Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Virus? Blue screens, internet locking up and computer locking up....


  • Please log in to reply
5 replies to this topic

#1 kcguru

kcguru

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 27 February 2012 - 07:13 PM

I'm not sure if I have a virus on my laptop or if there is something else wrong with my laptop, a Toshiba running Vista. I noticed a couple days ago that when I would get on the internet, I could only get about five pages in before it would completely lock up, with not even being able to get into Ctrl+Alt+Delete to restart. I would restart, it would bring up the "Windows did not shut down properly, do you wanna start in safe mood, etc... menu." I would try to start normally and same thing would happen. I ran numerous scans, Malware Antibytes, Super Antispyware, and it came up with a couple Trojans and I deleted them but the problem still happened. Then I noticed that it also was locking up when I would just be opening files or folders on the laptop, not just the internet. Then I would start getting blue screens, computer would restart and the cycle would repeat. I am not getting any bad reports from Malware or Super antispyware but the problem is persisting. Not sure if my laptop is just crapping out or if it's something else. I am writing this in safe mode with networking because the first time I tried to write it, in regular mode, the laptop locked up. It seems to be working ok in safe mode. Any help would be great!!! Thank you!

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:38 AM

Posted 27 February 2012 - 07:27 PM

Download

TDSSkiller

Launch it.Click on change parameters-Select TDLFS file system

Click on "Scan".Please post the LOG report(log file should be in your C drive)


Please download GMER from here(doesnot work on 64 bit OS)

http://www2.gmer.net/download.php

Temporarily disable any real-time active protection so your security programs will not conflict with gmer's driver.

GMER will open to the Rootkit/Malware tab and perform an automatic Full Scan when first run. (do not use the computer while the scan is in progress)

If you receive a WARNING!!! about rootkit activity and are asked to fully scan your system...click NO.
Now click the Scan button. If you see a rootkit warning window, click OK.
When the scan is finished, click the Save... button to save the scan results to your Desktop. Save the file as gmer.log.
Click the Copy button and paste the results into your next reply.


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

#3 kcguru

kcguru
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 28 February 2012 - 07:35 PM

Here is the TDSS log...

