Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

AdWare


  • Please log in to reply
7 replies to this topic

#1 gozstar

gozstar

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:22 PM

Posted 20 October 2012 - 01:29 PM

HELP....!!

RUN CCleaner, Malwarebytes, Spybot, SpywareBlaster, Ad-Aware Free

but I have spamming...


RUN HijackThis:

Can not find the file c: \ program files \ HijackThis \ hijackthis.log

RUN LSPFix:

Winsock 2 Registry Key
(HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\Winsock2\Parameters) is missing or could not be accessed

I need... I need... a solution, thanks.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:22 PM

Posted 20 October 2012 - 08:57 PM

Hello please run these next and we progress from there.


Please Download

TDSSkiller


Launch it. Click on change parameters-Select TDLFS file system

Click on "Scan".
Please post the LOG report(log file should be in your C drive)

Do not change the default options on scan results.

>>>>>


Please download AdwCleaner by Xplode onto your desktop.


  • Close all open programs and internet browsers.
  • Double click on adwcleaner.exe to run the tool.
  • Click on Delete.
  • Confirm each time with Ok.
  • You will be prompted to restart your computer. A text file will open after the restart.
  • Please post the contents of that logfile with your next reply.

    >>>>>>>>>

    Posted Image Please download Junkware Removal Tool to your desktop.
    [LIST]
  • Shut down your protection software now to avoid potential conflicts.
  • Run the tool by double-clicking it. If you are using Windows Vista or Seven, right-mouse click it and select Run as Administrator.
  • The tool will open and start scanning your system.
  • Please be patient as this can take a while to complete depending on your system's specifications.
  • On completion, a log (JRT.txt) is saved to your desktop and will automatically open.
  • Post the contents of JRT.txt into your next message.



And
Please download MiniToolBox, save it to your desktop and run it.Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.

Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run. Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 gozstar

gozstar
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:22 PM

Posted 22 October 2012 - 10:19 AM

RUN TDSSKilller:

