Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google Redirect Virus


  • Please log in to reply
7 replies to this topic

#1 OC Dee

OC Dee

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:26 PM

Posted 11 May 2011 - 11:23 AM

Hi I'm in need of desparate help. I am pretty sure I have the google redirect virus. When I run a search using yahoo or google and click on the links provided my computer gets sent to bogus sites. I've run Malwarebytes, Spybot Search & Destroy, SuperAntiSpyware, TDSSKiller and Kapersky virus scan. They all seemed to find viruses initially, which I clean. Now, they do not find any viruses but my computer is still encountering the same problem. Thanks in advance for your help.

BC AdBot (Login to Remove)

 


#2 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:03:26 AM

Posted 18 May 2011 - 12:56 PM

Can you post the logs from Malwarebytes, Super Anti-Spyware, and TDSS Killer?

#3 OC Dee

OC Dee
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:26 PM

Posted 20 May 2011 - 03:23 PM

Hi - Thanks for your response.

Here's the log from Malwarebytes:

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6628

Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702

5/20/2011 1:20:00 PM
mbam-log-2011-05-20 (13-20-00).txt

Scan type: Quick scan
Objects scanned: 188651
Time elapsed: 26 minute(s), 14 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 1

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
c:\WINDOWS\system32\brmfpmonm.dll (Trojan.Agent.GGEP) -> Quarantined and deleted successfully.

I'm about to run the others will post as soon as I get them.

Thanks again.

#4 cryptodan

cryptodan

    Bleepin Madman


  • Members
  • 21,868 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Catonsville, Md
  • Local time:03:26 AM

Posted 20 May 2011 - 03:26 PM

Can you run complete scans?

#5 OC Dee

OC Dee
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:26 PM

Posted 20 May 2011 - 04:02 PM

Here's the log from SuperAntiSpyware:
SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/20/2011 at 01:40 PM

Application Version : 4.52.1000

Core Rules Database Version : 7102
Trace Rules Database Version: 4914

Scan type : Quick Scan
Total Scan Time : 00:13:42

Memory items scanned : 470
Memory threats detected : 0
Registry items scanned : 2190
Registry threats detected : 0
File items scanned : 4658
File threats detected : 443

