Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Web/network issues, random audio ads...


  • This topic is locked This topic is locked
7 replies to this topic

#1 Cratti

Cratti

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 20 January 2012 - 03:15 PM

Hey all, I've been struggling with this for a few days and finally decided to give up and ask for some help.
I've got a desktop running Win7 as well as the wife's laptop. Browser of choice is Firefox though I've had issues with IE, too.
It seems lately my desktop has had an issue with playing random audio clips, sometimes music, but mostly ads. Nothing pops up and the Processes tab in Taskmgr doesn't show anything different. There's no rhyme or reason to the audio content playing. It's definitely streaming media; when I'm doing a lot on the web it's very choppy. It seems to be more frequent when I'm trying to listen to music with WMP. Or maybe it just seems that way because that's when it's the most frustrating... Iunno. Anywho.
On top of that, my web connection has gone from "decent" to "I want to shoot my computer," with pages taking forever to load, and many, many "problem loading page" errors and partially loaded pages. My wife's having the same issue on her laptop, and even my PS3 and smartphone are affected by the poor connectivity The laptop running Win7 and Droid Pro both on WiFi, PS3 and desktop are connected by ethernet cable. Never thought I'd see the day when WiFi was one-upped by 3G!
It may or may not be related but trying to stream media over DLNA/Media Server over either the phone or PS3 is no longer working, either. I've reverted back to primitive USB connections to transfer stuff. :P I can browse the media on the PS3 (phone won't see anything) but if I try to open something, the media server stops running outright.
In terms of any unusual activity on my end, the only thing I can think of is that I had a fit of boredom and poor judgement and fired up Steam last weekend and played a bit of Counter-Strike.
I've got ESET Smart Security, and have run numerous scans with that (no firewall related notifications, mind you) to no avail. Same with Spybot, Malwarebytes, and presently I'm giving McAfee Stinger a go. Aside from that I've run Crap Cleaner once again (it's scheduled to run weekly) for good measure, but as anticipated, nothing came of that.
All these issues may or may not be related, but they all definitely showed up at once. If there's any other info you need, by all means ask. I might be a bit slow on the response due to the craptastic connection and working on another project here...
Edit: Also, Firefox frequently crashes upon opening and usually takes several attempts to get open. Again, may or may not be related, just adding to the heap of troubles!

Edited by Cratti, 20 January 2012 - 03:22 PM.


BC AdBot (Login to Remove)

 


#2 Cratti

Cratti
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 20 January 2012 - 09:18 PM

Okay, Stinger found nothing, yet the frequency of the failed connections to sites seems to have diminished, but the ads are still there.
The last one was Martha Stewart.
This is sick and wrong...

#3 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:43 PM

Posted 20 January 2012 - 09:33 PM

Do you meam Martha ?? LOL


Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.


Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, [color="#8B0000"]Post new scan log
and Reboot into normal mode.

Please ask any needed questions,post logs and Let us know how the PC is running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#4 Cratti

Cratti
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 20 January 2012 - 09:39 PM

