Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Can't get rid of this Virus???


  • Please log in to reply
9 replies to this topic

#1 Hoffmane21

Hoffmane21

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Morgan Hill, CA
  • Local time:02:32 AM

Posted 24 April 2012 - 03:39 PM

I have tried everything, from Malwarebytes, to SuperAntiSpyware, to Spybot, to Hitman Pro, CC cleaner, removing the programs, I don't know HOW to get rid of this pop up that says we have 200, 300 whatever errors...

How do I remove this? Attaching a picture

Any idea how to remove this?

Windows XP Pro

Edit: Moved topic from XP to the more appropriate forum. ~ Animal

Attached Files



BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:32 AM

Posted 24 April 2012 - 07:31 PM

Hello and welcome,please do these.
Did those scans remove anything?

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.

>>>
Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log has a name like: TDSSKiller.Version_Date_Time_log.txt.



If TDSSKiller does not run, try renaming it. To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to these[/color] instructions. In some cases it may be necessary to redownload TDSSKiller and randomly rename it before downloading and saving to the computer.


>>>
I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


[color="#8B0000"]NOTE: In some instances if no malware is found there will be no log produced.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 Hoffmane21

Hoffmane21
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Morgan Hill, CA
  • Local time:02:32 AM

Posted 20 June 2012 - 09:33 PM

Here is what txt I got from MiniTool Box:

MiniToolBox by Farbar Version: 09-06-2012
Ran by David Ames (administrator) on 20-06-2012 at 19:31:35
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================

"network.proxy.type", 0

"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1 localhost

========================= IP Configuration: ================================

Broadcom NetLink ™ Gigabit Ethernet = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



Host Name . . . . . . . . . . . . : DAVID

Primary Dns Suffix . . . . . . . :

Node Type . . . . . . . . . . . . : Broadcast

IP Routing Enabled. . . . . . . . : Yes

WINS Proxy Enabled. . . . . . . . : Yes

DNS Suffix Search List. . . . . . : gateway.2wire.net



Ethernet adapter Local Area Connection:



Connection-specific DNS Suffix . : gateway.2wire.net

Description . . . . . . . . . . . : Broadcom NetLink ™ Gigabit Ethernet

Physical Address. . . . . . . . . : B8-AC-6F-28-9E-2D

Dhcp Enabled. . . . . . . . . . . : Yes

Autoconfiguration Enabled . . . . : Yes

IP Address. . . . . . . . . . . . : 192.168.1.100

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 192.168.1.254

DHCP Server . . . . . . . . . . . : 192.168.1.254

DNS Servers . . . . . . . . . . . : 192.168.1.254

Lease Obtained. . . . . . . . . . : Wednesday, June 20, 2012 8:20:08 AM

Lease Expires . . . . . . . . . . : Thursday, June 21, 2012 8:20:08 AM

Server: home
Address: 192.168.1.254

Name: google.com
Addresses: 74.125.224.34, 74.125.224.35, 74.125.224.36, 74.125.224.37
74.125.224.38, 74.125.224.39, 74.125.224.40, 74.125.224.41, 74.125.224.46
74.125.224.32, 74.125.224.33



Pinging google.com [74.125.224.70] with 32 bytes of data:



Reply from 74.125.224.70: bytes=32 time=17ms TTL=54

Reply from 74.125.224.70: bytes=32 time=18ms TTL=54



Ping statistics for 74.125.224.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 17ms, Maximum = 18ms, Average = 17ms

Server: home
Address: 192.168.1.254

Name: yahoo.com
Addresses: 72.30.38.140, 98.139.183.24, 209.191.122.70



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=104ms TTL=46

Reply from 98.139.183.24: bytes=32 time=122ms TTL=46



Ping statistics for 98.139.183.24:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 104ms, Maximum = 122ms, Average = 113ms

Server: home
Address: 192.168.1.254

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:



Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...b8 ac 6f 28 9e 2d ...... Broadcom NetLink ™ Gigabit Ethernet - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.1.254 192.168.1.100 20
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 192.168.1.100 192.168.1.100 20
192.168.1.0 255.255.255.0 192.168.1.100 192.168.1.100 20
192.168.1.100 255.255.255.255 127.0.0.1 127.0.0.1 20
192.168.1.255 255.255.255.255 192.168.1.100 192.168.1.100 20
224.0.0.0 240.0.0.0 192.168.1.100 192.168.1.100 20
255.255.255.255 255.255.255.255 192.168.1.100 192.168.1.100 1
Default Gateway: 192.168.1.254
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\System32\nwprovau.dll [142336] (Microsoft Corporation)
Catalog5 02 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 03 C:\Windows\System32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 04 C:\Windows\System32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\rsvpsp.dll [92672] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (06/20/2012 08:21:50 AM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (06/19/2012 08:16:09 AM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (06/18/2012 10:56:22 AM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (06/17/2012 04:49:52 PM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (06/17/2012 04:37:06 PM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (06/16/2012 06:15:53 PM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (06/16/2012 10:53:04 AM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (06/15/2012 01:56:27 PM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (06/14/2012 11:34:30 AM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM

Error: (06/13/2012 05:52:20 AM) (Source: Wave TCG Client Services) (User: )
Description: The NTRU TSS is not running, Wave Software is unable to communicate to TPM


System errors:
=============
Error: (06/20/2012 11:24:05 AM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Real\RealPlayer\plugins\rmxrend.dll.
Reference error message: The operation completed successfully.
.

Error: (06/20/2012 11:24:05 AM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.VC90.DebugCRT.
Reference error message: The referenced assembly is not installed on your system.
.

Error: (06/20/2012 11:24:05 AM) (Source: SideBySide) (User: )
Description: Dependent Assembly Microsoft.VC90.DebugCRT could not be found and Last Error was The referenced assembly is not installed on your system.

Error: (06/20/2012 10:54:05 AM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Real\RealPlayer\plugins\rmxrend.dll.
Reference error message: The operation completed successfully.
.

Error: (06/20/2012 10:54:05 AM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.VC90.DebugCRT.
Reference error message: The referenced assembly is not installed on your system.
.

Error: (06/20/2012 10:54:05 AM) (Source: SideBySide) (User: )
Description: Dependent Assembly Microsoft.VC90.DebugCRT could not be found and Last Error was The referenced assembly is not installed on your system.

Error: (06/20/2012 08:20:26 AM) (Source: Service Control Manager) (User: )
Description: The Creative PD1100C HAL Service service failed to start due to the following error:
%%2

Error: (06/19/2012 11:54:09 AM) (Source: SideBySide) (User: )
Description: Generate Activation Context failed for C:\Program Files\Real\RealPlayer\plugins\rmxrend.dll.
Reference error message: The operation completed successfully.
.

Error: (06/19/2012 11:54:09 AM) (Source: SideBySide) (User: )
Description: Resolve Partial Assembly failed for Microsoft.VC90.DebugCRT.
Reference error message: The referenced assembly is not installed on your system.
.

Error: (06/19/2012 11:54:09 AM) (Source: SideBySide) (User: )
Description: Dependent Assembly Microsoft.VC90.DebugCRT could not be found and Last Error was The referenced assembly is not installed on your system.


Microsoft Office Sessions:
=========================
Error: (02/17/2012 11:54:24 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 1253 seconds with 1200 seconds of active time. This session ended with a crash.

Error: (02/17/2012 11:33:20 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 64 seconds with 60 seconds of active time. This session ended with a crash.

Error: (02/17/2012 11:32:01 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 5843 seconds with 5460 seconds of active time. This session ended with a crash.

Error: (11/22/2010 02:09:59 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4747 seconds with 3780 seconds of active time. This session ended with a crash.

Error: (11/19/2010 01:56:05 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 4451 seconds with 720 seconds of active time. This session ended with a crash.

Error: (09/23/2010 07:06:22 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 1, Application Name: Microsoft Office Excel, Application Version: 12.0.6535.5002, Microsoft Office Version: 12.0.6425.1000. This session lasted 46 seconds with 0 seconds of active time. This session ended with a crash.

Error: (09/14/2010 00:08:51 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6535.5005, Microsoft Office Version: 12.0.6425.1000. This session lasted 13 seconds with 0 seconds of active time. This session ended with a crash.

Error: (08/31/2010 01:59:04 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6423.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 503 seconds with 480 seconds of active time. This session ended with a crash.

Error: (08/19/2010 06:27:00 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6423.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 24 seconds with 0 seconds of active time. This session ended with a crash.

Error: (08/19/2010 06:26:57 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 6, Application Name: Microsoft Office Outlook, Application Version: 12.0.6423.1000, Microsoft Office Version: 12.0.6425.1000. This session lasted 29 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