Adware.Tracking Cookie
C:\Documents and Settings\Owner\Cookies\owner@content.yieldmanager[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ar.atwola[2].txt
C:\Documents and Settings\Owner\Cookies\owner@edge.ru4[1].txt
C:\Documents and Settings\Owner\Cookies\owner@imrworldwide[2].txt
C:\Documents and Settings\Owner\Cookies\owner@lm.logicalmedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@countrycrock[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.wsod[1].txt
C:\Documents and Settings\Owner\Cookies\owner@lucidmedia[2].txt
C:\Documents and Settings\Owner\Cookies\owner@questionmarket[2].txt
C:\Documents and Settings\Owner\Cookies\owner@www.couponmountain[1].txt
C:\Documents and Settings\Owner\Cookies\owner@advertise[2].txt
C:\Documents and Settings\Owner\Cookies\owner@couponmountain[3].txt
C:\Documents and Settings\Owner\Cookies\owner@mediabrandsww[1].txt
C:\Documents and Settings\Owner\Cookies\owner@liveperson[2].txt
C:\Documents and Settings\Owner\Cookies\owner@media6degrees[2].txt
C:\Documents and Settings\Owner\Cookies\owner@realmedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@sales.liveperson[1].txt
C:\Documents and Settings\Owner\Cookies\owner@search.hippofind[1].txt
C:\Documents and Settings\Owner\Cookies\owner@solvemedia[2].txt
C:\Documents and Settings\Owner\Cookies\owner@tribalfusion[1].txt
C:\Documents and Settings\Owner\Cookies\owner@marscorporation.112.2o7[1].txt
C:\Documents and Settings\Owner\Cookies\owner@dmtracker[1].txt
C:\Documents and Settings\Owner\Cookies\owner@liveperson[4].txt
C:\Documents and Settings\Owner\Cookies\owner@2o7[2].txt
C:\Documents and Settings\Owner\Cookies\owner@specificclick[1].txt
C:\Documents and Settings\Owner\Cookies\owner@lucidmedia[3].txt
C:\Documents and Settings\Owner\Cookies\owner@paypal.112.2o7[1].txt
C:\Documents and Settings\Owner\Cookies\owner@liveperson[7].txt
C:\Documents and Settings\Owner\Cookies\owner@pluckit.demandmedia[2].txt
C:\Documents and Settings\Owner\Cookies\owner@service.liveperson[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adserver.adtechus[2].txt
C:\Documents and Settings\Owner\Cookies\owner@interclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@a1.interclick[2].txt
C:\Documents and Settings\Owner\Cookies\owner@at.atwola[1].txt
C:\Documents and Settings\Owner\Cookies\owner@revsci[2].txt
C:\Documents and Settings\Owner\Cookies\owner@collective-media[2].txt
C:\Documents and Settings\Owner\Cookies\owner@pointroll[1].txt
C:\Documents and Settings\Owner\Cookies\owner@content.yieldmanager[3].txt
C:\Documents and Settings\Owner\Cookies\owner@insightexpressai[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ar.atwola[1].txt
C:\Documents and Settings\Owner\Cookies\owner@adbrite[2].txt
C:\Documents and Settings\Owner\Cookies\owner@valassis.112.2o7[1].txt
C:\Documents and Settings\Owner\Cookies\owner@specificmedia[2].txt
C:\Documents and Settings\Owner\Cookies\owner@trafficmp[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.pointroll[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ru4[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ads.bleepingcomputer[1].txt
C:\Documents and Settings\Owner\Cookies\owner@atwola[1].txt
C:\Documents and Settings\Owner\Cookies\owner@stats.paypal[2].txt
C:\Documents and Settings\Owner\Cookies\owner@bizrate[2].txt
C:\Documents and Settings\Owner\Cookies\owner@liveperson[1].txt
C:\Documents and Settings\Owner\Cookies\owner@tacoda.at.atwola[2].txt
C:\Documents and Settings\Owner\Cookies\owner@timeinc.122.2o7[2].txt
C:\Documents and Settings\Owner\Cookies\owner@sales.liveperson[3].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.yieldmanager[2].txt
C:\Documents and Settings\Owner\Cookies\owner@www.find-quick-results[1].txt
C:\Documents and Settings\Owner\Cookies\owner@serving-sys[1].txt
C:\Documents and Settings\Owner\Cookies\owner@invitemedia[1].txt
C:\Documents and Settings\Owner\Cookies\owner@liveperson[5].txt
C:\Documents and Settings\Owner\Cookies\owner@liveperson[6].txt
media.mtvnservices.com [ C:\Documents and Settings\LocalService\Application Data\Macromedia\Flash Player\#SharedObjects\X54MZW8Q ]
media1.break.com [ C:\Documents and Settings\LocalService\Application Data\Macromedia\Flash Player\#SharedObjects\X54MZW8Q ]
secure-us.imrworldwide.com [ C:\Documents and Settings\LocalService\Application Data\Macromedia\Flash Player\#SharedObjects\X54MZW8Q ]
crackle.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
media.heavy.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
media.kyte.tv [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
media.mtvnservices.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
media.scanscout.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
media1.break.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
msnbcmedia.msn.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
objects.tremormedia.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
secure-us.imrworldwide.com [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
sftrack.searchforce.net [ C:\Documents and Settings\NetworkService\Application Data\Macromedia\Flash Player\#SharedObjects\C2FE2BXB ]
C:\Documents and Settings\NetworkService\Cookies\system@247realmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@dc.tremormedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@yieldmanager[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.lycos[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pointroll[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pointroll[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pointroll[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@dc.tremormedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@dc.tremormedia[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@yieldmanager[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@dc.tremormedia[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@xml.trafficengine[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@yieldmanager[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@doubleclick[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@doubleclick[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@dc.tremormedia[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@doubleclick[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@yieldmanager[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[8].txt
C:\Documents and Settings\NetworkService\Cookies\system@atdmt[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@atdmt[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@atdmt[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@atdmt[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[9].txt
C:\Documents and Settings\NetworkService\Cookies\system@search.seekfinds[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[6].txt
C:\Documents and Settings\NetworkService\Cookies\system@doubleclick[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@doubleclick[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[7].txt
C:\Documents and Settings\NetworkService\Cookies\system@bizzclick[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@bizzclick[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@statcounter[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@2o7[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@2o7[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@pixel.invitemedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@pixel.invitemedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@apmebf[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@lucidmedia[10].txt
C:\Documents and Settings\NetworkService\Cookies\system@apmebf[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@apmebf[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@ru4[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@apmebf[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertise[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@specificmedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ru4[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@ru4[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ru4[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.doubleclick[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@beacon.dmsinsights[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ru4[7].txt
C:\Documents and Settings\NetworkService\Cookies\system@ru4[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@adbrite[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@adbrite[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adbrite[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@adbrite[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@invitemedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@crackle[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@adxpose[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@adxpose[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adxpose[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@linksynergy[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@adbrite[6].txt
