Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Continuous trojan wornings from Vipre & Firefox redirction


  • This topic is locked This topic is locked
24 replies to this topic

#1 dinkelchen

dinkelchen

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 03 March 2012 - 06:25 PM

Hi
my laptops seems to be full of viruses. I am running Vipre but I think I had the firewall switched off for a few days because I had trouble with connecting a network printer. Since I switched the firwall back on there are continous warning messages from Vipre that known bad files (Trojans) are being stopeed from opening (the names seems to vary continously). The scanning finds viruses, which i remove. I also did scans with Malware and SuperAntiSpyware, which finds different things everytime, even after removing things. When using the Firefox I dont seem to be able to access any website because I am redirected.

Here are my logs

.
DDS (Ver_2011-08-26.01) - NTFSx86
Internet Explorer: 8.0.6001.18702 BrowserJavaVersion: 1.6.0_22
Run by Antonio at 16:43:23 on 2012-03-03
Microsoft Windows XP Professional 5.1.2600.3.1252.34.3082.18.3070.2084 [GMT 1:00]
.
AV: GFI Software VIPRE *Disabled/Updated* {964FCE60-0B18-4D30-ADD6-EB178909041C}
FW: GFI Software VIPRE *Disabled*
.
============== Running Processes ===============
.
C:\WINDOWS\system32\svchost -k DcomLaunch
svchost.exe
C:\WINDOWS\System32\svchost.exe -k netsvcs
C:\Archivos de programa\Intel\Wireless\Bin\S24EvMon.exe
svchost.exe
svchost.exe
C:\WINDOWS\system32\spoolsv.exe
svchost.exe
C:\Archivos de programa\Archivos comunes\ArcSoft\Connection Service\Bin\ACService.exe
C:\Archivos de programa\Archivos comunes\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Archivos de programa\AskBarDis\bar\bin\AskService.exe
C:\Archivos de programa\AskBarDis\bar\bin\ASKUpgrade.exe
C:\Archivos de programa\Bonjour\mDNSResponder.exe
C:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Archivos de programa\Intel\Wireless\Bin\EvtEng.exe
C:\WINDOWS\system32\svchost.exe -k hpdevmgmt
C:\ARCHIV~1\Iomega\System32\AppServices.exe
C:\Archivos de programa\Java\jre6\bin\jqs.exe
C:\Archivos de programa\Livedrive\VSSService.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe -k HPZ12
C:\Archivos de programa\Intel\Wireless\Bin\RegSrvc.exe
C:\Archivos de programa\GFI Software\VIPRE\SBAMSvc.exe
C:\Archivos de programa\GFI Software\VIPRE\SBPIMSvc.exe
C:\Archivos de programa\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
C:\WINDOWS\system32\svchost.exe -k imgsvc
C:\Archivos de programa\o2\Mobile Connection Manager\ImpWiFiSvc.exe
C:\Archivos de programa\TomTom HOME 2\TomTomHOMEService.exe
C:\Archivos de programa\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
C:\Archivos de programa\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
C:\Archivos de programa\Intel\Wireless\Bin\WLKeeper.exe
C:\Archivos de programa\Iomega\AutoDisk\ADService.exe
C:\Archivos de programa\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\wuauclt.exe
C:\Archivos de programa\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Archivos de programa\Intel\Wireless\bin\ZCfgSvc.exe
C:\WINDOWS\system32\KADxMain.exe
C:\Archivos de programa\Creative\Mixer\CTSVolFE.exe
C:\Archivos de programa\GFI Software\VIPRE\SBAMTray.exe
C:\Archivos de programa\Intel\Wireless\Bin\ifrmewrk.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
C:\Archivos de programa\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Documents and Settings\Antonio\Datos de programa\Dropbox\bin\Dropbox.exe
C:\Archivos de programa\Malwarebytes' Anti-Malware\mbam.exe
C:\WINDOWS\notepad.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
uSearch Page = hxxp://www.google.es/hws/sb/dell-row/es/side.html?channel=es
uDefault_Page_URL = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
uSearch Bar = hxxp://www.google.es/hws/sb/dell-row/es/side.html?channel=es
uInternet Settings,ProxyOverride = *.local
mSearchAssistant = hxxp://www.google.com/ie
uURLSearchHooks: H - No File
uWinlogon: Shell=c:\documents and settings\antonio\configuración local\datos de programa\e927f25b\X
BHO: Aplicación auxiliar de vínculos de Adobe PDF Reader: {06849e9f-c8d7-4d59-b87d-784b7d6be0b3} - c:\archivos de programa\archivos comunes\adobe\acrobat\activex\AcroIEHelper.dll
BHO: AskBar BHO: {201f27d4-3704-41d6-89c1-aa35e39143ed} - c:\archivos de programa\askbardis\bar\bin\askBar.dll
BHO: Search Helper: {6ebf7485-159f-4bff-a14f-b9e3aac4465b} - c:\archivos de programa\microsoft\search enhancement pack\search helper\SEPsearchhelperie.dll
BHO: Google Toolbar Helper: {aa58ed58-01dd-4d91-8333-cf10577473f7} - c:\archivos de programa\google\google toolbar\GoogleToolbar_32.dll
BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - c:\archivos de programa\skype\toolbars\internet explorer\skypeieplugin.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\archivos de programa\google\googletoolbarnotifier\5.7.7227.1100\swg.dll
BHO: CBrowserHelperObject Object: {ca6319c0-31b7-401e-a518-a07c3db8f777} - c:\archivos de programa\dell\bae\BAE.dll
BHO: Bing Bar BHO: {d2ce3e00-f94a-4740-988e-03dc2f38c34f} - c:\archivos de programa\msn toolbar\platform\6.3.2291.0\npwinext.dll
BHO: Java™ Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\archivos de programa\java\jre6\bin\jp2ssv.dll
BHO: JQSIEStartDetectorImpl Class: {e7e6f031-17ce-4c07-bc86-eabfe594f69c} - c:\archivos de programa\java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
BHO: BrowserHelper Class: {edf48a39-1442-463f-9f4e-f376a78d034a} - c:\archivos de programa\livedrive\LivedriveExplorerExtensions.dll
TB: Ask Toolbar: {3041d03e-fd4b-44e0-b742-2d9b88305f98} - c:\archivos de programa\askbardis\bar\bin\askBar.dll
TB: @c:\archivos de programa\msn toolbar\platform\6.3.2291.0\npwinext.dll,-100: {8dcb7100-df86-4384-8842-8fa844297b3f} - c:\archivos de programa\msn toolbar\platform\6.3.2291.0\npwinext.dll
TB: Google Toolbar: {2318c2b1-4965-11d4-9b18-009027a5cd4f} - c:\archivos de programa\google\google toolbar\GoogleToolbar_32.dll
uRun: [CTFMON.EXE] c:\windows\system32\ctfmon.exe
uRun: [swg] "c:\archivos de programa\google\googletoolbarnotifier\GoogleToolbarNotifier.exe"
uRun: [HP Deskjet 3050A J611 series (NET)] "c:\archivos de programa\hp\hp deskjet 3050a j611 series\bin\ScanToPCActivationApp.exe" -deviceID "CN18T4128P05PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
mRun: [SynTPEnh] c:\archivos de programa\synaptics\syntp\SynTPEnh.exe
mRun: [NvCplDaemon] RUNDLL32.EXE c:\windows\system32\NvCpl.dll,NvStartup
mRun: [NVHotkey] rundll32.exe nvHotkey.dll,Start
mRun: [NvMediaCenter] RUNDLL32.EXE c:\windows\system32\NvMcTray.dll,NvTaskbarInit
mRun: [IntelZeroConfig] "c:\archivos de programa\intel\wireless\bin\ZCfgSvc.exe"
mRun: [KADxMain] c:\windows\system32\KADxMain.exe
mRun: [CTSVolFE.exe] "c:\archivos de programa\creative\mixer\CTSVolFE.exe" /r
mRun: [Adobe Reader Speed Launcher] "c:\archivos de programa\adobe\reader 8.0\reader\Reader_sl.exe"
mRun: [APSDaemon] "c:\archivos de programa\archivos comunes\apple\apple application support\APSDaemon.exe"
mRun: [SBAMTray] "c:\archivos de programa\gfi software\vipre\SBAMTray.exe"
mRun: [Microsoft Default Manager] "c:\archivos de programa\microsoft\search enhancement pack\default manager\DefMgr.exe" -resume
mRun: [SBRegRebootCleaner] "c:\archivos de programa\gfi software\vipre\SBRC.exe"
mRun: [IntelWireless] "c:\archivos de programa\intel\wireless\bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
dRun: [CTFMON.EXE] c:\windows\system32\CTFMON.EXE
StartupFolder: c:\docume~1\antonio\menini~1\progra~1\inicio\dropbox.lnk - c:\documents and settings\antonio\datos de programa\dropbox\bin\Dropbox.exe
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportar a Microsoft Excel - c:\archiv~1\micros~2\office12\EXCEL.EXE/3000
IE: Enviar a &Bluetooth - c:\archivos de programa\widcomm\bluetooth software\btsendto_ie_ctx.htm
IE: {e2e2dd38-d088-4134-82b7-f2ba38496583} - %windir%\Network Diagnostic\xpnetdiag.exe
IE: {FB5F1910-F110-11d2-BB9E-00C04F795683} - c:\archivos de programa\messenger\msmsgs.exe
IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - c:\archivos de programa\skype\toolbars\internet explorer\skypeieplugin.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\archiv~1\micros~2\office11\REFIEBAR.DLL
LSP: mswsock.dll
DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} - hxxp://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} - hxxp://www.facebook.com/controls/contactx.dll
DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} - hxxp://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} - hxxp://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab
DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} - hxxps://www.cert.fnmt.es/content/pages_std/ficheros_apps_usuarios/capicom.cab
DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxps://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} - hxxp://www.mypix.com/es/es/importer/ImageUploader4.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - c:\archivos de programa\skype\toolbars\internet explorer\skypeieplugin.dll
Notify: !SASWinLogon - c:\archivos de programa\superantispyware\SASWINLO.DLL
Notify: GoToAssist - c:\archivos de programa\citrix\gotoassist\615\G2AWinLogon.dll
SSODL: WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - c:\windows\system32\WPDShServiceObj.dll
SEH: SABShellExecuteHook Class: {5ae067d3-9afb-48e0-853a-ebb7f4a000da} - c:\archivos de programa\superantispyware\SASSEH.DLL
Hosts: 88.84.92.24 pre.vodafonefacil.es
.
================= FIREFOX ===================
.
FF - ProfilePath - c:\documents and settings\antonio\datos de programa\mozilla\firefox\profiles\d1btvxmv.default\
FF - plugin: c:\archivos de programa\archivos comunes\mpdrm\NPMPDRM.dll
FF - plugin: c:\archivos de programa\google\google earth\plugin\npgeplugin.dll
FF - plugin: c:\archivos de programa\google\picasa3\npPicasa3.dll
FF - plugin: c:\archivos de programa\google\update\1.3.21.99\npGoogleUpdate3.dll
FF - plugin: c:\archivos de programa\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\archivos de programa\microsoft silverlight\4.1.10111.0\npctrlui.dll
FF - plugin: c:\archivos de programa\mozilla firefox\plugins\npdeployJava1.dll
FF - plugin: c:\archivos de programa\mozilla firefox\plugins\npDimdimControl.dll
.
============= SERVICES / DRIVERS ===============
.
R1 CbFs;CbFs;c:\windows\system32\drivers\cbfs.sys [2012-1-24 146904]
R1 mfehidk;McAfee Inc. mfehidk;c:\windows\system32\drivers\mfehidk.sys [2008-4-10 214664]
R1 SASDIFSV;SASDIFSV;c:\archivos de programa\superantispyware\SASDIFSV.SYS [2006-10-10 8944]
R1 SASKUTIL;SASKUTIL;c:\archivos de programa\superantispyware\SASKUTIL.SYS [2007-2-27 55024]
R1 sbaphd;sbaphd;c:\windows\system32\drivers\sbaphd.sys [2010-9-1 21240]
R1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [2010-8-31 335224]
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [2011-10-26 101112]
R1 SbTis;SbTis;c:\windows\system32\drivers\sbtis.sys [2010-8-31 217976]
R1 tidnet;TID NDIS Protocol Driver;c:\windows\system32\drivers\tidnet.sys [2010-11-11 26008]
R2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [2010-2-24 185472]
R2 ASKService;ASKService;c:\archivos de programa\askbardis\bar\bin\AskService.exe [2009-11-21 464264]
R2 ASKUpgrade;ASKUpgrade;c:\archivos de programa\askbardis\bar\bin\ASKUpgrade.exe [2009-11-21 234888]
R2 LivedriveVSSService;Livedrive VSS Service;c:\archivos de programa\livedrive\VSSService.exe [2012-2-7 155320]
R2 SBAMSvc;VIPRE Internet Security;c:\archivos de programa\gfi software\vipre\SBAMSvc.exe [2011-11-1 3287472]
R2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [2010-9-1 77816]
R2 SBPIMSvc;SB Recovery Service;c:\archivos de programa\gfi software\vipre\SBPIMSvc.exe [2011-11-1 173424]
R2 TGCM_ImportWiFiSvc;TGCM_ImportWiFiSvc;c:\archivos de programa\o2\mobile connection manager\ImpWiFiSvc.exe [2010-11-11 199600]
R2 TomTomHOMEService;TomTomHOMEService;c:\archivos de programa\tomtom home 2\TomTomHOMEService.exe [2011-4-22 92592]
R2 VmbService;Servicio de Vodafone Mobile Broadband;c:\archivos de programa\vodafone\vodafone mobile broadband\bin\VmbService.exe [2010-4-28 9216]
R2 WDDMService;WD SmartWare Drive Manager;c:\archivos de programa\western digital\wd smartware\wd drive manager\WDDMService.exe [2009-11-13 110592]
R2 WDSmartWareBackgroundService;WD SmartWare Background Service;c:\archivos de programa\western digital\wd smartware\front parlor\WDSmartWareBackgroundService.exe [2009-6-16 20480]
R3 dfmirage;dfmirage;c:\windows\system32\drivers\dfmirage.sys [2009-3-28 31896]
R3 MBAMSwissArmy;MBAMSwissArmy;c:\windows\system32\drivers\mbamswissarmy.sys [2012-3-3 40776]
R3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [2010-5-29 94584]
S0 ati0bixx;ati0bixx;c:\windows\system32\drivers\ati0bixx.sys --> c:\windows\system32\drivers\ati0bixx.sys [?]
S0 ati2mtxx;ati2mtxx;c:\windows\system32\drivers\ati2mtxx.sys --> c:\windows\system32\drivers\ati2mtxx.sys [?]
S0 ati3wexx;ati3wexx;c:\windows\system32\drivers\ati3wexx.sys --> c:\windows\system32\drivers\ati3wexx.sys [?]
S0 ati7elxx;ati7elxx;c:\windows\system32\drivers\ati7elxx.sys --> c:\windows\system32\drivers\ati7elxx.sys [?]
S0 ati7nuxx;ati7nuxx;c:\windows\system32\drivers\ati7nuxx.sys --> c:\windows\system32\drivers\ati7nuxx.sys [?]
S2 aawservice;Sigfilt;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 AGV;Iviaspi;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 antivirscheduler;FTDIBUS;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 antivirservice;Usbcm;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avfilter;P17;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avg7core;Epsonbidirectionalagent;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avg7rsxp;Rtl8185;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avg7updsvc;Msftesql;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avgascln;W55U01;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avgclean;Cpqvcagent;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avgems;Pageserver;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avgfwsrv;Cyberpowerups;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avgio;Mcstrm;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avgmfx86;Wdelmgr20;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avgntflt;Pnrouter;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avhook;Bc_pat_f;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 avp;Wanusb;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 aw_host;Queuemgr;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 awlegacy;Udfreadr_xp;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 axinstsv;6to4;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 BRGSp50;PCASp50;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ca-messagequeuing;NEOFLTR_600_13319;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ccevtmgr;Hap16v2k;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ccproxy;Vmnetadapter;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ccpwdsvc;Kraidsvc;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ccsetmgr;S217unic;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 clientservice;Enxpsvc;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 cmdagent;LHidUsbK;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 CTMFLT;Atitunep;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 CTMMOUNT;Tifm21;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 CTMSHD;Winpowermonitor;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 DirectUpdate;Lpx;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 DivisCTP;VC4CB104;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 DivisCTS;Risdptsk;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 DMUSBUSBDCam;Omniserv;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 fsssvc;Aexnsclienttransport;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ghostsec;BcmSqlStartupSvc;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 gupdate1c9e8e03fb09428;Google Update Service (gupdate1c9e8e03fb09428);c:\archivos de programa\google\update\GoogleUpdate.exe [2009-6-9 133104]
S2 GV600_4;Lvupdtio;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ikfileflt;Carboncopy32;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ikhfile;AVWLP_USB;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ikhlayer;Regdefend;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 iksyssec;Bdfsfltr;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 kavsvc;Rnadiagreceiver;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 kl1;W810mdm;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 klif;Fd16_700;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 lfsfilt;Svcwrsssdk;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 LMIRfsDriver;Rp_fws;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 LRMINIPORT;W550mdfl;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mcafeeframework;S616mdfl;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mcdetect.exe;VAIOMediaPlatform-VideoServer-UPnP;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mcpromgr;SNMP;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mcproxy;Bb-run;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mcrdsvc;Cwafadminmonitor;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mcshield;Mssqlserverolapservice;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mctaskmanager;Tphdexlgsvc;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mctskshd.exe;Igfx;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mcupdmgr.exe;Se59unic;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mcusrmgr;USBDongle;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mcvsrte;Uhcd;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mirrorv3;Athr;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mksupdateint;Tosrfhid;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mksvirmonsvc;Drvnddm;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 mpfirewl;InCDsrvR;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 navap;FA312;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 navapsvc;Alcxwdm;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 naveng;Omsad;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 navex15;NxSysMon;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ndasbus;Cardex;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ndasscsi;Cygserver;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ofcservice;Asuskbnt;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 pav_service;Lxrjd31s;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 pavagente;Lexbces;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 pavatscheduler;Avsinc;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 pavreport;Pilogsrv;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 pavsrv;Wkscfgsrv;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 pctavsvc;NetwareWorkstation;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 pctfw1;Diskperf;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 pctoolsfirewallplus;Mwlsvc;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 PEVSystemStart;Iaimfp0;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 RalinkRegistryWriter;Racsvc;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 RAPIProtocol;Websensewfreportserver;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 savrt;Kpfwsvc;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 savscan;Axsaki;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 sbservice;Pxfhmdfl;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 sdcoreservice;Btwavdt;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 Slpsvdr;S217obex;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 snoopfree;Apfiltrservice;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 starwindservice;Nvmpu401;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 symantecantibotagent;Pwd_2K;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 symantecantibotfilter;S716unic;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 symantecantibotwatcher;Ntuneservice;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 TeamViewer;Epfwndis;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 vet-filt;HSX_DP;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 vet-rec;V2imount;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 veteboot;Vstor2-ws60;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 vetefile;AFGMp50;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 vetfddnt;MSSQL$AUTODESKVAULT;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 vetmonnt;Sony_ssm.sys;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 vsdatant;Btcsrusb;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 vsmon;UMPass;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 webrootenterpriseclientservice;Mqdmserd;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 webrootspysweeperservice;NWSNS;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 xfilt;Dlbu_device;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ZDCNDIS5;W800mdfl;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S2 ZY202_XP;Pdlnsx25;c:\windows\system32\svchost.exe -k netsvcs [2004-9-8 14336]
S3 gupdatem;Servicio de Google Update (gupdatem);c:\archivos de programa\google\update\GoogleUpdate.exe [2009-6-9 133104]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2012-1-31 10240]
S3 massfilter_hs;USB Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter_hs.sys [2012-1-31 9728]
S3 mfeavfk;McAfee Inc. mfeavfk;c:\windows\system32\drivers\mfeavfk.sys [2008-4-10 79816]
S3 mfebopk;McAfee Inc. mfebopk;c:\windows\system32\drivers\mfebopk.sys [2008-4-10 35272]
S3 mferkdk;McAfee Inc. mferkdk;c:\windows\system32\drivers\mferkdk.sys [2008-4-10 34248]
S3 mfesmfk;McAfee Inc. mfesmfk;c:\windows\system32\drivers\mfesmfk.sys [2008-4-10 40552]
S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [2009-8-23 18432]
S3 SASENUM;SASENUM;c:\archivos de programa\superantispyware\SASENUM.SYS [2006-2-16 4096]
S3 SBFWIMCLMP;GFI Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [2010-5-29 94584]
S3 SbHips;sbhips;c:\windows\system32\drivers\sbhips.sys [2010-8-31 93816]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [2010-1-23 11520]
S3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\drivers\ZTEusbnet.sys [2011-1-11 114688]
S3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\drivers\zteusbvoice.sys [2011-1-11 105856]
.
=============== File Associations ===============
.
regfile=regedit.exe "%1" %*
scrfile="%1" %*
.
=============== Created Last 30 ================
.
2012-03-03 15:43:33 54016 ----a-w- c:\windows\system32\drivers\nfxhkrd.sys
2012-03-03 15:10:25 40776 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2012-02-26 20:13:19 -------- d-----w- c:\documents and settings\antonio\datos de programa\TuneUp Software
2012-02-26 19:32:02 110 ----a-w- c:\documents and settings\antonio\datos de programa\netstat.bat
2012-02-26 16:18:44 465408 ------w- c:\windows\system32\dllcache\smtpsvc.dll
2012-02-26 14:10:14 -------- d-----w- c:\documents and settings\all users\datos de programa\AVAST Software
2012-02-26 14:10:14 -------- d-----w- c:\archivos de programa\AVAST Software
2012-02-26 13:56:18 -------- d-s---w- C:\ComFix14882C
2012-02-26 13:54:47 -------- d-s---w- C:\ComFix6767C
2012-02-26 13:51:43 -------- d-s---w- C:\ComFix24352C
2012-02-26 13:48:08 -------- d-s---w- C:\ComFix
2012-02-26 08:02:03 -------- d-----w- c:\archivos de programa\CCleaner
2012-02-26 06:13:14 -------- d-----w- c:\archivos de programa\Livedrive
2012-02-25 22:46:34 -------- d-----w- c:\documents and settings\antonio\datos de programa\SUPERAntiSpyware.com
2012-02-25 22:22:12 -------- d-----w- c:\documents and settings\antonio\datos de programa\Malwarebytes
2012-02-25 11:00:20 0 --sha-w- c:\windows\system32\dds_log_trash.cmd
2012-02-17 07:01:24 -------- d-----w- c:\documents and settings\all users\datos de programa\DatacardService
2012-02-16 11:34:55 3072 ------w- c:\windows\system32\iacenc.dll
2012-02-16 11:34:55 3072 ------w- c:\windows\system32\dllcache\iacenc.dll
2012-02-13 17:22:03 286720 ----a-w- c:\windows\iun507.exe
2012-02-13 17:21:45 -------- d-----w- C:\Primo Mathematik 2
2012-02-07 15:48:56 578232 ----a-w- c:\windows\system32\LivedriveControlPanel.cpl
2012-02-04 20:09:57 6912 ----a-w- c:\windows\system32\drivers\serscan.sys
2012-02-04 20:09:57 6912 ----a-w- c:\windows\system32\dllcache\serscan.sys
2012-02-04 17:37:23 -------- d-----w- c:\archivos de programa\Microsoft
2012-02-04 17:37:17 -------- d-----w- c:\archivos de programa\MSN Toolbar
2012-02-04 17:36:19 -------- d-----w- c:\archivos de programa\Bing Bar Installer
2012-02-04 17:36:03 -------- d-----w- c:\documents and settings\all users\datos de programa\HP Photo Creations
2012-02-04 17:36:03 -------- d-----w- c:\archivos de programa\HP Photo Creations
2012-02-04 17:35:12 544616 ------w- c:\windows\system32\HPDiscoPMa011.dll
2012-02-04 17:35:09 488296 ----a-w- c:\windows\system32\HPWia1_DJ3050A_J611.dll
2012-02-04 17:35:09 1929576 ----a-w- c:\windows\system32\HPScanTRDrv_DJ3050A_J611.dll
2012-02-04 17:34:53 429928 ----a-w- c:\windows\system32\hpinkstsa011.dll
2012-02-04 17:34:53 270696 ----a-w- c:\windows\system32\hpinkstsa011LM.dll
2012-02-04 17:34:53 216424 ----a-w- c:\windows\system32\hpinkcoia011.dll
.
==================== Find3M ====================
.
2012-01-12 17:20:19 1860096 ----a-w- c:\windows\system32\win32k.sys
2011-12-25 17:33:04 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-17 19:41:52 916992 ----a-w- c:\windows\system32\wininet.dll
2011-12-17 19:41:52 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-12-17 19:41:52 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-12-16 12:23:17 385024 ----a-w- c:\windows\system32\html.iec
2011-12-10 14:24:06 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2008-06-08 22:19:01 62910 ----a-w- c:\archivos de programa\Uninstall.exe
.
============= FINISH: 16:45:11,09 ===============
Attached File  attach.txt   341.76KB   1 downloads

Attached Files

  • Attached File  ark.txt   6.54KB   0 downloads


BC AdBot (Login to Remove)

 


#2 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:01 AM

Posted 04 March 2012 - 02:42 AM

Hello and Welcome to the forums!

My name is Gringo and I'll be glad to help you with your computer problems.

Somethings to remember while we are working together.

  • Do not run any other tool untill instructed to do so!
  • please Do not Attach logs or put in code boxes.
  • Tell me about any problems that have occurred during the fix.
  • Tell me of any other symptoms you may be having as these can help also.
  • Do not run anything while running a fix.
  • Do not run any other tool untill instructed to do so!


Click on the Watch Topic Button and select Immediate Notification and click on proceed, this will help you to get notified faster when I have replied and make the cleaning process faster.

Please print out or make a copy in notpad of any instructions given, as sometimes it is necessary to go offline and you will lose access to them.

Run Combofix:

You may be asked to install or update the Recovery Console (Win XP Only) if this happens please allow it to do so (you will need to be connected to the internet for this)

Before you run Combofix I will need you to turn off any security software you have running, If you do not know how to do this you can find out >here< or >here<

Combofix may need to reboot your computer more than once to do its job this is normal.

You can download Combofix from one of these links.
Link 1
Link 2
Link 3
1. Close any open browsers or any other programs that are open.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.

Double click on combofix.exe & follow the prompts.
When finished, it will produce a report for you.

Note 1: Do not mouseclick combofix's window while it's running. That may cause it to stall

Note 2: If you recieve an error "Illegal operation attempted on a registery key that has been marked for deletion." Please restart the computer

"information and logs"

  • In your next post I need the following
  • Log from Combofix
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#3 dinkelchen

dinkelchen
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 04 March 2012 - 04:22 AM

Hi Gringo
thank you for your quick reply.
I have downloaded the comboFix and run it. It says that there is no Recovery Console ( I htink in some of the fixing instrictions from someby else I saw that it was supposed to switch off, which I did. I dont know how to switch it back on.) ComboFix showed that it was downloading it but then the window closes and nothing else happens.
The connection manager is, by the way, conitnouly showing that it is assigning IP adress.
Another question: should I do the steps you are describing in Normal mode or in Safe mode?
Thank you very much
Dinkelchen

#4 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:01 AM

Posted 04 March 2012 - 05:06 AM

Hello

Normal mode unless I ask different


Greetings

I want you to run these next,

tdsskiller:

Please read carefully and follow these steps.
  • Download TDSSKiller and save it to your Desktop.
  • doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

Please download aswMBR to your desktop.
  • Double click the aswMBR.exe icon to run it
  • it will ask to download extra definitions - ALLOW IT
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

If you have any problems running either one come back and let me know

please reply with the reports from TDSSKiller and aswMBR

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#5 dinkelchen

dinkelchen
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 04 March 2012 - 05:42 AM