Adobe Acrobat 9 Standard - English, Franšais, Deutsch (Version: 9.5.1)
Adobe Acrobat 5.0
Adobe Acrobat 9.5.1 - CPSID_83708
Adobe AIR (Version: 3.1.0.4880)
Adobe Download Manager (Version: 1.6.2.103)
Adobe Flash Player 10 ActiveX (Version: 10.3.181.26)
Adobe Flash Player 10 Plugin (Version: 10.0.45.2)
Adobe Reader X (10.1.3) (Version: 10.1.3)
AiO_Scan (Version: 50.0.227.000)
AppGraffiti (Version: 1.0.0.29)
Apple Application Support (Version: 1.5.2)
Apple Mobile Device Support (Version: 3.4.1.2)
Apple Software Update (Version: 2.1.3.127)
Ask Toolbar (Version: 1.14.1.0)
Ask Toolbar Updater (Version: 1.2.0.20007)
Bid-Builder Estimating Installation
Bing Bar (Version: 7.0.850.0)
BioAPI Framework (Version: 1.0.1)
blinkx beat (Version: 1.5.0)
Bonjour (Version: 3.0.0.2)
Box 24 (Version: 1.0)
Broadcom NetXtreme-I Netlink Driver and Management Installer (Version: 12.25.02)
Canon MP Drivers 6.0
Canon MP Navigator 1.0
Canon ScanGear Starter
Canon Utilities Easy-PhotoPrint
CCleaner (Version: 3.06)
Coupon Printer for Windows (Version: 5.0.0.0)
DCP32MMWrapper (Version: 1.6.326.57)
Defraggler (Version: 2.04)
Dell Backup and Recovery Manager (Version: 1.2.3)
Dell Control Point (Version: 1.6.326.57)
Dell ControlPoint Security Manager (Version: 1.6.326.57)
Dell Embassy Trust Suite by Wave Systems (Version: 03.04.00.062)
Dell Security Device Driver Pack (Version: 1.3.039)
Document Manager Lite (Version: 06.09.00.104)
e-Sword (Version: 10.01.0000)
Easy-WebPrint
EMBASSY Security Center (Version: 03.09.00.092)
EMBASSY Security Setup (Version: 03.09.00.102)
ESC Home Page Plugin (Version: 03.04.00.029)
Freeze.com NetAssistant (Version: 3.8.3)
Gemalto (Version: 01.01.00.0000)
Google Chrome (Version: 19.0.1084.56)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.3.2710.138)
Google Update Helper (Version: 1.3.21.111)
GoToMeeting 5.1.0.880 (Version: 5.1.0.880)
HitmanPro 3.6 (Version: 3.6.0.151)
HP Deskjet 1000 J110 series Basic Device Software (Version: 22.50.231.0)
HP Deskjet 1000 J110 series Help (Version: 140.0.65.65)
HP Photo Creations (Version: 1.0.0.5192)
HP Photosmart 5510 series Basic Device Software (Version: 25.0.621.0)
HP Photosmart 5510 series Help (Version: 140.0.2.2)
HP Photosmart 5510 series Product Improvement Study (Version: 25.0.621.0)
HP PSC & OfficeJet 5.3.B
HP Update (Version: 5.003.000.004)
iLivid (Version: 1.92.0.115854)
Inbox Toolbar (Version: 1.0.0)
Intel® Graphics Media Accelerator Driver
iTunes (Version: 10.4.1.10)
Java Auto Updater (Version: 2.0.6.1)
Java™ 6 Update 29 (Version: 6.0.290)
Junk Mail filter update (Version: 14.0.8089.726)
K-Lite Codec Pack 7.0.0 (Standard) (Version: 7.0.0)
Malwarebytes Anti-Malware version 1.61.0.1400 (Version: 1.61.0.1400)
McAfee Security Scan Plus (Version: 3.0.271.4)
McAfee SiteAdvisor (Version: 3.4.195)
MFCLOC (Version: 1.00.0000)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2656353)
Microsoft .NET Framework 1.1 Security Update (KB2656370)
Microsoft .NET Framework 1.1 Security Update (KB979906)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Choice Guard (Version: 2.0.48.0)
Microsoft Compression Client Pack 1.0 for Windows XP (Version: 1)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Basic 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6612.1000)
Microsoft Silverlight (Version: 4.1.10329.0)
Microsoft Software Update for Web Folders (English) 12 (Version: 12.0.6612.1000)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Sync Framework Runtime Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft Sync Framework Services Native v1.0 (x86) (Version: 1.0.1215.0)
Microsoft UI Engine (Version: 4.0.0318.1)
Microsoft User-Mode Driver Framework Feature Pack 1.0
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 (Version: 8.0.50727.4053)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Mob Rule
MSN
MSVCRT (Version: 14.0.1468.721)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MSXML 4.0 SP3 Parser (KB973685) (Version: 4.30.2107.0)
MSXML 6.0 Parser (KB927977) (Version: 6.00.3890.0)
NetAssistant (Version: 3.8.3)
NTRU TCG Software Stack (Version: 2.1.29)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
OmniPage SE (Version: 2.00.0004)
PowerDVD DX (Version: 8.3.6029)
Preboot Manager (Version: 02.09.00.071)
Presto! PageManager 6.03
Private Information Manager (Version: 06.04.00.047)
QFolder (Version: 1.00.0000)
QuickTime (Version: 7.70.80.34)
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer
Realtek High Definition Audio Driver
RealUpgrade 1.1 (Version: 1.1.0)
RebateInformer (Version: 1.0.0.83)
RegDef2012 (Version: 8.3.1)
REIA BASIC V15.0
Scan (Version: 5.2.0.0)
SearchCore for Browsers (Version: 3.0.0.115554)
Security Wizards (Version: 01.07.00.016)
Segoe UI (Version: 14.0.4327.805)
SO32MMWrapper (Version: 1.6.326.57)
Sophos Virus Removal Tool (Version: 2.0)
Spybot - Search & Destroy (Version: 1.6.2)
ST Microelectronics TPM Driver Installer (Version: 1.04.15)
Star Investment Analyzer V9.00 (Version: 9.00)
SUPERAntiSpyware (Version: 4.52.1000)
Trusted Drive Manager (Version: 3.1.0.116)
tsp patch (Version: 01.00.00.0000)
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft .NET Framework 3.5 SP1 (KB963707) (Version: 1)
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687267) 32-Bit Edition
Update for Windows Internet Explorer 8 (KB2447568) (Version: 1)
Update for Windows XP (KB2345886) (Version: 1)
Update for Windows XP (KB2467659) (Version: 1)
Update for Windows XP (KB2541763) (Version: 1)
Update for Windows XP (KB2607712) (Version: 1)
Update for Windows XP (KB2616676) (Version: 1)
Update for Windows XP (KB2641690) (Version: 1)
Update for Windows XP (KB2718704) (Version: 1)
Update for Windows XP (KB951978) (Version: 1)
Update for Windows XP (KB955759) (Version: 1)
Update for Windows XP (KB968389) (Version: 1)
Update for Windows XP (KB971029) (Version: 1)
Update for Windows XP (KB971737) (Version: 1)
Update for Windows XP (KB973687) (Version: 1)
Update for Windows XP (KB973815) (Version: 1)
UPEK TouchChip Fingerprint Reader (Version: 1.1.0)
Wave Infrastructure Installer (Version: 07.00.21.0000)
Wave Support Software (Version: 05.10.00.046)
WeatherBlink Toolbar
WebFldrs XP (Version: 9.50.7523)
Windows Driver Package - Dell Inc. PBADRV System (01/07/2008 1.0.1.5) (Version: 01/07/2008 1.0.1.5)
Windows Driver Package - STMicroelectronics (stmtpm) System (05/24/2007 1.00.04.15) (Version: 05/24/2007 1.00.04.15)
Windows Genuine Advantage Notifications (KB905474) (Version: 1.9.0040.0)
Windows Genuine Advantage Validation Tool (KB892130)
Windows Genuine Advantage Validation Tool (KB892130) (Version: 1.7.0069.2)
Windows iLivid Toolbar (Version: 3.0.0.115554)
Windows Internet Explorer 8 (Version: 20090308.140743)
Windows Live Call (Version: 14.0.8064.0206)
Windows Live Communications Platform (Version: 14.0.8064.206)
Windows Live Essentials (Version: 14.0.8089.0726)
Windows Live Essentials (Version: 14.0.8089.726)
Windows Live Mail (Version: 14.0.8089.0726)
Windows Live Messenger (Version: 14.0.8089.0726)
Windows Live Photo Gallery (Version: 14.0.8081.709)
Windows Live Sync (Version: 14.0.8089.726)
Windows Live Toolbar (Version: 14.0.8064.206)
Windows Live Upload Tool (Version: 14.0.8014.1029)
Windows Live Writer (Version: 14.0.8089.0726)
Windows Management Framework Core
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.2980)
Windows Media Format 11 runtime
Windows Media Player 11
Windows Presentation Foundation (Version: 3.0.6920.0)
Windows Rights Management Client Backwards Compatibility SP2 (Version: 5.2.95)
Windows Rights Management Client with Service Pack 2 (Version: 5.2.95)
XML Paper Specification Shared Components Pack 1.0
Yahoo! Software Update
Yahoo! Toolbar
ZeeDip (Version: 1.0.4.0)

========================= Memory info: ===================================

Percentage of memory in use: 58%
Total physical RAM: 987.57 MB
Available physical RAM: 405.03 MB
Total Pagefile: 2372.48 MB
Available Pagefile: 1734.85 MB
Total Virtual: 2047.88 MB
Available Virtual: 1965.25 MB

========================= Partitions: =====================================

1 Drive c: (OS) (Fixed) (Total:148.97 GB) (Free:122.79 GB) NTFS

========================= Users: ========================================

User accounts for \\DAVID

Administrator David Ames Guest
HelpAssistant Irene Ames Michael Ames
SettingsAccount SUPPORT_388945a0


**** End of log ****

#4 Hoffmane21

Hoffmane21
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Morgan Hill, CA
  • Local time:02:32 AM

Posted 20 June 2012 - 09:37 PM

TDS Killer Said NO problems Found, here is the report:

19:34:58.0531 2708 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
19:34:59.0000 2708 ============================================================
19:34:59.0000 2708 Current date / time: 2012/06/20 19:34:59.0000
19:34:59.0000 2708 SystemInfo:
19:34:59.0000 2708
19:34:59.0000 2708 OS Version: 5.1.2600 ServicePack: 3.0
19:34:59.0000 2708 Product type: Workstation
19:34:59.0000 2708 ComputerName: DAVID
19:34:59.0000 2708 UserName: David Ames
19:34:59.0000 2708 Windows directory: C:\WINDOWS
19:34:59.0000 2708 System windows directory: C:\WINDOWS
19:34:59.0000 2708 Processor architecture: Intel x86
19:34:59.0000 2708 Number of processors: 2
19:34:59.0000 2708 Page size: 0x1000
19:34:59.0000 2708 Boot type: Normal boot
19:34:59.0000 2708 ============================================================
19:35:01.0375 2708 Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:35:01.0390 2708 ============================================================
19:35:01.0390 2708 \Device\Harddisk0\DR0:
19:35:01.0390 2708 MBR partitions:
19:35:01.0390 2708 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x129F1737
19:35:01.0390 2708 ============================================================
19:35:01.0437 2708 C: <-> \Device\Harddisk0\DR0\Partition0
19:35:01.0437 2708 ============================================================
19:35:01.0437 2708 Initialize success
19:35:01.0437 2708 ============================================================
19:35:02.0765 2008 ============================================================
19:35:02.0765 2008 Scan started
19:35:02.0765 2008 Mode: Manual;
19:35:02.0765 2008 ============================================================
19:35:03.0734 2008 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:35:03.0734 2008 !SASCORE - ok
19:35:03.0812 2008 Abiosdsk - ok
19:35:03.0843 2008 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:35:03.0843 2008 abp480n5 - ok
19:35:03.0890 2008 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:35:03.0890 2008 ACPI - ok
19:35:03.0921 2008 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:35:03.0921 2008 ACPIEC - ok
19:35:03.0953 2008 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:35:03.0953 2008 adpu160m - ok
19:35:04.0000 2008 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:35:04.0000 2008 aec - ok
19:35:04.0031 2008 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:35:04.0031 2008 AFD - ok
19:35:04.0078 2008 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
19:35:04.0078 2008 agp440 - ok
19:35:04.0078 2008 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:35:04.0078 2008 agpCPQ - ok
19:35:04.0093 2008 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:35:04.0093 2008 Aha154x - ok
19:35:04.0125 2008 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:35:04.0125 2008 aic78u2 - ok
19:35:04.0140 2008 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:35:04.0140 2008 aic78xx - ok
19:35:04.0140 2008 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
19:35:04.0156 2008 Alerter - ok
19:35:04.0187 2008 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
19:35:04.0187 2008 ALG - ok
19:35:04.0218 2008 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
19:35:04.0218 2008 AliIde - ok
19:35:04.0234 2008 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:35:04.0234 2008 alim1541 - ok
19:35:04.0250 2008 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:35:04.0250 2008 amdagp - ok
19:35:04.0265 2008 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
19:35:04.0265 2008 amsint - ok
19:35:04.0359 2008 Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:35:04.0359 2008 Apple Mobile Device - ok
19:35:04.0390 2008 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
19:35:04.0421 2008 AppMgmt - ok
19:35:04.0437 2008 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
19:35:04.0437 2008 asc - ok
19:35:04.0453 2008 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:35:04.0453 2008 asc3350p - ok
19:35:04.0468 2008 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:35:04.0468 2008 asc3550 - ok
19:35:04.0515 2008 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:35:04.0531 2008 aspnet_state - ok
19:35:04.0546 2008 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:35:04.0546 2008 AsyncMac - ok
19:35:04.0593 2008 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:35:04.0593 2008 atapi - ok
19:35:04.0593 2008 Atdisk - ok
19:35:04.0625 2008 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:35:04.0625 2008 Atmarpc - ok
19:35:04.0656 2008 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
19:35:04.0656 2008 AudioSrv - ok
19:35:04.0671 2008 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:35:04.0671 2008 audstub - ok
19:35:04.0765 2008 BBSvc (01a24b415926bb5f772dbe12459d97de) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
19:35:04.0781 2008 BBSvc - ok
19:35:04.0828 2008 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
19:35:04.0828 2008 BBUpdate - ok
19:35:04.0875 2008 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:35:04.0875 2008 Beep - ok
19:35:04.0906 2008 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
19:35:04.0953 2008 BITS - ok
19:35:04.0984 2008 Blfp (3edae8e7b40257da798c6952edb26eb0) C:\WINDOWS\system32\DRIVERS\baspxp32.sys
19:35:04.0984 2008 Blfp - ok
19:35:05.0062 2008 Bonjour Service (1c87705ccb2f60172b0fc86b5d82f00d) C:\Program Files\Bonjour\mDNSResponder.exe
19:35:05.0078 2008 Bonjour Service - ok
19:35:05.0109 2008 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
19:35:05.0109 2008 Browser - ok
19:35:05.0140 2008 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:35:05.0140 2008 cbidf - ok
19:35:05.0140 2008 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:35:05.0140 2008 cbidf2k - ok
19:35:05.0171 2008 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:35:05.0171 2008 CCDECODE - ok
19:35:05.0203 2008 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:35:05.0203 2008 cd20xrnt - ok
19:35:05.0218 2008 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:35:05.0234 2008 Cdaudio - ok
19:35:05.0234 2008 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:35:05.0234 2008 Cdfs - ok
19:35:05.0281 2008 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:35:05.0281 2008 Cdrom - ok
19:35:05.0281 2008 cerc6 - ok
19:35:05.0296 2008 Changer - ok
19:35:05.0328 2008 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
19:35:05.0328 2008 CiSvc - ok
19:35:05.0343 2008 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
19:35:05.0343 2008 ClipSrv - ok
19:35:05.0406 2008 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:35:05.0421 2008 clr_optimization_v2.0.50727_32 - ok
19:35:05.0421 2008 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:35:05.0437 2008 CmdIde - ok
19:35:05.0437 2008 COMSysApp - ok
19:35:05.0453 2008 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:35:05.0453 2008 Cpqarray - ok
19:35:05.0484 2008 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
19:35:05.0484 2008 CryptSvc - ok
19:35:05.0515 2008 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:35:05.0531 2008 dac2w2k - ok
19:35:05.0531 2008 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:35:05.0531 2008 dac960nt - ok
19:35:05.0578 2008 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:35:05.0609 2008 DcomLaunch - ok
19:35:05.0656 2008 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
19:35:05.0656 2008 Dhcp - ok
19:35:05.0687 2008 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:35:05.0687 2008 Disk - ok
19:35:05.0687 2008 dmadmin - ok
19:35:05.0750 2008 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
19:35:05.0781 2008 dmboot - ok
19:35:05.0796 2008 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\DRIVERS\dmio.sys
19:35:05.0796 2008 dmio - ok
19:35:05.0812 2008 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:35:05.0812 2008 dmload - ok
19:35:05.0828 2008 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
19:35:05.0828 2008 dmserver - ok
19:35:05.0875 2008 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:35:05.0875 2008 DMusic - ok
19:35:05.0906 2008 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
19:35:05.0906 2008 Dnscache - ok
19:35:05.0921 2008 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
19:35:05.0937 2008 Dot3svc - ok
19:35:05.0937 2008 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:35:05.0953 2008 dpti2o - ok
19:35:05.0953 2008 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:35:05.0953 2008 drmkaud - ok
19:35:05.0968 2008 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
19:35:05.0984 2008 EapHost - ok
19:35:05.0984 2008 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
19:35:05.0984 2008 ERSvc - ok
19:35:06.0015 2008 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:35:06.0031 2008 Eventlog - ok
19:35:06.0062 2008 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
19:35:06.0062 2008 EventSystem - ok
19:35:06.0078 2008 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:35:06.0078 2008 Fastfat - ok
19:35:06.0109 2008 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:35:06.0125 2008 FastUserSwitchingCompatibility - ok
19:35:06.0171 2008 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
19:35:06.0171 2008 Fax - ok
19:35:06.0203 2008 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
19:35:06.0203 2008 Fdc - ok
19:35:06.0234 2008 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
19:35:06.0234 2008 Fips - ok
19:35:06.0328 2008 FLEXnet Licensing Service (f76d04f7413b07daa029f6520b64b4e8) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:35:06.0359 2008 FLEXnet Licensing Service - ok
19:35:06.0390 2008 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
19:35:06.0390 2008 Flpydisk - ok
19:35:06.0421 2008 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:35:06.0421 2008 FltMgr - ok
19:35:06.0750 2008 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:35:06.0750 2008 FontCache3.0.0.0 - ok
19:35:06.0765 2008 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:35:06.0765 2008 Fs_Rec - ok
19:35:06.0781 2008 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:35:06.0781 2008 Ftdisk - ok
19:35:06.0828 2008 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:35:06.0828 2008 GEARAspiWDM - ok
19:35:06.0843 2008 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:35:06.0859 2008 Gpc - ok
19:35:06.0921 2008 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:35:06.0921 2008 gupdate - ok
19:35:06.0921 2008 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:35:06.0921 2008 gupdatem - ok
19:35:06.0984 2008 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:35:06.0984 2008 gusvc - ok
19:35:07.0078 2008 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:35:07.0078 2008 HDAudBus - ok
19:35:07.0140 2008 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:35:07.0140 2008 helpsvc - ok
19:35:07.0156 2008 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
19:35:07.0156 2008 HidServ - ok
19:35:07.0187 2008 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:35:07.0187 2008 hidusb - ok
19:35:07.0218 2008 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
19:35:07.0218 2008 hkmsvc - ok
19:35:07.0234 2008 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
19:35:07.0234 2008 hpn - ok
19:35:07.0250 2008 HPZid412 (9f1d80908658eb7f1bf70809e0b51470) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:35:07.0265 2008 HPZid412 - ok
19:35:07.0265 2008 HPZipr12 (f7e3e9d50f9cd3de28085a8fdaa0a1c3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:35:07.0265 2008 HPZipr12 - ok
19:35:07.0296 2008 HPZius12 (cf1b7951b4ec8d13f3c93b74bb2b461b) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:35:07.0296 2008 HPZius12 - ok
19:35:07.0343 2008 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
19:35:07.0359 2008 HTTP - ok
19:35:07.0390 2008 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
19:35:07.0406 2008 HTTPFilter - ok
19:35:07.0421 2008 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
19:35:07.0421 2008 i2omgmt - ok
19:35:07.0453 2008 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:35:07.0453 2008 i2omp - ok
19:35:07.0734 2008 ialm (a01bb8da8d73bca83702a4cf1cd56dce) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:35:07.0859 2008 ialm - ok
19:35:08.0109 2008 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:35:08.0140 2008 idsvc - ok
19:35:08.0218 2008 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:35:08.0218 2008 Imapi - ok
19:35:08.0265 2008 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
19:35:08.0265 2008 ImapiService - ok
19:35:08.0281 2008 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
19:35:08.0281 2008 ini910u - ok
19:35:08.0531 2008 IntcAzAudAddService (9126d796a5101765650cc39d99c5ace7) C:\WINDOWS\system32\drivers\RtDHDAud.sys
19:35:09.0500 2008 IntcAzAudAddService - ok
19:35:10.0359 2008 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
19:35:10.0359 2008 IntelIde - ok
19:35:10.0468 2008 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:35:10.0468 2008 intelppm - ok
19:35:10.0515 2008 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:35:10.0531 2008 Ip6Fw - ok
19:35:10.0578 2008 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:35:10.0593 2008 IpFilterDriver - ok
19:35:10.0625 2008 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:35:10.0625 2008 IpInIp - ok
19:35:10.0656 2008 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:35:10.0671 2008 IpNat - ok
19:35:12.0640 2008 iPod Service (f62c69376a95795fe7cdb1c778edaca4) C:\Program Files\iPod\bin\iPodService.exe
19:35:12.0703 2008 iPod Service - ok
19:35:12.0734 2008 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:35:12.0734 2008 IPSec - ok
19:35:12.0781 2008 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:35:12.0781 2008 IRENUM - ok
19:35:12.0796 2008 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:35:12.0796 2008 isapnp - ok
19:35:12.0890 2008 JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Program Files\Java\jre6\bin\jqs.exe
19:35:12.0890 2008 JavaQuickStarterService - ok
19:35:12.0968 2008 k57w2k (997190701bd80dd0f4412ed202cc7816) C:\WINDOWS\system32\DRIVERS\k57xp32.sys
19:35:12.0984 2008 k57w2k - ok
19:35:13.0015 2008 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:35:13.0015 2008 Kbdclass - ok
19:35:13.0046 2008 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:35:13.0046 2008 kbdhid - ok
19:35:13.0062 2008 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:35:13.0062 2008 kmixer - ok
19:35:13.0109 2008 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:35:13.0109 2008 KSecDD - ok
19:35:13.0156 2008 LanmanServer (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
19:35:13.0156 2008 LanmanServer - ok
19:35:13.0203 2008 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
19:35:13.0203 2008 lanmanworkstation - ok
19:35:13.0203 2008 lbrtfdc - ok
19:35:13.0234 2008 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
19:35:13.0234 2008 LmHosts - ok
19:35:13.0296 2008 McAfee SiteAdvisor Service (6c3d154fff0a97a6c3d9f78d60c41655) c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
19:35:13.0312 2008 McAfee SiteAdvisor Service - ok
19:35:13.0375 2008 McComponentHostService (485405de203e88b3fe4294a2ea48d7ee) C:\Program Files\McAfee Security Scan\3.0.271\McCHSvc.exe
19:35:13.0390 2008 McComponentHostService - ok
19:35:13.0406 2008 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
19:35:13.0406 2008 Messenger - ok
19:35:13.0437 2008 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:35:13.0437 2008 mnmdd - ok
19:35:13.0468 2008 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
19:35:13.0468 2008 mnmsrvc - ok
19:35:13.0500 2008 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
19:35:13.0500 2008 Modem - ok
19:35:13.0515 2008 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:35:13.0515 2008 Mouclass - ok
19:35:13.0546 2008 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:35:13.0546 2008 mouhid - ok
19:35:13.0578 2008 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:35:13.0578 2008 MountMgr - ok
19:35:13.0609 2008 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:35:13.0609 2008 mraid35x - ok
19:35:13.0625 2008 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:35:13.0625 2008 MRxDAV - ok
19:35:13.0687 2008 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:35:13.0687 2008 MRxSmb - ok
19:35:13.0703 2008 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
19:35:13.0718 2008 MSDTC - ok
19:35:13.0718 2008 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:35:13.0718 2008 Msfs - ok
19:35:13.0734 2008 MSIServer - ok
19:35:13.0750 2008 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:35:13.0750 2008 MSKSSRV - ok
19:35:13.0750 2008 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:35:13.0750 2008 MSPCLOCK - ok
19:35:13.0765 2008 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:35:13.0765 2008 MSPQM - ok
19:35:13.0781 2008 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:35:13.0781 2008 mssmbios - ok
19:35:13.0796 2008 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
19:35:13.0796 2008 MSTEE - ok
19:35:13.0828 2008 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:35:13.0828 2008 Mup - ok
19:35:13.0859 2008 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:35:13.0859 2008 NABTSFEC - ok
19:35:13.0890 2008 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
19:35:13.0890 2008 napagent - ok
