Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Malicious Web Site Blocked page pop up : Widdit site?


  • Please log in to reply
4 replies to this topic

#1 Kandy-Sugar

Kandy-Sugar

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:06:04 PM

Posted 22 November 2011 - 07:56 AM

Hi all

I've just registered here in the hopes that someone can help me with my problem.

I've exhausted every option I can think of to try and fix this problem but I'm still having issues.

I am currently using FireFox 8.0 and I am using Norton 360 Version 5.0. My operating system is Windows Vista Home Premium.

I keep getting a Malicious Web Site Blocked page pop up just about every time I click on anything.

Then Norton takes me to this page when I click on detailed report:

Page


but doesn't explain to me what I can do to resolve this problem. It's very annoying. I can't do anything without this popping up. I've run computer scans etc etc but nothing gets rid of whatever the hell this is. I don't even know what Widdit is or how it's affecting me? I've never been anywhere called Widdit?

First I ran just a full computer scan to see if it picked up anything, but nothing came up bar a few tracking cookies.
So then I went to the Norton Community forums for more help and they've suggested downloading a Anti-Malware program, but that picked up nothing on any scans.
I then ran Nortons Power Eraser as suggested as well but that picked up nothing either.

I'm still getting this Malicious Web Site Blocked page pop up a lot, just when I'm browsing through sites I normally go to.

I don't know what's going on at all. I've tried everything I can think of and any help would be much appreciated!

Thank you!

Edited by Kandy-Sugar, 22 November 2011 - 08:07 AM.


Wonder if a whistle would work here.
Maybe in this world, he might really come running.


The most Sexiest set ever! Made by Micci[/color]


BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:04 AM

Posted 22 November 2011 - 05:04 PM

Hello, let's see if these will show us somethings.

Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
Be sure to download TDSSKiller.exe (2.6.11.0) from Kaspersky's website and not TDSSKiller.zip which appears to be an older version 2.3.2.2 of the tool.
  • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
    Vista/Windows 7 users right-click and select Run As Administrator.
  • If TDSSKiller does not run, try renaming it.
  • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
  • Click the Start Scan button.
  • Do not use the computer during the scan
  • If the scan completes with nothing found, click Close to exit.
  • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
  • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
  • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C:).
  • Copy and paste the contents of that file in your next reply.


If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.



Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware and save it to your desktop.
Download Link 1
Download Link 2MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.
  • Make sure you are connected to the Internet.
  • Double-click on mbam-setup.exe to install the application.
    For instructions with screenshots, please refer to the How to use Malwarebytes' Anti-Malware Guide.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • When installation has finished, make sure you leave both of these checked:
    • Update Malwarebytes' Anti-Malware
    • Launch Malwarebytes' Anti-Malware
  • Then click Finish.
MBAM will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
  • If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.
On the Scanner tab:
  • Make sure the "Perform Quick Scan" option is selected.
  • Then click on the Scan button.
  • If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
  • The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
  • When the scan is finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box and continue with the removal process.
Back at the main Scanner screen:
  • Click on the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked, and click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM's database version and your operating system.
  • Exit MBAM when done.
[color=green]Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.


Troubleshoot Malwarebytes' Anti-Malware
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Kandy-Sugar

Kandy-Sugar
  • Topic Starter

  • Members
  • 2 posts
  • OFFLINE
  •  
  • Gender:Female
  • Local time:06:04 PM

Posted 23 November 2011 - 03:21 AM

Hi there boopme and thank you for your help

I have run both scans you've suggested and they pick up nothing. I don't understand what is happening. My computer doesn't seem to be infected as I've run Norton, TDSS and MalwareBytes and they've not picked up anything malicious.

And yet, whenever I use Firefox my sites keep getting blocked with the Norton page I linked above, which always says: Malicious Web Site Blocked and then it takes me to a detailed report of the site that my internet keeps trying to redirect me too. It keeps saying that I'm trying to access Widdit.com somehow and then that's when the Norton page comes up to say that the site is malicious and blocks me from accessing it, even though I don't even want to go to that site. I'm just browsing ninemsn, facebook or regular forums I visit and whenever I click on a link within those sites I get redirected to widdit.com and then before I get there Norton blocks the site. It's very strange and annoying.

The strange thing is, my partner uses Internet Explorer when he goes on the internet and he says that he has had none of these Malicious Web Site Blocked messages pop up from Norton when he's browsing through the internet. I don't know if this problem might be something to do with my firefox addons or toolbars? Is that possible?