18:45:38.0284 1172 TDSS rootkit removing tool 2.7.15.0 Feb 27 2012 12:59:02
18:45:38.0904 1172 ============================================================
18:45:38.0904 1172 Current date / time: 2012/02/27 18:45:38.0904
18:45:38.0904 1172 SystemInfo:
18:45:38.0904 1172
18:45:38.0904 1172 OS Version: 6.0.6002 ServicePack: 2.0
18:45:38.0904 1172 Product type: Workstation
18:45:38.0904 1172 ComputerName: KRISTA-LAPTOP
18:45:38.0905 1172 UserName: Krista
18:45:38.0905 1172 Windows directory: C:\Windows
18:45:38.0905 1172 System windows directory: C:\Windows
18:45:38.0905 1172 Processor architecture: Intel x86
18:45:38.0905 1172 Number of processors: 2
18:45:38.0905 1172 Page size: 0x1000
18:45:38.0905 1172 Boot type: Normal boot
18:45:38.0905 1172 ============================================================
18:45:45.0015 1172 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
18:45:45.0315 1172 \Device\Harddisk0\DR0:
18:45:45.0346 1172 MBR used
18:45:45.0346 1172 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x2EE800, BlocksNum 0x11B5F000
18:45:45.0712 1172 Initialize success
18:45:45.0712 1172 ============================================================
18:46:16.0239 5864 ============================================================
18:46:16.0239 5864 Scan started
18:46:16.0239 5864 Mode: Manual; TDLFS;
18:46:16.0239 5864 ============================================================
18:46:19.0488 5864 acedrv11 (e6f53d6c0dea3d375362265e175ca638) C:\Windows\system32\drivers\acedrv11.sys
18:46:20.0170 5864 acedrv11 - ok
18:46:20.0385 5864 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
18:46:21.0036 5864 ACPI - ok
18:46:21.0419 5864 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
18:46:21.0476 5864 adp94xx - ok
18:46:21.0605 5864 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
18:46:21.0643 5864 adpahci - ok
18:46:21.0693 5864 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
18:46:21.0756 5864 adpu160m - ok
18:46:21.0795 5864 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
18:46:21.0902 5864 adpu320 - ok
18:46:22.0369 5864 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
18:46:22.0483 5864 AFD - ok
18:46:22.0696 5864 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
18:46:22.0994 5864 AgereSoftModem - ok
18:46:23.0381 5864 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
18:46:23.0439 5864 agp440 - ok
18:46:23.0666 5864 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
18:46:23.0719 5864 aic78xx - ok
18:46:23.0983 5864 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
18:46:24.0006 5864 aliide - ok
18:46:24.0081 5864 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
18:46:24.0143 5864 amdagp - ok
18:46:24.0293 5864 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
18:46:24.0318 5864 amdide - ok
18:46:24.0368 5864 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
18:46:24.0432 5864 AmdK7 - ok
18:46:24.0477 5864 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
18:46:24.0522 5864 AmdK8 - ok
18:46:24.0702 5864 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
18:46:24.0762 5864 arc - ok
18:46:24.0822 5864 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
18:46:24.0882 5864 arcsas - ok
18:46:24.0944 5864 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
18:46:24.0991 5864 AsyncMac - ok
18:46:25.0254 5864 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
18:46:25.0255 5864 atapi - ok
18:46:25.0463 5864 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
18:46:25.0675 5864 athr - ok
18:46:25.0874 5864 atikmdag (a2b6478963451a99c28da8133b648142) C:\Windows\system32\DRIVERS\atikmdag.sys
18:46:25.0992 5864 atikmdag - ok
18:46:26.0395 5864 AtiPcie (4aa1eb65481c392955939e735d27118b) C:\Windows\system32\DRIVERS\AtiPcie.sys
18:46:26.0420 5864 AtiPcie - ok
18:46:26.0525 5864 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
18:46:26.0550 5864 Beep - ok
18:46:26.0633 5864 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
18:46:26.0696 5864 blbdrive - ok
18:46:26.0790 5864 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
18:46:26.0875 5864 bowser - ok
18:46:26.0927 5864 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
18:46:26.0972 5864 BrFiltLo - ok
18:46:27.0021 5864 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
18:46:27.0040 5864 BrFiltUp - ok
18:46:27.0108 5864 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
18:46:27.0176 5864 Brserid - ok
18:46:27.0258 5864 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
18:46:27.0326 5864 BrSerWdm - ok
18:46:27.0364 5864 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
18:46:27.0394 5864 BrUsbMdm - ok
18:46:27.0440 5864 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
18:46:27.0465 5864 BrUsbSer - ok
18:46:27.0502 5864 BT - ok
18:46:27.0531 5864 Btcsrusb - ok
18:46:27.0579 5864 BTHidEnum - ok
18:46:27.0605 5864 BTHidMgr - ok
18:46:27.0663 5864 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
18:46:27.0715 5864 BTHMODEM - ok
18:46:27.0806 5864 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
18:46:27.0808 5864 cdfs - ok
18:46:27.0912 5864 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
18:46:27.0985 5864 cdrom - ok
18:46:28.0084 5864 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
18:46:28.0134 5864 circlass - ok
18:46:28.0180 5864 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
18:46:28.0279 5864 CLFS - ok
18:46:28.0404 5864 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
18:46:28.0432 5864 CmBatt - ok
18:46:28.0466 5864 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
18:46:28.0493 5864 cmdide - ok
18:46:28.0540 5864 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
18:46:28.0566 5864 Compbatt - ok
18:46:28.0633 5864 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
18:46:28.0702 5864 crcdisk - ok
18:46:28.0793 5864 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
18:46:28.0871 5864 Crusoe - ok
18:46:28.0995 5864 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
18:46:29.0082 5864 DfsC - ok
18:46:29.0183 5864 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
18:46:29.0248 5864 disk - ok
18:46:29.0388 5864 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
18:46:29.0413 5864 drmkaud - ok
18:46:29.0519 5864 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
18:46:29.0658 5864 DXGKrnl - ok
18:46:29.0719 5864 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
18:46:29.0811 5864 E1G60 - ok
18:46:29.0888 5864 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
18:46:29.0948 5864 Ecache - ok
18:46:30.0018 5864 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
18:46:30.0073 5864 elxstor - ok
18:46:30.0113 5864 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
18:46:30.0138 5864 ErrDev - ok
18:46:30.0236 5864 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
18:46:30.0402 5864 exfat - ok
18:46:30.0478 5864 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
18:46:30.0523 5864 fastfat - ok
18:46:30.0584 5864 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
18:46:30.0625 5864 fdc - ok
18:46:30.0674 5864 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
18:46:30.0740 5864 FileInfo - ok
18:46:30.0767 5864 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
18:46:30.0811 5864 Filetrace - ok
18:46:30.0854 5864 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
18:46:30.0888 5864 flpydisk - ok
18:46:30.0961 5864 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
18:46:31.0035 5864 FltMgr - ok
18:46:31.0129 5864 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
18:46:31.0158 5864 Fs_Rec - ok
18:46:31.0185 5864 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
18:46:31.0216 5864 FwLnk - ok
18:46:31.0256 5864 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
18:46:31.0318 5864 gagp30kx - ok
18:46:31.0560 5864 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
18:46:31.0608 5864 GEARAspiWDM - ok
18:46:31.0725 5864 hamachi (833051c6c6c42117191935f734cfbd97) C:\Windows\system32\DRIVERS\hamachi.sys
18:46:31.0765 5864 hamachi - ok
18:46:31.0831 5864 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
18:46:31.0889 5864 HdAudAddService - ok
18:46:31.0977 5864 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:46:32.0076 5864 HDAudBus - ok
18:46:32.0114 5864 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
18:46:32.0155 5864 HidBth - ok
18:46:32.0251 5864 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
18:46:32.0284 5864 HidIr - ok
18:46:32.0356 5864 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
18:46:32.0385 5864 HidUsb - ok
18:46:32.0416 5864 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
18:46:32.0458 5864 HpCISSs - ok
18:46:32.0550 5864 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
18:46:32.0644 5864 HTTP - ok
18:46:32.0679 5864 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
18:46:32.0716 5864 i2omp - ok
18:46:32.0787 5864 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
18:46:32.0872 5864 i8042prt - ok
18:46:32.0918 5864 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
18:46:33.0019 5864 iaStorV - ok
18:46:33.0086 5864 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
18:46:33.0151 5864 iirsp - ok
18:46:33.0321 5864 IntcAzAudAddService (b9cbd3dea7ca02868621173bf7a2af9f) C:\Windows\system32\drivers\RTKVHDA.sys
18:46:33.0584 5864 IntcAzAudAddService - ok
18:46:33.0733 5864 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
18:46:33.0759 5864 intelide - ok
18:46:33.0891 5864 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
18:46:33.0941 5864 intelppm - ok
18:46:33.0996 5864 IO_Memory - ok
18:46:34.0095 5864 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:46:34.0164 5864 IpFilterDriver - ok
18:46:34.0250 5864 IpInIp - ok
18:46:34.0299 5864 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
18:46:34.0376 5864 IPMIDRV - ok
18:46:34.0423 5864 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
18:46:34.0462 5864 IPNAT - ok
18:46:34.0544 5864 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
18:46:34.0575 5864 IRENUM - ok
18:46:34.0621 5864 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
18:46:34.0676 5864 isapnp - ok
18:46:34.0742 5864 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
18:46:34.0788 5864 iScsiPrt - ok
18:46:34.0831 5864 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
18:46:34.0872 5864 iteatapi - ok