19:35:13.0968 2008 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:35:13.0968 2008 NDIS - ok
19:35:14.0000 2008 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:35:14.0000 2008 NdisIP - ok
19:35:14.0015 2008 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:35:14.0015 2008 NdisTapi - ok
19:35:14.0062 2008 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:35:14.0062 2008 Ndisuio - ok
19:35:14.0078 2008 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:35:14.0078 2008 NdisWan - ok
19:35:14.0109 2008 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:35:14.0109 2008 NDProxy - ok
19:35:14.0140 2008 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:35:14.0140 2008 NetBIOS - ok
19:35:14.0171 2008 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:35:14.0187 2008 NetBT - ok
19:35:14.0218 2008 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:35:14.0234 2008 NetDDE - ok
19:35:14.0234 2008 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:35:14.0234 2008 NetDDEdsdm - ok
19:35:14.0265 2008 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:14.0265 2008 Netlogon - ok
19:35:14.0312 2008 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
19:35:14.0328 2008 Netman - ok
19:35:14.0421 2008 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:35:14.0421 2008 NetTcpPortSharing - ok
19:35:14.0468 2008 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
19:35:14.0484 2008 Nla - ok
19:35:14.0546 2008 nosGetPlusHelper (1acf98d80e95add298832c7a8996b48c) C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
19:35:14.0546 2008 nosGetPlusHelper - ok
19:35:14.0578 2008 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:35:14.0578 2008 Npfs - ok
19:35:14.0640 2008 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:35:14.0656 2008 Ntfs - ok
19:35:14.0656 2008 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:14.0656 2008 NtLmSsp - ok
19:35:14.0703 2008 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
19:35:14.0718 2008 NtmsSvc - ok
19:35:14.0734 2008 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:35:14.0750 2008 Null - ok
19:35:14.0781 2008 NWCWorkstation (2c2fd0e6b0180f94c260dd26706aa5f4) C:\WINDOWS\System32\nwwks.dll
19:35:14.0781 2008 NWCWorkstation - ok
19:35:14.0781 2008 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:35:14.0796 2008 NwlnkFlt - ok
19:35:14.0828 2008 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:35:14.0828 2008 NwlnkFwd - ok
19:35:14.0843 2008 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
19:35:14.0843 2008 NwlnkIpx - ok
19:35:14.0843 2008 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
19:35:14.0843 2008 NwlnkNb - ok
19:35:14.0843 2008 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
19:35:14.0859 2008 NwlnkSpx - ok
19:35:14.0875 2008 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
19:35:14.0875 2008 NWRDR - ok
19:35:15.0015 2008 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:35:15.0031 2008 odserv - ok
19:35:15.0062 2008 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:35:15.0062 2008 ose - ok
19:35:15.0062 2008 P1100C_CT_CDI - ok
19:35:15.0093 2008 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
19:35:15.0093 2008 Parport - ok
19:35:15.0140 2008 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:35:15.0140 2008 PartMgr - ok
19:35:15.0171 2008 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
19:35:15.0171 2008 ParVdm - ok
19:35:15.0187 2008 PBADRV (4088c1ecd1f54281a92fa663b0fdc36f) C:\WINDOWS\system32\DRIVERS\PBADRV.sys
19:35:15.0187 2008 PBADRV - ok
19:35:15.0187 2008 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
19:35:15.0187 2008 PCI - ok
19:35:15.0203 2008 PCIDump - ok
19:35:15.0203 2008 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\drivers\PCIIde.sys
19:35:15.0203 2008 PCIIde - ok
19:35:15.0218 2008 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:35:15.0234 2008 Pcmcia - ok
19:35:15.0234 2008 PDCOMP - ok
19:35:15.0234 2008 PDFRAME - ok
19:35:15.0234 2008 PDRELI - ok
19:35:15.0234 2008 PDRFRAME - ok
19:35:15.0250 2008 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
19:35:15.0250 2008 perc2 - ok
19:35:15.0265 2008 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:35:15.0265 2008 perc2hib - ok
19:35:15.0296 2008 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:35:15.0296 2008 PlugPlay - ok
19:35:15.0328 2008 Pml Driver HPZ12 (9d84376931440f3679beef2a414fa493) C:\WINDOWS\system32\HPZipm12.exe
19:35:15.0328 2008 Pml Driver HPZ12 - ok
19:35:15.0343 2008 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:15.0359 2008 PolicyAgent - ok
19:35:15.0375 2008 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:35:15.0375 2008 PptpMiniport - ok
19:35:15.0375 2008 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:15.0375 2008 ProtectedStorage - ok
19:35:15.0375 2008 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:35:15.0375 2008 PSched - ok
19:35:15.0421 2008 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:35:15.0421 2008 Ptilink - ok
19:35:15.0437 2008 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:35:15.0437 2008 ql1080 - ok
19:35:15.0437 2008 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:35:15.0437 2008 Ql10wnt - ok
19:35:15.0453 2008 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:35:15.0453 2008 ql12160 - ok
19:35:15.0453 2008 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:35:15.0453 2008 ql1240 - ok
19:35:15.0468 2008 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:35:15.0468 2008 ql1280 - ok
19:35:15.0484 2008 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:35:15.0484 2008 RasAcd - ok
19:35:15.0515 2008 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
19:35:15.0515 2008 RasAuto - ok
19:35:15.0546 2008 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:35:15.0546 2008 Rasl2tp - ok
19:35:15.0593 2008 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
19:35:15.0609 2008 RasMan - ok
19:35:15.0625 2008 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:35:15.0625 2008 RasPppoe - ok
19:35:15.0640 2008 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:35:15.0640 2008 Raspti - ok
19:35:15.0656 2008 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:35:15.0656 2008 Rdbss - ok
19:35:15.0687 2008 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:35:15.0687 2008 RDPCDD - ok
19:35:15.0703 2008 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:35:15.0703 2008 rdpdr - ok
19:35:15.0734 2008 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
19:35:15.0734 2008 RDPWD - ok
19:35:15.0765 2008 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
19:35:15.0781 2008 RDSessMgr - ok
19:35:15.0796 2008 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:35:15.0796 2008 redbook - ok
19:35:15.0843 2008 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
19:35:15.0843 2008 RemoteAccess - ok
19:35:15.0859 2008 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
19:35:15.0859 2008 RemoteRegistry - ok
19:35:15.0875 2008 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
19:35:15.0875 2008 RpcLocator - ok
19:35:15.0937 2008 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:35:15.0937 2008 RpcSs - ok
19:35:16.0000 2008 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
19:35:16.0000 2008 RSVP - ok
19:35:16.0031 2008 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:16.0031 2008 SamSs - ok
19:35:16.0140 2008 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:35:16.0140 2008 SASDIFSV - ok
19:35:16.0156 2008 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:35:16.0156 2008 SASKUTIL - ok
19:35:16.0171 2008 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
19:35:16.0171 2008 SCardSvr - ok
19:35:16.0203 2008 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
19:35:16.0218 2008 Schedule - ok
19:35:16.0234 2008 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:35:16.0234 2008 Secdrv - ok
19:35:16.0250 2008 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
19:35:16.0250 2008 seclogon - ok
19:35:16.0359 2008 SecureStorageService (d7f978c1b6387544fe132eb5b915ed1a) C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe
19:35:16.0390 2008 SecureStorageService - ok
19:35:16.0406 2008 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
19:35:16.0406 2008 SENS - ok
19:35:16.0437 2008 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:35:16.0437 2008 Serenum - ok
19:35:16.0437 2008 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
19:35:16.0437 2008 Serial - ok
19:35:16.0468 2008 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:35:16.0468 2008 Sfloppy - ok
19:35:16.0484 2008 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
19:35:16.0500 2008 SharedAccess - ok
19:35:16.0546 2008 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:35:16.0546 2008 ShellHWDetection - ok
19:35:16.0546 2008 Simbad - ok
19:35:16.0562 2008 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:35:16.0562 2008 sisagp - ok
19:35:16.0578 2008 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:35:16.0578 2008 SLIP - ok
19:35:16.0640 2008 SophosVirusRemovalTool (c2471399f95fef9941480f98ea7bc126) C:\Program Files\Sophos\Sophos Virus Removal Tool\SVRTservice.exe
19:35:16.0656 2008 SophosVirusRemovalTool - ok
19:35:16.0671 2008 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
19:35:16.0671 2008 Sparrow - ok
19:35:16.0703 2008 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:35:16.0703 2008 splitter - ok
19:35:16.0734 2008 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
19:35:16.0734 2008 Spooler - ok
19:35:16.0781 2008 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:35:16.0781 2008 sr - ok
19:35:16.0812 2008 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
19:35:16.0828 2008 srservice - ok
19:35:16.0859 2008 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:35:16.0859 2008 Srv - ok
19:35:16.0890 2008 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
19:35:16.0906 2008 SSDPSRV - ok
19:35:16.0937 2008 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
19:35:16.0937 2008 StillCam - ok
19:35:16.0984 2008 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
19:35:17.0000 2008 stisvc - ok
19:35:17.0031 2008 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:35:17.0031 2008 streamip - ok
19:35:17.0062 2008 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:35:17.0062 2008 swenum - ok
19:35:17.0062 2008 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:35:17.0062 2008 swmidi - ok
19:35:17.0062 2008 SwPrv - ok
19:35:17.0109 2008 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
19:35:17.0109 2008 symc810 - ok
19:35:17.0125 2008 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:35:17.0125 2008 symc8xx - ok
19:35:17.0140 2008 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:35:17.0140 2008 sym_hi - ok
19:35:17.0140 2008 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:35:17.0140 2008 sym_u3 - ok
19:35:17.0171 2008 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:35:17.0171 2008 sysaudio - ok
19:35:17.0187 2008 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
19:35:17.0203 2008 SysmonLog - ok
19:35:17.0234 2008 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
19:35:17.0250 2008 TapiSrv - ok
19:35:17.0296 2008 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:35:17.0312 2008 Tcpip - ok
19:35:17.0421 2008 tcsd_win32.exe (69f1a38a6dbfe682491cb61a596662e3) C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
19:35:17.0453 2008 tcsd_win32.exe - ok
19:35:17.0625 2008 TdmService (a62f1de032e59c4bb35557a2219cb160) C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
19:35:17.0656 2008 TdmService - ok
19:35:17.0796 2008 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:35:17.0796 2008 TDPIPE - ok
19:35:17.0796 2008 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:35:17.0796 2008 TDTCP - ok
19:35:17.0812 2008 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:35:17.0812 2008 TermDD - ok
19:35:17.0859 2008 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
19:35:17.0890 2008 TermService - ok
19:35:17.0906 2008 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:35:17.0906 2008 Themes - ok
19:35:17.0937 2008 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
19:35:17.0937 2008 TlntSvr - ok
19:35:17.0953 2008 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
19:35:17.0953 2008 TosIde - ok
19:35:17.0984 2008 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
19:35:17.0984 2008 TrkWks - ok
19:35:18.0015 2008 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:35:18.0015 2008 Udfs - ok
19:35:18.0046 2008 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
19:35:18.0046 2008 ultra - ok
19:35:18.0093 2008 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:35:18.0093 2008 Update - ok
19:35:18.0218 2008 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
19:35:18.0234 2008 upnphost - ok
19:35:18.0234 2008 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
19:35:18.0250 2008 UPS - ok
19:35:18.0265 2008 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:35:18.0265 2008 usbccgp - ok
19:35:18.0296 2008 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:35:18.0312 2008 usbehci - ok
19:35:18.0343 2008 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:35:18.0343 2008 usbhub - ok
19:35:18.0375 2008 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:35:18.0375 2008 usbprint - ok
19:35:18.0406 2008 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:35:18.0406 2008 usbscan - ok
19:35:18.0437 2008 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:35:18.0437 2008 USBSTOR - ok
19:35:18.0468 2008 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:35:18.0468 2008 usbuhci - ok
19:35:18.0500 2008 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:35:18.0500 2008 VgaSave - ok
19:35:18.0531 2008 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:35:18.0531 2008 viaagp - ok
19:35:18.0546 2008 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
19:35:18.0546 2008 ViaIde - ok
19:35:18.0578 2008 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:35:18.0578 2008 VolSnap - ok
19:35:18.0609 2008 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
19:35:18.0625 2008 VSS - ok
19:35:18.0656 2008 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
19:35:18.0656 2008 w32time - ok
19:35:18.0703 2008 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:35:18.0703 2008 Wanarp - ok
19:35:18.0750 2008 WavxDMgr (e1369c7a53c76eb681afd0eba348b45a) C:\WINDOWS\system32\DRIVERS\WavxDMgr.sys
19:35:18.0750 2008 WavxDMgr - ok
19:35:18.0750 2008 WDICA - ok
19:35:18.0812 2008 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:35:18.0812 2008 wdmaud - ok
19:35:18.0921 2008 WeatherBlinkService (622fcf264119f7df127be353f796b319) C:\PROGRA~1\WEATHE~2\bar\3.bin\gcbarsvc.exe
19:35:18.0937 2008 WeatherBlinkService - ok
19:35:18.0968 2008 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
19:35:18.0968 2008 WebClient - ok
19:35:19.0031 2008 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:35:19.0031 2008 winmgmt - ok
19:35:19.0109 2008 WinRM (18f347402da544a780949b8fdf83351b) C:\WINDOWS\system32\WsmSvc.dll
19:35:19.0156 2008 WinRM - ok
19:35:19.0171 2008 WmdmPmSN (051b1bdecd6dee18c771b5d5ec7f044d) C:\WINDOWS\system32\MsPMSNSv.dll
19:35:19.0171 2008 WmdmPmSN - ok
19:35:19.0218 2008 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
19:35:19.0234 2008 Wmi - ok
19:35:19.0312 2008 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
19:35:19.0312 2008 WmiAcpi - ok
19:35:19.0359 2008 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:35:19.0359 2008 WmiApSrv - ok
19:35:19.0484 2008 WMPNetworkSvc (6bab4dc65515a098505f8b3d01fb6fe5) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:35:19.0625 2008 WMPNetworkSvc - ok
19:35:19.0640 2008 WpdUsb (c60dc16d4e406810fad54b98dc92d5ec) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:35:19.0640 2008 WpdUsb - ok
19:35:19.0671 2008 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
19:35:19.0687 2008 wscsvc - ok
19:35:19.0687 2008 WSearch - ok
19:35:19.0718 2008 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:35:19.0718 2008 WSTCODEC - ok
19:35:19.0750 2008 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
19:35:19.0750 2008 wuauserv - ok
19:35:19.0796 2008 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:35:19.0796 2008 WudfPf - ok
19:35:19.0812 2008 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:35:19.0812 2008 WudfRd - ok
19:35:19.0843 2008 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:35:19.0843 2008 WudfSvc - ok
19:35:19.0875 2008 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
19:35:19.0875 2008 WZCSVC - ok
19:35:19.0921 2008 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
19:35:19.0937 2008 xmlprov - ok
19:35:20.0031 2008 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:35:20.0046 2008 YahooAUService - ok
19:35:20.0078 2008 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
19:35:20.0390 2008 \Device\Harddisk0\DR0 - ok
19:35:20.0390 2008 Boot (0x1200) (719096aa1d94083fa6b47b8b47d8195c) \Device\Harddisk0\DR0\Partition0
19:35:20.0390 2008 \Device\Harddisk0\DR0\Partition0 - ok
19:35:20.0390 2008 ============================================================
19:35:20.0390 2008 Scan finished
19:35:20.0390 2008 ============================================================
19:35:20.0406 5812 Detected object count: 0
19:35:20.0406 5812 Actual detected object count: 0

