Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Getting re-directed to same sites while browsing in firefox


  • This topic is locked This topic is locked
11 replies to this topic

#1 TLoV

TLoV

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:46 PM

Posted 20 March 2012 - 01:40 PM

Hi,

Lately I've been getting re-directed to sites like addedsuccess.com and infomssh.com. I'm currently using Windows 7 64bit as my OS.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:46 PM

Posted 20 March 2012 - 01:47 PM

Hello,let's gey some info and logs and see if it runs better after this.
Are you on a router? Are other machines on it,if so are they redirecting?

Do you use Firefox?


Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.




Please download and scan with SUPERAntiSpyware Free
  • Double-click SUPERAntiSypware.exe and use the default settings for installation.
    For instructions with screenshots, please refer to the How to use SUPERAntiSpyware to scan and remove malware from your computer Guide.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If it will not start, go to Start > All Prgrams > SUPERAntiSpyware and click on Alternate Start.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the "General and Startup" tab, and under Start-up Options, make sure "Start SUPERAntiSpyware when Windows starts" box is unchecked.
  • Click the "Scanning Control" tab, and under Scanner Options, make sure the following are checked (leave all other options as they are set):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the Control Center screen.
  • Back on the main screen, under "Select Scan Type" check the box for Complete Scan.
  • If your computer is badly infected, be sure to check the box next to Enable Rescue Scan (Highly Infected Systems ONLY).
  • Click the Scan your computer... button.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes" and reboot normally.

To retrieve the scan log after reboot, launch SUPERAntiSpyware again.
  • Click the View Scan Logs button at the bottom.
  • This will open the Scanner Logs Window.
  • Click on the log to highlight it and then click on View Selected Log to open it.
  • Copy and paste the scan log results in your next reply.
-- Some types of malware will disable security tools. If SUPERAntiSpyware will not install, please refer to these instructions for using the SUPERAntiSpyware Installer. If SUPERAntiSpyware is already installed but will not run, then follow the instructions for using RUNSAS.EXE to launch the program.




Next run MBAM (MalwareBytes):

Please download Malwarebytes Anti-Malware Posted Image and save it to your desktop.
  • Important!! When you save the mbam-setup file, rename it to something random (such as 123abc.exe) before beginning the download.
Malwarebytes may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot's Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

  • Make sure you are connected to the Internet and double-click on the renamed file to install the application.
  • When the installation begins, follow the prompts and do not make any changes to default settings.
  • Malwarebytes will automatically start and you will be asked to update the program before performing a scan.
  • If an update is found, the program will automatically update itself. Press the OK button and continue.
  • If you cannot update Malwarebytes or use the Internet to download any files to the infected computer, manually update the database by following the instructions in FAQ Section A: 4. Issues.
  • Under the Scanner tab, make sure the "Perform Quick Scan" option is selected.
  • Click on the Scan button.
  • When finished, a message box will say "The scan completed successfully. Click 'Show Results' to display all objects found".
  • Click OK to close the message box, then click the Show Results button to see a list of any malware that was found.
  • Make sure that everything is checked and then click Remove Selected.
  • When removal is completed, a log report will open in Notepad.
  • The log is automatically saved and can be viewed by clicking the Logs tab.
  • Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows the database version and your operating system.
  • Exit Malwarebytes when done.
Note: If Malwarebytes encounters a file that is difficult to remove, you will be asked to reboot your computer so it can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally will prevent Malwarebytes from removing all the malware.

-- Some types of malware will target Malwarebytes and other security tools to keep them from running properly. If that's the case, go to Start > All Programs > Malwarebytes Anti-Malware folder > Tools > click on [color=blue]Malwarebytes Chameleon
and follow the onscreen instructions. The Chameleon folder can be accessed by opening the program folder for Malwarebytes Anti-Malware (normally C:\Program Files\Malwarebytes' Anti-Malware or C:\Program Files (x86)\Malwarebytes' Anti-Malware).
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 TLoV

TLoV
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:46 PM

Posted 20 March 2012 - 06:54 PM

Hello, here's my results for MTB, Tssskiller, SASW and MWB


Mini Tool Box results:

MiniToolBox by Farbar Version: 18-01-2012
Ran by David (administrator) on 20-03-2012 at 11:55:46
Microsoft Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost


Here's Tsskiller:

12:02:11.0424 4028 TDSS rootkit removing tool 2.7.20.0 Mar 9 2012 17:10:43
12:02:12.0038 4028 ============================================================
12:02:12.0038 4028 Current date / time: 2012/03/20 12:02:12.0038
12:02:12.0038 4028 SystemInfo:
12:02:12.0038 4028
12:02:12.0038 4028 OS Version: 6.1.7601 ServicePack: 1.0
12:02:12.0038 4028 Product type: Workstation
12:02:12.0038 4028 ComputerName: THEBEAST
12:02:12.0038 4028 UserName: David
12:02:12.0039 4028 Windows directory: C:\Windows
12:02:12.0039 4028 System windows directory: C:\Windows
12:02:12.0039 4028 Running under WOW64
12:02:12.0039 4028 Processor architecture: Intel x64
12:02:12.0039 4028 Number of processors: 4
12:02:12.0039 4028 Page size: 0x1000
12:02:12.0039 4028 Boot type: Normal boot
12:02:12.0039 4028 ============================================================
12:02:13.0174 4028 Drive \Device\Harddisk0\DR0 - Size: 0x74707FDE00 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED80, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
12:02:13.0178 4028 Drive \Device\Harddisk1\DR1 - Size: 0xE8E09ADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1F8B0, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000040
12:02:13.0201 4028 Drive \Device\Harddisk2\DR2 - Size: 0x15D50F65E00 (1397.27 Gb), SectorSize: 0x200, Cylinders: 0x2C881, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
12:02:13.0227 4028 \Device\Harddisk0\DR0:
12:02:13.0227 4028 MBR used
12:02:13.0227 4028 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x3A382800
12:02:13.0227 4028 \Device\Harddisk1\DR1:
12:02:13.0227 4028 MBR used
12:02:13.0227 4028 \Device\Harddisk1\DR1\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
12:02:13.0227 4028 \Device\Harddisk1\DR1\Partition1: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x746D2570
12:02:13.0227 4028 \Device\Harddisk2\DR2:
12:02:13.0235 4028 MBR used
12:02:13.0235 4028 \Device\Harddisk2\DR2\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0xAEA86741
12:02:13.0359 4028 Initialize success
12:02:13.0359 4028 ============================================================
12:02:19.0679 1168 ============================================================
12:02:19.0679 1168 Scan started
12:02:19.0679 1168 Mode: Manual;
12:02:19.0679 1168 ============================================================
12:02:21.0552 1168 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
12:02:21.0558 1168 1394ohci - ok
12:02:21.0594 1168 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
12:02:21.0603 1168 ACPI - ok
12:02:21.0627 1168 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
12:02:21.0641 1168 AcpiPmi - ok
12:02:21.0672 1168 adfs (2f0683fd2df1d92e891caca14b45a8c1) C:\Windows\system32\drivers\adfs.sys
12:02:21.0678 1168 adfs - ok
12:02:21.0729 1168 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
12:02:21.0744 1168 adp94xx - ok
12:02:21.0773 1168 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
12:02:21.0785 1168 adpahci - ok
12:02:21.0809 1168 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
12:02:21.0818 1168 adpu320 - ok
12:02:21.0904 1168 AFD (1c7857b62de5994a75b054a9fd4c3825) C:\Windows\system32\drivers\afd.sys
12:02:21.0909 1168 AFD - ok
12:02:21.0933 1168 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
12:02:21.0940 1168 agp440 - ok
12:02:21.0959 1168 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
12:02:21.0964 1168 aliide - ok
12:02:22.0063 1168 ALSysIO - ok
12:02:22.0126 1168 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
12:02:22.0135 1168 amdide - ok
12:02:22.0154 1168 amdiox64 (6a2eeb0c4133b20773bb3dd0b7b377b4) C:\Windows\system32\DRIVERS\amdiox64.sys
12:02:22.0161 1168 amdiox64 - ok
12:02:22.0182 1168 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
12:02:22.0190 1168 AmdK8 - ok
12:02:22.0385 1168 amdkmdag (9e3b4946f7e1bca0b763e19d81edbf2c) C:\Windows\system32\DRIVERS\atikmdag.sys
12:02:22.0502 1168 amdkmdag - ok
12:02:22.0560 1168 amdkmdap (b9e1c7b7f1865f99b16ff2e1bb94edb6) C:\Windows\system32\DRIVERS\atikmpag.sys
12:02:22.0569 1168 amdkmdap - ok
12:02:22.0589 1168 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
12:02:22.0590 1168 AmdPPM - ok
12:02:22.0631 1168 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
12:02:22.0637 1168 amdsata - ok
12:02:22.0657 1168 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
12:02:22.0665 1168 amdsbs - ok
12:02:22.0684 1168 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
12:02:22.0689 1168 amdxata - ok
12:02:22.0777 1168 AODDriver4.01 (f312fad7dbd49ed21a194ac71b497832) c:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
12:02:22.0782 1168 AODDriver4.01 - ok
12:02:22.0814 1168 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
12:02:22.0819 1168 AppID - ok
12:02:22.0849 1168 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
12:02:22.0856 1168 arc - ok
12:02:22.0877 1168 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
12:02:22.0884 1168 arcsas - ok
12:02:22.0949 1168 aswFsBlk (b9da213b5271db5fce962d827e6d620d) C:\Windows\system32\drivers\aswFsBlk.sys
12:02:22.0953 1168 aswFsBlk - ok
12:02:22.0970 1168 aswMonFlt (21c9835d0e5ad2ff0f16134bcb32cc71) C:\Windows\system32\drivers\aswMonFlt.sys
12:02:22.0976 1168 aswMonFlt - ok
12:02:22.0998 1168 aswRdr (1b96a5867abd4fa6135d8298fcccf9c6) C:\Windows\System32\Drivers\aswrdr2.sys
12:02:23.0021 1168 aswRdr - ok
12:02:23.0057 1168 aswSnx (6e98bb288696777a3a8a07a52b0eaee9) C:\Windows\system32\drivers\aswSnx.sys
12:02:23.0076 1168 aswSnx - ok
12:02:23.0101 1168 aswSP (d9fb49f16e4eb02efecae8cbfe4bcb4c) C:\Windows\system32\drivers\aswSP.sys
12:02:23.0128 1168 aswSP - ok
12:02:23.0156 1168 aswTdi (7352bb9a564b94bbd7c9cbf165f55006) C:\Windows\system32\drivers\aswTdi.sys
12:02:23.0161 1168 aswTdi - ok
12:02:23.0190 1168 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
12:02:23.0191 1168 AsyncMac - ok
12:02:23.0207 1168 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
12:02:23.0207 1168 atapi - ok