C:\Documents and Settings\NetworkService\Cookies\system@eyewonder[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@media6degrees[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@mediaplex[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@mediaplex[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adserver.adtechus[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@adserver.adtechus[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@trafficengine[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@insightexpressai[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@www.mediaquantics[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@insightexpressai[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@search.clickwhale[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@adprofile[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@casalemedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@vidasco.rotator.hadj7.adjuggler[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pubmatic[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.adk2[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@in.getclicky[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@searchnet.chitika[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.pubmatic[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@realmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[8].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ad.yieldmanager[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@realmedia[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@realmedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[9].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ehg-players.hitbox[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[6].txt
C:\Documents and Settings\NetworkService\Cookies\system@mm.chitika[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@fastclick[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@search.321findit[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@solvemedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@content.yieldmanager[7].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.ppgpubs[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@fastclick[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@fastclick[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@fastclick[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@realmedia[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.undertone[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.undertone[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.undertone[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads.undertone[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@www.find-quick-results[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@rds.adprofile[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@rotator.adjuggler[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@citi.bridgetrack[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@pro-market[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@findology[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@tribalfusion[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@citi.bridgetrack[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@tribalfusion[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@tribalfusion[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@mediatraffic[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@clicks.thespecialsearch[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@pro-market[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@tribalfusion[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@citi.bridgetrack[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@ads-svx.adbrite[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@pro-market[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@questionmarket[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@tribalfusion[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@serving-sys[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@serving-sys[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@serving-sys[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@questionmarket[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@gotacha.rotator.hadj7.adjuggler[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@questionmarket[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@mediaquantics[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@questionmarket[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@trafficmp[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@revsci[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@hitbox[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@questionmarket[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@questionmarket[6].txt
C:\Documents and Settings\NetworkService\Cookies\system@network.realmedia[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@server.cpmstar[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@eyeviewads[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@m1.mediasrv[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@harrenmedianetwork[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@specificclick[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@trafficking.nabbr[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@mediabrandsww[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@imrworldwide[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@pfizer.122.2o7[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@collective-media[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@imrworldwide[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@mediabrandsww[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@cdn.jemamedia[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertising[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertising[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@advertising[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@collective-media[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@imrworldwide[5].txt
C:\Documents and Settings\NetworkService\Cookies\system@collective-media[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@imrworldwide[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@pointroll[4].txt
C:\Documents and Settings\NetworkService\Cookies\system@pointroll[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@pointroll[2].txt
C:\Documents and Settings\NetworkService\Cookies\system@mediabrandsww[3].txt
C:\Documents and Settings\NetworkService\Cookies\system@trafficengine[1].txt
C:\Documents and Settings\NetworkService\Cookies\system@xml.trafficengine[1].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@atdmt[1].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ad.yieldmanager[2].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@yieldmanager[1].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@fastclick[2].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ru4[1].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@mediaplex[2].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@doubleclick[1].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@ad.wsod[2].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@advertising[2].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@content.yieldmanager[1].txt
C:\Documents and Settings\Owner\Local Settings\Temp\Cookies\owner@apmebf[1].txt
ads1.msn.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
bannerfarm.ace.advertising.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
bc.youporn.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
cdn4.specificclick.net [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
espn360.channelfinder.net [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
interclick.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
m1.2mdn.net [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
media.thewb.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
msnbcmedia.msn.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
secure-us.imrworldwide.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
static.youporn.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
vidego.multicastmedia.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
www.porncor.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
www.pornhub.com [ C:\Documents and Settings\Von Karman\Application Data\Macromedia\Flash Player\#SharedObjects\C69LE2UW ]
