERS\ew_jubusenum.sys
17:27:48.0464 3868 huawei_enumerator - ok
17:27:48.0589 3868 hwdatacard (a89423d0132c8ab69ba621b6ce191714) C:\Windows\system32\DRIVERS\ewusbmdm.sys
17:27:48.0620 3868 hwdatacard - ok
17:27:48.0730 3868 hwusbfake - ok
17:27:48.0839 3868 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
17:27:48.0854 3868 i2omp - ok
17:27:48.0995 3868 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
17:27:49.0026 3868 i8042prt - ok
17:27:49.0182 3868 iaStor (71ecc07bc7c5e24c3dd01d8a29a24054) C:\Windows\system32\DRIVERS\iaStor.sys
17:27:49.0198 3868 iaStor - ok
17:27:49.0291 3868 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
17:27:49.0307 3868 iaStorV - ok
17:27:49.0650 3868 igfx (dce0b53570703cce580d066f89ef58cd) C:\Windows\system32\DRIVERS\igdkmd32.sys
17:27:49.0759 3868 igfx - ok
17:27:49.0868 3868 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
17:27:49.0884 3868 iirsp - ok
17:27:50.0071 3868 IntcAzAudAddService (1f10ed6f98c57efb4e7fb9972b2dbb71) C:\Windows\system32\drivers\RTKVHDA.sys
17:27:50.0118 3868 IntcAzAudAddService - ok
17:27:50.0258 3868 IntcHdmiAddService (362b19109f9b6f68c8e2a35efc9144a0) C:\Windows\system32\drivers\IntcHdmi.sys
17:27:50.0274 3868 IntcHdmiAddService - ok
17:27:50.0446 3868 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
17:27:50.0477 3868 intelide - ok
17:27:50.0586 3868 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
17:27:50.0617 3868 intelppm - ok
17:27:50.0773 3868 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
17:27:50.0773 3868 IpFilterDriver - ok
17:27:50.0867 3868 IpInIp - ok
17:27:50.0960 3868 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
17:27:50.0992 3868 IPMIDRV - ok
17:27:51.0241 3868 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
17:27:51.0241 3868 IPNAT - ok
17:27:51.0397 3868 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
17:27:51.0397 3868 IRENUM - ok
17:27:51.0506 3868 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
17:27:51.0506 3868 isapnp - ok
17:27:51.0616 3868 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
17:27:51.0662 3868 iScsiPrt - ok
17:27:51.0787 3868 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
17:27:51.0818 3868 iteatapi - ok
17:27:52.0037 3868 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
17:27:52.0052 3868 iteraid - ok
17:27:52.0177 3868 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
17:27:52.0208 3868 kbdclass - ok
17:27:52.0318 3868 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
17:27:52.0349 3868 kbdhid - ok
17:27:52.0583 3868 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
17:27:52.0598 3868 KSecDD - ok
17:27:52.0708 3868 L1C (1c2af919fde8ed307135b6487af4d7f8) C:\Windows\system32\DRIVERS\L1C60x86.sys
17:27:52.0723 3868 L1C - ok
17:27:52.0864 3868 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
17:27:52.0895 3868 lltdio - ok
17:27:53.0160 3868 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
17:27:53.0191 3868 LSI_FC - ok
17:27:53.0300 3868 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
17:27:53.0332 3868 LSI_SAS - ok
17:27:53.0472 3868 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
17:27:53.0519 3868 LSI_SCSI - ok
17:27:53.0628 3868 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
17:27:53.0659 3868 luafv - ok
17:27:53.0768 3868 massfilter - ok
17:27:53.0878 3868 MBAMProtector - ok
17:27:54.0018 3868 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
17:27:54.0018 3868 megasas - ok
17:27:54.0143 3868 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
17:27:54.0158 3868 MegaSR - ok
17:27:54.0283 3868 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
17:27:54.0314 3868 Modem - ok
17:27:54.0439 3868 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
17:27:54.0455 3868 monitor - ok
17:27:54.0564 3868 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
17:27:54.0595 3868 mouclass - ok
17:27:54.0704 3868 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
17:27:54.0736 3868 mouhid - ok
17:27:54.0860 3868 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
17:27:54.0860 3868 MountMgr - ok
17:27:54.0985 3868 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
17:27:54.0985 3868 mpio - ok
17:27:55.0094 3868 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
17:27:55.0126 3868 mpsdrv - ok
17:27:55.0235 3868 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
17:27:55.0250 3868 Mraid35x - ok
17:27:55.0313 3868 MREMP50 - ok
17:27:55.0344 3868 MREMP50a64 - ok
17:27:55.0344 3868 MRESP50 - ok
17:27:55.0360 3868 MRESP50a64 - ok
17:27:55.0469 3868 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
17:27:55.0500 3868 MRxDAV - ok
17:27:55.0609 3868 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
17:27:55.0640 3868 mrxsmb - ok
17:27:55.0765 3868 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
17:27:55.0796 3868 mrxsmb10 - ok
17:27:55.0937 3868 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
17:27:55.0937 3868 mrxsmb20 - ok
17:27:56.0046 3868 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
17:27:56.0077 3868 msahci - ok
17:27:56.0186 3868 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
17:27:56.0218 3868 msdsm - ok
17:27:56.0342 3868 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
17:27:56.0358 3868 Msfs - ok
17:27:56.0483 3868 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
17:27:56.0514 3868 msisadrv - ok
17:27:56.0639 3868 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
17:27:56.0654 3868 MSKSSRV - ok
17:27:56.0779 3868 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
17:27:56.0810 3868 MSPCLOCK - ok
17:27:56.0935 3868 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
17:27:56.0935 3868 MSPQM - ok
17:27:57.0044 3868 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
17:27:57.0076 3868 MsRPC - ok
17:27:57.0200 3868 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
17:27:57.0232 3868 mssmbios - ok
17:27:57.0356 3868 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
17:27:57.0356 3868 MSTEE - ok
17:27:57.0466 3868 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
17:27:57.0497 3868 Mup - ok
17:27:57.0637 3868 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
17:27:57.0668 3868 NativeWifiP - ok
17:27:57.0793 3868 NDIS (c8560010a542b5dca94c62468dc20784) C:\Windows\system32\drivers\ndis.sys
17:27:57.0824 3868 NDIS - ok
17:27:57.0934 3868 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
17:27:57.0965 3868 NdisTapi - ok
17:27:58.0090 3868 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
17:27:58.0121 3868 Ndisuio - ok
17:27:58.0246 3868 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
17:27:58.0261 3868 NdisWan - ok
17:27:58.0355 3868 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
17:27:58.0386 3868 NDProxy - ok
17:27:58.0511 3868 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
17:27:58.0542 3868 NetBIOS - ok
17:27:58.0651 3868 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
17:27:58.0682 3868 netbt - ok
17:27:58.0932 3868 NETw5v32 (83f310bf50985f2a52121f2614787c38) C:\Windows\system32\DRIVERS\NETw5v32.sys
17:27:58.0994 3868 NETw5v32 - ok
17:27:59.0104 3868 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
17:27:59.0135 3868 nfrd960 - ok
17:27:59.0244 3868 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
17:27:59.0260 3868 Npfs - ok
17:27:59.0353 3868 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
17:27:59.0384 3868 nsiproxy - ok
17:27:59.0525 3868 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
17:27:59.0572 3868 Ntfs - ok
17:27:59.0681 3868 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
17:27:59.0712 3868 ntrigdigi - ok
17:27:59.0837 3868 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
17:27:59.0837 3868 Null - ok
17:27:59.0962 3868 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
17:27:59.0977 3868 nvraid - ok
17:28:00.0102 3868 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
17:28:00.0102 3868 nvstor - ok
17:28:00.0227 3868 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
17:28:00.0258 3868 nv_agp - ok
17:28:00.0336 3868 NwlnkFlt - ok
17:28:00.0414 3868 NwlnkFwd - ok
17:28:00.0523 3868 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
17:28:00.0554 3868 ohci1394 - ok
17:28:00.0695 3868 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
17:28:00.0710 3868 Parport - ok
17:28:00.0820 3868 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
17:28:00.0851 3868 partmgr - ok
17:28:00.0944 3868 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
17:28:00.0976 3868 Parvdm - ok
17:28:01.0116 3868 PCASp50 (1961590aa191b6b7dcf18a6a693af7b8) C:\Windows\system32\Drivers\PCASp50.sys
17:28:01.0147 3868 PCASp50 - ok
17:28:01.0288 3868 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
17:28:01.0319 3868 pci - ok
17:28:01.0444 3868 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
17:28:01.0475 3868 pciide - ok
17:28:01.0584 3868 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
17:28:01.0600 3868 pcmcia - ok
17:28:01.0740 3868 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
17:28:01.0787 3868 PEAUTH - ok
17:28:01.0958 3868 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
17:28:01.0990 3868 PptpMiniport - ok
17:28:02.0099 3868 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
17:28:02.0146 3868 Processor - ok
17:28:02.0270 3868 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
17:28:02.0286 3868 PSched - ok
17:28:02.0395 3868 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\Windows\system32\DRIVERS\psi_mf.sys
17:28:02.0411 3868 PSI - ok
17:28:02.0551 3868 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
17:28:02.0598 3868 ql2300 - ok
17:28:02.0723 3868 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
17:28:02.0754 3868 ql40xx - ok
17:28:02.0879 3868 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
17:28:02.0910 3868 QWAVEdrv - ok
17:28:03.0035 3868 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
17:28:03.0050 3868 RasAcd - ok
17:28:03.0175 3868 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
17:28:03.0191 3868 Rasl2tp - ok
17:28:03.0300 3868 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
17:28:03.0316 3868 RasPppoe - ok
17:28:03.0425 3868 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
17:28:03.0456 3868 RasSstp - ok
17:28:03.0581 3868 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
17:28:03.0612 3868 rdbss - ok
17:28:03.0706 3868 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
17:28:03.0706 3868 RDPCDD - ok
17:28:03.0830 3868 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
17:28:03.0862 3868 rdpdr - ok
17:28:04.0002 3868 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
17:28:04.0018 3868 RDPENCDD - ok
17:28:04.0142 3868 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
17:28:04.0189 3868 RDPWD - ok
17:28:04.0298 3868 RimUsb - ok
17:28:04.0392 3868 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\Windows\system32\DRIVERS\RimSerial.sys
17:28:04.0423 3868 RimVSerPort - ok
17:28:04.0548 3868 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
17:28:04.0548 3868 ROOTMODEM - ok
17:28:04.0673 3868 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
17:28:04.0704 3868 rspndr - ok
17:28:04.0798 3868 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
17:28:04.0798 3868 SASDIFSV - ok
17:28:04.0891 3868 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
17:28:04.0891 3868 SASKUTIL - ok
17:28:05.0016 3868 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
17:28:05.0016 3868 sbp2port - ok
17:28:05.0141 3868 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
17:28:05.0172 3868 secdrv - ok
17:28:05.0344 3868 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
17:28:05.0344 3868 Serenum - ok
17:28:05.0453 3868 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
17:28:05.0468 3868 Serial - ok
17:28:05.0578 3868 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
17:28:05.0578 3868 sermouse - ok
17:28:05.0718 3868 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
17:28:05.0749 3868 sffdisk - ok
17:28:05.0858 3868 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
17:28:05.0874 3868 sffp_mmc - ok
17:28:05.0983 3868 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
17:28:05.0983 3868 sffp_sd - ok
17:28:06.0092 3868 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
17:28:06.0124 3868 sfloppy - ok
17:28:06.0248 3868 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
17:28:06.0280 3868 sisagp - ok
17:28:06.0404 3868 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
17:28:06.0404 3868 SiSRaid2 - ok
17:28:06.0529 3868 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
17:28:06.0560 3868 SiSRaid4 - ok
17:28:06.0685 3868 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
17:28:06.0701 3868 Smb - ok
17:28:06.0810 3868 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
17:28:06.0841 3868 spldr - ok
17:28:06.0966 3868 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
17:28:06.0997 3868 srv - ok
17:28:07.0138 3868 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
17:28:07.0169 3868 srv2 - ok
17:28:07.0294 3868 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
17:28:07.0294 3868 srvnet - ok
17:28:07.0418 3868 SSDISK (6a8954c2cd8a08817d9e68d5c17fc846) C:\Windows\system32\DRIVERS\SSDISK.sys
17:28:07.0434 3868 SSDISK - ok
17:28:07.0559 3868 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
17:28:07.0590 3868 ssmdrv - ok
17:28:07.0715 3868 SSUSB (1eba502b6ff41fa3cf813819e787e87c) C:\Windows\system32\DRIVERS\SSUSB.sys
17:28:07.0730 3868 SSUSB - ok
17:28:07.0855 3868 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
17:28:07.0871 3868 swenum - ok
17:28:08.0027 3868 swmsflt (150ab4fa272130ec55b2a4faebdf47f9) C:\Windows\System32\drivers\swmsflt.sys
17:28:08.0058 3868 swmsflt - ok
17:28:08.0167 3868 SWNC8UA3 (90fed2b18e0a8284b8be6b9a4ff10dc0) C:\Windows\system32\DRIVERS\swnc8ua3.sys
17:28:08.0183 3868 SWNC8UA3 - ok
17:28:08.0276 3868 SWUMX20 - ok
17:28:08.0401 3868 SWUMXA3 (8d4ee23f4f326d246fa988a9d891d9f1) C:\Windows\system32\DRIVERS\swumxa3.sys
17:28:08.0401 3868 SWUMXA3 - ok
17:28:08.0510 3868 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
17:28:08.0542 3868 Symc8xx - ok
17:28:08.0651 3868 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
17:28:08.0682 3868 Sym_hi - ok
17:28:08.0807 3868 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
17:28:08.0807 3868 Sym_u3 - ok
17:28:08.0916 3868 SynTP (60cd166ae4261920b4008a1a114ae97c) C:\Windows\system32\DRIVERS\SynTP.sys
17:28:08.0932 3868 SynTP - ok
17:28:09.0088 3868 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
17:28:09.0134 3868 Tcpip - ok
17:28:09.0275 3868 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
17:28:09.0275 3868 Tcpip6 - ok
17:28:09.0400 3868 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
17:28:09.0431 3868 tcpipreg - ok
17:28:09.0540 3868 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
17:28:09.0571 3868 TDPIPE - ok
17:28:09.0680 3868 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
17:28:09.0696 3868 TDTCP - ok
17:28:09.0805 3868 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
17:28:09.0836 3868 tdx - ok
17:28:09.0946 3868 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
17:28:09.0946 3868 TermDD - ok
17:28:10.0102 3868 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
17:28:10.0117 3868 tssecsrv - ok
17:28:10.0258 3868 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
17:28:10.0289 3868 tunmp - ok
17:28:10.0398 3868 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
17:28:10.0429 3868 tunnel - ok
17:28:10.0554 3868 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
17:28:10.0585 3868 uagp35 - ok
17:28:10.0694 3868 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
17:28:10.0726 3868 udfs - ok
17:28:10.0866 3868 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
17:28:10.0913 3868 uliagpkx - ok
17:28:11.0022 3868 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
17:28:11.0038 3868 uliahci - ok
17:28:11.0178 3868 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
17:28:11.0209 3868 UlSata - ok
17:28:11.0381 3868 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
17:28:11.0381 3868 ulsata2 - ok
17:28:11.0490 3868 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
17:28:11.0506 3868 umbus - ok
17:28:11.0646 3868 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
17:28:11.0646 3868 USBAAPL - ok
17:28:11.0755 3868 usbccgp (afb10a231254a1920c3bb4a0d02e1ca6) C:\Windows\system32\DRIVERS\usbccgp.sys
17:28:11.0786 3868 usbccgp - ok
17:28:11.0911 3868 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
17:28:11.0942 3868 usbcir - ok
17:28:12.0083 3868 usbehci (44245742c4ed2eafd69020583424455b) C:\Windows\system32\DRIVERS\usbehci.sys
17:28:12.0083 3868 usbehci - ok
17:28:12.0208 3868 usbhub (db39b3f83af77bca019d7df6aaddbdae) C:\Windows\system32\DRIVERS\usbhub.sys
17:28:12.0239 3868 usbhub - ok
17:28:12.0348 3868 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
17:28:12.0379 3868 usbohci - ok
17:28:12.0504 3868 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
17:28:12.0504 3868 usbprint - ok
17:28:12.0613 3868 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
17:28:12.0613 3868 usbscan - ok
17:28:12.0738 3868 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
17:28:12.0738 3868 USBSTOR - ok
17:28:12.0863 3868 usbuhci (587809974e43cfad0ca0ef6e1d940ca9) C:\Windows\system32\DRIVERS\usbuhci.sys
17:28:12.0863 3868 usbuhci - ok
17:28:12.0988 3868 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
17:28:13.0019 3868 usbvideo - ok
17:28:13.0144 3868 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
17:28:13.0175 3868 vga - ok
17:28:13.0284 3868 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
17:28:13.0315 3868 VgaSave - ok
17:28:13.0424 3868 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
17:28:13.0440 3868 viaagp - ok
17:28:13.0549 3868 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
17:28:13.0549 3868 ViaC7 - ok
17:28:13.0658 3868 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
17:28:13.0690 3868 viaide - ok
17:28:13.0799 3868 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
17:28:13.0830 3868 volmgr - ok
17:28:13.0939 3868 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
17:28:13.0970 3868 volmgrx - ok
17:28:14.0095 3868 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
17:28:14.0126 3868 volsnap - ok
17:28:14.0251 3868 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
17:28:14.0282 3868 vsmraid - ok
17:28:14.0407 3868 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
17:28:14.0423 3868 WacomPen - ok
17:28:14.0532 3868 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:28:14.0563 3868 Wanarp - ok
17:28:14.0579 3868 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
17:28:14.0579 3868 Wanarpv6 - ok
17:28:14.0704 3868 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
17:28:14.0704 3868 Wd - ok
17:28:14.0813 3868 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
17:28:14.0860 3868 Wdf01000 - ok
17:28:15.0062 3868 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
17:28:15.0062 3868 WmiAcpi - ok
17:28:15.0218 3868 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
17:28:15.0218 3868 WpdUsb - ok
17:28:15.0343 3868 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
17:28:15.0343 3868 ws2ifsl - ok
17:28:15.0484 3868 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
17:28:15.0515 3868 WUDFRd - ok
17:28:15.0624 3868 ZTEusbmdm6k - ok
17:28:15.0702 3868 ZTEusbnet - ok
17:28:15.0796 3868 ZTEusbnmea - ok
17:28:15.0889 3868 ZTEusbser6k - ok
17:28:15.0983 3868 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
17:28:15.0998 3868 \Device\Harddisk0\DR0 - ok
17:28:16.0014 3868 Boot (0x1200) (d6d01a53bed5fbb8092e6f5f7409754f) \Device\Harddisk0\DR0\Partition0
17:28:16.0014 3868 \Device\Harddisk0\DR0\Partition0 - ok
17:28:16.0030 3868 ============================================================
17:28:16.0030 3868 Scan finished
17:28:16.0030 3868 ============================================================
17:28:16.0045 3812 Detected object count: 0
17:28:16.0045 3812 Actual detected object count: 0
17:28:48.0914 2940 Deinitialize success