11:24:37.0484 11092 TDSS rootkit removing tool 2.7.18.0 Mar 2 2012 09:40:07
11:24:37.0546 11092 ============================================================
11:24:37.0546 11092 Current date / time: 2012/03/04 11:24:37.0546
11:24:37.0546 11092 SystemInfo:
11:24:37.0546 11092
11:24:37.0546 11092 OS Version: 5.1.2600 ServicePack: 3.0
11:24:37.0546 11092 Product type: Workstation
11:24:37.0546 11092 ComputerName: DELL_KATRIN
11:24:37.0546 11092 UserName: Antonio
11:24:37.0546 11092 Windows directory: C:\WINDOWS
11:24:37.0546 11092 System windows directory: C:\WINDOWS
11:24:37.0546 11092 Processor architecture: Intel x86
11:24:37.0546 11092 Number of processors: 2
11:24:37.0546 11092 Page size: 0x1000
11:24:37.0546 11092 Boot type: Normal boot
11:24:37.0546 11092 ============================================================
11:24:38.0765 11092 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
11:24:38.0765 11092 Drive \Device\Harddisk1\DR7 - Size: 0x7D800000 (1.96 Gb), SectorSize: 0x200, Cylinders: 0xFF, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
11:24:38.0765 11092 \Device\Harddisk0\DR0:
11:24:38.0765 11092 MBR used
11:24:38.0765 11092 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3AD4F, BlocksNum 0x248598BD
11:24:38.0812 11092 \Device\Harddisk1\DR7:
11:24:38.0812 11092 MBR used
11:24:38.0875 11092 Initialize success
11:24:38.0875 11092 ============================================================
11:24:51.0359 11560 ============================================================
11:24:51.0359 11560 Scan started
11:24:51.0359 11560 Mode: Manual;
11:24:51.0359 11560 ============================================================
11:24:51.0953 11560 61883 (914a9709fc3bf419ad2f85547f2a4832) C:\WINDOWS\system32\DRIVERS\61883.sys
11:24:51.0953 11560 61883 - ok
11:24:51.0984 11560 Abiosdsk - ok
11:24:52.0015 11560 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
11:24:52.0015 11560 abp480n5 - ok
11:24:52.0062 11560 acedrv11 (e6f53d6c0dea3d375362265e175ca638) C:\WINDOWS\system32\drivers\acedrv11.sys
11:24:52.0062 11560 acedrv11 - ok
11:24:52.0109 11560 ACPI (cf2a07e1751a2d612d7e13aa431ab057) C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:24:52.0109 11560 ACPI - ok
11:24:52.0125 11560 ACPIEC (1c905333c0b9f3d7c68ddf25e54b00f9) C:\WINDOWS\system32\drivers\ACPIEC.sys
11:24:52.0125 11560 ACPIEC - ok
11:24:52.0140 11560 adfs - ok
11:24:52.0171 11560 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
11:24:52.0171 11560 adpu160m - ok
11:24:52.0218 11560 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
11:24:52.0218 11560 aec - ok
11:24:52.0265 11560 AegisP (a1ad1a4a9f18d900ca9c93fa3efdcb56) C:\WINDOWS\system32\DRIVERS\AegisP.sys
11:24:52.0265 11560 AegisP - ok
11:24:52.0328 11560 Afc (a7b8a3a79d35215d798a300df49ed23f) C:\WINDOWS\system32\drivers\Afc.sys
11:24:52.0328 11560 Afc - ok
11:24:52.0421 11560 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
11:24:52.0437 11560 AFD - ok
11:24:52.0484 11560 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
11:24:52.0484 11560 agp440 - ok
11:24:52.0500 11560 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
11:24:52.0500 11560 agpCPQ - ok
11:24:52.0531 11560 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
11:24:52.0531 11560 Aha154x - ok
11:24:52.0546 11560 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
11:24:52.0546 11560 aic78u2 - ok
11:24:52.0562 11560 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
11:24:52.0562 11560 aic78xx - ok
11:24:52.0609 11560 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
11:24:52.0609 11560 AliIde - ok
11:24:52.0640 11560 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
11:24:52.0640 11560 alim1541 - ok
11:24:52.0687 11560 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
11:24:52.0687 11560 amdagp - ok
11:24:52.0734 11560 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
11:24:52.0734 11560 amsint - ok
11:24:52.0828 11560 APPDRV (ec94e05b76d033b74394e7b2175103cf) C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
11:24:52.0828 11560 APPDRV - ok
11:24:52.0953 11560 Arp1394 (b5b8a80875c1dededa8b02765642c32f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:24:52.0953 11560 Arp1394 - ok
11:24:53.0015 11560 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
11:24:53.0031 11560 asc - ok
11:24:53.0046 11560 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
11:24:53.0046 11560 asc3350p - ok
11:24:53.0078 11560 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
11:24:53.0078 11560 asc3550 - ok
11:24:53.0187 11560 Aspi32 (54ab078660e536da72b21a27f56b035b) C:\WINDOWS\system32\drivers\aspi32.sys
11:24:53.0187 11560 Aspi32 - ok
11:24:53.0250 11560 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:24:53.0250 11560 AsyncMac - ok
11:24:53.0296 11560 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
11:24:53.0296 11560 atapi - ok
11:24:53.0328 11560 Atdisk - ok
11:24:53.0343 11560 ati0bixx - ok
11:24:53.0375 11560 ati2mtxx - ok
11:24:53.0390 11560 ati3wexx - ok
11:24:53.0406 11560 ati7elxx - ok
11:24:53.0421 11560 ati7nuxx - ok
11:24:53.0515 11560 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:24:53.0531 11560 Atmarpc - ok
11:24:53.0562 11560 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
11:24:53.0562 11560 audstub - ok
11:24:53.0625 11560 Avc (f8e6956a614f15a0860474c5e2a7de6b) C:\WINDOWS\system32\DRIVERS\avc.sys
11:24:53.0625 11560 Avc - ok
11:24:53.0859 11560 bcm4sbxp (cd4646067cc7dcba1907fa0acf7e3966) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
11:24:53.0859 11560 bcm4sbxp - ok
11:24:53.0968 11560 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
11:24:53.0968 11560 Beep - ok
11:24:54.0140 11560 btaudio (8893ae0b6b9b60e0521a60e8b2160216) C:\WINDOWS\system32\drivers\btaudio.sys
11:24:54.0140 11560 btaudio - ok
11:24:54.0171 11560 BTDriver (fde318e3569f57264af74b7e431f60ae) C:\WINDOWS\system32\DRIVERS\btport.sys
11:24:54.0187 11560 BTDriver - ok
11:24:54.0250 11560 BTKRNL (9c3c8b9e2eda516eb44b51dab81dbd68) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
11:24:54.0250 11560 BTKRNL - ok
11:24:54.0296 11560 BTSERIAL (089f7526ff41c17b0a43896d0553d5a2) C:\WINDOWS\system32\drivers\btserial.sys
11:24:54.0296 11560 BTSERIAL - ok
11:24:54.0343 11560 BTWDNDIS (28531ab3183f498e58d93d585e6a6b70) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
11:24:54.0343 11560 BTWDNDIS - ok
11:24:54.0359 11560 btwhid (c5c0e21c67089f053b964e0a8b8adbac) C:\WINDOWS\system32\DRIVERS\btwhid.sys
11:24:54.0359 11560 btwhid - ok
11:24:54.0375 11560 btwmodem (7d295223c172ab4d61dc256721b2f09e) C:\WINDOWS\system32\DRIVERS\btwmodem.sys
11:24:54.0375 11560 btwmodem - ok
11:24:54.0406 11560 BTWUSB (56c701580f2891952761362ba7594b3d) C:\WINDOWS\system32\Drivers\btwusb.sys
11:24:54.0406 11560 BTWUSB - ok
11:24:54.0593 11560 catchme - ok
11:24:54.0656 11560 CbFs (a975187f3c8867f8d00a698a5282672b) C:\WINDOWS\system32\drivers\cbfs.sys
11:24:54.0656 11560 CbFs - ok
11:24:54.0671 11560 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
11:24:54.0671 11560 cbidf - ok
11:24:54.0687 11560 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
11:24:54.0687 11560 cbidf2k - ok
11:24:54.0750 11560 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
11:24:54.0750 11560 CCDECODE - ok
11:24:54.0843 11560 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
11:24:54.0843 11560 cd20xrnt - ok
11:24:54.0890 11560 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
11:24:54.0890 11560 Cdaudio - ok
11:24:54.0906 11560 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
11:24:54.0906 11560 Cdfs - ok
11:24:54.0984 11560 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:24:54.0984 11560 Cdrom - ok
11:24:55.0062 11560 Changer - ok
11:24:55.0156 11560 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
11:24:55.0156 11560 CmBatt - ok
11:24:55.0187 11560 CmdIde (2f86ab1a85e4ecd37c3a88f45d706548) C:\WINDOWS\system32\DRIVERS\cmdide.sys
11:24:55.0187 11560 CmdIde - ok
11:24:55.0218 11560 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys
11:24:55.0218 11560 Compbatt - ok
11:24:55.0265 11560 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
11:24:55.0265 11560 Cpqarray - ok
11:24:55.0437 11560 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
11:24:55.0453 11560 dac2w2k - ok
11:24:55.0484 11560 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
11:24:55.0484 11560 dac960nt - ok
11:24:55.0625 11560 dfmirage (d8cd6a2a94f545858eec6117f0d5dff4) C:\WINDOWS\system32\DRIVERS\dfmirage.sys
11:24:55.0625 11560 dfmirage - ok
11:24:55.0656 11560 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
11:24:55.0656 11560 Disk - ok
11:24:55.0781 11560 dmboot (c252a99c0a78b39faa2e2d1d048b1050) C:\WINDOWS\system32\drivers\dmboot.sys
11:24:55.0796 11560 dmboot - ok
11:24:55.0828 11560 dmio (33b4d4039cd2cb25351a7bf13b2988d9) C:\WINDOWS\system32\drivers\dmio.sys
11:24:55.0828 11560 dmio - ok
11:24:55.0875 11560 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
11:24:55.0875 11560 dmload - ok
11:24:55.0906 11560 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
11:24:55.0921 11560 DMusic - ok
11:24:56.0000 11560 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
11:24:56.0000 11560 dpti2o - ok
11:24:56.0031 11560 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
11:24:56.0031 11560 drmkaud - ok
11:24:56.0125 11560 DXEC02 (0c8762b91b967a91373e0e022b62acfc) C:\WINDOWS\system32\drivers\dxec02.sys
11:24:56.0125 11560 DXEC02 - ok
11:24:56.0218 11560 EL90XBC (6e883bf518296a40959131c2304af714) C:\WINDOWS\system32\DRIVERS\el90xbc5.sys
11:24:56.0218 11560 EL90XBC - ok
11:24:56.0531 11560 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
11:24:56.0531 11560 Fastfat - ok
11:24:56.0578 11560 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
11:24:56.0578 11560 Fdc - ok
11:24:56.0640 11560 Fips (e5e61f2c07344e91dbfb7eafde549ab4) C:\WINDOWS\system32\drivers\Fips.sys
11:24:56.0640 11560 Fips - ok
11:24:56.0687 11560 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:24:56.0687 11560 Flpydisk - ok
11:24:56.0750 11560 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
11:24:56.0750 11560 FltMgr - ok
11:24:56.0796 11560 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:24:56.0796 11560 Fs_Rec - ok
11:24:56.0812 11560 Ftdisk (cc5f3af5711a1c7c8fa1d43bb16b401a) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:24:56.0812 11560 Ftdisk - ok
11:24:56.0890 11560 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
11:24:56.0890 11560 GEARAspiWDM - ok
11:24:57.0000 11560 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:24:57.0000 11560 Gpc - ok
11:24:57.0140 11560 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
11:24:57.0140 11560 HDAudBus - ok
11:24:57.0203 11560 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:24:57.0203 11560 HidUsb - ok
11:24:57.0265 11560 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
11:24:57.0265 11560 hpn - ok
11:24:57.0359 11560 HPZid412 (d03d10f7ded688fecf50f8fbf1ea9b8a) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
11:24:57.0359 11560 HPZid412 - ok
11:24:57.0390 11560 HPZipr12 (89f41658929393487b6b7d13c8528ce3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
11:24:57.0390 11560 HPZipr12 - ok
11:24:57.0468 11560 HPZius12 (abcb05ccdbf03000354b9553820e39f8) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
11:24:57.0468 11560 HPZius12 - ok
11:24:57.0531 11560 HSFHWAZL (290cdbb05903742ea06b7203c5a662f5) C:\WINDOWS\system32\DRIVERS\HSFHWAZL.sys
11:24:57.0546 11560 HSFHWAZL - ok
11:24:57.0578 11560 HSF_DPV (7ab812355f98858b9ecdd46e6fcc221f) C:\WINDOWS\system32\DRIVERS\HSF_DPV.sys
11:24:57.0593 11560 HSF_DPV - ok
11:24:57.0703 11560 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
11:24:57.0718 11560 HTTP - ok
11:24:57.0843 11560 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
11:24:57.0843 11560 i2omgmt - ok
11:24:57.0890 11560 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
11:24:57.0890 11560 i2omp - ok
11:24:57.0937 11560 i8042prt (4a2490a66e8271901e89dd5fb79748ae) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:24:57.0937 11560 i8042prt - ok
11:24:58.0140 11560 iaStor (fd7f9d74c2b35dbda400804a3f5ed5d8) C:\WINDOWS\system32\drivers\iaStor.sys
11:24:58.0156 11560 iaStor - ok
11:24:58.0312 11560 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
11:24:58.0312 11560 Imapi - ok
11:24:58.0375 11560 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
11:24:58.0375 11560 ini910u - ok
11:24:58.0421 11560 IntelIde (cdc98c84965ac816b3f76ec388e24078) C:\WINDOWS\system32\DRIVERS\intelide.sys
11:24:58.0421 11560 IntelIde - ok
11:24:58.0484 11560 intelppm (49a060498c09db18c3ea9939789005ab) C:\WINDOWS\system32\DRIVERS\intelppm.sys
11:24:58.0484 11560 intelppm - ok
11:24:58.0546 11560 iomdisk (9d7069d72c0c72952f05e1688a5ae89d) C:\WINDOWS\system32\DRIVERS\iomdisk.sys
11:24:58.0546 11560 iomdisk - ok
11:24:58.0609 11560 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
11:24:58.0609 11560 Ip6Fw - ok
11:24:58.0656 11560 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:24:58.0656 11560 IpFilterDriver - ok
11:24:58.0687 11560 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:24:58.0687 11560 IpInIp - ok
11:24:58.0718 11560 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:24:58.0718 11560 IpNat - ok
11:24:58.0765 11560 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:24:58.0765 11560 IPSec - ok
11:24:59.0265 11560 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
11:24:59.0281 11560 IRENUM - ok
11:24:59.0375 11560 isapnp (0f3d281b0410fe5d482aada37d20524b) C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:24:59.0375 11560 isapnp - ok
11:24:59.0796 11560 Kbdclass (188ddd286bc0daea6984858c6a4d7bbf) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:24:59.0796 11560 Kbdclass - ok
11:24:59.0859 11560 kbdhid (72efebecf76eb1dccc5ba9ea746d90e8) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:24:59.0859 11560 kbdhid - ok
11:24:59.0906 11560 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
11:24:59.0921 11560 kmixer - ok
11:24:59.0984 11560 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
11:25:00.0000 11560 KSecDD - ok
11:25:00.0031 11560 lbrtfdc - ok
11:25:00.0500 11560 massfilter (d5673785903639d186dc345ff86f423f) C:\WINDOWS\system32\drivers\massfilter.sys
11:25:00.0500 11560 massfilter - ok
11:25:00.0546 11560 massfilter_hs (38bfa8fa6d838cbab58a1c2b49ebf96b) C:\WINDOWS\system32\drivers\massfilter_hs.sys
11:25:00.0562 11560 massfilter_hs - ok
11:25:00.0734 11560 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
11:25:00.0734 11560 mdmxsdk - ok
11:25:00.0859 11560 mfeavfk (bafdd5e28baea99d7f4772af2f5ec7ee) C:\WINDOWS\system32\drivers\mfeavfk.sys
11:25:00.0859 11560 mfeavfk - ok
11:25:00.0890 11560 mfebopk (1d003e3056a43d881597d6763e83b943) C:\WINDOWS\system32\drivers\mfebopk.sys
11:25:00.0890 11560 mfebopk - ok
11:25:00.0921 11560 mfehidk (3f138a1c8a0659f329f242d1e389b2cf) C:\WINDOWS\system32\drivers\mfehidk.sys
11:25:00.0921 11560 mfehidk - ok
11:25:00.0984 11560 mferkdk (41fe2f288e05a6c8ab85dd56770ffbad) C:\WINDOWS\system32\drivers\mferkdk.sys
11:25:00.0984 11560 mferkdk - ok
11:25:01.0000 11560 mfesmfk (096b52ea918aa909ba5903d79e129005) C:\WINDOWS\system32\drivers\mfesmfk.sys
11:25:01.0015 11560 mfesmfk - ok
11:25:01.0171 11560 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
11:25:01.0171 11560 mnmdd - ok
11:25:01.0265 11560 Modem (9024556e739b8469d2b8f5f0e4c9bc9f) C:\WINDOWS\system32\drivers\Modem.sys
11:25:01.0265 11560 Modem - ok
11:25:01.0312 11560 Mouclass (6fd36b4994a2363659a65c9f970cfdb7) C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:25:01.0312 11560 Mouclass - ok
11:25:01.0343 11560 mouhid (8ee532e516b2d23d686cfc1cc0a15c25) C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:25:01.0343 11560 mouhid - ok
11:25:01.0359 11560 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
11:25:01.0375 11560 MountMgr - ok
11:25:01.0468 11560 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
11:25:01.0468 11560 mraid35x - ok
11:25:01.0562 11560 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:25:01.0578 11560 MRxDAV - ok
11:25:01.0640 11560 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:25:01.0656 11560 MRxSmb - ok
11:25:01.0765 11560 MSDV (1477849772712bac69c144dcf2c9ce81) C:\WINDOWS\system32\DRIVERS\msdv.sys
11:25:01.0765 11560 MSDV - ok
11:25:01.0796 11560 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
11:25:01.0796 11560 Msfs - ok
11:25:01.0968 11560 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:25:01.0968 11560 MSKSSRV - ok
11:25:02.0046 11560 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:25:02.0046 11560 MSPCLOCK - ok
11:25:02.0078 11560 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
11:25:02.0078 11560 MSPQM - ok
11:25:02.0140 11560 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:25:02.0140 11560 mssmbios - ok
11:25:02.0250 11560 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
11:25:02.0250 11560 MSTEE - ok
11:25:02.0375 11560 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
11:25:02.0375 11560 Mup - ok
11:25:02.0546 11560 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
11:25:02.0546 11560 NABTSFEC - ok
11:25:02.0750 11560 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
11:25:02.0750 11560 NDIS - ok
11:25:02.0812 11560 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
11:25:02.0812 11560 NdisIP - ok
11:25:02.0906 11560 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:25:02.0906 11560 NdisTapi - ok
11:25:02.0937 11560 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:25:02.0937 11560 Ndisuio - ok
11:25:02.0968 11560 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:25:02.0968 11560 NdisWan - ok
11:25:03.0015 11560 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
11:25:03.0015 11560 NDProxy - ok
11:25:03.0109 11560 Netaapl (1352e1648213551923a0a822e441553c) C:\WINDOWS\system32\DRIVERS\netaapl.sys
11:25:03.0109 11560 Netaapl - ok
11:25:03.0140 11560 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
11:25:03.0140 11560 NetBIOS - ok
11:25:03.0187 11560 NetBT (cee832841a0d62f1e416a263de9389e6) C:\WINDOWS\system32\DRIVERS\netbt.sys
11:25:03.0187 11560 Suspicious file (Forged): C:\WINDOWS\system32\DRIVERS\netbt.sys. Real md5: cee832841a0d62f1e416a263de9389e6, Fake md5: 74b2b2f5bea5e9a3dc021d685551bd3d
11:25:03.0187 11560 NetBT ( Virus.Win32.ZAccess.g ) - infected
11:25:03.0187 11560 NetBT - detected Virus.Win32.ZAccess.g (0)
11:25:03.0468 11560 NETw4x32 (b5ab1108b377b5f3d37409fabda01453) C:\WINDOWS\system32\DRIVERS\NETw4x32.sys
11:25:03.0484 11560 NETw4x32 - ok
11:25:03.0546 11560 NIC1394 (e9e47cfb2d461fa0fc75b7a74c6383ea) C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:25:03.0546 11560 NIC1394 - ok
11:25:03.0750 11560 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
11:25:03.0750 11560 Npfs - ok
11:25:05.0687 11560 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
11:25:05.0687 11560 Ntfs - ok
11:25:06.0203 11560 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
11:25:06.0203 11560 Null - ok
11:25:06.0375 11560 nv (e531eaa795a273fc70c9de3f195069c8) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
11:25:06.0531 11560 nv - ok
11:25:06.0812 11560 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:25:06.0812 11560 NwlnkFlt - ok
11:25:06.0859 11560 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:25:06.0859 11560 NwlnkFwd - ok
11:25:07.0000 11560 OEM02Dev (9d20fa5d8875f6063aa5e1c44446f698) C:\WINDOWS\system32\DRIVERS\OEM02Dev.sys
11:25:07.0015 11560 OEM02Dev - ok
11:25:07.0031 11560 OEM02Vfx (86326062a90494bdd79ce383511d7d69) C:\WINDOWS\system32\DRIVERS\OEM02Vfx.sys
11:25:07.0031 11560 OEM02Vfx - ok
11:25:07.0109 11560 ohci1394 (ca33832df41afb202ee7aeb05145922f) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:25:07.0109 11560 ohci1394 - ok
11:25:07.0656 11560 Parport (e7855cbd8bd1fda085a3f92cff7906e2) C:\WINDOWS\system32\DRIVERS\parport.sys
11:25:07.0671 11560 Parport - ok
11:25:07.0687 11560 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
11:25:07.0687 11560 PartMgr - ok
11:25:07.0718 11560 ParVdm (fad44d704ecd7d39ad01415b8bb34204) C:\WINDOWS\system32\drivers\ParVdm.sys
11:25:07.0718 11560 ParVdm - ok
11:25:07.0843 11560 PCI (f11bc84ae6c7b003b5e0c8eeb4a1f444) C:\WINDOWS\system32\DRIVERS\pci.sys
11:25:07.0843 11560 PCI - ok
11:25:07.0859 11560 PCIDump - ok
11:25:07.0875 11560 PCIIde (33d63f0a9021acb4d75d83b646b93a30) C:\WINDOWS\system32\DRIVERS\pciide.sys
11:25:07.0890 11560 PCIIde - ok
11:25:07.0937 11560 Pcmcia (f50c27cca56dc97b3a45e7f0059bd2ba) C:\WINDOWS\system32\drivers\Pcmcia.sys
11:25:07.0937 11560 Pcmcia - ok
11:25:08.0015 11560 PDCOMP - ok
11:25:08.0046 11560 PDFRAME - ok
11:25:08.0156 11560 PDRELI - ok
11:25:08.0171 11560 PDRFRAME - ok
11:25:08.0218 11560 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
11:25:08.0218 11560 perc2 - ok
11:25:08.0250 11560 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
11:25:08.0250 11560 perc2hib - ok
11:25:08.0375 11560 pfc (957b82ec80ad7ead64e5e47df6b0dc40) C:\WINDOWS\system32\drivers\pfc.sys
11:25:08.0375 11560 pfc - ok
11:25:08.0593 11560 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:25:08.0609 11560 PptpMiniport - ok
11:25:08.0640 11560 Processor (d4d8634dfdae3eca83620ee4088f7aa9) C:\WINDOWS\system32\DRIVERS\processr.sys
11:25:08.0640 11560 Processor - ok
11:25:08.0765 11560 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
11:25:08.0765 11560 PSched - ok
11:25:10.0046 11560 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:25:10.0046 11560 Ptilink - ok
11:25:10.0796 11560 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
11:25:10.0796 11560 ql1080 - ok
11:25:10.0828 11560 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
11:25:10.0828 11560 Ql10wnt - ok
11:25:10.0859 11560 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
11:25:10.0859 11560 ql12160 - ok
11:25:10.0890 11560 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
11:25:10.0890 11560 ql1240 - ok
11:25:10.0921 11560 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
11:25:10.0921 11560 ql1280 - ok
11:25:11.0062 11560 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:25:11.0062 11560 RasAcd - ok
11:25:11.0093 11560 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:25:11.0093 11560 Rasl2tp - ok
11:25:11.0125 11560 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:25:11.0125 11560 RasPppoe - ok
11:25:11.0140 11560 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
11:25:11.0140 11560 Raspti - ok
11:25:11.0187 11560 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:25:11.0187 11560 Rdbss - ok
11:25:11.0218 11560 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:25:11.0218 11560 RDPCDD - ok
11:25:11.0250 11560 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:25:11.0250 11560 rdpdr - ok
11:25:11.0328 11560 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
11:25:11.0343 11560 RDPWD - ok
11:25:11.0390 11560 redbook (20950948970a0ea329b4254052bcf093) C:\WINDOWS\system32\DRIVERS\redbook.sys
11:25:11.0390 11560 redbook - ok
11:25:11.0625 11560 rimmptsk (d85e3fa9f5b1f29bb4ed185c450d1470) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
11:25:11.0625 11560 rimmptsk - ok
11:25:11.0656 11560 rimsptsk (db8eb01c58c9fada00c70b1775278ae0) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
11:25:11.0656 11560 rimsptsk - ok
11:25:11.0671 11560 RimUsb - ok
11:25:11.0734 11560 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
11:25:11.0734 11560 RimVSerPort - ok
11:25:11.0765 11560 rismxdp (6c1f93c0760c9f79a1869d07233df39d) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
11:25:11.0765 11560 rismxdp - ok
11:25:11.0859 11560 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
11:25:11.0859 11560 ROOTMODEM - ok
11:25:12.0359 11560 s24trans (eadfb87f911a7a75d1b80617f92901e8) C:\WINDOWS\system32\DRIVERS\s24trans.sys
11:25:12.0359 11560 s24trans - ok
11:25:12.0656 11560 SASDIFSV (c030c9a39e85b6f04a8dd25d1a50258a) C:\Archivos de programa\SUPERAntiSpyware\SASDIFSV.SYS
11:25:12.0656 11560 SASDIFSV - ok
11:25:12.0718 11560 SASENUM (7f1085895e499907f68df7731924122b) C:\Archivos de programa\SUPERAntiSpyware\SASENUM.SYS
11:25:12.0718 11560 SASENUM - ok
11:25:12.0750 11560 SASKUTIL (64c100dbf57c6cb6e7d5d24153f5e444) C:\Archivos de programa\SUPERAntiSpyware\SASKUTIL.sys
11:25:12.0750 11560 SASKUTIL - ok
11:25:12.0812 11560 sbaphd (84a24af5ef9f18f441ff28f3a7ce9c62) C:\WINDOWS\system32\drivers\sbaphd.sys
11:25:12.0812 11560 sbaphd - ok
11:25:12.0906 11560 sbapifs (a0bb2fb6749e357d4342e1eabaaea79e) C:\WINDOWS\system32\drivers\sbapifs.sys
11:25:12.0906 11560 sbapifs - ok
11:25:12.0984 11560 SbFw (2facffd43491efa346b81818eb61c8da) C:\WINDOWS\system32\drivers\SbFw.sys
11:25:12.0984 11560 SbFw - ok
11:25:13.0062 11560 SBFWIMCL (1dcad90cc9c0ddc7d060fd97854f8518) C:\WINDOWS\system32\DRIVERS\sbfwim.sys
11:25:13.0062 11560 SBFWIMCL - ok
11:25:13.0140 11560 SBFWIMCLMP (1dcad90cc9c0ddc7d060fd97854f8518) C:\WINDOWS\system32\DRIVERS\SBFWIM.sys
11:25:13.0140 11560 SBFWIMCLMP - ok
11:25:13.0218 11560 SbHips (2b5798dcb705eed80231d37688788e09) C:\WINDOWS\system32\drivers\sbhips.sys
11:25:13.0218 11560 SbHips - ok
11:25:13.0453 11560 SBRE (1fd538c4feb36b793d2121f20bbdc16f) C:\WINDOWS\system32\drivers\SBREdrv.sys
11:25:13.0453 11560 SBRE - ok
11:25:13.0562 11560 SbTis (4db526c1d725ba71b301cf9ff883715a) C:\WINDOWS\system32\drivers\sbtis.sys
11:25:13.0562 11560 SbTis - ok
11:25:15.0218 11560 sdbus (8d04819a3ce51b9eb47e5689b44d43c4) C:\WINDOWS\system32\DRIVERS\sdbus.sys
11:25:15.0234 11560 sdbus - ok
11:25:21.0484 11560 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:25:21.0484 11560 Secdrv - ok
11:25:22.0453 11560 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
11:25:22.0453 11560 serenum - ok
11:25:22.0515 11560 Serial (f41b42b92ae9c1191858c3f80cc24a9c) C:\WINDOWS\system32\DRIVERS\serial.sys
11:25:22.0515 11560 Serial - ok
11:25:22.0906 11560 sffdisk (0fa803c64df0914b41f807ea276bf2a6) C:\WINDOWS\system32\DRIVERS\sffdisk.sys
11:25:22.0906 11560 sffdisk - ok
11:25:22.0968 11560 sffp_sd (c17c331e435ed8737525c86a7557b3ac) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
11:25:22.0968 11560 sffp_sd - ok
11:25:23.0109 11560 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\DRIVERS\sfloppy.sys
11:25:23.0109 11560 Sfloppy - ok
11:25:23.0609 11560 Simbad - ok
11:25:24.0000 11560 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
11:25:24.0000 11560 sisagp - ok
11:25:27.0796 11560 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
11:25:27.0796 11560 SLIP - ok
11:25:29.0328 11560 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
11:25:29.0328 11560 Sparrow - ok
11:25:30.0515 11560 SPLITCAM (c7c361a04742ab187e10583bbf4fa975) C:\WINDOWS\system32\DRIVERS\splitcam.sys
11:25:30.0531 11560 SPLITCAM - ok
11:25:30.0703 11560 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
11:25:30.0703 11560 splitter - ok
11:25:31.0156 11560 sr (ccb3065c3ee63a4515fe84af9e78d1dd) C:\WINDOWS\system32\DRIVERS\sr.sys
11:25:31.0156 11560 sr - ok
11:25:31.0250 11560 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
11:25:31.0250 11560 Srv - ok
11:25:31.0609 11560 STHDA (58f855684e163466a5c565adf0865536) C:\WINDOWS\system32\drivers\sthda.sys
11:25:31.0625 11560 STHDA - ok
11:25:31.0703 11560 StillCam (4e634ba97c122f84a6c2595af4d2dc62) C:\WINDOWS\system32\DRIVERS\serscan.sys
11:25:31.0703 11560 StillCam - ok
11:25:31.0828 11560 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
11:25:31.0843 11560 streamip - ok
11:25:31.0984 11560 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
11:25:31.0984 11560 swenum - ok
11:25:32.0015 11560 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
11:25:32.0015 11560 swmidi - ok
11:25:32.0187 11560 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
11:25:32.0187 11560 symc810 - ok
11:25:32.0234 11560 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
11:25:32.0234 11560 symc8xx - ok
11:25:32.0406 11560 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
11:25:32.0421 11560 sym_hi - ok
11:25:32.0453 11560 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
11:25:32.0453 11560 sym_u3 - ok
11:25:32.0531 11560 SynTP (dc1e7ee0a6494cd79d624bd8d5da8bfb) C:\WINDOWS\system32\DRIVERS\SynTP.sys
11:25:32.0531 11560 SynTP - ok
11:25:32.0562 11560 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
11:25:32.0562 11560 sysaudio - ok
11:25:32.0843 11560 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:25:32.0859 11560 Tcpip - ok
11:25:32.0953 11560 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
11:25:32.0953 11560 TDPIPE - ok
11:25:33.0000 11560 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
11:25:33.0000 11560 TDTCP - ok
11:25:33.0062 11560 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
11:25:33.0062 11560 TermDD - ok
11:25:33.0203 11560 tidnet (e27982d1c30ae1dd7eb8eb5caf8d20c6) C:\WINDOWS\system32\DRIVERS\tidnet.sys
11:25:33.0203 11560 tidnet - ok
11:25:33.0468 11560 TosIde (95744b77c159ed63774097ddb2e78cb2) C:\WINDOWS\system32\DRIVERS\toside.sys
11:25:33.0468 11560 TosIde - ok
11:25:36.0046 11560 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
11:25:36.0046 11560 Udfs - ok
11:25:36.0125 11560 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
11:25:36.0125 11560 ultra - ok
11:25:36.0234 11560 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
11:25:36.0250 11560 Update - ok
11:25:36.0390 11560 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
11:25:36.0390 11560 USBAAPL - ok
11:25:36.0468 11560 usbaudio (e919708db44ed8543a7c017953148330) C:\WINDOWS\system32\drivers\usbaudio.sys
11:25:36.0484 11560 usbaudio - ok
11:25:36.0500 11560 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
11:25:36.0500 11560 usbccgp - ok
11:25:36.0609 11560 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:25:36.0609 11560 usbehci - ok
11:25:36.0640 11560 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:25:36.0640 11560 usbhub - ok
11:25:36.0734 11560 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
11:25:36.0734 11560 usbprint - ok
11:25:36.0781 11560 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:25:36.0781 11560 usbscan - ok
11:25:36.0875 11560 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:25:36.0875 11560 USBSTOR - ok
11:25:36.0906 11560 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:25:36.0906 11560 usbuhci - ok
11:25:36.0953 11560 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys
11:25:36.0953 11560 usbvideo - ok
11:25:37.0093 11560 usb_rndisx (ae4df3b7d1db9373b08db4ed224e26b6) C:\WINDOWS\system32\DRIVERS\usb8023x.sys
11:25:37.0093 11560 usb_rndisx - ok
11:25:37.0578 11560 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
11:25:37.0578 11560 VgaSave - ok
11:25:37.0640 11560 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
11:25:37.0640 11560 viaagp - ok
11:25:37.0687 11560 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
11:25:37.0687 11560 ViaIde - ok
11:25:38.0828 11560 VolSnap (c41ffdc191e6c832e2e53c967eae0a16) C:\WINDOWS\system32\drivers\VolSnap.sys
11:25:38.0828 11560 VolSnap - ok
11:25:48.0656 11560 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:25:48.0671 11560 Wanarp - ok
11:25:50.0406 11560 wceusbsh (4a954a20a4c73d6db13c0fe25f3f1b0c) C:\WINDOWS\system32\DRIVERS\wceusbsh.sys
11:25:50.0421 11560 wceusbsh - ok
11:25:51.0078 11560 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\WINDOWS\system32\DRIVERS\wdcsam.sys
11:25:51.0078 11560 WDC_SAM - ok
11:25:51.0375 11560 Wdf01000 (d918617b46457b9ac28027722e30f647) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys
11:25:51.0375 11560 Wdf01000 - ok
11:25:51.0515 11560 WDICA - ok
11:25:51.0687 11560 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
11:25:51.0687 11560 wdmaud - ok
11:25:52.0718 11560 winachsf (a8596cf86d445269a42ecc08b7066a4c) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
11:25:52.0734 11560 winachsf - ok
11:25:56.0078 11560 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
11:25:56.0078 11560 WmiAcpi - ok
11:25:56.0406 11560 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys
11:25:56.0406 11560 WS2IFSL - ok
11:25:56.0468 11560 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
11:25:56.0468 11560 WSTCODEC - ok
11:25:56.0578 11560 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:25:56.0578 11560 WudfPf - ok
11:25:56.0656 11560 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:25:56.0656 11560 WudfRd - ok
11:25:57.0328 11560 ZTEusbmdm6k (4dfa2777dc76e011320522d94c0d0ec3) C:\WINDOWS\system32\DRIVERS\ZTEusbmdm6k.sys
11:25:57.0328 11560 ZTEusbmdm6k - ok
11:25:57.0390 11560 ZTEusbnet (7df32dc0267c91bacf7e2b4e38ac5df1) C:\WINDOWS\system32\DRIVERS\ZTEusbnet.sys
11:25:57.0390 11560 ZTEusbnet - ok
11:25:57.0453 11560 ZTEusbnmea (4dfa2777dc76e011320522d94c0d0ec3) C:\WINDOWS\system32\DRIVERS\ZTEusbnmea.sys
11:25:57.0453 11560 ZTEusbnmea - ok
11:25:57.0468 11560 ZTEusbser6k (4dfa2777dc76e011320522d94c0d0ec3) C:\WINDOWS\system32\DRIVERS\ZTEusbser6k.sys
11:25:57.0468 11560 ZTEusbser6k - ok
11:25:57.0546 11560 ZTEusbvoice (2a6f72d2b6a549b1fc6a6522bc204159) C:\WINDOWS\system32\DRIVERS\ZTEusbvoice.sys
11:25:57.0546 11560 ZTEusbvoice - ok
11:25:57.0781 11560 MBR (0x1B8) (5cb90281d1a59b251f6603134774eec3) \Device\Harddisk0\DR0
11:25:57.0828 11560 \Device\Harddisk0\DR0 - ok
11:25:57.0828 11560 MBR (0x1B8) (e4269786951c2569372db4c0a75a238a) \Device\Harddisk1\DR7
11:25:59.0468 11560 \Device\Harddisk1\DR7 - ok
11:25:59.0515 11560 Boot (0x1200) (0e417b084845ff200266bdc5ff072ea8) \Device\Harddisk0\DR0\Partition0
11:25:59.0515 11560 \Device\Harddisk0\DR0\Partition0 - ok
11:25:59.0515 11560 ============================================================
11:25:59.0515 11560 Scan finished
11:25:59.0515 11560 ============================================================
11:25:59.0515 11316 Detected object count: 1
11:25:59.0515 11316 Actual detected object count: 1
11:26:12.0546 11316 C:\WINDOWS\system32\DRIVERS\netbt.sys - copied to quarantine
11:26:19.0796 11316 Backup copy found, using it..
11:26:19.0812 11316 C:\WINDOWS\system32\DRIVERS\netbt.sys - will be cured on reboot
11:26:22.0593 11316 NetBT ( Virus.Win32.ZAccess.g ) - User select action: Cure
11:26:33.0328 8976 Deinitialize success

#6 dinkelchen

dinkelchen
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 04 March 2012 - 05:43 AM

aswMBR version 0.9.9.1649 Copyright© 2011 AVAST Software
Run date: 2012-03-04 11:32:56
-----------------------------
11:32:56.875 OS Version: Windows 5.1.2600 Service Pack 3
11:32:56.875 Number of processors: 2 586 0x1706
11:32:56.875 ComputerName: DELL_KATRIN UserName: Antonio
11:32:58.515 Initialize success
11:33:43.140 AVAST engine defs: 12030400
11:33:50.609 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e
11:33:50.625 Disk 0 Vendor: SAMSUNG_HM320JI 2SS00_01 Size: 305245MB BusType: 3
11:33:50.640 Disk 0 MBR read successfully
11:33:50.640 Disk 0 MBR scan
11:33:50.671 Disk 0 unknown MBR code
11:33:50.687 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 117 MB offset 63
11:33:50.718 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 299187 MB offset 240975
11:33:50.718 Disk 0 Partition - 00 0F Extended LBA 2557 MB offset 612976140
11:33:50.765 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 3380 MB offset 618213330
11:33:50.796 Disk 0 Partition 4 00 DD MSDOS5.0 2557 MB offset 612976203
11:33:50.796 Disk 0 scanning sectors +625137345
11:33:50.906 Disk 0 scanning C:\WINDOWS\system32\drivers
11:34:07.718 Service scanning
11:34:37.640 Modules scanning
11:34:45.843 Disk 0 trace - called modules:
11:34:45.875 ntkrnlpa.exe CLASSPNP.SYS disk.sys iomdisk.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
11:34:45.890 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8b5e8ab8]
11:34:45.890 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> [0x8b5c9ae0]
11:34:45.906 5 iomdisk.sys[ba338bc3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-e[0x8b5e9940]
11:34:47.031 AVAST engine scan C:\WINDOWS
11:34:58.296 AVAST engine scan C:\WINDOWS\system32
11:38:07.968 AVAST engine scan C:\WINDOWS\system32\drivers
11:38:28.437 AVAST engine scan C:\Documents and Settings\Antonio
11:38:41.437 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Antonio\Escritorio\MBR.dat"
11:38:41.500 The log file has been saved successfully to "C:\Documents and Settings\Antonio\Escritorio\aswMBR.txt"


aswMBR version 0.9.9.1649 Copyright© 2011 AVAST Software
Run date: 2012-03-04 11:32:56
-----------------------------
11:32:56.875 OS Version: Windows 5.1.2600 Service Pack 3
11:32:56.875 Number of processors: 2 586 0x1706
11:32:56.875 ComputerName: DELL_KATRIN UserName: Antonio
11:32:58.515 Initialize success
11:33:43.140 AVAST engine defs: 12030400
11:33:50.609 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP1T0L0-e
11:33:50.625 Disk 0 Vendor: SAMSUNG_HM320JI 2SS00_01 Size: 305245MB BusType: 3
11:33:50.640 Disk 0 MBR read successfully
11:33:50.640 Disk 0 MBR scan
11:33:50.671 Disk 0 unknown MBR code
11:33:50.687 Disk 0 Partition 1 00 DE Dell Utility Dell 8.0 117 MB offset 63
11:33:50.718 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 299187 MB offset 240975
11:33:50.718 Disk 0 Partition - 00 0F Extended LBA 2557 MB offset 612976140
11:33:50.765 Disk 0 Partition 3 00 DB CP/M / CTOS Dell 8.0 3380 MB offset 618213330
11:33:50.796 Disk 0 Partition 4 00 DD MSDOS5.0 2557 MB offset 612976203
11:33:50.796 Disk 0 scanning sectors +625137345
11:33:50.906 Disk 0 scanning C:\WINDOWS\system32\drivers
11:34:07.718 Service scanning
11:34:37.640 Modules scanning
11:34:45.843 Disk 0 trace - called modules:
11:34:45.875 ntkrnlpa.exe CLASSPNP.SYS disk.sys iomdisk.sys hal.dll atapi.sys pciide.sys PCIIDEX.SYS
11:34:45.890 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x8b5e8ab8]
11:34:45.890 3 CLASSPNP.SYS[ba0e8fd7] -> nt!IofCallDriver -> [0x8b5c9ae0]
11:34:45.906 5 iomdisk.sys[ba338bc3] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP1T0L0-e[0x8b5e9940]
11:34:47.031 AVAST engine scan C:\WINDOWS
11:34:58.296 AVAST engine scan C:\WINDOWS\system32
11:38:07.968 AVAST engine scan C:\WINDOWS\system32\drivers
11:38:28.437 AVAST engine scan C:\Documents and Settings\Antonio
11:38:41.437 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Antonio\Escritorio\MBR.dat"
11:38:41.500 The log file has been saved successfully to "C:\Documents and Settings\Antonio\Escritorio\aswMBR.txt"
11:39:56.468 File: C:\Documents and Settings\Antonio\Configuración local\Datos de programa\e927f25b\U\80000000.@ **INFECTED** Win64:Sirefef-A [Trj]
11:39:56.671 File: C:\Documents and Settings\Antonio\Configuración local\Datos de programa\e927f25b\U\800000cb.@ **INFECTED** Win32:Sirefef-AO [Rtk]
11:39:57.000 File: C:\Documents and Settings\Antonio\Configuración local\Datos de programa\e927f25b\U\800000cf.@ **INFECTED** Win32:Trojan-gen
11:43:26.125 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Antonio\Escritorio\MBR.dat"
11:43:26.140 The log file has been saved successfully to "C:\Documents and Settings\Antonio\Escritorio\aswMBR.txt"

#7 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:01 AM

Posted 04 March 2012 - 12:41 PM

Hello

Ok lets try this, I want you to run combofix in safe mode but it is very important that when combofix reboots the computer for you to direct it back into safe mode so it can finish the scan.