C:\Documents and Settings\Von Karman\Cookies\von karman@ads.fulltiltpoker[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@kontera[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@madethecut.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@yieldmanager[3].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@apmebf[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@content.yieldmanager[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@yieldmanager[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@content.yieldmanager[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@youporn[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@ads-dev.youporn[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@atwola[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@videoegg.adbureau[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@cdn4.specificclick[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@adtech[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@atwola[3].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@beacon.dmsinsights[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@virginamerica.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@tribalfusion[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@trvlnet.adbureau[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@www.googleadservices[3].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@ads.bridgetrack[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@msnbc.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@r1-ads.ace.advertising[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@adopt.specificclick[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@serving-sys[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@ads.as4x.tmcs[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@insightexpressai[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@burstnet[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@server.iad.liveperson[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@a1.interclick[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@warnerbros.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@adbrite[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@tacoda.at.atwola[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@adserver.adtechus[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@questionmarket[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@chitika[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@findarticles[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@questionmarket[3].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@tacoda.at.atwola[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@invitemedia[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@youporn.videobox[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@www.pixeltrack66[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ad.yieldmanager[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ad.yieldmanager[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@tradedoubler[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@test.coremetrics[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@zedo[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@statse.webtrendslive[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@specificclick[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@highbeam.122.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@invitemedia[3].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@mediaplex[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@cms.trafficmp[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@accountonline[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@electronicarts.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@eyewonder[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ads.youporn[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@link.mercent[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@zillow.adbureau[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@mylife.adbureau[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@ads.monster[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@bluestreak[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@iacas.adbureau[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@ad.103092804[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@track.shbsolutions[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@247realmedia[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@citi.bridgetrack[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@ecnext.advertserve[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ar.atwola[5].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ar.atwola[3].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ar.atwola[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ar.atwola[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ar.atwola[4].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@media.adrevolver[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@doubleclick[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@cbcnewmedia.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@yieldmanager[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@ehg-myspaceinc.hitbox[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@dc.tremormedia[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ads.pointroll[3].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ads.pointroll[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@revsci[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@realmedia[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@collective-media[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@dkommel.freestats[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@liveperson[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@revsci[3].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@adopt.euroclick[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@www.accountonline[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@media6degrees[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@liveperson[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@nextag[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@ussearch.122.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@tacoda[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@realmedia[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@fastclick[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@serw.clicksor[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@data.coremetrics[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@tribalfusion[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@statcounter[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@network.realmedia[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@hitbox[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@www.findgift[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@indextools[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@trafficmp[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@at.atwola[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@at.atwola[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@dominionenterprises.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@nitropayouts.directtrack[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@naiadsystems[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@bs.serving-sys[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@cbs.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@ads.clicksor[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@media.expedia[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@specificmedia[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@myroitracking[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@euroclick[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@edge.ru4[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@sec1.liveperson[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@adrevolver[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@atdmt[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@media6degrees[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@pointroll[3].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@pointroll[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@azjmp[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@imrworldwide[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@adlegend[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@traveladvertising[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@ehg-socaledison.hitbox[2].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@casalemedia[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@advertising[2].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@advertising[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@microsoftwindows.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von karman@msnportal.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Cookies\von_karman@interclick[1].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@tacoda[1].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@ads-dev.youporn[2].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@insightexpressai[1].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@atwola[2].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@youporn[2].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@serving-sys[1].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@ad.yieldmanager[1].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@advertising[1].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@revsci[2].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@cbs.112.2o7[1].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@at.atwola[1].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@edge.ru4[2].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@atdmt[2].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@bs.serving-sys[1].txt
C:\Documents and Settings\Von Karman\Local Settings\Temp\Cookies\von karman@doubleclick[1].txt
C:\WINDOWS\system32\config\systemprofile\Cookies\system@doubleclick[1].txt
C:\WINDOWS\system32\config\systemprofile\Cookies\system@advertise[1].txt
C:\WINDOWS\system32\config\systemprofile\Cookies\system@invitemedia[2].txt
C:\WINDOWS\system32\config\systemprofile\Cookies\system@ad.yieldmanager[2].txt
C:\WINDOWS\system32\config\systemprofile\Cookies\system@mediabrandsww[2].txt
C:\WINDOWS\system32\config\systemprofile\Cookies\system@www.find-quick-results[1].txt