Regarding MBAM - no I do not have real time protection enabled. There are 5 items in Quarantine - should I delete these? Ah ha, where I click on "Settings" and then "Scheduler Settings" my error message pops up. It is set to Update, frequency daily, repeating every 1 day. Maybe I should delete this?

Thanks!!
Rebecca

Hi Georgi

Sorry for the multiple posts. Things seem to be running pretty smoothly now with the exception of that MBAM popup I mentioned above. Also a couple more questions I hope you can help me with please

- There is a file on my desktop called desktop.ini. I don't remember creating it and I'm sure it wasn't there before all of this happened. But when I go to delete it, I get the message "Are you sure you want to move this system file to the Recycle Bin? If you remove this file, Windows or another program might no longer work correctly." Also it mentions type: Configuration Settings, Size: 282 bytes, and Date modified: 08/09/2009 11:06pm

- My startup menu does not have many programs in it. The folders are there, but when you click on them it just says "empty". I can browse to the program location with Explorer, but how can I make them all come back to the Start menu?

- Can you recommend what I should keep installed and running on my computer? I have Avira antivirus. Should I keep Super antispyware and always keep it on? What about MBAM? Is it safe to delete the other programs/logs from the virus cleanup?

- Is there anything else I should run to free up space and clean the memory on my computer, like disk degragmenter or something?

Thank you Georgi, when I come to Bulgaria I will buy you a beer!!! No wait, I think I will buy you at least a case of beer!!
Rebecca

Hi Rebecca, ;)


Thank you for keeping me posted and sorry for the delayed response.
I have some problems with my computer and I am going to do a full restore from an image file.
I'll back to you in a few hours or tomorrow.
Sorry for the inconvenience.
Stay tuned.