12:02:23.0261 1168 AtiHDAudioService (dbb487d09f56c674430ac454fd8bcab9) C:\Windows\system32\drivers\AtihdW76.sys
12:02:23.0272 1168 AtiHDAudioService - ok
12:02:23.0296 1168 AtiHdmiService (2d648572ba9a610952fcafba1e119c2d) C:\Windows\system32\drivers\AtiHdmi.sys
12:02:23.0304 1168 AtiHdmiService - ok
12:02:23.0371 1168 atillk64 - ok
12:02:23.0422 1168 avgntflt (aa8f79a1bdfc03b3bc70c44ab00589b4) C:\Windows\system32\DRIVERS\avgntflt.sys
12:02:23.0423 1168 avgntflt - ok
12:02:23.0458 1168 avipbb (852e3c0a60d368c487949e55ad52a47f) C:\Windows\system32\DRIVERS\avipbb.sys
12:02:23.0460 1168 avipbb - ok
12:02:23.0486 1168 avkmgr (248db59fc86de44d2779f4c7fb1a567d) C:\Windows\system32\DRIVERS\avkmgr.sys
12:02:23.0487 1168 avkmgr - ok
12:02:23.0547 1168 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
12:02:23.0561 1168 b06bdrv - ok
12:02:23.0596 1168 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
12:02:23.0607 1168 b57nd60a - ok
12:02:23.0638 1168 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
12:02:23.0640 1168 Beep - ok
12:02:23.0704 1168 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
12:02:23.0708 1168 blbdrive - ok
12:02:23.0730 1168 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
12:02:23.0736 1168 bowser - ok
12:02:23.0751 1168 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
12:02:23.0754 1168 BrFiltLo - ok
12:02:23.0768 1168 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
12:02:23.0771 1168 BrFiltUp - ok
12:02:23.0809 1168 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
12:02:23.0817 1168 Brserid - ok
12:02:23.0840 1168 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
12:02:23.0844 1168 BrSerWdm - ok
12:02:23.0863 1168 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
12:02:23.0865 1168 BrUsbMdm - ok
12:02:23.0878 1168 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
12:02:23.0881 1168 BrUsbSer - ok
12:02:23.0898 1168 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
12:02:23.0903 1168 BTHMODEM - ok
12:02:23.0933 1168 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
12:02:23.0938 1168 cdfs - ok
12:02:23.0959 1168 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
12:02:23.0966 1168 cdrom - ok
12:02:23.0990 1168 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
12:02:23.0995 1168 circlass - ok
12:02:24.0030 1168 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
12:02:24.0043 1168 CLFS - ok
12:02:24.0073 1168 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
12:02:24.0076 1168 CmBatt - ok
12:02:24.0092 1168 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
12:02:24.0096 1168 cmdide - ok
12:02:24.0128 1168 CNG (c4943b6c962e4b82197542447ad599f4) C:\Windows\system32\Drivers\cng.sys
12:02:24.0142 1168 CNG - ok
12:02:24.0162 1168 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
12:02:24.0168 1168 Compbatt - ok
12:02:24.0190 1168 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
12:02:24.0195 1168 CompositeBus - ok
12:02:24.0226 1168 cpuz135 (262969a3fab32b9e17e63e2d17a57744) C:\Windows\system32\drivers\cpuz135_x64.sys
12:02:24.0238 1168 cpuz135 - ok
12:02:24.0260 1168 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
12:02:24.0265 1168 crcdisk - ok
12:02:24.0331 1168 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
12:02:24.0337 1168 DfsC - ok
12:02:24.0353 1168 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
12:02:24.0354 1168 discache - ok
12:02:24.0370 1168 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
12:02:24.0376 1168 Disk - ok
12:02:24.0406 1168 Dot4 (b42ed0320c6e41102fde0005154849bb) C:\Windows\system32\DRIVERS\Dot4.sys
12:02:24.0412 1168 Dot4 - ok
12:02:24.0434 1168 Dot4Print (e9f5969233c5d89f3c35e3a66a52a361) C:\Windows\system32\DRIVERS\Dot4Prt.sys
12:02:24.0437 1168 Dot4Print - ok
12:02:24.0456 1168 dot4usb (fd05a02b0370bc3000f402e543ca5814) C:\Windows\system32\DRIVERS\dot4usb.sys
12:02:24.0460 1168 dot4usb - ok
12:02:24.0489 1168 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
12:02:24.0491 1168 drmkaud - ok
12:02:24.0550 1168 DrvAgent64 (1ed08a6264c5c92099d6d1dae5e8f530) C:\Windows\SysWOW64\Drivers\DrvAgent64.SYS
12:02:24.0563 1168 DrvAgent64 - ok
12:02:24.0601 1168 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
12:02:24.0618 1168 DXGKrnl - ok
12:02:24.0689 1168 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
12:02:24.0728 1168 ebdrv - ok
12:02:24.0771 1168 EIO64 (343ada10d948db29251f2d9c809af204) C:\Windows\system32\DRIVERS\EIO64.sys
12:02:24.0775 1168 EIO64 - ok
12:02:24.0860 1168 ElbyCDIO (9a47ac3dfcf81d30922cdaaf1c2d579f) C:\Windows\system32\Drivers\ElbyCDIO.sys
12:02:24.0868 1168 ElbyCDIO - ok
12:02:24.0918 1168 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
12:02:24.0933 1168 elxstor - ok
12:02:24.0955 1168 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
12:02:24.0959 1168 ErrDev - ok
12:02:24.0990 1168 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
12:02:24.0998 1168 exfat - ok
12:02:25.0024 1168 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
12:02:25.0031 1168 fastfat - ok
12:02:25.0056 1168 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
12:02:25.0059 1168 fdc - ok
12:02:25.0086 1168 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
12:02:25.0091 1168 FileInfo - ok
12:02:25.0218 1168 FileMonitor (c896f451d567762b0f2feeda327ada01) C:\Program Files (x86)\IObit\IObit Malware Fighter\Drivers\win7_amd64\FileMonitor.sys
12:02:25.0230 1168 FileMonitor - ok
12:02:25.0252 1168 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
12:02:25.0261 1168 Filetrace - ok
12:02:25.0311 1168 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
12:02:25.0318 1168 flpydisk - ok
12:02:25.0342 1168 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
12:02:25.0345 1168 FltMgr - ok
12:02:25.0381 1168 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
12:02:25.0386 1168 FsDepends - ok
12:02:25.0410 1168 fssfltr (6c06701bf1db05405804d7eb610991ce) C:\Windows\system32\DRIVERS\fssfltr.sys
12:02:25.0415 1168 fssfltr - ok
12:02:25.0443 1168 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