#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:32 AM

Posted 20 June 2012 - 09:48 PM

Download Bootkit Remover to your Desktop.

  • Unzip downloaded file to your Desktop.
  • Double-click on boot_cleaner.exe to run the program (Vista/7 users,right click on boot_cleaner.exe and click Run As Administrator).
  • It will show a Black screen with some data on it.
  • Right click on the screen and click Select All.
  • Press CTRL+C
  • Open a Notepad and press CTRL+V
  • Post the output back here.



Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.


Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal/regular mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 Hoffmane21

Hoffmane21
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Morgan Hill, CA
  • Local time:02:32 AM

Posted 20 June 2012 - 10:46 PM

Here is the ESET report:

19:34:58.0531 2708 TDSS rootkit removing tool 2.7.40.0 Jun 15 2012 15:13:31
19:34:59.0000 2708 ============================================================
19:34:59.0000 2708 Current date / time: 2012/06/20 19:34:59.0000
19:34:59.0000 2708 SystemInfo:
19:34:59.0000 2708
19:34:59.0000 2708 OS Version: 5.1.2600 ServicePack: 3.0
19:34:59.0000 2708 Product type: Workstation
19:34:59.0000 2708 ComputerName: DAVID
19:34:59.0000 2708 UserName: David Ames
19:34:59.0000 2708 Windows directory: C:\WINDOWS
19:34:59.0000 2708 System windows directory: C:\WINDOWS
19:34:59.0000 2708 Processor architecture: Intel x86
19:34:59.0000 2708 Number of processors: 2
19:34:59.0000 2708 Page size: 0x1000
19:34:59.0000 2708 Boot type: Normal boot
19:34:59.0000 2708 ============================================================
19:35:01.0375 2708 Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
19:35:01.0390 2708 ============================================================
19:35:01.0390 2708 \Device\Harddisk0\DR0:
19:35:01.0390 2708 MBR partitions:
19:35:01.0390 2708 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x139C5, BlocksNum 0x129F1737
19:35:01.0390 2708 ============================================================
19:35:01.0437 2708 C: <-> \Device\Harddisk0\DR0\Partition0
19:35:01.0437 2708 ============================================================
19:35:01.0437 2708 Initialize success
19:35:01.0437 2708 ============================================================
19:35:02.0765 2008 ============================================================
19:35:02.0765 2008 Scan started
19:35:02.0765 2008 Mode: Manual;
19:35:02.0765 2008 ============================================================
19:35:03.0734 2008 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
19:35:03.0734 2008 !SASCORE - ok
19:35:03.0812 2008 Abiosdsk - ok
19:35:03.0843 2008 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
19:35:03.0843 2008 abp480n5 - ok
19:35:03.0890 2008 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
19:35:03.0890 2008 ACPI - ok
19:35:03.0921 2008 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
19:35:03.0921 2008 ACPIEC - ok
19:35:03.0953 2008 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
19:35:03.0953 2008 adpu160m - ok
19:35:04.0000 2008 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
19:35:04.0000 2008 aec - ok
19:35:04.0031 2008 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
19:35:04.0031 2008 AFD - ok
19:35:04.0078 2008 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\system32\DRIVERS\agp440.sys
19:35:04.0078 2008 agp440 - ok
19:35:04.0078 2008 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
19:35:04.0078 2008 agpCPQ - ok
19:35:04.0093 2008 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
19:35:04.0093 2008 Aha154x - ok
19:35:04.0125 2008 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
19:35:04.0125 2008 aic78u2 - ok
19:35:04.0140 2008 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
19:35:04.0140 2008 aic78xx - ok
19:35:04.0140 2008 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll
19:35:04.0156 2008 Alerter - ok
19:35:04.0187 2008 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe
19:35:04.0187 2008 ALG - ok
19:35:04.0218 2008 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
19:35:04.0218 2008 AliIde - ok
19:35:04.0234 2008 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\system32\DRIVERS\alim1541.sys
19:35:04.0234 2008 alim1541 - ok
19:35:04.0250 2008 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\system32\DRIVERS\amdagp.sys
19:35:04.0250 2008 amdagp - ok
19:35:04.0265 2008 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
19:35:04.0265 2008 amsint - ok
19:35:04.0359 2008 Apple Mobile Device (20f6f19fe9e753f2780dc2fa083ad597) C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
19:35:04.0359 2008 Apple Mobile Device - ok
19:35:04.0390 2008 AppMgmt (d8849f77c0b66226335a59d26cb4edc6) C:\WINDOWS\System32\appmgmts.dll
19:35:04.0421 2008 AppMgmt - ok
19:35:04.0437 2008 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
19:35:04.0437 2008 asc - ok
19:35:04.0453 2008 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
19:35:04.0453 2008 asc3350p - ok
19:35:04.0468 2008 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
19:35:04.0468 2008 asc3550 - ok
19:35:04.0515 2008 aspnet_state (0e5e4957549056e2bf2c49f4f6b601ad) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe
19:35:04.0531 2008 aspnet_state - ok
19:35:04.0546 2008 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
19:35:04.0546 2008 AsyncMac - ok
19:35:04.0593 2008 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
19:35:04.0593 2008 atapi - ok
19:35:04.0593 2008 Atdisk - ok
19:35:04.0625 2008 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
19:35:04.0625 2008 Atmarpc - ok
19:35:04.0656 2008 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll
19:35:04.0656 2008 AudioSrv - ok
19:35:04.0671 2008 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
19:35:04.0671 2008 audstub - ok
19:35:04.0765 2008 BBSvc (01a24b415926bb5f772dbe12459d97de) C:\Program Files\Microsoft\BingBar\BBSvc.EXE
19:35:04.0781 2008 BBSvc - ok
19:35:04.0828 2008 BBUpdate (785de7abda13309d6065305542829e76) C:\Program Files\Microsoft\BingBar\SeaPort.EXE
19:35:04.0828 2008 BBUpdate - ok
19:35:04.0875 2008 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
19:35:04.0875 2008 Beep - ok
19:35:04.0906 2008 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll
19:35:04.0953 2008 BITS - ok
19:35:04.0984 2008 Blfp (3edae8e7b40257da798c6952edb26eb0) C:\WINDOWS\system32\DRIVERS\baspxp32.sys
19:35:04.0984 2008 Blfp - ok
19:35:05.0062 2008 Bonjour Service (1c87705ccb2f60172b0fc86b5d82f00d) C:\Program Files\Bonjour\mDNSResponder.exe
19:35:05.0078 2008 Bonjour Service - ok
19:35:05.0109 2008 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll
19:35:05.0109 2008 Browser - ok
19:35:05.0140 2008 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
19:35:05.0140 2008 cbidf - ok
19:35:05.0140 2008 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
19:35:05.0140 2008 cbidf2k - ok
19:35:05.0171 2008 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
19:35:05.0171 2008 CCDECODE - ok
19:35:05.0203 2008 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
19:35:05.0203 2008 cd20xrnt - ok
19:35:05.0218 2008 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
19:35:05.0234 2008 Cdaudio - ok
19:35:05.0234 2008 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
19:35:05.0234 2008 Cdfs - ok
19:35:05.0281 2008 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
19:35:05.0281 2008 Cdrom - ok
19:35:05.0281 2008 cerc6 - ok
19:35:05.0296 2008 Changer - ok
19:35:05.0328 2008 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe
19:35:05.0328 2008 CiSvc - ok
19:35:05.0343 2008 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe
19:35:05.0343 2008 ClipSrv - ok
19:35:05.0406 2008 clr_optimization_v2.0.50727_32 (d87acaed61e417bba546ced5e7e36d9c) C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
19:35:05.0421 2008 clr_optimization_v2.0.50727_32 - ok
19:35:05.0421 2008 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
19:35:05.0437 2008 CmdIde - ok
19:35:05.0437 2008 COMSysApp - ok
19:35:05.0453 2008 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
19:35:05.0453 2008 Cpqarray - ok
19:35:05.0484 2008 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll
19:35:05.0484 2008 CryptSvc - ok
19:35:05.0515 2008 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
19:35:05.0531 2008 dac2w2k - ok
19:35:05.0531 2008 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
19:35:05.0531 2008 dac960nt - ok
19:35:05.0578 2008 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:35:05.0609 2008 DcomLaunch - ok
19:35:05.0656 2008 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll
19:35:05.0656 2008 Dhcp - ok
19:35:05.0687 2008 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
19:35:05.0687 2008 Disk - ok
19:35:05.0687 2008 dmadmin - ok
19:35:05.0750 2008 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
19:35:05.0781 2008 dmboot - ok
19:35:05.0796 2008 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\DRIVERS\dmio.sys
19:35:05.0796 2008 dmio - ok
19:35:05.0812 2008 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
19:35:05.0812 2008 dmload - ok
19:35:05.0828 2008 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll
19:35:05.0828 2008 dmserver - ok
19:35:05.0875 2008 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
19:35:05.0875 2008 DMusic - ok
19:35:05.0906 2008 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll
19:35:05.0906 2008 Dnscache - ok
19:35:05.0921 2008 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll
19:35:05.0937 2008 Dot3svc - ok
19:35:05.0937 2008 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
19:35:05.0953 2008 dpti2o - ok
19:35:05.0953 2008 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
19:35:05.0953 2008 drmkaud - ok
19:35:05.0968 2008 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll
19:35:05.0984 2008 EapHost - ok
19:35:05.0984 2008 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll
19:35:05.0984 2008 ERSvc - ok
19:35:06.0015 2008 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:35:06.0031 2008 Eventlog - ok
19:35:06.0062 2008 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll
19:35:06.0062 2008 EventSystem - ok
19:35:06.0078 2008 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
19:35:06.0078 2008 Fastfat - ok
19:35:06.0109 2008 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:35:06.0125 2008 FastUserSwitchingCompatibility - ok
19:35:06.0171 2008 Fax (e97d6a8684466df94ff3bc24fb787a07) C:\WINDOWS\system32\fxssvc.exe
19:35:06.0171 2008 Fax - ok
19:35:06.0203 2008 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys
19:35:06.0203 2008 Fdc - ok
19:35:06.0234 2008 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
19:35:06.0234 2008 Fips - ok
19:35:06.0328 2008 FLEXnet Licensing Service (f76d04f7413b07daa029f6520b64b4e8) C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
19:35:06.0359 2008 FLEXnet Licensing Service - ok
19:35:06.0390 2008 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys
19:35:06.0390 2008 Flpydisk - ok
19:35:06.0421 2008 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
19:35:06.0421 2008 FltMgr - ok
19:35:06.0750 2008 FontCache3.0.0.0 (8ba7c024070f2b7fdd98ed8a4ba41789) C:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
19:35:06.0750 2008 FontCache3.0.0.0 - ok
19:35:06.0765 2008 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
19:35:06.0765 2008 Fs_Rec - ok
19:35:06.0781 2008 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
19:35:06.0781 2008 Ftdisk - ok
19:35:06.0828 2008 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
19:35:06.0828 2008 GEARAspiWDM - ok
19:35:06.0843 2008 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
19:35:06.0859 2008 Gpc - ok
19:35:06.0921 2008 gupdate (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:35:06.0921 2008 gupdate - ok
19:35:06.0921 2008 gupdatem (f02a533f517eb38333cb12a9e8963773) C:\Program Files\Google\Update\GoogleUpdate.exe
19:35:06.0921 2008 gupdatem - ok
19:35:06.0984 2008 gusvc (cc839e8d766cc31a7710c9f38cf3e375) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe
19:35:06.0984 2008 gusvc - ok
19:35:07.0078 2008 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
19:35:07.0078 2008 HDAudBus - ok
19:35:07.0140 2008 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
19:35:07.0140 2008 helpsvc - ok
19:35:07.0156 2008 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll
19:35:07.0156 2008 HidServ - ok