Regards,
Georgi

Hi Rebecca,

Quote

Yes, you can safely delete the quarantined files. Btw, the scheduler feature is only available in the full version, so you use the PRO version. Yes, go ahead and disable the scheduler or just uninstall and reinstall the Malwarebytes.

Quote

Desktop.ini describes the characteristics of the folder. For example, it describes the appearance of the folder's icon. If you delete desktop.ini you will lose any customizations you have made to
the folder. If you delete desktop.ini in a Windows system folder, it will just be recreated at the next restart. The file is hidden so configuring Windows Vista to hide hidden files and folders usually takes less than a minute.

Click on the Start button and then click on Control Panel.
Click on the Appearance and Personalization link.
Click on the Folder Options link.
Click on the View tab in the Folder Options window.
In the Advanced settings: section, locate the Hidden files and folders category.
Choose the Do not show hidden files and folders radio button under the Hidden files and folders category.
Check the box beside Hide protected operating system files (recommended) and click Apply, then Ok.
Now you are done.

Quote

Ok, let's take a deeper look at this:


Please download SystemLook from one of the links below and save it to your Desktop.
Download Mirror #1
Download Mirror #2

• Double-click SystemLook.exe to run it.
  
• Copy the content of the following codebox into the main textfield:
  

  :dir
  %Temp%\smtmp /s
  

  
  
• Click the Look button to start the scan.
  
• When finished, a notepad window will open with the results of the scan. Please post this log in your next reply.

Note: The log can also be found on your Desktop entitled SystemLook.txt

Quote

I'll give you my final recommendations at the end of the cleaning process.


Could you please delete your copy of TDSSKiller and download a fresh one from here.
Please rerun TDSSKiller once more (instructions as last time you ran it).


You will need to run DDS again to provide fresh dds.txt log.
Copy/paste both DDS.txt and Attach.txt reports in your next reply.



Regards,
Georgi

Hi Georgi

Sorry for the late reply, I was away for the weekend. Here is the log from system look:

SystemLook 30.07.11 by jpshortstuff
Log created at 21:58 on 23/10/2011 by Becca
Administrator - Elevation successful

========== dir ==========

C:\Users\Becca\AppData\Local\Temp\smtmp - Unable to find folder.

-= EOF =-

And TDSS Killer log:

22:00:08.0074 3076 TDSS rootkit removing tool 2.6.12.0 Oct 21 2011 11:23:48
22:00:08.0488 3076 ============================================================
22:00:08.0488 3076 Current date / time: 2011/10/23 22:00:08.0488
22:00:08.0488 3076 SystemInfo:
22:00:08.0488 3076
22:00:08.0488 3076 OS Version: 6.0.6002 ServicePack: 2.0
22:00:08.0488 3076 Product type: Workstation
22:00:08.0488 3076 ComputerName: WALDO
22:00:08.0489 3076 UserName: Becca
22:00:08.0489 3076 Windows directory: C:\Windows
22:00:08.0489 3076 System windows directory: C:\Windows
22:00:08.0489 3076 Processor architecture: Intel x86
22:00:08.0489 3076 Number of processors: 1
22:00:08.0489 3076 Page size: 0x1000
22:00:08.0489 3076 Boot type: Normal boot
22:00:08.0489 3076 ============================================================
22:00:09.0363 3076 Initialize success
22:00:53.0111 2076 ============================================================
22:00:53.0111 2076 Scan started
22:00:53.0111 2076 Mode: Manual;
22:00:53.0111 2076 ============================================================
22:00:53.0829 2076 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:00:53.0845 2076 ACPI - ok
22:00:54.0016 2076 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
22:00:54.0016 2076 adp94xx - ok
22:00:54.0157 2076 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
22:00:54.0157 2076 adpahci - ok
22:00:54.0344 2076 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
22:00:54.0344 2076 adpu160m - ok
22:00:54.0484 2076 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
22:00:54.0484 2076 adpu320 - ok
22:00:54.0687 2076 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:00:54.0687 2076 AFD - ok
22:00:54.0874 2076 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
22:00:54.0874 2076 agp440 - ok
22:00:55.0015 2076 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:00:55.0015 2076 aic78xx - ok
22:00:55.0155 2076 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
22:00:55.0155 2076 aliide - ok
22:00:55.0264 2076 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
22:00:55.0280 2076 amdagp - ok
22:00:55.0405 2076 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
22:00:55.0405 2076 amdide - ok
22:00:55.0561 2076 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
22:00:55.0561 2076 AmdK7 - ok
22:00:55.0685 2076 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
22:00:55.0685 2076 AmdK8 - ok
22:00:55.0904 2076 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
22:00:55.0904 2076 arc - ok
22:00:56.0044 2076 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
22:00:56.0044 2076 arcsas - ok
22:00:56.0169 2076 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:00:56.0169 2076 AsyncMac - ok
22:00:56.0294 2076 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
22:00:56.0294 2076 atapi - ok
22:00:56.0528 2076 athr (4d9d710254410a7caef269819ea7b53c) C:\Windows\system32\DRIVERS\athr.sys
22:00:56.0559 2076 athr - ok
22:00:56.0762 2076 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\Windows\system32\DRIVERS\avgntflt.sys
22:00:56.0762 2076 avgntflt - ok
22:00:56.0918 2076 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\Windows\system32\DRIVERS\avipbb.sys
22:00:56.0918 2076 avipbb - ok
22:00:57.0058 2076 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:00:57.0058 2076 Beep - ok
22:00:57.0277 2076 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
22:00:57.0292 2076 blbdrive - ok
22:00:57.0495 2076 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:00:57.0495 2076 bowser - ok
22:00:57.0838 2076 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:00:57.0838 2076 BrFiltLo - ok
22:00:57.0979 2076 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:00:57.0979 2076 BrFiltUp - ok
22:00:58.0213 2076 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\DRIVERS\BrSerId.sys
22:00:58.0213 2076 Brserid - ok
22:00:58.0337 2076 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:00:58.0337 2076 BrSerWdm - ok
22:00:58.0447 2076 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:00:58.0462 2076 BrUsbMdm - ok
22:00:58.0665 2076 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\DRIVERS\BrUsbSer.sys
22:00:58.0665 2076 BrUsbSer - ok
22:00:58.0790 2076 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:00:58.0790 2076 BTHMODEM - ok
22:00:58.0899 2076 catchme - ok
22:00:59.0008 2076 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:00:59.0008 2076 cdfs - ok
22:00:59.0164 2076 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:00:59.0164 2076 cdrom - ok
22:00:59.0305 2076 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
22:00:59.0305 2076 circlass - ok
22:00:59.0398 2076 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:00:59.0398 2076 CLFS - ok
22:00:59.0585 2076 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
22:00:59.0585 2076 CmBatt - ok
22:00:59.0710 2076 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
22:00:59.0710 2076 cmdide - ok
22:00:59.0851 2076 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
22:00:59.0851 2076 Compbatt - ok
22:00:59.0975 2076 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
22:00:59.0975 2076 crcdisk - ok
22:01:00.0100 2076 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
22:01:00.0100 2076 Crusoe - ok
22:01:00.0443 2076 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:01:00.0459 2076 DfsC - ok
22:01:00.0662 2076 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:01:00.0662 2076 disk - ok
22:01:00.0865 2076 DKbFltr (c701324c9e0c25dd9d60311bd87fbc84) C:\Windows\system32\DRIVERS\DKbFltr.sys
22:01:00.0865 2076 DKbFltr - ok
22:01:00.0958 2076 DPMemGridVista (2b3d2909393a3e35f930b78c5f260a2a) C:\Program Files\GridVista\DPMemGridVista.sys
22:01:00.0958 2076 DPMemGridVista - ok
22:01:01.0099 2076 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:01:01.0099 2076 drmkaud - ok
22:01:01.0301 2076 DXGKrnl (fb85f7f69e9b109820409243f578cc4d) C:\Windows\System32\drivers\dxgkrnl.sys
22:01:01.0317 2076 DXGKrnl - ok
22:01:01.0489 2076 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:01:01.0489 2076 E1G60 - ok
22:01:01.0660 2076 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:01:01.0676 2076 Ecache - ok
22:01:01.0847 2076 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
22:01:01.0847 2076 elxstor - ok
22:01:02.0003 2076 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
22:01:02.0003 2076 ErrDev - ok
22:01:02.0144 2076 ewusbnet (e1556af3fb0284c32896b9ac8494d9c2) C:\Windows\system32\DRIVERS\ewusbnet.sys
22:01:02.0159 2076 ewusbnet - ok
22:01:02.0300 2076 ew_hwusbdev (57c171ea22f0a7f068fcb0caedd1e8e7) C:\Windows\system32\DRIVERS\ew_hwusbdev.sys
22:01:02.0300 2076 ew_hwusbdev - ok
22:01:02.0440 2076 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:01:02.0440 2076 exfat - ok
22:01:02.0565 2076 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:01:02.0565 2076 fastfat - ok
22:01:02.0752 2076 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:01:02.0752 2076 fdc - ok
22:01:02.0955 2076 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:01:02.0955 2076 FileInfo - ok
22:01:03.0080 2076 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:01:03.0080 2076 Filetrace - ok
22:01:03.0267 2076 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
22:01:03.0267 2076 flpydisk - ok
22:01:03.0407 2076 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:01:03.0407 2076 FltMgr - ok
22:01:03.0595 2076 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:01:03.0595 2076 Fs_Rec - ok
22:01:03.0719 2076 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
22:01:03.0719 2076 gagp30kx - ok
22:01:03.0860 2076 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
22:01:03.0860 2076 GEARAspiWDM - ok
22:01:04.0156 2076 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
22:01:04.0156 2076 HdAudAddService - ok
22:01:04.0375 2076 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:01:04.0390 2076 HDAudBus - ok
22:01:04.0562 2076 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:01:04.0577 2076 HidBth - ok
22:01:04.0687 2076 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:01:04.0687 2076 HidIr - ok
22:01:04.0905 2076 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:01:04.0905 2076 HidUsb - ok
22:01:05.0045 2076 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
22:01:05.0045 2076 HpCISSs - ok
22:01:05.0217 2076 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
22:01:05.0217 2076 HTTP - ok
22:01:05.0326 2076 huawei_enumerator (bed3a9f86a637cc6c2c5296cd82423d8) C:\Windows\system32\DRIVERS\ew_jubusenum.sys
22:01:05.0342 2076 huawei_enumerator - ok
22:01:05.0467 2076 hwdatacard (a89423d0132c8ab69ba621b6ce191714) C:\Windows\system32\DRIVERS\ewusbmdm.sys
22:01:05.0482 2076 hwdatacard - ok
22:01:05.0654 2076 hwusbfake - ok
22:01:05.0779 2076 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
22:01:05.0779 2076 i2omp - ok
22:01:05.0950 2076 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:01:05.0966 2076 i8042prt - ok
22:01:06.0184 2076 iaStor (71ecc07bc7c5e24c3dd01d8a29a24054) C:\Windows\system32\DRIVERS\iaStor.sys
22:01:06.0184 2076 iaStor - ok
22:01:06.0403 2076 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
22:01:06.0403 2076 iaStorV - ok
22:01:07.0105 2076 igfx (dce0b53570703cce580d066f89ef58cd) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:01:07.0385 2076 igfx - ok
22:01:07.0588 2076 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:01:07.0604 2076 iirsp - ok
22:01:07.0994 2076 IntcAzAudAddService (1f10ed6f98c57efb4e7fb9972b2dbb71) C:\Windows\system32\drivers\RTKVHDA.sys
22:01:08.0103 2076 IntcAzAudAddService - ok
22:01:08.0212 2076 IntcHdmiAddService (362b19109f9b6f68c8e2a35efc9144a0) C:\Windows\system32\drivers\IntcHdmi.sys
22:01:08.0228 2076 IntcHdmiAddService - ok
22:01:08.0399 2076 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
22:01:08.0415 2076 intelide - ok
22:01:08.0571 2076 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:01:08.0571 2076 intelppm - ok
22:01:08.0789 2076 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:01:08.0789 2076 IpFilterDriver - ok
22:01:08.0945 2076 IpInIp - ok
22:01:09.0133 2076 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
22:01:09.0133 2076 IPMIDRV - ok
22:01:09.0257 2076 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:01:09.0257 2076 IPNAT - ok
22:01:09.0445 2076 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:01:09.0445 2076 IRENUM - ok
22:01:09.0632 2076 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
22:01:09.0632 2076 isapnp - ok
22:01:09.0881 2076 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:01:09.0881 2076 iScsiPrt - ok
22:01:10.0084 2076 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:01:10.0084 2076 iteatapi - ok
22:01:10.0365 2076 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:01:10.0365 2076 iteraid - ok
22:01:10.0552 2076 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:01:10.0552 2076 kbdclass - ok
22:01:10.0724 2076 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:01:10.0724 2076 kbdhid - ok
22:01:10.0880 2076 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
22:01:10.0880 2076 KSecDD - ok
22:01:11.0020 2076 L1C (1c2af919fde8ed307135b6487af4d7f8) C:\Windows\system32\DRIVERS\L1C60x86.sys
22:01:11.0020 2076 L1C - ok
22:01:11.0301 2076 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:01:11.0301 2076 lltdio - ok
22:01:11.0457 2076 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
22:01:11.0457 2076 LSI_FC - ok
22:01:11.0582 2076 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
22:01:11.0582 2076 LSI_SAS - ok
22:01:11.0785 2076 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
22:01:11.0785 2076 LSI_SCSI - ok
22:01:11.0909 2076 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:01:11.0909 2076 luafv - ok
22:01:12.0019 2076 massfilter - ok
22:01:12.0190 2076 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
22:01:12.0190 2076 megasas - ok
22:01:12.0299 2076 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
22:01:12.0315 2076 MegaSR - ok
22:01:12.0533 2076 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:01:12.0533 2076 Modem - ok
22:01:12.0658 2076 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:01:12.0658 2076 monitor - ok
22:01:12.0830 2076 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:01:12.0830 2076 mouclass - ok
22:01:13.0001 2076 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:01:13.0001 2076 mouhid - ok
22:01:13.0126 2076 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:01:13.0142 2076 MountMgr - ok
22:01:13.0423 2076 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
22:01:13.0423 2076 mpio - ok
22:01:13.0657 2076 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:01:13.0657 2076 mpsdrv - ok
22:01:13.0953 2076 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:01:13.0953 2076 Mraid35x - ok
22:01:14.0031 2076 MREMP50 - ok
22:01:14.0047 2076 MREMP50a64 - ok
22:01:14.0062 2076 MRESP50 - ok
22:01:14.0078 2076 MRESP50a64 - ok
22:01:14.0374 2076 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:01:14.0374 2076 MRxDAV - ok
22:01:14.0561 2076 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:01:14.0561 2076 mrxsmb - ok
22:01:14.0811 2076 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:01:14.0811 2076 mrxsmb10 - ok
22:01:14.0998 2076 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:01:14.0998 2076 mrxsmb20 - ok
22:01:15.0185 2076 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
22:01:15.0185 2076 msahci - ok
22:01:15.0357 2076 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
22:01:15.0357 2076 msdsm - ok
22:01:15.0560 2076 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:01:15.0560 2076 Msfs - ok
22:01:15.0778 2076 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:01:15.0778 2076 msisadrv - ok
22:01:15.0981 2076 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:01:15.0981 2076 MSKSSRV - ok
22:01:16.0121 2076 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:01:16.0121 2076 MSPCLOCK - ok
22:01:16.0309 2076 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:01:16.0309 2076 MSPQM - ok
22:01:16.0574 2076 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:01:16.0574 2076 MsRPC - ok
22:01:16.0730 2076 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:01:16.0730 2076 mssmbios - ok
22:01:16.0855 2076 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:01:16.0855 2076 MSTEE - ok