No reboot needed...
20:36:26.0228 18564 TDSS rootkit removing tool 2.7.6.0 Jan 19 2012 13:09:04
20:36:28.0229 18564 ============================================================
20:36:28.0230 18564 Current date / time: 2012/01/20 20:36:28.0229
20:36:28.0230 18564 SystemInfo:
20:36:28.0230 18564
20:36:28.0230 18564 OS Version: 6.1.7601 ServicePack: 1.0
20:36:28.0230 18564 Product type: Workstation
20:36:28.0230 18564 ComputerName: DESKTOP
20:36:28.0230 18564 UserName: Chris
20:36:28.0230 18564 Windows directory: C:\Windows
20:36:28.0230 18564 System windows directory: C:\Windows
20:36:28.0230 18564 Running under WOW64
20:36:28.0230 18564 Processor architecture: Intel x64
20:36:28.0230 18564 Number of processors: 4
20:36:28.0230 18564 Page size: 0x1000
20:36:28.0230 18564 Boot type: Normal boot
20:36:28.0230 18564 ============================================================
20:36:29.0580 18564 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
20:36:29.0716 18564 Initialize success
20:36:39.0691 11692 ============================================================
20:36:39.0691 11692 Scan started
20:36:39.0691 11692 Mode: Manual;
20:36:39.0691 11692 ============================================================
20:36:43.0637 11692 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
20:36:43.0683 11692 1394ohci - ok
20:36:43.0743 11692 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
20:36:43.0772 11692 ACPI - ok
20:36:43.0802 11692 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
20:36:43.0842 11692 AcpiPmi - ok
20:36:43.0888 11692 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
20:36:43.0932 11692 adp94xx - ok
20:36:43.0975 11692 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
20:36:44.0036 11692 adpahci - ok
20:36:44.0058 11692 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
20:36:44.0076 11692 adpu320 - ok
20:36:44.0135 11692 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
20:36:44.0145 11692 AFD - ok
20:36:44.0166 11692 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
20:36:44.0201 11692 agp440 - ok
20:36:44.0229 11692 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
20:36:44.0252 11692 aliide - ok
20:36:44.0291 11692 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
20:36:44.0318 11692 amdide - ok
20:36:44.0345 11692 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
20:36:44.0371 11692 AmdK8 - ok
20:36:44.0394 11692 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
20:36:44.0415 11692 AmdPPM - ok
20:36:44.0448 11692 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
20:36:44.0487 11692 amdsata - ok
20:36:44.0528 11692 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
20:36:44.0559 11692 amdsbs - ok
20:36:44.0586 11692 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
20:36:44.0628 11692 amdxata - ok
20:36:44.0675 11692 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
20:36:44.0677 11692 AppID - ok
20:36:44.0742 11692 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
20:36:45.0503 11692 arc - ok
20:36:45.0543 11692 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
20:36:45.0563 11692 arcsas - ok
20:36:45.0582 11692 AsIO - ok
20:36:45.0614 11692 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
20:36:45.0617 11692 AsyncMac - ok
20:36:45.0636 11692 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
20:36:45.0636 11692 atapi - ok
20:36:45.0686 11692 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
20:36:45.0703 11692 b06bdrv - ok
20:36:45.0745 11692 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
20:36:45.0783 11692 b57nd60a - ok
20:36:45.0821 11692 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
20:36:45.0823 11692 Beep - ok
20:36:45.0852 11692 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
20:36:45.0883 11692 blbdrive - ok
20:36:45.0931 11692 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
20:36:45.0948 11692 bowser - ok
20:36:46.0000 11692 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
20:36:46.0003 11692 BrFiltLo - ok
20:36:46.0029 11692 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
20:36:46.0044 11692 BrFiltUp - ok
20:36:46.0074 11692 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
20:36:46.0097 11692 Brserid - ok
20:36:46.0116 11692 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
20:36:46.0143 11692 BrSerWdm - ok
20:36:46.0164 11692 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
20:36:46.0181 11692 BrUsbMdm - ok
20:36:46.0194 11692 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
20:36:46.0203 11692 BrUsbSer - ok
20:36:46.0244 11692 BTCFilterService (ff7c57973eead140062238c5a0b7d455) C:\Windows\system32\DRIVERS\motfilt.sys
20:36:46.0251 11692 BTCFilterService - ok
20:36:46.0274 11692 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
20:36:46.0295 11692 BTHMODEM - ok
20:36:46.0362 11692 catchme - ok
20:36:46.0436 11692 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
20:36:46.0452 11692 cdfs - ok
20:36:46.0624 11692 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