Here is the log from TDSSKiller:

18:08:19.0491 7156 TDSS rootkit removing tool 2.6.20.0 Nov 22 2011 12:05:55
18:08:20.0547 7156 ============================================================
18:08:20.0547 7156 Current date / time: 2011/11/23 18:08:20.0547
18:08:20.0547 7156 SystemInfo:
18:08:20.0547 7156
18:08:20.0547 7156 OS Version: 6.0.6002 ServicePack: 2.0
18:08:20.0547 7156 Product type: Workstation
18:08:20.0548 7156 ComputerName: RTS-PC
18:08:20.0548 7156 UserName: RT's
18:08:20.0548 7156 Windows directory: C:\Windows
18:08:20.0548 7156 System windows directory: C:\Windows
18:08:20.0548 7156 Processor architecture: Intel x86
18:08:20.0548 7156 Number of processors: 4
18:08:20.0548 7156 Page size: 0x1000
18:08:20.0548 7156 Boot type: Normal boot
18:08:20.0548 7156 ============================================================
18:08:21.0550 7156 Initialize success
18:08:28.0875 6636 ============================================================
18:08:28.0875 6636 Scan started
18:08:28.0875 6636 Mode: Manual;
18:08:28.0875 6636 ============================================================
18:08:29.0675 6636 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
18:08:29.0679 6636 ACPI - ok
18:08:29.0758 6636 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
18:08:29.0764 6636 adp94xx - ok
18:08:29.0816 6636 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
18:08:29.0821 6636 adpahci - ok
18:08:29.0872 6636 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
18:08:29.0874 6636 adpu160m - ok
18:08:29.0928 6636 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
18:08:29.0931 6636 adpu320 - ok
18:08:30.0015 6636 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
18:08:30.0019 6636 AFD - ok
18:08:30.0085 6636 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
18:08:30.0103 6636 agp440 - ok
18:08:30.0142 6636 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
18:08:30.0144 6636 aic78xx - ok
18:08:30.0183 6636 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
18:08:30.0185 6636 aliide - ok
18:08:30.0228 6636 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
18:08:30.0230 6636 amdagp - ok
18:08:30.0269 6636 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
18:08:30.0289 6636 amdide - ok
18:08:30.0361 6636 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
18:08:30.0363 6636 AmdK7 - ok
18:08:30.0398 6636 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
18:08:30.0413 6636 AmdK8 - ok
18:08:30.0463 6636 appliand (69370f2e2827ffba910d0bfa9e62e484) C:\Windows\system32\DRIVERS\appliand.sys
18:08:30.0465 6636 appliand - ok
18:08:30.0469 6636 appliandMP (69370f2e2827ffba910d0bfa9e62e484) C:\Windows\system32\DRIVERS\appliand.sys
18:08:30.0469 6636 appliandMP - ok
18:08:30.0512 6636 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
18:08:30.0514 6636 arc - ok
18:08:30.0548 6636 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
18:08:30.0571 6636 arcsas - ok
18:08:30.0605 6636 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
18:08:30.0607 6636 AsyncMac - ok
18:08:30.0635 6636 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
18:08:30.0637 6636 atapi - ok
18:08:30.0846 6636 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
18:08:30.0847 6636 Beep - ok
18:08:30.0989 6636 BHDrvx86 (9d14d76e4e7b9b2ead17149011db2b11) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20111114.002\BHDrvx86.sys
18:08:31.0001 6636 BHDrvx86 - ok
18:08:31.0107 6636 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
18:08:31.0109 6636 blbdrive - ok
18:08:31.0186 6636 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
18:08:31.0188 6636 bowser - ok
18:08:31.0239 6636 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
18:08:31.0241 6636 BrFiltLo - ok
18:08:31.0318 6636 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
18:08:31.0320 6636 BrFiltUp - ok
18:08:31.0357 6636 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
18:08:31.0359 6636 Brserid - ok
18:08:31.0397 6636 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
18:08:31.0399 6636 BrSerWdm - ok
18:08:31.0461 6636 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
18:08:31.0462 6636 BrUsbMdm - ok
18:08:31.0470 6636 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
18:08:31.0473 6636 BrUsbSer - ok
18:08:31.0513 6636 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
18:08:31.0515 6636 BTHMODEM - ok
18:08:31.0568 6636 BVRPMPR5 (248dfa5762dde38dfddbbd44149e9d7a) C:\Windows\system32\drivers\BVRPMPR5.SYS
18:08:31.0569 6636 BVRPMPR5 - ok
18:08:31.0611 6636 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
18:08:31.0613 6636 cdfs - ok
18:08:31.0662 6636 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
18:08:31.0666 6636 cdrom - ok
18:08:31.0688 6636 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
18:08:31.0689 6636 circlass - ok
18:08:31.0723 6636 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
18:08:31.0727 6636 CLFS - ok
18:08:31.0817 6636 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
18:08:31.0819 6636 cmdide - ok
18:08:31.0865 6636 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\drivers\compbatt.sys