Trojan.Agent/Gen-IExplorer[Fake]
C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\RARSFX2\NIRD\IEXPLORE.EXE
C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\RARSFX8\NIRD\IEXPLORE.EXE

Trojan.Agent/Gen-PEC
C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\RARSFX2\PROCS\EXPLORER.EXE
C:\DOCUMENTS AND SETTINGS\OWNER\LOCAL SETTINGS\TEMP\RARSFX8\PROCS\EXPLORER.EXE


Sorrry I didn't know to run complete scans. I will run complete scans now.

Also, it usually finds some malware the first time i run the progams and I think the computer is fixed but the bugger shows up again.

#6 OC Dee

OC Dee
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:26 PM

Posted 20 May 2011 - 05:19 PM

Malwarebytes' Anti-Malware 1.50.1.1100
www.malwarebytes.org

Database version: 6628

Windows 5.1.2600 Service Pack 2
Internet Explorer 8.0.6001.18702

5/20/2011 3:11:13 PM
mbam-log-2011-05-20 (15-11-13).txt

Scan type: Full scan (C:\|)
Objects scanned: 255302
Time elapsed: 1 hour(s), 8 minute(s), 2 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)

#7 OC Dee

OC Dee
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:26 PM

Posted 20 May 2011 - 05:23 PM

2011/05/20 15:22:32.0218 2280 TDSS rootkit removing tool 2.5.1.0 May 13 2011 13:20:29
2011/05/20 15:22:32.0843 2280 ================================================================================
2011/05/20 15:22:32.0843 2280 SystemInfo:
2011/05/20 15:22:32.0843 2280
2011/05/20 15:22:32.0843 2280 OS Version: 5.1.2600 ServicePack: 2.0
2011/05/20 15:22:32.0843 2280 Product type: Workstation
2011/05/20 15:22:32.0843 2280 ComputerName: OWNER-B3246633E
2011/05/20 15:22:32.0843 2280 UserName: Owner
2011/05/20 15:22:32.0843 2280 Windows directory: C:\WINDOWS
2011/05/20 15:22:32.0843 2280 System windows directory: C:\WINDOWS
2011/05/20 15:22:32.0843 2280 Processor architecture: Intel x86
2011/05/20 15:22:32.0843 2280 Number of processors: 2
2011/05/20 15:22:32.0843 2280 Page size: 0x1000
2011/05/20 15:22:32.0843 2280 Boot type: Normal boot
2011/05/20 15:22:32.0843 2280 ================================================================================
2011/05/20 15:22:33.0343 2280 Initialize success
2011/05/20 15:22:36.0328 0280 ================================================================================
2011/05/20 15:22:36.0328 0280 Scan started
2011/05/20 15:22:36.0328 0280 Mode: Manual;
2011/05/20 15:22:36.0328 0280 ================================================================================
2011/05/20 15:22:39.0562 0280 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
2011/05/20 15:22:39.0656 0280 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
2011/05/20 15:22:39.0812 0280 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
2011/05/20 15:22:39.0906 0280 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
2011/05/20 15:22:40.0218 0280 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
2011/05/20 15:22:40.0437 0280 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
2011/05/20 15:22:40.0546 0280 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
2011/05/20 15:22:40.0687 0280 ati2mtag (99f6db087497f55d5f8d971f7689f054) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
2011/05/20 15:22:40.0812 0280 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
2011/05/20 15:22:40.0921 0280 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
2011/05/20 15:22:41.0015 0280 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
2011/05/20 15:22:41.0125 0280 BrScnUsb (92a964547b96d697e5e9ed43b4297f5a) C:\WINDOWS\system32\Drivers\BrScnUsb.sys
2011/05/20 15:22:41.0156 0280 BrSerIf (d48c13f4a409aee8dafaddac81e34557) C:\WINDOWS\system32\Drivers\BrSerIf.sys
2011/05/20 15:22:41.0187 0280 BrUsbSer (8fa0ac830a8312912a3aa0c0431cba0d) C:\WINDOWS\system32\Drivers\BrUsbSer.sys
2011/05/20 15:22:41.0234 0280 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
2011/05/20 15:22:41.0312 0280 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
2011/05/20 15:22:41.0406 0280 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
2011/05/20 15:22:41.0484 0280 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
2011/05/20 15:22:41.0609 0280 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
2011/05/20 15:22:41.0812 0280 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
2011/05/20 15:22:41.0921 0280 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
2011/05/20 15:22:42.0046 0280 DMICall (526192bf7696f72e29777bf4a180513a) C:\WINDOWS\system32\DRIVERS\DMICall.sys
2011/05/20 15:22:42.0078 0280 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
2011/05/20 15:22:42.0156 0280 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
2011/05/20 15:22:42.0265 0280 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
2011/05/20 15:22:42.0343 0280 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
2011/05/20 15:22:42.0484 0280 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
2011/05/20 15:22:42.0578 0280 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\drivers\Fdc.sys
2011/05/20 15:22:42.0609 0280 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
2011/05/20 15:22:42.0640 0280 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\drivers\Flpydisk.sys
2011/05/20 15:22:42.0718 0280 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
2011/05/20 15:22:42.0750 0280 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
2011/05/20 15:22:42.0812 0280 FTDIBUS (a36e8beedb3aaca09bf55a1d17904bc8) C:\WINDOWS\system32\drivers\ftdibus.sys