20:36:46.0685 11692 cdrom - ok
20:36:46.0706 11692 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
20:36:46.0711 11692 circlass - ok
20:36:46.0785 11692 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
20:36:46.0808 11692 CLFS - ok
20:36:46.0998 11692 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
20:36:47.0021 11692 CmBatt - ok
20:36:47.0268 11692 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
20:36:47.0324 11692 cmdide - ok
20:36:47.0474 11692 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
20:36:47.0495 11692 CNG - ok
20:36:47.0545 11692 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
20:36:47.0585 11692 Compbatt - ok
20:36:47.0649 11692 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
20:36:47.0655 11692 CompositeBus - ok
20:36:47.0690 11692 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
20:36:47.0704 11692 crcdisk - ok
20:36:47.0778 11692 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
20:36:47.0781 11692 DfsC - ok
20:36:47.0817 11692 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
20:36:47.0819 11692 discache - ok
20:36:47.0854 11692 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
20:36:47.0889 11692 Disk - ok
20:36:47.0947 11692 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
20:36:47.0981 11692 drmkaud - ok
20:36:48.0065 11692 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
20:36:48.0087 11692 DXGKrnl - ok
20:36:48.0120 11692 eamonm (13533557d01b88c83110d5cf749f14d7) C:\Windows\system32\DRIVERS\eamonm.sys
20:36:48.0127 11692 eamonm - ok
20:36:48.0197 11692 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
20:36:48.0277 11692 ebdrv - ok
20:36:48.0306 11692 ehdrv (e097728129e7b79bf1089d7aef42332b) C:\Windows\system32\DRIVERS\ehdrv.sys
20:36:48.0336 11692 ehdrv - ok
20:36:48.0395 11692 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
20:36:48.0405 11692 elxstor - ok
20:36:48.0434 11692 epfw (198c6fbc30bbd9632ea051203dccf204) C:\Windows\system32\DRIVERS\epfw.sys
20:36:48.0439 11692 epfw - ok
20:36:48.0468 11692 EpfwLWF (56de463f517710a8aa44eef82c35b3c9) C:\Windows\system32\DRIVERS\EpfwLWF.sys
20:36:48.0500 11692 EpfwLWF - ok
20:36:48.0536 11692 epfwwfp (710b0442bb2f99278d7b8e02a8849c11) C:\Windows\system32\DRIVERS\epfwwfp.sys
20:36:48.0563 11692 epfwwfp - ok
20:36:48.0725 11692 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
20:36:48.0756 11692 ErrDev - ok
20:36:49.0020 11692 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
20:36:49.0044 11692 exfat - ok
20:36:49.0095 11692 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
20:36:49.0101 11692 fastfat - ok
20:36:49.0135 11692 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
20:36:49.0208 11692 fdc - ok
20:36:49.0232 11692 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
20:36:49.0246 11692 FileInfo - ok
20:36:49.0266 11692 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
20:36:49.0268 11692 Filetrace - ok
20:36:49.0291 11692 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
20:36:49.0293 11692 flpydisk - ok
20:36:49.0349 11692 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
20:36:50.0013 11692 FltMgr - ok
20:36:50.0042 11692 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
20:36:50.0044 11692 FsDepends - ok
20:36:50.0065 11692 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
20:36:50.0072 11692 Fs_Rec - ok
20:36:50.0112 11692 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
20:36:50.0115 11692 fvevol - ok
20:36:50.0150 11692 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
20:36:50.0211 11692 gagp30kx - ok
20:36:50.0287 11692 GGSAFERDriver - ok
20:36:50.0318 11692 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
20:36:50.0331 11692 hcw85cir - ok
20:36:50.0426 11692 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
20:36:50.0434 11692 HdAudAddService - ok
20:36:50.0453 11692 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
20:36:50.0468 11692 HDAudBus - ok
20:36:50.0489 11692 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
20:36:50.0580 11692 HidBatt - ok
20:36:50.0615 11692 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
20:36:50.0640 11692 HidBth - ok
20:36:50.0666 11692 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
20:36:50.0731 11692 HidIr - ok
20:36:50.0808 11692 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
20:36:50.0841 11692 HidUsb - ok
20:36:50.0939 11692 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
20:36:50.0954 11692 HpSAMD - ok
20:36:51.0006 11692 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
20:36:51.0016 11692 HTTP - ok
20:36:51.0065 11692 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
20:36:51.0067 11692 hwpolicy - ok
20:36:51.0088 11692 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
20:36:51.0115 11692 i8042prt - ok
20:36:51.0149 11692 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
20:36:51.0172 11692 iaStorV - ok
20:36:51.0296 11692 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
20:36:51.0404 11692 igfx - ok