18:08:31.0883 6636 Compbatt - ok
18:08:31.0896 6636 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
18:08:31.0898 6636 crcdisk - ok
18:08:31.0933 6636 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
18:08:31.0934 6636 Crusoe - ok
18:08:32.0063 6636 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
18:08:32.0065 6636 DfsC - ok
18:08:32.0161 6636 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
18:08:32.0163 6636 disk - ok
18:08:32.0230 6636 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
18:08:32.0231 6636 drmkaud - ok
18:08:32.0318 6636 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
18:08:32.0327 6636 DXGKrnl - ok
18:08:32.0433 6636 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
18:08:32.0435 6636 E1G60 - ok
18:08:32.0486 6636 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
18:08:32.0489 6636 Ecache - ok
18:08:32.0610 6636 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
18:08:32.0624 6636 eeCtrl - ok
18:08:32.0785 6636 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
18:08:32.0800 6636 elxstor - ok
18:08:32.0941 6636 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:08:32.0949 6636 EraserUtilRebootDrv - ok
18:08:33.0029 6636 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
18:08:33.0032 6636 ErrDev - ok
18:08:33.0154 6636 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
18:08:33.0157 6636 exfat - ok
18:08:33.0296 6636 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
18:08:33.0299 6636 fastfat - ok
18:08:33.0514 6636 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
18:08:33.0559 6636 fdc - ok
18:08:33.0768 6636 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
18:08:33.0770 6636 FileInfo - ok
18:08:33.0939 6636 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
18:08:33.0941 6636 Filetrace - ok
18:08:34.0065 6636 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
18:08:34.0067 6636 flpydisk - ok
18:08:34.0131 6636 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
18:08:34.0134 6636 FltMgr - ok
18:08:34.0220 6636 fssfltr (b74b0578fd1d3f897e95f2a2b69ea051) C:\Windows\system32\DRIVERS\fssfltr.sys
18:08:34.0222 6636 fssfltr - ok
18:08:34.0315 6636 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
18:08:34.0317 6636 Fs_Rec - ok
18:08:34.0355 6636 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
18:08:34.0390 6636 gagp30kx - ok
18:08:34.0436 6636 GEARAspiWDM (5ae3a887ece5bbb72cfab273c2fd1cfa) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:08:34.0438 6636 GEARAspiWDM - ok
18:08:34.0527 6636 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
18:08:34.0531 6636 HdAudAddService - ok
18:08:34.0577 6636 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:08:34.0600 6636 HDAudBus - ok
18:08:34.0635 6636 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
18:08:34.0637 6636 HidBth - ok
18:08:34.0666 6636 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
18:08:34.0670 6636 HidIr - ok
18:08:34.0751 6636 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
18:08:34.0768 6636 HidUsb - ok
18:08:34.0810 6636 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
18:08:34.0812 6636 HpCISSs - ok
18:08:34.0849 6636 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
18:08:34.0855 6636 HTTP - ok
18:08:34.0911 6636 hwdatacard - ok
18:08:34.0973 6636 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
18:08:34.0974 6636 i2omp - ok
18:08:35.0018 6636 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
18:08:35.0020 6636 i8042prt - ok
18:08:35.0039 6636 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
18:08:35.0043 6636 iaStorV - ok
18:08:35.0202 6636 IDSVix86 (9bc8840de4140e8e2a6fc3192e054a8c) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20111122.030\IDSvix86.sys
18:08:35.0207 6636 IDSVix86 - ok
18:08:35.0279 6636 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
18:08:35.0280 6636 iirsp - ok
18:08:35.0433 6636 IntcAzAudAddService (84ed2154239f9d013bbd3220755ada8b) C:\Windows\system32\drivers\RTKVHDA.sys
18:08:35.0477 6636 IntcAzAudAddService - ok
18:08:35.0541 6636 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
18:08:35.0543 6636 intelide - ok
18:08:35.0582 6636 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
18:08:35.0603 6636 intelppm - ok
18:08:35.0632 6636 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:08:35.0634 6636 IpFilterDriver - ok
18:08:35.0644 6636 IpInIp - ok
18:08:35.0663 6636 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
18:08:35.0667 6636 IPMIDRV - ok
18:08:35.0683 6636 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
18:08:35.0686 6636 IPNAT - ok
18:08:35.0753 6636 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
18:08:35.0755 6636 IRENUM - ok
18:08:35.0793 6636 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
18:08:35.0812 6636 isapnp - ok
18:08:35.0888 6636 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
18:08:35.0890 6636 iScsiPrt - ok
18:08:35.0927 6636 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
18:08:35.0946 6636 iteatapi - ok
18:08:35.0971 6636 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