22:01:17.0026 2076 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:01:17.0042 2076 Mup - ok
22:01:17.0338 2076 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:01:17.0354 2076 NativeWifiP - ok
22:01:17.0713 2076 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:01:17.0713 2076 NDIS - ok
22:01:17.0853 2076 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:01:17.0853 2076 NdisTapi - ok
22:01:17.0962 2076 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:01:17.0962 2076 Ndisuio - ok
22:01:18.0149 2076 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:01:18.0165 2076 NdisWan - ok
22:01:18.0305 2076 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:01:18.0305 2076 NDProxy - ok
22:01:18.0477 2076 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:01:18.0477 2076 NetBIOS - ok
22:01:18.0633 2076 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:01:18.0633 2076 netbt - ok
22:01:18.0976 2076 NETw5v32 (83f310bf50985f2a52121f2614787c38) C:\Windows\system32\DRIVERS\NETw5v32.sys
22:01:19.0241 2076 NETw5v32 - ok
22:01:19.0413 2076 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:01:19.0413 2076 nfrd960 - ok
22:01:19.0553 2076 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:01:19.0553 2076 Npfs - ok
22:01:19.0694 2076 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:01:19.0694 2076 nsiproxy - ok
22:01:19.0881 2076 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:01:19.0928 2076 Ntfs - ok
22:01:20.0177 2076 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:01:20.0193 2076 ntrigdigi - ok
22:01:20.0380 2076 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:01:20.0380 2076 Null - ok
22:01:20.0567 2076 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
22:01:20.0583 2076 nvraid - ok
22:01:20.0739 2076 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
22:01:20.0739 2076 nvstor - ok
22:01:20.0911 2076 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
22:01:20.0911 2076 nv_agp - ok
22:01:21.0020 2076 NwlnkFlt - ok
22:01:21.0176 2076 NwlnkFwd - ok
22:01:21.0394 2076 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:01:21.0394 2076 ohci1394 - ok
22:01:21.0675 2076 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:01:21.0675 2076 Parport - ok
22:01:21.0862 2076 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:01:21.0862 2076 partmgr - ok
22:01:22.0127 2076 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:01:22.0127 2076 Parvdm - ok
22:01:22.0283 2076 PCASp50 (1961590aa191b6b7dcf18a6a693af7b8) C:\Windows\system32\Drivers\PCASp50.sys
22:01:22.0283 2076 PCASp50 - ok
22:01:22.0408 2076 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:01:22.0424 2076 pci - ok
22:01:22.0533 2076 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
22:01:22.0533 2076 pciide - ok
22:01:22.0658 2076 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:01:22.0673 2076 pcmcia - ok
22:01:22.0876 2076 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:01:22.0907 2076 PEAUTH - ok
22:01:23.0251 2076 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:01:23.0251 2076 PptpMiniport - ok
22:01:23.0469 2076 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
22:01:23.0469 2076 Processor - ok
22:01:23.0609 2076 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:01:23.0609 2076 PSched - ok
22:01:23.0812 2076 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\Windows\system32\DRIVERS\psi_mf.sys
22:01:23.0812 2076 PSI - ok
22:01:24.0015 2076 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
22:01:24.0046 2076 ql2300 - ok
22:01:24.0233 2076 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:01:24.0233 2076 ql40xx - ok
22:01:24.0405 2076 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:01:24.0405 2076 QWAVEdrv - ok
22:01:24.0577 2076 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:01:24.0577 2076 RasAcd - ok
22:01:24.0717 2076 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:01:24.0717 2076 Rasl2tp - ok
22:01:24.0857 2076 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:01:24.0857 2076 RasPppoe - ok
22:01:24.0982 2076 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:01:24.0998 2076 RasSstp - ok
22:01:25.0185 2076 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:01:25.0201 2076 rdbss - ok
22:01:25.0357 2076 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:01:25.0357 2076 RDPCDD - ok
22:01:25.0513 2076 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
22:01:25.0513 2076 rdpdr - ok
22:01:25.0622 2076 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:01:25.0622 2076 RDPENCDD - ok
22:01:25.0747 2076 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:01:25.0747 2076 RDPWD - ok
22:01:25.0856 2076 RimUsb - ok
22:01:26.0043 2076 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\Windows\system32\DRIVERS\RimSerial.sys
22:01:26.0043 2076 RimVSerPort - ok
22:01:26.0277 2076 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
22:01:26.0277 2076 ROOTMODEM - ok
22:01:26.0433 2076 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:01:26.0433 2076 rspndr - ok
22:01:26.0573 2076 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
22:01:26.0573 2076 SASDIFSV - ok
22:01:26.0745 2076 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
22:01:26.0745 2076 SASKUTIL - ok
22:01:26.0948 2076 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:01:26.0948 2076 sbp2port - ok
22:01:27.0182 2076 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:01:27.0182 2076 secdrv - ok
22:01:27.0385 2076 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
22:01:27.0385 2076 Serenum - ok
22:01:27.0509 2076 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
22:01:27.0509 2076 Serial - ok
22:01:27.0650 2076 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:01:27.0650 2076 sermouse - ok
22:01:27.0806 2076 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
22:01:27.0821 2076 sffdisk - ok
22:01:28.0165 2076 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
22:01:28.0165 2076 sffp_mmc - ok
22:01:28.0305 2076 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
22:01:28.0305 2076 sffp_sd - ok
22:01:28.0445 2076 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:01:28.0445 2076 sfloppy - ok
22:01:28.0601 2076 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
22:01:28.0601 2076 sisagp - ok
22:01:28.0789 2076 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
22:01:28.0789 2076 SiSRaid2 - ok
22:01:28.0929 2076 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
22:01:28.0929 2076 SiSRaid4 - ok
22:01:29.0054 2076 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:01:29.0054 2076 Smb - ok
22:01:29.0257 2076 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:01:29.0257 2076 spldr - ok
22:01:29.0413 2076 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:01:29.0428 2076 srv - ok
22:01:29.0553 2076 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:01:29.0553 2076 srv2 - ok
22:01:29.0725 2076 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:01:29.0725 2076 srvnet - ok
22:01:30.0021 2076 SSDISK (6a8954c2cd8a08817d9e68d5c17fc846) C:\Windows\system32\DRIVERS\SSDISK.sys
22:01:30.0021 2076 SSDISK - ok
22:01:30.0146 2076 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
22:01:30.0146 2076 ssmdrv - ok
22:01:30.0349 2076 SSUSB (1eba502b6ff41fa3cf813819e787e87c) C:\Windows\system32\DRIVERS\SSUSB.sys
22:01:30.0349 2076 SSUSB - ok
22:01:30.0473 2076 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:01:30.0473 2076 swenum - ok
22:01:30.0614 2076 swmsflt (150ab4fa272130ec55b2a4faebdf47f9) C:\Windows\System32\drivers\swmsflt.sys
22:01:30.0614 2076 swmsflt - ok
22:01:30.0723 2076 SWNC8UA3 (90fed2b18e0a8284b8be6b9a4ff10dc0) C:\Windows\system32\DRIVERS\swnc8ua3.sys
22:01:30.0739 2076 SWNC8UA3 - ok
22:01:30.0863 2076 SWUMX20 - ok
22:01:31.0004 2076 SWUMXA3 (8d4ee23f4f326d246fa988a9d891d9f1) C:\Windows\system32\DRIVERS\swumxa3.sys
22:01:31.0004 2076 SWUMXA3 - ok
22:01:31.0144 2076 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:01:31.0144 2076 Symc8xx - ok
22:01:31.0253 2076 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:01:31.0253 2076 Sym_hi - ok
22:01:31.0363 2076 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:01:31.0363 2076 Sym_u3 - ok
22:01:31.0472 2076 SynTP (60cd166ae4261920b4008a1a114ae97c) C:\Windows\system32\DRIVERS\SynTP.sys
22:01:31.0487 2076 SynTP - ok
22:01:31.0643 2076 Tcpip (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\drivers\tcpip.sys
22:01:31.0659 2076 Tcpip - ok
22:01:31.0799 2076 Tcpip6 (a474879afa4a596b3a531f3e69730dbf) C:\Windows\system32\DRIVERS\tcpip.sys
22:01:31.0815 2076 Tcpip6 - ok
22:01:31.0924 2076 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:01:31.0924 2076 tcpipreg - ok
22:01:32.0033 2076 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:01:32.0033 2076 TDPIPE - ok
22:01:32.0158 2076 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:01:32.0158 2076 TDTCP - ok
22:01:32.0267 2076 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:01:32.0267 2076 tdx - ok
22:01:32.0392 2076 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:01:32.0392 2076 TermDD - ok
22:01:32.0548 2076 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:01:32.0548 2076 tssecsrv - ok
22:01:32.0689 2076 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:01:32.0689 2076 tunmp - ok
22:01:32.0813 2076 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:01:32.0813 2076 tunnel - ok
22:01:32.0938 2076 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
22:01:32.0938 2076 uagp35 - ok
22:01:33.0032 2076 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:01:33.0047 2076 udfs - ok
22:01:33.0172 2076 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
22:01:33.0188 2076 uliagpkx - ok
22:01:33.0297 2076 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
22:01:33.0313 2076 uliahci - ok
22:01:33.0422 2076 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:01:33.0422 2076 UlSata - ok
22:01:33.0547 2076 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:01:33.0547 2076 ulsata2 - ok
22:01:33.0640 2076 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:01:33.0640 2076 umbus - ok
22:01:33.0781 2076 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:01:33.0796 2076 USBAAPL - ok
22:01:33.0921 2076 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:01:33.0921 2076 usbccgp - ok
22:01:34.0155 2076 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:01:34.0155 2076 usbcir - ok
22:01:34.0342 2076 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:01:34.0342 2076 usbehci - ok
22:01:34.0514 2076 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:01:34.0514 2076 usbhub - ok
22:01:34.0685 2076 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:01:34.0685 2076 usbohci - ok
22:01:34.0904 2076 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
22:01:34.0904 2076 usbprint - ok
22:01:35.0153 2076 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
22:01:35.0169 2076 usbscan - ok
22:01:35.0341 2076 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:01:35.0341 2076 USBSTOR - ok
22:01:35.0528 2076 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:01:35.0528 2076 usbuhci - ok
22:01:35.0715 2076 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
22:01:35.0715 2076 usbvideo - ok
22:01:35.0918 2076 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
22:01:35.0918 2076 vga - ok
22:01:36.0089 2076 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:01:36.0089 2076 VgaSave - ok
22:01:36.0245 2076 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
22:01:36.0245 2076 viaagp - ok
22:01:36.0401 2076 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
22:01:36.0401 2076 ViaC7 - ok
22:01:36.0682 2076 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
22:01:36.0682 2076 viaide - ok
22:01:36.0979 2076 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:01:36.0979 2076 volmgr - ok
22:01:37.0197 2076 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:01:37.0213 2076 volmgrx - ok
22:01:37.0353 2076 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:01:37.0353 2076 volsnap - ok
22:01:37.0478 2076 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
22:01:37.0478 2076 vsmraid - ok
22:01:37.0634 2076 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:01:37.0634 2076 WacomPen - ok
22:01:37.0868 2076 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:01:37.0868 2076 Wanarp - ok
22:01:37.0883 2076 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:01:37.0883 2076 Wanarpv6 - ok
22:01:38.0008 2076 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
22:01:38.0008 2076 Wd - ok
22:01:38.0133 2076 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:01:38.0149 2076 Wdf01000 - ok
22:01:38.0367 2076 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
22:01:38.0367 2076 WmiAcpi - ok
22:01:38.0570 2076 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
22:01:38.0570 2076 WpdUsb - ok
22:01:38.0757 2076 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:01:38.0757 2076 ws2ifsl - ok
22:01:38.0929 2076 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:01:38.0929 2076 WUDFRd - ok
22:01:39.0085 2076 ZTEusbmdm6k - ok
22:01:39.0287 2076 ZTEusbnet - ok
22:01:39.0443 2076 ZTEusbnmea - ok
22:01:39.0599 2076 ZTEusbser6k - ok
22:01:39.0693 2076 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:01:39.0724 2076 \Device\Harddisk0\DR0 - ok
22:01:39.0724 2076 MBR (0x1B8) (66d0b28c8b44e531d0c19f436252abaa) \Device\Harddisk1\DR1
22:01:39.0740 2076 \Device\Harddisk1\DR1 - ok
22:01:39.0755 2076 MBR (0x1B8) (8ff255184f078c9c04e6a2ce66117c5c) \Device\Harddisk2\DR2
22:01:39.0771 2076 \Device\Harddisk2\DR2 - ok
22:01:39.0787 2076 Boot (0x1200) (d6d01a53bed5fbb8092e6f5f7409754f) \Device\Harddisk0\DR0\Partition0
22:01:39.0787 2076 \Device\Harddisk0\DR0\Partition0 - ok
22:01:39.0787 2076 Boot (0x1200) (767a0c7df0652167be5726df965b39bf) \Device\Harddisk1\DR1\Partition0
22:01:39.0787 2076 \Device\Harddisk1\DR1\Partition0 - ok
22:01:40.0114 2076 Boot (0x1200) (1e6b0c2f4581faa05806213a7951d7dc) \Device\Harddisk2\DR2\Partition0
22:01:40.0114 2076 \Device\Harddisk2\DR2\Partition0 - ok
22:01:40.0114 2076 ============================================================
22:01:40.0114 2076 Scan finished
22:01:40.0114 2076 ============================================================
22:01:40.0145 3312 Detected object count: 0
22:01:40.0145 3312 Actual detected object count: 0