18:46:34.0941 5864 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
18:46:34.0994 5864 iteraid - ok
18:46:35.0071 5864 jswpslwf (11ad410f41af42ba12e63187e3ec141a) C:\Windows\system32\DRIVERS\jswpslwf.sys
18:46:35.0108 5864 jswpslwf - ok
18:46:35.0162 5864 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
18:46:35.0207 5864 kbdclass - ok
18:46:35.0254 5864 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\drivers\kbdhid.sys
18:46:35.0284 5864 kbdhid - ok
18:46:35.0340 5864 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys
18:46:35.0469 5864 KR10I - ok
18:46:35.0523 5864 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys
18:46:35.0679 5864 KR10N - ok
18:46:35.0769 5864 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
18:46:35.0870 5864 KSecDD - ok
18:46:35.0939 5864 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
18:46:36.0001 5864 lltdio - ok
18:46:36.0068 5864 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
18:46:36.0152 5864 LSI_FC - ok
18:46:36.0191 5864 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
18:46:36.0294 5864 LSI_SAS - ok
18:46:36.0343 5864 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
18:46:36.0433 5864 LSI_SCSI - ok
18:46:36.0481 5864 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
18:46:36.0563 5864 luafv - ok
18:46:36.0734 5864 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\Windows\system32\drivers\mbam.sys
18:46:36.0736 5864 MBAMProtector - ok
18:46:36.0816 5864 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
18:46:36.0858 5864 megasas - ok
18:46:36.0915 5864 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
18:46:37.0070 5864 MegaSR - ok
18:46:37.0130 5864 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
18:46:37.0178 5864 Modem - ok
18:46:37.0261 5864 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
18:46:37.0314 5864 monitor - ok
18:46:37.0376 5864 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
18:46:37.0417 5864 mouclass - ok
18:46:37.0484 5864 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
18:46:37.0552 5864 mouhid - ok
18:46:37.0582 5864 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
18:46:37.0644 5864 MountMgr - ok
18:46:37.0725 5864 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
18:46:37.0812 5864 MpFilter - ok
18:46:37.0858 5864 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
18:46:37.0972 5864 mpio - ok
18:46:38.0296 5864 MpKsl326fc99c (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{47F77966-07D5-41C8-ABE2-D24315C48FDF}\MpKsl326fc99c.sys
18:46:38.0343 5864 MpKsl326fc99c - ok
18:46:38.0422 5864 MpKsl886eeb9e (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{47F77966-07D5-41C8-ABE2-D24315C48FDF}\MpKsl886eeb9e.sys
18:46:38.0467 5864 MpKsl886eeb9e - ok
18:46:38.0521 5864 MpKslb5d44d00 (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{47F77966-07D5-41C8-ABE2-D24315C48FDF}\MpKslb5d44d00.sys
18:46:38.0523 5864 MpKslb5d44d00 - ok
18:46:38.0616 5864 MpKslc3fdeafd (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{47F77966-07D5-41C8-ABE2-D24315C48FDF}\MpKslc3fdeafd.sys
18:46:38.0678 5864 MpKslc3fdeafd - ok
18:46:38.0882 5864 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
18:46:38.0884 5864 MpNWMon - ok
18:46:38.0929 5864 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
18:46:38.0955 5864 mpsdrv - ok
18:46:38.0998 5864 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
18:46:39.0036 5864 Mraid35x - ok
18:46:39.0095 5864 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
18:46:39.0134 5864 MRxDAV - ok
18:46:39.0262 5864 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:46:39.0308 5864 mrxsmb - ok
18:46:39.0359 5864 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:46:39.0460 5864 mrxsmb10 - ok
18:46:39.0493 5864 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:46:39.0576 5864 mrxsmb20 - ok
18:46:39.0652 5864 msahci (5457dcfa7c0da43522f4d9d4049c1472) C:\Windows\system32\drivers\msahci.sys
18:46:39.0691 5864 msahci - ok
18:46:39.0744 5864 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
18:46:39.0778 5864 msdsm - ok
18:46:39.0845 5864 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
18:46:39.0883 5864 Msfs - ok
18:46:39.0982 5864 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
18:46:40.0010 5864 msisadrv - ok
18:46:40.0091 5864 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
18:46:40.0140 5864 MSKSSRV - ok
18:46:40.0273 5864 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
18:46:40.0306 5864 MSPCLOCK - ok
18:46:40.0367 5864 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
18:46:40.0394 5864 MSPQM - ok
18:46:40.0533 5864 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
18:46:40.0651 5864 MsRPC - ok
18:46:40.0736 5864 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
18:46:40.0780 5864 mssmbios - ok
18:46:40.0823 5864 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
18:46:40.0848 5864 MSTEE - ok
18:46:40.0919 5864 msvad_simple (00c7b2306f1ca5389a1ac6d1df9c2e25) C:\Windows\system32\drivers\povrtdev.sys
18:46:40.0956 5864 msvad_simple - ok
18:46:41.0089 5864 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
18:46:41.0149 5864 Mup - ok
18:46:41.0249 5864 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
18:46:41.0349 5864 NativeWifiP - ok
18:46:41.0429 5864 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
18:46:41.0511 5864 NDIS - ok
18:46:41.0563 5864 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
18:46:41.0603 5864 NdisTapi - ok
18:46:41.0653 5864 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
18:46:41.0685 5864 Ndisuio - ok
18:46:41.0862 5864 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
18:46:41.0924 5864 NdisWan - ok
18:46:41.0967 5864 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
18:46:42.0031 5864 NDProxy - ok
18:46:42.0076 5864 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
18:46:42.0128 5864 NetBIOS - ok
18:46:42.0261 5864 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
18:46:42.0383 5864 netbt - ok
18:46:42.0559 5864 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
18:46:42.0611 5864 nfrd960 - ok
18:46:42.0686 5864 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
18:46:42.0753 5864 NisDrv - ok
18:46:42.0968 5864 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
18:46:43.0017 5864 Npfs - ok
18:46:43.0112 5864 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
18:46:43.0146 5864 nsiproxy - ok
18:46:43.0301 5864 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
18:46:43.0715 5864 Ntfs - ok
18:46:43.0871 5864 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
18:46:43.0905 5864 ntrigdigi - ok
18:46:43.0979 5864 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
18:46:44.0000 5864 Null - ok
18:46:44.0039 5864 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
18:46:44.0115 5864 nvraid - ok
18:46:44.0201 5864 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
18:46:44.0276 5864 nvstor - ok
18:46:44.0331 5864 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
18:46:44.0376 5864 nv_agp - ok
18:46:44.0396 5864 NwlnkFlt - ok
18:46:44.0421 5864 NwlnkFwd - ok
18:46:44.0504 5864 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
18:46:44.0562 5864 ohci1394 - ok
18:46:44.0627 5864 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
18:46:44.0713 5864 Parport - ok
18:46:44.0768 5864 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
18:46:44.0830 5864 partmgr - ok
18:46:44.0876 5864 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
18:46:44.0902 5864 Parvdm - ok
18:46:44.0976 5864 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
18:46:44.0979 5864 pci - ok
18:46:45.0028 5864 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
18:46:45.0054 5864 pciide - ok
18:46:45.0110 5864 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
18:46:45.0164 5864 pcmcia - ok
18:46:45.0304 5864 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
18:46:45.0365 5864 pcouffin - ok
18:46:45.0438 5864 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
18:46:45.0490 5864 PEAUTH - ok
18:46:45.0648 5864 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
18:46:45.0738 5864 PptpMiniport - ok
18:46:45.0775 5864 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\DRIVERS\processr.sys
18:46:45.0820 5864 Processor - ok
18:46:45.0917 5864 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
18:46:45.0992 5864 PSched - ok
18:46:46.0041 5864 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
18:46:46.0099 5864 PxHelp20 - ok
18:46:46.0198 5864 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
18:46:46.0251 5864 ql2300 - ok
18:46:46.0289 5864 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
18:46:46.0390 5864 ql40xx - ok
18:46:46.0450 5864 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
18:46:46.0496 5864 QWAVEdrv - ok
18:46:46.0529 5864 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
18:46:46.0541 5864 RasAcd - ok
18:46:46.0579 5864 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:46:46.0660 5864 Rasl2tp - ok
18:46:46.0713 5864 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
18:46:46.0763 5864 RasPppoe - ok
18:46:46.0819 5864 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
18:46:46.0910 5864 RasSstp - ok
18:46:47.0077 5864 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
18:46:47.0179 5864 rdbss - ok
18:46:47.0259 5864 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:46:47.0280 5864 RDPCDD - ok
18:46:47.0337 5864 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
18:46:47.0368 5864 rdpdr - ok
18:46:47.0390 5864 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
18:46:47.0423 5864 RDPENCDD - ok
18:46:47.0490 5864 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
18:46:47.0611 5864 RDPWD - ok
18:46:47.0765 5864 Revoflt (b9bb8e2093c1615ad6ea55ad96214354) C:\Windows\system32\DRIVERS\revoflt.sys
18:46:47.0804 5864 Revoflt - ok
18:46:47.0888 5864 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
18:46:47.0958 5864 rspndr - ok
18:46:48.0048 5864 RTL8169 (7157e70a90cce49deb8885d23a073a39) C:\Windows\system32\DRIVERS\Rtlh86.sys
18:46:48.0136 5864 RTL8169 - ok
18:46:48.0188 5864 RTSTOR (9ff7d9cf3a5f296613588b0e8db83afe) C:\Windows\system32\drivers\RTSTOR.SYS
18:46:48.0283 5864 RTSTOR - ok
18:46:48.0405 5864 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
18:46:48.0406 5864 SASDIFSV - ok
18:46:48.0436 5864 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