18:08:35.0973 6636 iteraid - ok
18:08:36.0013 6636 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
18:08:36.0015 6636 kbdclass - ok
18:08:36.0062 6636 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
18:08:36.0064 6636 kbdhid - ok
18:08:36.0139 6636 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
18:08:36.0159 6636 KSecDD - ok
18:08:36.0255 6636 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
18:08:36.0257 6636 lltdio - ok
18:08:36.0298 6636 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
18:08:36.0317 6636 LSI_FC - ok
18:08:36.0340 6636 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
18:08:36.0342 6636 LSI_SAS - ok
18:08:36.0361 6636 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
18:08:36.0363 6636 LSI_SCSI - ok
18:08:36.0378 6636 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
18:08:36.0381 6636 luafv - ok
18:08:36.0433 6636 LVUSBSta - ok
18:08:36.0471 6636 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\Windows\system32\drivers\mbam.sys
18:08:36.0474 6636 MBAMProtector - ok
18:08:36.0502 6636 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
18:08:36.0504 6636 megasas - ok
18:08:36.0532 6636 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
18:08:36.0538 6636 MegaSR - ok
18:08:36.0602 6636 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
18:08:36.0604 6636 Modem - ok
18:08:36.0645 6636 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
18:08:36.0662 6636 monitor - ok
18:08:36.0697 6636 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
18:08:36.0699 6636 mouclass - ok
18:08:36.0710 6636 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
18:08:36.0712 6636 mouhid - ok
18:08:36.0729 6636 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
18:08:36.0731 6636 MountMgr - ok
18:08:36.0785 6636 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
18:08:36.0787 6636 mpio - ok
18:08:36.0799 6636 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
18:08:36.0801 6636 mpsdrv - ok
18:08:36.0833 6636 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
18:08:36.0835 6636 Mraid35x - ok
18:08:36.0875 6636 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
18:08:36.0877 6636 MRxDAV - ok
18:08:36.0957 6636 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:08:36.0960 6636 mrxsmb - ok
18:08:37.0031 6636 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:08:37.0036 6636 mrxsmb10 - ok
18:08:37.0067 6636 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:08:37.0070 6636 mrxsmb20 - ok
18:08:37.0092 6636 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
18:08:37.0094 6636 msahci - ok
18:08:37.0137 6636 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
18:08:37.0140 6636 msdsm - ok
18:08:37.0167 6636 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
18:08:37.0169 6636 Msfs - ok
18:08:37.0194 6636 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
18:08:37.0195 6636 msisadrv - ok
18:08:37.0236 6636 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
18:08:37.0237 6636 MSKSSRV - ok
18:08:37.0277 6636 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
18:08:37.0279 6636 MSPCLOCK - ok
18:08:37.0291 6636 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
18:08:37.0293 6636 MSPQM - ok
18:08:37.0322 6636 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
18:08:37.0326 6636 MsRPC - ok
18:08:37.0338 6636 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
18:08:37.0340 6636 mssmbios - ok
18:08:37.0384 6636 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
18:08:37.0385 6636 MSTEE - ok
18:08:37.0426 6636 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
18:08:37.0428 6636 Mup - ok
18:08:37.0457 6636 mwlPSDFilter (2de94e435c3efde58c7b1856d4f20724) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
18:08:37.0482 6636 mwlPSDFilter - ok
18:08:37.0492 6636 mwlPSDNServ (61920a7146eed3d903dbbb8ec295af76) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
18:08:37.0494 6636 mwlPSDNServ - ok
18:08:37.0526 6636 mwlPSDVDisk (e0f49721e68ebd2983e84c44fada6665) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
18:08:37.0528 6636 mwlPSDVDisk - ok
18:08:37.0586 6636 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
18:08:37.0600 6636 NativeWifiP - ok
18:08:37.0706 6636 NAVENG (862f55824ac81295837b0ab63f91071f) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20111122.018\NAVENG.SYS
18:08:37.0709 6636 NAVENG - ok
18:08:37.0814 6636 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\ProgramData\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20111122.018\NAVEX15.SYS
18:08:37.0835 6636 NAVEX15 - ok
18:08:37.0939 6636 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
18:08:37.0946 6636 NDIS - ok
18:08:37.0986 6636 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
18:08:37.0988 6636 NdisTapi - ok
18:08:38.0024 6636 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
18:08:38.0039 6636 Ndisuio - ok
18:08:38.0106 6636 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
18:08:38.0109 6636 NdisWan - ok
18:08:38.0142 6636 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