And DDS log:

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.19088 BrowserJavaVersion: 1.6.0_26
Run by Becca at 22:40:52 on 2011-10-23
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.2.1033.18.3002.1408 [GMT -4:00]
.
AV: AntiVir Desktop *Enabled/Updated* {090F9C29-64CE-6C6F-379C-5901B49A85B7}
SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
SP: AntiVir Desktop *Enabled/Updated* {B26E7DCD-42F4-63E1-0D2C-6273CF1DCF0A}
.
============== Running Processes ===============
.
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k rpcss
C:\Windows\System32\svchost.exe -k secsvcs
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\SLsvc.exe
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\System32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
C:\ProgramData\2degrees Mobile Broadband\OnlineUpdate\ouc.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
C:\ProgramData\DatacardService\HWDeviceService.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Program Files\Acer\Acer VCM\RS_Service.exe
C:\Program Files\Secunia\PSI\PSIA.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Intel\Intel Matrix Storage Manager\IAANTMon.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\Secunia\PSI\sua.exe
C:\Windows\system32\taskeng.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files\Intel\Intel Matrix Storage Manager\IAAnotif.exe
C:\Program Files\Selective Suspend Driver\AmIcoSinglun.exe
C:\Program Files\Realtek\Audio\HDA\RtHDVCpl.exe
C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
C:\Windows\PLFSetI.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Windows\system32\igfxsrvc.exe
C:\Windows\system32\igfxext.exe
C:\Windows\system32\wbem\unsecapp.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
C:\Program Files\Launch Manager\LManager.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Windows\System32\igfxtray.exe
C:\Windows\System32\hkcmd.exe
C:\Windows\System32\igfxpers.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\Program Files\iTunes\iTunesHelper.exe
C:\Program Files\Sierra Wireless Inc\WebUpdater\TRUUpdater.exe
C:\Program Files\Rogers\Rogers Connection Manager\WaHelper.exe
C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Program Files\Siber Systems\AI RoboForm\robotaskbaricon.exe
C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
C:\Program Files\Secunia\PSI\psi_tray.exe
C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
C:\Windows\system32\igfxext.exe
C:\Windows\system32\igfxsrvc.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\system32\wuauclt.exe
C:\Windows\system32\WUDFHost.exe
C:\Windows\System32\mobsync.exe
C:\Program Files\Internet Explorer\iexplore.exe
C:\Program Files\Google\Google Toolbar\GoogleToolbarUser_32.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Windows\system32\conime.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.google.ca/
mStart Page = hxxp://homepage.acer.com/rdr.aspx?b=ACAW&l=1009&m=aspire_1410&r=2v3509093416l03g3zq85w4741r83r
uInternet Settings,ProxyOverride = *.local
uSearchURL,(Default) = hxxp://www.google.com/search/?q=%s
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: E-Zsoft VideoDownloaderToolBar: {4322a444-92f8-4c3e-bd4c-013ba51e2871} - c:\program files\versalsoft\internetdownload\VDTB.dll
BHO: {5C255C8A-E604-49b4-9D64-90988571CECB} - No File
BHO: RoboForm: {724d43a9-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
BHO: Windows Live Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.7.6406.1642\swg.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
TB: &RoboForm: {724d43a0-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\roboform.dll
TB: E-Zsoft VideoDownloaderToolBar: {4322a444-92f8-4c3e-bd4c-013ba51e2871} - c:\program files\versalsoft\internetdownload\VDTB.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\program files\google\google toolbar\GoogleToolbar_32.dll
uRun: [swg] "c:\program files\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [RoboForm] "c:\program files\siber systems\ai roboform\RoboTaskBarIcon.exe"
uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
mRun: [IAAnotif] c:\program files\intel\intel matrix storage manager\iaanotif.exe
mRun: [AmIcoSinglun] c:\program files\selective suspend driver\AmIcoSinglun.exe
mRun: [RtHDVCpl] c:\program files\realtek\audio\hda\RtHDVCpl.exe
mRun: [Acer ePower Management] c:\program files\acer\acer epower management\ePowerTray.exe
mRun: [Adobe Reader Speed Launcher] "c:\program files\adobe\reader 9.0\reader\Reader_sl.exe"
mRun: [Acer Product Registration] "c:\program files\acer\acer registration\ACE1.exe" /startup
mRun: [PLFSetI] c:\windows\PLFSetI.exe
mRun: [SynTPEnh] c:\program files\synaptics\syntp\SynTPEnh.exe
mRun: [LManager] c:\program files\launch manager\LManager.exe
mRun: [LanguageShortcut] "c:\program files\cyberlink\powerdvd\language\Language.exe"
mRun: [AppleSyncNotifier] c:\program files\common files\apple\mobile device support\AppleSyncNotifier.exe
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
mRun: [Persistence] c:\windows\system32\igfxpers.exe
mRun: [SunJavaUpdateSched] "c:\program files\common files\java\java update\jusched.exe"
mRun: [QuickTime Task] "c:\program files\quicktime\QTTask.exe" -atboottime
mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
mRun: [iTunesHelper] "c:\program files\itunes\iTunesHelper.exe"
mRun: [TRUUpdater] "c:\program files\sierra wireless inc\webupdater\TRUUpdater.exe" /bkground
mRun: [WatcherHelper] "c:\program files\rogers\rogers connection manager\WaHelper.exe"
mRun: [Skytel] c:\program files\realtek\audio\hda\Skytel.exe
StartupFolder: c:\users\becca\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\secuni~1.lnk - c:\program files\secunia\psi\psi_tray.exe
mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Customize Menu - file://c:\program files\siber systems\ai roboform\RoboFormComCustomizeIEMenu.html
IE: Download by VersalSoft Internet Download - c:\program files\versalsoft\internetdownload\adddownload.htm
IE: E&xport to Microsoft Excel - c:\progra~1\micros~2\office12\EXCEL.EXE/3000
IE: Fill Forms - file://c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: Google Sidewiki... - c:\program files\google\google toolbar\component\GoogleToolbarDynamic_mui_en_7461B1589E8B4FB7.dll/cmsidewiki.html
IE: RoboForm Toolbar - file://c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: Save Forms - file://c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F46} - c:\program files\siber systems\ai roboform\RoboFormComFillForms.html
IE: {320AF880-6646-11D3-ABEE-C5DBF3571F49} - c:\program files\siber systems\ai roboform\RoboFormComSavePass.html
IE: {724d43aa-0d85-11d4-9908-00400523e39a} - c:\program files\siber systems\ai roboform\RoboFormComShowToolbar.html
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
Trusted Zone: download.com
DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab
TCP: DhcpNameServer = 192.168.0.1
TCP: Interfaces\{0F7BD4C2-109B-430F-AA02-D159723B369A} : DhcpNameServer = 192.168.0.1
TCP: Interfaces\{66C5D064-F01B-40F5-8995-79F50D396F5E} : DhcpNameServer = 118.148.1.10 118.148.1.20
TCP: Interfaces\{74172B85-8BB9-492D-8B3F-3A45593ECDAB} : DhcpNameServer = 202.74.207.253 202.74.207.254
TCP: Interfaces\{A3276E19-F7FB-4AB3-89BC-5A54BE098F40} : DhcpNameServer = 118.148.1.10 118.148.1.20
TCP: Interfaces\{A69F5AB1-4B02-464C-AE81-A0FF8ED7F397} : DhcpNameServer = 118.148.1.10 118.148.1.20
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
Notify: !SASWinLogon - c:\program files\superantispyware\SASWINLO.DLL
Notify: igfxcui - igfxdev.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\program files\superantispyware\SASSEH.DLL
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\users\becca\appdata\roaming\mozilla\firefox\profiles\phnxwque.default\
FF - prefs.js: browser.startup.homepage - www.google.ca
FF - plugin: c:\program files\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\program files\google\update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft silverlight\4.0.60531.0\npctrlui.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\programdata\visan\reseller2\npRLViewer.dll
FF - plugin: c:\users\becca\appdata\local\google\update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: c:\users\becca\appdata\local\yahoo!\browserplus\2.9.8\plugins\npybrowserplus_2.9.8.dll
FF - plugin: c:\users\becca\appdata\roaming\mozilla\plugins\npgoogletalk.dll
FF - plugin: c:\users\becca\appdata\roaming\mozilla\plugins\npgtpo3dautoplugin.dll
.
============= SERVICES / DRIVERS ===============
.
R1 DPMemGridVista;Physical Memory I/O for GridVista;c:\program files\gridvista\DPMemGridVista.sys [2009-7-1 10504]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2011-2-10 136360]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2011-2-10 269480]
R2 avgntflt;avgntflt;c:\windows\system32\drivers\avgntflt.sys [2011-2-10 66616]
R2 ePowerSvc;Acer ePower Service;c:\program files\acer\acer epower management\ePowerSvc.exe [2009-7-1 723488]
R2 HWDeviceService.exe;HWDeviceService.exe;c:\programdata\datacardservice\hwdeviceservice.exe -/service --> c:\programdata\datacardservice\HWDeviceService.exe -/service [?]
R2 RS_Service;Raw Socket Service;c:\program files\acer\acer vcm\RS_Service.exe [2009-7-1 237568]
R2 Secunia PSI Agent;Secunia PSI Agent;c:\program files\secunia\psi\psia.exe [2011-7-29 994360]
R2 Secunia Update Agent;Secunia Update Agent;c:\program files\secunia\psi\sua.exe [2011-7-29 399416]
R3 huawei_enumerator;huawei_enumerator;c:\windows\system32\drivers\ew_jubusenum.sys [2011-6-16 72576]
R3 IntcHdmiAddService;Intel® High Definition Audio HDMI;c:\windows\system32\drivers\IntcHdmi.sys [2009-7-1 112640]
R3 L1C;NDIS Miniport Driver for Atheros AR8131/AR8132 PCI-E Ethernet Controller;c:\windows\system32\drivers\L1C60x86.sys [2009-7-1 50176]
R3 NETw5v32;Intel® Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\NETw5v32.sys [2009-7-1 4232704]
R3 PSI;PSI;c:\windows\system32\drivers\psi_mf.sys [2010-9-1 15544]
S2 2degrees Mobile Broadband. RunOuc;2degrees Mobile Broadband. OUC;c:\program files\2degrees mobile broadband\updatedog\ouc.exe [2011-6-16 218624]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 gupdate;Google Update Service (gupdate);c:\program files\google\update\GoogleUpdate.exe [2010-8-3 135664]
S3 ew_hwusbdev;Huawei MobileBroadband USB PNP Device;c:\windows\system32\drivers\ew_hwusbdev.sys [2011-6-16 102784]
S3 ewusbnet;HUAWEI USB-NDIS miniport;c:\windows\system32\drivers\ewusbnet.sys [2011-6-16 116736]
S3 gupdatem;Google Update Service (gupdatem);c:\program files\google\update\GoogleUpdate.exe [2010-8-3 135664]
S3 SSDISK;SSDISK Filter;c:\windows\system32\drivers\SSDISK.sys [2009-3-30 10752]
S3 SSUSB;SSUSB Filter;c:\windows\system32\drivers\SSUSB.sys [2009-4-7 14848]
S3 SWNC8UA3;Sierra Wireless MUX NDIS Driver (UMTSA3);c:\windows\system32\drivers\swnc8ua3.sys [2009-8-12 197504]
S3 SWUMXA3;Sierra Wireless USB MUX Driver (UMTSA3);c:\windows\system32\drivers\swumxa3.sys [2009-7-22 148992]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;c:\windows\microsoft.net\framework\v4.0.30319\wpf\WPFFontCache_v0400.exe [2010-3-18 753504]
.
=============== Created Last 30 ================
.
2011-10-23 22:37:32 56200 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{b09d27a6-540e-42e9-af20-1bbd03355f20}\offreg.dll
2011-10-22 19:16:29 -------- d-----w- c:\windows\system32\eu-ES
2011-10-22 19:16:29 -------- d-----w- c:\windows\system32\ca-ES
2011-10-22 19:16:23 -------- d-----w- c:\windows\system32\vi-VN
2011-10-22 18:40:06 -------- d-----w- c:\windows\system32\EventProviders
2011-10-22 15:52:04 28288 ----a-w- c:\windows\system32\drivers\swmsflt.sys
2011-10-22 15:51:02 -------- d-----w- c:\program files\Rogers
2011-10-21 16:08:21 6668624 ----a-w- c:\programdata\microsoft\windows defender\definition updates\{b09d27a6-540e-42e9-af20-1bbd03355f20}\mpengine.dll
2011-10-19 15:54:45 -------- d-s---w- C:\ComboFix
2011-10-17 15:32:23 512 ----a-w- C:\PhysicalMBR.bin
2011-10-17 14:17:19 -------- d-----w- c:\users\becca\mbrfix
2011-10-16 16:08:24 -------- d-sh--w- C:\$RECYCLE.BIN
2011-10-16 16:08:06 -------- d-----w- c:\users\becca\appdata\local\temp
2011-10-16 15:03:37 98816 ----a-w- c:\windows\sed.exe
2011-10-16 15:03:37 518144 ----a-w- c:\windows\SWREG.exe
2011-10-16 15:03:37 256000 ----a-w- c:\windows\PEV.exe
2011-10-16 15:03:37 208896 ----a-w- c:\windows\MBR.exe
2011-10-14 17:00:05 -------- d-----w- c:\program files\GridinSoft Trojan Killer
2011-10-14 01:29:49 -------- d-----w- c:\users\becca\appdata\roaming\SUPERAntiSpyware.com
2011-10-14 01:28:04 -------- d-----w- c:\programdata\SUPERAntiSpyware.com
2011-10-14 01:28:04 -------- d-----w- c:\program files\SUPERAntiSpyware
2011-10-13 23:17:29 -------- d-----w- c:\users\becca\appdata\local\Secunia PSI
2011-10-13 23:17:24 -------- d-----w- c:\program files\Secunia
2011-10-13 19:05:01 -------- d-----w- c:\program files\Wise PC Doctor
2011-10-13 18:59:44 -------- d-----w- c:\programdata\AVAST Software
2011-10-13 18:59:44 -------- d-----w- c:\program files\AVAST Software
2011-10-13 18:19:50 -------- d-----w- c:\users\becca\appdata\roaming\Malwarebytes
2011-10-13 18:19:38 -------- d-----w- c:\programdata\Malwarebytes
2011-10-12 04:32:59 -------- d-----w- c:\program files\iPod
2011-10-12 04:26:31 -------- d-----w- c:\program files\Bonjour
2011-10-10 15:09:40 4550304 ----a-w- c:\program files\mozilla firefox\extensions\{82af8dca-6de9-405d-bd5e-43525bdad38a}\components\SkypeFfComponent.dll
2011-09-29 18:06:17 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin7.dll
2011-09-29 18:06:17 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin6.dll
2011-09-29 18:06:17 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin5.dll
2011-09-29 18:06:17 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin4.dll
2011-09-29 18:06:17 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin3.dll
2011-09-29 18:06:17 159744 ----a-w- c:\program files\mozilla firefox\plugins\npqtplugin2.dll
2011-09-29 17:52:57 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin7.dll
2011-09-29 17:52:57 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin6.dll
2011-09-29 17:52:57 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin5.dll
2011-09-29 17:52:57 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin4.dll
2011-09-29 17:52:57 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin3.dll
2011-09-29 17:52:57 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin2.dll
2011-09-29 17:52:57 159744 ----a-w- c:\program files\internet explorer\plugins\npqtplugin.dll
.
==================== Find3M ====================
.
2011-10-17 19:05:29 150392 ----a-w- C:\junction.exe
2011-10-17 14:15:33 133632 ----a-w- C:\MbrFix64.exe
2011-10-17 14:15:32 123904 ----a-w- C:\MbrFix.exe
2011-10-14 01:12:56 404640 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-08-31 03:05:04 83816 ----a-w- c:\windows\system32\dns-sd.exe
2011-08-31 03:05:04 73064 ----a-w- c:\windows\system32\dnssd.dll
.
============= FINISH: 22:41:42.48 ===============