19:35:07.0187 2008 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
19:35:07.0187 2008 hidusb - ok
19:35:07.0218 2008 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll
19:35:07.0218 2008 hkmsvc - ok
19:35:07.0234 2008 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
19:35:07.0234 2008 hpn - ok
19:35:07.0250 2008 HPZid412 (9f1d80908658eb7f1bf70809e0b51470) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
19:35:07.0265 2008 HPZid412 - ok
19:35:07.0265 2008 HPZipr12 (f7e3e9d50f9cd3de28085a8fdaa0a1c3) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
19:35:07.0265 2008 HPZipr12 - ok
19:35:07.0296 2008 HPZius12 (cf1b7951b4ec8d13f3c93b74bb2b461b) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
19:35:07.0296 2008 HPZius12 - ok
19:35:07.0343 2008 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
19:35:07.0359 2008 HTTP - ok
19:35:07.0390 2008 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll
19:35:07.0406 2008 HTTPFilter - ok
19:35:07.0421 2008 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys
19:35:07.0421 2008 i2omgmt - ok
19:35:07.0453 2008 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\system32\DRIVERS\i2omp.sys
19:35:07.0453 2008 i2omp - ok
19:35:07.0734 2008 ialm (a01bb8da8d73bca83702a4cf1cd56dce) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
19:35:07.0859 2008 ialm - ok
19:35:08.0109 2008 idsvc (c01ac32dc5c03076cfb852cb5da5229c) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
19:35:08.0140 2008 idsvc - ok
19:35:08.0218 2008 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
19:35:08.0218 2008 Imapi - ok
19:35:08.0265 2008 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe
19:35:08.0265 2008 ImapiService - ok
19:35:08.0281 2008 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
19:35:08.0281 2008 ini910u - ok
19:35:08.0531 2008 IntcAzAudAddService (9126d796a5101765650cc39d99c5ace7) C:\WINDOWS\system32\drivers\RtDHDAud.sys
19:35:09.0500 2008 IntcAzAudAddService - ok
19:35:10.0359 2008 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\system32\DRIVERS\intelide.sys
19:35:10.0359 2008 IntelIde - ok
19:35:10.0468 2008 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
19:35:10.0468 2008 intelppm - ok
19:35:10.0515 2008 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
19:35:10.0531 2008 Ip6Fw - ok
19:35:10.0578 2008 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
19:35:10.0593 2008 IpFilterDriver - ok
19:35:10.0625 2008 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
19:35:10.0625 2008 IpInIp - ok
19:35:10.0656 2008 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
19:35:10.0671 2008 IpNat - ok
19:35:12.0640 2008 iPod Service (f62c69376a95795fe7cdb1c778edaca4) C:\Program Files\iPod\bin\iPodService.exe
19:35:12.0703 2008 iPod Service - ok
19:35:12.0734 2008 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
19:35:12.0734 2008 IPSec - ok
19:35:12.0781 2008 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
19:35:12.0781 2008 IRENUM - ok
19:35:12.0796 2008 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
19:35:12.0796 2008 isapnp - ok
19:35:12.0890 2008 JavaQuickStarterService (381b25dc8e958d905b33130d500bbf29) C:\Program Files\Java\jre6\bin\jqs.exe
19:35:12.0890 2008 JavaQuickStarterService - ok
19:35:12.0968 2008 k57w2k (997190701bd80dd0f4412ed202cc7816) C:\WINDOWS\system32\DRIVERS\k57xp32.sys
19:35:12.0984 2008 k57w2k - ok
19:35:13.0015 2008 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
19:35:13.0015 2008 Kbdclass - ok
19:35:13.0046 2008 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
19:35:13.0046 2008 kbdhid - ok
19:35:13.0062 2008 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
19:35:13.0062 2008 kmixer - ok
19:35:13.0109 2008 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
19:35:13.0109 2008 KSecDD - ok
19:35:13.0156 2008 LanmanServer (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll
19:35:13.0156 2008 LanmanServer - ok
19:35:13.0203 2008 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll
19:35:13.0203 2008 lanmanworkstation - ok
19:35:13.0203 2008 lbrtfdc - ok
19:35:13.0234 2008 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll
19:35:13.0234 2008 LmHosts - ok
19:35:13.0296 2008 McAfee SiteAdvisor Service (6c3d154fff0a97a6c3d9f78d60c41655) c:\PROGRA~1\mcafee\SITEAD~1\mcsacore.exe
19:35:13.0312 2008 McAfee SiteAdvisor Service - ok
19:35:13.0375 2008 McComponentHostService (485405de203e88b3fe4294a2ea48d7ee) C:\Program Files\McAfee Security Scan\3.0.271\McCHSvc.exe
19:35:13.0390 2008 McComponentHostService - ok
19:35:13.0406 2008 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll
19:35:13.0406 2008 Messenger - ok
19:35:13.0437 2008 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
19:35:13.0437 2008 mnmdd - ok
19:35:13.0468 2008 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe
19:35:13.0468 2008 mnmsrvc - ok
19:35:13.0500 2008 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
19:35:13.0500 2008 Modem - ok
19:35:13.0515 2008 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
19:35:13.0515 2008 Mouclass - ok
19:35:13.0546 2008 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
19:35:13.0546 2008 mouhid - ok
19:35:13.0578 2008 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
19:35:13.0578 2008 MountMgr - ok
19:35:13.0609 2008 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
19:35:13.0609 2008 mraid35x - ok
19:35:13.0625 2008 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
19:35:13.0625 2008 MRxDAV - ok
19:35:13.0687 2008 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
19:35:13.0687 2008 MRxSmb - ok
19:35:13.0703 2008 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe
19:35:13.0718 2008 MSDTC - ok
19:35:13.0718 2008 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
19:35:13.0718 2008 Msfs - ok
19:35:13.0734 2008 MSIServer - ok
19:35:13.0750 2008 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
19:35:13.0750 2008 MSKSSRV - ok
19:35:13.0750 2008 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
19:35:13.0750 2008 MSPCLOCK - ok
19:35:13.0765 2008 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
19:35:13.0765 2008 MSPQM - ok
19:35:13.0781 2008 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
19:35:13.0781 2008 mssmbios - ok
19:35:13.0796 2008 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys
19:35:13.0796 2008 MSTEE - ok
19:35:13.0828 2008 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
19:35:13.0828 2008 Mup - ok
19:35:13.0859 2008 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
19:35:13.0859 2008 NABTSFEC - ok
19:35:13.0890 2008 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll
19:35:13.0890 2008 napagent - ok
19:35:13.0968 2008 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
19:35:13.0968 2008 NDIS - ok
19:35:14.0000 2008 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
19:35:14.0000 2008 NdisIP - ok
19:35:14.0015 2008 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
19:35:14.0015 2008 NdisTapi - ok
19:35:14.0062 2008 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
19:35:14.0062 2008 Ndisuio - ok
19:35:14.0078 2008 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
19:35:14.0078 2008 NdisWan - ok
19:35:14.0109 2008 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
19:35:14.0109 2008 NDProxy - ok
19:35:14.0140 2008 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
19:35:14.0140 2008 NetBIOS - ok
19:35:14.0171 2008 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
19:35:14.0187 2008 NetBT - ok
19:35:14.0218 2008 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:35:14.0234 2008 NetDDE - ok
19:35:14.0234 2008 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe
19:35:14.0234 2008 NetDDEdsdm - ok
19:35:14.0265 2008 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:14.0265 2008 Netlogon - ok
19:35:14.0312 2008 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll
19:35:14.0328 2008 Netman - ok
19:35:14.0421 2008 NetTcpPortSharing (d34612c5d02d026535b3095d620626ae) C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
19:35:14.0421 2008 NetTcpPortSharing - ok
19:35:14.0468 2008 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll
19:35:14.0484 2008 Nla - ok
19:35:14.0546 2008 nosGetPlusHelper (1acf98d80e95add298832c7a8996b48c) C:\Program Files\NOS\bin\getPlus_Helper_3004.dll
19:35:14.0546 2008 nosGetPlusHelper - ok
19:35:14.0578 2008 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
19:35:14.0578 2008 Npfs - ok
19:35:14.0640 2008 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
19:35:14.0656 2008 Ntfs - ok
19:35:14.0656 2008 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:14.0656 2008 NtLmSsp - ok
19:35:14.0703 2008 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll
19:35:14.0718 2008 NtmsSvc - ok
19:35:14.0734 2008 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
19:35:14.0750 2008 Null - ok
19:35:14.0781 2008 NWCWorkstation (2c2fd0e6b0180f94c260dd26706aa5f4) C:\WINDOWS\System32\nwwks.dll
19:35:14.0781 2008 NWCWorkstation - ok
19:35:14.0781 2008 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
19:35:14.0796 2008 NwlnkFlt - ok
19:35:14.0828 2008 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
19:35:14.0828 2008 NwlnkFwd - ok
19:35:14.0843 2008 NwlnkIpx (8b8b1be2dba4025da6786c645f77f123) C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys
19:35:14.0843 2008 NwlnkIpx - ok
19:35:14.0843 2008 NwlnkNb (56d34a67c05e94e16377c60609741ff8) C:\WINDOWS\system32\DRIVERS\nwlnknb.sys
19:35:14.0843 2008 NwlnkNb - ok
19:35:14.0843 2008 NwlnkSpx (c0bb7d1615e1acbdc99757f6ceaf8cf0) C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys
19:35:14.0859 2008 NwlnkSpx - ok
19:35:14.0875 2008 NWRDR (36b9b950e3d2e100970a48d8bad86740) C:\WINDOWS\system32\DRIVERS\nwrdr.sys
19:35:14.0875 2008 NWRDR - ok
19:35:15.0015 2008 odserv (785f487a64950f3cb8e9f16253ba3b7b) C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
19:35:15.0031 2008 odserv - ok
19:35:15.0062 2008 ose (5a432a042dae460abe7199b758e8606c) C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
19:35:15.0062 2008 ose - ok
19:35:15.0062 2008 P1100C_CT_CDI - ok
19:35:15.0093 2008 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys
19:35:15.0093 2008 Parport - ok
19:35:15.0140 2008 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
19:35:15.0140 2008 PartMgr - ok
19:35:15.0171 2008 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
19:35:15.0171 2008 ParVdm - ok
19:35:15.0187 2008 PBADRV (4088c1ecd1f54281a92fa663b0fdc36f) C:\WINDOWS\system32\DRIVERS\PBADRV.sys
19:35:15.0187 2008 PBADRV - ok
19:35:15.0187 2008 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
19:35:15.0187 2008 PCI - ok
19:35:15.0203 2008 PCIDump - ok
19:35:15.0203 2008 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\drivers\PCIIde.sys
19:35:15.0203 2008 PCIIde - ok
19:35:15.0218 2008 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
19:35:15.0234 2008 Pcmcia - ok
19:35:15.0234 2008 PDCOMP - ok
19:35:15.0234 2008 PDFRAME - ok
19:35:15.0234 2008 PDRELI - ok
19:35:15.0234 2008 PDRFRAME - ok
19:35:15.0250 2008 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
19:35:15.0250 2008 perc2 - ok
19:35:15.0265 2008 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
19:35:15.0265 2008 perc2hib - ok
19:35:15.0296 2008 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe
19:35:15.0296 2008 PlugPlay - ok
19:35:15.0328 2008 Pml Driver HPZ12 (9d84376931440f3679beef2a414fa493) C:\WINDOWS\system32\HPZipm12.exe
19:35:15.0328 2008 Pml Driver HPZ12 - ok
19:35:15.0343 2008 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:15.0359 2008 PolicyAgent - ok
19:35:15.0375 2008 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
19:35:15.0375 2008 PptpMiniport - ok
19:35:15.0375 2008 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:15.0375 2008 ProtectedStorage - ok
19:35:15.0375 2008 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
19:35:15.0375 2008 PSched - ok
19:35:15.0421 2008 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
19:35:15.0421 2008 Ptilink - ok
19:35:15.0437 2008 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
19:35:15.0437 2008 ql1080 - ok
19:35:15.0437 2008 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
19:35:15.0437 2008 Ql10wnt - ok
19:35:15.0453 2008 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
19:35:15.0453 2008 ql12160 - ok
19:35:15.0453 2008 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
19:35:15.0453 2008 ql1240 - ok
19:35:15.0468 2008 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