12:02:25.0448 1168 Fs_Rec - ok
12:02:25.0471 1168 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
12:02:25.0473 1168 fvevol - ok
12:02:25.0496 1168 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
12:02:25.0502 1168 gagp30kx - ok
12:02:25.0521 1168 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
12:02:25.0525 1168 hcw85cir - ok
12:02:25.0578 1168 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
12:02:25.0604 1168 HdAudAddService - ok
12:02:25.0632 1168 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
12:02:25.0634 1168 HDAudBus - ok
12:02:25.0652 1168 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
12:02:25.0655 1168 HidBatt - ok
12:02:25.0679 1168 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
12:02:25.0684 1168 HidBth - ok
12:02:25.0698 1168 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
12:02:25.0702 1168 HidIr - ok
12:02:25.0733 1168 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
12:02:25.0737 1168 HidUsb - ok
12:02:25.0775 1168 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
12:02:25.0781 1168 HpSAMD - ok
12:02:25.0813 1168 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
12:02:25.0819 1168 HTTP - ok
12:02:25.0839 1168 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
12:02:25.0839 1168 hwpolicy - ok
12:02:25.0865 1168 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
12:02:25.0872 1168 i8042prt - ok
12:02:25.0896 1168 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
12:02:25.0922 1168 iaStorV - ok
12:02:25.0969 1168 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
12:02:25.0974 1168 iirsp - ok
12:02:26.0066 1168 IntcAzAudAddService (4bbb5a55eeb5ec11b20fcbb4cbb49357) C:\Windows\system32\drivers\RTKVHD64.sys
12:02:26.0108 1168 IntcAzAudAddService - ok
12:02:26.0127 1168 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
12:02:26.0131 1168 intelide - ok
12:02:26.0156 1168 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
12:02:26.0162 1168 intelppm - ok
12:02:26.0200 1168 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
12:02:26.0206 1168 IpFilterDriver - ok
12:02:26.0223 1168 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
12:02:26.0229 1168 IPMIDRV - ok
12:02:26.0247 1168 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
12:02:26.0253 1168 IPNAT - ok
12:02:26.0293 1168 iPodDrv (02def37ab75e0032c50724646f708de8) C:\Windows\system32\drivers\iPodDrv.sys
12:02:26.0303 1168 iPodDrv - ok
12:02:26.0335 1168 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
12:02:26.0343 1168 IRENUM - ok
12:02:26.0364 1168 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
12:02:26.0374 1168 isapnp - ok
12:02:26.0404 1168 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
12:02:26.0417 1168 iScsiPrt - ok
12:02:26.0442 1168 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
12:02:26.0449 1168 kbdclass - ok
12:02:26.0465 1168 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
12:02:26.0471 1168 kbdhid - ok
12:02:26.0526 1168 KSecDD (da1e991a61cfdd755a589e206b97644b) C:\Windows\system32\Drivers\ksecdd.sys
12:02:26.0535 1168 KSecDD - ok
12:02:26.0570 1168 KSecPkg (7e33198d956943a4f11a5474c1e9106f) C:\Windows\system32\Drivers\ksecpkg.sys
12:02:26.0586 1168 KSecPkg - ok
12:02:26.0608 1168 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
12:02:26.0616 1168 ksthunk - ok
12:02:26.0710 1168 Lavasoft Kernexplorer (9a7fa6371f68335fd3c3d6488bc5a9f8) C:\Program Files (x86)\Lavasoft\Ad-Aware\KernExplorer64.sys
12:02:26.0720 1168 Lavasoft Kernexplorer - ok
12:02:26.0758 1168 Lbd (c8b3131857931ae76798a741cc52b021) C:\Windows\system32\DRIVERS\Lbd.sys
12:02:26.0766 1168 Lbd - ok
12:02:26.0793 1168 LHidFilt (b6552d382ff070b4ed34cbd6737277c0) C:\Windows\system32\DRIVERS\LHidFilt.Sys
12:02:26.0798 1168 LHidFilt - ok
12:02:26.0843 1168 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
12:02:26.0853 1168 lltdio - ok
12:02:26.0890 1168 LMouFilt (73c1f563ab73d459dffe682d66476558) C:\Windows\system32\DRIVERS\LMouFilt.Sys
12:02:26.0897 1168 LMouFilt - ok
12:02:26.0936 1168 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
12:02:26.0944 1168 LSI_FC - ok
12:02:26.0960 1168 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
12:02:26.0985 1168 LSI_SAS - ok
12:02:27.0010 1168 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
12:02:27.0023 1168 LSI_SAS2 - ok
12:02:27.0047 1168 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
12:02:27.0061 1168 LSI_SCSI - ok
12:02:27.0091 1168 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
12:02:27.0106 1168 luafv - ok
12:02:27.0154 1168 MBAMProtector (79da94b35371b9e7104460c7693dcb2c) C:\Windows\system32\drivers\mbam.sys
12:02:27.0164 1168 MBAMProtector - ok
12:02:27.0224 1168 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
12:02:27.0230 1168 megasas - ok
12:02:27.0251 1168 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
12:02:27.0262 1168 MegaSR - ok
12:02:27.0310 1168 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
12:02:27.0315 1168 Modem - ok
12:02:27.0337 1168 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
12:02:27.0339 1168 monitor - ok
12:02:27.0365 1168 MotioninJoyXFilter (eb03d4164e7f10b601d280413655ade4) C:\Windows\system32\DRIVERS\MijXfilt.sys
12:02:27.0374 1168 MotioninJoyXFilter - ok
12:02:27.0392 1168 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
12:02:27.0399 1168 mouclass - ok
12:02:27.0412 1168 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
12:02:27.0417 1168 mouhid - ok
12:02:27.0439 1168 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
12:02:27.0440 1168 mountmgr - ok
12:02:27.0461 1168 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
12:02:27.0473 1168 mpio - ok
12:02:27.0492 1168 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
12:02:27.0498 1168 mpsdrv - ok
12:02:27.0527 1168 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
12:02:27.0536 1168 MRxDAV - ok
12:02:27.0558 1168 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
12:02:27.0567 1168 mrxsmb - ok
12:02:27.0591 1168 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