2011/05/20 15:22:42.0859 0280 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
2011/05/20 15:22:42.0921 0280 FTSER2K (a14a1f4bb391df9c233cb5dbd05feb70) C:\WINDOWS\system32\drivers\ftser2k.sys
2011/05/20 15:22:43.0046 0280 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
2011/05/20 15:22:43.0187 0280 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
2011/05/20 15:22:43.0281 0280 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
2011/05/20 15:22:43.0406 0280 hidusb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
2011/05/20 15:22:43.0468 0280 HSFHWAZL (9bec5d4ac6efdaaf001d42c77811e3db) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
2011/05/20 15:22:43.0578 0280 HSF_DPV (6cad234becf58529879b6c303f02777f) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
2011/05/20 15:22:43.0703 0280 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
2011/05/20 15:22:43.0875 0280 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\drivers\i8042prt.sys
2011/05/20 15:22:43.0968 0280 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
2011/05/20 15:22:44.0171 0280 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
2011/05/20 15:22:44.0218 0280 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
2011/05/20 15:22:44.0312 0280 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
2011/05/20 15:22:44.0390 0280 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
2011/05/20 15:22:44.0515 0280 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
2011/05/20 15:22:44.0625 0280 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
2011/05/20 15:22:44.0687 0280 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
2011/05/20 15:22:44.0750 0280 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
2011/05/20 15:22:44.0890 0280 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
2011/05/20 15:22:44.0906 0280 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
2011/05/20 15:22:45.0000 0280 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
2011/05/20 15:22:45.0078 0280 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
2011/05/20 15:22:45.0218 0280 LEX_AS_NIC_SERVICE_YNOS (39ed22ee60eb121e1e0029e5e5e6f8d8) C:\WINDOWS\system32\DRIVERS\ExpasAG.sys
2011/05/20 15:22:45.0406 0280 mdmxsdk (3c318b9cd391371bed62126581ee9961) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
2011/05/20 15:22:45.0515 0280 mfehidk (44184f32392fa2e94d08d056ce750d56) C:\WINDOWS\system32\drivers\mfehidk.sys
2011/05/20 15:22:45.0640 0280 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
2011/05/20 15:22:45.0734 0280 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
2011/05/20 15:22:45.0781 0280 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
2011/05/20 15:22:45.0859 0280 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
2011/05/20 15:22:45.0906 0280 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
2011/05/20 15:22:46.0031 0280 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
2011/05/20 15:22:46.0125 0280 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
2011/05/20 15:22:46.0250 0280 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
2011/05/20 15:22:46.0328 0280 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
2011/05/20 15:22:46.0421 0280 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
2011/05/20 15:22:46.0515 0280 msloop (64e8b7c65eb4796939c0f64f8170821b) C:\WINDOWS\system32\DRIVERS\loop.sys
2011/05/20 15:22:46.0609 0280 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
2011/05/20 15:22:46.0671 0280 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
2011/05/20 15:22:46.0750 0280 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
2011/05/20 15:22:46.0859 0280 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
2011/05/20 15:22:46.0953 0280 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
2011/05/20 15:22:47.0031 0280 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
2011/05/20 15:22:47.0062 0280 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
2011/05/20 15:22:47.0125 0280 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
2011/05/20 15:22:47.0171 0280 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
2011/05/20 15:22:47.0203 0280 Ndisuio (34d6cd56409da9a7ed573e1c90a308bf) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
2011/05/20 15:22:47.0343 0280 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
2011/05/20 15:22:47.0390 0280 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
2011/05/20 15:22:47.0437 0280 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
2011/05/20 15:22:47.0468 0280 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
2011/05/20 15:22:47.0593 0280 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
2011/05/20 15:22:47.0656 0280 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
2011/05/20 15:22:47.0765 0280 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
2011/05/20 15:22:47.0812 0280 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
2011/05/20 15:22:47.0875 0280 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
2011/05/20 15:22:47.0968 0280 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
2011/05/20 15:22:48.0046 0280 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
2011/05/20 15:22:48.0156 0280 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\drivers\Parport.sys
2011/05/20 15:22:48.0203 0280 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