19:35:15.0468 2008 ql1280 - ok
19:35:15.0484 2008 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
19:35:15.0484 2008 RasAcd - ok
19:35:15.0515 2008 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll
19:35:15.0515 2008 RasAuto - ok
19:35:15.0546 2008 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
19:35:15.0546 2008 Rasl2tp - ok
19:35:15.0593 2008 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll
19:35:15.0609 2008 RasMan - ok
19:35:15.0625 2008 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
19:35:15.0625 2008 RasPppoe - ok
19:35:15.0640 2008 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
19:35:15.0640 2008 Raspti - ok
19:35:15.0656 2008 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
19:35:15.0656 2008 Rdbss - ok
19:35:15.0687 2008 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
19:35:15.0687 2008 RDPCDD - ok
19:35:15.0703 2008 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
19:35:15.0703 2008 rdpdr - ok
19:35:15.0734 2008 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys
19:35:15.0734 2008 RDPWD - ok
19:35:15.0765 2008 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe
19:35:15.0781 2008 RDSessMgr - ok
19:35:15.0796 2008 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys
19:35:15.0796 2008 redbook - ok
19:35:15.0843 2008 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll
19:35:15.0843 2008 RemoteAccess - ok
19:35:15.0859 2008 RemoteRegistry (5b19b557b0c188210a56a6b699d90b8f) C:\WINDOWS\system32\regsvc.dll
19:35:15.0859 2008 RemoteRegistry - ok
19:35:15.0875 2008 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe
19:35:15.0875 2008 RpcLocator - ok
19:35:15.0937 2008 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll
19:35:15.0937 2008 RpcSs - ok
19:35:16.0000 2008 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe
19:35:16.0000 2008 RSVP - ok
19:35:16.0031 2008 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe
19:35:16.0031 2008 SamSs - ok
19:35:16.0140 2008 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
19:35:16.0140 2008 SASDIFSV - ok
19:35:16.0156 2008 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
19:35:16.0156 2008 SASKUTIL - ok
19:35:16.0171 2008 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe
19:35:16.0171 2008 SCardSvr - ok
19:35:16.0203 2008 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll
19:35:16.0218 2008 Schedule - ok
19:35:16.0234 2008 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
19:35:16.0234 2008 Secdrv - ok
19:35:16.0250 2008 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll
19:35:16.0250 2008 seclogon - ok
19:35:16.0359 2008 SecureStorageService (d7f978c1b6387544fe132eb5b915ed1a) C:\Program Files\Wave Systems Corp\Secure Storage Manager\SecureStorageService.exe
19:35:16.0390 2008 SecureStorageService - ok
19:35:16.0406 2008 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll
19:35:16.0406 2008 SENS - ok
19:35:16.0437 2008 Serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys
19:35:16.0437 2008 Serenum - ok
19:35:16.0437 2008 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys
19:35:16.0437 2008 Serial - ok
19:35:16.0468 2008 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
19:35:16.0468 2008 Sfloppy - ok
19:35:16.0484 2008 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll
19:35:16.0500 2008 SharedAccess - ok
19:35:16.0546 2008 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:35:16.0546 2008 ShellHWDetection - ok
19:35:16.0546 2008 Simbad - ok
19:35:16.0562 2008 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\system32\DRIVERS\sisagp.sys
19:35:16.0562 2008 sisagp - ok
19:35:16.0578 2008 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys
19:35:16.0578 2008 SLIP - ok
19:35:16.0640 2008 SophosVirusRemovalTool (c2471399f95fef9941480f98ea7bc126) C:\Program Files\Sophos\Sophos Virus Removal Tool\SVRTservice.exe
19:35:16.0656 2008 SophosVirusRemovalTool - ok
19:35:16.0671 2008 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
19:35:16.0671 2008 Sparrow - ok
19:35:16.0703 2008 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
19:35:16.0703 2008 splitter - ok
19:35:16.0734 2008 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe
19:35:16.0734 2008 Spooler - ok
19:35:16.0781 2008 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
19:35:16.0781 2008 sr - ok
19:35:16.0812 2008 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll
19:35:16.0828 2008 srservice - ok
19:35:16.0859 2008 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
19:35:16.0859 2008 Srv - ok
19:35:16.0890 2008 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll
19:35:16.0906 2008 SSDPSRV - ok
19:35:16.0937 2008 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
19:35:16.0937 2008 StillCam - ok
19:35:16.0984 2008 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll
19:35:17.0000 2008 stisvc - ok
19:35:17.0031 2008 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
19:35:17.0031 2008 streamip - ok
19:35:17.0062 2008 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
19:35:17.0062 2008 swenum - ok
19:35:17.0062 2008 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
19:35:17.0062 2008 swmidi - ok
19:35:17.0062 2008 SwPrv - ok
19:35:17.0109 2008 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
19:35:17.0109 2008 symc810 - ok
19:35:17.0125 2008 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
19:35:17.0125 2008 symc8xx - ok
19:35:17.0140 2008 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
19:35:17.0140 2008 sym_hi - ok
19:35:17.0140 2008 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
19:35:17.0140 2008 sym_u3 - ok
19:35:17.0171 2008 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
19:35:17.0171 2008 sysaudio - ok
19:35:17.0187 2008 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe
19:35:17.0203 2008 SysmonLog - ok
19:35:17.0234 2008 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll
19:35:17.0250 2008 TapiSrv - ok
19:35:17.0296 2008 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
19:35:17.0312 2008 Tcpip - ok
19:35:17.0421 2008 tcsd_win32.exe (69f1a38a6dbfe682491cb61a596662e3) C:\Program Files\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe
19:35:17.0453 2008 tcsd_win32.exe - ok
19:35:17.0625 2008 TdmService (a62f1de032e59c4bb35557a2219cb160) C:\Program Files\Wave Systems Corp\Trusted Drive Manager\TdmService.exe
19:35:17.0656 2008 TdmService - ok
19:35:17.0796 2008 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
19:35:17.0796 2008 TDPIPE - ok
19:35:17.0796 2008 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
19:35:17.0796 2008 TDTCP - ok
19:35:17.0812 2008 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
19:35:17.0812 2008 TermDD - ok
19:35:17.0859 2008 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll
19:35:17.0890 2008 TermService - ok
19:35:17.0906 2008 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll
19:35:17.0906 2008 Themes - ok
19:35:17.0937 2008 TlntSvr (db7205804759ff62c34e3efd8a4cc76a) C:\WINDOWS\system32\tlntsvr.exe
19:35:17.0937 2008 TlntSvr - ok
19:35:17.0953 2008 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
19:35:17.0953 2008 TosIde - ok
19:35:17.0984 2008 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll
19:35:17.0984 2008 TrkWks - ok
19:35:18.0015 2008 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
19:35:18.0015 2008 Udfs - ok
19:35:18.0046 2008 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
19:35:18.0046 2008 ultra - ok
19:35:18.0093 2008 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
19:35:18.0093 2008 Update - ok
19:35:18.0218 2008 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll
19:35:18.0234 2008 upnphost - ok
19:35:18.0234 2008 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe
19:35:18.0250 2008 UPS - ok
19:35:18.0265 2008 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
19:35:18.0265 2008 usbccgp - ok
19:35:18.0296 2008 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
19:35:18.0312 2008 usbehci - ok
19:35:18.0343 2008 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
19:35:18.0343 2008 usbhub - ok
19:35:18.0375 2008 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
19:35:18.0375 2008 usbprint - ok
19:35:18.0406 2008 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
19:35:18.0406 2008 usbscan - ok
19:35:18.0437 2008 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
19:35:18.0437 2008 USBSTOR - ok
19:35:18.0468 2008 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
19:35:18.0468 2008 usbuhci - ok
19:35:18.0500 2008 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
19:35:18.0500 2008 VgaSave - ok
19:35:18.0531 2008 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\system32\DRIVERS\viaagp.sys
19:35:18.0531 2008 viaagp - ok
19:35:18.0546 2008 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\system32\DRIVERS\viaide.sys
19:35:18.0546 2008 ViaIde - ok
19:35:18.0578 2008 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
19:35:18.0578 2008 VolSnap - ok
19:35:18.0609 2008 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe
19:35:18.0625 2008 VSS - ok
19:35:18.0656 2008 w32time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll
19:35:18.0656 2008 w32time - ok
19:35:18.0703 2008 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
19:35:18.0703 2008 Wanarp - ok
19:35:18.0750 2008 WavxDMgr (e1369c7a53c76eb681afd0eba348b45a) C:\WINDOWS\system32\DRIVERS\WavxDMgr.sys
19:35:18.0750 2008 WavxDMgr - ok
19:35:18.0750 2008 WDICA - ok
19:35:18.0812 2008 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
19:35:18.0812 2008 wdmaud - ok
19:35:18.0921 2008 WeatherBlinkService (622fcf264119f7df127be353f796b319) C:\PROGRA~1\WEATHE~2\bar\3.bin\gcbarsvc.exe
19:35:18.0937 2008 WeatherBlinkService - ok
19:35:18.0968 2008 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll
19:35:18.0968 2008 WebClient - ok
19:35:19.0031 2008 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll
19:35:19.0031 2008 winmgmt - ok
19:35:19.0109 2008 WinRM (18f347402da544a780949b8fdf83351b) C:\WINDOWS\system32\WsmSvc.dll
19:35:19.0156 2008 WinRM - ok
19:35:19.0171 2008 WmdmPmSN (051b1bdecd6dee18c771b5d5ec7f044d) C:\WINDOWS\system32\MsPMSNSv.dll
19:35:19.0171 2008 WmdmPmSN - ok
19:35:19.0218 2008 Wmi (e76f8807070ed04e7408a86d6d3a6137) C:\WINDOWS\System32\advapi32.dll
19:35:19.0234 2008 Wmi - ok
19:35:19.0312 2008 WmiAcpi (c42584fd66ce9e17403aebca199f7bdb) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
19:35:19.0312 2008 WmiAcpi - ok
19:35:19.0359 2008 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe
19:35:19.0359 2008 WmiApSrv - ok
19:35:19.0484 2008 WMPNetworkSvc (6bab4dc65515a098505f8b3d01fb6fe5) C:\Program Files\Windows Media Player\WMPNetwk.exe
19:35:19.0625 2008 WMPNetworkSvc - ok
19:35:19.0640 2008 WpdUsb (c60dc16d4e406810fad54b98dc92d5ec) C:\WINDOWS\system32\DRIVERS\wpdusb.sys
19:35:19.0640 2008 WpdUsb - ok
19:35:19.0671 2008 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll
19:35:19.0687 2008 wscsvc - ok
19:35:19.0687 2008 WSearch - ok
19:35:19.0718 2008 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
19:35:19.0718 2008 WSTCODEC - ok
19:35:19.0750 2008 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll
19:35:19.0750 2008 wuauserv - ok
19:35:19.0796 2008 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
19:35:19.0796 2008 WudfPf - ok
19:35:19.0812 2008 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
19:35:19.0812 2008 WudfRd - ok
19:35:19.0843 2008 WudfSvc (05231c04253c5bc30b26cbaae680ed89) C:\WINDOWS\System32\WUDFSvc.dll
19:35:19.0843 2008 WudfSvc - ok
19:35:19.0875 2008 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll
19:35:19.0875 2008 WZCSVC - ok
19:35:19.0921 2008 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll
19:35:19.0937 2008 xmlprov - ok
19:35:20.0031 2008 YahooAUService (dd0042f0c3b606a6a8b92d49afb18ad6) C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
19:35:20.0046 2008 YahooAUService - ok
19:35:20.0078 2008 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
19:35:20.0390 2008 \Device\Harddisk0\DR0 - ok
19:35:20.0390 2008 Boot (0x1200) (719096aa1d94083fa6b47b8b47d8195c) \Device\Harddisk0\DR0\Partition0
19:35:20.0390 2008 \Device\Harddisk0\DR0\Partition0 - ok
19:35:20.0390 2008 ============================================================
19:35:20.0390 2008 Scan finished
19:35:20.0390 2008 ============================================================
19:35:20.0406 5812 Detected object count: 0
19:35:20.0406 5812 Actual detected object count: 0