12:02:27.0603 1168 mrxsmb10 - ok
12:02:27.0622 1168 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
12:02:27.0630 1168 mrxsmb20 - ok
12:02:27.0649 1168 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
12:02:27.0655 1168 msahci - ok
12:02:27.0689 1168 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
12:02:27.0699 1168 msdsm - ok
12:02:27.0733 1168 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
12:02:27.0736 1168 Msfs - ok
12:02:27.0749 1168 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
12:02:27.0751 1168 mshidkmdf - ok
12:02:27.0793 1168 MSHUSBVideo (55218f924e55fd2786ed40edf4ed79c3) C:\Windows\system32\Drivers\nx6000.sys
12:02:27.0798 1168 MSHUSBVideo - ok
12:02:27.0820 1168 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
12:02:27.0824 1168 msisadrv - ok
12:02:27.0873 1168 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
12:02:27.0881 1168 MSKSSRV - ok
12:02:27.0898 1168 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
12:02:27.0905 1168 MSPCLOCK - ok
12:02:27.0922 1168 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
12:02:27.0927 1168 MSPQM - ok
12:02:27.0948 1168 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
12:02:27.0960 1168 MsRPC - ok
12:02:27.0984 1168 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
12:02:27.0986 1168 mssmbios - ok
12:02:27.0998 1168 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
12:02:28.0002 1168 MSTEE - ok
12:02:28.0017 1168 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
12:02:28.0021 1168 MTConfig - ok
12:02:28.0043 1168 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
12:02:28.0049 1168 Mup - ok
12:02:28.0077 1168 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
12:02:28.0087 1168 NativeWifiP - ok
12:02:28.0118 1168 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
12:02:28.0127 1168 NDIS - ok
12:02:28.0147 1168 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
12:02:28.0151 1168 NdisCap - ok
12:02:28.0177 1168 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
12:02:28.0181 1168 NdisTapi - ok
12:02:28.0203 1168 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
12:02:28.0208 1168 Ndisuio - ok
12:02:28.0227 1168 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
12:02:28.0251 1168 NdisWan - ok
12:02:28.0287 1168 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
12:02:28.0299 1168 NDProxy - ok
12:02:28.0341 1168 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
12:02:28.0349 1168 NetBIOS - ok
12:02:28.0372 1168 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
12:02:28.0375 1168 NetBT - ok
12:02:28.0433 1168 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
12:02:28.0439 1168 nfrd960 - ok
12:02:28.0462 1168 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
12:02:28.0467 1168 Npfs - ok
12:02:28.0486 1168 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
12:02:28.0487 1168 nsiproxy - ok
12:02:28.0538 1168 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
12:02:28.0566 1168 Ntfs - ok
12:02:28.0584 1168 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
12:02:28.0587 1168 Null - ok
12:02:28.0608 1168 nusb3hub (a7127e86f9ffe2a53e271b56b2c4cedf) C:\Windows\system32\DRIVERS\nusb3hub.sys
12:02:28.0614 1168 nusb3hub - ok
12:02:28.0634 1168 nusb3xhc (49bbec6f48d5f9284b03abf3a959b19b) C:\Windows\system32\DRIVERS\nusb3xhc.sys
12:02:28.0642 1168 nusb3xhc - ok
12:02:28.0660 1168 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
12:02:28.0667 1168 ohci1394 - ok
12:02:28.0691 1168 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
12:02:28.0698 1168 Parport - ok
12:02:28.0716 1168 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
12:02:28.0722 1168 partmgr - ok
12:02:28.0743 1168 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
12:02:28.0746 1168 pci - ok
12:02:28.0766 1168 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
12:02:28.0770 1168 pciide - ok
12:02:28.0794 1168 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
12:02:28.0805 1168 pcmcia - ok
12:02:28.0822 1168 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
12:02:28.0827 1168 pcw - ok
12:02:28.0854 1168 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
12:02:28.0872 1168 PEAUTH - ok
12:02:28.0944 1168 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
12:02:28.0951 1168 PptpMiniport - ok
12:02:28.0971 1168 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
12:02:28.0977 1168 Processor - ok
12:02:29.0021 1168 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
12:02:29.0022 1168 Psched - ok
12:02:29.0091 1168 PSMounter (0ca74ae4cb50cd2167f0ee2f421b77e9) C:\Windows\system32\drivers\psmounter.sys
12:02:29.0096 1168 PSMounter - ok
12:02:29.0119 1168 PSVolAcc (839699b137ff01fcad9924b2d3504bbe) C:\Windows\system32\drivers\PSVolAcc.sys
12:02:29.0123 1168 PSVolAcc - ok
12:02:29.0168 1168 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
12:02:29.0189 1168 ql2300 - ok
12:02:29.0212 1168 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
12:02:29.0220 1168 ql40xx - ok
12:02:29.0243 1168 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
12:02:29.0248 1168 QWAVEdrv - ok
12:02:29.0269 1168 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
12:02:29.0272 1168 RasAcd - ok
12:02:29.0310 1168 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
12:02:29.0315 1168 RasAgileVpn - ok
12:02:29.0332 1168 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
12:02:29.0338 1168 Rasl2tp - ok
12:02:29.0356 1168 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
12:02:29.0362 1168 RasPppoe - ok
12:02:29.0396 1168 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
12:02:29.0401 1168 RasSstp - ok
12:02:29.0427 1168 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
12:02:29.0438 1168 rdbss - ok
12:02:29.0457 1168 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
12:02:29.0461 1168 rdpbus - ok
12:02:29.0480 1168 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
12:02:29.0481 1168 RDPCDD - ok