18:46:48.0439 5864 SASKUTIL - ok
18:46:48.0625 5864 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
18:46:48.0701 5864 sbp2port - ok
18:46:48.0818 5864 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:46:48.0856 5864 secdrv - ok
18:46:48.0904 5864 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\DRIVERS\serenum.sys
18:46:48.0935 5864 Serenum - ok
18:46:49.0001 5864 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
18:46:49.0028 5864 Serial - ok
18:46:49.0053 5864 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
18:46:49.0086 5864 sermouse - ok
18:46:49.0163 5864 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
18:46:49.0192 5864 sffdisk - ok
18:46:49.0257 5864 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
18:46:49.0286 5864 sffp_mmc - ok
18:46:49.0345 5864 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
18:46:49.0374 5864 sffp_sd - ok
18:46:49.0419 5864 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
18:46:49.0447 5864 sfloppy - ok
18:46:49.0493 5864 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
18:46:49.0550 5864 sisagp - ok
18:46:49.0587 5864 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
18:46:49.0631 5864 SiSRaid2 - ok
18:46:49.0675 5864 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
18:46:49.0734 5864 SiSRaid4 - ok
18:46:49.0806 5864 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
18:46:49.0886 5864 Smb - ok
18:46:49.0947 5864 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
18:46:49.0978 5864 spldr - ok
18:46:50.0082 5864 sptd (a199171385be17973fd800fa91f8f78a) C:\Windows\system32\Drivers\sptd.sys
18:46:50.0082 5864 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: a199171385be17973fd800fa91f8f78a
18:46:50.0086 5864 sptd ( LockedFile.Multi.Generic ) - warning
18:46:50.0086 5864 sptd - detected LockedFile.Multi.Generic (1)
18:46:50.0146 5864 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
18:46:50.0196 5864 srv - ok
18:46:50.0299 5864 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
18:46:50.0343 5864 srv2 - ok
18:46:50.0374 5864 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
18:46:50.0422 5864 srvnet - ok
18:46:50.0544 5864 SVRPEDRV (3e4239b92139f7174a0da7d53fe5e1ab) C:\Windows\System32\sysprep\PEDrv.sys
18:46:50.0572 5864 SVRPEDRV - ok
18:46:50.0638 5864 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
18:46:50.0663 5864 swenum - ok
18:46:50.0760 5864 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
18:46:50.0798 5864 Symc8xx - ok
18:46:50.0831 5864 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
18:46:50.0885 5864 Sym_hi - ok
18:46:50.0953 5864 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
18:46:50.0993 5864 Sym_u3 - ok
18:46:51.0083 5864 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
18:46:51.0140 5864 SynTP - ok
18:46:51.0313 5864 Tcpip (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\drivers\tcpip.sys
18:46:51.0462 5864 Tcpip - ok
18:46:51.0518 5864 Tcpip6 (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\DRIVERS\tcpip.sys
18:46:51.0532 5864 Tcpip6 - ok
18:46:51.0675 5864 tcpipreg (3fc13f09af9be487c7b4fac4070a036c) C:\Windows\system32\drivers\tcpipreg.sys
18:46:51.0727 5864 tcpipreg - ok
18:46:51.0777 5864 tdcmdpst (6fdfba25002ce4bac463ac866ae71405) C:\Windows\system32\DRIVERS\tdcmdpst.sys
18:46:51.0819 5864 tdcmdpst - ok
18:46:51.0878 5864 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
18:46:51.0908 5864 TDPIPE - ok
18:46:51.0954 5864 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
18:46:51.0995 5864 TDTCP - ok
18:46:52.0088 5864 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
18:46:52.0181 5864 tdx - ok
18:46:52.0299 5864 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
18:46:52.0358 5864 TermDD - ok
18:46:52.0570 5864 tosporte (d4d846314710c0f48eed940d9c212b97) C:\Windows\system32\DRIVERS\tosporte.sys
18:46:52.0624 5864 tosporte - ok
18:46:52.0682 5864 tosrfbd (5a991984ac8a03dccade5a25cb3640b6) C:\Windows\system32\DRIVERS\tosrfbd.sys
18:46:52.0724 5864 tosrfbd - ok
18:46:52.0797 5864 Tosrfbnp (1ae2ba74b2a4f5a358b13fcd35258c30) C:\Windows\system32\Drivers\tosrfbnp.sys
18:46:52.0848 5864 Tosrfbnp - ok
18:46:52.0904 5864 Tosrfcom (5ba1ca3b3cddb1ddc67df473f05d1ec2) C:\Windows\system32\Drivers\tosrfcom.sys
18:46:52.0975 5864 Tosrfcom - ok
18:46:53.0024 5864 Tosrfhid (7dfd6b1077b3ff19877fd67a04fed2a2) C:\Windows\system32\DRIVERS\Tosrfhid.sys
18:46:53.0090 5864 Tosrfhid - ok
18:46:53.0144 5864 tosrfnds (c52fd27b9adf3a1f22cb90e6bcf9b0cb) C:\Windows\system32\DRIVERS\tosrfnds.sys
18:46:53.0179 5864 tosrfnds - ok
18:46:53.0332 5864 TosRfSnd (ab6fd13d7efa2634fa6bdf84c7ef0696) C:\Windows\system32\drivers\tosrfsnd.sys
18:46:53.0383 5864 TosRfSnd - ok
18:46:53.0424 5864 tosrfusb (68bbca15147ee5f9dd5281056e8ea715) C:\Windows\system32\DRIVERS\tosrfusb.sys
18:46:53.0478 5864 tosrfusb - ok
18:46:53.0554 5864 tos_sps32 (1ea5f27c29405bf49799feca77186da9) C:\Windows\system32\DRIVERS\tos_sps32.sys
18:46:53.0645 5864 tos_sps32 - ok
18:46:53.0724 5864 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:46:53.0761 5864 tssecsrv - ok
18:46:53.0869 5864 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
18:46:53.0900 5864 tunmp - ok
18:46:53.0955 5864 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
18:46:54.0015 5864 tunnel - ok
18:46:54.0062 5864 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
18:46:54.0101 5864 TVALZ - ok
18:46:54.0148 5864 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
18:46:54.0215 5864 uagp35 - ok
18:46:54.0287 5864 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
18:46:54.0322 5864 udfs - ok
18:46:54.0399 5864 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
18:46:54.0461 5864 uliagpkx - ok
18:46:54.0514 5864 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
18:46:54.0655 5864 uliahci - ok
18:46:54.0702 5864 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
18:46:54.0736 5864 UlSata - ok
18:46:54.0779 5864 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
18:46:54.0819 5864 ulsata2 - ok
18:46:54.0864 5864 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
18:46:54.0913 5864 umbus - ok
18:46:55.0038 5864 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\Windows\system32\Drivers\usbaapl.sys
18:46:55.0101 5864 USBAAPL - ok
18:46:55.0182 5864 usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
18:46:55.0290 5864 usbaudio - ok
18:46:55.0367 5864 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
18:46:55.0442 5864 usbccgp - ok
18:46:55.0494 5864 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
18:46:55.0585 5864 usbcir - ok
18:46:55.0648 5864 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
18:46:55.0694 5864 usbehci - ok
18:46:55.0756 5864 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
18:46:55.0818 5864 usbhub - ok
18:46:55.0878 5864 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
18:46:55.0911 5864 usbohci - ok
18:46:55.0971 5864 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
18:46:56.0009 5864 usbprint - ok
18:46:56.0086 5864 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
18:46:56.0178 5864 usbscan - ok
18:46:56.0267 5864 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:46:56.0338 5864 USBSTOR - ok
18:46:56.0393 5864 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
18:46:56.0430 5864 usbuhci - ok
18:46:56.0473 5864 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
18:46:56.0518 5864 usbvideo - ok
18:46:56.0545 5864 VComm - ok
18:46:56.0585 5864 VcommMgr - ok
18:46:56.0631 5864 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
18:46:56.0669 5864 vga - ok
18:46:56.0709 5864 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
18:46:56.0746 5864 VgaSave - ok
18:46:56.0786 5864 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
18:46:56.0845 5864 viaagp - ok
18:46:56.0896 5864 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
18:46:56.0941 5864 ViaC7 - ok
18:46:56.0991 5864 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
18:46:57.0018 5864 viaide - ok
18:46:57.0083 5864 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
18:46:57.0137 5864 volmgr - ok
18:46:57.0407 5864 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
18:46:57.0457 5864 volmgrx - ok
18:46:57.0564 5864 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
18:46:57.0658 5864 volsnap - ok
18:46:57.0854 5864 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
18:46:57.0948 5864 vsmraid - ok
18:46:58.0060 5864 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
18:46:58.0094 5864 WacomPen - ok
18:46:58.0177 5864 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:46:58.0258 5864 Wanarp - ok
18:46:58.0275 5864 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:46:58.0277 5864 Wanarpv6 - ok
18:46:58.0344 5864 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
18:46:58.0377 5864 Wd - ok
18:46:58.0453 5864 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
18:46:58.0519 5864 Wdf01000 - ok
18:46:58.0762 5864 WinUSB (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\WinUSB.sys
18:46:58.0808 5864 WinUSB - ok
18:46:58.0993 5864 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
18:46:59.0022 5864 WmiAcpi - ok
18:46:59.0160 5864 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
18:46:59.0221 5864 WpdUsb - ok
18:46:59.0285 5864 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
18:46:59.0318 5864 ws2ifsl - ok
18:46:59.0483 5864 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
18:46:59.0613 5864 WudfPf - ok
18:46:59.0676 5864 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:46:59.0721 5864 WUDFRd - ok
18:46:59.0832 5864 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
18:47:00.0301 5864 \Device\Harddisk0\DR0 - ok
18:47:00.0309 5864 Boot (0x1200) (b2e37c293852c7eecc3cd2ea270e2180) \Device\Harddisk0\DR0\Partition0
18:47:00.0311 5864 \Device\Harddisk0\DR0\Partition0 - ok
18:47:00.0322 5864 ============================================================
18:47:00.0322 5864 Scan finished
18:47:00.0322 5864 ============================================================
18:47:00.0357 5792 Detected object count: 1
18:47:00.0357 5792 Actual detected object count: 1
18:47:37.0446 5792 sptd ( LockedFile.Multi.Generic ) - skipped by user
18:47:37.0446 5792 sptd ( LockedFile.Multi.Generic ) - User select action: Skip
18:47:57.0526 4396 Deinitialize success