18:08:38.0144 6636 NDProxy - ok
18:08:38.0185 6636 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
18:08:38.0203 6636 NetBIOS - ok
18:08:38.0241 6636 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
18:08:38.0244 6636 netbt - ok
18:08:38.0282 6636 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
18:08:38.0284 6636 nfrd960 - ok
18:08:38.0403 6636 nmwcd (c82f4cc10ad315b6d6bcb14d0a7cad66) C:\Windows\system32\drivers\ccdcmb.sys
18:08:38.0405 6636 nmwcd - ok
18:08:38.0455 6636 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
18:08:38.0481 6636 Npfs - ok
18:08:38.0512 6636 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
18:08:38.0514 6636 nsiproxy - ok
18:08:38.0606 6636 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
18:08:38.0620 6636 Ntfs - ok
18:08:38.0664 6636 NTIDrvr (2757d2ba59aee155209e24942ab127c9) C:\Windows\system32\DRIVERS\NTIDrvr.sys
18:08:38.0666 6636 NTIDrvr - ok
18:08:38.0754 6636 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
18:08:38.0756 6636 ntrigdigi - ok
18:08:38.0765 6636 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
18:08:38.0767 6636 Null - ok
18:08:38.0819 6636 NVENETFD (d02b697f105de7f7e3e0b115d8bfb8f3) C:\Windows\system32\DRIVERS\nvmfdx32.sys
18:08:38.0824 6636 NVENETFD - ok
18:08:38.0918 6636 NVHDA (a82534d453425f5fee4b6a583fdcf3eb) C:\Windows\system32\drivers\nvhda32v.sys
18:08:38.0920 6636 NVHDA - ok
18:08:39.0223 6636 nvlddmkm (847b1755f7757f825305a1ffe6dac3e9) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:08:39.0409 6636 nvlddmkm - ok
18:08:39.0494 6636 NVNET (d02b697f105de7f7e3e0b115d8bfb8f3) C:\Windows\system32\DRIVERS\nvmfdx32.sys
18:08:39.0496 6636 NVNET - ok
18:08:39.0571 6636 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
18:08:39.0574 6636 nvraid - ok
18:08:39.0612 6636 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
18:08:39.0614 6636 nvstor - ok
18:08:39.0669 6636 nvstor32 (3ff57a9a657c9690ecbc8b1e3b6e3979) C:\Windows\system32\DRIVERS\nvstor32.sys
18:08:39.0671 6636 nvstor32 - ok
18:08:39.0784 6636 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
18:08:39.0786 6636 nv_agp - ok
18:08:39.0795 6636 NwlnkFlt - ok
18:08:39.0807 6636 NwlnkFwd - ok
18:08:39.0853 6636 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
18:08:39.0854 6636 ohci1394 - ok
18:08:39.0894 6636 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
18:08:39.0917 6636 Parport - ok
18:08:39.0983 6636 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
18:08:39.0985 6636 partmgr - ok
18:08:40.0055 6636 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
18:08:40.0057 6636 Parvdm - ok
18:08:40.0106 6636 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
18:08:40.0109 6636 pci - ok
18:08:40.0200 6636 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
18:08:40.0202 6636 pciide - ok
18:08:40.0277 6636 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
18:08:40.0281 6636 pcmcia - ok
18:08:40.0322 6636 PCTBD (3a0262b85b5bb4d4cfc096ea00ed610b) C:\Windows\system32\Drivers\PCTBD.sys
18:08:40.0324 6636 PCTBD - ok
18:08:40.0450 6636 PCTCore (3a1efee38dcc8db0b0ee8bb98edd950d) C:\Windows\system32\drivers\PCTCore.sys
18:08:40.0455 6636 PCTCore - ok
18:08:40.0496 6636 pctDS (af08ec0f2093867ab955e24121ee7002) C:\Windows\system32\drivers\pctDS.sys
18:08:40.0502 6636 pctDS - ok
18:08:40.0540 6636 pctEFA (4b1b0cd45a047c0941f6b6151f6fb3c1) C:\Windows\system32\drivers\pctEFA.sys
18:08:40.0550 6636 pctEFA - ok
18:08:40.0645 6636 PCTSD (6f8c66b756eccff3e75d362a8c66b21e) C:\Windows\system32\Drivers\PCTSD.sys
18:08:40.0649 6636 PCTSD - ok
18:08:40.0755 6636 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
18:08:40.0768 6636 PEAUTH - ok
18:08:40.0841 6636 PID_0928 - ok
18:08:40.0952 6636 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
18:08:40.0972 6636 PptpMiniport - ok
18:08:40.0995 6636 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
18:08:40.0997 6636 Processor - ok
18:08:41.0030 6636 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
18:08:41.0031 6636 PSched - ok
18:08:41.0040 6636 PxHelp20 - ok
18:08:41.0082 6636 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
18:08:41.0096 6636 ql2300 - ok
18:08:41.0182 6636 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
18:08:41.0185 6636 ql40xx - ok
18:08:41.0227 6636 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
18:08:41.0239 6636 QWAVEdrv - ok
18:08:41.0272 6636 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
18:08:41.0273 6636 RasAcd - ok
18:08:41.0287 6636 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:08:41.0290 6636 Rasl2tp - ok
18:08:41.0342 6636 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
18:08:41.0360 6636 RasPppoe - ok
18:08:41.0431 6636 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
18:08:41.0433 6636 RasSstp - ok
18:08:41.0462 6636 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
18:08:41.0466 6636 rdbss - ok
18:08:41.0487 6636 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:08:41.0489 6636 RDPCDD - ok
18:08:41.0511 6636 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