12:02:29.0511 1168 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
12:02:29.0513 1168 RDPENCDD - ok
12:02:29.0532 1168 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
12:02:29.0532 1168 RDPREFMP - ok
12:02:29.0561 1168 RDPWD (6d76e6433574b058adcb0c50df834492) C:\Windows\system32\drivers\RDPWD.sys
12:02:29.0568 1168 RDPWD - ok
12:02:29.0589 1168 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
12:02:29.0599 1168 rdyboost - ok
12:02:29.0733 1168 RegFilter (8ccf1201a14d5ad7568e192b835abb7e) C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\regfilter.sys
12:02:29.0737 1168 RegFilter - ok
12:02:29.0769 1168 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
12:02:29.0774 1168 rspndr - ok
12:02:29.0814 1168 RTHDMIAzAudService (2e7d1ca91d62501713c9d6e6704395c6) C:\Windows\system32\drivers\RtHDMIVX.sys
12:02:29.0826 1168 RTHDMIAzAudService - ok
12:02:29.0857 1168 RTL8167 (16d4e350420baa7e63e16e3fc033e1f5) C:\Windows\system32\DRIVERS\Rt64win7.sys
12:02:29.0867 1168 RTL8167 - ok
12:02:29.0886 1168 RTL8187 - ok
12:02:29.0993 1168 SASDIFSV (3289766038db2cb14d07dc84392138d5) C:\Program Files\SUPERAntiSpyware\SASDIFSV64.SYS
12:02:30.0006 1168 SASDIFSV - ok
12:02:30.0028 1168 SASKUTIL (58a38e75f3316a83c23df6173d41f2b5) C:\Program Files\SUPERAntiSpyware\SASKUTIL64.SYS
12:02:30.0040 1168 SASKUTIL - ok
12:02:30.0072 1168 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
12:02:30.0091 1168 sbp2port - ok
12:02:30.0126 1168 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
12:02:30.0131 1168 scfilter - ok
12:02:30.0184 1168 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
12:02:30.0187 1168 secdrv - ok
12:02:30.0230 1168 Sentinel64 (255476b54c82a89416efdf09fd62f107) C:\Windows\System32\Drivers\Sentinel64.sys
12:02:30.0238 1168 Sentinel64 - ok
12:02:30.0269 1168 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
12:02:30.0274 1168 Serenum - ok
12:02:30.0290 1168 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
12:02:30.0295 1168 Serial - ok
12:02:30.0313 1168 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
12:02:30.0317 1168 sermouse - ok
12:02:30.0346 1168 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
12:02:30.0366 1168 sffdisk - ok
12:02:30.0391 1168 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
12:02:30.0395 1168 sffp_mmc - ok
12:02:30.0408 1168 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
12:02:30.0412 1168 sffp_sd - ok
12:02:30.0441 1168 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
12:02:30.0450 1168 sfloppy - ok
12:02:30.0490 1168 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
12:02:30.0507 1168 SiSRaid2 - ok
12:02:30.0564 1168 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
12:02:30.0588 1168 SiSRaid4 - ok
12:02:30.0651 1168 SmartDefragDriver (94ce7845af6a2065b829e0126cd56236) C:\Windows\system32\Drivers\SmartDefragDriver.sys
12:02:30.0659 1168 SmartDefragDriver - ok
12:02:30.0672 1168 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
12:02:30.0679 1168 Smb - ok
12:02:30.0731 1168 SNTUSB64 (2d5576c01c8a34aa614870e745fe8f19) C:\Windows\system32\DRIVERS\SNTUSB64.SYS
12:02:30.0738 1168 SNTUSB64 - ok
12:02:30.0781 1168 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
12:02:30.0814 1168 spldr - ok
12:02:30.0923 1168 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
12:02:30.0951 1168 srv - ok
12:02:30.0997 1168 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
12:02:31.0013 1168 srv2 - ok
12:02:31.0037 1168 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
12:02:31.0047 1168 srvnet - ok
12:02:31.0096 1168 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
12:02:31.0102 1168 stexstor - ok
12:02:31.0122 1168 StillCam (decacb6921ded1a38642642685d77dac) C:\Windows\system32\DRIVERS\serscan.sys
12:02:31.0126 1168 StillCam - ok
12:02:31.0175 1168 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
12:02:31.0185 1168 swenum - ok
12:02:31.0270 1168 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
12:02:31.0304 1168 Tcpip - ok
12:02:31.0339 1168 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
12:02:31.0349 1168 TCPIP6 - ok
12:02:31.0369 1168 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
12:02:31.0374 1168 tcpipreg - ok
12:02:31.0391 1168 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
12:02:31.0394 1168 TDPIPE - ok
12:02:31.0416 1168 TDTCP (51c5eceb1cdee2468a1748be550cfbc8) C:\Windows\system32\drivers\tdtcp.sys
12:02:31.0420 1168 TDTCP - ok
12:02:31.0447 1168 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
12:02:31.0453 1168 tdx - ok
12:02:31.0476 1168 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
12:02:31.0481 1168 TermDD - ok
12:02:31.0517 1168 tifsfilter (3e24b7fe52bc455da8d6e2cc2b4ca23f) C:\Windows\system32\DRIVERS\tifsfilt.sys
12:02:31.0523 1168 tifsfilter - ok
12:02:31.0638 1168 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
12:02:31.0642 1168 tssecsrv - ok
12:02:31.0677 1168 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
12:02:31.0699 1168 TsUsbFlt - ok
12:02:31.0743 1168 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
12:02:31.0760 1168 tunnel - ok
12:02:31.0796 1168 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
12:02:31.0804 1168 uagp35 - ok
12:02:31.0831 1168 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
12:02:31.0843 1168 udfs - ok
12:02:31.0880 1168 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
12:02:31.0888 1168 uliagpkx - ok
12:02:31.0912 1168 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
12:02:31.0919 1168 umbus - ok
12:02:31.0938 1168 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
12:02:31.0942 1168 UmPass - ok
12:02:32.0071 1168 UrlFilter (1aa6ca6b150f85f07804cba5f814d9b2) C:\Program Files (x86)\IObit\IObit Malware Fighter\drivers\win7_amd64\UrlFilter.sys
12:02:32.0081 1168 UrlFilter - ok
12:02:32.0111 1168 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
12:02:32.0127 1168 usbaudio - ok
12:02:32.0153 1168 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
12:02:32.0162 1168 usbccgp - ok
12:02:32.0179 1168 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