And Attach.txt file:

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2011-08-26.01)
.
Microsoft® Windows Vista™ Home Premium
Boot Device: \Device\HarddiskVolume2
Install Date: 09/09/2009 11:00:05 AM
System Uptime: 23/10/2011 6:35:42 PM (4 hours ago)
.
Motherboard: Acer | | Base Board Product Name
Processor: Intel® Core™2 Solo CPU U3500 @ 1.40GHz | CPU | 1400/800mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 221 GiB total, 70.592 GiB free.
E: is Removable
F: is FIXED (FAT32) - 373 GiB total, 229.098 GiB free.
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP321: 22/10/2011 2:51:25 PM - Windows Vista™ Service Pack 2
RP322: 23/10/2011 6:42:45 PM - Windows Update
.
==== Installed Programs ======================
.
2degrees Mobile Broadband
Acer Crystal Eye Webcam
Acer ePower Management
Acer eRecovery Management
Acer Registration
Acer ScreenSaver
Acer VCM
Acrobat.com
Adobe AIR
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Reader 9
AI RoboForm (All Users)
Alcor Micro Card Rader Driver and Utility
Apple Application Support
Apple Mobile Device Support
Apple Software Update
Atheros Communications Inc.® AR81Family Gigabit/Fast Ethernet Driver
µTorrent
Avira AntiVir Personal - Free Antivirus
Bonjour
Carbonite Online Backup Setup
Choice Guard
Compatibility Pack for the 2007 Office system
e-tax 2011
ESET Online Scanner v3
Google Chrome
Google Earth Plug-in
Google Talk Plugin
Google Toolbar for Internet Explorer
Google Update Helper
GridVista
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)
Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)
Intel® Graphics Media Accelerator Driver
Intel® TV Wizard
Intel® Matrix Storage Manager
iPhone Tool Kits 2.5.1
iTunes
Java Auto Updater
Java™ 6 Update 26
Junk Mail filter update
Launch Manager
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Chart Controls for Microsoft .NET Framework 3.5 (KB2500170)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Excel MUI (English) 2007
Microsoft Office Home and Student 2007
Microsoft Office OneNote MUI (English) 2007
Microsoft Office PowerPoint MUI (English) 2007
Microsoft Office PowerPoint Viewer 2007 (English)
Microsoft Office Proof (English) 2007
Microsoft Office Proof (French) 2007
Microsoft Office Proof (Spanish) 2007
Microsoft Office Proofing (English) 2007
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Shared MUI (English) 2007
Microsoft Office Shared Setup Metadata MUI (English) 2007
Microsoft Office Suite Activation Assistant
Microsoft Office Word MUI (English) 2007
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Works
MobileMe Control Panel
Mozilla Firefox 7.0.1 (x86 en-US)
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MYOB AccountRight Premier v19
MYOB ODBC Direct v9 NZ
PowerDVD
QuickTime
Realtek High Definition Audio Driver
RocketLife
Rogers Connection Manager
Secunia PSI (2.0.0.4002)
Security Update for 2007 Microsoft Office System (KB2288621)
Security Update for 2007 Microsoft Office System (KB2288931)
Security Update for 2007 Microsoft Office System (KB2289158)
Security Update for 2007 Microsoft Office System (KB2344875)
Security Update for 2007 Microsoft Office System (KB2345043)
Security Update for 2007 Microsoft Office System (KB969559)
Security Update for 2007 Microsoft Office System (KB976321)
Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft Office Excel 2007 (KB2345035)
Security Update for Microsoft Office InfoPath 2007 (KB979441)
Security Update for Microsoft Office PowerPoint 2007 (KB982158)
Security Update for Microsoft Office PowerPoint Viewer (KB2413381)
Security Update for Microsoft Office system 2007 (972581)
Security Update for Microsoft Office system 2007 (KB974234)
Security Update for Microsoft Office Visio Viewer 2007 (KB973709)
Security Update for Microsoft Office Word 2007 (KB2344993)
Skype Click to Call
Skype™ 5.5
SUPERAntiSpyware
Synaptics Pointing Device Driver
Trojan Killer 2.1
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707)
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft Office 2007 Help for Common Features (KB963673)
Update for Microsoft Office Excel 2007 Help (KB963678)
Update for Microsoft Office OneNote 2007 (KB980729)
Update for Microsoft Office OneNote 2007 Help (KB963670)
Update for Microsoft Office Powerpoint 2007 Help (KB963669)
Update for Microsoft Office Script Editor Help (KB963671)
Update for Microsoft Office Word 2007 Help (KB963665)
VLC media player 1.1.11
Windows Driver Package - Cmotech (cmusbnet) Net (06/11/2007 2.0.0.9)
Windows Driver Package - Cmotech Modem (12/13/2006 2.0.3.5)
Windows Driver Package - Cmotech Ports (12/13/2006 2.0.3.5)
Windows Live Call
Windows Live Communications Platform
Windows Live Essentials
Windows Live Mail
Windows Live Messenger
Windows Live Photo Gallery
Windows Live Sign-in Assistant
Windows Live Sync
Windows Live Upload Tool
Windows Live Writer
Wise PC Doctor version 3.8.6
Yahoo! BrowserPlus 2.9.8
Yahoo! Detect
.
==== End Of File ===========================

Thanks!
Rebecca

Hi Rebecca,


No problems for the delay.
I myself had a flu like thing...

Quote

Quote

I am afraid that you'll have to re-create these shortcuts manually...
You can restore the defaults for the Start Menu and Administrative Tools as follows:

• Windows 7: Restore Default Shortcuts in Start Menu All Programs
  
• Vista: Restore Default Shortcuts in Start Menu Programs
  
• Restore the Administrative Tools folder with vista_ultimate_admintools.zip

For any other missing program shortcuts you will probably need to reinstall the application or manually create new shortcuts.

You can check this method to solve the problem too: To manually recreate "All Programs" entries, follow these steps...





I have some final words for you.
All Clean !
Your machine appears to be clean, please take the time to read below on how to secure the machine and take the necessary steps to keep it Clean.



Registry Editor / Cleaner Warning !!



The following is referring to Wise PC Doctor.
Please be aware that bleepingcomputer staff do not recommend the usage of registry cleaners / tools due to the following facts:

• Registry tools can cause irreparable damage to your Operating System
  
• Registry tools can, as a result of the above, render your pc to be inoperable.

This is done, assuming that the major audience here at this board might be inexperienced users and thus a suggested safeguard from our side.
If you feel you have the need for a registry cleaner, then you are just as welcome to keep it. This is what we refer to an "optional fix" and is up to the user, so just take this as a recommendation from my side.


For more information about why you should avoid using a such programs please take a look here => Registry Cleaners and System Tweaking Tools





P2P Warning !!



Your log(s) show that you are using so called peer-to-peer or file-sharing programmes (in your case uTorrent). These programmes allow to share files between users as the name(s) suggest. In today's world the cyber crime has come to an enormous dimension and any means is used to infect personal computers to make use of their stored data or machine power for further propagation of the malware files. A popular means is the use of file-sharing tools as a tremendous amount of prospective victims can be reached through it.