20:36:51.0434 11692 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
20:36:51.0446 11692 iirsp - ok
20:36:51.0476 11692 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
20:36:51.0479 11692 intelide - ok
20:36:51.0516 11692 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
20:36:51.0537 11692 intelppm - ok
20:36:51.0588 11692 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
20:36:51.0591 11692 IpFilterDriver - ok
20:36:51.0617 11692 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
20:36:51.0623 11692 IPMIDRV - ok
20:36:51.0647 11692 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
20:36:51.0650 11692 IPNAT - ok
20:36:51.0680 11692 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
20:36:51.0682 11692 IRENUM - ok
20:36:51.0711 11692 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
20:36:51.0744 11692 isapnp - ok
20:36:51.0771 11692 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
20:36:51.0796 11692 iScsiPrt - ok
20:36:51.0826 11692 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
20:36:51.0833 11692 kbdclass - ok
20:36:51.0881 11692 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
20:36:51.0898 11692 kbdhid - ok
20:36:51.0993 11692 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
20:36:52.0005 11692 KSecDD - ok
20:36:52.0054 11692 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
20:36:52.0057 11692 KSecPkg - ok
20:36:52.0132 11692 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
20:36:52.0153 11692 ksthunk - ok
20:36:52.0282 11692 Lavasoft Kernexplorer (9a7fa6371f68335fd3c3d6488bc5a9f8) C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys
20:36:53.0198 11692 Lavasoft Kernexplorer - ok
20:36:53.0504 11692 Lbd (c8b3131857931ae76798a741cc52b021) C:\Windows\system32\DRIVERS\Lbd.sys
20:36:53.0542 11692 Lbd - ok
20:36:53.0680 11692 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
20:36:53.0693 11692 lltdio - ok
20:36:53.0753 11692 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
20:36:53.0784 11692 LSI_FC - ok
20:36:53.0824 11692 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
20:36:53.0853 11692 LSI_SAS - ok
20:36:53.0883 11692 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
20:36:53.0916 11692 LSI_SAS2 - ok
20:36:53.0940 11692 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
20:36:53.0964 11692 LSI_SCSI - ok
20:36:54.0006 11692 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
20:36:54.0014 11692 luafv - ok
20:36:54.0298 11692 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
20:36:55.0170 11692 megasas - ok
20:36:55.0262 11692 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
20:36:55.0324 11692 MegaSR - ok
20:36:55.0367 11692 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
20:36:55.0406 11692 Modem - ok
20:36:55.0484 11692 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
20:36:55.0548 11692 monitor - ok
20:36:55.0608 11692 motccgp (c94a2ea3fdfa5d650884926b710b7db1) C:\Windows\system32\DRIVERS\motccgp.sys
20:36:55.0628 11692 motccgp - ok
20:36:55.0685 11692 motccgpfl (d51e009baeda07ebc107d49d224c2414) C:\Windows\system32\DRIVERS\motccgpfl.sys
20:36:55.0705 11692 motccgpfl - ok
20:36:55.0765 11692 motmodem (060f0ef84f430802df3788f3dcfd009c) C:\Windows\system32\DRIVERS\motmodem.sys
20:36:55.0799 11692 motmodem - ok
20:36:55.0842 11692 MotoSwitchService (ebd05f60cafc5bba2602b8d7101082d3) C:\Windows\system32\DRIVERS\motswch.sys
20:36:55.0864 11692 MotoSwitchService - ok
20:36:55.0946 11692 Motousbnet (87701078c3f720ac7a028e937994cc49) C:\Windows\system32\DRIVERS\Motousbnet.sys
20:36:55.0989 11692 Motousbnet - ok
20:36:56.0022 11692 motusbdevice (4244e427cda5f6485e74461b5b48a7b6) C:\Windows\system32\DRIVERS\motusbdevice.sys
20:36:56.0048 11692 motusbdevice - ok
20:36:56.0099 11692 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
20:36:56.0110 11692 mouclass - ok
20:36:56.0133 11692 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
20:36:56.0137 11692 mouhid - ok
20:36:56.0194 11692 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
20:36:56.0197 11692 mountmgr - ok
20:36:56.0233 11692 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
20:36:56.0244 11692 mpio - ok
20:36:56.0268 11692 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
20:36:56.0288 11692 mpsdrv - ok
20:36:56.0349 11692 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
20:36:56.0353 11692 MRxDAV - ok
20:36:56.0406 11692 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
20:36:56.0409 11692 mrxsmb - ok
20:36:56.0469 11692 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
20:36:56.0474 11692 mrxsmb10 - ok
20:36:56.0504 11692 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
20:36:56.0507 11692 mrxsmb20 - ok
20:36:56.0542 11692 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
20:36:56.0562 11692 msahci - ok
20:36:56.0589 11692 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
20:36:56.0612 11692 msdsm - ok
20:36:56.0648 11692 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
20:36:56.0659 11692 Msfs - ok