Boot into Safe Mode

Reboot your computer in Safe Mode.
  • If the computer is running, shut down Windows, and then turn off the power.
  • Wait 30 seconds, and then turn the computer on.
  • Start tapping the F8 key. The Windows Advanced Options Menu appears. If you begin tapping the F8 key too soon, some computers display a "keyboard error" message. To resolve this, restart the computer and try again.
  • Ensure that the Safe Mode option is selected.
  • Press Enter. The computer then begins to start in Safe mode.
  • Login on your usual account.

after combofix has finished its scan please post the report back here.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#8 dinkelchen

dinkelchen
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 04 March 2012 - 02:30 PM

HI.
I have run the combofix in the safe mode. It complained about the missing restor console. And also about Vipre. But being in the safe mode I did not know how to switch that of. It shouldnt run, should it?
But in the end continue the scan. Here is the log.
Thanks

ComboFix 12-03-03.02 - Antonio 04/03/2012 19:25:25.1.2 - x86 MINIMAL
Microsoft Windows XP Professional 5.1.2600.3.1252.34.3082.18.3070.2734 [GMT 1:00]
Running from: c:\documents and settings\Antonio\Escritorio\ComboFix.exe
AV: GFI Software VIPRE *Enabled/Updated* {964FCE60-0B18-4D30-ADD6-EB178909041C}
FW: GFI Software VIPRE *Enabled* {FF1CD5B7-1553-4625-A258-1775385CED33}
.
WARNING -THIS MACHINE DOES NOT HAVE THE RECOVERY CONSOLE INSTALLED !!
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\90210.exe
c:\documents and settings\Antonio\Configuración local\Datos de programa\e927f25b\U\80000000.@
c:\documents and settings\Antonio\Configuración local\Datos de programa\e927f25b\U\800000cb.@
c:\documents and settings\Antonio\Configuración local\Datos de programa\e927f25b\U\800000cf.@
c:\documents and settings\Katrin\GoToAssistDownloadHelper.exe
c:\documents and settings\Katrin\Media
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VIDEO_TS.BUP
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VIDEO_TS.IFO
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VIDEO_TS.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_01_0.BUP
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_01_0.IFO
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_01_0.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_01_1.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_02_0.BUP
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_02_0.IFO
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_02_0.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_02_1.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_03_0.BUP
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_03_0.IFO
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_03_0.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_03_1.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_03_2.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_04_0.BUP
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_04_0.IFO
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_04_0.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_04_1.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_04_2.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_05_0.BUP
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_05_0.IFO
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_05_0.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_05_1.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_05_2.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_06_0.BUP
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_06_0.IFO
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_06_0.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_06_1.VOB
c:\documents and settings\Katrin\Media\Disney\VIDEO_TS\VTS_06_2.VOB
c:\windows\$NtUninstallKB58499$
c:\windows\$NtUninstallKB58499$\3114519246
c:\windows\$NtUninstallKB58499$\3911709275\@
c:\windows\$NtUninstallKB58499$\3911709275\L\naanwtou
c:\windows\$NtUninstallKB58499$\3911709275\loader.tlb
c:\windows\$NtUninstallKB58499$\3911709275\U\@00000001
c:\windows\$NtUninstallKB58499$\3911709275\U\@000000c0
c:\windows\$NtUninstallKB58499$\3911709275\U\@000000cb
c:\windows\$NtUninstallKB58499$\3911709275\U\@000000cf
c:\windows\$NtUninstallKB58499$\3911709275\U\@80000000
c:\windows\$NtUninstallKB58499$\3911709275\U\@800000c0
c:\windows\$NtUninstallKB58499$\3911709275\U\@800000cb
c:\windows\$NtUninstallKB58499$\3911709275\U\@800000cf
c:\windows\system32\SlWdmSup.dll
.
.
((((((((((((((((((((((((((((((((((((((( Drivers/Services )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
-------\Legacy_6TO4
-------\Legacy_NM
-------\Legacy_NWSAPAGENT
-------\Legacy_SERVICE
-------\Legacy_SGECLIENT
-------\Legacy_STEC3
-------\Legacy_SVCHOST
-------\Legacy_USNJSVC
-------\Service_6to4
-------\Service_nm
-------\Service_NwSapAgent
-------\Service_service
-------\Service_sgeclient
-------\Service_STEC3
-------\Service_usnjsvc
.
.
((((((((((((((((((((((((( Files Created from 2012-02-04 to 2012-03-04 )))))))))))))))))))))))))))))))
.
.
2012-03-04 17:58 . 2012-03-04 17:58 -------- d-----w- c:\windows\LastGood
2012-03-04 10:26 . 2012-03-04 10:26 -------- d-----w- C:\TDSSKiller_Quarantine
2012-03-01 18:11 . 2012-03-01 18:11 -------- d-----w- c:\documents and settings\Antonio\Configuración local\Datos de programa\Ahead
2012-02-26 20:13 . 2012-02-26 20:13 -------- d-----w- c:\documents and settings\Antonio\Datos de programa\TuneUp Software
2012-02-26 19:32 . 2012-02-26 19:32 110 ----a-w- c:\documents and settings\Antonio\Datos de programa\netstat.bat
2012-02-26 16:18 . 2010-03-05 18:46 465408 ------w- c:\windows\system32\dllcache\smtpsvc.dll
2012-02-26 14:10 . 2012-02-26 14:45 -------- d-----w- c:\documents and settings\All Users\Datos de programa\AVAST Software
2012-02-26 14:10 . 2012-02-26 14:10 -------- d-----w- c:\archivos de programa\AVAST Software
2012-02-26 13:48 . 2012-02-26 13:50 -------- d-----w- C:\ComFix
2012-02-26 08:02 . 2012-02-26 08:02 -------- d-----w- c:\archivos de programa\CCleaner
2012-02-26 07:31 . 2012-02-26 07:31 -------- d-----r- c:\documents and settings\NetworkService\Favoritos
2012-02-26 06:13 . 2012-02-26 06:13 -------- d-sh--w- c:\documents and settings\NetworkService\IETldCache
2012-02-26 06:13 . 2012-02-26 06:13 -------- d-----w- c:\archivos de programa\Livedrive
2012-02-25 22:46 . 2012-02-25 22:46 -------- d-----w- c:\documents and settings\Antonio\Datos de programa\SUPERAntiSpyware.com
2012-02-25 22:22 . 2012-02-25 22:22 -------- d-----w- c:\documents and settings\Antonio\Datos de programa\Malwarebytes
2012-02-25 11:00 . 2012-03-04 08:59 0 --sha-w- c:\windows\system32\dds_log_trash.cmd
2012-02-25 10:50 . 2012-02-26 04:26 -------- d-sh--w- c:\documents and settings\Antonio\Configuración local\Datos de programa\e927f25b
2012-02-22 17:51 . 2012-02-22 17:51 -------- d-----r- c:\documents and settings\LocalService\Favoritos
2012-02-17 09:56 . 2012-02-17 09:56 -------- d-----w- c:\documents and settings\Antonio\Datos de programa\Corel
2012-02-17 07:01 . 2012-02-17 07:01 -------- d-----w- c:\documents and settings\All Users\Datos de programa\DatacardService
2012-02-16 11:34 . 2012-01-11 19:06 3072 ------w- c:\windows\system32\iacenc.dll
2012-02-16 11:34 . 2012-01-11 19:06 3072 ------w- c:\windows\system32\dllcache\iacenc.dll
2012-02-13 17:22 . 2012-02-13 17:21 286720 ----a-w- c:\windows\iun507.exe
2012-02-13 17:21 . 2012-02-13 17:22 -------- d-----w- C:\Primo Mathematik 2
2012-02-07 15:48 . 2012-02-07 15:48 578232 ----a-w- c:\windows\system32\LivedriveControlPanel.cpl
2012-02-04 20:09 . 2001-08-22 20:49 6912 ----a-w- c:\windows\system32\drivers\serscan.sys
2012-02-04 20:09 . 2001-08-22 20:49 6912 ----a-w- c:\windows\system32\dllcache\serscan.sys
2012-02-04 17:37 . 2012-02-04 17:37 -------- d-----w- c:\archivos de programa\Microsoft
2012-02-04 17:37 . 2012-02-04 17:37 -------- d-----w- c:\archivos de programa\MSN Toolbar
2012-02-04 17:36 . 2012-02-17 07:33 -------- d-----w- c:\archivos de programa\Microsoft Silverlight
2012-02-04 17:36 . 2012-02-04 17:37 -------- d-----w- c:\archivos de programa\Bing Bar Installer
2012-02-04 17:36 . 2012-02-04 17:36 -------- d-----w- c:\archivos de programa\HP Photo Creations
2012-02-04 17:36 . 2012-02-04 17:36 -------- d-----w- c:\documents and settings\All Users\Datos de programa\HP Photo Creations
2012-02-04 17:35 . 2011-06-08 17:06 544616 ------w- c:\windows\system32\HPDiscoPMa011.dll
2012-02-04 17:35 . 2011-06-08 21:57 488296 ----a-w- c:\windows\system32\HPWia1_DJ3050A_J611.dll
2012-02-04 17:35 . 2011-06-08 21:57 1929576 ----a-w- c:\windows\system32\HPScanTRDrv_DJ3050A_J611.dll
2012-02-04 17:34 . 2011-06-08 21:57 429928 ----a-w- c:\windows\system32\hpinkstsa011.dll
2012-02-04 17:34 . 2011-06-08 21:57 270696 ----a-w- c:\windows\system32\hpinkstsa011LM.dll
2012-02-04 17:34 . 2011-06-08 21:57 216424 ----a-w- c:\windows\system32\hpinkcoia011.dll
2012-02-04 17:33 . 2012-02-04 17:33 -------- d-----w- c:\documents and settings\Antonio\Configuración local\Datos de programa\HP
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-04 10:27 . 2004-09-08 14:47 162816 ----a-w- c:\windows\system32\drivers\netbt.sys
2012-01-12 17:20 . 2004-09-08 14:47 1860096 ----a-w- c:\windows\system32\win32k.sys
2011-12-25 17:33 . 2011-06-22 21:05 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
2011-12-17 19:41 . 2004-09-08 14:47 916992 ----a-w- c:\windows\system32\wininet.dll
2011-12-17 19:41 . 2004-09-08 14:46 43520 ----a-w- c:\windows\system32\licmgr10.dll
2011-12-17 19:41 . 2004-09-08 14:46 1469440 ----a-w- c:\windows\system32\inetcpl.cpl
2011-12-16 12:23 . 2004-09-08 14:46 385024 ----a-w- c:\windows\system32\html.iec
2011-12-10 14:24 . 2008-06-09 12:03 20464 ----a-w- c:\windows\system32\drivers\mbam.sys
2008-06-08 22:19 . 2008-06-08 22:19 62910 ----a-w- c:\archivos de programa\Uninstall.exe
2012-01-11 09:05 . 2011-10-11 11:35 121816 ----a-w- c:\archivos de programa\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}]
2009-04-02 11:47 333192 ----a-w- c:\archivos de programa\AskBarDis\bar\bin\askBar.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
"{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "c:\archivos de programa\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]
.
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
.
[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser]
"{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "c:\archivos de programa\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192]
.
[HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}]
[HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\BackupOverlay]
@="{B44A5D93-1351-41A1-BD91-5E92435D8ECD}"
[HKEY_CLASSES_ROOT\CLSID\{B44A5D93-1351-41A1-BD91-5E92435D8ECD}]
2012-02-07 15:49 1213592 ----a-w- c:\archivos de programa\Livedrive\LivedriveExtensions.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
@="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\Antonio\Datos de programa\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
@="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\Antonio\Datos de programa\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
@="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\Antonio\Datos de programa\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt4]
@="{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}"
[HKEY_CLASSES_ROOT\CLSID\{FB314EDC-A251-47B7-93E1-CDD82E34AF8B}]
2011-02-18 05:12 94208 ----a-w- c:\documents and settings\Antonio\Datos de programa\Dropbox\bin\DropboxExt.14.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\LivedriveDownloadOverlay]
@="{CBCDB610-6B68-4EE9-B7A2-1282FD0C9292}"
[HKEY_CLASSES_ROOT\CLSID\{CBCDB610-6B68-4EE9-B7A2-1282FD0C9292}]
2012-02-07 15:49 1213592 ----a-w- c:\archivos de programa\Livedrive\LivedriveExtensions.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\LivedriveSharedOverlay]
@="{84CEF1E4-1356-4063-845F-05047F4DD52C}"
[HKEY_CLASSES_ROOT\CLSID\{84CEF1E4-1356-4063-845F-05047F4DD52C}]
2012-02-07 15:49 1213592 ----a-w- c:\archivos de programa\Livedrive\LivedriveExtensions.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\LivedriveSyncedOverlay]
@="{42058329-2FBF-4B33-8E52-3BE5754DE0C1}"
[HKEY_CLASSES_ROOT\CLSID\{42058329-2FBF-4B33-8E52-3BE5754DE0C1}]
2012-02-07 15:49 1213592 ----a-w- c:\archivos de programa\Livedrive\LivedriveExtensions.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\LivedriveUploadOverlay]
@="{39A1715A-E4CD-4F1E-B5C4-36B5DB80124E}"
[HKEY_CLASSES_ROOT\CLSID\{39A1715A-E4CD-4F1E-B5C4-36B5DB80124E}]
2012-02-07 15:49 1213592 ----a-w- c:\archivos de programa\Livedrive\LivedriveExtensions.dll
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"swg"="c:\archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" [2008-05-12 68856]
"HP Deskjet 3050A J611 series (NET)"="c:\archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" [2011-06-08 1804648]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"SynTPEnh"="c:\archivos de programa\Synaptics\SynTP\SynTPEnh.exe" [2007-10-25 1024000]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-06-06 8429568]
"NVHotkey"="nvHotkey.dll" [2007-06-06 67584]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-06-06 81920]
"IntelZeroConfig"="c:\archivos de programa\Intel\Wireless\bin\ZCfgSvc.exe" [2007-07-25 823296]
"KADxMain"="c:\windows\system32\KADxMain.exe" [2006-11-02 282624]
"CTSVolFE.exe"="c:\archivos de programa\Creative\Mixer\CTSVolFE.exe" [2005-02-23 57344]
"Adobe Reader Speed Launcher"="c:\archivos de programa\Adobe\Reader 8.0\Reader\Reader_sl.exe" [2008-10-14 39792]
"APSDaemon"="c:\archivos de programa\Archivos comunes\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
"SBAMTray"="c:\archivos de programa\GFI Software\VIPRE\SBAMTray.exe" [2011-11-01 3045744]
"Microsoft Default Manager"="c:\archivos de programa\Microsoft\Search Enhancement Pack\Default Manager\DefMgr.exe" [2010-05-10 439568]
"SBRegRebootCleaner"="c:\archivos de programa\GFI Software\VIPRE\SBRC.exe" [2011-10-31 200560]
"IntelWireless"="c:\archivos de programa\Intel\Wireless\Bin\ifrmewrk.exe" [2007-07-25 974848]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2008-04-14 15360]
.
c:\documents and settings\Alicia\Menú Inicio\Programas\Inicio\
Dropbox.lnk - c:\documents and settings\Antonio\Datos de programa\Dropbox\bin\Dropbox.exe [2012-2-15 24246216]
.
c:\documents and settings\Antonio\Menú Inicio\Programas\Inicio\
Dropbox.lnk - c:\documents and settings\Antonio\Datos de programa\Dropbox\bin\Dropbox.exe [2012-2-15 24246216]
.
[hkey_local_machine\software\microsoft\windows\currentversion\explorer\ShellExecuteHooks]
"{5AE067D3-9AFB-48E0-853A-EBB7F4A000DA}"= "c:\archivos de programa\SUPERAntiSpyware\SASSEH.DLL" [2008-06-09 77824]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\!SASWinLogon]
2008-06-09 18:12 294912 ----a-w- c:\archivos de programa\SUPERAntiSpyware\SASWINLO.DLL
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\winlogon\notify\GoToAssist]
2011-01-12 11:45 13672 ----a-w- c:\archivos de programa\Citrix\GoToAssist\615\g2awinlogon.dll
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati0bixx.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati2mtxx.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati3wexx.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati7elxx.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\ati7nuxx.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBAMSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\SBPIMSvc]
@="Service"
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]
@="Driver"
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\run-]
"QuickTime Task"="c:\archivos de programa\QuickTime\QTTask.exe" -atboottime
"{1127FBDA-10CC-4299-9F99-A1BCC973A448}"=d:\at\asistente.exe c:\docume~1\Katrin\CONFIG~1\Temp\GLF3D.tmp\settings.ini
"PCMService"="c:\archivos de programa\Dell\MediaDirect\PCMService.exe"
"NeroFilterCheck"=c:\windows\system32\NeroCheck.exe
"Dell QuickSet"=c:\archivos de programa\Dell\QuickSet\quickset.exe
"ArcSoft Connection Service"=c:\archivos de programa\Archivos comunes\ArcSoft\Connection Service\Bin\ACDaemon.exe
"DELL Webcam Manager"="c:\archivos de programa\Dell\Dell Webcam Manager\DellWMgr.exe" /s
"Deskup"=c:\archivos de programa\Iomega\DriveIcons\deskup.exe /IMGSTART
"Device Detector"=DevDetect.exe -autorun
"Iomega Drive Icons"=c:\archivos de programa\Iomega\DriveIcons\ImgIcon.exe
"OEM02Mon.exe"=c:\windows\OEM02Mon.exe
"ADUserMon"=c:\archivos de programa\Iomega\AutoDisk\ADUserMon.exe
"iTunesHelper"="c:\archivos de programa\iTunes\iTunesHelper.exe"
"HP Software Update"=c:\archivos de programa\HP\HP Software Update\HPWuSchd2.exe
"nwiz"=nwiz.exe /installquiet
"SigmatelSysTrayApp"=stsystra.exe
"SunJavaUpdateSched"="c:\archivos de programa\Archivos comunes\Java\Java Update\jusched.exe"
"MobileBroadband"=c:\archivos de programa\Vodafone\Vodafone Mobile Broadband\Bin\MobileBroadband.exe /silent
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile]
"EnableFirewall"= 0 (0x0)
.
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"c:\\Archivos de programa\\Dell\\MediaDirect\\PCMService.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Archivos de programa\\Azureus\\Azureus.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Archivos de programa\\FTP Commander\\ftpcomm.exe"=
"c:\\Archivos de programa\\Iomega\\ScreenPlay HD Discovery\\ScreenPlay Discovery.exe"=
"c:\\Archivos de programa\\Java\\jre6\\bin\\java.exe"=
"c:\\WINDOWS\\system32\\usmt\\migwiz.exe"=
"c:\\Archivos de programa\\NgrabLite\\NGrabLite.exe"=
"c:\\Archivos de programa\\Microsoft Office\\Office12\\OUTLOOK.EXE"=
"c:\\Archivos de programa\\Microsoft Office\\OFFICE11\\FRONTPG.EXE"=
"c:\\Documents and Settings\\Katrin\\Datos de programa\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Documents and Settings\\Antonio\\Datos de programa\\Dropbox\\bin\\Dropbox.exe"=
"c:\\Archivos de programa\\Archivos comunes\\Apple\\Apple Application Support\\WebKit2WebProcess.exe"=
"c:\\Archivos de programa\\Bonjour\\mDNSResponder.exe"=
"c:\\Archivos de programa\\iTunes\\iTunes.exe"=
"c:\\Documents and Settings\\Antonio\\Datos de programa\\Spotify\\spotify.exe"=
"c:\\Archivos de programa\\Skype\\Phone\\Skype.exe"=
"c:\\Documents and Settings\\Alicia\\Datos de programa\\Dropbox\\bin\\Dropbox.exe"=
.
R1 SBRE;SBRE;c:\windows\system32\drivers\SBREDrv.sys [26/10/2011 15:40 101112]
R2 SBAMSvc;VIPRE Internet Security;c:\archivos de programa\GFI Software\VIPRE\SBAMSvc.exe [01/11/2011 0:41 3287472]
R2 SBPIMSvc;SB Recovery Service;c:\archivos de programa\GFI Software\VIPRE\SBPIMSvc.exe [01/11/2011 0:41 173424]
S0 ati0bixx;ati0bixx;c:\windows\system32\Drivers\ati0bixx.sys --> c:\windows\system32\Drivers\ati0bixx.sys [?]
S0 ati2mtxx;ati2mtxx;c:\windows\system32\Drivers\ati2mtxx.sys --> c:\windows\system32\Drivers\ati2mtxx.sys [?]
S0 ati3wexx;ati3wexx;c:\windows\system32\Drivers\ati3wexx.sys --> c:\windows\system32\Drivers\ati3wexx.sys [?]
S0 ati7elxx;ati7elxx;c:\windows\system32\Drivers\ati7elxx.sys --> c:\windows\system32\Drivers\ati7elxx.sys [?]
S0 ati7nuxx;ati7nuxx;c:\windows\system32\Drivers\ati7nuxx.sys --> c:\windows\system32\Drivers\ati7nuxx.sys [?]
S1 CbFs;CbFs;c:\windows\system32\drivers\cbfs.sys [24/01/2012 21:24 146904]
S1 SASDIFSV;SASDIFSV;c:\archivos de programa\SUPERAntiSpyware\SASDIFSV.SYS [10/10/2006 11:53 8944]
S1 SASKUTIL;SASKUTIL;c:\archivos de programa\SUPERAntiSpyware\SASKUTIL.SYS [27/02/2007 10:39 55024]
S1 sbaphd;sbaphd;c:\windows\system32\drivers\sbaphd.sys [01/09/2010 14:29 21240]
S1 SbFw;SbFw;c:\windows\system32\drivers\SbFw.sys [31/08/2010 22:54 335224]
S1 SbTis;SbTis;c:\windows\system32\drivers\sbtis.sys [31/08/2010 22:54 217976]
S1 tidnet;TID NDIS Protocol Driver;c:\windows\system32\drivers\tidnet.sys [11/11/2010 17:02 26008]
S2 acedrv11;acedrv11;c:\windows\system32\drivers\acedrv11.sys [24/02/2010 11:22 185472]
S2 ASKService;ASKService;c:\archivos de programa\AskBarDis\bar\bin\AskService.exe [21/11/2009 23:49 464264]
S2 ASKUpgrade;ASKUpgrade;c:\archivos de programa\AskBarDis\bar\bin\ASKUpgrade.exe [21/11/2009 23:49 234888]
S2 gupdate1c9e8e03fb09428;Google Update Service (gupdate1c9e8e03fb09428);c:\archivos de programa\Google\Update\GoogleUpdate.exe [09/06/2009 9:56 133104]
S2 LivedriveVSSService;Livedrive VSS Service;c:\archivos de programa\Livedrive\VSSService.exe [07/02/2012 16:48 155320]
S2 pcouffin;{834170a7-af3b-4d34-a757-e05eb29ee96d};c:\windows\system32\svchost.exe -k netsvcs [08/09/2004 15:47 14336]
S2 sbapifs;sbapifs;c:\windows\system32\drivers\sbapifs.sys [01/09/2010 14:29 77816]
S2 TGCM_ImportWiFiSvc;TGCM_ImportWiFiSvc;c:\archivos de programa\o2\Mobile Connection Manager\ImpWiFiSvc.exe [11/11/2010 17:07 199600]
S2 TomTomHOMEService;TomTomHOMEService;c:\archivos de programa\TomTom HOME 2\TomTomHOMEService.exe [22/04/2011 13:21 92592]
S2 VmbService;Servicio de Vodafone Mobile Broadband;c:\archivos de programa\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe [28/04/2010 20:26 9216]
S2 WDDMService;WD SmartWare Drive Manager;c:\archivos de programa\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe [13/11/2009 11:28 110592]
S2 WDSmartWareBackgroundService;WD SmartWare Background Service;c:\archivos de programa\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe [16/06/2009 8:58 20480]
S3 dfmirage;dfmirage;c:\windows\system32\drivers\dfmirage.sys [28/03/2009 18:08 31896]
S3 gupdatem;Servicio de Google Update (gupdatem);c:\archivos de programa\Google\Update\GoogleUpdate.exe [09/06/2009 9:56 133104]
S3 massfilter;Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [31/01/2012 12:06 10240]
S3 massfilter_hs;USB Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter_hs.sys [31/01/2012 12:06 9728]
S3 Netaapl;Apple Mobile Device Ethernet Service;c:\windows\system32\drivers\netaapl.sys [23/08/2009 8:01 18432]
S3 SASENUM;SASENUM;c:\archivos de programa\SUPERAntiSpyware\SASENUM.SYS [16/02/2006 15:51 4096]
S3 SBFWIMCL;Sunbelt Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [29/05/2010 17:39 94584]
S3 SBFWIMCLMP;GFI Software Firewall NDIS IM Filter Miniport;c:\windows\system32\drivers\SbFwIm.sys [29/05/2010 17:39 94584]
S3 SbHips;sbhips;c:\windows\system32\drivers\sbhips.sys [31/08/2010 22:54 93816]
S3 WDC_SAM;WD SCSI Pass Thru driver;c:\windows\system32\drivers\wdcsam.sys [23/01/2010 17:27 11520]
S3 ZTEusbnet;ZTE USB-NDIS miniport;c:\windows\system32\drivers\ZTEusbnet.sys [11/01/2011 15:59 114688]
S3 ZTEusbvoice;ZTE VoUSB Port;c:\windows\system32\drivers\zteusbvoice.sys [11/01/2011 15:58 105856]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
HPZ12 REG_MULTI_SZ Pml Driver HPZ12 Net Driver HPZ12
hpdevmgmt REG_MULTI_SZ hpqcxs08 hpqddsvc
.
NETSVCS REQUIRES REPAIRS - current entries shown
6to4
AppMgmt
AudioSrv
Browser
CryptSvc
DMServer
DHCP
ERSvc
EventSystem
FastUserSwitchingCompatibility
HidServ
Ias
Iprip
Irmon
LanmanServer
LanmanWorkstation
Messenger
Netman
Nla
Ntmssvc
NWCWorkstation
Nwsapagent
Rasauto
BASFND
logmein
cobbmservice
cwafreportscheduler
admservice
iomegaaccess
msi_wlan_service
emitray
de_serv
LPCFilter
xpadminserver
SE26mgmt
tsscoreservice
Si3114r5
oracleorahomepagingserver
nchssvad
siswlsvc
genmcmn
enethusb
ATIVTUTW
atalk
DCFS2K
iAimFP7
amoagent
Sntnlusb
vpn5000service
tmxpflt
cqmgserv
iSMBIOS
AR5416
mgisvr
RivaTuner32
mxssvr
SaiU040B
cpqrcmc
gemserv
ssmdrv
ngdbserv
motoswitchservice
WUSB54GCSVC
wpsscannersvc
wg6n
symids
SE2Emdm
USA49W2KP
se44bus
wmccds
pmem
smservaz
TryAndDecideService
cebdaldr
nwlnknb
NPDriver
NWSLP
SSHDRV61
ASMMAP
epsonbidirectionalservice
dpfusmgr
nisum
hSONYPVh
VX1000
wg3n
idechndr
SE2Cmdfl
USBModem
mf
winpower
RDID1027
LVPrcMon
se58obex
rapapp
axskbus
Ptserlp
vpcnets2
oracleorahome92pagingserver
tvs
cxlpt
lvsrvlauncher
olapserver
itmrtsvc
sysmgmthp
SWNC8U20
adsexpb
DELTA
pcouffin
pnkbstra
s3ssavage
dbmanagerscheduler
tosrfbd
ssoftservice
Machnm32
qcdonner
proxyhostservice
PhilCam8116
smcservice
w810bus
mcnasvc
si3114r
k56
oracleorahomedatagatherer
se58unic
bt3cusb
ovsecurityserver
AVRec
GTSCSER
issuser
winachsx
incdrec
fetnd5bv
ikhlayer
sqlagent$soshome22
mps9
nsvcip
dsbrokerservice
NeroMediaHomeService.4
was
CnxTrLan
TuneUp.Defrag
AMDPCI
snareiis
s217bus
digisptiservice
dbustrcm
msfwsvc
hcf_msft
ehrecvr
igniteservice.exe
StarOpen
zd1211u(zydas)
VICESYS
KR10N
ClntMgmt.sys
SQLAgent$MICROSOFTBCM
StkAMini
govsrv
LMouKE
hsxhwazl
rdnaoflsvc
mwssched
db2
vvoice
datasvr
smsmdd
comhost
LRMINIPORT
odysseyIM3
liveupdate
bmuservice
InterBaseGuardian
automate6
fallback
SANDRA
msgsrvservice
ASLDRService
lockmgr
XUIF
rnadiagnosticsservice
Shockprf
Eplpdx02
tb2launch
Dfs
apphostsvc
MREMP50
pavreport
rtm
hsfhwbs2
mssql$sony_mediamgr
sandradatasrv
DCamUSBGrandTek
zebrsce
CSRBC
siside
Pctspk
CrystalSysInfo
dkeysync
tphkdrv
NICSer_WPC300N
StreamDispatcher
SilverLink
epfwtdi
LCcfltr
vmparport
inspect
LVVI500A
s217mgmt
backupexecrpcservice
z800bus
sisperf
cdudf_xp
SiRemFil
dlcj_device
ggsemc
proxyhostdriver
mcshield
ptbsync
EMSCR
AsIO
A4S2600
VNUSB
wmp54gsvc
cmdmon
tsircsrv
EACSvrMngr
RMCAST
jobserver_report
PPPoEWin
IFPUSB
ser2plms
oracleorahomeagent
viamraid
mgabg
bthidenum
sqlagent$pinnaclesys
A88xTuner
Xyz777s
w200mdm
cachemanxp
EpmPsd
dtsagntsvc
lmab_device
usbatapi2000
sfhlp02
suservice
dlcg_device
avsvcmonitor
REVO
lxcgcustomerconnect
omniusbl
wlancig
rupsd
wcontrol
UCTblHid
dntus26
w800mdm
anio
artourservice
FireTDI
pivotmou
nidomainservice
LMIRfsDriver
lxcc_device
LwUsbHid
ec2007service
smartwiservice
RMSvc
RapiMgr
rt2500
SE2Bbus
slapd-data52
SSFS0BB9
TeamViewer
websensecommunicationagent
NSSvcMgr
NVNET
wampapache
ELmon
dnsexit
mwsejcap
imonnt
k750mdm
se2Dnd5
AlteraByteBlaster
w22n51
Ndismeetro
dbmang
amusbprt
Cam5603C
PTDCMdm
SECYPUSB
bjmcmng
stirusb
e1000
SprintRcAppSvc
rsvchost
nmwcdcj
WmFilter
s616mgmt
SrvcEKIOMngr
armoucfltr
tdsmapi
BoiHwsetup
s716bus
WinDriver6
basic2
BCMWLNPF
wfxsvc
ncupdatesvc
F700imd
symantecantibotwatcher
arhidfltr
npptnt2
SMTPSVC
BCMModem
s7oppitx
VX3000
NWSIPX32
dcsloader
CTMSHD
DLARTL_M
transarcafsdaemon
se45nd5
cdr4_2k
snmptrapdservice
array_utility_service4,0,1,3
cpqdfw
aaksrv
VCAM
pdlnctdl
a016bus
antivirservice
LPDSVC
SimpTcp
sfdrv01
WUSB54Gv4SVC
HssSrv
iaimtv1
OVT511Plus
gtndis5
symwsc
fasttx2k
vserial
USB28xxOEM
SE26obex
protectionservice
cvsnt
NVTCP
VAIOMediaPlatform-PhotoServer-HTTP
SNP2UVC
retroexplauncher
avgntflt
sshrmd
ELacpi
epoxusdm
snapman
lxdm_device
vpctcom
wanatw
ntservice1
Epiusb
pcx1nd5
MMRTKRNL
MREMP50a64
bc_prt_f
tsp
hdaudaddservice
M3AD
s116mdm
moufiltr
CE3
qbreminderflash
nwlnkspx
Cam5603D
dlaifs_m
NtMtlFax
vmount2
fgdxbus
nmindexingservice
ndasbus
sfman
ccs
a8djusb
aswmon2
pctfw1
GBFSHook
NICSer_WPC54G
NSNDIS5
sit_flt
wlluc48
msftpsvc
us30service
Spsmqvsm
ovt519
BVRPMPR5
PNRPSvc
z525mdm
ZY202_XP
sstpsvc
es1371
avinitnt
MegaSR
iksyssec
s117mgmt
slservice
XilinxPC4Driver
crystaloutputfileserver
HssTrayService
iolodmv
DgiVecp
webfilter
symantecantibotfilter
keriomailserver
mssql$sqlexpress
ptserial
sfilter
acdpowerservice
defwatch
prtg4service
w200obex
regspy
cdrbsvsd
awecho
lhidflt2
lxct_device
matlabserver
ctxcpubal
PAR1284
tcsd_win32.exe
Via4in1
entech
psadd
nsctop
aeaudio
EPSON_EB_RPCV4_01
naveng
prism_a02
konfig
Atmuni
dklogger
sbpci
SQTECH9080
sbhooksvc
ofcservice
V0070VID
s117nd5
whoisd32
atikmdag
ipodservice
viaudio
lvcomser
GcKernel
tvtpktfilter
eectrl
w550bus
alcan5wn
Slntamr
retinaengine
ctaud2k
TcUsb
hpdskflt
AVCamUSB20
btnetfilter
AVCSTRM
NMSCFG
umwdf
SNMPTRAP
ELmou
qserver
Gernuwa
mldserv
symsecureport
dcstor32
se58mdfl
NWDHCP
snoopfree
ccsetmgr
ac97intc
WINUSB
steamdvr
viagfx
GMSIPCI
sdcoreservice
vncdrv
prismxl
atiavaiw
yukonwxp
Xponaut_WBD
NetPipeActivator
vpcvmm
mcproxy
srvdpi
TVALG
gameenum
hddsvc
QWAVE
symappcore
vaiomediaplatform-musicserver-appserver
CiscoVpnInstallService
AtcL002
wencrservice
rksample
caisafe
irda
EntDrv51
fasttraksvc
servicemgr
statusagent4
mdc8021x
rpcnet
fsdfwd
GVCplDrv
trufos
sskbfd
vclone
ipahelper.exe
MSSQL$MSSMLBIZ
sprtsvc_smartagent
sit_bus
InterBaseServer
Ndisipo
megamonitorsrv
VAIOMediaPlatform-MusicServer-HTTP
allegro
uclauncherservice
profos
STV680
edspport
zunenetworksvc
mwlsvc
omniusb
raysatxsi5_0server
fireport
CA561
qbcfmonitorservice
PdiPorts
mcstrm
LoopBeMidi1
rpaservice
nsengine
SQLAgent$MICROSOFTSMLBIZ
USBDeviceService
pdlnslea
nmwcd
ifp800
alertmanager
SaiH040B
Si3132r5
hibernation
MTC0001_ESB
ipsecmon
cpqarry2
idebusdr
tmesbs32
wlsetupsvc
truecrypt
p2psvc
ibmcicstransactiongateway
vwd
s716mdm
downloadmanagerlite
z525mdfl
backupclientsvc
umxfwhlp
bdfsdrv
PSI_SVC_2
kraidsvc
acedrv07
vds
btfirst
cnmpar21
USRpdA
BrSerIf
schscnt
mpservice
nimcdfxk
ccispwdsvc
ppmoucls
cpqvcagent
tfsndrct
spmd
iPassPeriodicUpdateService
PAC7302
BLKWGU(Belkin)
streamloadservice
DfwWebAgent
Cardex
upperdev
s116mdfl
lvselsus
XAudio
{eda5f5d3-9e0f-4f4d-8a13-1d1cf469c9cc}
fsRamDsk
pfmodnt
giveio
maya70docserver
rtl8029
CoachVc
ASDR
SNMP
dot4
MKEMUSB
w200bus
cypresslink
UMAXPCLS
se45mdm
netmnt
tfsnudfa
w810obex
ibmfilter
LHidKe
pwisvc
usbcm
bh611
kbfiltr
s716obex
acs
tme3srv
W8335XP
iam
AmdLLD
pdlnebas
digirefresh
RTHDMIAzAudService
cxusb
tabletservice
ibmpmdrv
se45obex
WNIPROT5
SE2Dobex
nscservice
sndsrvc
CTEDSPSY.DLL
generichidservice
sdcplh
caili
scan
SISNICXP
DM9102
ar5211
authsyssvc
gagp30kx
PSDNServ
winpowermonitor
p2pimsvc
lxrsii1s
GoBack2K
vzupsvc
stunnel
sr_service
FVXSCSI
qbposdbservices
NVR0Dev
pinnaclemarvinusb
VirtualCam
wwnetdde
wacomvhid
wpshelper
lpx
bthmodem
PSDFilter
Cam5607
ufdsvc
vmnetadapter
usbsermptxp
Ld51ocnucsnp
camdrl
fsma
scdemu
mxnic
epfw
iviaspi
IntelC51
UDFReadr
XFX_program
SetupNT
w810mgmt
SE27mgmt
stac97
Blfp
RR2Vbi
nuvaud2
SaiMini
alcaudsl
adobeactivefilemonitor4.0
TMBMServer
ramaint
PciBus
s716nd5
issm
A88xXBar
alcxsens
VRcore
NWFILTER
hpqwmi
mwagent
sonypvs1
atchksrv
As6frin
KMW_USB
pxfhbus
scsiaccess
ipsraidn
mdm
RDID1007
ihcservice
USB_NDIS_51
NetMsmqActivator
nimdbgk
epson_pm_rpcv2_02
nvnetbus
pchost
HSFHWALI
gearsecurity
pciSd
vaiomediaplatform-videoserver-appserver
websenseusagemonitor
SetupSys
U81xbus
aawservice
winsshd
iaimtv2
clisvc
usbser
tfsncofs
EPOWER
O2SCBUS
StickyMesger
vpcbus
kwatchsvc
bb-run
avgmfx86
mlkkbdntdriver
ATIBTCAP
3comtftp
w70n51
AVerTV
rkhdrv31
SQLAgent$ABBEYIIOFFLINE
pop3d32
CTMFLT
epstnt01
EUSBMSD
vzfw
ctsfm2k
w39n51
cfosspeeds
wpsdrvnt
HpqRemHid
askernel
lyncusbserv
sandboxu
lbtserv
portmapper
s217nd5
tng-doba
REVOSENS
s217mdm
tdrpman
tosrfusb
avgfwsrv
GTPTSER
paamsrv
com4qlb
personalsecuredriveservice
SDdriver
acprfmgrsvc
hidir
jconfigd
incdsrv
nwdls
mohfilt
nvenetfd
pcnet
tversitymediaserver
s116mgmt
bdfdll
Hardlock
slabbus
USB_RNDIS
MRENDIS5
aiclient
vwkernel
merakcontrol
obvious
dlaudfam
WISTechVIDCAP
naimagent32
nvpvrmon
SGIR
trioservice
backupexecalertserver
oraclesnmppeermasteragent
BrPar
hwdatacard
wlancfg
ino_fltr
HSFHWICH
elnkupdateservice
zpmysql
bdselfpr
AR5523
elosystemservice
NMSAccessU
euq_monitor
inotask
ni_nic
NdisFilt
servicelayer
KLOGNT
soma
DcPTP
ADSMService
pavatscheduler
purendis
trlokom_rmhsvc
BCM42RLY
RalinkRegistryWriter
backupexecagentaccelerator
persfw
vsserv
ICAM5USB
DVDVRRdr_xp
cmigameport
sisidex
zpjobq
BTSLBCSP
hpqwmiex
pilogsrv
SaiNtBus
GV600_4
btwavdt
Bcim
SiSRaid
emclisrv
avfilter
slpmonx
EQDRV5
iviVD
SE2Eobex
se44unic
stllssvr
patrol_scheduler
sonytvc
msk80service
oracleorahome92tnslistener
gmer
lxce_device
vulfnths
usrbridg
ccalib8
pacsptisvr
ma763004
oracle_load_balancer_60_server-forms6i
HssDrv
sis315
WinVd32
sqlagent$sony_mediamgr
wacomkey
DivisCTP
mcvsrte
LUsbFilt
ppa3
SE27mdfl
autostore
caboagp
dashsvc
vvdsvc
webrootspysweeperservice
Fd16_700
om518p
FireHook
datasvr2
winachcf
symantecantibotagent
vaiomediaplatform-integratedserver-appserver
Sk9920nt
MREMPR5
MR97310_USB_DUAL_CAMERA
hotspotshieldservice
tvald
YMIDUSB
mksvirmonsvc
HECI
minilog
omsad
websenseclientdeployservice
CTSYN
WimFltr
eabfiltr
mcp
dladresn
omniinet
SGHIDI
ahcix86s
amdk7
mfcom
wg5n
retrowdsvc
djsnetcn
SED133x
W700bus
mcdbus
cfgwzsvc
MaxtorFrontPanel1
CTAudSvcService
HIDSwvd
MobilePreInstallerService
taphss
GT890x
sddmi2
scarddrv
backupexecdevicemediaservice
CTEAPSFX.DLL
enxpsvr
cwcpsvc20
WmBEnum
iaimfp0
lvhidsvc
OneCareMP
iclarityqosservice
GTWModem
cpqdmi
vmkbd2
vsmon
palmusbd
pktfilter
PCDCODEC
vusbbus
pcscnsrv
atksgt
AEADIFilters
commserver
cdrbsdrv
sfsync04
patrolagent
acsvc
nmwcdc
MA8032M
foldersize
aalogger
wps
tapeware
lxby_device
stcagent
bthidmgr
mcafeeframework
NvNdis
pinnaclesys.mediaserver
websensewfreportserver
SE27obex
lkclassads
mwsarcpkt
DS1410D
HSX_DP
ikfileflt
LXARScan
websensepolicyserver
curtainssyssvc
s116bus
genregistrar
xpagentserver
aexnsclient
PGPsdkDriver
cpqfcalm
z800mdfl
eamon
DN2AKNET
MA8032C
acdservice
SWUMX20
sagefserver
roxwatch
{a7447300-8075-4b0d-83f1-3d75c8ebc623}
hcwPVRP2
tos_sps32
carboncopy32
dmisrv
wkscfgsrv
roxliveshare
vwlogger
ifxtcs
nvata
uphclean
w200mdfl
se59mdm
ScFBPNT2
ghostsec
kavsvc
WavxDMgr
adiusbaw
ASFWHide
lmimaint
appnnode
webupdate
atierecord
ssrtln
license
remotelyanywhere
awlegacy
procexp90
MSSQL$AUTODESKVAULT
cxpt_service
usnsvc
s117mdm
npkcsvc
zenos1
neokdss
gv3
Mtlmnt5
a016mdm
sf
cpsvc
cs429x
pgpserv
AffinegyService
ROB_V
NetTcpActivator
Epfwndis
DSI_SiUSBXp_3_1
IntuitUpdateService
TestHandler
AppnApi
WNCPKT
ezplay
cwcwdm
wampmysqld
websensecpmcommunicationagent
speedfan
blueletscoaudio
penrendezvous
ss_mdm
db2jds
{834170a7-af3b-4d34-a757-e05eb29ee96d}
XTrapD12
dwmrcs
TMKEmu
id2scaps
CVPNDRVA
swmsflt
tunmp
mcrdsvc
intelroam
PDExchange
WaveFDE
cyberpowerups
NsTrcNT
mediaviewer
MRESP50a64
marvinbus
proxyserverservice
thkeys
mod7700
nsm1mdm
captureservice
W55U01
atimpab
backupexecnamingservice
useraccess
RTL8023xp
Subsonic
mgabgexe
dns4meclient
eskerlicensecontrol
msmframework
quickhealfirewall
cwafadminmonitor
rwbackupsrv
ELhid
amdk77
vmauthdservice
tosrfsnd
spcflt
QPSched
nnsvc
amfilter
cdfsvc
Wtcls2k
lxda_device
ctac32k
wtwservice
epsonbidirectionalagent
{6080a529-897e-4629-a488-aba0c29b635e}
uploadmgr
issvc
ftsata2
ino_flpy
EagleNT
picturetaker
mwspollserver
tappsrv
clr_optimization_v2.0.50215_32
mr2kserv
lxcj_device
bocdrive
atirage3
bcftdi
U2SP
Exportit
lvuvc
ZDPNDIS5
HFACSVC
WmHidLo
p17
s616nd5
Memctl
wlidsvc
U81xmgmt
WmXlCore
rassstp
tomcatcws3
avhook
LVRS
CX88ENC
c-dillacdac11ba
fsks
w800bus
slee_503_service
prohlp02
s217mdfl
MSTAPE
pctoolsfirewallplus
hsvcmod
hmonitor
bridge
nipsvc
qfcoresvc
awhost32
rslinx
passthru
v124
avipbb
LUsbKbd
pdlndoem
mctskshd.exe
tmlisten
bcserver
se58mdm
usbvm321
RSAFAL
pcidrv
buslogic
iPassP
TPECioCtl
mirrorv3
nvport
MSW_USB
diskeeper
CdaC15BA
T6963C
sfhlp01
MSFWDrv
Wuser32
netrcacm
sprtsvc_dellsupportcenter
tdcmdpst
nfsds
rtl8187Se
surveyor
se2End5
nim32
SNP2STD
pdlndtdl
ds1
clientservice
NVXBAR
aslm75
nvrd32
centennialclientagent
ROB_A
ZSMC301b
se59nd5
a016mgmt
ARCSOFTVIRTUALCAPTURE
CTEDSPFX.DLL
cportclm
RioS30
ATIVXSTW
oracleorahomemanagementserver
owstimer
ccflic0
statusagent
webrootenterpriseclientservice
crystalaps
UWProSys
atiavpci
U81xmdm
fsaa
vet-rec
PXRDDriver
rxfilter
iaimtv4
w550mdfl
cmpci
lktimesync
AN983
ATIBTXBAR
mcmispupdmgr
cqcpu
AmdIde
tpsrv
gotomypc
ccevtmgr
epgspooler
UsbDiag
ghaio
ithsgt
imaservice
npapimon
ATWPKT2
ikhfile
CTSBLFX.DLL
aolservice
tavsvc
CTHWIUT.DLL
SE2Cmgmt
belmonitorservice
ZSMC303
se59obex
FirePM
Pcatip
RR2IOMod
avg7rsxp
FreeTdi
stylexphelper
wmconnectcds
{95808DC4-FA4A-4c74-92FE-5B863F82066B}
nwrdr
AppnBase
akshasp
avupdsvc
thpsrv
websensedcagent
s3twistr
egathdrv
HabuFltr
LHidUsbK
pepifilter
vaiomediaplatform-mobile-gateway
bt3cser
SRTSPL
NETw5x32
szserver
bc_filter
ctxhttp
vetmonnt
atkdisplf
netcfgsvr
SE2Bmgmt
CTMMOUNT
wmccdsls
mfeapfk
sptisrv
BcmSqlStartupSvc
LC7981
mi-raysat_3dsmax9_32
s116unic
odclientservice
Slpsvdr
Appn
ccproxy
vsdatant
dlcf_device
rmedia
papyjoy
HPSLPSVC
xnacc
NAL
PSSdk21
TClass2k
ozoneinstallerservice
w300mdm
pav_service
cvintdrv
roxmediadb
sit_mdm
ZDCNDIS5
LVCap138
bdss
pgfilter
dot4usb
dcevt32
bridgemp
BlueSoleilCS
db2governor
DniVad
RESMGR
clsched
symmpi
NETw3v32
nocashio
tiumfwl
licensemanagersocket
rnadirmultiplexor
orbmediaservice
HpqKbFiltr
cpntsrv
zpsc
netwg311
UxTuneUp
arkbcfltr
videoacceleratorengine
se58bus
hdthermal
FVNETusb
winmtsrv
BRGSp50
cmuda3
pdlnacom
zpnodecollector
lanusb
SABSVC
roxupnprenderer
atitool
ati2mtaa
Wbutton
iirsp
JL2005C
yediex
SiSRaid2
rfcomm
NTSIM
SABProcEnum
coste
iwebmsg
softfax
regmanserv
ntsyslog
uhcd
diskperf
MSIRCOMM
ctxcpusched
n558
Packet
ageresoftmodem
pdlndqll
lwwlicenseservice
wg111nd5
nvnforce
zdeviceservice
SE2Emgmt
IJPLMSVC
cmudau
ICAM3NT5
oracleorahome90agent
dcfssvc
vet-filt
procexp100
SMPLSCSI
SunkFilt39
aracpi
vc5secs
hpgate
knobserv
OracleOraHome92ClientCache
eventclientmultiplexer
avpnnic
SE2Cbus
se58nd5
dm1service
netmdsb
fix
ARSVC
SE2Bmdfl
lxbt_device
ulcdrhlp
SMCB000
pdlnshay
sermouse
ntsvcmgr
tvtfilter
mafwboot
ISODrive
cpqfws2e
pcx1unic
emu10k1
savscan
ddxgb
as32svc
cygserver
bcm43xx
AFGMp50
L8042mou
tapvpn
mindretrieve
besclient
veteboot
bdrsdrv
swupdtmr
hcmon
oracleformsserver-forms60server-oraform
nisvcloc
lxcz_device
navex15
cmdagent
getPlusHelper
AsuhfivrO
se45bus
MA_CMIDI
susbser
shuttleengine
{e2b953a6-195a-44f9-9ba3-3d5f4e32bb55}
zendcoreapache
ltxred
fsssvc
CADlink
hap17v2k
pmj151la
ibmsmbus
HWSCtrl
tpkmpsvc
aw_host
UVCFTR
s117bus
vncmirror
Uim_IM
ati
dimension4
DMUSBUSBDCam
se44mdm
s125bus
se2Bunic
websenseuserservice
nvstor64
guardian2
nvraid
MA-620
pctavsvc
SiS7018
vmnetbridge
p1110vid
CoachAud
SenFiltService
pserve
cwafrmiregistry
w200mgmt
zebrmdfl
MSICPL
USBCCID
rtl8139
flutilssvc
dirms_defragmentation
TPM
d-link_st3402
YahooAUService
pnkbstrk
ctusfsyn
ashampoodefragservice
SrvcEPECioctl
mpfirewl
lvpr2mon
PTproct
richvideo
actser
nvatabus
ql2100
STV680m
bgmainsvc
pageserver
cdmservice
MXOFX
navap
dnserver32
npkcmsvc
bc_ngn
vcdsecs
QPCapSvc
olcamsrv
cwcspud
nvax
eloggersvc6
ldlcserv
mail2ec
rp32service
iaimfp4
adiloader
ndiscm
JRAID
ROOTUSB
mediamaxxlservice
fasttrackinstallerservice
w550mdm
iisadmin
winvnc4
xfilt
ZDPSp50
mr7910
smcirda
nmservice
mcontrol
harmony
slimsvc
psimsvc
cimnotify
xusb21
KR10I
qbfcservice
dlaopiom
int15.sys
qbposdbextservices
lvprcsrv
nmsaccess
VRFIL
AtlsAud
oracle_load_balancer_60_client-forms6ip14
apfiltrservice
iaimfp1
ssisvr32
nipxirmu
remoterecord
netdetect
cdvp
WLAN_USB
deltafw
SWNC8U51
bcoreusb
W700mgmt
se2Dunic
msftesql
wintab32
nmraapache
spbbcsvc
bgs_sdservice
ftpqueue
BUFADPT
areschatserver
TPwSav
vproeventmonitor
VC6SecS
tosporte
toshidpt
tsmapip
se26unic
BrScnUsb
DSXUSB
pdagent
bhmonitorservice
websensecamreportserver
agentsrv
rrrspy
tpkd
msgame
purgeieservice
macformatservice
ha10kx2k
RimSerPort
twdns
avp
mctaskmanager
avgems
Video3D
https-admserv61
NuidFltr
phnxvcdservice
dlabmfsm
ALYac_PZSrv
imountsrv
dot4scan
IASJet
WinHttpAutoProxySvc
bthpan
ialm
amon
Amsmpu4p
lxcg_device
s3psddr
3combootp
R300
IFP700
ET5Drv
aamqdispatcher
Sus2pl
ELkbd
npkcusb
sscdmdfl
pca
ctljystk
SE2Cobex
zpjava
z800mgmt
stacsv
oracle_load_balancer_60_client-forms6i
MtxDma0
pdfcreatormessages
S3GIGP
pdlncfwk
tmesrv3
utscsi
avg7alrt
z800obex
WGX
lxrjd31s
dot4ufd
rxmssync
MobilityService
elbydelay
cdralw2k
atitunep
sglfb
iftpsvc
NEOFLTR_600_13319
FsVga
modemcsa
DcLps
vmnetdhcp
se44nd5
se27nd5
xfactorae1
msmpsvc
ZuneWlanCfgSvc
transbaseservice
tfsnpool
FGDSCSI
pxfhmdfl
noipducservice
lkcitadelserver
arrayssl_vpn_service3,0,1,9
Invoker
co_mon
p2k
issimon
cwafadmincontroller
oracle_load_balancer_60_server-forms6ip9
ndassvc
acnusvc
ati2mtag
sglogplayer
ngserver
iap
ssm_mdm
sis162u
RecAgent
se44mdfl
RIOXDRV
GT680x
transcode360
regdefend
InCDsrvR
snac
server
regservice
ZuneBusEnum
vmx86
cwafeventrouter
3dkeybd
timounter
citrixwmiservice
FlexBios
StMp3Rec
DCamUSBSQTECH
prodrv06
tsdhd
tandpl
jsdaemon
BCM43XV
akshhl
s716mgmt
VC4CB104
ABVPN2K
epsonstatusagent2
mwstick
TNaviSrv
pav_security
qcmerced
avgascln
prfldsvc
ipodsrv
Rawwan
lckfldservice
symlcbrd
rpsupdaterr
GENERICDRV
NTACCESS
umpusbxp
slssvc
zpcollector
clnt_clientman
puscsrvc
F700ius
WINIO
pdlnatdl
kbstuff
dlaboiom
ASInsHelp
V0080Dev
oraclesnmppeerencapsulator
crystalinputfileserver
PCTINDIS5
asmagent
mysqlinventime
Freedom
s116obex
k750bus
winpowermanager
elaunidr
TCtrlIO
s616mdm
fsaua
dvd_2K
backuplauncher
slave
ikfilesec
pnmsrv
SE26mdfl
hcwPP2
bufserv
spmgr
USA49W
DMICall
dlacdbhm
com0com
protexislicensing
TMHIDSRV
viairda
GTF32BUS
sbp2port
lxdmCATSCustConnectService
iaantmon
FiltUSBEMPIA
s116nd5
Defrag32b
SNDO763
superproserver
USB11LDR
fshttps
artdhcp
GameConsoleService
XBCD
iAimTV6
yats32
se2Cunic
lfsfilt
UMPass
CTDevice_Srv
SRVLOC
npkcrypt
fuj02b1
EKECioCtl
webdriveservice
sansaservice
forcewarewebinterface
L1e
mclserviceatl
advantage
dxdebug
{85ccb53b-23d8-4e73-b1b7-9ddb71827d9b}
mmc_2K
nicconfigsvc
netsvc
VAIOMediaPlatform-VideoServer-UPnP
PTDCVsp
sonicstagemonitoring
outpostfirewall
lpds
osanbm
spkrmon
radclock
jukebox3
sr_watchdog
w550mgmt
meiudf
hamachi
se59unic
PBADRV
UimBus
AmeLanPc
ESMCR
SiSGbeXP
p2pgasvc
openvpnservice
NPPTNT
NVENET
vci
usbmate
trcboot
sonywbms
z525bus
defragfs
UlSata
usbsermpt
spupdsvc
transactional
vetfddnt
mcupdmgr.exe
cwbrxd
TIEHDUSB
mnsframework
cacheserver
IntelC53
hpconfig
pshost
sp_clamsrv
klif
nHancer
mapserver6.3
addfiltr
cics.region2
ss_bus
lxbu_device
exfat
LMS
FileDisk
CXAVXBAR
nvcap
nuvvid2
dlcc_device
efs
Alpham2
bc_ip_f
CnxTrUsb
elotouchscreen
ca-messagequeuing
DVDRC
KMW_KBD
sscdbus
ccpwdsvc
netdevio
spcsutilityservice
ONSIO
pid_0928
CT20XUT.DLL
NETw3x32
ErrDev
https-nassry
pxhelp20
ativraxx
backupexecjobengine
cpuidlep
b57w2k
NTIDrvr
ps2
IPSECSHM
vxd
pdlnatcm
ntuneservice
WMIService
TPPWRIF
sfsync02
viaagp1
cccredmgr
ntiopnp
cpqalert
hpwirelessmgr
ibmpmsvc
Ncrc710
acrotray
avgio
symsnap
NwSapAgent
W700obex
CTEXFIFX.DLL
lexbces
teefer2
RR2Ctrl
CVPND
tvichw32
smartlinkservice
X10UIF
pxfhserd
sonicatheaterinstallerservice
maxbackserviceint
botcbs
CAMCAUD
bantext
NOWMEMDF
papycpu2
iPassPeriodicUpdateApp
se27unic
wltwo51b
sonypvu1
VirtualFD
iaimtv3
aksusb
XDva004
X4HSX32
rca
DeviceScanner
symndis
DellAMBrokerService
MxlW2k
DLH5X
NETMDUSB
wusb54gv2svc
tcpipBM
smbusp
RVIEG01
tbhsd
cltnetcnservice
atkkeyboardservice
oracleorahometnslistener
ilicensesvc
mqdmmdfl
retrolauncher
A88xEnc
vpcusb
starwindservice
pivot
navapsvc
Sunkfiltp
VIAPFD
adpu320
cusrvc
g400
CXTUNE
CcmExec
cdr4_xp
acedrv05
bthport
lxdj_device
vcomm
vcsw
U81xobex
sysenforce
mksupdateint
mcdetect.exe
hf30service
msloop
astcc
nvidesm
IBMTPCHK
vsapint
ultra66
ntpr_nic_service2
apache2
centennialiptransferagent
tifmsony
rp_fws
SWUMX51
orbpvr
AGV
hpdj
ms_mpu401
hnmsvc
oracleoradb10g_home1isql*plus
oracle%oracle_home_service%clientcache80
lvmvdrv
usbohci
FET5X86V
gdrv
p3
SQLAgent$LG_LP2
oracledbconsoleorcl
s125obex
mcpromgr
tzontservice
a8djavs
eSettingsService
msvsmon90
mhndrv
M2500
rvscc
ossrv
abnetmon
NIPALK
kl1
elservice
avg7updsvc
quickbooksdb
dvpapi
GT891x
sleepy
SeratoUsb
c34nb4c5
beatjamupnpmusicserver
sscdserd
shdserv
EU3_USB
VHidMinidrv
se59bus
CAMFLT
admjoy
se45unic
SWNC5E00
dlaudf_m
AYDrvNT_ALYAC
P16X
sp_rssrv
grmnusb
s616bus
COMMONFX.DLL
dlcq_device
pdlnafac
mcods
dmprimer
RR2Mjpeg
tosrfcom
FTSER2K
pavagente
antivirscheduler
SQLWriter
PEVSystemStart
Airgo
Nmea
teefer
ventrilo
vmsprog
pvservice
tnbrlds
sscdbhk5
RIOUNIV
lxcr_device
l8042pr2
NMSSvc
pdlnecfg
lp6nds35
tmcomm
a016obex
cis1284
adihdaudaddservice
icollectservice
googledesktopmanager
flashpnt
cqmghost
dot4print
SE2Emdfl
RT25USBAP
ceepwrsvc
avg7core
AdobeActiveFileMonitor6.0
rampartsvc
W8100PCI
scanwscs
RAPIProtocol
LMouFilt
ROCKEYNT
DirectUpdate
lusbaudio
lmimirr
SndTDriverV32
videX32
nvgts
pinetmgr
PolarUSB
KR3NPXP
DumaNT
flashcomadmin
SE2Dmgmt
mi-raysat_3dsmax8
SQTECH905C
CBTNDIS5
KS0108
ipassconnectengine
rbfilter
nv_agp
erecoveryservice
VCIDRV
RTL8169
wpdusb
F700iob
entertainment
rt61
lightscribeservice
IntelC52
WSIMD
mssql$soshome22
ESDCR
MS1000
nsausvc
portio
McciCMService
osaio
KMWDFilter
npfmntor
psdistributionagent
SymIM
avgclean
MRESP50
ARPolicy
webcompserver
winss
alertservice
WD_FireWire_HID
incdpass
vga
vaiomediaplatform-photoserver-appserver
BrUsbSer
axsnmsvc
qconsvc
MTDVC2_ENUM
tap0901
ntcharge
se45mdfl
ssrvc
TBPanel
nvrd64
sgectl
zmxpzip
hsf_msft
DCamUSBMke
ati2mpaa
DivisCTS
mcusrmgr
pdlncbas
AEAudioService
WscNetDr
freesshdservice
tiwlnsvc
spbbcdrv
aswtdi
p17xfilt
symfw
beatjammusicstreamingserver
pnkbstrb
irbus
k750mdfl
iAimFP6
Defrag32
MagicTune
tosrfnds
gdihook5
nimcdlbk
pavsrv
adaptecstoragemanageragent
vrservice
db2remotecmd
irmon
emproxy
gbpoll
db2licd
SunkFilt
WUSB54GPV4SRV
imonitor
ssdiagn
CAMCHALA
vmusb
pdlndsdl
fcdabus
brmfrmps
icepack
sit_prt
lmouflt2
DNE
ICM10USB
symevent
itchfltr
nvmd
snapman380
vnxservice
lvtuner
ovmsmaccessmanager
dphost
AsusACPI
mscsptisrv
pensup
wmdmpmsp
CDRPDACC
vrmonsvc
svv
lcs
iaimfp3
vrfwsvc
revudfservice
backupexecnotificationserver
ProcObsrv
ctprxy2k
rrspy
bthserv
wanminiportservice
CVirtA
pdlnemap
axinstsv
nimxdfk
Mtlstrm
dsNcAdpt
mssql$pinnaclesys
fingrd32
TSHWMDTCP
filterservice
NCPro
avidstartup
nvsmu
vaiomediaplatform-integratedserver-http
bmwebcfg
procdd
Alpham1
ood2000
MA8032U
VRADFIL
pdiddcci
qkbfiltr
PCDRSRVC
IOSLINK
ftrtsvc
CBN
UsbserFilt
cicsclient
sandrathesrv
acmservice
tmtdi
screadspool
resourcemanagermail
Xyz777b
pccsmcfd
HPFXBULK
Cap7134
savrt
plscsi
NETGEAR_MA111
ZD1211BU(ZyDAS)
pae_1394
MRV6X32P
ageremodemaudio
nscirda
cercsr6
SrvcSSIOMngr
aeclienthostservice
DCamUSBEMPIA
IBM_LLC2
vetefile
lvckap
FETNDISB
pcctlcom
EACSys
csctl50
pml
trackcam4
W700mdfl
toscosrv
CTERFXFX.DLL
emu10k
psdvdisk
sbservice
mbackmonitor
eeyeevnt
CX23880
ctdvda2k
se58mgmt
deckzpsx
elbycdfl
sfcure01
ltck000c
TMBUS
ndasscsi
cfosspeed
vcommmgr
avcgbfl
venturi2
VAIOMediaPlatform-VideoServer-HTTP
ATKGFNEXSrv
Rasman
Remoteaccess
Schedule
Seclogon
SENS
Sharedaccess
SRService
Tapisrv
Themes
TrkWks
W32Time
WZCSVC
Wmi
WmdmPmSp
winmgmt
wscsvc
xmlprov
BITS
wuauserv
ShellHWDetection
helpsvc
WmdmPmSN
napagent
hkmsvc
.
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
.
.
Contents of the 'Scheduled Tasks' folder
.
2012-02-24 c:\windows\Tasks\1-Klick-Wartung.job
- c:\archivos de programa\TuneUp Utilities 2004\SystemOptimizer.exe [2004-02-03 16:51]
.
2012-02-14 c:\windows\Tasks\AppleSoftwareUpdate.job
- c:\archivos de programa\Apple Software Update\SoftwareUpdate.exe [2011-06-01 15:57]
.
2012-03-03 c:\windows\Tasks\At1.job
- c:\archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2011-06-08 17:06]
.
2012-03-03 c:\windows\Tasks\At2.job
- c:\archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2011-06-08 17:06]
.
2012-03-03 c:\windows\Tasks\At3.job
- c:\archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2011-06-08 17:06]
.
2012-03-04 c:\windows\Tasks\At4.job
- c:\archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\HPCustPartic.exe [2011-06-08 17:06]
.
2012-03-04 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\archivos de programa\Google\Update\GoogleUpdate.exe [2009-06-09 08:56]
.
2012-03-04 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\archivos de programa\Google\Update\GoogleUpdate.exe [2009-06-09 08:56]
.
2012-03-04 c:\windows\Tasks\HP Photo Creations Messager.job
- c:\documents and settings\All Users\Datos de programa\HP Photo Creations\MessageCheck.exe [2011-02-15 10:11]
.
.
------- Supplementary Scan -------
.
uStart Page = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
uInternet Settings,ProxyOverride = *.local
IE: Add to Google Photos Screensa&ver - c:\windows\system32\GPhotos.scr/200
IE: E&xportar a Microsoft Excel - c:\archiv~1\MICROS~2\Office12\EXCEL.EXE/3000
IE: Enviar a &Bluetooth - c:\archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\documents and settings\Antonio\Datos de programa\Mozilla\Firefox\Profiles\d1btvxmv.default\
.
- - - - ORPHANS REMOVED - - - -
.
SafeBoot-53924013.sys
SafeBoot-mcmscsvc
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-04 19:56
Windows 5.1.2600 Service Pack 3 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
[HKEY_LOCAL_MACHINE\System\ControlSet001\Services\Iomega Activity Disk2]
"ImagePath"="\"\""
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\software\Microsoft\Windows\CurrentVersion\Installer\UserData\LocalSystem\Components\€–€|ÿÿÿÿÀ•€|ù•9~*]
"A0C0710900063D11C8EF10054038389C"="C?\\WINDOWS\\system32\\FM20ENU.DLL"
.
[HKEY_LOCAL_MACHINE\software\mpDRM\LicenseStore*]
"CheckValue"=dword:ae520243
"A155D051"="19478B57"
.
--------------------- DLLs Loaded Under Running Processes ---------------------
.
- - - - - - - > 'winlogon.exe'(292)
c:\archivos de programa\SUPERAntiSpyware\SASWINLO.DLL
c:\windows\system32\WININET.dll
c:\archivos de programa\Citrix\GoToAssist\615\G2AWinLogon.dll
.
- - - - - - - > 'explorer.exe'(796)
c:\windows\system32\WININET.dll
c:\archivos de programa\Livedrive\LivedriveExtensions.dll
c:\documents and settings\Antonio\Datos de programa\Dropbox\bin\DropboxExt.14.dll
.
Completion time: 2012-03-04 20:05:38 - machine was rebooted
ComboFix-quarantined-files.txt 2012-03-04 19:05
.
Pre-Run: 84.402.225.152 bytes libres
Post-Run: 85.416.775.680 bytes libres
.
- - End Of File - - C828421FF06B1F876411D4DE60D8643B