18:08:41.0515 6636 rdpdr - ok
18:08:41.0558 6636 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
18:08:41.0560 6636 RDPENCDD - ok
18:08:41.0632 6636 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
18:08:41.0635 6636 RDPWD - ok
18:08:41.0759 6636 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
18:08:41.0781 6636 rspndr - ok
18:08:41.0878 6636 RTL8187B (d5d2e9f785fda3c1e021fde9f218c7f5) C:\Windows\system32\DRIVERS\wg111v3.sys
18:08:41.0885 6636 RTL8187B - ok
18:08:41.0961 6636 RtlProt (0d60b8c10a2c5e8dd620b3fdeb1cda64) C:\Windows\system32\DRIVERS\rtlprot.sys
18:08:41.0963 6636 RtlProt - ok
18:08:42.0003 6636 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
18:08:42.0005 6636 sbp2port - ok
18:08:42.0088 6636 SCDEmu (16b1abe7f3e35f21dac57592b6c5d464) C:\Windows\system32\drivers\SCDEmu.sys
18:08:42.0090 6636 SCDEmu - ok
18:08:42.0124 6636 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:08:42.0127 6636 secdrv - ok
18:08:42.0163 6636 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
18:08:42.0165 6636 Serenum - ok
18:08:42.0201 6636 Serial (6d663022db3e7058907784ae14b69898) C:\Windows\system32\DRIVERS\serial.sys
18:08:42.0203 6636 Serial - ok
18:08:42.0238 6636 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
18:08:42.0252 6636 sermouse - ok
18:08:42.0292 6636 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
18:08:42.0294 6636 sffdisk - ok
18:08:42.0335 6636 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
18:08:42.0337 6636 sffp_mmc - ok
18:08:42.0375 6636 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
18:08:42.0377 6636 sffp_sd - ok
18:08:42.0420 6636 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
18:08:42.0422 6636 sfloppy - ok
18:08:42.0467 6636 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
18:08:42.0483 6636 sisagp - ok
18:08:42.0505 6636 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
18:08:42.0507 6636 SiSRaid2 - ok
18:08:42.0547 6636 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
18:08:42.0549 6636 SiSRaid4 - ok
18:08:42.0644 6636 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
18:08:42.0647 6636 Smb - ok
18:08:42.0692 6636 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
18:08:42.0694 6636 spldr - ok
18:08:42.0820 6636 SRTSP (83726cf02eced69138948083e06b6eac) C:\Windows\System32\Drivers\N360\0501000.01D\SRTSP.SYS
18:08:42.0829 6636 SRTSP - ok
18:08:42.0965 6636 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) C:\Windows\system32\drivers\N360\0501000.01D\SRTSPX.SYS
18:08:42.0986 6636 SRTSPX - ok
18:08:43.0062 6636 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
18:08:43.0067 6636 srv - ok
18:08:43.0138 6636 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
18:08:43.0141 6636 srv2 - ok
18:08:43.0253 6636 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
18:08:43.0256 6636 srvnet - ok
18:08:43.0348 6636 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
18:08:43.0360 6636 swenum - ok
18:08:43.0382 6636 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
18:08:43.0384 6636 Symc8xx - ok
18:08:43.0474 6636 SymDS (9bbeb8c6258e72d62e7560e6667aad39) C:\Windows\system32\drivers\N360\0501000.01D\SYMDS.SYS
18:08:43.0480 6636 SymDS - ok
18:08:43.0547 6636 SymEFA (d5c02629c02a820a7e71bca3d44294a3) C:\Windows\system32\drivers\N360\0501000.01D\SYMEFA.SYS
18:08:43.0559 6636 SymEFA - ok
18:08:43.0611 6636 SymEvent (ab33c3b196197ca467cbdda717860dba) C:\Windows\system32\Drivers\SYMEVENT.SYS
18:08:43.0613 6636 SymEvent - ok
18:08:43.0726 6636 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\Windows\system32\drivers\N360\0501000.01D\Ironx86.SYS
18:08:43.0729 6636 SymIRON - ok
18:08:43.0756 6636 SYMTDIv (5136f99a60ddbdeb1f6fd1eefc44407f) C:\Windows\system32\drivers\N360\0501000.01D\SYMTDIV.SYS
18:08:43.0762 6636 SYMTDIv - ok
18:08:43.0784 6636 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
18:08:43.0786 6636 Sym_hi - ok
18:08:43.0809 6636 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
18:08:43.0811 6636 Sym_u3 - ok
18:08:43.0941 6636 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
18:08:43.0965 6636 Tcpip - ok
18:08:43.0984 6636 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
18:08:43.0991 6636 Tcpip6 - ok
18:08:44.0029 6636 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
18:08:44.0031 6636 tcpipreg - ok
18:08:44.0065 6636 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
18:08:44.0086 6636 TDPIPE - ok
18:08:44.0129 6636 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
18:08:44.0131 6636 TDTCP - ok
18:08:44.0175 6636 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
18:08:44.0177 6636 tdx - ok
18:08:44.0227 6636 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
18:08:44.0243 6636 TermDD - ok
18:08:44.0301 6636 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:08:44.0303 6636 tssecsrv - ok
18:08:44.0338 6636 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
18:08:44.0339 6636 tunmp - ok
18:08:44.0371 6636 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
18:08:44.0395 6636 tunnel - ok
18:08:44.0429 6636 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