TDSSKiller.2.8.13.0_22.10.2012_11.12.43_log

11:12:43.0772 5456 TDSS rootkit removing tool 2.8.13.0 Oct 12 2012 17:26:47
11:12:44.0448 5456 ============================================================
11:12:44.0448 5456 Current date / time: 2012/10/22 11:12:44.0448
11:12:44.0449 5456 SystemInfo:
11:12:44.0449 5456
11:12:44.0449 5456 OS Version: 6.1.7601 ServicePack: 1.0
11:12:44.0449 5456 Product type: Workstation
11:12:44.0449 5456 ComputerName: PHENOM720
11:12:44.0449 5456 UserName: Gabriel
11:12:44.0449 5456 Windows directory: C:\Windows
11:12:44.0449 5456 System windows directory: C:\Windows
11:12:44.0449 5456 Processor architecture: Intel x86
11:12:44.0449 5456 Number of processors: 3
11:12:44.0449 5456 Page size: 0x1000
11:12:44.0449 5456 Boot type: Normal boot
11:12:44.0449 5456 ============================================================
11:12:45.0798 5456 Drive \Device\Harddisk0\DR0 - Size: 0xE8E0CADE00 (931.51 Gb), SectorSize: 0x200, Cylinders: 0x1F8B1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xF0, Type 'K0', Flags 0x00000050
11:12:45.0799 5456 ============================================================
11:12:45.0799 5456 \Device\Harddisk0\DR0:
11:12:45.0800 5456 MBR partitions:
11:12:45.0800 5456 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x32000
11:12:45.0800 5456 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x32800, BlocksNum 0x124C3800
11:12:45.0809 5456 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x124F650F, BlocksNum 0x249F0471
11:12:45.0824 5456 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x36EE69BF, BlocksNum 0x3D81B141
11:12:45.0824 5456 ============================================================
11:12:45.0864 5456 C: <-> \Device\Harddisk0\DR0\Partition2
11:12:45.0887 5456 D: <-> \Device\Harddisk0\DR0\Partition3
11:12:45.0916 5456 E: <-> \Device\Harddisk0\DR0\Partition4
11:12:45.0916 5456 ============================================================
11:12:45.0916 5456 Initialize success
11:12:45.0916 5456 ============================================================
11:15:06.0320 7468 ============================================================
11:15:06.0320 7468 Scan started
11:15:06.0320 7468 Mode: Manual; TDLFS;
11:15:06.0320 7468 ============================================================
11:15:07.0419 7468 ================ Scan system memory ========================
11:15:07.0419 7468 System memory - ok
11:15:07.0421 7468 ================ Scan services =============================
11:15:07.0632 7468 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
11:15:07.0634 7468 1394ohci - ok
11:15:07.0664 7468 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
11:15:07.0667 7468 ACPI - ok
11:15:07.0704 7468 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
11:15:07.0705 7468 AcpiPmi - ok
11:15:07.0736 7468 [ 76F2471C56ABBCCCC4EAFFDA56E2E4E9 ] ADM9X C:\Windows\system32\DRIVERS\ADM9X.sys
11:15:07.0737 7468 ADM9X - ok
11:15:07.0818 7468 [ 8B46D5A1D3EF08232C04D0EAFB871FB2 ] Adobe LM Service C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
11:15:07.0820 7468 Adobe LM Service - ok
11:15:07.0879 7468 [ 44C00A385CA9DBC1D5CF3781F8C26AEA ] AdobeFlashPlayerUpdateSvc C:\Windows\system32\Macromed\Flash\FlashPlayerUpdateService.exe
11:15:07.0880 7468 AdobeFlashPlayerUpdateSvc - ok
11:15:07.0904 7468 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\DRIVERS\adp94xx.sys
11:15:07.0909 7468 adp94xx - ok
11:15:07.0922 7468 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\DRIVERS\adpahci.sys
11:15:07.0926 7468 adpahci - ok
11:15:07.0935 7468 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\DRIVERS\adpu320.sys
11:15:07.0937 7468 adpu320 - ok
11:15:07.0960 7468 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
11:15:07.0961 7468 AeLookupSvc - ok
11:15:08.0004 7468 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
11:15:08.0008 7468 AFD - ok
11:15:08.0035 7468 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
11:15:08.0036 7468 agp440 - ok
11:15:08.0064 7468 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\DRIVERS\djsvs.sys
11:15:08.0065 7468 aic78xx - ok
11:15:08.0083 7468 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
11:15:08.0085 7468 ALG - ok
11:15:08.0102 7468 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
11:15:08.0103 7468 aliide - ok
11:15:08.0120 7468 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
11:15:08.0121 7468 amdagp - ok
11:15:08.0129 7468 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
11:15:08.0129 7468 amdide - ok
11:15:08.0142 7468 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\DRIVERS\amdk8.sys
11:15:08.0144 7468 AmdK8 - ok
11:15:08.0175 7468 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\DRIVERS\amdppm.sys
11:15:08.0176 7468 AmdPPM - ok
11:15:08.0187 7468 [ E7F4D42D8076EC60E21715CD11743A0D ] amdsata C:\Windows\system32\drivers\amdsata.sys
11:15:08.0189 7468 amdsata - ok
11:15:08.0201 7468 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\DRIVERS\amdsbs.sys
11:15:08.0203 7468 amdsbs - ok
11:15:08.0215 7468 [ 146459D2B08BFDCBFA856D9947043C81 ] amdxata C:\Windows\system32\drivers\amdxata.sys
11:15:08.0217 7468 amdxata - ok
11:15:08.0238 7468 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
11:15:08.0239 7468 AppID - ok
11:15:08.0246 7468 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
11:15:08.0247 7468 AppIDSvc - ok
11:15:08.0262 7468 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
11:15:08.0263 7468 Appinfo - ok
11:15:08.0283 7468 [ A45D184DF6A8803DA13A0B329517A64A ] AppMgmt C:\Windows\System32\appmgmts.dll
11:15:08.0288 7468 AppMgmt - ok
11:15:08.0306 7468 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\DRIVERS\arc.sys
11:15:08.0308 7468 arc - ok
11:15:08.0316 7468 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\DRIVERS\arcsas.sys
11:15:08.0318 7468 arcsas - ok
11:15:08.0332 7468 [ F5DC168BF77572D51BE28BA261B30CB4 ] aswFsBlk C:\Windows\system32\drivers\aswFsBlk.sys
11:15:08.0334 7468 aswFsBlk - ok
11:15:08.0338 7468 [ F76E51561562AC4105DBBE53FC99BC10 ] aswMonFlt C:\Windows\system32\drivers\aswMonFlt.sys
11:15:08.0339 7468 aswMonFlt - ok
11:15:08.0380 7468 [ 924819669AFD0EDF5C067193D371FAB0 ] aswRdr C:\Windows\System32\Drivers\aswrdr2.sys
11:15:08.0382 7468 aswRdr - ok
11:15:08.0433 7468 [ 30E45AF8B4D83176CA850FC9699E860B ] aswSnx C:\Windows\system32\drivers\aswSnx.sys
11:15:08.0441 7468 aswSnx - ok
11:15:08.0455 7468 [ F04BDBCB965C05C51F4A7DE7B62063D6 ] aswSP C:\Windows\system32\drivers\aswSP.sys
11:15:08.0459 7468 aswSP - ok
11:15:08.0468 7468 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
11:15:08.0470 7468 AsyncMac - ok
11:15:08.0487 7468 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
11:15:08.0488 7468 atapi - ok
11:15:08.0527 7468 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
11:15:08.0532 7468 AudioEndpointBuilder - ok
11:15:08.0539 7468 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
11:15:08.0542 7468 Audiosrv - ok
11:15:08.0571 7468 [ 04AC21E821F259845BD7367CEE057290 ] avast! Antivirus C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
11:15:08.0572 7468 avast! Antivirus - ok
11:15:08.0579 7468 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
11:15:08.0581 7468 AxInstSV - ok
11:15:08.0601 7468 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\DRIVERS\bxvbdx.sys
11:15:08.0606 7468 b06bdrv - ok
11:15:08.0613 7468 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
11:15:08.0615 7468 b57nd60x - ok
11:15:08.0639 7468 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
11:15:08.0641 7468 BDESVC - ok
11:15:08.0644 7468 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
11:15:08.0645 7468 Beep - ok
11:15:08.0680 7468 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
11:15:08.0686 7468 BFE - ok
11:15:08.0722 7468 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
11:15:08.0731 7468 BITS - ok
11:15:08.0744 7468 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\DRIVERS\blbdrive.sys
11:15:08.0745 7468 blbdrive - ok
11:15:08.0768 7468 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
11:15:08.0770 7468 bowser - ok
11:15:08.0778 7468 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\DRIVERS\BrFiltLo.sys
11:15:08.0779 7468 BrFiltLo - ok
11:15:08.0795 7468 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\DRIVERS\BrFiltUp.sys
11:15:08.0796 7468 BrFiltUp - ok
11:15:08.0820 7468 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
11:15:08.0822 7468 Browser - ok
11:15:08.0840 7468 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
11:15:08.0843 7468 Brserid - ok
11:15:08.0857 7468 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
11:15:08.0858 7468 BrSerWdm - ok
11:15:08.0861 7468 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
11:15:08.0862 7468 BrUsbMdm - ok
11:15:08.0865 7468 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
11:15:08.0866 7468 BrUsbSer - ok
11:15:08.0874 7468 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\DRIVERS\bthmodem.sys
11:15:08.0875 7468 BTHMODEM - ok
11:15:08.0881 7468 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
11:15:08.0883 7468 bthserv - ok
11:15:08.0889 7468 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
11:15:08.0890 7468 cdfs - ok
11:15:08.0899 7468 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\DRIVERS\cdrom.sys
11:15:08.0901 7468 cdrom - ok
11:15:08.0906 7468 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
11:15:08.0907 7468 CertPropSvc - ok
11:15:08.0917 7468 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\DRIVERS\circlass.sys
11:15:08.0918 7468 circlass - ok
11:15:08.0947 7468 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
11:15:08.0950 7468 CLFS - ok
11:15:08.0995 7468 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
11:15:08.0998 7468 clr_optimization_v2.0.50727_32 - ok
11:15:09.0053 7468 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
11:15:09.0055 7468 clr_optimization_v4.0.30319_32 - ok
11:15:09.0072 7468 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
11:15:09.0074 7468 CmBatt - ok
11:15:09.0097 7468 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
11:15:09.0099 7468 cmdide - ok
11:15:09.0127 7468 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
11:15:09.0132 7468 CNG - ok
11:15:09.0138 7468 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\DRIVERS\compbatt.sys
11:15:09.0139 7468 Compbatt - ok
11:15:09.0167 7468 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
11:15:09.0168 7468 CompositeBus - ok
11:15:09.0174 7468 COMSysApp - ok
11:15:09.0208 7468 [ 75FA19142531CBF490770C2988A7DB64 ] cpuz134 C:\Program Files\CPUID\PC Wizard 2010\pcwiz_x32.sys
11:15:09.0209 7468 cpuz134 - ok
11:15:09.0230 7468 [ C2EB4539A4F6AB6EDD01BDC191619975 ] cpuz135 C:\Windows\system32\drivers\cpuz135_x32.sys
11:15:09.0232 7468 cpuz135 - ok
11:15:09.0248 7468 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\DRIVERS\crcdisk.sys
11:15:09.0249 7468 crcdisk - ok
11:15:09.0288 7468 [ 96C0E38905CFD788313BE8E11DAE3F2F ] CryptSvc C:\Windows\system32\cryptsvc.dll
11:15:09.0290 7468 CryptSvc - ok
11:15:09.0310 7468 [ 3C2177A897B4CA2788C6FB0C3FD81D4B ] CSC C:\Windows\system32\drivers\csc.sys
11:15:09.0315 7468 CSC - ok
11:15:09.0344 7468 [ 15F93B37F6801943360D9EB42485D5D3 ] CscService C:\Windows\System32\cscsvc.dll
11:15:09.0350 7468 CscService - ok
11:15:09.0377 7468 [ 1EEDF2FED1DE2822EE2640FEB16BAF01 ] cwrwdm C:\Windows\system32\DRIVERS\cwrwdm.sys
11:15:09.0379 7468 cwrwdm - ok
11:15:09.0393 7468 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
11:15:09.0400 7468 DcomLaunch - ok
11:15:09.0424 7468 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
11:15:09.0427 7468 defragsvc - ok
11:15:09.0441 7468 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
11:15:09.0443 7468 DfsC - ok
11:15:09.0482 7468 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
11:15:09.0485 7468 Dhcp - ok
11:15:09.0502 7468 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
11:15:09.0503 7468 discache - ok
11:15:09.0516 7468 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\DRIVERS\disk.sys
11:15:09.0517 7468 Disk - ok
11:15:09.0533 7468 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
11:15:09.0537 7468 Dnscache - ok
11:15:09.0554 7468 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
11:15:09.0557 7468 dot3svc - ok
11:15:09.0593 7468 [ B5E479EB83707DD698F66953E922042C ] Dot4 C:\Windows\system32\DRIVERS\Dot4.sys
11:15:09.0595 7468 Dot4 - ok
11:15:09.0629 7468 [ CAEFD09B6A6249C53A67D55A9A9FCABF ] Dot4Print C:\Windows\system32\drivers\Dot4Prt.sys
11:15:09.0630 7468 Dot4Print - ok
11:15:09.0655 7468 [ CF491FF38D62143203C065260567E2F7 ] dot4usb C:\Windows\system32\DRIVERS\dot4usb.sys
11:15:09.0656 7468 dot4usb - ok
11:15:09.0683 7468 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
11:15:09.0686 7468 DPS - ok
11:15:09.0714 7468 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
11:15:09.0715 7468 drmkaud - ok
11:15:09.0754 7468 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
11:15:09.0763 7468 DXGKrnl - ok
11:15:09.0792 7468 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
11:15:09.0795 7468 EapHost - ok
11:15:09.0858 7468 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\DRIVERS\evbdx.sys
11:15:09.0944 7468 ebdrv - ok
11:15:09.0983 7468 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
11:15:09.0987 7468 EFS - ok
11:15:10.0024 7468 [ A8C362018EFC87BEB013EE28F29C0863 ] ehRecvr C:\Windows\ehome\ehRecvr.exe
11:15:10.0031 7468 ehRecvr - ok
11:15:10.0062 7468 [ D389BFF34F80CAEDE417BF9D1507996A ] ehSched C:\Windows\ehome\ehsched.exe
11:15:10.0064 7468 ehSched - ok
11:15:10.0088 7468 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\DRIVERS\elxstor.sys
11:15:10.0093 7468 elxstor - ok
11:15:10.0104 7468 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
11:15:10.0105 7468 ErrDev - ok
11:15:10.0124 7468 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
11:15:10.0128 7468 EventSystem - ok
11:15:10.0147 7468 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
11:15:10.0150 7468 exfat - ok
11:15:10.0161 7468 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
11:15:10.0164 7468 fastfat - ok
11:15:10.0205 7468 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
11:15:10.0211 7468 Fax - ok
11:15:10.0216 7468 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\DRIVERS\fdc.sys
11:15:10.0217 7468 fdc - ok
11:15:10.0225 7468 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
11:15:10.0227 7468 fdPHost - ok
11:15:10.0236 7468 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
11:15:10.0238 7468 FDResPub - ok
11:15:10.0248 7468 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
11:15:10.0249 7468 FileInfo - ok
11:15:10.0261 7468 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
11:15:10.0262 7468 Filetrace - ok
11:15:10.0274 7468 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\DRIVERS\flpydisk.sys
11:15:10.0275 7468 flpydisk - ok
11:15:10.0294 7468 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
11:15:10.0297 7468 FltMgr - ok
11:15:10.0328 7468 [ FA6C66E4364D7DA57AADE5DCC03BB999 ] FontCache C:\Windows\system32\FntCache.dll
11:15:10.0334 7468 FontCache - ok
11:15:10.0380 7468 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
11:15:10.0383 7468 FontCache3.0.0.0 - ok
11:15:10.0408 7468 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
11:15:10.0410 7468 FsDepends - ok
11:15:10.0438 7468 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
11:15:10.0440 7468 Fs_Rec - ok
11:15:10.0452 7468 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
11:15:10.0456 7468 fvevol - ok
11:15:10.0470 7468 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\DRIVERS\gagp30kx.sys
11:15:10.0471 7468 gagp30kx - ok
11:15:10.0506 7468 [ 007AEA2E06E7CEF7372E40C277163959 ] ggflt C:\Windows\system32\DRIVERS\ggflt.sys
11:15:10.0508 7468 ggflt - ok
11:15:10.0529 7468 [ C73DE35960CA75C5AB4AE636B127C64E ] ggsemc C:\Windows\system32\DRIVERS\ggsemc.sys
11:15:10.0530 7468 ggsemc - ok
11:15:10.0552 7468 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
11:15:10.0560 7468 gpsvc - ok
11:15:10.0592 7468 [ F02A533F517EB38333CB12A9E8963773 ] gupdate C:\Program Files\Google\Update\GoogleUpdate.exe
11:15:10.0594 7468 gupdate - ok
11:15:10.0599 7468 [ F02A533F517EB38333CB12A9E8963773 ] gupdatem C:\Program Files\Google\Update\GoogleUpdate.exe
11:15:10.0600 7468 gupdatem - ok
11:15:10.0607 7468 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
11:15:10.0608 7468 hcw85cir - ok
11:15:10.0640 7468 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
11:15:10.0644 7468 HdAudAddService - ok
11:15:10.0663 7468 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
11:15:10.0665 7468 HDAudBus - ok
11:15:10.0678 7468 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\DRIVERS\HidBatt.sys
11:15:10.0679 7468 HidBatt - ok
11:15:10.0693 7468 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\DRIVERS\hidbth.sys
11:15:10.0695 7468 HidBth - ok
11:15:10.0712 7468 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\DRIVERS\hidir.sys
11:15:10.0714 7468 HidIr - ok
11:15:10.0720 7468 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
11:15:10.0722 7468 hidserv - ok
11:15:10.0760 7468 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
11:15:10.0761 7468 HidUsb - ok
11:15:10.0779 7468 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
11:15:10.0782 7468 hkmsvc - ok
11:15:10.0796 7468 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
11:15:10.0801 7468 HomeGroupListener - ok
11:15:10.0831 7468 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
11:15:10.0836 7468 HomeGroupProvider - ok
11:15:10.0898 7468 [ 5DA42D24712E00728CEA2342A65009B2 ] hpqcxs08 C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll
11:15:10.0901 7468 hpqcxs08 - ok