20:36:56.0675 11692 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
20:36:56.0677 11692 mshidkmdf - ok
20:36:56.0693 11692 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
20:36:56.0723 11692 msisadrv - ok
20:36:56.0767 11692 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
20:36:56.0769 11692 MSKSSRV - ok
20:36:56.0782 11692 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
20:36:56.0784 11692 MSPCLOCK - ok
20:36:56.0798 11692 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
20:36:56.0803 11692 MSPQM - ok
20:36:56.0946 11692 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
20:36:56.0956 11692 MsRPC - ok
20:36:57.0058 11692 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
20:36:57.0070 11692 mssmbios - ok
20:36:57.0282 11692 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
20:36:57.0289 11692 MSTEE - ok
20:36:57.0318 11692 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
20:36:57.0343 11692 MTConfig - ok
20:36:57.0404 11692 MTsensor (2219a3d695405e7ba2186ba6b9ede14a) C:\Windows\system32\DRIVERS\ASACPI.sys
20:36:57.0422 11692 MTsensor - ok
20:36:57.0439 11692 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
20:36:57.0442 11692 Mup - ok
20:36:57.0476 11692 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
20:36:57.0492 11692 NativeWifiP - ok
20:36:57.0549 11692 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
20:36:57.0560 11692 NDIS - ok
20:36:57.0596 11692 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
20:36:57.0599 11692 NdisCap - ok
20:36:57.0651 11692 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
20:36:58.0742 11692 NdisTapi - ok
20:36:58.0831 11692 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
20:36:58.0834 11692 Ndisuio - ok
20:36:58.0951 11692 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
20:36:58.0971 11692 NdisWan - ok
20:36:59.0011 11692 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
20:36:59.0018 11692 NDProxy - ok
20:36:59.0097 11692 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
20:36:59.0100 11692 NetBIOS - ok
20:36:59.0146 11692 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
20:36:59.0153 11692 NetBT - ok
20:36:59.0218 11692 netr28x (44d4bd55191624c82a2745296ba42814) C:\Windows\system32\DRIVERS\netr28x.sys
20:36:59.0250 11692 netr28x - ok
20:36:59.0302 11692 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
20:36:59.0335 11692 nfrd960 - ok
20:36:59.0368 11692 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
20:36:59.0371 11692 Npfs - ok
20:36:59.0388 11692 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
20:36:59.0390 11692 nsiproxy - ok
20:36:59.0455 11692 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
20:36:59.0499 11692 Ntfs - ok
20:36:59.0848 11692 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
20:36:59.0850 11692 Null - ok
20:37:00.0090 11692 nvlddmkm (b34e9bfbd9c61048ef6281c3e7ec210a) C:\Windows\system32\DRIVERS\nvlddmkm.sys
20:37:00.0309 11692 nvlddmkm - ok
20:37:00.0355 11692 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
20:37:00.0373 11692 nvraid - ok
20:37:00.0390 11692 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
20:37:00.0422 11692 nvstor - ok
20:37:00.0483 11692 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
20:37:00.0500 11692 nv_agp - ok
20:37:00.0537 11692 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
20:37:00.0554 11692 ohci1394 - ok
20:37:00.0588 11692 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
20:37:00.0606 11692 Parport - ok
20:37:00.0645 11692 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
20:37:00.0647 11692 partmgr - ok
20:37:00.0666 11692 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
20:37:00.0711 11692 pci - ok
20:37:00.0749 11692 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
20:37:00.0765 11692 pciide - ok
20:37:00.0795 11692 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
20:37:00.0831 11692 pcmcia - ok
20:37:00.0919 11692 pcouffin (af7ce12c4f3dc8cb2b07685c916bbcfe) C:\Windows\system32\Drivers\pcouffin.sys
20:37:00.0939 11692 pcouffin - ok
20:37:00.0961 11692 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
20:37:00.0977 11692 pcw - ok
20:37:01.0003 11692 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
20:37:01.0011 11692 PEAUTH - ok
20:37:01.0054 11692 pfc - ok
20:37:01.0094 11692 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
20:37:01.0097 11692 PptpMiniport - ok
20:37:01.0124 11692 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
20:37:01.0142 11692 Processor - ok
20:37:01.0202 11692 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
20:37:01.0205 11692 Psched - ok
20:37:01.0247 11692 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
20:37:01.0273 11692 ql2300 - ok
20:37:01.0294 11692 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
20:37:01.0299 11692 ql40xx - ok
20:37:01.0326 11692 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
20:37:01.0336 11692 QWAVEdrv - ok
20:37:01.0352 11692 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
20:37:01.0354 11692 RasAcd - ok