Here is the GMER log...
GMER 1.0.15.15641 - http://www.gmer.net
Rootkit scan 2012-02-27 22:43:19
Windows 6.0.6002 Service Pack 2 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 WDC_WD1600BEVS-26VAT0 rev.11.01A11
Running: tqbbgx72.exe; Driver: C:\Users\Krista\AppData\Local\Temp\fwliqkob.sys


---- System - GMER 1.0.15 ----

SSDT \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS ZwTerminateProcess [0x8C553640]

INT 0x61 ? 84690CC8
INT 0x71 ? 84690CC8
INT 0x72 ? 86085CC8
INT 0x72 ? 86085CC8
INT 0x72 ? 86085CC8
INT 0x81 ? 84690CC8
INT 0x81 ? 84690CC8
INT 0x81 ? 84690CC8
INT 0x81 ? 84690CC8
INT 0x81 ? 84690CC8
INT 0x81 ? 84690CC8
INT 0x81 ? 84690CC8
INT 0x82 ? 86085CC8
INT 0x92 ? 86085CC8
INT 0x92 ? 86085CC8
INT 0x92 ? 86085CC8

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!KeSetEvent + 621 820EADA4 4 Bytes [40, 36, 55, 8C]
.text sptd.sys 80609000 6 Bytes [06, 81, 01, 82, 60, EF]
.text sptd.sys 80609007 3 Bytes [82, C0, EE] {ADD AL, -0x12}
.text sptd.sys 8060900B 21 Bytes [82, A8, 26, 01, 82, EC, 25, ...]
.text sptd.sys 80609024 4 Bytes [D2, 83, 73, 80]
.text sptd.sys 8060902C 100 Bytes [02, 46, 25, 82, 23, C9, 1E, ...]
.text ...
.sptd2 C:\Windows\System32\Drivers\sptd.sys entry point in ".sptd2" section [0x80700D38]
? C:\Windows\System32\Drivers\sptd.sys The process cannot access the file because it is being used by another process.
.text C:\Windows\system32\DRIVERS\tos_sps32.sys section is writeable [0x8335D000, 0x4036D, 0xE8000020]
.dsrt C:\Windows\system32\DRIVERS\tos_sps32.sys unknown last section [0x833A6000, 0x510, 0x40000040]
.text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x8BA0B000, 0x1FB52A, 0xE8000020]
.text USBPORT.SYS!DllUnload 8C15041B 5 Bytes JMP 860851D8
.vmp2 C:\Windows\system32\drivers\acedrv11.sys entry point in ".vmp2" section [0x9D93069D]

---- Kernel IAT/EAT - GMER 1.0.15 ----

IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUchar] [8060AFE0] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortUlong] [8060A574] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUchar] [8060A0C0] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortWritePortBufferUshort] [8060B1BC] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortUshort] [8060A2A4] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\drivers\atapi.sys[ataport.SYS!AtaPortReadPortBufferUshort] [8060A362] \SystemRoot\System32\Drivers\sptd.sys
IAT \SystemRoot\system32\DRIVERS\i8042prt.sys[HAL.dll!READ_PORT_UCHAR] [8061F312] \SystemRoot\System32\Drivers\sptd.sys

---- User IAT/EAT - GMER 1.0.15 ----

IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusShutdown] [73367817] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCloneImage] [733BA86D] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDrawImageRectI] [7336BB22] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetInterpolationMode] [7335F695] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdiplusStartup] [733675E9] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateFromHDC] [7335E7CA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStreamICM] [73398395] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipCreateBitmapFromStream] [7336DA60] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageHeight] [7335FFFA] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipGetImageWidth] [7335FF61] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDisposeImage] [733571CF] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFileICM] [733ECAE2] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipLoadImageFromFile] [7338C8D8] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipDeleteGraphics] [7335D968] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipFree] [73356853] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipAlloc] [7335687E] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)
IAT C:\Windows\Explorer.EXE[2012] @ C:\Windows\Explorer.EXE [gdiplus.dll!GdipSetCompositingMode] [73362AD1] C:\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6002.18342_none_9e54f8aaca13c773\gdiplus.dll (Microsoft GDI+/Microsoft Corporation)