12:02:32.0190 1168 usbcir - ok
12:02:32.0205 1168 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
12:02:32.0212 1168 usbehci - ok
12:02:32.0237 1168 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
12:02:32.0251 1168 usbhub - ok
12:02:32.0269 1168 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\DRIVERS\usbohci.sys
12:02:32.0283 1168 usbohci - ok
12:02:32.0319 1168 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
12:02:32.0329 1168 usbprint - ok
12:02:32.0355 1168 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
12:02:32.0361 1168 usbscan - ok
12:02:32.0380 1168 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
12:02:32.0388 1168 USBSTOR - ok
12:02:32.0420 1168 usbuhci (81fb2216d3a60d1284455d511797db3d) C:\Windows\system32\DRIVERS\usbuhci.sys
12:02:32.0426 1168 usbuhci - ok
12:02:32.0461 1168 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\system32\Drivers\usbvideo.sys
12:02:32.0470 1168 usbvideo - ok
12:02:32.0501 1168 VClone (84bb306b7863883018d7f3eb0c453bd5) C:\Windows\system32\DRIVERS\VClone.sys
12:02:32.0506 1168 VClone - ok
12:02:32.0522 1168 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
12:02:32.0527 1168 vdrvroot - ok
12:02:32.0558 1168 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
12:02:32.0562 1168 vga - ok
12:02:32.0579 1168 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
12:02:32.0583 1168 VgaSave - ok
12:02:32.0607 1168 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
12:02:32.0617 1168 vhdmp - ok
12:02:32.0631 1168 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
12:02:32.0635 1168 viaide - ok
12:02:32.0648 1168 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
12:02:32.0654 1168 volmgr - ok
12:02:32.0680 1168 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
12:02:32.0683 1168 volmgrx - ok
12:02:32.0703 1168 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
12:02:32.0713 1168 volsnap - ok
12:02:32.0730 1168 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
12:02:32.0737 1168 vsmraid - ok
12:02:32.0769 1168 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
12:02:32.0773 1168 vwifibus - ok
12:02:32.0817 1168 wacmoumonitor (fe75777289278a4941fe6139e82b3bd9) C:\Windows\system32\DRIVERS\wacmoumonitor.sys
12:02:32.0820 1168 wacmoumonitor - ok
12:02:32.0925 1168 wacommousefilter (e04d43c7d1641e95d35cae6086c7e350) C:\Windows\system32\DRIVERS\wacommousefilter.sys
12:02:32.0934 1168 wacommousefilter - ok
12:02:32.0956 1168 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
12:02:32.0961 1168 WacomPen - ok
12:02:33.0009 1168 wacomvhid (ec1ceb237e365330c1fcfc4876aa0ac0) C:\Windows\system32\DRIVERS\wacomvhid.sys
12:02:33.0019 1168 wacomvhid - ok
12:02:33.0076 1168 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
12:02:33.0091 1168 WANARP - ok
12:02:33.0103 1168 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
12:02:33.0107 1168 Wanarpv6 - ok
12:02:33.0143 1168 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
12:02:33.0148 1168 Wd - ok
12:02:33.0176 1168 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
12:02:33.0190 1168 Wdf01000 - ok
12:02:33.0232 1168 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
12:02:33.0235 1168 WfpLwf - ok
12:02:33.0251 1168 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
12:02:33.0256 1168 WIMMount - ok
12:02:33.0317 1168 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
12:02:33.0323 1168 WinUsb - ok
12:02:33.0367 1168 WmBEnum (680a7846370000d20d7e74917d5b7936) C:\Windows\system32\drivers\WmBEnum.sys
12:02:33.0372 1168 WmBEnum - ok
12:02:33.0423 1168 WmFilter (14c35ba8189c6f65d839163aa285e954) C:\Windows\system32\drivers\WmFilter.sys
12:02:33.0442 1168 WmFilter - ok
12:02:33.0456 1168 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
12:02:33.0458 1168 WmiAcpi - ok
12:02:33.0517 1168 WmVirHid (8488dd91a3ee54a8e29f02ad7bb8201e) C:\Windows\system32\drivers\WmVirHid.sys
12:02:33.0521 1168 WmVirHid - ok
12:02:33.0540 1168 WmXlCore (14802b3a30aa849c97cb968ccc813bf3) C:\Windows\system32\drivers\WmXlCore.sys
12:02:33.0546 1168 WmXlCore - ok
12:02:33.0564 1168 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
12:02:33.0567 1168 ws2ifsl - ok
12:02:33.0597 1168 WSDPrintDevice (8d918b1db190a4d9b1753a66fa8c96e8) C:\Windows\system32\DRIVERS\WSDPrint.sys
12:02:33.0600 1168 WSDPrintDevice - ok
12:02:33.0631 1168 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
12:02:33.0637 1168 WudfPf - ok
12:02:33.0655 1168 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
12:02:33.0662 1168 WUDFRd - ok
12:02:33.0690 1168 xusb21 (9176c0822faa649e45121875be32f5d2) C:\Windows\system32\DRIVERS\xusb21.sys
12:02:33.0696 1168 xusb21 - ok
12:02:33.0708 1168 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
12:02:33.0734 1168 \Device\Harddisk0\DR0 - ok
12:02:33.0745 1168 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk1\DR1
12:02:33.0760 1168 \Device\Harddisk1\DR1 - ok
12:02:33.0765 1168 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk2\DR2
12:02:33.0768 1168 \Device\Harddisk2\DR2 - ok
12:02:33.0772 1168 Boot (0x1200) (2bc661f4617f453ee1fc2e970f26e8db) \Device\Harddisk0\DR0\Partition0
12:02:33.0773 1168 \Device\Harddisk0\DR0\Partition0 - ok
12:02:33.0784 1168 Boot (0x1200) (8b89f429615ca53077ade06354594341) \Device\Harddisk1\DR1\Partition0
12:02:33.0793 1168 \Device\Harddisk1\DR1\Partition0 - ok
12:02:33.0816 1168 Boot (0x1200) (ff419cdb47c9e80ce6a0607cbb9d3a93) \Device\Harddisk1\DR1\Partition1
12:02:33.0829 1168 \Device\Harddisk1\DR1\Partition1 - ok
12:02:33.0833 1168 Boot (0x1200) (732a8defd51a7c46ab045179e30b60c3) \Device\Harddisk2\DR2\Partition0
12:02:33.0835 1168 \Device\Harddisk2\DR2\Partition0 - ok
12:02:33.0836 1168 ============================================================
12:02:33.0836 1168 Scan finished
12:02:33.0836 1168 ============================================================
12:02:33.0851 2904 Detected object count: 0
12:02:33.0851 2904 Actual detected object count: 0
12:06:45.0838 0544 Deinitialize success