11:15:10.0906 7468 [ D86A39BF100069444D026D22D9A6E555 ] hpqddsvc C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll
11:15:10.0908 7468 hpqddsvc - ok
11:15:10.0924 7468 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
11:15:10.0926 7468 HpSAMD - ok
11:15:10.0942 7468 [ A04F4AC48895774A2CF9D1C9EAAACEF0 ] HPSLPSVC C:\Program Files\HP\Digital Imaging\bin\HPSLPSVC32.DLL
11:15:10.0950 7468 HPSLPSVC - ok
11:15:10.0981 7468 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
11:15:10.0987 7468 HTTP - ok
11:15:11.0001 7468 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
11:15:11.0002 7468 hwpolicy - ok
11:15:11.0045 7468 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
11:15:11.0047 7468 i8042prt - ok
11:15:11.0065 7468 [ A3CAE5D281DB4CFF7CFF8233507EE5AD ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
11:15:11.0070 7468 iaStorV - ok
11:15:11.0103 7468 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
11:15:11.0122 7468 idsvc - ok
11:15:11.0127 7468 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\DRIVERS\iirsp.sys
11:15:11.0128 7468 iirsp - ok
11:15:11.0152 7468 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
11:15:11.0160 7468 IKEEXT - ok
11:15:11.0175 7468 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
11:15:11.0176 7468 intelide - ok
11:15:11.0207 7468 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
11:15:11.0208 7468 intelppm - ok
11:15:11.0221 7468 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
11:15:11.0224 7468 IPBusEnum - ok
11:15:11.0239 7468 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
11:15:11.0241 7468 IpFilterDriver - ok
11:15:11.0265 7468 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
11:15:11.0272 7468 iphlpsvc - ok
11:15:11.0276 7468 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
11:15:11.0277 7468 IPMIDRV - ok
11:15:11.0285 7468 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
11:15:11.0287 7468 IPNAT - ok
11:15:11.0299 7468 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
11:15:11.0301 7468 IRENUM - ok
11:15:11.0325 7468 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
11:15:11.0327 7468 isapnp - ok
11:15:11.0335 7468 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
11:15:11.0338 7468 iScsiPrt - ok
11:15:11.0411 7468 [ B72E05939B5B956713076E0F1C0B9243 ] ISODrive C:\Program Files\UltraISO\drivers\ISODrive.sys
11:15:11.0414 7468 ISODrive - ok
11:15:11.0438 7468 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
11:15:11.0441 7468 kbdclass - ok
11:15:11.0464 7468 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
11:15:11.0465 7468 kbdhid - ok
11:15:11.0484 7468 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
11:15:11.0487 7468 KeyIso - ok
11:15:11.0512 7468 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
11:15:11.0514 7468 KSecDD - ok
11:15:11.0535 7468 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
11:15:11.0538 7468 KSecPkg - ok
11:15:11.0557 7468 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
11:15:11.0562 7468 KtmRm - ok
11:15:11.0587 7468 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
11:15:11.0593 7468 LanmanServer - ok
11:15:11.0597 7468 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
11:15:11.0602 7468 LanmanWorkstation - ok
11:15:11.0617 7468 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
11:15:11.0618 7468 lltdio - ok
11:15:11.0633 7468 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
11:15:11.0637 7468 lltdsvc - ok
11:15:11.0652 7468 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
11:15:11.0655 7468 lmhosts - ok
11:15:11.0671 7468 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\DRIVERS\lsi_fc.sys
11:15:11.0672 7468 LSI_FC - ok
11:15:11.0676 7468 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\DRIVERS\lsi_sas.sys
11:15:11.0678 7468 LSI_SAS - ok
11:15:11.0692 7468 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\DRIVERS\lsi_sas2.sys
11:15:11.0694 7468 LSI_SAS2 - ok
11:15:11.0712 7468 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\DRIVERS\lsi_scsi.sys
11:15:11.0714 7468 LSI_SCSI - ok
11:15:11.0723 7468 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
11:15:11.0724 7468 luafv - ok
11:15:11.0748 7468 [ BFB9EE8EE977EFE85D1A3105ABEF6DD1 ] Mcx2Svc C:\Windows\system32\Mcx2Svc.dll
11:15:11.0751 7468 Mcx2Svc - ok
11:15:11.0755 7468 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\DRIVERS\megasas.sys
11:15:11.0756 7468 megasas - ok
11:15:11.0761 7468 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\DRIVERS\MegaSR.sys
11:15:11.0764 7468 MegaSR - ok
11:15:11.0828 7468 [ 123271BD5237AB991DC5C21FDF8835EB ] Microsoft Office Groove Audit Service C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe
11:15:11.0829 7468 Microsoft Office Groove Audit Service - ok
11:15:11.0839 7468 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
11:15:11.0842 7468 MMCSS - ok
11:15:11.0845 7468 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
11:15:11.0847 7468 Modem - ok
11:15:11.0881 7468 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
11:15:11.0882 7468 monitor - ok
11:15:11.0899 7468 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
11:15:11.0901 7468 mouclass - ok
11:15:11.0916 7468 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
11:15:11.0917 7468 mouhid - ok
11:15:11.0949 7468 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
11:15:11.0950 7468 mountmgr - ok
11:15:11.0962 7468 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
11:15:11.0964 7468 mpio - ok
11:15:11.0979 7468 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
11:15:11.0980 7468 mpsdrv - ok
11:15:12.0022 7468 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
11:15:12.0030 7468 MpsSvc - ok
11:15:12.0051 7468 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
11:15:12.0053 7468 MRxDAV - ok
11:15:12.0074 7468 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
11:15:12.0076 7468 mrxsmb - ok
11:15:12.0105 7468 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
11:15:12.0108 7468 mrxsmb10 - ok
11:15:12.0118 7468 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
11:15:12.0120 7468 mrxsmb20 - ok
11:15:12.0155 7468 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
11:15:12.0156 7468 msahci - ok
11:15:12.0179 7468 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
11:15:12.0181 7468 msdsm - ok
11:15:12.0193 7468 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
11:15:12.0197 7468 MSDTC - ok
11:15:12.0224 7468 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
11:15:12.0225 7468 Msfs - ok
11:15:12.0237 7468 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
11:15:12.0238 7468 mshidkmdf - ok
11:15:12.0246 7468 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
11:15:12.0247 7468 msisadrv - ok
11:15:12.0262 7468 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
11:15:12.0265 7468 MSiSCSI - ok
11:15:12.0270 7468 msiserver - ok
11:15:12.0293 7468 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
11:15:12.0294 7468 MSKSSRV - ok
11:15:12.0311 7468 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
11:15:12.0312 7468 MSPCLOCK - ok
11:15:12.0320 7468 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
11:15:12.0321 7468 MSPQM - ok
11:15:12.0332 7468 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
11:15:12.0335 7468 MsRPC - ok
11:15:12.0349 7468 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
11:15:12.0351 7468 mssmbios - ok
11:15:12.0357 7468 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
11:15:12.0358 7468 MSTEE - ok
11:15:12.0365 7468 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\DRIVERS\MTConfig.sys
11:15:12.0367 7468 MTConfig - ok
11:15:12.0399 7468 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
11:15:12.0401 7468 Mup - ok
11:15:12.0437 7468 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
11:15:12.0443 7468 napagent - ok
11:15:12.0453 7468 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
11:15:12.0457 7468 NativeWifiP - ok
11:15:12.0529 7468 [ E4534BCCDD1EA7A7A256BB9D6688A5FC ] NAUpdate C:\Program Files\Nero\Update\NASvc.exe
11:15:12.0532 7468 NAUpdate - ok
11:15:12.0556 7468 [ E7C54812A2AAF43316EB6930C1FFA108 ] NDIS C:\Windows\system32\drivers\ndis.sys
11:15:12.0563 7468 NDIS - ok
11:15:12.0581 7468 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
11:15:12.0583 7468 NdisCap - ok
11:15:12.0587 7468 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
11:15:12.0588 7468 NdisTapi - ok
11:15:12.0621 7468 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
11:15:12.0622 7468 Ndisuio - ok
11:15:12.0642 7468 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
11:15:12.0644 7468 NdisWan - ok
11:15:12.0679 7468 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
11:15:12.0680 7468 NDProxy - ok
11:15:12.0736 7468 [ 69C503C004F49AEE8B8E3067CC047BA7 ] Net Driver HPZ12 C:\Windows\system32\HPZinw12.dll
11:15:12.0743 7468 Net Driver HPZ12 - ok
11:15:12.0753 7468 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
11:15:12.0755 7468 NetBIOS - ok
11:15:12.0788 7468 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
11:15:12.0790 7468 NetBT - ok
11:15:12.0806 7468 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
11:15:12.0808 7468 Netlogon - ok
11:15:12.0841 7468 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
11:15:12.0846 7468 Netman - ok
11:15:12.0855 7468 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
11:15:12.0861 7468 netprofm - ok
11:15:12.0877 7468 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
11:15:12.0879 7468 NetTcpPortSharing - ok
11:15:12.0891 7468 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\DRIVERS\nfrd960.sys
11:15:12.0892 7468 nfrd960 - ok
11:15:12.0925 7468 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
11:15:12.0930 7468 NlaSvc - ok
11:15:12.0935 7468 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
11:15:12.0936 7468 Npfs - ok
11:15:12.0946 7468 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
11:15:12.0949 7468 nsi - ok
11:15:12.0966 7468 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
11:15:12.0968 7468 nsiproxy - ok
11:15:12.0999 7468 [ 33C3093D09017CFE2E219F2472BFF6EB ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
11:15:13.0013 7468 Ntfs - ok
11:15:13.0029 7468 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
11:15:13.0030 7468 Null - ok
11:15:13.0058 7468 [ B5E37E31C053BC9950455A257526514B ] NVENETFD C:\Windows\system32\DRIVERS\nvm62x32.sys
11:15:13.0062 7468 NVENETFD - ok
11:15:13.0295 7468 [ 377140A534D013BD661C69F1741DE43C ] nvlddmkm C:\Windows\system32\DRIVERS\nvlddmkm.sys
11:15:13.0493 7468 nvlddmkm - ok
11:15:13.0521 7468 [ 1DE923088878B495CD4219E47BA34EB8 ] NVNET C:\Windows\system32\DRIVERS\nvmf6232.sys
11:15:13.0525 7468 NVNET - ok
11:15:13.0548 7468 [ AF2EEC9580C1D32FB7EAF105D9784061 ] nvraid C:\Windows\system32\drivers\nvraid.sys
11:15:13.0550 7468 nvraid - ok
11:15:13.0564 7468 [ 9283C58EBAA2618F93482EB5DABCEC82 ] nvstor C:\Windows\system32\drivers\nvstor.sys
11:15:13.0565 7468 nvstor - ok
11:15:13.0582 7468 [ 4ED813EFD77A9B7E57E341CDC1C5CBC4 ] nvsvc C:\Windows\system32\nvvsvc.exe
11:15:13.0586 7468 nvsvc - ok
11:15:13.0610 7468 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
11:15:13.0612 7468 nv_agp - ok
11:15:13.0674 7468 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE
11:15:13.0683 7468 odserv - ok
11:15:13.0711 7468 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
11:15:13.0712 7468 ohci1394 - ok
11:15:13.0736 7468 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
11:15:13.0739 7468 ose - ok
11:15:13.0754 7468 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
11:15:13.0759 7468 p2pimsvc - ok
11:15:13.0776 7468 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
11:15:13.0782 7468 p2psvc - ok
11:15:13.0792 7468 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\DRIVERS\parport.sys
11:15:13.0793 7468 Parport - ok
11:15:13.0823 7468 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
11:15:13.0825 7468 partmgr - ok
11:15:13.0830 7468 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\DRIVERS\parvdm.sys
11:15:13.0831 7468 Parvdm - ok
11:15:13.0848 7468 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
11:15:13.0853 7468 PcaSvc - ok
11:15:13.0864 7468 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
11:15:13.0866 7468 pci - ok
11:15:13.0893 7468 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
11:15:13.0894 7468 pciide - ok
11:15:13.0905 7468 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\DRIVERS\pcmcia.sys
11:15:13.0907 7468 pcmcia - ok
11:15:13.0947 7468 [ 5B6C11DE7E839C05248CED8825470FEF ] pcouffin C:\Windows\system32\Drivers\pcouffin.sys
11:15:13.0949 7468 pcouffin - ok
11:15:13.0959 7468 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
11:15:13.0960 7468 pcw - ok
11:15:13.0992 7468 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
11:15:13.0999 7468 PEAUTH - ok
11:15:14.0033 7468 [ AF4D64D2A57B9772CF3801950B8058A6 ] PeerDistSvc C:\Windows\system32\peerdistsvc.dll
11:15:14.0046 7468 PeerDistSvc - ok
11:15:14.0107 7468 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
11:15:14.0135 7468 pla - ok
11:15:14.0178 7468 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
11:15:14.0185 7468 PlugPlay - ok
11:15:14.0222 7468 [ 12B4549D515CB26BB8D375038017CA65 ] Pml Driver HPZ12 C:\Windows\system32\HPZipm12.dll
11:15:14.0224 7468 Pml Driver HPZ12 - ok
11:15:14.0241 7468 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
11:15:14.0245 7468 PNRPAutoReg - ok
11:15:14.0251 7468 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
11:15:14.0255 7468 PNRPsvc - ok
11:15:14.0280 7468 [ 4B30EE7037EA1529F5FC80DE5DC42A30 ] Point32 C:\Windows\system32\DRIVERS\point32.sys
11:15:14.0281 7468 Point32 - ok
11:15:14.0300 7468 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
11:15:14.0305 7468 PolicyAgent - ok
11:15:14.0335 7468 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
11:15:14.0340 7468 Power - ok
11:15:14.0348 7468 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
11:15:14.0349 7468 PptpMiniport - ok
11:15:14.0366 7468 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\DRIVERS\processr.sys
11:15:14.0368 7468 Processor - ok
11:15:14.0398 7468 [ 43CA4CCC22D52FB58E8988F0198851D0 ] ProfSvc C:\Windows\system32\profsvc.dll
11:15:14.0404 7468 ProfSvc - ok
11:15:14.0417 7468 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
11:15:14.0419 7468 ProtectedStorage - ok
11:15:14.0440 7468 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
11:15:14.0442 7468 Psched - ok
11:15:14.0475 7468 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\DRIVERS\ql2300.sys
11:15:14.0490 7468 ql2300 - ok
11:15:14.0509 7468 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\DRIVERS\ql40xx.sys
11:15:14.0511 7468 ql40xx - ok
11:15:14.0522 7468 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
11:15:14.0527 7468 QWAVE - ok
11:15:14.0539 7468 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
11:15:14.0540 7468 QWAVEdrv - ok
11:15:14.0550 7468 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
11:15:14.0551 7468 RasAcd - ok
11:15:14.0558 7468 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
11:15:14.0559 7468 RasAgileVpn - ok
11:15:14.0577 7468 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
11:15:14.0581 7468 RasAuto - ok
11:15:14.0591 7468 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
11:15:14.0592 7468 Rasl2tp - ok
11:15:14.0621 7468 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
11:15:14.0627 7468 RasMan - ok
11:15:14.0632 7468 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
11:15:14.0634 7468 RasPppoe - ok
11:15:14.0646 7468 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
11:15:14.0647 7468 RasSstp - ok
11:15:14.0663 7468 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
11:15:14.0667 7468 rdbss - ok
11:15:14.0671 7468 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\DRIVERS\rdpbus.sys
11:15:14.0673 7468 rdpbus - ok
11:15:14.0696 7468 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
11:15:14.0697 7468 RDPCDD - ok
11:15:14.0714 7468 [ B973FCFC50DC1434E1970A146F7E3885 ] RDPDR C:\Windows\system32\drivers\rdpdr.sys
11:15:14.0716 7468 RDPDR - ok
11:15:14.0723 7468 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
11:15:14.0724 7468 RDPENCDD - ok
11:15:14.0737 7468 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
11:15:14.0738 7468 RDPREFMP - ok
11:15:14.0798 7468 [ 68A0387F58E226DEEE23D9715955572A ] RdpVideoMiniport C:\Windows\system32\drivers\rdpvideominiport.sys
11:15:14.0799 7468 RdpVideoMiniport - ok
11:15:14.0830 7468 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
11:15:14.0833 7468 RDPWD - ok
11:15:14.0857 7468 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
11:15:14.0860 7468 rdyboost - ok
11:15:14.0886 7468 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
11:15:14.0889 7468 RemoteAccess - ok
11:15:14.0904 7468 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
11:15:14.0908 7468 RemoteRegistry - ok
11:15:14.0916 7468 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
11:15:14.0920 7468 RpcEptMapper - ok
11:15:14.0934 7468 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
11:15:14.0937 7468 RpcLocator - ok
11:15:14.0948 7468 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
11:15:14.0954 7468 RpcSs - ok
11:15:14.0969 7468 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
11:15:14.0971 7468 rspndr - ok
11:15:14.0997 7468 [ 7FA7F2E249A5DCBB7970630E15E1F482 ] s3cap C:\Windows\system32\drivers\vms3cap.sys
11:15:14.0998 7468 s3cap - ok
11:15:15.0002 7468 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
11:15:15.0004 7468 SamSs - ok
11:15:15.0027 7468 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
11:15:15.0028 7468 sbp2port - ok