18:08:44.0431 6636 uagp35 - ok
18:08:44.0453 6636 UBHelper (f763e070843ee2803de1395002b42938) C:\Windows\system32\drivers\UBHelper.sys
18:08:44.0454 6636 UBHelper - ok
18:08:44.0514 6636 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
18:08:44.0519 6636 udfs - ok
18:08:44.0585 6636 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
18:08:44.0587 6636 uliagpkx - ok
18:08:44.0656 6636 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
18:08:44.0660 6636 uliahci - ok
18:08:44.0773 6636 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
18:08:44.0776 6636 UlSata - ok
18:08:44.0807 6636 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
18:08:44.0810 6636 ulsata2 - ok
18:08:44.0840 6636 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
18:08:44.0842 6636 umbus - ok
18:08:44.0865 6636 upperdev (bb16932a4189e82d6c455042c11849b6) C:\Windows\system32\DRIVERS\usbser_lowerflt.sys
18:08:44.0867 6636 upperdev - ok
18:08:44.0964 6636 usbbus (9419faac6552a51542dbba02971c841c) C:\Windows\system32\DRIVERS\lgusbbus.sys
18:08:44.0965 6636 usbbus - ok
18:08:45.0005 6636 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
18:08:45.0007 6636 usbccgp - ok
18:08:45.0041 6636 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
18:08:45.0055 6636 usbcir - ok
18:08:45.0123 6636 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\Windows\system32\DRIVERS\lgusbdiag.sys
18:08:45.0125 6636 UsbDiag - ok
18:08:45.0174 6636 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
18:08:45.0176 6636 usbehci - ok
18:08:45.0232 6636 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
18:08:45.0236 6636 usbhub - ok
18:08:45.0275 6636 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\Windows\system32\DRIVERS\lgusbmodem.sys
18:08:45.0277 6636 USBModem - ok
18:08:45.0339 6636 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
18:08:45.0341 6636 usbohci - ok
18:08:45.0382 6636 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
18:08:45.0385 6636 usbprint - ok
18:08:45.0434 6636 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
18:08:45.0436 6636 usbscan - ok
18:08:45.0485 6636 usbser (d575246188f63de0accf6eac5fb59e6a) C:\Windows\system32\DRIVERS\usbser.sys
18:08:45.0501 6636 usbser - ok
18:08:45.0570 6636 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:08:45.0571 6636 USBSTOR - ok
18:08:45.0624 6636 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
18:08:45.0638 6636 usbuhci - ok
18:08:45.0654 6636 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
18:08:45.0657 6636 vga - ok
18:08:45.0686 6636 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
18:08:45.0688 6636 VgaSave - ok
18:08:45.0720 6636 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
18:08:45.0722 6636 viaagp - ok
18:08:45.0763 6636 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
18:08:45.0782 6636 ViaC7 - ok
18:08:45.0828 6636 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
18:08:45.0830 6636 viaide - ok
18:08:45.0844 6636 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
18:08:45.0846 6636 volmgr - ok
18:08:45.0876 6636 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
18:08:45.0881 6636 volmgrx - ok
18:08:45.0907 6636 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
18:08:45.0911 6636 volsnap - ok
18:08:46.0064 6636 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
18:08:46.0067 6636 vsmraid - ok
18:08:46.0096 6636 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
18:08:46.0098 6636 WacomPen - ok
18:08:46.0116 6636 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:08:46.0118 6636 Wanarp - ok
18:08:46.0126 6636 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:08:46.0127 6636 Wanarpv6 - ok
18:08:46.0211 6636 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
18:08:46.0213 6636 Wd - ok
18:08:46.0284 6636 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
18:08:46.0291 6636 Wdf01000 - ok
18:08:46.0361 6636 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
18:08:46.0363 6636 WmiAcpi - ok
18:08:46.0431 6636 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
18:08:46.0433 6636 WpdUsb - ok
18:08:46.0469 6636 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
18:08:46.0471 6636 ws2ifsl - ok
18:08:46.0531 6636 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:08:46.0533 6636 WUDFRd - ok
18:08:46.0583 6636 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
18:08:46.0596 6636 \Device\Harddisk0\DR0 - ok
18:08:46.0600 6636 Boot (0x1200) (066974483ff54369dbdf044a548c323e) \Device\Harddisk0\DR0\Partition0
18:08:46.0601 6636 \Device\Harddisk0\DR0\Partition0 - ok
18:08:46.0626 6636 Boot (0x1200) (b81b3a3b294c370f51e663f42ded58b3) \Device\Harddisk0\DR0\Partition1
18:08:46.0638 6636 \Device\Harddisk0\DR0\Partition1 - ok
18:08:46.0639 6636 ============================================================
18:08:46.0639 6636 Scan finished
18:08:46.0639 6636 ============================================================
18:08:46.0652 0376 Detected object count: 0
18:08:46.0652 0376 Actual detected object count: 0
18:09:02.0325 6584 Deinitialize success