#9 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:01 AM

Posted 04 March 2012 - 02:42 PM

Hello

Lets get a deeper look into the system and see if something shows up.

Download and run OTL

Download OTL by Old Timer and save it to your Desktop.
  • Double click on OTL.exe to run it.
  • Under Output, ensure that Minimal Output is selected.
  • Under Extra Registry section, select Use SafeList.
  • Click the Scan All Users checkbox.
  • Click on Run Scan at the top left hand corner.
  • When done, two Notepad files will open.
    • OTL.txt <-- Will be opened and the that I need posted back here
    • Extra.txt <-- Will be minimized - save this one on your desktop in case I ask for it later
  • Please post the contents of OTL.txt in your next reply.

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#10 dinkelchen

dinkelchen
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 04 March 2012 - 03:45 PM

OTL logfile created on: 04/03/2012 21:27:49 - Run 1
OTL by OldTimer - Version 3.2.35.1 Folder = C:\Documents and Settings\Antonio\Escritorio
Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000C0A | Country: España | Language: ESN | Date Format: dd/MM/yyyy

3,00 Gb Total Physical Memory | 2,39 Gb Available Physical Memory | 79,83% Memory free
4,84 Gb Paging File | 4,30 Gb Available in Paging File | 88,96% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Archivos de programa
Drive C: | 292,17 Gb Total Space | 76,57 Gb Free Space | 26,21% Space Free | Partition Type: NTFS

Computer Name: DELL_KATRIN | User Name: Antonio | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - C:\Documents and Settings\Antonio\Escritorio\OTL.exe (OldTimer Tools)
PRC - C:\Documents and Settings\Antonio\Datos de programa\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
PRC - C:\Archivos de programa\Livedrive\VSSService.exe ()
PRC - C:\Archivos de programa\GFI Software\VIPRE\SBAMTray.exe (GFI Software)
PRC - C:\Archivos de programa\GFI Software\VIPRE\SBAMSvc.exe (GFI Software)
PRC - C:\Archivos de programa\GFI Software\VIPRE\SBPIMSvc.exe (GFI Software)
PRC - C:\Archivos de programa\Archivos comunes\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
PRC - C:\Archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
PRC - C:\Archivos de programa\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
PRC - C:\Archivos de programa\o2\Mobile Connection Manager\ImpWiFiSvc.exe (Telefónica I+D)
PRC - C:\Archivos de programa\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe (Vodafone)
PRC - C:\Archivos de programa\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe (WDC)
PRC - C:\Archivos de programa\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe (Memeo)
PRC - C:\Archivos de programa\AskBarDis\bar\bin\ASKUpgrade.exe ()
PRC - C:\Archivos de programa\AskBarDis\bar\bin\AskService.exe ()
PRC - C:\WINDOWS\explorer.exe (Microsoft Corporation)
PRC - C:\Archivos de programa\Archivos comunes\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft)
PRC - C:\Archivos de programa\Intel\Wireless\Bin\ZCfgSvc.exe (Intel Corporation)
PRC - C:\Archivos de programa\Intel\Wireless\Bin\WLKEEPER.exe (Intel® Corporation)
PRC - C:\Archivos de programa\Intel\Wireless\Bin\iFrmewrk.exe (Intel Corporation)
PRC - C:\Archivos de programa\Intel\Wireless\Bin\Dot1XCfg.exe (Intel Corporation)
PRC - C:\WINDOWS\system32\KADxMain.exe (Knowles Acoustics)
PRC - C:\Archivos de programa\Creative\Mixer\CTSVolFE.exe (Creative Technology Ltd)
PRC - C:\Archivos de programa\Iomega\AutoDisk\ADService.exe (Iomega Corporation)
PRC - C:\Archivos de programa\Iomega\System32\AppServices.exe (Iomega Corporation)


========== Modules (No Company Name) ==========

MOD - C:\Archivos de programa\GFI Software\VIPRE\Definitions\libBase64.dll ()
MOD - C:\Archivos de programa\GFI Software\VIPRE\Definitions\libMachoUniv.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\11dcb806c92f55111f5fa9f1a90e3bdd\System.ServiceProcess.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Management\a2a14380e8c9149d5b212d0100ef588a\System.Management.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuratio#\28637135c6939e74450bbbf110b12643\System.Configuration.Install.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Security\5fb9981f4147b537b53be9d58bf4e9b4\System.Security.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\94a40f415bfa947e251888bbe88bb973\System.Configuration.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\77e1279cbf4eecfb0284b63316fe43fe\System.Xml.ni.dll ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\9e3803cd2a11f056291862e306a8e2b2\System.ni.dll ()
MOD - C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll ()
MOD - C:\Archivos de programa\Livedrive\VSSService.exe ()
MOD - C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\ca87ba84221991839abbe7d4bc9c6721\mscorlib.ni.dll ()
MOD - C:\Archivos de programa\Archivos comunes\Apple\Apple Application Support\zlib1.dll ()
MOD - C:\Archivos de programa\Archivos comunes\Apple\Apple Application Support\libxml2.dll ()
MOD - C:\WINDOWS\system32\HPScanTRDrv_DJ3050A_J611.dll ()
MOD - C:\WINDOWS\system32\Primomonnt.dll ()
MOD - C:\Archivos de programa\AskBarDis\bar\bin\ASKUpgrade.exe ()
MOD - C:\Archivos de programa\AskBarDis\bar\bin\AskService.exe ()
MOD - C:\Archivos de programa\WinRAR\RarExt.dll ()
MOD - C:\Archivos de programa\Intel\Wireless\Bin\iWMSProv.dll ()
MOD - C:\Archivos de programa\Intel\Wireless\Bin\acAuth.dll ()
MOD - C:\Archivos de programa\GFI Software\VIPRE\unrar.dll ()