11:15:15.0042 7468 SBRE - ok
11:15:15.0100 7468 [ 794D4B48DFB6E999537C7C3947863463 ] SBSDWSCService C:\Program Files\Spybot - Search & Destroy\SDWinSec.exe
11:15:15.0112 7468 SBSDWSCService - ok
11:15:15.0122 7468 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
11:15:15.0127 7468 SCardSvr - ok
11:15:15.0140 7468 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
11:15:15.0141 7468 scfilter - ok
11:15:15.0176 7468 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
11:15:15.0188 7468 Schedule - ok
11:15:15.0201 7468 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
11:15:15.0203 7468 SCPolicySvc - ok
11:15:15.0230 7468 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
11:15:15.0235 7468 SDRSVC - ok
11:15:15.0240 7468 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
11:15:15.0241 7468 secdrv - ok
11:15:15.0253 7468 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
11:15:15.0258 7468 seclogon - ok
11:15:15.0269 7468 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
11:15:15.0273 7468 SENS - ok
11:15:15.0288 7468 [ 50087FE1EE447009C9CC2997B90DE53F ] SensrSvc C:\Windows\system32\sensrsvc.dll
11:15:15.0292 7468 SensrSvc - ok
11:15:15.0302 7468 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\DRIVERS\serenum.sys
11:15:15.0303 7468 Serenum - ok
11:15:15.0318 7468 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\DRIVERS\serial.sys
11:15:15.0320 7468 Serial - ok
11:15:15.0338 7468 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\DRIVERS\sermouse.sys
11:15:15.0339 7468 sermouse - ok
11:15:15.0368 7468 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
11:15:15.0373 7468 SessionEnv - ok
11:15:15.0404 7468 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
11:15:15.0405 7468 sffdisk - ok
11:15:15.0414 7468 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
11:15:15.0415 7468 sffp_mmc - ok
11:15:15.0432 7468 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
11:15:15.0433 7468 sffp_sd - ok
11:15:15.0451 7468 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\DRIVERS\sfloppy.sys
11:15:15.0452 7468 sfloppy - ok
11:15:15.0474 7468 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
11:15:15.0479 7468 SharedAccess - ok
11:15:15.0506 7468 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
11:15:15.0513 7468 ShellHWDetection - ok
11:15:15.0526 7468 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
11:15:15.0527 7468 sisagp - ok
11:15:15.0535 7468 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\DRIVERS\SiSRaid2.sys
11:15:15.0536 7468 SiSRaid2 - ok
11:15:15.0543 7468 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\DRIVERS\sisraid4.sys
11:15:15.0545 7468 SiSRaid4 - ok
11:15:15.0555 7468 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
11:15:15.0557 7468 Smb - ok
11:15:15.0569 7468 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
11:15:15.0574 7468 SNMPTRAP - ok
11:15:15.0638 7468 [ 1A623F2B69E1F182F995F963C55DB935 ] Sony Ericsson PCCompanion C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe
11:15:15.0640 7468 Sony Ericsson PCCompanion - ok
11:15:15.0650 7468 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
11:15:15.0652 7468 spldr - ok
11:15:15.0674 7468 [ 866A43013535DC8587C258E43579C764 ] Spooler C:\Windows\System32\spoolsv.exe
11:15:15.0681 7468 Spooler - ok
11:15:15.0784 7468 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
11:15:15.0873 7468 sppsvc - ok
11:15:15.0905 7468 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
11:15:15.0910 7468 sppuinotify - ok
11:15:15.0932 7468 [ 8831252BCF05FCFB5ABD116A22E552D8 ] sp_rsdrv2 C:\Windows\system32\drivers\sp_rsdrv2.sys
11:15:15.0935 7468 sp_rsdrv2 - ok
11:15:15.0965 7468 [ 642180B8F50E7FC1FBAF87C718E259D6 ] sp_rssrv C:\Program Files\Spyware Terminator\sp_rsser.exe
11:15:15.0972 7468 sp_rssrv - ok
11:15:16.0002 7468 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
11:15:16.0006 7468 srv - ok
11:15:16.0026 7468 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
11:15:16.0030 7468 srv2 - ok
11:15:16.0040 7468 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
11:15:16.0042 7468 srvnet - ok
11:15:16.0054 7468 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
11:15:16.0059 7468 SSDPSRV - ok
11:15:16.0069 7468 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
11:15:16.0075 7468 SstpSvc - ok
11:15:16.0080 7468 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\DRIVERS\stexstor.sys
11:15:16.0081 7468 stexstor - ok
11:15:16.0124 7468 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
11:15:16.0133 7468 StiSvc - ok
11:15:16.0145 7468 [ 472AF0311073DCECEAA8FA18BA2BDF89 ] storflt C:\Windows\system32\drivers\vmstorfl.sys
11:15:16.0146 7468 storflt - ok
11:15:16.0168 7468 [ DCAFFD62259E0BDB433DD67B5BB37619 ] storvsc C:\Windows\system32\drivers\storvsc.sys
11:15:16.0170 7468 storvsc - ok
11:15:16.0178 7468 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
11:15:16.0179 7468 swenum - ok
11:15:16.0188 7468 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
11:15:16.0195 7468 swprv - ok
11:15:16.0198 7468 Synth3dVsc - ok
11:15:16.0244 7468 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
11:15:16.0259 7468 SysMain - ok
11:15:16.0273 7468 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
11:15:16.0278 7468 TabletInputService - ok
11:15:16.0303 7468 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
11:15:16.0309 7468 TapiSrv - ok
11:15:16.0316 7468 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
11:15:16.0321 7468 TBS - ok
11:15:16.0366 7468 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
11:15:16.0379 7468 Tcpip - ok
11:15:16.0423 7468 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
11:15:16.0432 7468 TCPIP6 - ok
11:15:16.0454 7468 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
11:15:16.0455 7468 tcpipreg - ok
11:15:16.0493 7468 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
11:15:16.0494 7468 TDPIPE - ok
11:15:16.0523 7468 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
11:15:16.0526 7468 TDTCP - ok
11:15:16.0559 7468 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
11:15:16.0560 7468 tdx - ok
11:15:16.0674 7468 [ 5E53CF8AD0FD33B35000C113656AB37B ] TeamViewer7 C:\Program Files\TeamViewer\Version7\TeamViewer_Service.exe
11:15:16.0729 7468 TeamViewer7 - ok
11:15:16.0744 7468 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
11:15:16.0745 7468 TermDD - ok
11:15:16.0760 7468 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
11:15:16.0769 7468 TermService - ok
11:15:16.0786 7468 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
11:15:16.0790 7468 Themes - ok
11:15:16.0806 7468 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
11:15:16.0809 7468 THREADORDER - ok
11:15:16.0823 7468 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
11:15:16.0827 7468 TrkWks - ok
11:15:16.0872 7468 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
11:15:16.0878 7468 TrustedInstaller - ok
11:15:16.0911 7468 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
11:15:16.0913 7468 tssecsrv - ok
11:15:16.0930 7468 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
11:15:16.0932 7468 TsUsbFlt - ok
11:15:16.0940 7468 tsusbhub - ok
11:15:16.0980 7468 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
11:15:16.0982 7468 tunnel - ok
11:15:16.0993 7468 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\DRIVERS\uagp35.sys
11:15:16.0995 7468 uagp35 - ok
11:15:17.0019 7468 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
11:15:17.0023 7468 udfs - ok
11:15:17.0042 7468 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
11:15:17.0047 7468 UI0Detect - ok
11:15:17.0052 7468 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
11:15:17.0053 7468 uliagpkx - ok
11:15:17.0086 7468 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\drivers\umbus.sys
11:15:17.0087 7468 umbus - ok
11:15:17.0096 7468 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\DRIVERS\umpass.sys
11:15:17.0097 7468 UmPass - ok
11:15:17.0120 7468 [ 409994A8EACEEE4E328749C0353527A0 ] UmRdpService C:\Windows\System32\umrdp.dll
11:15:17.0126 7468 UmRdpService - ok
11:15:17.0140 7468 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
11:15:17.0147 7468 upnphost - ok
11:15:17.0160 7468 [ 1D9F2BD026E8E2D45033A4DF3F16B78C ] usbaudio C:\Windows\system32\drivers\usbaudio.sys
11:15:17.0161 7468 usbaudio - ok
11:15:17.0165 7468 [ 7E72E7D7E0757D59481D530FD2B0BFAE ] usbccgp C:\Windows\system32\drivers\usbccgp.sys
11:15:17.0167 7468 usbccgp - ok
11:15:17.0228 7468 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
11:15:17.0230 7468 usbcir - ok
11:15:17.0241 7468 [ CFBCE999C057D78979A181C9C60F208E ] usbehci C:\Windows\system32\drivers\usbehci.sys
11:15:17.0242 7468 usbehci - ok
11:15:17.0265 7468 [ 9D22AAD9AC6A07C691A1113E5F860868 ] usbhub C:\Windows\system32\drivers\usbhub.sys
11:15:17.0268 7468 usbhub - ok
11:15:17.0275 7468 [ A6FB7957EA7AFB1165991E54CE934B74 ] usbohci C:\Windows\system32\drivers\usbohci.sys
11:15:17.0277 7468 usbohci - ok
11:15:17.0284 7468 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
11:15:17.0285 7468 usbprint - ok
11:15:17.0303 7468 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
11:15:17.0304 7468 usbscan - ok
11:15:17.0314 7468 [ BF63EBFC6979FEFB2BC03DF7989A0C1A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
11:15:17.0316 7468 USBSTOR - ok
11:15:17.0323 7468 [ 78780C3EBCE17405B1CCD07A3A8A7D72 ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
11:15:17.0324 7468 usbuhci - ok
11:15:17.0365 7468 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\System32\Drivers\usbvideo.sys
11:15:17.0368 7468 usbvideo - ok
11:15:17.0377 7468 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
11:15:17.0382 7468 UxSms - ok
11:15:17.0395 7468 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
11:15:17.0397 7468 VaultSvc - ok
11:15:17.0410 7468 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
11:15:17.0411 7468 vdrvroot - ok
11:15:17.0444 7468 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
11:15:17.0452 7468 vds - ok
11:15:17.0468 7468 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
11:15:17.0470 7468 vga - ok
11:15:17.0481 7468 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
11:15:17.0483 7468 VgaSave - ok
11:15:17.0487 7468 VGPU - ok
11:15:17.0506 7468 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
11:15:17.0509 7468 vhdmp - ok
11:15:17.0522 7468 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
11:15:17.0523 7468 viaagp - ok
11:15:17.0537 7468 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\DRIVERS\viac7.sys
11:15:17.0539 7468 ViaC7 - ok
11:15:17.0553 7468 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
11:15:17.0554 7468 viaide - ok
11:15:17.0571 7468 [ C2F2911156FDC7817C52829C86DA494E ] vmbus C:\Windows\system32\drivers\vmbus.sys
11:15:17.0573 7468 vmbus - ok
11:15:17.0589 7468 [ D4D77455211E204F370D08F4963063CE ] VMBusHID C:\Windows\system32\drivers\VMBusHID.sys
11:15:17.0590 7468 VMBusHID - ok
11:15:17.0597 7468 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
11:15:17.0599 7468 volmgr - ok
11:15:17.0619 7468 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
11:15:17.0622 7468 volmgrx - ok
11:15:17.0641 7468 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
11:15:17.0645 7468 volsnap - ok
11:15:17.0668 7468 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\DRIVERS\vsmraid.sys
11:15:17.0670 7468 vsmraid - ok
11:15:17.0714 7468 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
11:15:17.0729 7468 VSS - ok
11:15:17.0739 7468 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\System32\drivers\vwifibus.sys
11:15:17.0740 7468 vwifibus - ok
11:15:17.0757 7468 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
11:15:17.0765 7468 W32Time - ok
11:15:17.0782 7468 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\DRIVERS\wacompen.sys
11:15:17.0785 7468 WacomPen - ok
11:15:17.0803 7468 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
11:15:17.0805 7468 WANARP - ok
11:15:17.0808 7468 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
11:15:17.0809 7468 Wanarpv6 - ok
11:15:17.0847 7468 [ 353A04C273EC58475D8633E75CCD5604 ] WatAdminSvc C:\Windows\system32\Wat\WatAdminSvc.exe
11:15:17.0861 7468 WatAdminSvc - ok
11:15:17.0889 7468 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
11:15:17.0905 7468 wbengine - ok
11:15:17.0917 7468 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
11:15:17.0924 7468 WbioSrvc - ok
11:15:17.0955 7468 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
11:15:17.0962 7468 wcncsvc - ok
11:15:17.0968 7468 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
11:15:17.0973 7468 WcsPlugInService - ok
11:15:17.0978 7468 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\DRIVERS\wd.sys
11:15:17.0980 7468 Wd - ok
11:15:17.0993 7468 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
11:15:17.0998 7468 Wdf01000 - ok
11:15:18.0008 7468 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
11:15:18.0013 7468 WdiServiceHost - ok
11:15:18.0016 7468 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
11:15:18.0021 7468 WdiSystemHost - ok
11:15:18.0059 7468 [ F70D9DBF55CBF7F0B5705BD5FE79D907 ] Web Assistant Updater C:\Program Files\Web Assistant\ExtensionUpdaterService.exe
11:15:18.0061 7468 Web Assistant Updater - ok
11:15:18.0095 7468 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
11:15:18.0103 7468 WebClient - ok
11:15:18.0122 7468 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
11:15:18.0128 7468 Wecsvc - ok
11:15:18.0140 7468 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
11:15:18.0145 7468 wercplsupport - ok
11:15:18.0151 7468 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
11:15:18.0156 7468 WerSvc - ok
11:15:18.0162 7468 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
11:15:18.0164 7468 WfpLwf - ok
11:15:18.0178 7468 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
11:15:18.0180 7468 WIMMount - ok
11:15:18.0217 7468 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
11:15:18.0225 7468 WinDefend - ok
11:15:18.0230 7468 WinHttpAutoProxySvc - ok
11:15:18.0281 7468 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
11:15:18.0283 7468 Winmgmt - ok
11:15:18.0342 7468 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
11:15:18.0394 7468 WinRM - ok
11:15:18.0429 7468 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
11:15:18.0442 7468 Wlansvc - ok
11:15:18.0525 7468 [ FB01D4AE207B9EFDBABFC55DC95C7E31 ] wlidsvc C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
11:15:18.0552 7468 wlidsvc - ok
11:15:18.0572 7468 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
11:15:18.0573 7468 WmiAcpi - ok
11:15:18.0587 7468 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
11:15:18.0589 7468 wmiApSrv - ok
11:15:18.0623 7468 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
11:15:18.0635 7468 WMPNetworkSvc - ok
11:15:18.0650 7468 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
11:15:18.0655 7468 WPCSvc - ok
11:15:18.0675 7468 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
11:15:18.0680 7468 WPDBusEnum - ok
11:15:18.0700 7468 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
11:15:18.0702 7468 ws2ifsl - ok
11:15:18.0711 7468 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
11:15:18.0717 7468 wscsvc - ok
11:15:18.0721 7468 WSearch - ok
11:15:18.0799 7468 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
11:15:18.0824 7468 wuauserv - ok
11:15:18.0839 7468 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
11:15:18.0841 7468 WudfPf - ok
11:15:18.0909 7468 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
11:15:18.0914 7468 WUDFRd - ok
11:15:18.0939 7468 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
11:15:18.0956 7468 wudfsvc - ok
11:15:18.0984 7468 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
11:15:18.0992 7468 WwanSvc - ok
11:15:19.0044 7468 [ 74EC37B9EAF9FCA015B933A526825C7A ] {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} C:\Program Files\CyberLink\PowerDVD10\NavFilter\000.fcl
11:15:19.0046 7468 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
11:15:19.0062 7468 ================ Scan global ===============================
11:15:19.0081 7468 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
11:15:19.0116 7468 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
11:15:19.0126 7468 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
11:15:19.0145 7468 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
11:15:19.0167 7468 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
11:15:19.0173 7468 [Global] - ok
11:15:19.0173 7468 ================ Scan MBR ==================================
11:15:19.0194 7468 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
11:15:19.0566 7468 \Device\Harddisk0\DR0 - ok
11:15:19.0567 7468 ================ Scan VBR ==================================
11:15:19.0574 7468 [ E2A71CA865A08C4A9ECC9225C75E41B4 ] \Device\Harddisk0\DR0\Partition1
11:15:19.0577 7468 \Device\Harddisk0\DR0\Partition1 - ok
11:15:19.0606 7468 [ 62A9E932919C9D9A66D86E1F65F04CB3 ] \Device\Harddisk0\DR0\Partition2
11:15:19.0609 7468 \Device\Harddisk0\DR0\Partition2 - ok
11:15:19.0618 7468 [ 8338FC83A40400220D66DCDE0E68F100 ] \Device\Harddisk0\DR0\Partition3
11:15:19.0621 7468 \Device\Harddisk0\DR0\Partition3 - ok
11:15:19.0644 7468 [ 52977FBD23A03C11009D01D922B2077C ] \Device\Harddisk0\DR0\Partition4
11:15:19.0646 7468 \Device\Harddisk0\DR0\Partition4 - ok
11:15:19.0647 7468 ============================================================
11:15:19.0647 7468 Scan finished
11:15:19.0647 7468 ============================================================
11:15:19.0659 7112 Detected object count: 0
11:15:19.0659 7112 Actual detected object count: 0
11:21:57.0779 7676 Deinitialize success