20:37:01.0395 11692 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
20:37:01.0397 11692 RasAgileVpn - ok
20:37:01.0436 11692 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
20:37:01.0439 11692 Rasl2tp - ok
20:37:01.0461 11692 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
20:37:01.0464 11692 RasPppoe - ok
20:37:01.0479 11692 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
20:37:01.0482 11692 RasSstp - ok
20:37:01.0525 11692 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
20:37:01.0529 11692 rdbss - ok
20:37:01.0551 11692 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
20:37:01.0582 11692 rdpbus - ok
20:37:01.0603 11692 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
20:37:01.0605 11692 RDPCDD - ok
20:37:01.0621 11692 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
20:37:01.0623 11692 RDPENCDD - ok
20:37:01.0639 11692 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
20:37:01.0641 11692 RDPREFMP - ok
20:37:01.0685 11692 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
20:37:01.0706 11692 RDPWD - ok
20:37:01.0756 11692 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
20:37:01.0760 11692 rdyboost - ok
20:37:01.0796 11692 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
20:37:01.0798 11692 rspndr - ok
20:37:01.0836 11692 RTL8167 (4b42bc58294e83a6a92ec8b88c14c4a3) C:\Windows\system32\DRIVERS\Rt64win7.sys
20:37:01.0856 11692 RTL8167 - ok
20:37:01.0902 11692 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
20:37:01.0920 11692 sbp2port - ok
20:37:01.0976 11692 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
20:37:01.0979 11692 scfilter - ok
20:37:02.0003 11692 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
20:37:02.0020 11692 secdrv - ok
20:37:02.0047 11692 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
20:37:02.0064 11692 Serenum - ok
20:37:02.0089 11692 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
20:37:02.0145 11692 Serial - ok
20:37:02.0176 11692 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
20:37:02.0194 11692 sermouse - ok
20:37:02.0255 11692 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
20:37:02.0272 11692 sffdisk - ok
20:37:02.0287 11692 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
20:37:02.0303 11692 sffp_mmc - ok
20:37:02.0314 11692 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
20:37:02.0338 11692 sffp_sd - ok
20:37:02.0362 11692 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
20:37:02.0379 11692 sfloppy - ok
20:37:02.0419 11692 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
20:37:02.0464 11692 SiSRaid2 - ok
20:37:02.0490 11692 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
20:37:02.0507 11692 SiSRaid4 - ok
20:37:02.0522 11692 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
20:37:02.0524 11692 Smb - ok
20:37:02.0552 11692 speedfan - ok
20:37:02.0577 11692 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
20:37:02.0585 11692 spldr - ok
20:37:02.0625 11692 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
20:37:02.0636 11692 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
20:37:02.0638 11692 sptd ( LockedFile.Multi.Generic ) - warning
20:37:02.0638 11692 sptd - detected LockedFile.Multi.Generic (1)
20:37:02.0678 11692 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
20:37:02.0684 11692 srv - ok
20:37:02.0711 11692 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
20:37:02.0717 11692 srv2 - ok
20:37:02.0738 11692 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
20:37:02.0742 11692 srvnet - ok
20:37:02.0793 11692 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
20:37:02.0796 11692 stexstor - ok
20:37:02.0855 11692 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
20:37:02.0872 11692 StillCam - ok
20:37:02.0926 11692 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
20:37:03.0009 11692 swenum - ok
20:37:03.0121 11692 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
20:37:03.0164 11692 Tcpip - ok
20:37:03.0213 11692 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
20:37:03.0224 11692 TCPIP6 - ok
20:37:03.0272 11692 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
20:37:03.0274 11692 tcpipreg - ok
20:37:03.0310 11692 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
20:37:03.0327 11692 TDPIPE - ok
20:37:03.0344 11692 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
20:37:03.0346 11692 TDTCP - ok
20:37:03.0385 11692 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
20:37:03.0388 11692 tdx - ok
20:37:03.0411 11692 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
20:37:03.0429 11692 TermDD - ok
20:37:03.0483 11692 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
20:37:03.0486 11692 tssecsrv - ok
20:37:03.0548 11692 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
20:37:03.0551 11692 TsUsbFlt - ok
20:37:03.0599 11692 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
20:37:03.0616 11692 tunnel - ok
20:37:03.0649 11692 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
20:37:03.0666 11692 uagp35 - ok