========== Win32 Services (SafeList) ==========

SRV - (ZY202_XP) -- File not found
SRV - (ZuneWlanCfgSvc) -- File not found
SRV - (zunenetworksvc) -- File not found
SRV - (ZSMC303) -- File not found
SRV - (ZSMC301b) -- File not found
SRV - (zpsc) -- File not found
SRV - (zpnodecollector) -- File not found
SRV - (zpmysql) -- File not found
SRV - (zpjobq) -- File not found
SRV - (zpjava) -- File not found
SRV - (zmxpzip) -- File not found
SRV - (zenos1) -- File not found
SRV - (zendcoreapache) -- File not found
SRV - (zebrsce) -- File not found
SRV - (zebrmdfl) -- File not found
SRV - (ZDPSp50) -- File not found
SRV - (ZDPNDIS5) -- File not found
SRV - (zdeviceservice) -- File not found
SRV - (ZDCNDIS5) -- File not found
SRV - (zd1211u(zydas)) -- File not found
SRV - (ZD1211BU(ZyDAS)) -- File not found
SRV - (z800obex) -- File not found
SRV - (z800mdfl) -- File not found
SRV - (z800bus) -- File not found
SRV - (z525mdm) -- File not found
SRV - (z525mdfl) -- File not found
SRV - (z525bus) -- File not found
SRV - (yukonwxp) -- File not found
SRV - (YMIDUSB) -- File not found
SRV - (yediex) -- File not found
SRV - (yats32) -- File not found
SRV - (YahooAUService) -- File not found
SRV - (Xyz777s) -- File not found
SRV - (Xyz777b) -- File not found
SRV - (xusb21) -- File not found
SRV - (XUIF) -- File not found
SRV - (XTrapD12) -- File not found
SRV - (Xponaut_WBD) -- File not found
SRV - (xpagentserver) -- File not found
SRV - (xpadminserver) -- File not found
SRV - (xnacc) -- File not found
SRV - (XilinxPC4Driver) -- File not found
SRV - (XFX_program) -- File not found
SRV - (xfilt) -- File not found
SRV - (XDva004) -- File not found
SRV - (X4HSX32) -- File not found
SRV - (X10UIF) -- File not found
SRV - (Wuser32) -- File not found
SRV - (WUSB54Gv4SVC) -- File not found
SRV - (wusb54gv2svc) -- File not found
SRV - (WUSB54GPV4SRV) -- File not found
SRV - (WUSB54GCSVC) -- File not found
SRV - (wtwservice) -- File not found
SRV - (Wtcls2k) -- File not found
SRV - (WSIMD) -- File not found
SRV - (WscNetDr) -- File not found
SRV - (wpsscannersvc) -- File not found
SRV - (wpshelper) -- File not found
SRV - (wpsdrvnt) -- File not found
SRV - (wps) -- File not found
SRV - (wpdusb) -- File not found
SRV - (WNCPKT) -- File not found
SRV - (WmXlCore) -- File not found
SRV - (wmp54gsvc) -- File not found
SRV - (WMIService) -- File not found
SRV - (WmHidLo) -- File not found
SRV - (WmFilter) -- File not found
SRV - (wmdmpmsp) -- File not found
SRV - (wmconnectcds) -- File not found
SRV - (wmccdsls) -- File not found
SRV - (wmccds) -- File not found
SRV - (WmBEnum) -- File not found
SRV - (wltwo51b) -- File not found
SRV - (wlsetupsvc) -- File not found
SRV - (wlluc48) -- File not found
SRV - (wlidsvc) -- File not found
SRV - (wlancig) -- File not found
SRV - (wlancfg) -- File not found
SRV - (WLAN_USB) -- File not found
SRV - (wkscfgsrv) -- File not found
SRV - (WISTechVIDCAP) -- File not found
SRV - (winvnc4) -- File not found
SRV - (WinVd32) -- File not found
SRV - (WINUSB) -- File not found
SRV - (wintab32) -- File not found
SRV - (winsshd) -- File not found
SRV - (winss) -- File not found
SRV - (winpowermanager) -- File not found
SRV - (winpower) -- File not found
SRV - (winmtsrv) -- File not found
SRV - (WINIO) -- File not found
SRV - (WinHttpAutoProxySvc) -- File not found
SRV - (WinDriver6) -- File not found
SRV - (winachsx) -- File not found
SRV - (winachcf) -- File not found
SRV - (WimFltr) -- File not found
SRV - (whoisd32) -- File not found
SRV - (wg6n) -- File not found
SRV - (wg5n) -- File not found
SRV - (wg3n) -- File not found
SRV - (wg111nd5) -- File not found
SRV - (wfxsvc) -- File not found
SRV - (webupdate) -- File not found
SRV - (websensewfreportserver) -- File not found
SRV - (websenseuserservice) -- File not found
SRV - (websenseusagemonitor) -- File not found
SRV - (websensepolicyserver) -- File not found
SRV - (websensedcagent) -- File not found
SRV - (websensecpmcommunicationagent) -- File not found
SRV - (websensecommunicationagent) -- File not found
SRV - (websenseclientdeployservice) -- File not found
SRV - (websensecamreportserver) -- File not found
SRV - (webrootspysweeperservice) -- File not found
SRV - (webrootenterpriseclientservice) -- File not found
SRV - (webfilter) -- File not found
SRV - (webdriveservice) -- File not found
SRV - (webcompserver) -- File not found
SRV - (WD_FireWire_HID) -- File not found
SRV - (wcontrol) -- File not found
SRV - (Wbutton) -- File not found
SRV - (WavxDMgr) -- File not found
SRV - (WaveFDE) -- File not found
SRV - (was) -- File not found
SRV - (wanminiportservice) -- File not found
SRV - (wanatw) -- File not found
SRV - (wampmysqld) -- File not found
SRV - (wampapache) -- File not found
SRV - (wacomkey) -- File not found
SRV - (W8335XP) -- File not found
SRV - (w810obex) -- File not found
SRV - (w810bus) -- File not found
SRV - (W8100PCI) -- File not found
SRV - (w800mdm) -- File not found
SRV - (w800bus) -- File not found
SRV - (w70n51) -- File not found
SRV - (W700obex) -- File not found
SRV - (W700mgmt) -- File not found
SRV - (W700mdfl) -- File not found
SRV - (W700bus) -- File not found
SRV - (W55U01) -- File not found
SRV - (w550mgmt) -- File not found
SRV - (w550mdm) -- File not found
SRV - (w550mdfl) -- File not found
SRV - (w550bus) -- File not found
SRV - (w39n51) -- File not found
SRV - (w300mdm) -- File not found
SRV - (w22n51) -- File not found
SRV - (w200obex) -- File not found
SRV - (w200mgmt) -- File not found
SRV - (w200mdm) -- File not found
SRV - (w200mdfl) -- File not found
SRV - (vzupsvc) -- File not found
SRV - (vzfw) -- File not found
SRV - (vxd) -- File not found
SRV - (VX3000) -- File not found
SRV - (VX1000) -- File not found
SRV - (vwlogger) -- File not found
SRV - (vwkernel) -- File not found
SRV - (vwd) -- File not found
SRV - (vvoice) -- File not found
SRV - (vvdsvc) -- File not found
SRV - (vusbbus) -- File not found
SRV - (vulfnths) -- File not found
SRV - (vsserv) -- File not found
SRV - (vsmon) -- File not found
SRV - (vserial) -- File not found
SRV - (vsdatant) -- File not found
SRV - (vsapint) -- File not found
SRV - (vrservice) -- File not found
SRV - (vrmonsvc) -- File not found
SRV - (vrfwsvc) -- File not found
SRV - (VRFIL) -- File not found
SRV - (VRcore) -- File not found
SRV - (VRADFIL) -- File not found
SRV - (vproeventmonitor) -- File not found
SRV - (vpn5000service) -- File not found
SRV - (vpcvmm) -- File not found
SRV - (vpcusb) -- File not found
SRV - (vpctcom) -- File not found
SRV - (vpcnets2) -- File not found
SRV - (vpcbus) -- File not found
SRV - (vnxservice) -- File not found
SRV - (VNUSB) -- File not found
SRV - (vncmirror) -- File not found
SRV - (vncdrv) -- File not found
SRV - (vmx86) -- File not found
SRV - (vmusb) -- File not found
SRV - (vmsprog) -- File not found
SRV - (vmparport) -- File not found
SRV - (vmount2) -- File not found
SRV - (vmnetdhcp) -- File not found
SRV - (vmnetbridge) -- File not found
SRV - (vmkbd2) -- File not found
SRV - (vmauthdservice) -- File not found
SRV - (VirtualFD) -- File not found
SRV - (videX32) -- File not found
SRV - (videoacceleratorengine) -- File not found
SRV - (Video3D) -- File not found
SRV - (VICESYS) -- File not found
SRV - (viaudio) -- File not found
SRV - (VIAPFD) -- File not found
SRV - (viamraid) -- File not found
SRV - (viairda) -- File not found
SRV - (viagfx) -- File not found
SRV - (viaagp1) -- File not found
SRV - (Via4in1) -- File not found
SRV - (VHidMinidrv) -- File not found
SRV - (vga) -- File not found
SRV - (vet-rec) -- File not found
SRV - (vetmonnt) -- File not found
SRV - (vet-filt) -- File not found
SRV - (vetfddnt) -- File not found
SRV - (vetefile) -- File not found
SRV - (veteboot) -- File not found
SRV - (venturi2) -- File not found
SRV - (ventrilo) -- File not found
SRV - (vds) -- File not found
SRV - (vcsw) -- File not found
SRV - (vcommmgr) -- File not found
SRV - (vcomm) -- File not found
SRV - (vclone) -- File not found
SRV - (VCIDRV) -- File not found
SRV - (vci) -- File not found
SRV - (vcdsecs) -- File not found
SRV - (VCAM) -- File not found
SRV - (VC6SecS) -- File not found
SRV - (vc5secs) -- File not found
SRV - (VAIOMediaPlatform-VideoServer-HTTP) -- File not found
SRV - (vaiomediaplatform-videoserver-appserver) -- File not found
SRV - (VAIOMediaPlatform-PhotoServer-HTTP) -- File not found
SRV - (vaiomediaplatform-photoserver-appserver) -- File not found
SRV - (VAIOMediaPlatform-MusicServer-HTTP) -- File not found
SRV - (vaiomediaplatform-musicserver-appserver) -- File not found
SRV - (vaiomediaplatform-mobile-gateway) -- File not found
SRV - (vaiomediaplatform-integratedserver-http) -- File not found
SRV - (vaiomediaplatform-integratedserver-appserver) -- File not found
SRV - (v124) -- File not found
SRV - (V0070VID) -- File not found
SRV - (UxTuneUp) -- File not found
SRV - (UWProSys) -- File not found
SRV - (UVCFTR) -- File not found
SRV - (usrbridg) -- File not found
SRV - (usnsvc) -- File not found
SRV - (useraccess) -- File not found
SRV - (usbvm321) -- File not found
SRV - (usbsermpt) -- File not found
SRV - (UsbserFilt) -- File not found
SRV - (usbser) -- File not found
SRV - (usbohci) -- File not found
SRV - (USBModem) -- File not found
SRV - (usbmate) -- File not found
SRV - (UsbDiag) -- File not found
SRV - (USBDeviceService) -- File not found
SRV - (usbcm) -- File not found
SRV - (USBCCID) -- File not found
SRV - (usbatapi2000) -- File not found
SRV - (USB28xxOEM) -- File not found
SRV - (USB11LDR) -- File not found
SRV - (USB_RNDIS) -- File not found
SRV - (USB_NDIS_51) -- File not found
SRV - (USA49W2KP) -- File not found
SRV - (USA49W) -- File not found
SRV - (us30service) -- File not found
SRV - (uploadmgr) -- File not found
SRV - (uphclean) -- File not found
SRV - (umxfwhlp) -- File not found
SRV - (umwdf) -- File not found
SRV - (UMAXPCLS) -- File not found
SRV - (ultra66) -- File not found
SRV - (UlSata) -- File not found
SRV - (ulcdrhlp) -- File not found
SRV - (UimBus) -- File not found
SRV - (Uim_IM) -- File not found
SRV - (uhcd) -- File not found
SRV - (UCTblHid) -- File not found
SRV - (uclauncherservice) -- File not found
SRV - (U81xobex) -- File not found
SRV - (U81xmgmt) -- File not found
SRV - (U81xmdm) -- File not found
SRV - (U81xbus) -- File not found
SRV - (U2SP) -- File not found
SRV - (tzontservice) -- File not found
SRV - (twdns) -- File not found
SRV - (tvtpktfilter) -- File not found
SRV - (tvtfilter) -- File not found
SRV - (tvs) -- File not found
SRV - (tvichw32) -- File not found
SRV - (tversitymediaserver) -- File not found
SRV - (TVALG) -- File not found
SRV - (tvald) -- File not found
SRV - (tunmp) -- File not found
SRV - (TuneUp.Defrag) -- File not found
SRV - (tsscoreservice) -- File not found
SRV - (tsp) -- File not found
SRV - (tsmapip) -- File not found
SRV - (tsircsrv) -- File not found
SRV - (TSHWMDTCP) -- File not found
SRV - (tsdhd) -- File not found
SRV - (TryAndDecideService) -- File not found
SRV - (truecrypt) -- File not found
SRV - (trlokom_rmhsvc) -- File not found
SRV - (trioservice) -- File not found
SRV - (trcboot) -- File not found
SRV - (transbaseservice) -- File not found
SRV - (transarcafsdaemon) -- File not found
SRV - (transactional) -- File not found
SRV - (trackcam4) -- File not found
SRV - (TPwSav) -- File not found
SRV - (tpsrv) -- File not found
SRV - (TPPWRIF) -- File not found
SRV - (TPM) -- File not found
SRV - (tpkmpsvc) -- File not found
SRV - (tpkd) -- File not found
SRV - (tphkdrv) -- File not found
SRV - (TPECioCtl) -- File not found
SRV - (tosrfusb) -- File not found
SRV - (tosrfsnd) -- File not found
SRV - (tosrfnds) -- File not found
SRV - (tosrfcom) -- File not found
SRV - (tosrfbd) -- File not found
SRV - (tosporte) -- File not found
SRV - (toshidpt) -- File not found
SRV - (toscosrv) -- File not found
SRV - (tos_sps32) -- File not found
SRV - (tomcatcws3) -- File not found
SRV - (tng-doba) -- File not found
SRV - (tnbrlds) -- File not found
SRV - (tmxpflt) -- File not found
SRV - (tmtdi) -- File not found
SRV - (tmlisten) -- File not found
SRV - (TMKEmu) -- File not found
SRV - (TMHIDSRV) -- File not found
SRV - (tmesbs32) -- File not found
SRV - (tmcomm) -- File not found
SRV - (TMBUS) -- File not found
SRV - (tiwlnsvc) -- File not found
SRV - (tiumfwl) -- File not found
SRV - (tifmsony) -- File not found
SRV - (TIEHDUSB) -- File not found
SRV - (thpsrv) -- File not found
SRV - (thkeys) -- File not found
SRV - (tfsnpool) -- File not found
SRV - (tfsncofs) -- File not found
SRV - (TestHandler) -- File not found
SRV - (teefer2) -- File not found
SRV - (teefer) -- File not found
SRV - (TeamViewer) -- File not found
SRV - (tdsmapi) -- File not found
SRV - (tdrpman) -- File not found
SRV - (tdcmdpst) -- File not found
SRV - (TcUsb) -- File not found
SRV - (tcsd_win32.exe) -- File not found
SRV - (tcpipBM) -- File not found
SRV - (TClass2k) -- File not found
SRV - (TBPanel) -- File not found
SRV - (tbhsd) -- File not found
SRV - (tb2launch) -- File not found
SRV - (tavsvc) -- File not found
SRV - (tapvpn) -- File not found
SRV - (tappsrv) -- File not found
SRV - (taphss) -- File not found
SRV - (tapeware) -- File not found
SRV - (tap0901) -- File not found
SRV - (tandpl) -- File not found
SRV - (tabletservice) -- File not found
SRV - (T6963C) -- File not found
SRV - (szserver) -- File not found
SRV - (sysmgmthp) -- File not found
SRV - (sysenforce) -- File not found
SRV - (symwsc) -- File not found
SRV - (symsnap) -- File not found
SRV - (symsecureport) -- File not found
SRV - (symndis) -- File not found
SRV - (symmpi) -- File not found
SRV - (SymIM) -- File not found
SRV - (symids) -- File not found
SRV - (symfw) -- File not found
SRV - (symevent) -- File not found
SRV - (symappcore) -- File not found
SRV - (symantecantibotwatcher) -- File not found
SRV - (symantecantibotfilter) -- File not found
SRV - (symantecantibotagent) -- File not found
SRV - (swupdtmr) -- File not found
SRV - (SWUMX51) -- File not found
SRV - (SWUMX20) -- File not found
SRV - (SWNC8U51) -- File not found
SRV - (SWNC8U20) -- File not found
SRV - (SWNC5E00) -- File not found
SRV - (swmsflt) -- File not found
SRV - (svv) -- File not found
SRV - (suservice) -- File not found
SRV - (susbser) -- File not found
SRV - (surveyor) -- File not found
SRV - (superproserver) -- File not found
SRV - (Sunkfiltp) -- File not found
SRV - (SunkFilt39) -- File not found
SRV - (SunkFilt) -- File not found
SRV - (Subsonic) -- File not found
SRV - (stylexphelper) -- File not found
SRV - (STV680m) -- File not found
SRV - (streamloadservice) -- File not found
SRV - (StreamDispatcher) -- File not found
SRV - (StMp3Rec) -- File not found
SRV - (stllssvr) -- File not found
SRV - (StkAMini) -- File not found
SRV - (stirusb) -- File not found
SRV - (StickyMesger) -- File not found
SRV - (steamdvr) -- File not found
SRV - (stcagent) -- File not found
SRV - (statusagent) -- File not found
SRV - (starwindservice) -- File not found
SRV - (StarOpen) -- File not found
SRV - (stac97) -- File not found
SRV - (sstpsvc) -- File not found
SRV - (ssrvc) -- File not found
SRV - (ssrtln) -- File not found
SRV - (ssoftservice) -- File not found
SRV - (ssmdrv) -- File not found
SRV - (ssm_mdm) -- File not found
SRV - (sskbfd) -- File not found
SRV - (ssisvr32) -- File not found
SRV - (sshrmd) -- File not found
SRV - (SSHDRV61) -- File not found
SRV - (SSFS0BB9) -- File not found
SRV - (ssdiagn) -- File not found
SRV - (sscdserd) -- File not found
SRV - (sscdmdfl) -- File not found
SRV - (sscdbus) -- File not found
SRV - (sscdbhk5) -- File not found
SRV - (ss_mdm) -- File not found
SRV - (ss_bus) -- File not found
SRV - (srvdpi) -- File not found
SRV - (SrvcSSIOMngr) -- File not found
SRV - (SrvcEPECioctl) -- File not found
SRV - (SrvcEKIOMngr) -- File not found
SRV - (SRTSPL) -- File not found
SRV - (sr_watchdog) -- File not found
SRV - (SQTECH9080) -- File not found
SRV - (SQTECH905C) -- File not found
SRV - (SQLWriter) -- File not found
SRV - (sqlagent$soshome22) -- File not found
SRV - (sqlagent$sony_mediamgr) -- File not found
SRV - (sqlagent$pinnaclesys) -- File not found
SRV - (SQLAgent$MICROSOFTSMLBIZ) -- File not found
SRV - (SQLAgent$MICROSOFTBCM) -- File not found
SRV - (SQLAgent$LG_LP2) -- File not found
SRV - (SQLAgent$ABBEYIIOFFLINE) -- File not found
SRV - (spupdsvc) -- File not found
SRV - (sptisrv) -- File not found
SRV - (Spsmqvsm) -- File not found
SRV - (sprtsvc_dellsupportcenter) -- File not found
SRV - (SprintRcAppSvc) -- File not found
SRV - (spmgr) -- File not found
SRV - (spkrmon) -- File not found
SRV - (speedfan) -- File not found
SRV - (spcsutilityservice) -- File not found
SRV - (spcflt) -- File not found
SRV - (spbbcsvc) -- File not found
SRV - (spbbcdrv) -- File not found
SRV - (sp_rssrv) -- File not found
SRV - (sp_clamsrv) -- File not found
SRV - (sonywbms) -- File not found
SRV - (sonytvc) -- File not found
SRV - (sonypvu1) -- File not found
SRV - (sonypvs1) -- File not found
SRV - (sonicstagemonitoring) -- File not found
SRV - (sonicatheaterinstallerservice) -- File not found
SRV - (soma) -- File not found
SRV - (softfax) -- File not found
SRV - (Sntnlusb) -- File not found
SRV - (SNP2UVC) -- File not found
SRV - (SNP2STD) -- File not found
SRV - (snoopfree) -- File not found
SRV - (snmptrapdservice) -- File not found
SRV - (SNMPTRAP) -- File not found
SRV - (SndTDriverV32) -- File not found
SRV - (sndsrvc) -- File not found
SRV - (snareiis) -- File not found
SRV - (snapman380) -- File not found
SRV - (snapman) -- File not found
SRV - (SMTPSVC) -- File not found
SRV - (smsmdd) -- File not found
SRV - (smservaz) -- File not found
SRV - (SMPLSCSI) -- File not found
SRV - (smcservice) -- File not found
SRV - (smcirda) -- File not found
SRV - (SMCB000) -- File not found
SRV - (smbusp) -- File not found
SRV - (smartwiservice) -- File not found
SRV - (smartlinkservice) -- File not found
SRV - (slssvc) -- File not found
SRV - (slservice) -- File not found
SRV - (Slpsvdr) -- File not found
SRV - (slpmonx) -- File not found
SRV - (Slntamr) -- File not found
SRV - (slimsvc) -- File not found
SRV - (sleepy) -- File not found
SRV - (slee_503_service) -- File not found
SRV - (slave) -- File not found
SRV - (slapd-data52) -- File not found
SRV - (slabbus) -- File not found
SRV - (Sk9920nt) -- File not found
SRV - (sit_prt) -- File not found
SRV - (sit_mdm) -- File not found
SRV - (sit_flt) -- File not found
SRV - (siswlsvc) -- File not found
SRV - (SiSRaid2) -- File not found
SRV - (SiSRaid) -- File not found
SRV - (sisperf) -- File not found
SRV - (sisidex) -- File not found
SRV - (siside) -- File not found
SRV - (SiSGbeXP) -- File not found
SRV - (SiS7018) -- File not found
SRV - (sis315) -- File not found
SRV - (sis162u) -- File not found
SRV - (SiRemFil) -- File not found
SRV - (SimpTcp) -- File not found
SRV - (SilverLink) -- File not found
SRV - (Si3114r5) -- File not found
SRV - (si3114r) -- File not found
SRV - (shuttleengine) -- File not found
SRV - (Shockprf) -- File not found
SRV - (shdserv) -- File not found
SRV - (sglogplayer) -- File not found
SRV - (sglfb) -- File not found
SRV - (SGIR) -- File not found
SRV - (SGHIDI) -- File not found
SRV - (sgectl) -- File not found
SRV - (sfsync04) -- File not found
SRV - (sfsync02) -- File not found
SRV - (sfman) -- File not found
SRV - (sfilter) -- File not found
SRV - (sfhlp02) -- File not found
SRV - (sfhlp01) -- File not found
SRV - (sfdrv01) -- File not found
SRV - (sfcure01) -- File not found
SRV - (sf) -- File not found
SRV - (SetupSys) -- File not found
SRV - (servicemgr) -- File not found
SRV - (servicelayer) -- File not found
SRV - (server) -- File not found
SRV - (sermouse) -- File not found
SRV - (SeratoUsb) -- File not found
SRV - (ser2plms) -- File not found
SRV - (SenFiltService) -- File not found
SRV - (SED133x) -- File not found
SRV - (SECYPUSB) -- File not found
SRV - (se59unic) -- File not found
SRV - (se59obex) -- File not found
SRV - (se59nd5) -- File not found
SRV - (se59mdm) -- File not found
SRV - (se59bus) -- File not found
SRV - (se58unic) -- File not found
SRV - (se58obex) -- File not found
SRV - (se58nd5) -- File not found
SRV - (se58mgmt) -- File not found
SRV - (se58mdm) -- File not found
SRV - (se58mdfl) -- File not found
SRV - (se58bus) -- File not found
SRV - (se45unic) -- File not found
SRV - (se45obex) -- File not found
SRV - (se45nd5) -- File not found
SRV - (se45mdm) -- File not found
SRV - (se45mdfl) -- File not found
SRV - (se45bus) -- File not found
SRV - (se44unic) -- File not found
SRV - (se44nd5) -- File not found
SRV - (se44mdm) -- File not found
SRV - (se44mdfl) -- File not found
SRV - (se44bus) -- File not found
SRV - (SE2Eobex) -- File not found
SRV - (se2End5) -- File not found
SRV - (SE2Emgmt) -- File not found
SRV - (SE2Emdm) -- File not found
SRV - (SE2Emdfl) -- File not found
SRV - (se2Dunic) -- File not found
SRV - (se2Dnd5) -- File not found
SRV - (SE2Dmgmt) -- File not found
SRV - (SE2Cobex) -- File not found
SRV - (SE2Cmgmt) -- File not found
SRV - (SE2Cmdfl) -- File not found
SRV - (SE2Cbus) -- File not found
SRV - (se2Bunic) -- File not found
SRV - (SE2Bmgmt) -- File not found
SRV - (SE2Bmdfl) -- File not found
SRV - (SE2Bbus) -- File not found
SRV - (se27unic) -- File not found
SRV - (SE27obex) -- File not found
SRV - (se27nd5) -- File not found
SRV - (SE27mgmt) -- File not found
SRV - (SE27mdfl) -- File not found
SRV - (se26unic) -- File not found
SRV - (SE26obex) -- File not found
SRV - (SE26mgmt) -- File not found
SRV - (SDdriver) -- File not found
SRV - (sddmi2) -- File not found
SRV - (sdcplh) -- File not found
SRV - (sdcoreservice) -- File not found
SRV - (scsiaccess) -- File not found
SRV - (screadspool) -- File not found
SRV - (ScFBPNT2) -- File not found
SRV - (scarddrv) -- File not found
SRV - (scanwscs) -- File not found
SRV - (sbservice) -- File not found
SRV - (sbpci) -- File not found
SRV - (sbp2port) -- File not found
SRV - (sbhooksvc) -- File not found
SRV - (savscan) -- File not found
SRV - (savrt) -- File not found
SRV - (sandrathesrv) -- File not found
SRV - (sandradatasrv) -- File not found
SRV - (SANDRA) -- File not found
SRV - (sandboxu) -- File not found
SRV - (SaiU040B) -- File not found
SRV - (SaiNtBus) -- File not found
SRV - (SaiH040B) -- File not found
SRV - (sagefserver) -- File not found
SRV - (SABSVC) -- File not found
SRV - (SABProcEnum) -- File not found
SRV - (s7oppitx) -- File not found
SRV - (s716nd5) -- File not found
SRV - (s716mgmt) -- File not found
SRV - (s716bus) -- File not found
SRV - (s616nd5) -- File not found
SRV - (s616mgmt) -- File not found
SRV - (s616mdm) -- File not found
SRV - (s616bus) -- File not found
SRV - (s3twistr) -- File not found
SRV - (s3ssavage) -- File not found
SRV - (s3psddr) -- File not found
SRV - (s217nd5) -- File not found
SRV - (s217mgmt) -- File not found
SRV - (s217mdm) -- File not found
SRV - (s217mdfl) -- File not found
SRV - (s217bus) -- File not found
SRV - (s125obex) -- File not found
SRV - (s125bus) -- File not found
SRV - (s117nd5) -- File not found
SRV - (s117mgmt) -- File not found
SRV - (s117mdm) -- File not found
SRV - (s117bus) -- File not found
SRV - (s116unic) -- File not found
SRV - (s116obex) -- File not found
SRV - (s116mgmt) -- File not found
SRV - (s116mdm) -- File not found
SRV - (s116mdfl) -- File not found
SRV - (s116bus) -- File not found
SRV - (rxmssync) -- File not found
SRV - (rxfilter) -- File not found
SRV - (rwbackupsrv) -- File not found
SRV - (rvscc) -- File not found
SRV - (RVIEG01) -- File not found
SRV - (rupsd) -- File not found
SRV - (rtm) -- File not found
SRV - (rtl8187Se) -- File not found
SRV - (RTL8169) -- File not found
SRV - (rtl8139) -- File not found
SRV - (rtl8029) -- File not found
SRV - (RTL8023xp) -- File not found
SRV - (RTHDMIAzAudService) -- File not found
SRV - (rt61) -- File not found
SRV - (RT25USBAP) -- File not found
SRV - (rt2500) -- File not found
SRV - (rsvchost) -- File not found
SRV - (rslinx) -- File not found
SRV - (RSAFAL) -- File not found
SRV - (rrspy) -- File not found
SRV - (rrrspy) -- File not found
SRV - (RR2Vbi) -- File not found
SRV - (RR2Mjpeg) -- File not found
SRV - (RR2IOMod) -- File not found
SRV - (RR2Ctrl) -- File not found
SRV - (rpsupdaterr) -- File not found
SRV - (rpaservice) -- File not found
SRV - (rp32service) -- File not found
SRV - (rp_fws) -- File not found
SRV - (roxwatch) -- File not found
SRV - (roxupnprenderer) -- File not found
SRV - (roxmediadb) -- File not found
SRV - (RoxLiveShare9) -- File not found
SRV - (roxliveshare) -- File not found
SRV - (ROOTUSB) -- File not found
SRV - (ROCKEYNT) -- File not found
SRV - (ROB_V) -- File not found
SRV - (ROB_A) -- File not found
SRV - (rnadirmultiplexor) -- File not found
SRV - (rnadiagnosticsservice) -- File not found
SRV - (RMSvc) -- File not found
SRV - (rmedia) -- File not found
SRV - (RMCAST) -- File not found
SRV - (rkhdrv31) -- File not found
SRV - (RivaTuner32) -- File not found
SRV - (RIOUNIV) -- File not found
SRV - (RioS30) -- File not found
SRV - (RimSerPort) -- File not found
SRV - (richvideo) -- File not found
SRV - (rfcomm) -- File not found
SRV - (revudfservice) -- File not found
SRV - (REVOSENS) -- File not found
SRV - (REVO) -- File not found
SRV - (retrowdsvc) -- File not found
SRV - (retrolauncher) -- File not found
SRV - (retroexplauncher) -- File not found
SRV - (retinaengine) -- File not found
SRV - (resourcemanagermail) -- File not found
SRV - (RESMGR) -- File not found
SRV - (remoterecord) -- File not found
SRV - (remotelyanywhere) -- File not found
SRV - (regspy) -- File not found
SRV - (regmanserv) -- File not found
SRV - (RecAgent) -- File not found
SRV - (rdnaoflsvc) -- File not found
SRV - (RDID1027) -- File not found
SRV - (RDID1007) -- File not found
SRV - (rca) -- File not found
SRV - (rbfilter) -- File not found
SRV - (rassstp) -- File not found
SRV - (RAPIProtocol) -- File not found
SRV - (RapiMgr) -- File not found
SRV - (rapapp) -- File not found
SRV - (rampartsvc) -- File not found
SRV - (ramaint) -- File not found
SRV - (RalinkRegistryWriter) -- File not found
SRV - (radclock) -- File not found
SRV - (R300) -- File not found
SRV - (QWAVE) -- File not found
SRV - (quickhealfirewall) -- File not found
SRV - (quickbooksdb) -- File not found
SRV - (qserver) -- File not found
SRV - (QPSched) -- File not found
SRV - (QPCapSvc) -- File not found
SRV - (ql2100) -- File not found
SRV - (qkbfiltr) -- File not found
SRV - (qfcoresvc) -- File not found
SRV - (qconsvc) -- File not found
SRV - (qcdonner) -- File not found
SRV - (qbreminderflash) -- File not found
SRV - (qbposdbextservices) -- File not found
SRV - (qbfcservice) -- File not found
SRV - (qbcfmonitorservice) -- File not found
SRV - (PXRDDriver) -- File not found
SRV - (pxhelp20) -- File not found
SRV - (pxfhserd) -- File not found
SRV - (pxfhbus) -- File not found
SRV - (pwisvc) -- File not found
SRV - (pvservice) -- File not found
SRV - (puscsrvc) -- File not found
SRV - (purgeieservice) -- File not found
SRV - (purendis) -- File not found
SRV - (Ptserlp) -- File not found
SRV - (ptserial) -- File not found
SRV - (PTproct) -- File not found
SRV - (PTDCVsp) -- File not found
SRV - (PTDCMdm) -- File not found
SRV - (ptbsync) -- File not found
SRV - (PSSdk21) -- File not found
SRV - (psimsvc) -- File not found
SRV - (pshost) -- File not found
SRV - (pserve) -- File not found
SRV - (psdvdisk) -- File not found
SRV - (psdistributionagent) -- File not found
SRV - (psadd) -- File not found
SRV - (ps2) -- File not found
SRV - (prtg4service) -- File not found
SRV - (proxyserverservice) -- File not found
SRV - (proxyhostservice) -- File not found
SRV - (proxyhostdriver) -- File not found
SRV - (protexislicensing) -- File not found
SRV - (protectionservice) -- File not found
SRV - (prohlp02) -- File not found
SRV - (prodrv06) -- File not found
SRV - (ProcObsrv) -- File not found
SRV - (procexp90) -- File not found
SRV - (procexp100) -- File not found
SRV - (procdd) -- File not found
SRV - (prismxl) -- File not found
SRV - (prism_a02) -- File not found
SRV - (PPPoEWin) -- File not found
SRV - (ppa3) -- File not found
SRV - (portmapper) -- File not found
SRV - (portio) -- File not found
SRV - (pop3d32) -- File not found
SRV - (PolarUSB) -- File not found
SRV - (PNRPSvc) -- File not found
SRV - (pnkbstrk) -- File not found
SRV - (pnkbstrb) -- File not found
SRV - (pnkbstra) -- File not found
SRV - (pml) -- File not found
SRV - (pmj151la) -- File not found
SRV - (pmem) -- File not found
SRV - (plscsi) -- File not found
SRV - (pktfilter) -- File not found
SRV - (pivotmou) -- File not found
SRV - (pivot) -- File not found
SRV - (pinnaclesys.mediaserver) -- File not found
SRV - (pinnaclemarvinusb) -- File not found
SRV - (pinetmgr) -- File not found
SRV - (pilogsrv) -- File not found
SRV - (pid_0928) -- File not found
SRV - (picturetaker) -- File not found
SRV - (phnxvcdservice) -- File not found
SRV - (PhilCam8116) -- File not found
SRV - (pgpserv) -- File not found
SRV - (PGPsdkDriver) -- File not found
SRV - (pgfilter) -- File not found
SRV - (personalsecuredriveservice) -- File not found
SRV - (persfw) -- File not found
SRV - (pepifilter) -- File not found
SRV - (pensup) -- File not found
SRV - (penrendezvous) -- File not found
SRV - (pdlnshay) -- File not found
SRV - (pdlnemap) -- File not found
SRV - (pdlnecfg) -- File not found
SRV - (pdlnebas) -- File not found
SRV - (pdlndtdl) -- File not found
SRV - (pdlndsdl) -- File not found
SRV - (pdlndqll) -- File not found
SRV - (pdlndoem) -- File not found
SRV - (pdlnctdl) -- File not found
SRV - (pdlncfwk) -- File not found
SRV - (pdlncbas) -- File not found
SRV - (pdlnatcm) -- File not found
SRV - (pdlnafac) -- File not found
SRV - (pdlnacom) -- File not found
SRV - (PdiPorts) -- File not found
SRV - (pdiddcci) -- File not found
SRV - (PDExchange) -- File not found
SRV - (pdagent) -- File not found
SRV - (pcx1unic) -- File not found
SRV - (pcx1nd5) -- File not found
SRV - (Pctspk) -- File not found
SRV - (pctoolsfirewallplus) -- File not found
SRV - (PCTINDIS5) -- File not found
SRV - (pctfw1) -- File not found
SRV - (pctavsvc) -- File not found
SRV - (pcscnsrv) -- File not found
SRV - (pcouffin) -- File not found
SRV - (pcnet) -- File not found
SRV - (pciSd) -- File not found
SRV - (pcidrv) -- File not found
SRV - (PciBus) -- File not found
SRV - (pchost) -- File not found
SRV - (PCDRSRVC) -- File not found
SRV - (PCDCODEC) -- File not found
SRV - (pcctlcom) -- File not found
SRV - (pccsmcfd) -- File not found
SRV - (Pcatip) -- File not found
SRV - (pca) -- File not found
SRV - (PBADRV) -- File not found
SRV - (pavsrv) -- File not found
SRV - (pavreport) -- File not found
SRV - (pavatscheduler) -- File not found
SRV - (pavagente) -- File not found
SRV - (pav_service) -- File not found
SRV - (patrolagent) -- File not found
SRV - (patrol_scheduler) -- File not found
SRV - (passthru) -- File not found
SRV - (PAR1284) -- File not found
SRV - (papyjoy) -- File not found
SRV - (papycpu2) -- File not found
SRV - (palmusbd) -- File not found
SRV - (pageserver) -- File not found
SRV - (pae_1394) -- File not found
SRV - (pacsptisvr) -- File not found
SRV - (Packet) -- File not found
SRV - (paamsrv) -- File not found
SRV - (p3) -- File not found
SRV - (p2psvc) -- File not found
SRV - (p2pgasvc) -- File not found
SRV - (p17xfilt) -- File not found
SRV - (p17) -- File not found
SRV - (P16X) -- File not found
SRV - (p1110vid) -- File not found
SRV - (ozoneinstallerservice) -- File not found
SRV - (owstimer) -- File not found
SRV - (ovt519) -- File not found
SRV - (OVT511Plus) -- File not found
SRV - (ovsecurityserver) -- File not found
SRV - (ovmsmaccessmanager) -- File not found
SRV - (ossrv) -- File not found
SRV - (osanbm) -- File not found
SRV - (osaio) -- File not found
SRV - (orbpvr) -- File not found
SRV - (orbmediaservice) -- File not found
SRV - (oraclesnmppeermasteragent) -- File not found
SRV - (oraclesnmppeerencapsulator) -- File not found
SRV - (oracleorahometnslistener) -- File not found
SRV - (oracleorahomepagingserver) -- File not found
SRV - (oracleorahomemanagementserver) -- File not found
SRV - (oracleorahomedatagatherer) -- File not found
SRV - (oracleorahomeagent) -- File not found
SRV - (oracleorahome92tnslistener) -- File not found
SRV - (oracleorahome92pagingserver) -- File not found
SRV - (OracleOraHome92ClientCache) -- File not found
SRV - (oracleorahome90agent) -- File not found
SRV - (oracleoradb10g_home1isql*plus) -- File not found
SRV - (oracleformsserver-forms60server-oraform) -- File not found
SRV - (oracledbconsoleorcl) -- File not found
SRV - (oracle_load_balancer_60_server-forms6ip9) -- File not found
SRV - (oracle_load_balancer_60_server-forms6i) -- File not found
SRV - (oracle_load_balancer_60_client-forms6ip14) -- File not found
SRV - (oracle%oracle_home_service%clientcache80) -- File not found
SRV - (openvpnservice) -- File not found
SRV - (ood2000) -- File not found
SRV - (ONSIO) -- File not found
SRV - (OneCareMP) -- File not found
SRV - (omsad) -- File not found
SRV - (omniusbl) -- File not found
SRV - (omniusb) -- File not found
SRV - (omniinet) -- File not found
SRV - (om518p) -- File not found
SRV - (olcamsrv) -- File not found
SRV - (olapserver) -- File not found
SRV - (ofcservice) -- File not found
SRV - (odysseyIM3) -- File not found
SRV - (odclientservice) -- File not found
SRV - (obvious) -- File not found
SRV - (O2SCBUS) -- File not found
SRV - (NWSLP) -- File not found
SRV - (NWSIPX32) -- File not found
SRV - (nwrdr) -- File not found
SRV - (nwlnkspx) -- File not found
SRV - (nwlnknb) -- File not found
SRV - (NWFILTER) -- File not found
SRV - (nwdls) -- File not found
SRV - (NWDHCP) -- File not found
SRV - (NVXBAR) -- File not found
SRV - (NVTCP) -- File not found
SRV - (nvstor64) -- File not found
SRV - (nvsmu) -- File not found
SRV - (nvrd64) -- File not found
SRV - (nvrd32) -- File not found
SRV - (nvraid) -- File not found
SRV - (nvpvrmon) -- File not found
SRV - (nvport) -- File not found
SRV - (nvnforce) -- File not found
SRV - (nvnetbus) -- File not found
SRV - (NVNET) -- File not found
SRV - (NvNdis) -- File not found
SRV - (nvmd) -- File not found
SRV - (nvidesm) -- File not found
SRV - (nvgts) -- File not found
SRV - (nvenetfd) -- File not found
SRV - (NVENET) -- File not found
SRV - (nvcap) -- File not found
SRV - (nvax) -- File not found
SRV - (nvatabus) -- File not found
SRV - (nvata) -- File not found
SRV - (nv_agp) -- File not found
SRV - (nuvvid2) -- File not found
SRV - (nuvaud2) -- File not found
SRV - (NuidFltr) -- File not found
SRV - (ntuneservice) -- File not found
SRV - (ntsyslog) -- File not found
SRV - (NTSIM) -- File not found
SRV - (ntservice1) -- File not found
SRV - (ntpr_nic_service2) -- File not found
SRV - (NtMtlFax) -- File not found
SRV - (ntiopnp) -- File not found
SRV - (NTIDrvr) -- File not found
SRV - (ntcharge) -- File not found
SRV - (nsvcip) -- File not found
SRV - (NsTrcNT) -- File not found
SRV - (NSSvcMgr) -- File not found
SRV - (NSNDIS5) -- File not found
SRV - (nsm1mdm) -- File not found
SRV - (nsctop) -- File not found
SRV - (nscservice) -- File not found
SRV - (nscirda) -- File not found
SRV - (nsausvc) -- File not found
SRV - (npptnt2) -- File not found
SRV - (NPPTNT) -- File not found
SRV - (npkcsvc) -- File not found
SRV - (npkcmsvc) -- File not found
SRV - (npfmntor) -- File not found
SRV - (NPDriver) -- File not found
SRV - (npapimon) -- File not found
SRV - (NOWMEMDF) -- File not found
SRV - (nocashio) -- File not found
SRV - (nnsvc) -- File not found
SRV - (nmwcdcj) -- File not found
SRV - (nmwcdc) -- File not found
SRV - (nmwcd) -- File not found
SRV - (NMSSvc) -- File not found
SRV - (nmservice) -- File not found
SRV - (NMSCFG) -- File not found
SRV - (NMSAccessU) -- File not found
SRV - (nmsaccess) -- File not found
SRV - (nmraapache) -- File not found
SRV - (nmindexingservice) -- File not found
SRV - (Nmea) -- File not found
SRV - (nisvcloc) -- File not found
SRV - (nisum) -- File not found
SRV - (nipxirmu) -- File not found
SRV - (nipsvc) -- File not found
SRV - (NIPALK) -- File not found
SRV - (nimxdfk) -- File not found
SRV - (nimdbgk) -- File not found
SRV - (nimcdlbk) -- File not found
SRV - (nim32) -- File not found
SRV - (nidomainservice) -- File not found
SRV - (NICSer_WPC54G) -- File not found
SRV - (NICSer_WPC300N) -- File not found
SRV - (ni_nic) -- File not found
SRV - (nHancer) -- File not found
SRV - (ngdbserv) -- File not found
SRV - (nfsds) -- File not found
SRV - (netwg311) -- File not found
SRV - (NETw5x32) -- File not found
SRV - (NETw3x32) -- File not found
SRV - (NETw3v32) -- File not found
SRV - (NetTcpActivator) -- File not found
SRV - (netrcacm) -- File not found
SRV - (NetPipeActivator) -- File not found
SRV - (NetMsmqActivator) -- File not found
SRV - (netmnt) -- File not found
SRV - (NETMDUSB) -- File not found
SRV - (netmdsb) -- File not found
SRV - (NETGEAR_MA111) -- File not found
SRV - (netdevio) -- File not found
SRV - (netdetect) -- File not found
SRV - (netcfgsvr) -- File not found
SRV - (NeroMediaHomeService.4) -- File not found
SRV - (neokdss) -- File not found
SRV - (NEOFLTR_600_13319) -- File not found
SRV - (Ndismeetro) -- File not found
SRV - (Ndisipo) -- File not found
SRV - (NdisFilt) -- File not found
SRV - (ndiscm) -- File not found
SRV - (ndasscsi) -- File not found
SRV - (ndasbus) -- File not found
SRV - (ncupdatesvc) -- File not found
SRV - (Ncrc710) -- File not found
SRV - (NCPro) -- File not found
SRV - (nchssvad) -- File not found