RUN AdwCleaner

AdwCleaner[S1]

# AdwCleaner v2.005 - Fichero creado el 22/10/2012 a 11:29:19
# Actualizado el 14/10/2012 por Xplode
# Sistema operativo : Windows 7 Ultimate Service Pack 1 (32 bits)
# Usuario : Gabriel - PHENOM720
# Modo de inicio : Normal
# Ejecutado desde : C:\Program Files\Ad-Aware\AdwCleaner.exe
# Opciˇn [Supresiˇn]


***** [Servicios] *****

Parado & Suprimido : Web Assistant Updater

***** [Ficheros / Carpetas] *****

Carpeta Suprimido : C:\Program Files\Conduit
Carpeta Suprimido : C:\Program Files\ConduitEngine
Carpeta Suprimido : C:\Program Files\IncrediMail_MediaBar_Espanol_2
Carpeta Suprimido : C:\Program Files\Tutoriales100
Carpeta Suprimido : C:\Program Files\uTorrentBar_ES
Carpeta Suprimido : C:\Program Files\Web Assistant
Carpeta Suprimido : C:\ProgramData\Ask
Carpeta Suprimido : C:\Users\Gabriel\AppData\Local\APN
Carpeta Suprimido : C:\Users\Gabriel\AppData\Local\Conduit
Carpeta Suprimido : C:\Users\Gabriel\AppData\LocalLow\Conduit
Carpeta Suprimido : C:\Users\Gabriel\AppData\LocalLow\ConduitEngine
Carpeta Suprimido : C:\Users\Gabriel\AppData\LocalLow\IncrediMail_MediaBar_Espanol_2
Carpeta Suprimido : C:\Users\Gabriel\AppData\LocalLow\PriceGong
Carpeta Suprimido : C:\Users\Gabriel\AppData\LocalLow\uTorrentBar_ES
Carpeta Suprimido : C:\Users\Gabriel\AppData\Roaming\OpenCandy
Carpeta Suprimido : C:\Users\Sandra\AppData\Local\Conduit
Carpeta Suprimido : C:\Users\Sandra\AppData\LocalLow\Conduit
Carpeta Suprimido : C:\Users\Sandra\AppData\LocalLow\ConduitEngine
Carpeta Suprimido : C:\Users\Sandra\AppData\LocalLow\IncrediMail_MediaBar_Espanol_2
Carpeta Suprimido : C:\Users\Sandra\AppData\LocalLow\PriceGong
Carpeta Suprimido : C:\Users\Sandra\AppData\LocalLow\uTorrentBar_ES