Here is the log from MalwareBytes:


Malwarebytes' Anti-Malware 1.51.2.1300
www.malwarebytes.org

Database version: 8213

Windows 6.0.6002 Service Pack 2
Internet Explorer 9.0.8112.16421

23/11/2011 6:14:46 PM
mbam-log-2011-11-23 (18-14-46).txt

Scan type: Quick scan
Objects scanned: 201233
Time elapsed: 5 minute(s), 8 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)


MOD EDIT: Signature image removed.. Too large
Forum rules

Edited by boopme, 12 June 2012 - 08:40 PM.


Wonder if a whistle would work here.
Maybe in this world, he might really come running.


The most Sexiest set ever! Made by Micci[/color]


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,428 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:04 AM

Posted 23 November 2011 - 10:13 AM

Ok, lets try to remove widdit.

Widdit
Widdit provides Browser and Application add ons ("Add Ons") that enables users to receive website information and search and browsing enhancement, such as search autocomplete. Add Ons may be syndicated by a Publisher that has contractually committed to: (1) abide by Widdit 's Terms of Service including strict privacy and safety policies and (2) to protect your rights as a user of the Software.

Uninstall - You may uninstall the Software at any time and with no limitations, using the standard uninstall procedures as offered with your computer's Operating System or your Internet Browser. For example:

To uninstall an Add Ons from your Internet Explorer do as follows: Open your computer's Control Panel then select "Add or Remove Programs", Find " Add Ons" in the list of installed applications and click on it, Click on the "Change/Remove" button.

To uninstall an Add Ons from your Firefox browser do as follows: Open Firefox and click on the "Tools" menu, Select "Extensions", Find " Add On" in the list of installed extensions and click on it, Click on the "Uninstall" button.

To uninstall an Add Ons from your Chrome browser do as follows: Open the Customize and control menu and browse to Extensions, in the Extensions menu folder scroll down to Applications, find " Add On" and click on "uninstall".

For other examples please refer to the standard uninstall procedures offered with your computer's Operating System or your Internet Browser.

Should you require technical support please review our FAQ located at http://www.Widdit.com/help/faq.aspx or contact Customer Support by email at support@Widdit.com.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 Barns

Barns

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:08:04 AM

Posted 12 June 2012 - 07:56 AM

Hi,

Widdit is an easy-to-use browser tool that also has an autosuggestion feature that makes searching that much easier for me. I know from using it myself that it's not a virus and won't harm your computer. The site is also always updating its info to keep up with the fast growing Internet world, so if anyone sees something on the site that says "Loading...Widdit.com", that's what that is.
If the program isn't as effective for you as it is for me, I did a quick search and found a way to remove it. There's a link on the site that's pretty easy to follow and will remove the program without problems. Here's the link: http://www.widdit.com/howtoremovewiddit

Hope that helps....




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users