2011/05/20 15:22:48.0265 0280 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
2011/05/20 15:22:48.0312 0280 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
2011/05/20 15:22:48.0359 0280 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
2011/05/20 15:22:48.0437 0280 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\DRIVERS\pcmcia.sys
2011/05/20 15:22:48.0718 0280 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
2011/05/20 15:22:48.0750 0280 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
2011/05/20 15:22:48.0812 0280 PSI (d24dfd16a1e2a76034df5aa18125c35d) C:\WINDOWS\system32\DRIVERS\psi_mf.sys
2011/05/20 15:22:48.0859 0280 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
2011/05/20 15:22:48.0906 0280 PxHelp20 (40f2031bd9148d3194353ea7dec97a07) C:\WINDOWS\system32\Drivers\PxHelp20.sys
2011/05/20 15:22:49.0125 0280 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
2011/05/20 15:22:49.0203 0280 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
2011/05/20 15:22:49.0234 0280 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
2011/05/20 15:22:49.0265 0280 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
2011/05/20 15:22:49.0343 0280 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
2011/05/20 15:22:49.0437 0280 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
2011/05/20 15:22:49.0500 0280 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
2011/05/20 15:22:49.0593 0280 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
2011/05/20 15:22:49.0687 0280 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
2011/05/20 15:22:49.0765 0280 RTL8023xp (7f0413bdd7d53eb4c7a371e7f6f84df1) C:\WINDOWS\system32\DRIVERS\Rtlnicxp.sys
2011/05/20 15:22:49.0859 0280 rtl8139 (d507c1400284176573224903819ffda3) C:\WINDOWS\system32\DRIVERS\RTL8139.SYS
2011/05/20 15:22:50.0046 0280 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
2011/05/20 15:22:50.0062 0280 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
2011/05/20 15:22:50.0140 0280 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
2011/05/20 15:22:50.0250 0280 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
2011/05/20 15:22:50.0296 0280 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
2011/05/20 15:22:50.0406 0280 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
2011/05/20 15:22:50.0500 0280 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
2011/05/20 15:22:50.0609 0280 smrt (27d6be8e961ab9df26ec5ce823b68b7f) C:\WINDOWS\system32\DRIVERS\smrt.sys
2011/05/20 15:22:50.0750 0280 SNC (1a992c8136c015453e82041c35b299da) C:\WINDOWS\system32\DRIVERS\SonyNC.sys
2011/05/20 15:22:50.0875 0280 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
2011/05/20 15:22:50.0968 0280 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
2011/05/20 15:22:51.0078 0280 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
2011/05/20 15:22:51.0250 0280 STHDA (ac2234b6590aad91b1a91b81b9ebd2ed) C:\WINDOWS\system32\drivers\sthda.sys
2011/05/20 15:22:51.0359 0280 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
2011/05/20 15:22:51.0437 0280 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
2011/05/20 15:22:51.0515 0280 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
2011/05/20 15:22:51.0625 0280 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
2011/05/20 15:22:51.0828 0280 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
2011/05/20 15:22:51.0921 0280 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
2011/05/20 15:22:52.0156 0280 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
2011/05/20 15:22:52.0234 0280 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
2011/05/20 15:22:52.0343 0280 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
2011/05/20 15:22:52.0437 0280 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
2011/05/20 15:22:52.0578 0280 Update (ced744117e91bdc0beb810f7d8608183) C:\WINDOWS\system32\DRIVERS\update.sys
2011/05/20 15:22:52.0687 0280 USBAAPL (5c2bdc152bbab34f36473deaf7713f22) C:\WINDOWS\system32\Drivers\usbaapl.sys
2011/05/20 15:22:52.0796 0280 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
2011/05/20 15:22:52.0875 0280 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
2011/05/20 15:22:52.0906 0280 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
2011/05/20 15:22:52.0937 0280 usbohci (bdfe799a8531bad8a5a985821fe78760) C:\WINDOWS\system32\DRIVERS\usbohci.sys
2011/05/20 15:22:53.0062 0280 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
2011/05/20 15:22:53.0109 0280 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
2011/05/20 15:22:53.0187 0280 usbstor (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
2011/05/20 15:22:53.0296 0280 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
2011/05/20 15:22:53.0375 0280 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
2011/05/20 15:22:53.0421 0280 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
2011/05/20 15:22:53.0546 0280 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
2011/05/20 15:22:53.0718 0280 winachsf (ab7646d4cb9bb83d29d21ef7e00a0d15) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
2011/05/20 15:22:53.0859 0280 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
2011/05/20 15:22:54.0093 0280 ================================================================================
2011/05/20 15:22:54.0093 0280 Scan finished
2011/05/20 15:22:54.0093 0280 ================================================================================