***** [Registro] *****

Clave Supprimida : HKCU\Software\AppDataLow\Software\Conduit
Clave Supprimida : HKCU\Software\AppDataLow\Software\conduitEngine
Clave Supprimida : HKCU\Software\AppDataLow\Software\ConduitSearchScopes
Clave Supprimida : HKCU\Software\AppDataLow\Software\IncrediMail_MediaBar_Espanol_2
Clave Supprimida : HKCU\Software\AppDataLow\Software\PriceGong
Clave Supprimida : HKCU\Software\AppDataLow\Software\uTorrentBar_ES
Clave Supprimida : HKCU\Software\AppDataLow\Toolbar
Clave Supprimida : HKCU\Software\Conduit
Clave Supprimida : HKCU\Software\IM
Clave Supprimida : HKCU\Software\ImInstaller
Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4D79-A620-CCE0C0A66CC9}
Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Clave Supprimida : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{BDE3323A-CFCB-4C71-9945-9D078E437D16}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{793C76BD-E1D9-4DD9-BC13-3587006D30D6}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{8736C681-37A0-40C6-A0F0-4C083409151C}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{BDE3323A-CFCB-4C71-9945-9D078E437D16}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Clave Supprimida : HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Clave Supprimida : HKCU\Software\Softonic
Clave Supprimida : HKCU\Software\Tutorials
Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{100F0570-EE8E-4FCA-B9B2-FE8166002F3C}
Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{793C76BD-E1D9-4DD9-BC13-3587006D30D6}
Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{BDE3323A-CFCB-4C71-9945-9D078E437D16}
Clave Supprimida : HKLM\SOFTWARE\Classes\CLSID\{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}
Clave Supprimida : HKLM\SOFTWARE\Classes\Conduit.Engine
Clave Supprimida : HKLM\SOFTWARE\Classes\Toolbar.CT2727162
Clave Supprimida : HKLM\SOFTWARE\Classes\Toolbar.CT2801948
Clave Supprimida : HKLM\SOFTWARE\Classes\Toolbar.CT2851619
Clave Supprimida : HKLM\Software\Conduit
Clave Supprimida : HKLM\Software\conduitEngine
Clave Supprimida : HKLM\SOFTWARE\Google\Chrome\Extensions\dlnembnfbcpjnepmfjmngjenhhajpdfd
Clave Supprimida : HKLM\Software\ImInstaller
Clave Supprimida : HKLM\Software\IncrediMail_MediaBar_Espanol_2
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{2A1F48AC-57BE-4726-9A35-A1EAF70B46B7}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{63BA53FB-F2A2-43FB-B962-CEAEB5FDAF49}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{873EDC09-E5BC-401C-816F-25221F5BD7C1}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{B0F3A0D3-459A-40BB-8A9E-DF94F60E0977}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\SearchScopes\{CFF4DB9B-135F-47C0-9269-B4C6572FD61A}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASAPI32
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Tracing\Babylon_RASMANCS
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{30F9B915-B755-4826-820B-08FBA6BD249D}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{BDE3323A-CFCB-4C71-9945-9D078E437D16}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{100F0570-EE8E-4FCA-B9B2-FE8166002F3C}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{1CB20BF0-BBAE-40A7-93F4-6435FF3D0411}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Ext\PreApproved\{793C76BD-E1D9-4DD9-BC13-3587006D30D6}
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\incredibar.com
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\incredibar.com
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\{336D0C35-8A85-403a-B9D2-65C292C39087}_is1
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\conduitEngine
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\IncrediMail_MediaBar_Espanol_2 Toolbar
Clave Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\uTorrentBar_ES Toolbar
Clave Supprimida : HKLM\Software\Tutoriales100
Clave Supprimida : HKLM\Software\uTorrentBar_ES
Clave Supprimida : HKLM\Software\Web Assistant
Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{4B3803EA-5230-4DC3-A7FC-33638F3D3542}]
Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{BDE3323A-CFCB-4C71-9945-9D078E437D16}]
Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser [{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}]
Valor Supprimida : HKCU\Software\Microsoft\Internet Explorer\URLSearchHooks [{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}]
Valor Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{30F9B915-B755-4826-820B-08FBA6BD249D}]
Valor Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{BDE3323A-CFCB-4C71-9945-9D078E437D16}]
Valor Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\Toolbar [{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}]
Valor Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{BDE3323A-CFCB-4C71-9945-9D078E437D16}]
Valor Supprimida : HKLM\SOFTWARE\Microsoft\Internet Explorer\URLSearchHooks [{DB131C55-60C8-4ADC-84DC-9E76AB06E2DC}]
Valor Supprimida : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run [Tutorials]
Valor Supprimida : HKLM\SOFTWARE\Mozilla\Firefox\extensions [{336D0C35-8A85-403a-B9D2-65C292C39087}]

***** [Navegadores] *****

-\\ Internet Explorer v9.0.8112.16421

[OK] El registro no contiene ninguna entrada ilegÝtima.

-\\ Google Chrome v22.0.1229.94

Fichero : C:\Users\Gabriel\AppData\Local\Google\Chrome\User Data\Default\Preferences

[OK] El fichero no contiene ninguna entrada ilegÝtima.

*************************

AdwCleaner[R2].txt - [11025 octets] - [22/10/2012 11:28:16]
AdwCleaner[R3].txt - [11086 octets] - [22/10/2012 11:29:01]
AdwCleaner[S1].txt - [9694 octets] - [22/10/2012 11:29:19]

########## EOF - C:\AdwCleaner[S1].txt - [9754 octets] ##########


RUN JRT

JRT.txt

Junkware Removal Tool (JRT) by Thisisu
Version: 1.9.7 (10.22.2012)
OS: Windows 7 Ultimate x86
Ran by Gabriel on 22/10/2012 at 11:39:25,42
Blog: http://thisisudax.blogspot.com
**************************************************************




*** Services: 0 Detections



*** Registry Values: 0 Detections



*** Registry Keys:

Successfully deleted: [KEY] "hkey_current_user\software\incredimail"
Successfully deleted: [KEY] "hkey_current_user\software\microsoft\internet explorer\internetregistry\registry\user\S-1-5-21-980005401-3983423761-3157666208-1000\software\web assistant"
Successfully deleted: [KEY] hkey_current_user\software\microsoft\internet explorer\stats\{336d0c35-8a85-403a-b9d2-65c292c39087}
Successfully deleted: [KEY] hkey_classes_root\clsid\{3c471948-f874-49f5-b338-4f214a2ee0b1}



*** Files: 0 Detections



*** Folders: 0 Detections



*** Event Viewer Logs - Cleared





**************************************************************
Scan was completed on 22/10/2012 at 11:46:41,31
End of Report


RUN MiniToolBox

Result MiniToolBox

MiniToolBox by Farbar Version: 23-07-2012
Ran by Gabriel (administrator) on 22-10-2012 at 12:00:53
Microsoft Windows 7 Ultimate Service Pack 1 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Configuración IP de Windows

Se vació correctamente la caché de resolución de DNS.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.
========================= Hosts content: =================================









127.0.0.1 genuine.microsoft.com
127.0.0.1 mpa.one.microsoft.com
127.0.0.1 sls.microsoft.com
127.0.0.1 www.007guard.com
127.0.0.1 007guard.com
127.0.0.1 008i.com
127.0.0.1 www.008k.com
127.0.0.1 008k.com
127.0.0.1 www.00hq.com
127.0.0.1 00hq.com
127.0.0.1 010402.com
127.0.0.1 www.032439.com
127.0.0.1 032439.com
127.0.0.1 www.0scan.com
127.0.0.1 0scan.com
127.0.0.1 www.1000gratisproben.com
127.0.0.1 1000gratisproben.com
127.0.0.1 1001namen.com
127.0.0.1 www.1001namen.com

There are 15276 more lines starting with "127.0.0.1"

========================= IP Configuration: ================================

NVIDIA nForce 10/100 Mbps Ethernet = Conexiˇn de ßrea local (Connected)


# ----------------------------------
# Configuración de IPv4
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=0.0.0.0/0 interface="Conexión de área local 2" nexthop=192.168.1.1 publish=Sí
add address name="Conexión de área local 2" address=192.168.1.10 mask=255.255.255.0


popd
# Fin de la configuración de IPv4



Configuración IP de Windows

Nombre de host. . . . . . . . . : PHENOM720
Sufijo DNS principal . . . . . :
Tipo de nodo. . . . . . . . . . : híbrido
Enrutamiento IP habilitado. . . : no
Proxy WINS habilitado . . . . . : no

Adaptador de Ethernet Conexión de área local:

Sufijo DNS específico para la conexión. . :
Descripción . . . . . . . . . . . . . . . : NVIDIA nForce 10/100 Mbps Ethernet
Dirección física. . . . . . . . . . . . . : 00-24-1D-60-1F-87
DHCP habilitado . . . . . . . . . . . . . : sí
Configuración automática habilitada . . . : sí
Vínculo: dirección IPv6 local. . . : fe80::acad:59:8038:6b94%10(Preferido)
Dirección IPv4. . . . . . . . . . . . . . : 192.168.1.106(Preferido)
Máscara de subred . . . . . . . . . . . . : 255.255.255.0
Concesión obtenida. . . . . . . . . . . . : lunes, 22 de octubre de 2012 11:31:29 a.m.
La concesión expira . . . . . . . . . . . : jueves, 25 de octubre de 2012 11:31:29 a.m.
Puerta de enlace predeterminada . . . . . : 192.168.1.1
Servidor DHCP . . . . . . . . . . . . . . : 192.168.1.1
IAID DHCPv6 . . . . . . . . . . . . . . . : 234890269
DUID de cliente DHCPv6. . . . . . . . . . : 00-01-00-01-15-5F-74-CC-00-24-1D-60-1F-87
Servidores DNS. . . . . . . . . . . . . . : 192.168.1.1
NetBIOS sobre TCP/IP. . . . . . . . . . . : habilitado

Adaptador de túnel Teredo Tunneling Pseudo-Interface:

Sufijo DNS específico para la conexión. . :
Descripción . . . . . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Dirección física. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP habilitado . . . . . . . . . . . . . : no
Configuración automática habilitada . . . : sí
Dirección IPv6 . . . . . . . . . . : 2001:0:9d38:6ab8:3437:c640:41cd:622d(Preferido)
Vínculo: dirección IPv6 local. . . : fe80::3437:c640:41cd:622d%11(Preferido)
Puerta de enlace predeterminada . . . . . : ::
NetBIOS sobre TCP/IP. . . . . . . . . . . : deshabilitado

Adaptador de túnel isatap.{46E5FB82-E939-4D3F-B69E-BAC5C47BB5F9}:

Estado de los medios. . . . . . . . . . . : medios desconectados
Sufijo DNS específico para la conexión. . :
Descripción . . . . . . . . . . . . . . . : Adaptador ISATAP de Microsoft #2
Dirección física. . . . . . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP habilitado . . . . . . . . . . . . . : no
Configuración automática habilitada . . . : sí
Servidor: UnKnown
Address: 192.168.1.1