20:37:03.0719 11692 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
20:37:03.0724 11692 udfs - ok
20:37:03.0787 11692 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
20:37:03.0805 11692 uliagpkx - ok
20:37:03.0826 11692 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
20:37:03.0848 11692 umbus - ok
20:37:03.0861 11692 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
20:37:03.0877 11692 UmPass - ok
20:37:03.0897 11692 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
20:37:03.0915 11692 usbccgp - ok
20:37:03.0964 11692 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
20:37:03.0981 11692 usbcir - ok
20:37:04.0001 11692 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
20:37:04.0018 11692 usbehci - ok
20:37:04.0037 11692 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
20:37:04.0066 11692 usbhub - ok
20:37:04.0092 11692 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
20:37:04.0124 11692 usbohci - ok
20:37:04.0180 11692 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
20:37:04.0203 11692 usbprint - ok
20:37:04.0220 11692 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
20:37:04.0252 11692 USBSTOR - ok
20:37:04.0268 11692 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
20:37:04.0307 11692 usbuhci - ok
20:37:04.0347 11692 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
20:37:04.0381 11692 vdrvroot - ok
20:37:04.0409 11692 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
20:37:04.0415 11692 vga - ok
20:37:04.0450 11692 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
20:37:04.0453 11692 VgaSave - ok
20:37:04.0493 11692 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
20:37:04.0513 11692 vhdmp - ok
20:37:04.0552 11692 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
20:37:04.0569 11692 viaide - ok
20:37:04.0592 11692 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
20:37:04.0624 11692 volmgr - ok
20:37:04.0668 11692 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
20:37:04.0673 11692 volmgrx - ok
20:37:04.0694 11692 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
20:37:04.0722 11692 volsnap - ok
20:37:04.0751 11692 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
20:37:04.0771 11692 vsmraid - ok
20:37:04.0795 11692 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
20:37:04.0804 11692 vwifibus - ok
20:37:04.0820 11692 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
20:37:04.0823 11692 vwififlt - ok
20:37:05.0029 11692 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
20:37:05.0069 11692 WacomPen - ok
20:37:05.0123 11692 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:37:05.0126 11692 WANARP - ok
20:37:05.0130 11692 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
20:37:05.0131 11692 Wanarpv6 - ok
20:37:05.0173 11692 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
20:37:05.0196 11692 Wd - ok
20:37:05.0224 11692 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
20:37:05.0232 11692 Wdf01000 - ok
20:37:05.0261 11692 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
20:37:05.0263 11692 WfpLwf - ok
20:37:05.0277 11692 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
20:37:05.0279 11692 WIMMount - ok
20:37:05.0320 11692 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
20:37:05.0334 11692 WinUsb - ok
20:37:05.0405 11692 WmBEnum (e7f4937b613b1e4294100c9d4efc36a9) C:\Windows\system32\drivers\WmBEnum.sys
20:37:05.0408 11692 WmBEnum - ok
20:37:05.0429 11692 WmFilter (6f6f2b263002b243d3501c7e6c8fc11d) C:\Windows\system32\drivers\WmFilter.sys
20:37:05.0432 11692 WmFilter - ok
20:37:05.0446 11692 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
20:37:05.0463 11692 WmiAcpi - ok
20:37:05.0511 11692 WmVirHid (52b4fcc6afaec0ffd80bda63f9b140cd) C:\Windows\system32\drivers\WmVirHid.sys
20:37:05.0514 11692 WmVirHid - ok
20:37:05.0534 11692 WmXlCore (395b3e7fba81bdc4501641b3b2cf2e20) C:\Windows\system32\drivers\WmXlCore.sys
20:37:05.0591 11692 WmXlCore - ok
20:37:05.0610 11692 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
20:37:05.0612 11692 ws2ifsl - ok
20:37:05.0657 11692 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
20:37:05.0660 11692 WudfPf - ok
20:37:05.0688 11692 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
20:37:05.0691 11692 WUDFRd - ok
20:37:05.0752 11692 MBR (0x1B8) (4976d4a7a40b83fc7f06ee4bdd84eb9b) \Device\Harddisk0\DR0
20:37:05.0783 11692 \Device\Harddisk0\DR0 - ok
20:37:05.0786 11692 Boot (0x1200) (90c86de05767949cc21b64806c9866c2) \Device\Harddisk0\DR0\Partition0
20:37:05.0787 11692 \Device\Harddisk0\DR0\Partition0 - ok
20:37:05.0789 11692 ============================================================
20:37:05.0789 11692 Scan finished
20:37:05.0789 11692 ============================================================
20:37:05.0803 12044 Detected object count: 1
20:37:05.0804 12044 Actual detected object count: 1
20:37:21.0944 12044 sptd ( LockedFile.Multi.Generic ) - skipped by user
20:37:21.0944 12044 sptd ( LockedFile.Multi.Generic ) - User select action: Skip