#8 OC Dee

OC Dee
  • Topic Starter

  • Members
  • 7 posts
  • OFFLINE
  •  
  • Local time:07:26 PM

Posted 20 May 2011 - 08:21 PM

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 05/20/2011 at 04:11 PM

Application Version : 4.52.1000

Core Rules Database Version : 7102
Trace Rules Database Version: 4914

Scan type : Complete Scan
Total Scan Time : 00:47:02

Memory items scanned : 524
Memory threats detected : 0
Registry items scanned : 7843
Registry threats detected : 0
File items scanned : 23984
File threats detected : 49

Adware.Tracking Cookie
C:\Documents and Settings\Owner\Cookies\owner@content.yieldmanager[2].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.wsod[2].txt
C:\Documents and Settings\Owner\Cookies\owner@content.yieldmanager[3].txt
C:\Documents and Settings\Owner\Cookies\owner@kaspersky.122.2o7[1].txt
C:\Documents and Settings\Owner\Cookies\owner@ad.yieldmanager[1].txt

Trojan.Agent/Gen-Nullo[Short]
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP12\A0004987.DLL

Trojan.Agent/Gen-Faldesc
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004630.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004631.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004632.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004633.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004634.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004635.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004636.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004637.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004638.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004639.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004640.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004641.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004642.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004643.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004644.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004645.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004646.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004647.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004648.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004649.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004650.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004651.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004652.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004653.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004654.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004655.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004656.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004657.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004658.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004659.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004660.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004661.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004662.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004663.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004664.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004665.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004666.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004667.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004668.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004669.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004670.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004671.EXE
C:\SYSTEM VOLUME INFORMATION\_RESTORE{46696693-40F9-4B05-A64C-21D740378D26}\RP3\A0004672.EXE




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users