Nombre: google.com
Addresses: 74.125.229.238
74.125.229.230
74.125.229.233
74.125.229.226
74.125.229.232
74.125.229.231
74.125.229.229
74.125.229.228
74.125.229.225
74.125.229.227
74.125.229.224


Haciendo ping a google.com [74.125.229.238] con 32 bytes de datos:
Respuesta desde 74.125.229.238: bytes=32 tiempo=182ms TTL=53
Respuesta desde 74.125.229.238: bytes=32 tiempo=181ms TTL=53

Estadísticas de ping para 74.125.229.238:
Paquetes: enviados = 2, recibidos = 2, perdidos = 0
(0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
Mínimo = 181ms, Máximo = 182ms, Media = 181ms
Servidor: UnKnown
Address: 192.168.1.1

Nombre: yahoo.com
Addresses: 72.30.38.140
98.139.183.24
98.138.253.109


Haciendo ping a yahoo.com [72.30.38.140] con 32 bytes de datos:
Respuesta desde 72.30.38.140: bytes=32 tiempo=834ms TTL=52
Respuesta desde 72.30.38.140: bytes=32 tiempo=811ms TTL=52

Estadísticas de ping para 72.30.38.140:
Paquetes: enviados = 2, recibidos = 2, perdidos = 0
(0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
Mínimo = 811ms, Máximo = 834ms, Media = 822ms
Servidor: UnKnown
Address: 192.168.1.1

Nombre: bleepingcomputer.com
Address: 208.43.87.2


Haciendo ping a bleepingcomputer.com [208.43.87.2] con 32 bytes de datos:
Respuesta desde 208.43.87.2: Host de destino inaccesible.
Respuesta desde 208.43.87.2: Host de destino inaccesible.

Estadísticas de ping para 208.43.87.2:
Paquetes: enviados = 2, recibidos = 2, perdidos = 0
(0% perdidos),

Haciendo ping a 127.0.0.1 con 32 bytes de datos:
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128
Respuesta desde 127.0.0.1: bytes=32 tiempo<1m TTL=128

Estadísticas de ping para 127.0.0.1:
Paquetes: enviados = 2, recibidos = 2, perdidos = 0
(0% perdidos),
Tiempos aproximados de ida y vuelta en milisegundos:
Mínimo = 0ms, Máximo = 0ms, Media = 0ms
===========================================================================
ILista de interfaces
10...00 24 1d 60 1f 87 ......NVIDIA nForce 10/100 Mbps Ethernet
1...........................Software Loopback Interface 1
11...00 00 00 00 00 00 00 e0 Teredo Tunneling Pseudo-Interface
13...00 00 00 00 00 00 00 e0 Adaptador ISATAP de Microsoft #2
===========================================================================

IPv4 Tabla de enrutamiento
===========================================================================
Rutas activas:
Destino de red Máscara de red Puerta de enlace Interfaz Métrica
0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.106 20
127.0.0.0 255.0.0.0 En vínculo 127.0.0.1 306
127.0.0.1 255.255.255.255 En vínculo 127.0.0.1 306
127.255.255.255 255.255.255.255 En vínculo 127.0.0.1 306
192.168.1.0 255.255.255.0 En vínculo 192.168.1.106 276
192.168.1.106 255.255.255.255 En vínculo 192.168.1.106 276
192.168.1.255 255.255.255.255 En vínculo 192.168.1.106 276
224.0.0.0 240.0.0.0 En vínculo 127.0.0.1 306
224.0.0.0 240.0.0.0 En vínculo 192.168.1.106 276
255.255.255.255 255.255.255.255 En vínculo 127.0.0.1 306
255.255.255.255 255.255.255.255 En vínculo 192.168.1.106 276
===========================================================================
Rutas persistentes:
Dirección de red Máscara de red Dirección de puerta de enlace Métrica
0.0.0.0 0.0.0.0 192.168.1.1 Predeterminada
===========================================================================

IPv6 Tabla de enrutamiento
===========================================================================
Rutas activas:
Cuando destino de red métrica Puerta de enlace
11 58 ::/0 En vínculo
1 306 ::1/128 En vínculo
11 58 2001::/32 En vínculo
11 306 2001:0:9d38:6ab8:3437:c640:41cd:622d/128
En vínculo
10 276 fe80::/64 En vínculo
11 306 fe80::/64 En vínculo
11 306 fe80::3437:c640:41cd:622d/128
En vínculo
10 276 fe80::acad:59:8038:6b94/128
En vínculo
1 306 ff00::/8 En vínculo
11 306 ff00::/8 En vínculo
10 276 ff00::/8 En vínculo
===========================================================================
Rutas persistentes:
Ninguno
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [52224] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [52224] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [65024] (Microsoft Corporation)
Catalog5 05 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 06 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDNSP.DLL [145280] (Microsoft Corp.)
Catalog5 07 C:\Windows\System32\mswsock.dll [232448] (Microsoft Corporation)
Catalog5 08 C:\Windows\System32\winrnr.dll [20992] (Microsoft Corporation)
Catalog9 01 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [232448] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================

System errors:
=============

Microsoft Office Sessions:
=========================

=========================== Installed Programs ============================

Update for Microsoft Office 2007 (KB2508958)
32 Bit HP CIO Components Installer (Version: 6.1.2)
Adobe AIR (Version: 1.5.3.9120)
Adobe Bridge 1.0 (Version: 001.000.001)
Adobe Common File Installer (Version: 1.00.003)
Adobe Community Help (Version: 3.0.0)
Adobe Community Help (Version: 3.0.0.400)
Adobe Creative Suite 2
Adobe Flash Player 10 Plugin (Version: 10.0.12.36)
Adobe Flash Player 11 ActiveX (Version: 11.4.402.287)
Adobe Help Center 1.0 (Version: 001.000.0002)
Adobe Media Player (Version: 1.8)
Adobe Photoshop CS2 (Version: 9.0)
Adobe Reader 8 - Espa˝ol (Version: 8.0.0)
Adobe Stock Photos 1.0 (Version: 1.0.2)
Android SDK Tools (Version: 0.7)
Arovax AntiSpyware 2.1.153 (Version: 2.1.153)
ÁTorrent (Version: 2.2.1)
aTube Catcher (Version: 2.9.909)
avast! Free Antivirus (Version: 7.0.1466.0)
AVS Update Manager 1.0
AVS Video Converter 8
AVS4YOU Software Navigator 1.4
B209a-m (Version: 140.0.690.000)
BufferChm (Version: 140.0.212.000)
CCleaner (Version: 3.23)
Centro de Mouse y Teclado de Microsoft (Version: 1.1.500.0)
CloneDVD 4.1.0.2
Complemento Guardar como PDF o XPS de Microsoft para programas de Microsoft Office 2007 (Version: 12.0.4518.1014)
Compresor WinRAR
ConvertXtoDVD 2.1.10.209 (Version: 2.1.10.209)
CorelDRAW Graphics Suite X3 (Version: 13.0)
CPUID CPU-Z 1.57.1
CPUID HWMonitor 1.17
CyberLink PowerDVD 10 (Version: 10.0.1516)
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 140.0.77.000)
DeviceDiscovery (Version: 140.0.212.000)
DVD to DivX Converter 4 (Version: 4.0.53.0721)
ES (Version: 13.0)
eyeBeam 1.5.19.4
F1 2011 (Version: 1.0.0000.129)
FLV to AVI MPEG WMV 3GP MP4 iPod Converter 3.9.1108
FontNav (Version: 5.0)
Free FTP Manager 2.2
GoforFiles (Version: 1.0.1)
Google Chrome (Version: 22.0.1229.94)
Google Earth (Version: 6.1.0.5001)
Google Update Helper (Version: 1.3.21.123)
GPBaseService2 (Version: 140.0.211.000)
Hamster Free Video Converter (Version: 2.5.2.33)
High-Definition Video Playback 10 (Version: 7.0.11400.29.0)
HP Customer Participation Program 14.0 (Version: 14.0)
HP Imaging Device Functions 14.0 (Version: 14.0)
HP Photosmart Plus B209a-m All-in-One Driver Software 14.0 Rel. 6 (Version: 14.0)
HP Smart Web Printing 4.60 (Version: 4.60)
HP Solution Center 14.0 (Version: 14.0)
HP Update (Version: 5.002.002.002)
HPPhotoGadget (Version: 140.0.524.000)
HPProductAssistant (Version: 140.0.212.000)
HPSSupply (Version: 140.0.211.000)
HyperSnap 6 (Version: 5)
IncrediMail (Version: 6.2.9.5229)
IncrediMail 2.0 (Version: 6.2.9.5229)
Instalaciˇn de DivX (Version: 2.6.1.9)
J2SE Runtime Environment 5.0 Update 9 (Version: 1.5.0.90)
Java Auto Updater (Version: 2.1.6.0)
Java™ 7 Update 4 (Version: 7.0.40)
Java™ SE Development Kit 7 (Version: 1.7.0.0)
JavaFX 2.1.0 (Version: 2.1.0)
K-Lite Codec Pack 8.8.0 (Full) (Version: 8.8.0)
Malwarebytes Anti-Malware versiˇn 1.65.0.1400 (Version: 1.65.0.1400)
MarketResearch (Version: 140.0.212.000)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Client Profile ESN Language Pack (Version: 4.0.30319)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Games for Windows - LIVE Redistributable (Version: 3.5.88.0)
Microsoft Games for Windows Marketplace (Version: 3.5.50.0)
Microsoft Office 2007 Service Pack 3 (SP3)
Microsoft Office Access MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6612.1000)
Microsoft Office Excel 2007 Help Actualizaciˇn (KB963678)
Microsoft Office Excel MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Groove MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office InfoPath MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office OneNote MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Outlook 2007 Help Actualizaciˇn (KB963677)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Powerpoint 2007 Help Actualizaciˇn (KB963669)
Microsoft Office PowerPoint MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Project 2007 Service Pack 3 (SP3)
Microsoft Office Project MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Project Professional 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Basque) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Catalan) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Galician) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Portuguese (Brazil)) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Proofing (Spanish) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
Microsoft Office Publisher MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Shared MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office SharePoint Designer 2007 (Version: 12.0.6612.1000)
Microsoft Office SharePoint Designer 2007 Service Pack 3 (SP3)
Microsoft Office SharePoint Designer MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Visio 2007 Service Pack 3 (SP3)
Microsoft Office Visio MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Office Visio Professional 2007 (Version: 12.0.6612.1000)
Microsoft Office Word 2007 Help Actualizaciˇn (KB963665)
Microsoft Office Word MUI (Spanish) 2007 (Version: 12.0.6612.1000)
Microsoft Primary Interoperability Assemblies 2005 (Version: 8.0.50727.42)
Microsoft Silverlight (Version: 5.1.10411.0)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.50727.42)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 (Version: 9.0.30729)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft_VC80_ATL_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_CRT_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFC_x86 (Version: 8.0.50727.4053)
Microsoft_VC80_MFCLOC_x86 (Version: 8.0.50727.4053)
Microsoft_VC90_ATL_x86 (Version: 1.00.0000)
Microsoft_VC90_CRT_x86 (Version: 1.00.0000)
Microsoft_VC90_MFC_x86 (Version: 1.00.0000)
MKVToolNix 5.3.0 (Version: 5.3.0)
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
Nero 10 Menu TemplatePack Basic (Version: 10.0.10600.6.0)
Nero 10 Movie ThemePack Basic (Version: 10.0.10600.6.0)
Nero BackItUp 10 (Version: 5.4.11800.21.100)
Nero BackItUp 10 Help (CHM) (Version: 1.0.10700)
Nero Burning ROM 10 (Version: 10.0.11100.10.100)
Nero BurningROM 10 Help (CHM) (Version: 1.0.10700)
Nero BurnRights 10 (Version: 4.0.11000.12.100)
Nero BurnRights 10 Help (CHM) (Version: 1.0.10600)
Nero Control Center 10 (Version: 10.0.12000.1.4)
Nero ControlCenter 10 Help (CHM) (Version: 1.0.10700)
Nero Core Components 10 (Version: 2.0.13700.0.1)
Nero CoverDesigner 10 (Version: 5.0.10900.11.100)
Nero CoverDesigner 10 Help (CHM) (Version: 1.0.10600)
Nero DiscCopy Gadget 10 (Version: 3.0.10700.9.100)
Nero DiscCopyGadget 10 Help (CHM) (Version: 1.0.10600)
Nero DiscSpeed 10 (Version: 6.0.10800.7.100)
Nero DiscSpeed 10 Help (CHM) (Version: 1.0.10600)
Nero Dolby Files 10 (Version: 2.0.11000.0.10)
Nero Express 10 (Version: 10.0.11000.10.100)
Nero Express 10 Help (CHM) (Version: 1.0.10700)
Nero InfoTool 10 (Version: 7.0.10800.8.100)
Nero InfoTool 10 Help (CHM) (Version: 1.0.10600)
Nero MediaHub 10 (Version: 1.0.13400.11.100)
Nero MediaHub 10 Help (CHM) (Version: 1.0.10700)
Nero Multimedia Suite 10 (Version: 10.0.13200)
Nero Recode 10 (Version: 4.6.10900.4.100)
Nero Recode 10 Help (CHM) (Version: 1.0.10600)
Nero RescueAgent 10 (Version: 3.0.10900.9.100)
Nero RescueAgent 10 Help (CHM) (Version: 1.0.10700)
Nero SoundTrax 10 (Version: 4.6.10600.2.100)
Nero SoundTrax 10 Help (CHM) (Version: 1.0.10600)
Nero StartSmart 10 (Version: 10.0.11200.12.100)
Nero StartSmart 10 Help (CHM) (Version: 1.0.10700)
Nero Update (Version: 1.0.0017)
Nero Vision 10 (Version: 7.0.11100.8.100)
Nero Vision 10 Help (CHM) (Version: 1.0.10600)
Nero WaveEditor 10 (Version: 5.6.10600.2.100)
Nero WaveEditor 10 Help (CHM) (Version: 1.0.10600)
Network (Version: 140.0.215.000)
nLite 1.4.9.1 (Version: 1.4.9.1)
NVIDIA Display Control Panel (Version: 6.14.12.5896)
NVIDIA Drivers (Version: 1.10.62.40)
Octoshape Streaming Services
OpenAL
Paquete de idioma de Microsoft .NET Framework 4 Client Profile ESN (Version: 4.0.30319)
PC Wizard 2010.1.96
Photo Notifier and Animation Creator (Version: 1.0.0.1009)
PS_AIO_06_B209a-m_SW_Min (Version: 140.0.690.000)
PVSonyDll (Version: 1.00.0001)
QuickTransfer (Version: 140.0.98.000)
Rapture3D 2.4.9 Game
RealNetworks - Microsoft Visual C++ 2008 Runtime (Version: 9.0)
RealPlayer (Version: 15.0.6)
RealUpgrade 1.1 (Version: 1.1.0)
RMVB WMV to AVI Converter 2.10
Samsung Kies (Version: 2.3.3.12085_7)
SAMSUNG USB Driver for Mobile Phones (Version: 1.5.9.0)
Scan (Version: 140.0.80.000)
Shop for HP Supplies (Version: 14.0)
SmartWebPrinting (Version: 140.0.186.000)
SolutionCenter (Version: 140.0.213.000)
Sony Ericsson PC Companion 2.02.002 (Version: 2.02.002)
Sony Ericsson Update Engine (Version: 2.11.9.6)
Spybot - Search & Destroy (Version: 1.6.2)
Spyware Terminator (Version: 2.8.3.283)
SpywareBlaster 4.6 (Version: 4.6.0)
Status (Version: 140.0.212.000)
Suite Specific (Version: 2.0.0)
TeamViewer 7 (Version: 7.0.14563)
Toolbox (Version: 140.0.428.000)
TrayApp (Version: 140.0.212.000)
TUTORIALES100_AR_3-1.0
Ultra MPEG-4 Converter 3.9.1120
UltraISO Premium V8.66
Update for 2007 Microsoft Office System (KB967642)
Update for Microsoft Office Outlook 2007 (KB2596598) 32-Bit Edition
Update for Microsoft Office Outlook 2007 Junk Email Filter (KB2687407) 32-Bit Edition
Update Manager (Version: 4.60)
VBA (Version: 6.2)
VC80CRTRedist - 8.0.50727.6195 (Version: 1.2.0)
VisualRoute
WebReg (Version: 140.0.212.017)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3555.0308)
Windows Live ID Sign-in Assistant (Version: 7.250.4232.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Messenger (Version: 15.4.3538.0513)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
WinZip (Version: 8.1 (4331))
Wol (Version: 2.0.3)
WOL Magic Packet Sender (Version: 1.5.0)
Xiph.Org Open Codecs 0.85.17777 (Version: 0.85.17777)