#7 Hoffmane21

Hoffmane21
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Morgan Hill, CA
  • Local time:02:32 AM

Posted 20 June 2012 - 10:53 PM

Bootkit:
Bootkit Remover
© 2009 Esage Lab
www.esagelab.com

Program version: 1.2.0.1
OS Version: Microsoft Windows XP Professional Service Pack 3 (build 2600)

System volume is \\.\C:
\\.\C: -> \\.\PhysicalDrive0 at offset 0x00000000`02738a00
Boot sector MD5 is: 6def5ffcbcdbdb4082f1015625e597bd

Size Device Name MBR Status
--------------------------------------------
149 GB \\.\PhysicalDrive0 OK (DOS/Win32 Boot code found)


Done;
Press any key to quit...

#8 Hoffmane21

Hoffmane21
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Morgan Hill, CA
  • Local time:02:32 AM

Posted 20 June 2012 - 11:03 PM

RKill does not run, did not work on any link...When I click RUN it does nothing.

#9 Hoffmane21

Hoffmane21
  • Topic Starter

  • Members
  • 22 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:Morgan Hill, CA
  • Local time:02:32 AM

Posted 20 June 2012 - 11:23 PM

Malwarebytes Anti-Malware 1.61.0.1400
www.malwarebytes.org

Database version: v2012.06.21.01

Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
David Ames :: DAVID [administrator]

6/20/2012 9:06:46 PM
mbam-log-2012-06-20 (21-06-46).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 310816
Time elapsed: 10 minute(s), 18 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 3
C:\Program Files\WeatherBlink\bar\3.bin\gcSrcAs.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcbar.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcradio.dll (PUP.MyWebSearch) -> No action taken.

Registry Keys Detected: 53
HKCR\CLSID\{8ba2cfef-a1bc-4964-aadc-33be1ae5a33c} (PUP.MyWebSearch) -> No action taken.
HKCR\CLSID\{9b9dcae3-be34-424c-8d73-75e305a9e091} (PUP.MyWebSearch) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{9B9DCAE3-BE34-424C-8D73-75E305A9E091} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{9B9DCAE3-BE34-424C-8D73-75E305A9E091} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{9B9DCAE3-BE34-424C-8D73-75E305A9E091} (PUP.MyWebSearch) -> No action taken.
HKCR\CLSID\{d229a1e0-7b36-4912-a874-0f0a4e1c039d} (PUP.MyWebSearch) -> No action taken.
HKCR\TypeLib\{a7ec9f40-1b68-46f5-afe7-97bcd8ff67c3} (PUP.MyWebSearch) -> No action taken.
HKCR\Interface\{19A42F40-E285-4300-BEDF-AFFA58AC1AC2} (PUP.MyWebSearch) -> No action taken.
HKCR\WeatherBlink.SettingsPlugin.1 (PUP.MyWebSearch) -> No action taken.
HKCR\WeatherBlink.SettingsPlugin (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{D229A1E0-7B36-4912-A874-0F0A4E1C039D} (PUP.MyWebSearch) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{D229A1E0-7B36-4912-A874-0F0A4E1C039D} (PUP.MyWebSearch) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\WeatherBlinkbar Uninstall (PUP.MyWebSearch) -> No action taken.
HKCR\CLSID\{dc9051c2-8f55-479a-97a4-747980d9047f} (PUP.MyWebSearch) -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DC9051C2-8F55-479A-97A4-747980D9047F} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Settings\{DC9051C2-8F55-479A-97A4-747980D9047F} (PUP.MyWebSearch) -> No action taken.
HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\Stats\{DC9051C2-8F55-479A-97A4-747980D9047F} (PUP.MyWebSearch) -> No action taken.
HKCR\CLSID\{393f1621-f8c2-4e27-a179-438b9f1ea6f7} (PUP.MyWebSearch) -> No action taken.
HKCR\TypeLib\{a66f331b-51cb-42c8-b1b3-83ced369b007} (PUP.MyWebSearch) -> No action taken.
HKCR\Interface\{710AC531-FB66-4ED3-BB1C-D996A8C061B4} (PUP.MyWebSearch) -> No action taken.
HKCR\CLSID\{984dbd34-51a4-4ac8-9ba7-788ece5c9e31} (PUP.MyWebSearch) -> No action taken.
HKCR\WeatherBlink.Radio.1 (PUP.MyWebSearch) -> No action taken.
HKCR\WeatherBlink.Radio (PUP.MyWebSearch) -> No action taken.
HKLM\SYSTEM\CurrentControlSet\Services\WeatherBlinkService (PUP.MyWebSearch) -> No action taken.
HKCR\WeatherBlink.DynamicBarButton (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.DynamicBarButton.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.FeedManager (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.FeedManager.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.HTMLMenu (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.HTMLMenu.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.HTMLPanel (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.HTMLPanel.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.MultipleButton (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.MultipleButton.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.PseudoTransparentPlugin (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.PseudoTransparentPlugin.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.RadioSettings (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.RadioSettings.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.ScriptButton (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.ScriptButton.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.SkinLauncher (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.SkinLauncher.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.SkinLauncherSettings (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.SkinLauncherSettings.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.ThirdPartyInstaller (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.ThirdPartyInstaller.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.UrlAlertButton (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.UrlAlertButton.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.XMLSessionPlugin (PUP.AdwareMyWebSearch) -> No action taken.
HKCR\WeatherBlink.XMLSessionPlugin.1 (PUP.AdwareMyWebSearch) -> No action taken.
HKCU\Software\WeatherBlink (PUP.AdwareMyWebSearch) -> No action taken.
HKLM\SOFTWARE\WeatherBlink (PUP.AdwareMyWebSearch) -> No action taken.
HKLM\SOFTWARE\MozillaPlugins\@WeatherBlink.com/Plugin (PUP.AdwareMyWebSearch) -> No action taken.

Registry Values Detected: 3
HKCU\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks|{8BA2CFEF-A1BC-4964-AADC-33BE1AE5A33C} (PUP.MyWebSearch) -> Data: -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|WeatherBlink Browser Plugin Loader (PUP.MyWebSearch) -> Data: C:\PROGRA~1\WEATHE~2\bar\3.bin\gcbrmon.exe -> No action taken.
HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run|WeatherBlink Search Scope Monitor (PUP.MyWebSearch) -> Data: "C:\PROGRA~1\WEATHE~2\bar\3.bin\gcsrchmn.exe" /m=2 /w /h -> No action taken.

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 12
C:\Program Files\WeatherBlink\bar\3.bin\gcbrstub.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcSrcAs.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcbar.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcbrmon.exe (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcauxstb.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcdlghk.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcmedint.exe (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcradio.dll (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcSrchMn.exe (PUP.MyWebSearch) -> No action taken.
C:\Program Files\WeatherBlink\bar\3.bin\gcbarsvc.exe (PUP.MyWebSearch) -> No action taken.
C:\Documents and Settings\David Ames\Local Settings\Temp\NODB639.tmp (PUP.MyWebSearch) -> No action taken.
C:\Documents and Settings\David Ames\Local Settings\Temp\NODB63A.tmp (PUP.MyWebSearch) -> No action taken.

(end)

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,565 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:32 AM

Posted 21 June 2012 - 11:19 AM

I need to ask as your log shows "No action taken" This means you either copied the log before you closed it or you did not click "Remove Selected." The latter would mean you need to rerun MBAM.

Also Did ESET find qanything ,.. you posted the TDSS log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users