SRV - (navex15) -- File not found
SRV - (naveng) -- File not found
SRV - (navapsvc) -- File not found
SRV - (navap) -- File not found
SRV - (NAL) -- File not found
SRV - (naimagent32) -- File not found
SRV - (n558) -- File not found
SRV - (mxssvr) -- File not found
SRV - (MXOFX) -- File not found
SRV - (mxnic) -- File not found
SRV - (MxlW2k) -- File not found
SRV - (mwstick) -- File not found
SRV - (mwssched) -- File not found
SRV - (mwspollserver) -- File not found
SRV - (mwsejcap) -- File not found
SRV - (mwsarcpkt) -- File not found
SRV - (mwagent) -- File not found
SRV - (MtxDma0) -- File not found
SRV - (Mtlstrm) -- File not found
SRV - (Mtlmnt5) -- File not found
SRV - (MTDVC2_ENUM) -- File not found
SRV - (MSW_USB) -- File not found
SRV - (msvsmon90) -- File not found
SRV - (MSTAPE) -- File not found
SRV - (mssql$sqlexpress) -- File not found
SRV - (mssql$soshome22) -- File not found
SRV - (mssql$sony_mediamgr) -- File not found
SRV - (mssql$pinnaclesys) -- File not found
SRV - (MSSQL$AUTODESKVAULT) -- File not found
SRV - (msmframework) -- File not found
SRV - (msloop) -- File not found
SRV - (msk80service) -- File not found
SRV - (MSIRCOMM) -- File not found
SRV - (MSICPL) -- File not found
SRV - (msi_wlan_service) -- File not found
SRV - (msgsrvservice) -- File not found
SRV - (msgame) -- File not found
SRV - (msfwsvc) -- File not found
SRV - (MSFWDrv) -- File not found
SRV - (msftpsvc) -- File not found
SRV - (msftesql) -- File not found
SRV - (mscsptisrv) -- File not found
SRV - (MS1000) -- File not found
SRV - (ms_mpu401) -- File not found
SRV - (MRV6X32P) -- File not found
SRV - (MRESP50a64) -- File not found
SRV - (MRESP50) -- File not found
SRV - (MRENDIS5) -- File not found
SRV - (MREMPR5) BLKWGU(Belkin) -- File not found
SRV - (MREMP50a64) -- File not found
SRV - (MREMP50) -- File not found
SRV - (MR97310_USB_DUAL_CAMERA) -- File not found
SRV - (mr7910) -- File not found
SRV - (mr2kserv) -- File not found
SRV - (mqdmmdfl) -- File not found
SRV - (mpservice) -- File not found
SRV - (mps9) -- File not found
SRV - (mpfirewl) -- File not found
SRV - (moufiltr) -- File not found
SRV - (motoswitchservice) -- File not found
SRV - (mohfilt) -- File not found
SRV - (mod7700) -- File not found
SRV - (MobilePreInstallerService) -- File not found
SRV - (mnsframework) -- File not found
SRV - (MMRTKRNL) -- File not found
SRV - (mmc_2K) -- File not found
SRV - (mlkkbdntdriver) -- File not found
SRV - (mldserv) -- File not found
SRV - (mksvirmonsvc) -- File not found
SRV - (mksupdateint) -- File not found
SRV - (MKEMUSB) -- File not found
SRV - (mirrorv3) -- File not found
SRV - (mi-raysat_3dsmax9_32) -- File not found
SRV - (mi-raysat_3dsmax8) -- File not found
SRV - (minilog) -- File not found
SRV - (mindretrieve) -- File not found
SRV - (mhndrv) -- File not found
SRV - (mgisvr) -- File not found
SRV - (mgabgexe) -- File not found
SRV - (mgabg) -- File not found
SRV - (mfeapfk) -- File not found
SRV - (mfcom) -- File not found
SRV - (mf) -- File not found
SRV - (merakcontrol) -- File not found
SRV - (Memctl) -- File not found
SRV - (meiudf) -- File not found
SRV - (MegaSR) -- File not found
SRV - (megamonitorsrv) -- File not found
SRV - (mediaviewer) -- File not found
SRV - (mediamaxxlservice) -- File not found
SRV - (mdm) -- File not found
SRV - (mcvsrte) -- File not found
SRV - (mcusrmgr) -- File not found
SRV - (mcupdmgr.exe) -- File not found
SRV - (mctskshd.exe) -- File not found
SRV - (mctaskmanager) -- File not found
SRV - (mcstrm) -- File not found
SRV - (mcshield) -- File not found
SRV - (mcrdsvc) -- File not found
SRV - (mcproxy) -- File not found
SRV - (mcpromgr) -- File not found
SRV - (mcp) -- File not found
SRV - (mcontrol) -- File not found
SRV - (mcods) -- File not found
SRV - (mcnasvc) -- File not found
SRV - (mcmispupdmgr) -- File not found
SRV - (mcdetect.exe) -- File not found
SRV - (mcdbus) -- File not found
SRV - (McciCMService) -- File not found
SRV - (mcafeeframework) -- File not found
SRV - (mbackmonitor) -- File not found
SRV - (maya70docserver) -- File not found
SRV - (MaxtorFrontPanel1) -- File not found
SRV - (maxbackserviceint) -- File not found
SRV - (matlabserver) -- File not found
SRV - (marvinbus) -- File not found
SRV - (mapserver6.3) -- File not found
SRV - (mail2ec) -- File not found
SRV - (MagicTune) -- File not found
SRV - (mafwboot) -- File not found
SRV - (Machnm32) -- File not found
SRV - (macformatservice) -- File not found
SRV - (MA8032U) -- File not found
SRV - (MA8032M) -- File not found
SRV - (MA8032C) -- File not found
SRV - (ma763004) -- File not found
SRV - (MA-620) -- File not found
SRV - (MA_CMIDI) -- File not found
SRV - (M3AD) -- File not found
SRV - (M2500) -- File not found
SRV - (lyncusbserv) -- File not found
SRV - (lxrsii1s) -- File not found
SRV - (lxdm_device) -- File not found
SRV - (lxdj_device) -- File not found
SRV - (lxda_device) -- File not found
SRV - (lxcz_device) -- File not found
SRV - (lxct_device) -- File not found
SRV - (lxcr_device) -- File not found
SRV - (lxcj_device) -- File not found
SRV - (lxcgcustomerconnect) -- File not found
SRV - (lxcg_device) -- File not found
SRV - (lxce_device) -- File not found
SRV - (lxcc_device) -- File not found
SRV - (lxby_device) -- File not found
SRV - (lxbu_device) -- File not found
SRV - (lxbt_device) -- File not found
SRV - (LXARScan) -- File not found
SRV - (lwwlicenseservice) -- File not found
SRV - (LwUsbHid) -- File not found
SRV - (LVVI500A) -- File not found
SRV - (lvuvc) -- File not found
SRV - (lvtuner) -- File not found
SRV - (lvsrvlauncher) -- File not found
SRV - (lvselsus) -- File not found
SRV - (LVRS) -- File not found
SRV - (lvprcsrv) -- File not found
SRV - (LVPrcMon) -- File not found
SRV - (lvpr2mon) -- File not found
SRV - (lvmvdrv) -- File not found
SRV - (lvhidsvc) -- File not found
SRV - (lvcomser) -- File not found
SRV - (lvckap) -- File not found
SRV - (LVCap138) -- File not found
SRV - (LUsbKbd) -- File not found
SRV - (LUsbFilt) -- File not found
SRV - (lusbaudio) -- File not found
SRV - (ltxred) -- File not found
SRV - (ltck000c) -- File not found
SRV - (LRMINIPORT) -- File not found
SRV - (LPDSVC) -- File not found
SRV - (LPCFilter) -- File not found
SRV - (lp6nds35) -- File not found
SRV - (LoopBeMidi1) -- File not found
SRV - (logmein) -- File not found
SRV - (lockmgr) -- File not found
SRV - (LMS) -- File not found
SRV - (LMouKE) -- File not found
SRV - (lmouflt2) -- File not found
SRV - (LMouFilt) -- File not found
SRV - (LMIRfsDriver) -- File not found
SRV - (lmimirr) -- File not found
SRV - (lmimaint) -- File not found
SRV - (lmab_device) -- File not found
SRV - (lktimesync) -- File not found
SRV - (lkclassads) -- File not found
SRV - (liveupdate) -- File not found
SRV - (lightscribeservice) -- File not found
SRV - (licensemanagersocket) -- File not found
SRV - (license) -- File not found
SRV - (LHidUsbK) -- File not found
SRV - (LHidKe) -- File not found
SRV - (lhidflt2) -- File not found
SRV - (lfsfilt) -- File not found
SRV - (lexbces) -- File not found
SRV - (ldlcserv) -- File not found
SRV - (lcs) -- File not found
SRV - (LCcfltr) -- File not found
SRV - (LC7981) -- File not found
SRV - (lbtserv) -- File not found
SRV - (lanusb) -- File not found
SRV - (l8042pr2) -- File not found
SRV - (L8042mou) -- File not found
SRV - (L1e) -- File not found
SRV - (kwatchsvc) -- File not found
SRV - (KS0108) -- File not found
SRV - (kraidsvc) -- File not found
SRV - (KR3NPXP) -- File not found
SRV - (KR10N) -- File not found
SRV - (KR10I) -- File not found
SRV - (konfig) -- File not found
SRV - (knobserv) -- File not found
SRV - (KMWDFilter) -- File not found
SRV - (KMW_USB) -- File not found
SRV - (KMW_KBD) -- File not found
SRV - (KLOGNT) -- File not found
SRV - (klif) -- File not found
SRV - (kl1) -- File not found
SRV - (keriomailserver) -- File not found
SRV - (kbfiltr) -- File not found
SRV - (kavsvc) -- File not found
SRV - (k750mdm) -- File not found
SRV - (k750mdfl) -- File not found
SRV - (k750bus) -- File not found
SRV - (k56) -- File not found
SRV - (JRAID) -- File not found
SRV - (jobserver_report) -- File not found
SRV - (JL2005C) -- File not found
SRV - (jconfigd) -- File not found
SRV - (iwebmsg) -- File not found
SRV - (iviVD) -- File not found
SRV - (itmrtsvc) -- File not found
SRV - (ithsgt) -- File not found
SRV - (itchfltr) -- File not found
SRV - (issvc) -- File not found
SRV - (issuser) -- File not found
SRV - (issm) -- File not found
SRV - (ISODrive) -- File not found
SRV - (iSMBIOS) -- File not found
SRV - (irmon) -- File not found
SRV - (irda) -- File not found
SRV - (irbus) -- File not found
SRV - (ipsraidn) -- File not found
SRV - (IPSECSHM) -- File not found
SRV - (ipodservice) -- File not found
SRV - (iPassPeriodicUpdateApp) -- File not found
SRV - (iPassP) -- File not found
SRV - (ipassconnectengine) -- File not found
SRV - (ipahelper.exe) -- File not found
SRV - (IOSLINK) -- File not found
SRV - (iomegaaccess) -- File not found
SRV - (Iomega Activity Disk2) -- File not found
SRV - (iolodmv) -- File not found
SRV - (Invoker) -- File not found
SRV - (IntuitUpdateService) -- File not found
SRV - (InterBaseServer) -- File not found
SRV - (InterBaseGuardian) -- File not found
SRV - (intelroam) -- File not found
SRV - (IntelC53) -- File not found
SRV - (IntelC52) -- File not found
SRV - (int15.sys) -- File not found
SRV - (inspect) -- File not found
SRV - (inotask) -- File not found
SRV - (ino_fltr) -- File not found
SRV - (ino_flpy) -- File not found
SRV - (incdsrv) -- File not found
SRV - (incdrec) -- File not found
SRV - (incdpass) -- File not found
SRV - (imountsrv) -- File not found
SRV - (imonnt) -- File not found
SRV - (imonitor) -- File not found
SRV - (imaservice) -- File not found
SRV - (ilicensesvc) -- File not found
SRV - (iksyssec) -- File not found
SRV - (ikhlayer) -- File not found
SRV - (ikhfile) -- File not found
SRV - (ikfileflt) -- File not found
SRV - (IJPLMSVC) -- File not found
SRV - (iisadmin) -- File not found
SRV - (iirsp) -- File not found
SRV - (ihcservice) -- File not found
SRV - (igniteservice.exe) -- File not found
SRV - (ifxtcs) -- File not found
SRV - (iftpsvc) -- File not found
SRV - (IFPUSB) -- File not found
SRV - (IFP700) -- File not found
SRV - (idechndr) -- File not found
SRV - (id2scaps) -- File not found
SRV - (icollectservice) -- File not found
SRV - (ICM10USB) -- File not found
SRV - (iclarityqosservice) -- File not found
SRV - (icepack) -- File not found
SRV - (ICAM5USB) -- File not found
SRV - (ICAM3NT5) -- File not found
SRV - (IBMTPCHK) -- File not found
SRV - (ibmsmbus) -- File not found
SRV - (ibmpmsvc) -- File not found
SRV - (ibmpmdrv) -- File not found
SRV - (IBM_LLC2) -- File not found
SRV - (IASJet) -- File not found
SRV - (ialm) -- File not found
SRV - (iAimTV6) -- File not found
SRV - (iaimtv4) -- File not found
SRV - (iaimtv3) -- File not found
SRV - (iaimtv2) -- File not found
SRV - (iaimtv1) -- File not found
SRV - (iAimFP7) -- File not found
SRV - (iAimFP6) -- File not found
SRV - (iaimfp4) -- File not found
SRV - (iaimfp3) -- File not found
SRV - (iaimfp1) -- File not found
SRV - (iaimfp0) -- File not found
SRV - (HWSCtrl) -- File not found
SRV - (hwdatacard) -- File not found
SRV - (https-nassry) -- File not found
SRV - (https-admserv61) -- File not found
SRV - (hsxhwazl) -- File not found
SRV - (HSX_DP) -- File not found
SRV - (hsvcmod) -- File not found
SRV - (HssTrayService) -- File not found
SRV - (HssSrv) -- File not found
SRV - (HssDrv) -- File not found
SRV - (hSONYPVh) -- File not found
SRV - (HSFHWICH) -- File not found
SRV - (hsfhwbs2) -- File not found
SRV - (HSFHWALI) -- File not found
SRV - (hsf_msft) -- File not found
SRV - (hpwirelessmgr) -- File not found
SRV - (HPSLPSVC) -- File not found
SRV - (hpqwmiex) -- File not found
SRV - (hpqwmi) -- File not found
SRV - (HpqRemHid) -- File not found
SRV - (HpqKbFiltr) -- File not found
SRV - (hpgate) -- File not found
SRV - (HPFXBULK) -- File not found
SRV - (hpdskflt) -- File not found
SRV - (hpdj) -- File not found
SRV - (hpconfig) -- File not found
SRV - (hotspotshieldservice) -- File not found
SRV - (hnmsvc) -- File not found
SRV - (hmonitor) -- File not found
SRV - (HIDSwvd) -- File not found
SRV - (hidir) -- File not found
SRV - (HFACSVC) -- File not found
SRV - (hf30service) -- File not found
SRV - (HECI) -- File not found
SRV - (hdthermal) -- File not found
SRV - (hddsvc) -- File not found
SRV - (hdaudaddservice) -- File not found
SRV - (hcwPVRP2) -- File not found
SRV - (hcwPP2) -- File not found
SRV - (hcmon) -- File not found
SRV - (hcf_msft) -- File not found
SRV - (harmony) -- File not found
SRV - (Hardlock) -- File not found
SRV - (hap17v2k) -- File not found
SRV - (hamachi) -- File not found
SRV - (HabuFltr) -- File not found
SRV - (ha10kx2k) -- File not found
SRV - (GV600_4) -- File not found
SRV - (gv3) -- File not found
SRV - (guardian2) -- File not found
SRV - (GTWModem) -- File not found
SRV - (GTSCSER) -- File not found
SRV - (GTPTSER) -- File not found
SRV - (gtndis5) -- File not found
SRV - (GTF32BUS) -- File not found
SRV - (GT891x) -- File not found
SRV - (GT890x) -- File not found
SRV - (grmnusb) -- File not found
SRV - (govsrv) -- File not found
SRV - (gotomypc) -- File not found
SRV - (googledesktopmanager) -- File not found
SRV - (GoBack2K) -- File not found
SRV - (GMSIPCI) -- File not found
SRV - (ghostsec) -- File not found
SRV - (ghaio) -- File not found
SRV - (ggsemc) -- File not found
SRV - (getPlusHelper) -- File not found
SRV - (Gernuwa) -- File not found
SRV - (genregistrar) -- File not found
SRV - (genmcmn) -- File not found
SRV - (gemserv) -- File not found
SRV - (gearsecurity) -- File not found
SRV - (gdrv) -- File not found
SRV - (gdihook5) -- File not found
SRV - (GcKernel) -- File not found
SRV - (gbpoll) -- File not found
SRV - (GBFSHook) -- File not found
SRV - (gameenum) -- File not found
SRV - (GameConsoleService) -- File not found
SRV - (gagp30kx) -- File not found
SRV - (g400) -- File not found
SRV - (FVXSCSI) -- File not found
SRV - (FVNETusb) -- File not found
SRV - (fuj02b1) -- File not found
SRV - (FTSER2K) -- File not found
SRV - (ftsata2) -- File not found
SRV - (ftrtsvc) -- File not found
SRV - (ftpqueue) -- File not found
SRV - (FsVga) -- File not found
SRV - (fsssvc) -- File not found
SRV - (fsks) -- File not found
SRV - (fshttps) -- File not found
SRV - (fsaa) -- File not found
SRV - (FreeTdi) -- File not found
SRV - (freesshdservice) -- File not found
SRV - (foldersize) -- File not found
SRV - (flutilssvc) -- File not found
SRV - (flashpnt) -- File not found
SRV - (flashcomadmin) -- File not found
SRV - (fix) -- File not found
SRV - (FireTDI) -- File not found
SRV - (fireport) -- File not found
SRV - (FirePM) -- File not found
SRV - (FireHook) -- File not found
SRV - (fingrd32) -- File not found
SRV - (FiltUSBEMPIA) -- File not found
SRV - (filterservice) -- File not found
SRV - (FileDisk) -- File not found
SRV - (fgdxbus) -- File not found
SRV - (FETNDISB) -- File not found
SRV - (fetnd5bv) -- File not found
SRV - (FET5X86V) -- File not found
SRV - (Fd16_700) -- File not found
SRV - (fcdabus) -- File not found
SRV - (fasttx2k) -- File not found
SRV - (fasttrackinstallerservice) -- File not found
SRV - (fallback) -- File not found
SRV - (F700ius) -- File not found
SRV - (F700iob) -- File not found
SRV - (F700imd) -- File not found
SRV - (ezplay) -- File not found
SRV - (Exportit) -- File not found
SRV - (exfat) -- File not found
SRV - (eventclientmultiplexer) -- File not found
SRV - (EUSBMSD) -- File not found
SRV - (euq_monitor) -- File not found
SRV - (EU3_USB) -- File not found
SRV - (ET5Drv) -- File not found
SRV - (ESMCR) -- File not found
SRV - (eskerlicensecontrol) -- File not found
SRV - (eSettingsService) -- File not found
SRV - (ESDCR) -- File not found
SRV - (es1371) -- File not found
SRV - (ErrDev) -- File not found
SRV - (erecoveryservice) -- File not found
SRV - (EQDRV5) -- File not found
SRV - (epstnt01) -- File not found
SRV - (epsonbidirectionalservice) -- File not found
SRV - (epsonbidirectionalagent) -- File not found
SRV - (epson_pm_rpcv2_02) -- File not found
SRV - (EPSON_EB_RPCV4_01) -- File not found
SRV - (epoxusdm) -- File not found
SRV - (EPOWER) -- File not found
SRV - (EpmPsd) -- File not found
SRV - (Eplpdx02) -- File not found
SRV - (Epiusb) -- File not found
SRV - (epgspooler) -- File not found
SRV - (epfwtdi) -- File not found
SRV - (Epfwndis) -- File not found
SRV - (enxpsvr) -- File not found
SRV - (entertainment) -- File not found
SRV - (entech) -- File not found
SRV - (EntDrv51) -- File not found
SRV - (enethusb) -- File not found
SRV - (emu10k1) -- File not found
SRV - (emu10k) -- File not found
SRV - (EMSCR) -- File not found
SRV - (emproxy) -- File not found
SRV - (emitray) -- File not found
SRV - (emclisrv) -- File not found
SRV - (elservice) -- File not found
SRV - (elotouchscreen) -- File not found
SRV - (elosystemservice) -- File not found
SRV - (eloggersvc6) -- File not found
SRV - (elnkupdateservice) -- File not found
SRV - (ELmou) -- File not found
SRV - (ELmon) -- File not found
SRV - (ELkbd) -- File not found
SRV - (ELhid) -- File not found
SRV - (elbydelay) -- File not found
SRV - (elbycdfl) -- File not found
SRV - (ELacpi) -- File not found
SRV - (ehrecvr) -- File not found
SRV - (egathdrv) -- File not found
SRV - (efs) -- File not found
SRV - (eeyeevnt) -- File not found
SRV - (eectrl) -- File not found
SRV - (edspport) -- File not found
SRV - (ec2007service) -- File not found
SRV - (eamon) -- File not found
SRV - (EagleNT) -- File not found
SRV - (EACSys) -- File not found
SRV - (EACSvrMngr) -- File not found
SRV - (eabfiltr) -- File not found
SRV - (e1000) -- File not found
SRV - (dwmrcs) -- File not found
SRV - (dvpapi) -- File not found
SRV - (DVDVRRdr_xp) -- File not found
SRV - (DVDRC) -- File not found
SRV - (DumaNT) -- File not found
SRV - (DSXUSB) -- File not found
SRV - (dsNcAdpt) -- File not found
SRV - (DSI_SiUSBXp_3_1) -- File not found
SRV - (dsbrokerservice) -- File not found
SRV - (DS1410D) -- File not found
SRV - (ds1) -- File not found
SRV - (dphost) -- File not found
SRV - (dpfusmgr) -- File not found
SRV - (downloadmanagerlite) -- File not found
SRV - (dot4usb) -- File not found
SRV - (dot4ufd) -- File not found
SRV - (dot4scan) -- File not found
SRV - (dot4print) -- File not found
SRV - (dntus26) -- File not found
SRV - (dnsexit) -- File not found
SRV - (dnserver32) -- File not found
SRV - (dns4meclient) -- File not found
SRV - (DniVad) -- File not found
SRV - (DNE) -- File not found
SRV - (DN2AKNET) -- File not found
SRV - (DMUSBUSBDCam) -- File not found
SRV - (dmprimer) -- File not found
SRV - (dmisrv) -- File not found
SRV - (DMICall) -- File not found
SRV - (DM9102) -- File not found
SRV - (dm1service) -- File not found
SRV - (d-link_st3402) -- File not found
SRV - (DLH5X) -- File not found
SRV - (dlcq_device) -- File not found
SRV - (dlcj_device) -- File not found
SRV - (dlcg_device) -- File not found
SRV - (dlcf_device) -- File not found
SRV - (dlcc_device) -- File not found
SRV - (dlaudfam) -- File not found
SRV - (dlaudf_m) -- File not found
SRV - (DLARTL_M) -- File not found
SRV - (dlaopiom) -- File not found
SRV - (dlaifs_m) -- File not found
SRV - (dladresn) -- File not found
SRV - (dlacdbhm) -- File not found
SRV - (dlabmfsm) -- File not found
SRV - (dklogger) -- File not found
SRV - (dkeysync) -- File not found
SRV - (djsnetcn) -- File not found
SRV - (DivisCTS) -- File not found
SRV - (DivisCTP) -- File not found
SRV - (diskperf) -- File not found
SRV - (diskeeper) -- File not found
SRV - (dirms_defragmentation) -- File not found
SRV - (DirectUpdate) -- File not found
SRV - (dimension4) -- File not found
SRV - (digisptiservice) -- File not found
SRV - (digirefresh) -- File not found
SRV - (DgiVecp) -- File not found
SRV - (DfwWebAgent) -- File not found
SRV - (Dfs) -- File not found
SRV - (DeviceScanner) -- File not found
SRV - (deltafw) -- File not found
SRV - (DELTA) -- File not found
SRV - (DellAMBrokerService) -- File not found
SRV - (defwatch) -- File not found
SRV - (defragfs) -- File not found
SRV - (Defrag32b) -- File not found
SRV - (Defrag32) -- File not found
SRV - (deckzpsx) -- File not found
SRV - (de_serv) -- File not found
SRV - (ddxgb) -- File not found
SRV - (dcstor32) -- File not found
SRV - (dcsloader) -- File not found
SRV - (DcPTP) -- File not found
SRV - (DcLps) -- File not found
SRV - (dcfssvc) -- File not found
SRV - (DCFS2K) -- File not found
SRV - (dcevt32) -- File not found
SRV - (DCamUSBSQTECH) -- File not found
SRV - (DCamUSBMke) -- File not found
SRV - (DCamUSBGrandTek) -- File not found
SRV - (DCamUSBEMPIA) -- File not found
SRV - (dbustrcm) -- File not found
SRV - (dbmang) -- File not found
SRV - (dbmanagerscheduler) -- File not found
SRV - (db2remotecmd) -- File not found
SRV - (db2licd) -- File not found
SRV - (db2jds) -- File not found
SRV - (db2governor) -- File not found
SRV - (db2) -- File not found
SRV - (datasvr2) -- File not found
SRV - (datasvr) -- File not found
SRV - (dashsvc) -- File not found
SRV - (cygserver) -- File not found
SRV - (cyberpowerups) -- File not found
SRV - (CXTUNE) -- File not found
SRV - (cxpt_service) -- File not found
SRV - (cxlpt) -- File not found
SRV - (CXAVXBAR) -- File not found
SRV - (CX88ENC) -- File not found
SRV - (CX23880) -- File not found
SRV - (cwcwdm) -- File not found
SRV - (cwcspud) -- File not found
SRV - (cwcpsvc20) -- File not found
SRV - (cwbrxd) -- File not found
SRV - (cwafrmiregistry) -- File not found
SRV - (cwafreportscheduler) -- File not found
SRV - (cwafadminmonitor) -- File not found
SRV - (cvsnt) -- File not found
SRV - (CVPNDRVA) -- File not found
SRV - (CVPND) -- File not found
SRV - (CVirtA) -- File not found
SRV - (cvintdrv) -- File not found
SRV - (cusrvc) -- File not found
SRV - (curtainssyssvc) -- File not found
SRV - (ctxhttp) -- File not found
SRV - (ctxcpusched) -- File not found
SRV - (ctxcpubal) -- File not found
SRV - (ctusfsyn) -- File not found
SRV - (CTSYN) -- File not found
SRV - (ctsfm2k) -- File not found
SRV - (CTSBLFX.DLL) -- File not found
SRV - (ctprxy2k) -- File not found
SRV - (CTMSHD) -- File not found
SRV - (CTMMOUNT) -- File not found
SRV - (CTMFLT) -- File not found
SRV - (CTHWIUT.DLL) -- File not found
SRV - (CTEXFIFX.DLL) -- File not found
SRV - (CTERFXFX.DLL) -- File not found
SRV - (CTEDSPFX.DLL) -- File not found
SRV - (CTEAPSFX.DLL) -- File not found
SRV - (ctdvda2k) -- File not found
SRV - (CTDevice_Srv) -- File not found
SRV - (CTAudSvcService) -- File not found
SRV - (ctaud2k) -- File not found
SRV - (ctac32k) -- File not found
SRV - (CT20XUT.DLL) -- File not found
SRV - (CSRBC) -- File not found
SRV - (csctl50) -- File not found
SRV - (cs429x) -- File not found
SRV - (CrystalSysInfo) -- File not found
SRV - (crystaloutputfileserver) -- File not found
SRV - (crystalinputfileserver) -- File not found
SRV - (crystalaps) -- File not found
SRV - (cqmgserv) -- File not found
SRV - (cqmghost) -- File not found
SRV - (cqcpu) -- File not found
SRV - (cpuidlep) -- File not found
SRV - (cpsvc) -- File not found
SRV - (cpqrcmc) -- File not found
SRV - (cpqfws2e) -- File not found
SRV - (cpqfcalm) -- File not found
SRV - (cpqdmi) -- File not found
SRV - (cpqdfw) -- File not found
SRV - (cpqalert) -- File not found
SRV - (cportclm) -- File not found
SRV - (cpntsrv) -- File not found
SRV - (coste) -- File not found
SRV - (commserver) -- File not found
SRV - (COMMONFX.DLL) -- File not found
SRV - (comhost) -- File not found
SRV - (com4qlb) -- File not found
SRV - (cobbmservice) -- File not found
SRV - (CoachVc) -- File not found
SRV - (CoachAud) -- File not found
SRV - (co_mon) -- File not found
SRV - (CnxTrUsb) -- File not found
SRV - (CnxTrLan) -- File not found
SRV - (cmudau) -- File not found
SRV - (cmuda3) -- File not found
SRV - (cmpci) -- File not found
SRV - (cmigameport) -- File not found
SRV - (cmdmon) -- File not found
SRV - (cmdagent) -- File not found
SRV - (cltnetcnservice) -- File not found
SRV - (clsched) -- File not found
SRV - (clr_optimization_v2.0.50215_32) -- File not found
SRV - (ClntMgmt.sys) -- File not found
SRV - (clnt_clientman) -- File not found
SRV - (clisvc) -- File not found
SRV - (clientservice) -- File not found
SRV - (CiscoVpnInstallService) -- File not found
SRV - (cis1284) -- File not found
SRV - (cimnotify) -- File not found
SRV - (cicsclient) -- File not found
SRV - (cics.region2) -- File not found
SRV - (cfosspeeds) -- File not found
SRV - (cfosspeed) -- File not found
SRV - (cfgwzsvc) -- File not found
SRV - (cercsr6) -- File not found
SRV - (centennialiptransferagent) -- File not found
SRV - (centennialclientagent) -- File not found
SRV - (ceepwrsvc) -- File not found
SRV - (cebdaldr) -- File not found
SRV - (CE3) -- File not found
SRV - (cdvp) -- File not found
SRV - (cdudf_xp) -- File not found
SRV - (CDRPDACC) -- File not found
SRV - (cdrbsvsd) -- File not found
SRV - (cdrbsdrv) -- File not found
SRV - (cdralw2k) -- File not found
SRV - (cdr4_xp) -- File not found
SRV - (cdr4_2k) -- File not found
SRV - (cdmservice) -- File not found
SRV - (c-dillacdac11ba) -- File not found
SRV - (cdfsvc) -- File not found
SRV - (CdaC15BA) -- File not found
SRV - (ccsetmgr) -- File not found
SRV - (ccs) -- File not found
SRV - (ccpwdsvc) -- File not found
SRV - (ccproxy) -- File not found
SRV - (CcmExec) -- File not found
SRV - (ccispwdsvc) -- File not found
SRV - (ccflic0) -- File not found
SRV - (ccevtmgr) -- File not found
SRV - (cccredmgr) -- File not found
SRV - (ccalib8) -- File not found
SRV - (CBTNDIS5) -- File not found
SRV - (CBN) -- File not found
SRV - (carboncopy32) -- File not found
SRV - (captureservice) -- File not found
SRV - (Cap7134) -- File not found
SRV - (CAMFLT) -- File not found
SRV - (ca-messagequeuing) -- File not found
SRV - (CAMCHALA) -- File not found
SRV - (CAMCAUD) -- File not found
SRV - (Cam5603D) -- File not found
SRV - (Cam5603C) -- File not found
SRV - (CADlink) -- File not found
SRV - (cacheserver) -- File not found
SRV - (caboagp) -- File not found
SRV - (CA561) -- File not found
SRV - (c34nb4c5) -- File not found
SRV - (BVRPMPR5) -- File not found
SRV - (buslogic) -- File not found
SRV - (BUFADPT) -- File not found
SRV - (btwavdt) -- File not found
SRV - (BTSLBCSP) -- File not found
SRV - (btnetfilter) -- File not found
SRV - (bthserv) -- File not found
SRV - (bthport) -- File not found
SRV - (bthpan) -- File not found
SRV - (bthidmgr) -- File not found
SRV - (bthidenum) -- File not found
SRV - (bt3cusb) -- File not found
SRV - (bt3cser) -- File not found
SRV - (BrUsbSer) -- File not found
SRV - (BrScnUsb) -- File not found
SRV - (BrPar) -- File not found
SRV - (brmfrmps) -- File not found
SRV - (bridgemp) -- File not found
SRV - (bridge) -- File not found
SRV - (BRGSp50) -- File not found
SRV - (botcbs) -- File not found
SRV - (BoiHwsetup) -- File not found
SRV - (bocdrive) -- File not found
SRV - (bmwebcfg) -- File not found
SRV - (bmuservice) -- File not found
SRV - (BlueSoleilCS) -- File not found
SRV - (blueletscoaudio) -- File not found
SRV - (BLKWGU(Belkin)) -- File not found
SRV - (Blfp) -- File not found
SRV - (bjmcmng) -- File not found
SRV - (bhmonitorservice) -- File not found
SRV - (bgs_sdservice) -- File not found
SRV - (bgmainsvc) -- File not found
SRV - (besclient) -- File not found
SRV - (belmonitorservice) -- File not found
SRV - (beatjamupnpmusicserver) -- File not found
SRV - (beatjammusicstreamingserver) -- File not found
SRV - (bdss) -- File not found
SRV - (bdselfpr) -- File not found
SRV - (bdrsdrv) -- File not found
SRV - (bdfdll) -- File not found
SRV - (bcserver) -- File not found
SRV - (bcoreusb) -- File not found
SRV - (BCMWLNPF) -- File not found
SRV - (BcmSqlStartupSvc) -- File not found
SRV - (BCMModem) -- File not found
SRV - (bcm43xx) -- File not found
SRV - (BCM42RLY) -- File not found
SRV - (Bcim) -- File not found
SRV - (bcftdi) -- File not found
SRV - (bc_prt_f) -- File not found
SRV - (bc_ngn) -- File not found
SRV - (bc_ip_f) -- File not found
SRV - (bc_filter) -- File not found
SRV - (bb-run) -- File not found
SRV - (basic2) -- File not found
SRV - (BASFND) -- File not found
SRV - (bantext) -- File not found
SRV - (backuplauncher) -- File not found
SRV - (backupexecrpcservice) -- File not found
SRV - (backupexecnotificationserver) -- File not found
SRV - (backupexecnamingservice) -- File not found
SRV - (backupexecjobengine) -- File not found
SRV - (backupexecdevicemediaservice) -- File not found
SRV - (backupexecalertserver) -- File not found
SRV - (backupexecagentaccelerator) -- File not found
SRV - (b57w2k) -- File not found
SRV - (AYDrvNT_ALYAC) -- File not found
SRV - (axsnmsvc) -- File not found
SRV - (axskbus) -- File not found
SRV - (axinstsv) -- File not found
SRV - (awlegacy) -- File not found
SRV - (awhost32) -- File not found
SRV - (awecho) -- File not found
SRV - (aw_host) -- File not found
SRV - (avupdsvc) -- File not found
SRV - (avsvcmonitor) -- File not found
SRV - (AVRec) -- File not found
SRV - (avpnnic) -- File not found
SRV - (avp) -- File not found
SRV - (avipbb) -- File not found
SRV - (avinitnt) -- File not found
SRV - (avidstartup) -- File not found
SRV - (avhook) -- File not found
SRV - (avgntflt) -- File not found
SRV - (avgmfx86) -- File not found
SRV - (avgio) -- File not found
SRV - (avgfwsrv) -- File not found
SRV - (avgems) -- File not found
SRV - (avgclean) -- File not found
SRV - (avgascln) -- File not found
SRV - (avg7updsvc) -- File not found
SRV - (avg7rsxp) -- File not found
SRV - (avg7core) -- File not found
SRV - (avfilter) -- File not found
SRV - (AVerTV) -- File not found
SRV - (AVCSTRM) -- File not found
SRV - (avcgbfl) -- File not found
SRV - (AVCamUSB20) -- File not found
SRV - (autostore) -- File not found
SRV - (automate6) -- File not found
SRV - (authsyssvc) -- File not found
SRV - (ATWPKT2) -- File not found
SRV - (Atmuni) -- File not found
SRV - (AtlsAud) -- File not found
SRV - (atksgt) -- File not found
SRV - (atkkeyboardservice) -- File not found
SRV - (ATKGFNEXSrv) -- File not found
SRV - (atkdisplf) -- File not found
SRV - (ATIVXSTW) -- File not found
SRV - (ATIVTUTW) -- File not found
SRV - (ativraxx) -- File not found
SRV - (atitunep) -- File not found
SRV - (atitool) -- File not found
SRV - (atirage3) -- File not found
SRV - (atimpab) -- File not found
SRV - (atikmdag) -- File not found
SRV - (atierecord) -- File not found
SRV - (ATIBTXBAR) -- File not found
SRV - (ATIBTCAP) -- File not found
SRV - (atiavpci) -- File not found
SRV - (atiavaiw) -- File not found
SRV - (ati2mtag) -- File not found
SRV - (ati2mtaa) -- File not found
SRV - (ati2mpaa) -- File not found
SRV - (ati) -- File not found
SRV - (atchksrv) -- File not found
SRV - (atalk) -- File not found
SRV - (aswtdi) -- File not found
SRV - (aswmon2) -- File not found
SRV - (AsusACPI) -- File not found
SRV - (AsuhfivrO) -- File not found
SRV - (astcc) -- File not found
SRV - (ASMMAP) -- File not found
SRV - (aslm75) -- File not found
SRV - (ASLDRService) -- File not found
SRV - (askernel) -- File not found
SRV - (AsIO) -- File not found
SRV - (ashampoodefragservice) -- File not found
SRV - (ASFWHide) -- File not found
SRV - (As6frin) -- File not found
SRV - (as32svc) -- File not found
SRV - (artourservice) -- File not found
SRV - (ARSVC) -- File not found
SRV - (arrayssl_vpn_service3,0,1,9) -- File not found
SRV - (array_utility_service4,0,1,3) -- File not found
SRV - (ARPolicy) -- File not found
SRV - (armoucfltr) -- File not found
SRV - (arkbcfltr) -- File not found
SRV - (arhidfltr) -- File not found
SRV - (areschatserver) -- File not found
SRV - (ARCSOFTVIRTUALCAPTURE) -- File not found
SRV - (aracpi) -- File not found
SRV - (AR5416) -- File not found
SRV - (ar5211) -- File not found
SRV - (appnnode) -- File not found
SRV - (AppnBase) -- File not found
SRV - (AppnApi) -- File not found
SRV - (Appn) -- File not found
SRV - (apphostsvc) -- File not found
SRV - (apfiltrservice) -- File not found
SRV - (apache2) -- File not found
SRV - (aolservice) -- File not found
SRV - (antivirservice) -- File not found
SRV - (antivirscheduler) -- File not found
SRV - (anio) -- File not found
SRV - (AN983) -- File not found
SRV - (amusbprt) -- File not found
SRV - (Amsmpu4p) -- File not found
SRV - (amon) -- File not found
SRV - (amoagent) -- File not found
SRV - (amfilter) -- File not found
SRV - (AmeLanPc) -- File not found
SRV - (AMDPCI) -- File not found
SRV - (amdk77) -- File not found
SRV - (amdk7) -- File not found
SRV - (AmdIde) -- File not found
SRV - (ALYac_PZSrv) -- File not found
SRV - (AlteraByteBlaster) -- File not found
SRV - (Alpham2) -- File not found
SRV - (Alpham1) -- File not found
SRV - (alertservice) -- File not found
SRV - (alcxsens) -- File not found
SRV - (alcaudsl) -- File not found
SRV - (alcan5wn) -- File not found
SRV - (aksusb) -- File not found
SRV - (akshhl) -- File not found
SRV - (akshasp) -- File not found
SRV - (Airgo) -- File not found
SRV - (aiclient) -- File not found
SRV - (ahcix86s) -- File not found
SRV - (AGV) -- File not found
SRV - (ageresoftmodem) -- File not found
SRV - (ageremodemaudio) -- File not found
SRV - (agentsrv) -- File not found
SRV - (AFGMp50) -- File not found
SRV - (AffinegyService) -- File not found
SRV - (aexnsclient) -- File not found
SRV - (aeclienthostservice) -- File not found
SRV - (AEAudioService) -- File not found
SRV - (aeaudio) -- File not found
SRV - (AEADIFilters) -- File not found
SRV - (ADSMService) -- File not found
SRV - (adsexpb) -- File not found
SRV - (adpu320) -- File not found
SRV - (AdobeActiveFileMonitor6.0) -- File not found
SRV - (admservice) -- File not found
SRV - (admjoy) -- File not found
SRV - (adiusbaw) -- File not found
SRV - (adiloader) -- File not found
SRV - (adihdaudaddservice) -- File not found
SRV - (addfiltr) -- File not found
SRV - (adaptecstoragemanageragent) -- File not found
SRV - (actser) -- File not found
SRV - (acsvc) -- File not found
SRV - (acrotray) -- File not found
SRV - (acprfmgrsvc) -- File not found
SRV - (acedrv07) -- File not found
SRV - (acedrv05) -- File not found
SRV - (acdservice) -- File not found
SRV - (acdpowerservice) -- File not found
SRV - (ac97intc) -- File not found
SRV - (abnetmon) -- File not found
SRV - (aawservice) -- File not found
SRV - (aalogger) -- File not found
SRV - (aaksrv) -- File not found
SRV - (a8djusb) -- File not found
SRV - (a8djavs) -- File not found
SRV - (A88xXBar) -- File not found
SRV - (A88xTuner) -- File not found
SRV - (A88xEnc) -- File not found
SRV - (A4S2600) -- File not found
SRV - (a016obex) -- File not found
SRV - (a016mgmt) -- File not found
SRV - (a016mdm) -- File not found
SRV - (a016bus) -- File not found
SRV - (3comtftp) -- File not found
SRV - (3combootp) -- File not found
SRV - ({e2b953a6-195a-44f9-9ba3-3d5f4e32bb55}) -- File not found
SRV - ({a7447300-8075-4b0d-83f1-3d75c8ebc623}) -- File not found
SRV - ({95808DC4-FA4A-4c74-92FE-5B863F82066B}) -- File not found
SRV - ({85ccb53b-23d8-4e73-b1b7-9ddb71827d9b}) -- File not found
SRV - ({834170a7-af3b-4d34-a757-e05eb29ee96d}) -- File not found
SRV - ({6080a529-897e-4629-a488-aba0c29b635e}) -- File not found
SRV - (LivedriveVSSService) -- C:\Archivos de programa\Livedrive\VSSService.exe ()
SRV - (SBAMSvc) -- C:\Archivos de programa\GFI Software\VIPRE\SBAMSvc.exe (GFI Software)
SRV - (SBPIMSvc) -- C:\Archivos de programa\GFI Software\VIPRE\SBPIMSvc.exe (GFI Software)
SRV - (Apple Mobile Device) -- C:\Archivos de programa\Archivos comunes\Apple\Mobile Device Support\AppleMobileDeviceService.exe (Apple Inc.)
SRV - (TomTomHOMEService) -- C:\Archivos de programa\TomTom HOME 2\TomTomHOMEService.exe (TomTom)
SRV - (GoToAssist) -- C:\Archivos de programa\Citrix\GoToAssist\615\g2aservice.exe (Citrix Online, a division of Citrix Systems, Inc.)
SRV - (TGCM_ImportWiFiSvc) -- C:\Archivos de programa\o2\Mobile Connection Manager\ImpWiFiSvc.exe (Telefónica I+D)
SRV - (VmbService) -- C:\Archivos de programa\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe (Vodafone)
SRV - (WDDMService) -- C:\Archivos de programa\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe (WDC)
SRV - (WDSmartWareBackgroundService) -- C:\Archivos de programa\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe (Memeo)
SRV - (ASKUpgrade) -- C:\Archivos de programa\AskBarDis\bar\bin\ASKUpgrade.exe ()
SRV - (ASKService) -- C:\Archivos de programa\AskBarDis\bar\bin\AskService.exe ()
SRV - (odserv) -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\ODSERV.EXE (Microsoft Corporation)
SRV - (cachemanxp) -- C:\WINDOWS\system32\lpdsvc.dll (Microsoft Corporation)
SRV - (ACDaemon) -- C:\Archivos de programa\Archivos comunes\ArcSoft\Connection Service\Bin\ACService.exe (ArcSoft)
SRV - (WLANKEEPER) Intel® -- C:\Archivos de programa\Intel\Wireless\Bin\WLKEEPER.exe (Intel® Corporation)
SRV - (ose) -- C:\Archivos de programa\Archivos comunes\Microsoft Shared\Source Engine\OSE.EXE (Microsoft Corporation)
SRV - (TUWinStylerThemeSvc) -- C:\Archivos de programa\TuneUp Utilities 2004\WinStylerThemeSvc.exe (TuneUp Software GmbH)
SRV - (IDriverT) -- C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1050\Intel 32\IDriverT.exe (Macrovision Corporation)
SRV - (AR5523) -- C:\WINDOWS\system32\simptcp.dll (Microsoft Corporation)
SRV - (_IOMEGA_ACTIVE_DISK_SERVICE_) -- C:\Archivos de programa\Iomega\AutoDisk\ADService.exe (Iomega Corporation)
SRV - (Iomega App Services) -- C:\Archivos de programa\Iomega\System32\AppServices.exe (Iomega Corporation)