SPTD is a Daemon Tools thing.
Anywho. No reboot required.
And yes. Being unwillingly and unexpectedly subjected to Martha's rambling out of the blue is sick and wrong.

#5 Cratti

Cratti
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 20 January 2012 - 10:02 PM

Malwarebytes Anti-Malware (Trial) 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.20.04

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Chris :: DESKTOP [administrator]

Protection: Disabled

1/20/2012 8:44:41 PM
mbam-log-2012-01-20 (20-44-41).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 222630
Time elapsed: 16 minute(s), 1 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)


Nothin' from MBAM, no reboot here, either.

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:43 PM

Posted 20 January 2012 - 10:31 PM

Hello, it looks like Martha is a Bootkit.
We need a deeper look. Please go here....
Preparation Guide ,do steps 6 - 9.

Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Include a link back to this topic.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 Cratti

Cratti
  • Topic Starter

  • Members
  • 29 posts
  • OFFLINE
  •  
  • Local time:05:43 PM

Posted 21 January 2012 - 02:58 PM

New thread is here.
I didn't bother with Gmer since I'm running 64 bit; are you indicating I should've at least attempted it?

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,221 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:43 PM

Posted 21 January 2012 - 08:29 PM

No no need for GMER then,,
Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 5 days and ALL logs are amswered.

To avoid confusion, I am closing this topic
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users