---- Devices - GMER 1.0.15 ----

Device \FileSystem\Ntfs \Ntfs 846981F8
Device \Driver\netbt \Device\NetBT_Tcpip_{F05516A4-FB93-4BD5-A316-813F80A4D3F1} 86CF21F8

AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)

Device \Driver\usbohci \Device\USBPDO-0 8608F1F8
Device \Driver\usbohci \Device\USBPDO-1 8608F1F8
Device \Driver\usbehci \Device\USBPDO-2 860901F8
Device \Driver\usbohci \Device\USBPDO-3 8608F1F8
Device \Driver\usbohci \Device\USBPDO-4 8608F1F8
Device \Driver\usbehci \Device\USBPDO-5 860901F8
Device \Driver\cdrom \Device\CdRom0 85FCA430
Device \Driver\atapi \Device\Ide\IdeDeviceP0T0L0-0 846961F8
Device \Driver\atapi \Device\Ide\IdeDeviceP2T0L0-2 846961F8
Device \Driver\atapi \Device\Ide\IdePort0 846961F8
Device \Driver\atapi \Device\Ide\IdePort1 846961F8
Device \Driver\atapi \Device\Ide\IdePort2 846961F8
Device \Driver\atapi \Device\Ide\IdePort3 846961F8
Device \Driver\atapi \Device\Ide\IdePort4 846961F8
Device \Driver\atapi \Device\Ide\IdePort5 846961F8
Device \Driver\atapi \Device\Ide\IdePort6 846961F8
Device \Driver\atapi \Device\Ide\IdePort7 846961F8
Device \Driver\msahci \Device\Ide\PciIde0Channel0 846971F8
Device \Driver\msahci \Device\Ide\PciIde0Channel1 846971F8
Device \Driver\msahci \Device\Ide\PciIde0Channel2 846971F8
Device \Driver\msahci \Device\Ide\PciIde0Channel3 846971F8
Device \Driver\msahci \Device\Ide\PciIde0Channel4 846971F8
Device \Driver\msahci \Device\Ide\PciIde0Channel5 846971F8
Device \Driver\netbt \Device\NetBt_Wins_Export 86CF21F8
Device \Driver\Smb \Device\NetbiosSmb 86D53430
Device \Driver\iScsiPrt \Device\RaidPort0 860B21F8
Device \Driver\usbohci \Device\USBFDO-0 8608F1F8
Device \Driver\usbohci \Device\USBFDO-1 8608F1F8
Device \Driver\usbehci \Device\USBFDO-2 860901F8
Device \Driver\usbohci \Device\USBFDO-3 8608F1F8
Device \Driver\usbohci \Device\USBFDO-4 8608F1F8
Device \Driver\usbehci \Device\USBFDO-5 860901F8
Device \Driver\netbt \Device\NetBT_Tcpip_{B0F31E43-512B-499E-AAA1-E7828F7C5D43} 86CF21F8
Device \FileSystem\cdfs \Cdfs 84B9B430

---- Registry - GMER 1.0.15 ----

Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s1 771343423
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@s2 285507792
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg@h0 1
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\CurrentControlSet\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x94 0xAE 0xF2 0x66 ...
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04 (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@h0 0
Reg HKLM\SYSTEM\ControlSet003\Services\sptd\Cfg\0D79C293C1ED61418462E24595C90D04@ujdew 0x94 0xAE 0xF2 0x66 ...
Reg HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SPP@LastIndex 1628

---- EOF - GMER 1.0.15 ----


Here is the Avast log....
aswMBR version 0.9.9.1649 Copyright© 2011 AVAST Software
Run date: 2012-02-28 00:13:19
-----------------------------
00:13:19.442 OS Version: Windows 6.0.6002 Service Pack 2
00:13:19.442 Number of processors: 2 586 0x301
00:13:19.444 ComputerName: KRISTA-LAPTOP UserName: Krista
00:13:22.689 Initialize success
00:13:50.849 AVAST engine defs: 12022701
00:13:53.300 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0
00:13:53.313 Disk 0 Vendor: WDC_WD1600BEVS-26VAT0 11.01A11 Size: 152627MB BusType: 3
00:13:53.349 Disk 0 MBR read successfully
00:13:53.358 Disk 0 MBR scan
00:13:53.451 Disk 0 Windows VISTA default MBR code
00:13:53.474 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 1500 MB offset 2048
00:13:53.494 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 145086 MB offset 3074048
00:13:53.534 Disk 0 Partition 3 00 17 Hidd HPFS/NTFS NTFS 6040 MB offset 300210176
00:13:53.553 Disk 0 scanning sectors +312580096
00:13:53.694 Disk 0 scanning C:\Windows\system32\drivers
00:14:26.881 Service scanning
00:14:47.363 Service MpNWMon C:\Windows\system32\DRIVERS\MpNWMon.sys **LOCKED** 32
00:15:05.258 Service sptd C:\Windows\System32\Drivers\sptd.sys **LOCKED** 32
00:15:18.513 Modules scanning
00:15:47.819 Disk 0 trace - called modules:
00:15:47.834
00:15:51.308 AVAST engine scan C:\Windows
00:16:03.323 AVAST engine scan C:\Windows\system32
00:25:32.164 AVAST engine scan C:\Windows\system32\drivers
00:26:13.014 AVAST engine scan C:\Users\Krista
01:01:48.778 AVAST engine scan C:\ProgramData
01:10:29.986 Scan finished successfully
07:06:48.921 Disk 0 MBR has been saved successfully to "C:\Users\Krista\Documents\MBR.dat"
07:06:48.933 The log file has been saved successfully to "C:\Users\Krista\Documents\aswMBR.txt"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:38 AM

Posted 29 February 2012 - 03:10 AM

Download

http://download.bleepingcomputer.com/rootrepeal/MBRCheck.exe

Download MBRCheck.exe to your Desktop. Run the application.

If no infection is found, it will produce a report on the desktop. Post that report in your next reply.

If an infection is found, you will be presented with the following dialog:

Enter 'Y' and hit ENTER for more options, or 'N' to exit:

Type N and press Enter. A report will be produced on the desktop. Post that report in your next reply.


Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

#5 kcguru

kcguru
  • Topic Starter

  • Members
  • 82 posts
  • OFFLINE
  •  
  • Local time:09:38 AM

Posted 01 March 2012 - 09:08 AM

Here is the MBRCheck log....


MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows Vista Home Premium Edition
Windows Information: Service Pack 2 (build 6002), 32-bit
Base Board Manufacturer: TOSHIBA
BIOS Manufacturer: Insyde Corp.
System Manufacturer: TOSHIBA
System Product Name: Satellite L305D
Logical Drives Mask: 0x00000014

Kernel Drivers (total 153):
0x8204C000 \SystemRoot\system32\ntkrnlpa.exe
0x82019000 \SystemRoot\system32\hal.dll
0x80405000 \SystemRoot\system32\kdcom.dll
0x8040C000 \SystemRoot\system32\PSHED.dll
0x8041D000 \SystemRoot\system32\BOOTVID.dll
0x80425000 \SystemRoot\system32\CLFS.SYS
0x80466000 \SystemRoot\system32\CI.dll
0x80546000 \SystemRoot\system32\drivers\Wdf01000.sys
0x805B7000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x80602000 \SystemRoot\System32\Drivers\sptd.sys
0x80715000 \SystemRoot\System32\Drivers\WMILIB.SYS
0x8071E000 \SystemRoot\System32\Drivers\SCSIPORT.SYS
0x80744000 \SystemRoot\system32\drivers\acpi.sys
0x8078A000 \SystemRoot\system32\drivers\msisadrv.sys
0x80792000 \SystemRoot\system32\drivers\pci.sys
0x807B9000 \SystemRoot\System32\drivers\partmgr.sys
0x807C8000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x807CB000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x807D5000 \SystemRoot\system32\drivers\volmgr.sys
0x8260F000 \SystemRoot\System32\drivers\volmgrx.sys
0x82659000 \SystemRoot\system32\drivers\pciide.sys
0x82660000 \SystemRoot\system32\drivers\PCIIDEX.SYS
0x8266E000 \SystemRoot\System32\drivers\mountmgr.sys
0x8267E000 \SystemRoot\system32\drivers\atapi.sys
0x82686000 \SystemRoot\system32\drivers\ataport.SYS
0x826A4000 \SystemRoot\system32\drivers\msahci.sys
0x826AE000 \SystemRoot\system32\drivers\fltmgr.sys
0x826E0000 \SystemRoot\system32\drivers\fileinfo.sys
0x826F0000 \SystemRoot\System32\Drivers\PxHelp20.sys
0x826FA000 \SystemRoot\System32\Drivers\ksecdd.sys
0x83000000 \SystemRoot\system32\drivers\ndis.sys
0x8310B000 \SystemRoot\system32\drivers\msrpc.sys
0x83136000 \SystemRoot\system32\drivers\NETIO.SYS
0x83203000 \SystemRoot\System32\Drivers\Ntfs.sys
0x83313000 \SystemRoot\system32\drivers\volsnap.sys
0x8334C000 \SystemRoot\system32\DRIVERS\TVALZ_O.SYS
0x83351000 \SystemRoot\system32\DRIVERS\tos_sps32.sys
0x8339C000 \SystemRoot\System32\Drivers\spldr.sys
0x833A4000 \SystemRoot\System32\Drivers\mup.sys
0x833B3000 \SystemRoot\System32\drivers\ecache.sys
0x833DA000 \SystemRoot\system32\drivers\disk.sys
0x83171000 \SystemRoot\system32\drivers\CLASSPNP.SYS
0x833EB000 \SystemRoot\system32\drivers\crcdisk.sys
0x833F4000 \SystemRoot\system32\DRIVERS\AtiPcie.sys
0x831B4000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x831BF000 \SystemRoot\system32\DRIVERS\tunmp.sys
0x831C8000 \SystemRoot\system32\DRIVERS\FwLnk.sys
0x831D0000 \SystemRoot\system32\DRIVERS\processr.sys
0x833FC000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8AE00000 \SystemRoot\system32\DRIVERS\atikmdag.sys
0x8B2CF000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x8B36F000 \SystemRoot\System32\drivers\watchdog.sys
0x8B37B000 \SystemRoot\system32\DRIVERS\Rtlh86.sys
0x8B600000 \SystemRoot\system32\DRIVERS\athr.sys
0x8B6E7000 \SystemRoot\system32\DRIVERS\tdcmdpst.sys
0x8B6F1000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8B709000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x8B70F000 \SystemRoot\system32\DRIVERS\usbohci.sys
0x8B719000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x8B757000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x8B766000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x8B39C000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x8B7F3000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x8B3AF000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x8B7FE000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x8B3DF000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x8B3EA000 \SystemRoot\System32\Drivers\tosrfcom.sys
0x8276C000 \SystemRoot\system32\DRIVERS\msiscsi.sys
0x8279B000 \SystemRoot\system32\DRIVERS\storport.sys
0x831DF000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x831EA000 \SystemRoot\system32\drivers\povrtdev.sys
0x805C5000 \SystemRoot\system32\drivers\portcls.sys
0x8BA01000 \SystemRoot\system32\drivers\drmk.sys
0x8BA26000 \SystemRoot\system32\drivers\ks.sys
0x8BA50000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x8BA67000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x8BA72000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x8BA95000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x8BAA4000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x8BAB8000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x8BACD000 \SystemRoot\System32\Drivers\pcouffin.sys
0x8BAD9000 \SystemRoot\system32\DRIVERS\termdd.sys
0x8BAE9000 \SystemRoot\system32\DRIVERS\swenum.sys
0x8BAEB000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x8BAF5000 \SystemRoot\system32\DRIVERS\umbus.sys
0x8BB02000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x8BB37000 \SystemRoot\system32\DRIVERS\tosporte.sys
0x8BB43000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x8BC00000 \SystemRoot\system32\drivers\RTKVHDA.sys
0x8BE0E000 \SystemRoot\system32\DRIVERS\AGRSM.sys
0x8BF2A000 \SystemRoot\system32\drivers\modem.sys
0x8BF37000 \SystemRoot\system32\DRIVERS\MpFilter.sys
0x8BF5E000 \SystemRoot\System32\Drivers\Fs_Rec.SYS
0x8BF67000 \SystemRoot\System32\Drivers\Null.SYS
0x8BF6E000 \SystemRoot\System32\Drivers\Beep.SYS
0x8BF75000 \SystemRoot\System32\drivers\vga.sys
0x8BF81000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x8BFA2000 \SystemRoot\system32\drivers\RTSTOR.SYS
0x8BFB6000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x8BFBE000 \SystemRoot\system32\drivers\rdpencdd.sys
0x8BFC6000 \SystemRoot\System32\Drivers\Msfs.SYS
0x8BFD1000 \SystemRoot\System32\Drivers\Npfs.SYS
0x8BFDF000 \SystemRoot\System32\DRIVERS\rasacd.sys
0x8C009000 \SystemRoot\System32\drivers\tcpip.sys
0x8C0F6000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8C111000 \SystemRoot\system32\DRIVERS\tdx.sys
0x8C127000 \SystemRoot\system32\DRIVERS\smb.sys
0x8C13B000 \SystemRoot\system32\drivers\afd.sys
0x8C183000 \SystemRoot\System32\DRIVERS\netbt.sys
0x8C1B5000 \SystemRoot\system32\DRIVERS\pacer.sys
0x8C1CB000 \SystemRoot\system32\DRIVERS\jswpslwf.sys
0x8C1D0000 \SystemRoot\system32\DRIVERS\netbios.sys
0x8C1DE000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x8BB54000 \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
0x8C1F1000 \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
0x8BB76000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x8BFE8000 \SystemRoot\system32\drivers\nsiproxy.sys
0x8BBB2000 \SystemRoot\System32\Drivers\dfsc.sys
0x8BFF2000 \SystemRoot\System32\Drivers\crashdmp.sys
0x8BE00000 \SystemRoot\System32\Drivers\dump_dumpata.sys
0x8BBC9000 \SystemRoot\System32\Drivers\dump_msahci.sys
0x95890000 \SystemRoot\System32\win32k.sys
0x8BBD3000 \SystemRoot\System32\drivers\Dxapi.sys
0x8BBDD000 \SystemRoot\system32\DRIVERS\monitor.sys
0x95AB0000 \SystemRoot\System32\TSDDD.dll
0x95AD0000 \SystemRoot\System32\cdd.dll
0x95AE0000 \SystemRoot\System32\ATMFD.DLL
0x83192000 \SystemRoot\system32\drivers\luafv.sys
0x827DC000 \SystemRoot\system32\drivers\WudfPf.sys
0x9A00F000 \SystemRoot\system32\drivers\spsys.sys
0x9A0BF000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x9A0CF000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x9A0F9000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x9A103000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x9A116000 \SystemRoot\system32\drivers\HTTP.sys
0x9A183000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x9A1A0000 \SystemRoot\system32\DRIVERS\bowser.sys
0x9A1B9000 \SystemRoot\System32\drivers\mpsdrv.sys
0x9A1CE000 \SystemRoot\system32\drivers\mrxdav.sys
0x9B60D000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x9B62C000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x9B665000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x9B67D000 \SystemRoot\System32\DRIVERS\srv2.sys
0x9B6A5000 \SystemRoot\System32\DRIVERS\srv.sys
0x9B6F4000 \??\C:\Windows\system32\drivers\acedrv11.sys
0x9B720000 \SystemRoot\system32\DRIVERS\MpNWMon.sys
0xA2606000 \SystemRoot\system32\drivers\peauth.sys
0xA26E4000 \SystemRoot\System32\Drivers\secdrv.SYS
0xA26EE000 \SystemRoot\System32\drivers\tcpipreg.sys
0xA26FA000 \SystemRoot\system32\DRIVERS\NisDrvWFP.sys
0xA2709000 \??\C:\Windows\system32\drivers\mbam.sys
0xA270D000 \SystemRoot\system32\DRIVERS\cdfs.sys
0x76DC0000 \Windows\System32\ntdll.dll