It is therefore possible to be infected by downloading manipulated files via peer-to-peer tools and thus suggested to be used with intense care. Some further readings on this subject, along the included links, are as follows: "File-Sharing, otherwise known as Peer To Peer" and "Risks of File-Sharing Technology."

It is also important to note that sharing entertainment files and proprietary software infringes the copyright laws in many countries over the world and you are putting yourself at risk of being indicted through organisations watching over the rights of the authors of such files (i.e. the RIAA for music files, or the MPAA for movie files in the USA) or the authors of the files themselves.

Naturally there are also legal ways to use these services, such as downloading Linux distributions or office suites such as "Open Office."


Also, please take a look here:

How cyber criminals infect victims via P2P with pirated software

Quote

STEP 1 UPDATING TASKS



Your Adobe Reader is out of date.
Older versions may have vulnerabilities that malware can use to infect your system.
Please download Adobe Reader X to your PC's desktop.

* Uninstall Adobe Reader 9 via Start => Control Panel => Programs => Uninstall a program
* Install the new downloaded updated software.


Note: Note that the McAfee Security scan or Google Chrome are prechecked. You may wish to uncheck them before downloading.


Note: Adobe Reader X is a large program and if you prefer a smaller program you can get Foxit Reader 5x instead.

Foxit Reader 5x offer 5 levels of security. Click Me for more information.

Note: When installing FoxitReader, be carefull not to install anything to do with AskBar.





Your adobe flash player is out of date. Older versions are vulnerable to attack and exploitation. Please go to the links below to update it:

Adobe Flash Player 11.0.1.152 Final for (Internet Explorer) x86

Adobe Flash Player 11.0.1.152 Final çà (Firefox, Safari, Opera) x86





Upgrading Java:

Your Java is out of date. Older versions have vulnerabilities that malware can use to infect your system. Please follow these steps to remove older version of Java components and upgrade the application. NOT supported for use in 9x or ME

Upgrading Java :

• Download the latest version of JAVA 7 update 1 from here.
  
• Close any programs you may have running - especially your web browser.
  
• Go to Start => Control Panel => Programs and click on Uninstall a program and remove Java™ 6 Update 26
  
• Reboot your computer once all Java components are removed.
  
• Then from your desktop double-click on the download to install the newest version.(Vista users, right click on the jre-7u1-windows-i586.exe and select "Run as an Administrator.")

Your Skype version is out of date. You can download and install Skype 5.6.0.110 Final





Uninstall Trojan Killer 2.1
I do not recommend that you have more than one anti-malware product installed and running on your computer at a time.
Go to Start => Control Panel => Programs and click on Uninstall a program and remove Trojan Killer 2.1





Delete all leftovers related to avast!
Click Start => My Computer and then navigate to and delete the following folders:


c:\programdata\AVAST Software <= this folder
c:\program files\AVAST Software <= this folder





Go ahead and update SUPERAntispyware too.
One note: About SUPERAntispyware. If you use the free version disable it from start up (it has no real time protection therefore its not required on startup.)
Double-click on SUPERAntispyware icon to start it.
Select Preferences => Under the General and Startup tab => uncheck the box Start SUPERAntispyware when Windows starts.





Visit Microsoft's Windows Update Site Frequently



It is important that you visit Windows Update regularly.

This will ensure your computer has always the latest security updates available installed on your computer.

If there are new updates to install, install them immediately, reboot your computer, and revisit the site until there are no more critical updates.





STEP 2 CLEANUP



1. Uninstall Combofix - The following will implement some cleanup procedures as well as reset System Restore points:

• Windows Vista/7 do not display the Run line on the Start menu in the default setting but the Run line can be accessed in all current versiions of Windows by pressing the keyboard combination Windows key + R
  
• Copy/paste the following bolded text into the Run box and click OK => ComboFix /Uninstall and hit Enter

.
Note: the space between the Combofix and the /Uninstall.



2. To remove all of the tools we used and the files and folders they created, please do the following:



Please reopen on your desktop.

In the upper right click CleanUp



This will delete OTL and will clean up after it.


Note: If any tool, file, log file or folder (belonging to the program we have used) hasn't been deleted, please delete it manually.


You can uninstall now - ESET Online Scanner v3.





STEP 3 SECURITY ADVICES



Change all your passwords !


Since your computer was infected with a rootkit for peace of mind, I would however advise you that all your passwords be changed immediately !! (just in case).

Quote

Keep your antivirus software turned on and up-to-date

• Make sure your antivirus software is turned on and up-to-date.
  
• New viruses come out every minute, so it is essential that you have the latest signatures for your antivirus program to provide you with the best possible protection from malicious software.
  Note:
  
• You should only have one antivirus installed at a time. Having more than one antivirus program installed at once is likely to cause conflicts and may well decrease your overall protection as well as impairing the performance of your PC.
  
• You should scan your computer with an AntiSpyware program (like SUPERAntispyware and Malwarebytes' Anti-Malware) on a regular basis just as you would an antivirus software.
  Be sure to check for and download any definition updates prior to performing a scan.

Practice Safe Internet



One of the main reasons people get infected in the first place is that they are not practicing Safe Internet. You practice Safe Internet when you educate yourself on how to properly use the Internet through the use of security tools and good practice. Knowing how you can get infected and what types of files and sites to avoid will be the most crucial step in keeping your computer malware free. The reality is that the majority of people who are infected with malware are ones who click on things they shouldn't be clicking on. Whether these things are files or sites it doesn't really matter. If something is out to get you, and you click on it, it most likely will. Below are a list of simple precautions to take to keep your computer clean and running securely:

• If you receive an attachment from someone you do not know, DO NOT OPEN IT! Simple as that. Opening attachments from people you do not know is a very common method for viruses or worms to infect your computer.
  
  
  
• If you receive an attachment and it ends with a .exe, .com, .bat, or .pif do not open the attachment unless you know for a fact that it is clean. For the casual computer user, you will almost never receive a valid attachment of this type.
  
  
  
• If you receive an attachment from someone you know, and it looks suspicious, then it probably is. The email could be from someone you know infected with a malware that is trying to infect everyone in their address book.
  
  
  
• If you are browsing the Internet and a popup appears saying that you are infected, ignore it!. These are, as far as I am concerned, scams that are being used to scare you into purchasing a piece of software. For an example of these types of popups, or Foistware, you should read this article:
  
  Foistware, And how to avoid it.
  
  There are also programs that disguise themselves as Anti-Spyware or security products but are instead scams. For a list of these types of programs we recommend you visit this link: Rogue/Suspect Anti-Spyware Products & Web Sites
  
  
  
• Another tactic to fool you on the web is when a site displays a popup that looks like a normal Windows message or alert. When you click on them, though, they instead bring you to another site that is trying to push a product on you. We suggest that you close these windows by clicking on the X instead of the OK button. Alternatively, you can check to see if it's a real alert by right-clicking on the window. If there is a menu that comes up saying Add to Favorites... you know it's a fake.
  
  
  
• Do not go to adult sites. I know this may bother some of you, but the fact is that a large amount of malware is pushed through these types of sites. I am not saying all adult sites do this, but a lot do.
  
  
  
• When using an Instant Messaging program be cautious about clicking on links people send to you. It is not uncommon for infections to send a message to everyone in the infected person's contact list that contains a link to an infection. Instead when you receive a message that contains a link, message back to the person asking if it is legit before you click on it.
  
  
  
• Stay away from Warez and Crack sites! In addition to the obvious copyright issues, the downloads from these sites are typically overrun with infections.
  
  
  
• Be careful of what you download off of web sites and Peer-2-Peer networks. Some sites disguise malware as legitimate software to trick you into installing them and Peer-2-Peer networks are crawling with it. If you want to download a piece of software a from a site, and are not sure if they are legitimate, you can use McAfee Siteadvisor to look up info on the site.
  
  
  
• DO NOT INSTALL any software without first reading the End User License Agreement, otherwise known as the EULA. A tactic that some developers use is to offer their software for free, but have spyware and other programs you do not want bundled with it. This is where they make their money. By reading the agreement there is a good chance you can spot this and not install the software.

Don't use pirated software !!!



Avoid using cracks and unknown programs from sources you don't trust. There are MANY alternative open-source applications.

Malware writers just love cracks and keygens, and will often attach malicious code into them. By using cracks and/or keygens, you are asking for problems.

So my advice is - stay away from them!





Create an image of your system



It is always a good idea to do a backup of all important files just in case something happens it.

Macrium Reflect is very good choice that enables you to create an image of your system drive which can be restored in case of problems.

The download link is here => http://www.macrium.com/reflectfree.asp

The tutorials can be found here => http://kb.macrium.com/KnowledgebaseArticle50039.aspx

Be sure to read the tutorial first.



Follow this list and your potential for being infected again will reduce dramatically.

Quote

Improve your PC performance:



Use Disk Cleanup to delete files you no longer need and reclaim storage space on your computer.


Open Disk Cleanup by clicking the Start button and In the Search box, type Disk Cleanup, and then, in the list of results, click Disk Cleanup.

If the Disk Cleanup: Drive Selection dialog box appears, select the hard disk drive that you want to clean up, and then click OK.

Click the Disk Cleanup tab, and then select the check boxes for the files you want to delete.

When you finish selecting the files you want to delete, click OK, and then click Delete files to confirm the operation. Disk Cleanup proceeds to remove all unnecessary files from your computer.





Next please Open Disk Defragmenterby clicking the Start button and In the Search box, type Disk Cleanup, and then, in the list of results, click Disk Defragmenter.

Select the drive you want to Defragment (the drive where Windows is installed).

Click Defragment Disk.





Finally please type msconfig in the start menu Search box, then hit enter.

Go to the startup tab and then uncheck any programs that you don't need to load with Windows.

Click the "Apply" button and click "OK" to close the MSCONFIG window.

Restart your computer to save the changes you made to the Startup.

You might have a popup window when you log on. This is typical. Just click ok. You can also make the popup window not come up anymore by checking the box there.

The programs you removed will no longer automatically launch once Windows starts up.



Safe Surfing ! ;)



Regards,
Georgi

This post has been edited by B-boy/StyLe/: 24 October 2011 - 06:12 AM

It appears that this issue is resolved, therefore I am closing the topic. If that is not the case and you need or wish to continue with this topic, please send me or any Moderator a Personal Message (PM) that you would like this topic re-opened.