Here's SASW:

SUPERAntiSpyware Scan Log
http://www.superantispyware.com

Generated 03/20/2012 at 02:15 PM

Application Version : 5.0.1146

Core Rules Database Version : 8347
Trace Rules Database Version: 6159

Scan type : Complete Scan
Total Scan Time : 02:00:01

Operating System Information
Windows 7 Home Premium 64-bit, Service Pack 1 (Build 6.01.7601)
UAC Off - Administrator

Memory items scanned : 768
Memory threats detected : 0
Registry items scanned : 44635
Registry threats detected : 0
File items scanned : 228440
File threats detected : 31

Adware.Tracking Cookie
C:\Users\David\AppData\Roaming\Microsoft\Windows\Cookies\4HHVX5L5.txt [ /invitemedia.com ]
C:\Users\David\AppData\Roaming\Microsoft\Windows\Cookies\F5PK2ILS.txt [ /lucidmedia.com ]
C:\Users\David\AppData\Roaming\Microsoft\Windows\Cookies\1N0EJH7W.txt [ /media6degrees.com ]
C:\Users\David\AppData\Roaming\Microsoft\Windows\Cookies\SHPF7L0Z.txt [ /collective-media.net ]
C:\Users\David\AppData\Roaming\Microsoft\Windows\Cookies\CL2OK32C.txt [ /ad.yieldmanager.com ]
C:\Users\David\AppData\Roaming\Microsoft\Windows\Cookies\MH5JXI0G.txt [ /ads.saymedia.com ]
C:\Users\David\AppData\Roaming\Microsoft\Windows\Cookies\3M21KYA9.txt [ /www.pixeltrack66.com ]
C:\USERS\DAVID\AppData\Roaming\Microsoft\Windows\Cookies\EUJYCZLB.txt [ Cookie:david@adsonar.com/adserving ]
C:\USERS\DAVID\Cookies\EUJYCZLB.txt [ Cookie:david@adsonar.com/adserving ]
C:\USERS\DAVID\Cookies\4HHVX5L5.txt [ Cookie:david@invitemedia.com/ ]
C:\USERS\DAVID\Cookies\F5PK2ILS.txt [ Cookie:david@lucidmedia.com/ ]
C:\USERS\DAVID\Cookies\SHPF7L0Z.txt [ Cookie:david@collective-media.net/ ]
C:\USERS\DAVID\Cookies\MH5JXI0G.txt [ Cookie:david@ads.saymedia.com/ ]
C:\USERS\DAVID\Cookies\3M21KYA9.txt [ Cookie:david@www.pixeltrack66.com/ ]
.doubleclick.net [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.imrworldwide.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.serving-sys.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
accounts.google.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
wstat.wibiya.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
.invitemedia.com [ C:\USERS\DAVID\APPDATA\LOCAL\GOOGLE\CHROME\USER DATA\DEFAULT\COOKIES ]
cdn2.themis-media.com [ C:\USERS\DAVID\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\K3Y76Z6M ]
media.mtvnservices.com [ C:\USERS\DAVID\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\K3Y76Z6M ]
secure-us.imrworldwide.com [ C:\USERS\DAVID\APPDATA\ROAMING\MACROMEDIA\FLASH PLAYER\#SHAREDOBJECTS\K3Y76Z6M ]

Here's MWB:

Malwarebytes Anti-Malware (Trial) 1.60.1.1000
www.malwarebytes.org

Database version: v2012.03.20.05

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
David :: THEBEAST [administrator]

Protection: Enabled

3/20/2012 4:26:16 PM
mbam-log-2012-03-20 (16-26-16).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 199009
Time elapsed: 4 minute(s), 30 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

Edited by TLoV, 20 March 2012 - 06:57 PM.


#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:46 PM

Posted 20 March 2012 - 09:30 PM

Hello.
Are you on a router? Are other machines on it,if so are they redirecting?

Do you use Firefox?

Unfortunately you cut off the Mini Tool Box log at Hosts content with the TDSS log?
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 TLoV

TLoV
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:46 PM

Posted 20 March 2012 - 11:16 PM

No, that's how the MTB results file looked for me. :/

And to answer your question, yes I'm on a router and I use firefox, but I don't know if others on it are getting the same redirect

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:46 PM

Posted 21 March 2012 - 10:24 AM

In FireFox it may be the Add ons/Plugins. try disabling them one at a time and see which one was at fault.

How to disable extensions and plugins

Keeping your third-party plugins up to date
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 TLoV

TLoV
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:46 PM

Posted 21 March 2012 - 10:29 AM

alright, I'll do that and report back with my results.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:46 PM

Posted 21 March 2012 - 01:25 PM

Thanks.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#9 TLoV

TLoV
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:46 PM

Posted 22 March 2012 - 02:40 PM

Well, I can't be sure, but I haven't been redirected in a while. I say I'm unsure because a redirect is a pretty rare occurrence and I'm not sure how to trigger it.

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:46 PM

Posted 22 March 2012 - 02:45 PM

Well we can submit a DDS log and get a look for any hidden malware.

Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 TLoV

TLoV
  • Topic Starter

  • Members
  • 14 posts
  • OFFLINE
  •  
  • Local time:04:46 PM

Posted 28 March 2012 - 02:32 AM

Sorry, forgot to inform you. My log thread is here

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:46 PM

Posted 28 March 2012 - 12:21 PM

Thanks!
Now that your log is properly posted, you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a Malware Removal Team member, nor should you continue to ask for help elsewhere. Doing so can result in system changes which may not show it the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the Malware Removal Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the Malware Removal Team members are very busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the Malware Removal Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRL Team member is already assisting you and not open the thread to respond.

The current wait time is 1 - 3 days and ALL logs are answered.

To avoid confusion, I am closing this topic.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users