Processes (total 91):
0 System Idle Process
4 System
448 C:\Windows\System32\smss.exe
580 csrss.exe
640 C:\Windows\System32\wininit.exe
648 csrss.exe
688 C:\Windows\System32\services.exe
700 C:\Windows\System32\lsass.exe
708 C:\Windows\System32\lsm.exe
864 C:\Windows\System32\svchost.exe
900 C:\Windows\System32\winlogon.exe
960 C:\Windows\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
1008 C:\Windows\System32\svchost.exe
1060 C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
1200 C:\Windows\System32\Ati2evxx.exe
1228 C:\Windows\System32\svchost.exe
1288 C:\Windows\System32\svchost.exe
1332 C:\Windows\System32\svchost.exe
1424 C:\Windows\System32\audiodg.exe
1456 C:\Windows\System32\svchost.exe
1480 C:\Windows\System32\SLsvc.exe
1528 C:\Windows\System32\svchost.exe
1640 C:\Windows\System32\Ati2evxx.exe
1792 C:\Windows\System32\svchost.exe
1928 C:\Windows\System32\wlanext.exe
124 C:\Windows\System32\spoolsv.exe
372 C:\Windows\System32\svchost.exe
1800 C:\Windows\System32\dwm.exe
1004 C:\Windows\System32\taskeng.exe
1508 C:\Windows\System32\taskeng.exe
396 C:\Windows\explorer.exe
2108 C:\Program Files\SUPERAntiSpyware\SASCore.exe
2188 C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
2224 C:\Windows\System32\agrsmsvc.exe
2244 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
2308 C:\Program Files\Bonjour\mDNSResponder.exe
2336 C:\Program Files\TOSHIBA\ConfigFree\CFSvcs.exe
2564 C:\Windows\System32\svchost.exe
2780 C:\Program Files\Seagate\SeagateManager\Sync\FreeAgentService.exe
2948 C:\TOSHIBA\IVP\ISM\pinger.exe
2964 C:\Windows\System32\svchost.exe
2980 C:\Program Files\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
3040 C:\Windows\System32\svchost.exe
3160 C:\Windows\RtHDVCpl.exe
3180 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3196 C:\Program Files\TOSHIBA\Power Saver\TPwrMain.exe
3260 C:\Program Files\TOSHIBA\SmoothView\SmoothView.exe
3276 C:\TOSHIBA\IVP\swupdate\swupdtmr.exe
3292 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
3316 C:\Program Files\TOSHIBA\TOSHIBA DVD PLAYER\TNaviSrv.exe
3356 C:\Windows\System32\TODDSrv.exe
3376 C:\Program Files\TomTom HOME 2\TomTomHOMEService.exe
3400 C:\Program Files\TOSHIBA\Power Saver\TosCoSrv.exe
3508 C:\Program Files\TOSHIBA\SMARTLogService\TosIPCSrv.exe
3552 C:\Windows\System32\svchost.exe
3568 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
3632 C:\Windows\System32\SearchIndexer.exe
3764 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
3824 C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
2272 C:\Program Files\TOSHIBA\FlashCards\TCrdMain.exe
2376 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
2572 C:\Program Files\TOSHIBA\ConfigFree\NDSTray.exe
2556 C:\Program Files\Common Files\Real\Update_OB\realsched.exe
2408 C:\Program Files\Canon\MyPrinter\BJMYPRT.EXE
2400 C:\Program Files\Seagate\SeagateManager\FreeAgent Status\stxmenumgr.exe
2700 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
1408 C:\Program Files\Microsoft Security Client\msseces.exe
2652 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
1660 C:\Program Files\Common Files\Java\Java Update\jusched.exe
1672 C:\Program Files\iTunes\iTunesHelper.exe
2792 C:\Program Files\TOSHIBA\TOSCDSPD\TOSCDSPD.exe
2924 C:\Windows\ehome\ehtray.exe
2996 C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe
2088 C:\Program Files\Skype\Phone\Skype.exe
2452 C:\Program Files\TomTom HOME 2\TomTomHOMERunner.exe
1260 C:\Program Files\Windows Media Player\wmpnscfg.exe
1296 C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
1164 C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
1096 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
3220 C:\Program Files\Windows Media Player\wmpnetwk.exe
4220 C:\Windows\ehome\ehmsas.exe
4320 C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
4456 C:\Program Files\iPod\bin\iPodService.exe
4652 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
4704 C:\Program Files\TOSHIBA\ConfigFree\CFSwMgr.exe
6008 C:\Windows\System32\svchost.exe
4348 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
1564 C:\Windows\System32\SearchProtocolHost.exe
5488 C:\Windows\System32\svchost.exe
1632 C:\Users\Krista\Desktop\MBRCheck.exe
3700 C:\Windows\System32\conime.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`5dd00000 (NTFS)

PhysicalDrive0 Model Number: WDCWD1600BEVS-26VAT0, Rev: 11.01A11

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 Windows 2008 MBR code detected
SHA1: BBAD517F7EAC529451E4B9586C847AE190574F61


Done!

The ESET finished a scan but locked up before I could export the list of detected threats. It found 2 infections and cleaned them, it was Win32/Toolbar.Zugo. After running the scan again, it came up clean but computer still locking up.

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:09:38 AM

Posted 02 March 2012 - 02:26 AM

That looks good

Download

http://download.bleepingcomputer.com/farbar/ListParts.exe

Click on Scan button.

Scan result will open in Notepad.
Post it in your next reply.




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users