========== Driver Services (SafeList) ==========

DRV - (WDICA) -- File not found
DRV - (RimUsb) -- File not found
DRV - (PDRFRAME) -- File not found
DRV - (PDRELI) -- File not found
DRV - (PDFRAME) -- File not found
DRV - (PDCOMP) -- File not found
DRV - (PCIDump) -- File not found
DRV - (lbrtfdc) -- File not found
DRV - (Changer) -- File not found
DRV - (catchme) -- File not found
DRV - (ati7nuxx) -- File not found
DRV - (ati7elxx) -- File not found
DRV - (ati3wexx) -- File not found
DRV - (ati2mtxx) -- File not found
DRV - (ati0bixx) -- File not found
DRV - (adfs) -- File not found
DRV - (SbHips) -- C:\WINDOWS\system32\drivers\sbhips.sys (GFI Software)
DRV - (SbFw) -- C:\WINDOWS\system32\drivers\SbFw.sys (GFI Software)
DRV - (SbTis) -- C:\WINDOWS\system32\drivers\sbtis.sys (GFI Software)
DRV - (SBRE) -- C:\WINDOWS\system32\drivers\SBREDrv.sys (GFI Software)
DRV - (SBFWIMCLMP) -- C:\WINDOWS\system32\drivers\SbFwIm.sys (GFI Software)
DRV - (SBFWIMCL) -- C:\WINDOWS\system32\drivers\SbFwIm.sys (GFI Software)
DRV - (sbapifs) -- C:\WINDOWS\system32\drivers\sbapifs.sys (GFI Software)
DRV - (sbaphd) -- C:\WINDOWS\system32\drivers\sbaphd.sys (GFI Software)
DRV - (Netaapl) -- C:\WINDOWS\system32\drivers\netaapl.sys (Apple Inc.)
DRV - (tidnet) -- C:\WINDOWS\system32\drivers\tidnet.sys (Telefónica I+D)
DRV - (ZTEusbvoice) -- C:\WINDOWS\system32\drivers\zteusbvoice.sys (ZTE Incorporated)
DRV - (acedrv11) -- C:\WINDOWS\system32\drivers\acedrv11.sys (Protect Software GmbH)
DRV - (ZTEusbser6k) -- C:\WINDOWS\system32\drivers\ZTEusbser6k.sys (ZTE Incorporated)
DRV - (ZTEusbnmea) -- C:\WINDOWS\system32\drivers\ZTEusbnmea.sys (ZTE Incorporated)
DRV - (ZTEusbmdm6k) -- C:\WINDOWS\system32\drivers\ZTEusbmdm6k.sys (ZTE Incorporated)
DRV - (CbFs) -- C:\WINDOWS\system32\drivers\cbfs.sys (EldoS Corporation)
DRV - (massfilter) -- C:\WINDOWS\system32\drivers\massfilter.sys (ZTE Incorporated)
DRV - (ZTEusbnet) -- C:\WINDOWS\system32\drivers\ZTEusbnet.sys (ZTE Corporation)
DRV - (mfehidk) -- C:\WINDOWS\system32\drivers\mfehidk.sys (McAfee, Inc.)
DRV - (mfeavfk) -- C:\WINDOWS\system32\drivers\mfeavfk.sys (McAfee, Inc.)
DRV - (mfesmfk) -- C:\WINDOWS\system32\drivers\mfesmfk.sys (McAfee, Inc.)
DRV - (mfebopk) -- C:\WINDOWS\system32\drivers\mfebopk.sys (McAfee, Inc.)
DRV - (mferkdk) -- C:\WINDOWS\system32\drivers\mferkdk.sys (McAfee, Inc.)
DRV - (dfmirage) -- C:\WINDOWS\system32\drivers\dfmirage.sys (DemoForge, LLC)
DRV - (WDC_SAM) -- C:\WINDOWS\system32\drivers\wdcsam.sys (Western Digital Technologies)
DRV - (massfilter_hs) -- C:\WINDOWS\system32\drivers\massfilter_hs.sys (ZTE Incorporated)
DRV - (SPLITCAM) -- C:\WINDOWS\system32\drivers\splitcam.sys (LoteSoft Co.)
DRV - (SASKUTIL) -- C:\Archivos de programa\SUPERAntiSpyware\SASKUTIL.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (SASDIFSV) -- C:\Archivos de programa\SUPERAntiSpyware\SASDIFSV.SYS (SUPERAdBlocker.com and SUPERAntiSpyware.com)
DRV - (pfc) -- C:\WINDOWS\system32\drivers\pfc.sys (Padus, Inc.)
DRV - (HSF_DPV) -- C:\WINDOWS\system32\drivers\HSF_DPV.sys (Conexant Systems, Inc.)
DRV - (winachsf) -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys (Conexant Systems, Inc.)
DRV - (HSFHWAZL) -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys (Conexant Systems, Inc.)
DRV - (OEM02Vfx) -- C:\WINDOWS\system32\drivers\OEM02Vfx.sys (EyePower Games Pte. Ltd.)
DRV - (OEM02Dev) -- C:\WINDOWS\system32\drivers\OEM02Dev.sys (Creative Technology Ltd.)
DRV - (NETw4x32) Controlador del adaptador Intel® -- C:\WINDOWS\system32\drivers\NETw4x32.sys (Intel Corporation)
DRV - (bcm4sbxp) -- C:\WINDOWS\system32\drivers\bcm4sbxp.sys (Broadcom Corporation)
DRV - (rismxdp) -- C:\WINDOWS\system32\drivers\rixdptsk.sys (REDC)
DRV - (rimsptsk) -- C:\WINDOWS\system32\drivers\rimsptsk.sys (REDC)
DRV - (rimmptsk) -- C:\WINDOWS\system32\drivers\rimmptsk.sys (REDC)
DRV - (STHDA) -- C:\WINDOWS\system32\drivers\sthda.sys (SigmaTel, Inc.)
DRV - (s24trans) -- C:\WINDOWS\system32\drivers\s24trans.sys (Intel Corporation)
DRV - (DXEC02) -- C:\WINDOWS\system32\drivers\dxec02.sys (Knowles Acoustics)
DRV - (btaudio) -- C:\WINDOWS\system32\drivers\btaudio.sys (Broadcom Corporation.)
DRV - (BTSERIAL) -- C:\WINDOWS\system32\drivers\btserial.sys (Broadcom Corporation.)
DRV - (BTKRNL) -- C:\WINDOWS\system32\drivers\btkrnl.sys (Broadcom Corporation.)
DRV - (BTDriver) -- C:\WINDOWS\system32\drivers\btport.sys (Broadcom Corporation.)
DRV - (btwmodem) -- C:\WINDOWS\system32\drivers\btwmodem.sys (Broadcom Corporation.)
DRV - (BTWUSB) -- C:\WINDOWS\system32\drivers\btwusb.sys (Broadcom Corporation.)
DRV - (BTWDNDIS) -- C:\WINDOWS\system32\drivers\btwdndis.sys (Broadcom Corporation.)
DRV - (btwhid) -- C:\WINDOWS\system32\drivers\btwhid.sys (Broadcom Corporation.)
DRV - (SASENUM) -- C:\Archivos de programa\SUPERAntiSpyware\SASENUM.SYS (SuperAdBlocker, Inc.)
DRV - (Aspi32) -- C:\WINDOWS\system32\drivers\ASPI32.SYS (Adaptec)
DRV - (APPDRV) -- C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS (Dell Inc)
DRV - (Afc) -- C:\WINDOWS\system32\drivers\afc.sys (Arcsoft, Inc.)
DRV - (iomdisk) -- C:\WINDOWS\System32\DRIVERS\iomdisk.sys (Iomega Corporation)
DRV - (EL90XBC) -- C:\WINDOWS\system32\drivers\el90xbc5.sys (3Com Corporation)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Search,Start Page = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
IE - HKLM\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
IE - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7


IE - HKU\.DEFAULT\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

IE - HKU\S-1-5-18\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local



IE - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
IE - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - No CLSID value found
IE - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\..\SearchScopes\{5A65EBB1-380C-4727-B820-8BFC69CAA151}: "URL" = http://www.bing.com/search?FORM=IPGTDF&PC=IPGTDF&q={searchTerms}&src=IE-SearchBox
IE - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7GGLR_esES299
IE - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
IE - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local

========== FireFox ==========

FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Archivos de programa\iTunes\Mozilla Plugins\npitunes.dll ()
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Archivos de programa\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Archivos de programa\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Archivos de programa\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Archivos de programa\Microsoft Silverlight\4.1.10111.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@protectdisc.com/NPMPDRM: C:\Archivos de programa\Archivos comunes\mpDRM\NPMPDRM.dll ( )
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Archivos de programa\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Archivos de programa\Google\Update\1.3.21.99\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{27182e60-b5f3-411c-b545-b44205977502}: C:\Archivos de programa\Microsoft\Search Enhancement Pack\Search Helper\firefoxextension\SearchHelperExtension\ [2012/02/04 18:37:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\{3252b9ae-c69a-4eaf-9502-dc9c1f6c009e}: C:\Archivos de programa\Microsoft\Search Enhancement Pack\Default Manager\DMExtension\ [2012/02/04 18:37:40 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Components: C:\Archivos de programa\Mozilla Firefox\components [2012/01/11 10:05:28 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 9.0.1\extensions\\Plugins: C:\Archivos de programa\Mozilla Firefox\plugins [2011/09/05 17:30:40 | 000,000,000 | ---D | M]

[2010/04/02 17:18:46 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Antonio\Datos de programa\Mozilla\Extensions
[2011/03/03 20:41:54 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Antonio\Datos de programa\Mozilla\Firefox\Profiles\d1btvxmv.default\extensions
[2010/05/19 21:46:38 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Antonio\Datos de programa\Mozilla\Firefox\Profiles\d1btvxmv.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/11/10 16:52:52 | 000,000,000 | ---D | M] (No name found) -- C:\Archivos de programa\Mozilla Firefox\extensions
[2011/11/03 12:59:10 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Archivos de programa\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012/01/11 10:05:26 | 000,121,816 | ---- | M] (Mozilla Foundation) -- C:\Archivos de programa\mozilla firefox\components\browsercomps.dll
[2010/09/15 04:50:38 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Archivos de programa\mozilla firefox\plugins\npdeployJava1.dll
[2009/09/22 13:14:24 | 000,176,128 | ---- | M] (Dimdim, Inc.) -- C:\Archivos de programa\mozilla firefox\plugins\npDimdimControl.dll
[2011/10/11 12:35:10 | 000,002,252 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\bing.xml
[2011/10/11 12:35:10 | 000,003,996 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\drae.xml
[2011/10/11 12:35:10 | 000,001,143 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\eBay-es.xml
[2012/01/11 10:05:26 | 000,002,040 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\twitter.xml
[2011/10/11 12:35:10 | 000,001,178 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\wikipedia-es.xml
[2011/10/11 12:35:10 | 000,001,102 | ---- | M] () -- C:\Archivos de programa\mozilla firefox\searchplugins\yahoo-es.xml

O1 HOSTS File: ([2012/03/04 19:55:46 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Aplicación auxiliar de vínculos de Adobe PDF Reader) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - C:\Archivos de programa\AskBarDis\bar\bin\askBar.dll (Ask.com)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Archivos de programa\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll (Google Inc.)
O2 - BHO: (CBrowserHelperObject Object) - {CA6319C0-31B7-401E-A518-A07C3DB8F777} - C:\Archivos de programa\Dell\BAE\BAE.dll (Dell Inc.)
O2 - BHO: (BrowserHelper Class) - {EDF48A39-1442-463F-9F4E-F376A78D034A} - C:\Archivos de programa\Livedrive\LivedriveExplorerExtensions.dll (Livedrive Internet Ltd)
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - C:\Archivos de programa\AskBarDis\bar\bin\askBar.dll (Ask.com)
O3 - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - C:\Archivos de programa\AskBarDis\bar\bin\askBar.dll (Ask.com)
O4 - HKLM..\Run: [APSDaemon] C:\Archivos de programa\Archivos comunes\Apple\Apple Application Support\APSDaemon.exe (Apple Inc.)
O4 - HKLM..\Run: [CTSVolFE.exe] C:\Archivos de programa\Creative\Mixer\CTSVolFE.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [IntelWireless] C:\Archivos de programa\Intel\Wireless\Bin\ifrmewrk.exe (Intel Corporation)
O4 - HKLM..\Run: [IntelZeroConfig] C:\Archivos de programa\Intel\Wireless\bin\ZCfgSvc.exe (Intel Corporation)
O4 - HKLM..\Run: [KADxMain] C:\WINDOWS\system32\KADxMain.exe (Knowles Acoustics)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVHotkey] C:\WINDOWS\System32\nvhotkey.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [SBAMTray] C:\Archivos de programa\GFI Software\VIPRE\SBAMTray.exe (GFI Software)
O4 - HKLM..\Run: [SBRegRebootCleaner] C:\Archivos de programa\GFI Software\VIPRE\SBRC.exe (GFI Software)
O4 - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006..\Run: [HP Deskjet 3050A J611 series (NET)] C:\Archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\Alicia\Menú Inicio\Programas\Inicio\Dropbox.lnk = C:\Documents and Settings\Antonio\Datos de programa\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Documents and Settings\Antonio\Menú Inicio\Programas\Inicio\Dropbox.lnk = C:\Documents and Settings\Antonio\Datos de programa\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O4 - Startup: C:\Documents and Settings\Katrin\Menú Inicio\Programas\Inicio\Dropbox.lnk = C:\Documents and Settings\Antonio\Datos de programa\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoCDBurning = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O8 - Extra context menu item: Enviar a &Bluetooth - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm ()
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000004 [] - C:\Archivos de programa\Bonjour\mdnsNSP.dll (Apple Inc.)
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} http://www.facebook.com/controls/contactx.dll (ContactExtractor Class)
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab (Facebook Photo Uploader 5 Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
O16 - DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} https://www.cert.fnmt.es/content/pages_std/ficheros_apps_usuarios/capicom.cab (Settings Class)
O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} http://www.mypix.com/es/es/importer/ImageUploader4.cab (Image Uploader Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{DD3F00D0-E2EE-4D83-8DC6-A5F34FB25CB7}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\ipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Archivos de programa\Archivos comunes\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\Web Components\11\OWC11.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Archivos de programa\Archivos comunes\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\!SASWinLogon: DllName - (C:\Archivos de programa\SUPERAntiSpyware\SASWINLO.DLL) - C:\Archivos de programa\SUPERAntiSpyware\SASWINLO.DLL (SUPERAntiSpyware.com)
O20 - Winlogon\Notify\GoToAssist: DllName - (C:\Archivos de programa\Citrix\GoToAssist\615\G2AWinLogon.dll) - C:\Archivos de programa\Citrix\GoToAssist\615\g2awinlogon.dll (Citrix Online, a division of Citrix Systems, Inc.)
O24 - Desktop Components:0 (Mi página de inicio actual) - About:Home
O28 - HKLM ShellExecuteHooks: {5AE067D3-9AFB-48E0-853A-EBB7F4A000DA} - C:\Archivos de programa\SUPERAntiSpyware\SASSEH.DLL (SuperAdBlocker.com)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2004/09/08 16:04:38 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2012/03/04 21:22:16 | 000,584,704 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Antonio\Escritorio\OTL.exe
[2012/03/04 20:05:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp
[2012/03/04 11:26:12 | 000,000,000 | ---D | C] -- C:\TDSSKiller_Quarantine
[2012/03/04 11:24:23 | 004,730,880 | ---- | C] (AVAST Software) -- C:\Documents and Settings\Antonio\Escritorio\aswMBR.exe
[2012/03/04 11:24:22 | 002,062,896 | ---- | C] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Antonio\Escritorio\tdsskiller.exe
[2012/03/04 10:06:57 | 000,518,144 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2012/03/04 10:06:57 | 000,406,528 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2012/03/04 10:06:57 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2012/03/04 10:06:57 | 000,060,416 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2012/03/04 10:03:42 | 004,425,722 | R--- | C] (Swearware) -- C:\Documents and Settings\Antonio\Escritorio\ComboFix.exe
[2012/03/03 16:43:24 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Antonio\Menú Inicio\Programas\Herramientas administrativas
[2012/03/03 16:43:15 | 000,607,260 | R--- | C] (Swearware) -- C:\Documents and Settings\Antonio\Escritorio\dds.scr
[2012/03/01 19:26:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Nero
[2012/03/01 19:11:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Antonio\Configuración local\Datos de programa\Ahead
[2012/02/26 21:13:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Antonio\Datos de programa\TuneUp Software
[2012/02/26 17:18:44 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2012/02/26 15:10:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\AVAST Software
[2012/02/26 15:10:14 | 000,000,000 | ---D | C] -- C:\Archivos de programa\AVAST Software
[2012/02/26 14:56:18 | 000,000,000 | ---D | C] -- C:\ComFix14882C
[2012/02/26 14:54:47 | 000,000,000 | ---D | C] -- C:\ComFix6767C
[2012/02/26 14:51:43 | 000,000,000 | ---D | C] -- C:\ComFix24352C
[2012/02/26 14:48:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2012/02/26 14:48:08 | 000,000,000 | ---D | C] -- C:\ComFix
[2012/02/26 13:56:11 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/02/26 09:02:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\CCleaner
[2012/02/26 09:02:03 | 000,000,000 | ---D | C] -- C:\Archivos de programa\CCleaner
[2012/02/26 08:54:45 | 000,000,000 | -HSD | C] -- C:\WINDOWS\CSC
[2012/02/26 07:13:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Datos de programa\Adobe
[2012/02/26 07:13:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Livedrive
[2012/02/26 07:13:14 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Livedrive
[2012/02/25 23:46:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Antonio\Datos de programa\SUPERAntiSpyware.com
[2012/02/25 23:22:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Antonio\Datos de programa\Malwarebytes
[2012/02/25 11:50:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Antonio\Configuración local\Datos de programa\e927f25b
[2012/02/17 10:57:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Antonio\Mis documentos\Corel User Files
[2012/02/17 10:56:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Antonio\Datos de programa\Corel
[2012/02/17 08:01:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\DatacardService
[2012/02/13 18:22:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Primo Mathematik 2
[2012/02/13 18:22:03 | 000,286,720 | ---- | C] (Indigo Rose Corporation) -- C:\WINDOWS\iun507.exe
[2012/02/13 18:21:45 | 000,000,000 | ---D | C] -- C:\Primo Mathematik 2
[2012/02/10 21:00:13 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Antonio\Mis documentos\Mis formas
[2012/02/07 16:48:56 | 000,578,232 | ---- | C] (Livedrive Internet Ltd) -- C:\WINDOWS\System32\LivedriveControlPanel.cpl
[2012/02/04 21:09:57 | 000,006,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\serscan.sys
[2012/02/04 18:37:23 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Microsoft
[2012/02/04 18:37:17 | 000,000,000 | ---D | C] -- C:\Archivos de programa\MSN Toolbar
[2012/02/04 18:37:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Microsoft Silverlight
[2012/02/04 18:36:43 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Microsoft Silverlight
[2012/02/04 18:36:19 | 000,000,000 | ---D | C] -- C:\Archivos de programa\Bing Bar Installer
[2012/02/04 18:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Datos de programa\HP Photo Creations
[2012/02/04 18:36:03 | 000,000,000 | ---D | C] -- C:\Archivos de programa\HP Photo Creations
[2012/02/04 18:35:12 | 000,544,616 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\HPDiscoPMa011.dll
[2012/02/04 18:35:09 | 000,488,296 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\HPWia1_DJ3050A_J611.dll
[2012/02/04 18:34:53 | 000,429,928 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpinkstsa011.dll
[2012/02/04 18:34:53 | 000,270,696 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpinkstsa011LM.dll
[2012/02/04 18:34:53 | 000,216,424 | ---- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpinkcoia011.dll
[2012/02/04 18:33:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Antonio\Configuración local\Datos de programa\HP
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/03/04 21:22:28 | 000,584,704 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Antonio\Escritorio\OTL.exe
[2012/03/04 21:19:00 | 000,001,102 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job
[2012/03/04 21:01:00 | 000,000,338 | ---- | M] () -- C:\WINDOWS\tasks\HP Photo Creations Messager.job
[2012/03/04 20:40:00 | 000,000,480 | ---- | M] () -- C:\WINDOWS\tasks\At2.job
[2012/03/04 20:22:03 | 000,120,518 | ---- | M] () -- C:\WINDOWS\System32\nvModes.001
[2012/03/04 20:21:34 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012/03/04 20:21:31 | 000,001,098 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job
[2012/03/04 20:10:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012/03/04 20:10:50 | 3219,169,280 | -HS- | M] () -- C:\hiberfil.sys
[2012/03/04 19:55:46 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2012/03/04 14:00:00 | 000,000,480 | ---- | M] () -- C:\WINDOWS\tasks\At4.job
[2012/03/04 11:43:26 | 000,000,512 | ---- | M] () -- C:\Documents and Settings\Antonio\Escritorio\MBR.dat
[2012/03/04 11:14:20 | 004,730,880 | ---- | M] (AVAST Software) -- C:\Documents and Settings\Antonio\Escritorio\aswMBR.exe
[2012/03/04 11:13:28 | 002,062,896 | ---- | M] (Kaspersky Lab ZAO) -- C:\Documents and Settings\Antonio\Escritorio\tdsskiller.exe
[2012/03/04 10:34:09 | 000,000,000 | -HS- | M] () -- C:\WINDOWS\muzuki.exc
[2012/03/04 09:59:03 | 000,000,000 | -HS- | M] () -- C:\WINDOWS\System32\dds_log_trash.cmd
[2012/03/04 09:48:20 | 004,425,722 | R--- | M] (Swearware) -- C:\Documents and Settings\Antonio\Escritorio\ComboFix.exe
[2012/03/03 18:35:01 | 000,000,480 | ---- | M] () -- C:\WINDOWS\tasks\At3.job
[2012/03/03 16:52:52 | 000,302,592 | ---- | M] () -- C:\Documents and Settings\Antonio\Escritorio\voeswi9h.exe
[2012/03/03 16:40:10 | 000,607,260 | R--- | M] (Swearware) -- C:\Documents and Settings\Antonio\Escritorio\dds.scr
[2012/03/03 16:38:41 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Antonio\defogger_reenable
[2012/03/03 16:28:14 | 000,050,477 | ---- | M] () -- C:\Documents and Settings\Antonio\Escritorio\Defogger.exe
[2012/03/03 10:10:01 | 000,000,480 | ---- | M] () -- C:\WINDOWS\tasks\At1.job
[2012/02/27 16:03:24 | 000,001,027 | ---- | M] () -- C:\Documents and Settings\Antonio\Menú Inicio\Programas\Inicio\Dropbox.lnk
[2012/02/27 16:03:23 | 000,001,027 | ---- | M] () -- C:\Documents and Settings\Antonio\Escritorio\Dropbox.lnk
[2012/02/27 15:33:56 | 002,503,171 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaEarlyPaym01N v1 4 Spanish Edited.pdf
[2012/02/27 15:33:56 | 000,006,744 | ---- | M] () -- C:\Documents and Settings\Antonio\Datos de programa\PrimoPDFSet.xml
[2012/02/27 14:57:44 | 002,484,750 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Call Flow - VodaInboundAP v1 4 Spanish Edited.pdf
[2012/02/27 11:22:19 | 002,503,053 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaLatePaym01N v1 4 - Spanish Edited.pdf
[2012/02/27 11:20:32 | 002,502,874 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaPaym01N v1 4 - Spanish Edited.pdf
[2012/02/26 20:32:02 | 000,000,110 | ---- | M] () -- C:\Documents and Settings\Antonio\Datos de programa\netstat.bat
[2012/02/26 15:45:42 | 000,002,909 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012/02/26 15:18:57 | 000,001,738 | ---- | M] () -- C:\WINDOWS\System32\EmailAVConfig.xml
[2012/02/26 07:13:20 | 000,001,555 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Livedrive Control Panel.lnk
[2012/02/25 23:48:38 | 000,000,829 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\SUPERAntiSpyware Free Edition.lnk
[2012/02/24 17:17:09 | 000,000,420 | ---- | M] () -- C:\WINDOWS\tasks\1-Klick-Wartung.job
[2012/02/22 18:30:40 | 002,501,234 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaPaym01N v1.3.pdf
[2012/02/22 18:29:33 | 002,501,320 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaLatePaym01N v1.3.pdf
[2012/02/22 18:28:13 | 002,501,283 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaEarlyPaym01N v1.3.pdf
[2012/02/22 18:25:55 | 002,481,989 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Call Flow - VodaInboundAP v1.3.pdf
[2012/02/22 11:44:23 | 003,076,493 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Notebook Scan.pdf
[2012/02/22 11:36:25 | 000,298,618 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Scan0001.jpg
[2012/02/21 18:46:21 | 000,005,120 | ---- | M] () -- C:\Documents and Settings\Antonio\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/21 09:10:45 | 000,004,096 | ---- | M] () -- C:\Documents and Settings\All Users\Documentos\0000149B.LCS
[2012/02/20 10:06:45 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012/02/17 15:44:58 | 000,847,882 | ---- | M] () -- C:\Documents and Settings\Antonio\Mis documentos\Proyecto ERS_BPO_Plataforma Pagos Vodafone - Agentes.pdf
[2012/02/17 08:35:19 | 002,952,872 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012/02/17 08:16:21 | 000,511,752 | ---- | M] () -- C:\WINDOWS\System32\perfh00A.dat
[2012/02/17 08:16:21 | 000,446,794 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012/02/17 08:16:21 | 000,093,806 | ---- | M] () -- C:\WINDOWS\System32\perfc00A.dat
[2012/02/17 08:16:21 | 000,073,808 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012/02/14 22:13:07 | 000,000,298 | ---- | M] () -- C:\WINDOWS\tasks\AppleSoftwareUpdate.job
[2012/02/13 18:22:06 | 000,001,441 | ---- | M] () -- C:\Documents and Settings\Antonio\Escritorio\Primo Mathematik 2 Handbuch.lnk
[2012/02/13 18:22:06 | 000,001,425 | ---- | M] () -- C:\Documents and Settings\Antonio\Escritorio\Primo Mathematik 2.lnk
[2012/02/13 18:21:32 | 000,286,720 | ---- | M] (Indigo Rose Corporation) -- C:\WINDOWS\iun507.exe
[2012/02/07 16:48:56 | 000,578,232 | ---- | M] (Livedrive Internet Ltd) -- C:\WINDOWS\System32\LivedriveControlPanel.cpl
[2012/02/07 12:18:07 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012/02/05 10:11:33 | 000,000,437 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts.ics
[2012/02/04 18:36:11 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\HP Photo Creations.lnk
[2012/02/04 18:35:11 | 000,002,042 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\HP Deskjet 3050A J611 series.lnk
[2012/02/04 18:35:11 | 000,001,767 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\HP ePrintCenter - HP Deskjet 3050A J611 series.lnk
[2012/02/04 18:35:11 | 000,000,995 | ---- | M] () -- C:\Documents and Settings\All Users\Escritorio\Comprar consumilbes - HP Deskjet 3050A J611 series.lnk
[2012/02/04 18:33:47 | 000,000,057 | ---- | M] () -- C:\Documents and Settings\All Users\Datos de programa\Ament.ini
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/03/04 20:10:50 | 3219,169,280 | -HS- | C] () -- C:\hiberfil.sys
[2012/03/04 11:38:41 | 000,000,512 | ---- | C] () -- C:\Documents and Settings\Antonio\Escritorio\MBR.dat
[2012/03/04 10:06:57 | 000,256,000 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2012/03/04 10:06:57 | 000,208,896 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2012/03/04 10:06:57 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2012/03/04 10:06:57 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2012/03/04 10:06:57 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2012/03/03 16:53:57 | 000,302,592 | ---- | C] () -- C:\Documents and Settings\Antonio\Escritorio\voeswi9h.exe
[2012/03/03 16:38:41 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Antonio\defogger_reenable
[2012/03/03 16:37:50 | 000,050,477 | ---- | C] () -- C:\Documents and Settings\Antonio\Escritorio\Defogger.exe
[2012/02/27 15:33:56 | 002,503,171 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaEarlyPaym01N v1 4 Spanish Edited.pdf
[2012/02/27 14:57:44 | 002,484,750 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Call Flow - VodaInboundAP v1 4 Spanish Edited.pdf
[2012/02/27 11:22:19 | 002,503,053 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaLatePaym01N v1 4 - Spanish Edited.pdf
[2012/02/27 11:20:32 | 002,502,874 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaPaym01N v1 4 - Spanish Edited.pdf
[2012/02/26 20:32:02 | 000,000,110 | ---- | C] () -- C:\Documents and Settings\Antonio\Datos de programa\netstat.bat
[2012/02/26 15:18:57 | 000,001,738 | ---- | C] () -- C:\WINDOWS\System32\EmailAVConfig.xml
[2012/02/26 14:48:12 | 000,000,000 | -HS- | C] () -- C:\WINDOWS\muzuki.exc
[2012/02/26 07:13:20 | 000,001,555 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Livedrive Control Panel.lnk
[2012/02/25 23:48:38 | 000,000,829 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\SUPERAntiSpyware Free Edition.lnk
[2012/02/25 12:00:20 | 000,000,000 | -HS- | C] () -- C:\WINDOWS\System32\dds_log_trash.cmd
[2012/02/22 18:30:40 | 002,501,234 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaPaym01N v1.3.pdf
[2012/02/22 18:29:33 | 002,501,320 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaLatePaym01N v1.3.pdf
[2012/02/22 18:28:13 | 002,501,283 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Callflow - VodaEarlyPaym01N v1.3.pdf
[2012/02/22 18:25:54 | 002,481,989 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Visio-Call Flow - VodaInboundAP v1.3.pdf
[2012/02/22 11:44:20 | 003,076,493 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Notebook Scan.pdf
[2012/02/22 11:36:25 | 000,298,618 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Scan0001.jpg
[2012/02/19 11:25:32 | 000,005,120 | ---- | C] () -- C:\Documents and Settings\Antonio\Configuración local\Datos de programa\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012/02/17 15:44:58 | 000,847,882 | ---- | C] () -- C:\Documents and Settings\Antonio\Mis documentos\Proyecto ERS_BPO_Plataforma Pagos Vodafone - Agentes.pdf
[2012/02/16 12:34:55 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012/02/16 12:34:55 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2012/02/13 18:22:06 | 000,001,441 | ---- | C] () -- C:\Documents and Settings\Antonio\Escritorio\Primo Mathematik 2 Handbuch.lnk
[2012/02/13 18:22:06 | 000,001,425 | ---- | C] () -- C:\Documents and Settings\Antonio\Escritorio\Primo Mathematik 2.lnk
[2012/02/04 18:37:41 | 000,001,126 | ---- | C] () -- C:\Documents and Settings\All Users\Menú Inicio\Programas\Microsoft Default Manager.lnk
[2012/02/04 18:36:11 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\HP Photo Creations.lnk
[2012/02/04 18:36:10 | 000,000,338 | ---- | C] () -- C:\WINDOWS\tasks\HP Photo Creations Messager.job
[2012/02/04 18:35:46 | 000,000,480 | ---- | C] () -- C:\WINDOWS\tasks\At4.job
[2012/02/04 18:35:46 | 000,000,480 | ---- | C] () -- C:\WINDOWS\tasks\At3.job
[2012/02/04 18:35:46 | 000,000,480 | ---- | C] () -- C:\WINDOWS\tasks\At2.job
[2012/02/04 18:35:46 | 000,000,480 | ---- | C] () -- C:\WINDOWS\tasks\At1.job
[2012/02/04 18:35:11 | 000,002,042 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\HP Deskjet 3050A J611 series.lnk
[2012/02/04 18:35:11 | 000,001,767 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\HP ePrintCenter - HP Deskjet 3050A J611 series.lnk
[2012/02/04 18:35:11 | 000,000,995 | ---- | C] () -- C:\Documents and Settings\All Users\Escritorio\Comprar consumilbes - HP Deskjet 3050A J611 series.lnk
[2012/02/04 18:35:09 | 001,929,576 | ---- | C] () -- C:\WINDOWS\System32\HPScanTRDrv_DJ3050A_J611.dll
[2012/02/04 18:33:47 | 000,000,057 | ---- | C] () -- C:\Documents and Settings\All Users\Datos de programa\Ament.ini
[2011/11/20 23:20:55 | 000,321,196 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2011/11/09 16:42:31 | 000,006,744 | ---- | C] () -- C:\Documents and Settings\Antonio\Datos de programa\PrimoPDFSet.xml
[2011/10/21 09:15:28 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Antonio\Datos de programa\winscp.rnd
[2010/11/26 14:24:12 | 000,303,104 | ---- | C] () -- C:\WINDOWS\Uninstall_tkexe.exe
[2010/10/13 22:49:45 | 000,000,127 | ---- | C] () -- C:\WINDOWS\System32\MRT.INI
[2010/09/24 10:51:37 | 000,111,569 | ---- | C] () -- C:\WINDOWS\hpqins11.dat
[2010/09/24 10:39:09 | 000,111,758 | ---- | C] () -- C:\WINDOWS\hpqins01.dat
[2010/09/14 10:39:46 | 000,010,385 | ---- | C] () -- C:\WINDOWS\hpwscr10.dat
[2010/05/30 22:10:28 | 000,000,020 | ---- | C] () -- C:\WINDOWS\Hposcv07.INI
[2010/05/27 09:09:18 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010/05/27 09:09:18 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010/05/27 09:09:16 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010/05/27 09:09:16 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010/05/27 09:09:15 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010/05/07 21:29:30 | 000,000,200 | ---- | C] () -- C:\WINDOWS\WinInit.ini.backup
[2010/04/22 19:37:02 | 000,155,474 | R--- | C] () -- C:\Documents and Settings\All Users\Datos de programa\DeviceManager.xml.rc4

< End of report >

#11 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:01 AM

Posted 04 March 2012 - 04:36 PM

Hello

Run this custom script and when it is complete I need to know how the computer is doing

Run OTL Script

  • Double-click OTL.exe to start the program.
  • Copy and Paste the following code into the Posted Image textbox. Do not include the word Code
    :otl
    IE - HKU\S-1-5-21-1285729334-1018322273-3473077295-1006\..\URLSearchHook: {0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} - No CLSID value found
    FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found
    O16 - DPF: {8FFBE65D-2C9C-4669-84BD-5829DC0B603C} http://fpdownload.macromedia.com/get/flashplayer/current/polarbear/ultrashim.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA} http://java.sun.com/update/1.5.0/jinstall-1_5_0_06-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_05-windows-i586.cab (Reg Error: Key error.)
    O16 - DPF: {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_07-windows-i586.cab (Reg Error: Key error.)
    PRC - C:\Archivos de programa\AskBarDis\bar\bin\ASKUpgrade.exe ()
    PRC - C:\Archivos de programa\AskBarDis\bar\bin\AskService.exe ()
    MOD - C:\Archivos de programa\AskBarDis\bar\bin\ASKUpgrade.exe ()
    MOD - C:\Archivos de programa\AskBarDis\bar\bin\AskService.exe ()
    SRV - (ASKUpgrade) -- C:\Archivos de programa\AskBarDis\bar\bin\ASKUpgrade.exe ()
    SRV - (ASKService) -- C:\Archivos de programa\AskBarDis\bar\bin\AskService.exe ()
    [2012/02/25 11:50:03 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Antonio\Configuración local\Datos de programa\e927f25b
    [2012/03/04 10:34:09 | 000,000,000 | -HS- | M] () -- C:\WINDOWS\muzuki.exc
    [2012/03/04 09:59:03 | 000,000,000 | -HS- | M] () -- C:\WINDOWS\System32\dds_log_trash.cmd
      
    :files
    C:\windows\tasks\At*.job
    ipconfig /flushdns /c
    :Commands
    [PURITY]
    [EMPTYTEMP]
    [emptyjava]
    [EMPTYFLASH]
    [RESETHOSTS]
    
  • Then click the Run Fix button at the top.
  • Click Posted Image.
  • OTL may ask to reboot the machine. Please do so if asked.
  • The report should appear in Notepad after the reboot.Copy and Paste that report in your next reply.

Let me know How things are doing

Gringo
I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#12 dinkelchen

dinkelchen
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 04 March 2012 - 05:02 PM

Ok. Done it all. For the time being it seems faster than before. Here is the report.

All processes killed
========== OTL ==========
Registry value HKEY_USERS\S-1-5-21-1285729334-1018322273-3473077295-1006\Software\Microsoft\Internet Explorer\URLSearchHooks\\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0EBBBE48-BAD4-4B4C-8E5A-516ABECAE064}\ not found.
Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@Apple.com/iTunes,version=\ deleted successfully.
Starting removal of ActiveX control {8FFBE65D-2C9C-4669-84BD-5829DC0B603C}
C:\WINDOWS\Downloaded Program Files\erma.inf moved successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8FFBE65D-2C9C-4669-84BD-5829DC0B603C}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0015-0000-0006-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0005-ABCDEFFEDCBA}\ not found.
Starting removal of ActiveX control {CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{CAFEEFAC-0016-0000-0007-ABCDEFFEDCBA}\ not found.
No active process named ASKUpgrade.exe was found!
No active process named AskService.exe was found!
Service ASKUpgrade stopped successfully!
Service ASKUpgrade deleted successfully!
C:\Archivos de programa\AskBarDis\bar\bin\ASKUpgrade.exe moved successfully.
Service ASKService stopped successfully!
Service ASKService deleted successfully!
C:\Archivos de programa\AskBarDis\bar\bin\AskService.exe moved successfully.
C:\Documents and Settings\Antonio\Configuración local\Datos de programa\e927f25b\U folder moved successfully.
C:\Documents and Settings\Antonio\Configuración local\Datos de programa\e927f25b folder moved successfully.
C:\WINDOWS\muzuki.exc moved successfully.
C:\WINDOWS\system32\dds_log_trash.cmd moved successfully.
========== FILES ==========
C:\windows\tasks\At1.job moved successfully.
C:\windows\tasks\At2.job moved successfully.
C:\windows\tasks\At3.job moved successfully.
C:\windows\tasks\At4.job moved successfully.
< ipconfig /flushdns /c >
Configuración IP de Windows
Se vació con éxito la caché de resolución de DNS.
C:\Documents and Settings\Antonio\Escritorio\cmd.bat deleted successfully.
C:\Documents and Settings\Antonio\Escritorio\cmd.txt deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrador
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Alicia
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->FireFox cache emptied: 281885675 bytes
->Flash cache emptied: 19222 bytes

User: All Users

User: Antonio
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 30330627 bytes
->Java cache emptied: 13782878 bytes
->FireFox cache emptied: 68247181 bytes
->Flash cache emptied: 38333 bytes

User: Antonio_2
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes
->FireFox cache emptied: 95700267 bytes
->Flash cache emptied: 2080 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Flash cache emptied: 41 bytes

User: Katrin
->Temp folder emptied: 113882139 bytes
->Temporary Internet Files folder emptied: 12644621 bytes
->Java cache emptied: 61210624 bytes
->FireFox cache emptied: 54795554 bytes
->Flash cache emptied: 644 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33248 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 2909 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 26132 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 699,00 mb


[EMPTYJAVA]

User: Administrador

User: Alicia

User: All Users

User: Antonio
->Java cache emptied: 0 bytes

User: Antonio_2

User: Default User

User: Katrin
->Java cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Java Files Cleaned = 0,00 mb


[EMPTYFLASH]

User: Administrador

User: Alicia
->Flash cache emptied: 0 bytes

User: All Users

User: Antonio
->Flash cache emptied: 0 bytes

User: Antonio_2
->Flash cache emptied: 0 bytes

User: Default User
->Flash cache emptied: 0 bytes

User: Katrin
->Flash cache emptied: 0 bytes

User: LocalService

User: NetworkService

Total Flash Files Cleaned = 0,00 mb

C:\WINDOWS\System32\drivers\etc\Hosts moved successfully.
HOSTS file reset successfully

OTL by OldTimer - Version 3.2.35.1 log created on 03042012_225527

Files\Folders moved on Reboot...

Registry entries deleted on Reboot...

#13 gringo_pr

gringo_pr

    Bleepin Gringo


  • Malware Response Team
  • 136,772 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Puerto rico
  • Local time:08:01 AM

Posted 04 March 2012 - 08:51 PM

Hello

:P2P Warning!:

IMPORTANT I notice there are signs of one or more P2P (Person to Person) File Sharing Programs on your computer.

Please note that as long as you are using any form of Peer-to-Peer networking and downloading files from non-documented sources, you can expect infestations of malware to occur
Once upon a time, P2P file sharing was fairly safe. That is no longer true. P2P programs form a direct conduit on to your computer, their security measures are easily circumvented and malware writers are increasingly exploiting them to spread their wares on to your computer. Further to that, if your P2P program is not configured correctly, your computer may be sharing more files than you realise. There have been cases where people's passwords, address books and other personal, private, and financial details have been exposed to a file sharing network by a badly configured program.

Please read these short reports on the dangers of peer-2-peer programs and file sharing.

FBI Cyber Education Letter
File sharing infects 500,000 computers
USAToday
infoworld


These logs are looking allot better. But we still have some work to do.

Please print out these instructions, or copy them to a Notepad file. It will make it easier for you to follow the instructions and complete all of the necessary steps..

uninstall some programs

NOTE** Because of the cleanup process some of the programs I have listed may not be in add/remove anymore this is fine just move to the next item on the list.

You can remove these programs using add/remove or you can use the free uninstaller from Revo (Revo does allot better of a job)

Programs to remove

Adobe Reader 8.1.3 - Español
Azureus
Barra de Bing
Bing Bar Platform
Browser Address Error Redirector
J2SE Runtime Environment 5.0 Update 6
Java™ 6 Update 22
Java™ 6 Update 5
Java™ 6 Update 7
Vuze
Vuze Toolbar
[/list]


  • Please download and install Revo Uninstaller Free
  • Double click Revo Uninstaller to run it.
  • From the list of programs double click on The Program to remove
  • When prompted if you want to uninstall click Yes.
  • Be sure the Moderate option is selected then click Next.
  • The program will run, If prompted again click Yes
  • when the built-in uninstaller is finished click on Next.
  • Once the program has searched for leftovers click Next.
  • Check/tick the bolded items only on the list then click Delete
  • when prompted click on Yes and then on next.
  • put a check on any folders that are found and select delete
  • when prompted select yes then on next
  • Once done click Finish.
.

Update Adobe Reader

Recently there have been vulnerabilities detected in older versions of Adobe Reader. It is strongly suggested that you update to the current version.

You can download it from http://www.adobe.com/products/acrobat/readstep2.html
After installing the latest Adobe Reader, uninstall all previous versions.
If you already have Adobe Photoshop® Album Starter Edition installed or do not wish to have it installed UNcheck the box which says Also Download Adobe Photoshop® Album Starter Edition.

If you don't like Adobe Reader (53 MB), you can download Foxit PDF Reader(7 MB) from here. It's a much smaller file to download and uses a lot less resources than Adobe Reader.

Note: When installing FoxitReader, be careful not to install anything to do with AskBar.
[/list]

Install Java:

Please go here to install Java

  • click on the Free Java Download Button
  • click on Agree and start Free download
  • click on Run
  • click on run again
  • click on install
  • when install is complete click on close

TFC(Temp File Cleaner):

  • Please download TFC to your desktop,
  • Save any unsaved work. TFC will close all open application windows.
  • Double-click TFC.exe to run the program.
  • If prompted, click "Yes" to reboot.
Note: Save your work. TFC will automatically close any open programs, let it run uninterrupted. It shouldn't take longer take a couple of minutes, and may only take a few seconds. Only if needed will you be prompted to reboot.

: Malwarebytes' Anti-Malware :

  • I would like you to rerun MBAM
  • Double-click mbam icon
  • go to the update tab at the top
  • click on check for updates
  • If an update is found, it will download and install the latest version.
  • Once the program has loaded, select Perform quick scan, then click Scan.
  • When the scan is complete, click OK, then Show Results to view the results.
  • Be sure that everything is Checked (ticked) except items in the C:\System Volume Information folder and click on Remove Selected.
  • When completed, a log will open in Notepad. please copy and paste the log into your next reply
  • If you accidentally close it, the log file is saved here and will be named like this:
  • C:\Documents and Settings\Username\Application Data\Malwarebytes\Malwarebytes' Anti-Malware\Logs\mbam-log-date (time).txt

Note: If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts.
Click OK to either and let MBAM proceed with the disinfection process.
If asked to restart the computer, please do so immediately. Failure to reboot will prevent MBAM from removing all the malware.


Download HijackThis

If you have any problems running Hijackthis see NOTE** below (Host file not read, blank notepad ...)

  • Go Here to download HijackThis Installer
  • Save HijackThis Installer to your desktop.
  • Double-click on the HijackThis Installer icon on your desktop. (Vista and Win 7 right click and run as admin)
  • By default it will install to C:\Program Files\Trend Micro\HijackThis .
  • Click on Install.
  • It will create a HijackThis icon on the desktop.
  • Once installed it will launch Hijackthis.
  • Click on the Do a system scan and save a log file button. It will scan and the log should open in notepad.
  • Click on Edit > Select All then click on Edit > Copy to copy the entire contents of the log.
  • Come back here to this thread and Paste the log in your next reply.
  • DO NOT use the Analyze This button its findings are dangerous if misinterpreted.
  • DO NOT have Hijackthis fix anything yet. Most of what it finds will be harmless or even required.

NOTE**
sometimes we have to run it like this To run HijackThis as an administrator, right-click HijackThis.exe
(located: C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe)<--32bit
(located: C:\Program Files(86)\Trend Micro\HiJackThis\HiJackThis.exe)<--64bit
and select to run as administrator

"information and logs"

  • In your next post I need the following

  • Log From MBAM
  • report from Hijackthis
  • let me know of any problems you may have had
  • How is the computer doing now?

Gringo

I Close My Topics If You Have Not Replied In 5 Days If You Will Be Longer Please Let Me Know

If I Have Not Replied To One Of My Topics In 48 Hrs Please Bump The Topic



My help is free, however, if you wish to make a small donation to show your appreciation or to help me continue the fight against Malware, then click here -->btn_donate_SM.gif<-- Don't worry every little bit helps.

Proud Graduate Of Malware Removal University

#14 dinkelchen

dinkelchen
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 04 March 2012 - 11:04 PM

Malwarebytes Anti-Malware 1.60.1.1000
www.malwarebytes.org

Versión de la Base de Datos: v2012.03.05.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
Antonio :: DELL_KATRIN [administrador]

05/03/2012 4:50:28
mbam-log-2012-03-05 (04-50-28).txt

Tipos de Análisis: Análisis Rápido
Opciones de análisis activado: Memoria | Inicio | Registro | Sistema de archivos | Heurística/Extra | Heurística/Shuriken | PUP | PUM
Opciones de análisis desactivados: P2P
Objetos examinados: 279056
Tiempo transcurrido: 11 minuto(s), 45 segundo(s)

Procesos en Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Módulos de Memoria Detectados: 0
(No se han detectado elementos maliciosos)

Claves del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Valores del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Elementos de Datos del Registro Detectados: 0
(No se han detectado elementos maliciosos)

Carpetas Detectadas: 0
(No se han detectado elementos maliciosos)

Archivos Detectados: 0
(No se han detectado elementos maliciosos)

fin)

#15 dinkelchen

dinkelchen
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:01:01 PM

Posted 04 March 2012 - 11:10 PM

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 5:10:04, on 05/03/2012
Platform: Windows XP SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Archivos de programa\Intel\Wireless\Bin\S24EvMon.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Archivos de programa\Archivos comunes\ArcSoft\Connection Service\Bin\ACService.exe
C:\Archivos de programa\Archivos comunes\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Archivos de programa\Bonjour\mDNSResponder.exe
C:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
C:\Archivos de programa\Intel\Wireless\Bin\EvtEng.exe
C:\WINDOWS\system32\svchost.exe
C:\ARCHIV~1\Iomega\System32\AppServices.exe
C:\Archivos de programa\Java\jre6\bin\jqs.exe
C:\Archivos de programa\Livedrive\VSSService.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\System32\svchost.exe
C:\Archivos de programa\Intel\Wireless\Bin\RegSrvc.exe
C:\Archivos de programa\GFI Software\VIPRE\SBAMSvc.exe
C:\Archivos de programa\GFI Software\VIPRE\SBPIMSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Archivos de programa\o2\Mobile Connection Manager\ImpWiFiSvc.exe
C:\Archivos de programa\TomTom HOME 2\TomTomHOMEService.exe
C:\Archivos de programa\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
C:\Archivos de programa\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
C:\Archivos de programa\Intel\Wireless\Bin\WLKeeper.exe
C:\Archivos de programa\Iomega\AutoDisk\ADService.exe
C:\Archivos de programa\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\Explorer.EXE
C:\Archivos de programa\Synaptics\SynTP\SynTPEnh.exe
C:\WINDOWS\system32\rundll32.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Archivos de programa\Intel\Wireless\bin\ZCfgSvc.exe
C:\WINDOWS\system32\KADxMain.exe
C:\Archivos de programa\Creative\Mixer\CTSVolFE.exe
C:\Archivos de programa\GFI Software\VIPRE\SBAMTray.exe
C:\Archivos de programa\Intel\Wireless\Bin\ifrmewrk.exe
C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe
C:\Archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
C:\Archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe
C:\Documents and Settings\Antonio\Datos de programa\Dropbox\bin\Dropbox.exe
C:\Archivos de programa\Intel\Wireless\Bin\Dot1XCfg.exe
C:\Archivos de programa\Mozilla Firefox\firefox.exe
C:\Archivos de programa\Mozilla Firefox\plugin-container.exe
C:\Archivos de programa\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\msiexec.exe
C:\Archivos de programa\Trend Micro\HijackThis\HiJackThis.exe
C:\Archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\HPNetworkCommunicator.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Search,Default_Page_URL = www.google.es/ig/dell?hl=es&client=dell-row&channel=es&ibd=2080411
R1 - HKCU\Software\Microsoft\Internet Connection Wizard,ShellNext = http://go.microsoft.com/fwlink/?LinkId=74005
R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Vínculos
O1 - Hosts: ÿþ127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Archivos de programa\Archivos comunes\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java™ Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Archivos de programa\Java\jre6\bin\ssv.dll
O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Archivos de programa\Google\Google Toolbar\GoogleToolbar_32.dll
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Archivos de programa\Google\GoogleToolbarNotifier\5.7.7227.1100\swg.dll
O2 - BHO: Java™ Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Archivos de programa\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Archivos de programa\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O2 - BHO: BrowserHelper Class - {EDF48A39-1442-463F-9F4E-F376A78D034A} - C:\Archivos de programa\Livedrive\LivedriveExplorerExtensions.dll
O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Archivos de programa\Google\Google Toolbar\GoogleToolbar_32.dll
O4 - HKLM\..\Run: [SynTPEnh] C:\Archivos de programa\Synaptics\SynTP\SynTPEnh.exe
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NVHotkey] rundll32.exe nvHotkey.dll,Start
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [IntelZeroConfig] "C:\Archivos de programa\Intel\Wireless\bin\ZCfgSvc.exe"
O4 - HKLM\..\Run: [KADxMain] C:\WINDOWS\system32\KADxMain.exe
O4 - HKLM\..\Run: [CTSVolFE.exe] "C:\Archivos de programa\Creative\Mixer\CTSVolFE.exe" /r
O4 - HKLM\..\Run: [APSDaemon] "C:\Archivos de programa\Archivos comunes\Apple\Apple Application Support\APSDaemon.exe"
O4 - HKLM\..\Run: [SBAMTray] "C:\Archivos de programa\GFI Software\VIPRE\SBAMTray.exe"
O4 - HKLM\..\Run: [SBRegRebootCleaner] "C:\Archivos de programa\GFI Software\VIPRE\SBRC.exe"
O4 - HKLM\..\Run: [IntelWireless] "C:\Archivos de programa\Intel\Wireless\Bin\ifrmewrk.exe" /tf Intel PROSet/Wireless
O4 - HKLM\..\Run: [Adobe ARM] "C:\Archivos de programa\Archivos comunes\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Archivos de programa\Archivos comunes\Java\Java Update\jusched.exe"
O4 - HKCU\..\Run: [swg] "C:\Archivos de programa\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe"
O4 - HKCU\..\Run: [HP Deskjet 3050A J611 series (NET)] "C:\Archivos de programa\HP\HP Deskjet 3050A J611 series\Bin\ScanToPCActivationApp.exe" -deviceID "CN18T4128P05PJ:NW" -scfn "HP Deskjet 3050A J611 series (NET)" -AutoStart 1
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Dropbox.lnk = C:\Documents and Settings\Antonio\Datos de programa\Dropbox\bin\Dropbox.exe
O8 - Extra context menu item: Add to Google Photos Screensa&ver - res://C:\WINDOWS\system32\GPhotos.scr/200
O8 - Extra context menu item: E&xportar a Microsoft Excel - res://C:\ARCHIV~1\MICROS~2\Office12\EXCEL.EXE/3000
O8 - Extra context menu item: Enviar a &Bluetooth - C:\Archivos de programa\WIDCOMM\Bluetooth Software\btsendto_ie_ctx.htm
O9 - Extra button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Referencia - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\ARCHIV~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Archivos de programa\Messenger\msmsgs.exe
O16 - DPF: {0CCA191D-13A6-4E29-B746-314DEE697D83} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2008.10.10_v5.5.8/FacebookPhotoUploader5.cab
O16 - DPF: {6D2EF4B4-CB62-4C0B-85F3-B79C236D702C} (ContactExtractor Class) - http://www.facebook.com/controls/contactx.dll
O16 - DPF: {8100D56A-5661-482C-BEE8-AFECE305D968} (Facebook Photo Uploader 5 Control) - http://upload.facebook.com/controls/2009.07.28_v5.5.8.1/FacebookPhotoUploader55.cab
O16 - DPF: {A996E48C-D3DC-4244-89F7-AFA33EC60679} (Settings Class) - https://www.cert.fnmt.es/content/pages_std/ficheros_apps_usuarios/capicom.cab
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - https://fpdownload.macromedia.com/get/shockwave/cabs/flash/swflash.cab
O16 - DPF: {EDFCB7CB-942C-4822-AF14-F0B687409848} (Image Uploader Control) - http://www.mypix.com/es/es/importer/ImageUploader4.cab
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Archivos de programa\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O20 - Winlogon Notify: !SASWinLogon - C:\Archivos de programa\SUPERAntiSpyware\SASWINLO.DLL
O20 - Winlogon Notify: GoToAssist - C:\Archivos de programa\Citrix\GoToAssist\615\G2AWinLogon.dll
O22 - SharedTaskScheduler: Precargador Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demonio de caché de las categorías de componente - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ArcSoft Connect Daemon (ACDaemon) - ArcSoft - C:\Archivos de programa\Archivos comunes\ArcSoft\Connection Service\Bin\ACService.exe
O23 - Service: Apple Mobile Device - Apple Inc. - C:\Archivos de programa\Archivos comunes\Apple\Mobile Device Support\AppleMobileDeviceService.exe
O23 - Service: Servicio Bonjour (Bonjour Service) - Apple Inc. - C:\Archivos de programa\Bonjour\mDNSResponder.exe
O23 - Service: Bluetooth Service (btwdins) - Broadcom Corporation. - C:\Archivos de programa\WIDCOMM\Bluetooth Software\bin\btwdins.exe
O23 - Service: Servicio del administrador de discos lógicos (dmadmin) - Unknown owner - C:\WINDOWS\System32\dmadmin.exe
O23 - Service: Registro de sucesos (Eventlog) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Intel® PROSet/Wireless Event Log (EvtEng) - Intel Corporation - C:\Archivos de programa\Intel\Wireless\Bin\EvtEng.exe
O23 - Service: Fax - Unknown owner - C:\WINDOWS\system32\fxssvc.exe
O23 - Service: GoToAssist - Citrix Online, a division of Citrix Systems, Inc. - C:\Archivos de programa\Citrix\GoToAssist\615\g2aservice.exe
O23 - Service: Google Update Service (gupdate1c9e8e03fb09428) (gupdate1c9e8e03fb09428) - Unknown owner - C:\Archivos de programa\Google\Update\GoogleUpdate.exe
O23 - Service: Servicio de Google Update (gupdatem) (gupdatem) - Unknown owner - C:\Archivos de programa\Google\Update\GoogleUpdate.exe
O23 - Service: Google Software Updater (gusvc) - Google - C:\Archivos de programa\Google\Common\Google Updater\GoogleUpdaterService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Archivos de programa\Archivos comunes\InstallShield\Driver\1050\Intel 32\IDriverT.exe
O23 - Service: Servicio COM de grabación de CD de IMAPI (ImapiService) - Unknown owner - C:\WINDOWS\system32\imapi.exe
O23 - Service: Iomega App Services - Iomega Corporation - C:\ARCHIV~1\Iomega\System32\AppServices.exe
O23 - Service: Servicio del iPod (iPod Service) - Apple Inc. - C:\Archivos de programa\iPod\bin\iPodService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Archivos de programa\Java\jre6\bin\jqs.exe
O23 - Service: Livedrive VSS Service (LivedriveVSSService) - Unknown owner - C:\Archivos de programa\Livedrive\VSSService.exe
O23 - Service: Escritorio remoto compartido de NetMeeting (mnmsrvc) - Unknown owner - C:\WINDOWS\system32\mnmsrvc.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Plug and Play (PlugPlay) - Unknown owner - C:\WINDOWS\system32\services.exe
O23 - Service: Administrador de sesión de Ayuda de escritorio remoto (RDSessMgr) - Unknown owner - C:\WINDOWS\system32\sessmgr.exe
O23 - Service: Intel® PROSet/Wireless Registry Service (RegSrvc) - Intel Corporation - C:\Archivos de programa\Intel\Wireless\Bin\RegSrvc.exe
O23 - Service: LiveShare P2P Server 9 (RoxLiveShare9) - Unknown owner - C:\Archivos de programa\Archivos comunes\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe (file missing)
O23 - Service: Intel® PROSet/Wireless Service (S24EventMonitor) - Intel Corporation - C:\Archivos de programa\Intel\Wireless\Bin\S24EvMon.exe
O23 - Service: VIPRE Internet Security (SBAMSvc) - GFI Software - C:\Archivos de programa\GFI Software\VIPRE\SBAMSvc.exe
O23 - Service: SB Recovery Service (SBPIMSvc) - GFI Software - C:\Archivos de programa\GFI Software\VIPRE\SBPIMSvc.exe
O23 - Service: Tarjeta inteligente (SCardSvr) - Unknown owner - C:\WINDOWS\System32\SCardSvr.exe
O23 - Service: Registros y alertas de rendimiento (SysmonLog) - Unknown owner - C:\WINDOWS\system32\smlogsvc.exe
O23 - Service: TGCM_ImportWiFiSvc - Unknown owner - C:\Archivos de programa\o2\Mobile Connection Manager\ImpWiFiSvc.exe
O23 - Service: Telnet (TlntSvr) - Unknown owner - C:\WINDOWS\system32\tlntsvr.exe
O23 - Service: TomTomHOMEService - TomTom - C:\Archivos de programa\TomTom HOME 2\TomTomHOMEService.exe
O23 - Service: TuneUp WinStyler Theme Service (TUWinStylerThemeSvc) - TuneUp Software GmbH - C:\Archivos de programa\TuneUp Utilities 2004\WinStylerThemeSvc.exe
O23 - Service: Servicio de Vodafone Mobile Broadband (VmbService) - Vodafone - C:\Archivos de programa\Vodafone\Vodafone Mobile Broadband\Bin\VmbService.exe
O23 - Service: Instantáneas de volumen (VSS) - Unknown owner - C:\WINDOWS\System32\vssvc.exe
O23 - Service: WD SmartWare Drive Manager (WDDMService) - WDC - C:\Archivos de programa\Western Digital\WD SmartWare\WD Drive Manager\WDDMService.exe
O23 - Service: WD SmartWare Background Service (WDSmartWareBackgroundService) - Memeo - C:\Archivos de programa\Western Digital\WD SmartWare\Front Parlor\WDSmartWareBackgroundService.exe
O23 - Service: Intel® PROSet/Wireless SSO Service (WLANKEEPER) - Intel® Corporation - C:\Archivos de programa\Intel\Wireless\Bin\WLKeeper.exe
O23 - Service: Adaptador de rendimiento de WMI (WmiApSrv) - Unknown owner - C:\WINDOWS\system32\wbem\wmiapsrv.exe
O23 - Service: Servicio de uso compartido de red del Reproductor de Windows Media (WMPNetworkSvc) - Unknown owner - C:\Archivos de programa\Windows Media Player\WMPNetwk.exe
O23 - Service: Iomega Active Disk (_IOMEGA_ACTIVE_DISK_SERVICE_) - Iomega Corporation - C:\Archivos de programa\Iomega\AutoDisk\ADService.exe

--
End of file - 15407 bytes




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users