========================= Memory info: ===================================

Percentage of memory in use: 59%
Total physical RAM: 1983.55 MB
Available physical RAM: 796.58 MB
Total Pagefile: 3967.11 MB
Available Pagefile: 2281.17 MB
Total Virtual: 2047.88 MB
Available Virtual: 1927.88 MB

========================= Partitions: =====================================

2 Drive c: (Windows 7) (Fixed) (Total:146.38 GB) (Free:52.56 GB) NTFS
3 Drive d: () (Fixed) (Total:292.97 GB) (Free:292.51 GB) NTFS
4 Drive e: (DOCUMENTOS) (Fixed) (Total:492.05 GB) (Free:230.18 GB) NTFS

========================= Users: ========================================

Cuentas de usuario de \\PHENOM720

Administrador Gabriel Invitado
Sandra
Se ha completado el comando correctamente.


**** End of log ****


from already thank you very much...!!

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:22 PM

Posted 22 October 2012 - 10:41 AM

Hello, run one more tool than change your Email password. Appears you infected yourself via atorrent download. That's why they give out free stuff so they can install malware to steal passwords etc..







Finally,I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image
      icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
[*]You can find the logfile at C:\AdwCleaner[S1].txt as well.[/list]
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 gozstar

gozstar
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:22 PM

Posted 22 October 2012 - 06:24 PM

RUN Eset online Scanner


C:\Program Files\CrackDown\CrackDown.zip Win32/Delf.NXV trojan deleted - quarantined
C:\Program Files\Free FTP Manager\DealioKit1-stub-0.exe Win32/Toolbar.Widgi application cleaned by deleting - quarantined
C:\Users\Gabriel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\O84QHZGB\SoftonicDownloader_para_spyware-terminator.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantined
C:\Users\Gabriel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKOXRW6F\SoftonicDownloader_para_spyware-terminator.exe a variant of Win32/SoftonicDownloader.E application cleaned by deleting - quarantined
C:\Users\Gabriel\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\VKOXRW6F\speedupmypc.exe Win32/SpeedUpMyPC application cleaned by deleting - quarantined
E:\Sandra\Felix2_1.exe Win32/Joke.ScreenMate application cleaned by deleting - quarantined
E:\Sandra\Sandra\cosas para ver\Power Point\Felix2_1.exe Win32/Joke.ScreenMate application cleaned by deleting - quarantined
E:\Software\aTube_Catcher_Setup.exe Win32/OpenCandy application cleaned by deleting - quarantined
E:\Software\k lite codec pack full.exe MSIL/Solimba.E application cleaned by deleting - quarantined
E:\Software\Avira\Avira AntiVir Personal Edition classic (Win2000,XP,Vista) 9.0.0.386.exe probably a variant of Win32/Agent.KOEOVVZ trojan cleaned by deleting - quarantined
E:\Software\cpc\BSplayer_Pro_v2.12.941_by_Evo2k6.rar a variant of Win32/Keygen.AG application deleted - quarantined
E:\Software\cpc\cpc.rar multiple threats deleted - quarantined
E:\Software\Linux\Soft\CounterPath.eyeBeam.Enhanced.v1.5.19.4.51814+_Keygen\CounterPath.eyeBeam.Enhanced.v1.5.19.4.51814+_Keygen.rar a variant of Win32/Keygen.BJ application deleted - quarantined
E:\Software\Linux\Soft\VmWare Workstation 7 + key\vm-egydown.rar a variant of Win32/Keygen.BN application deleted - quarantined
E:\Software\Photoshop CS5\Photoshop CS5 Extended by X-Taringa.Com\Photoshop CS5 Keygen\Crack para Photoshop CS5.rar a variant of Win32/HackTool.Patcher.P application deleted - quarantined
E:\Software\Software XP\FreeftpmanSetup.exe Win32/Toolbar.Widgi application cleaned by deleting - quarantined
E:\Software\Software XP\installer_driver_macronix_mx98715_Spanish.exe Win32/Toggle application cleaned by deleting - quarantined
E:\Software\Software XP\installer_driver_realtek_alc883_Spanish.exe Win32/Toggle application cleaned by deleting - quarantined
E:\Software\Software XP\Windows uE10.iso multiple threats deleted - quarantined
E:\Software\Software XP\Gabriel\Programacion\Proyectos VB\Foto.exe a variant of Win32/TrojanDropper.VB.NWR trojan cleaned by deleting - quarantined
E:\Software\Software XP\NOTEBOOK\manuales de servicio nothebooks\ibm\terra\Password_recovery\Password_recovery\setup_ibmpass21.zip Win32/IbmPass application deleted - quarantined
E:\Software\Software XP\NOTEBOOK\manuales de servicio nothebooks\ibm\terra\Password_recovery\Password_recovery\setup_ibmpass21\setup_ibmpass21.msi Win32/IbmPass application deleted - quarantined
E:\Software\Software XP\pendrive\Felix2_1.exe Win32/Joke.ScreenMate application cleaned by deleting - quarantined
E:\Software\Software XP\pendrive\Loari Trojan + crack\05120210.sfrd.rar multiple threats deleted - quarantined
E:\Software\Software XP\pendrive\Loari Trojan + crack\05120210\Loaris Trojan Remover 1.2.0.5 + Patch-STYD\LoarisTrojanRemover.exe a variant of Win32/1AntiVirus application cleaned by deleting - quarantined
E:\Software\Software XP\pendrive\Loari Trojan + crack\05120210\Loaris Trojan Remover 1.2.0.5 + Patch-STYD\Patch\Trojan Remover 1.2.0.x_patch.fixed.exe a variant of Win32/HackTool.Patcher.D application cleaned by deleting - quarantined
E:\Software\Software XP\pendrive\Loaris Trojan + crack05190510.sfrd\05190510.sfrd.rar a variant of Win32/1AntiVirus application deleted - quarantined
E:\Software\Software XP\pendrive\Loaris Trojan + crack05190510.sfrd\05190510\loaristrojanremover.exe a variant of Win32/1AntiVirus application cleaned by deleting - quarantined
E:\Software\Software XP\Vmware 7.0 + crack\WMware Workstation 7 con keygen.part1.rar a variant of Win32/Keygen.BN application deleted - quarantined
E:\Software\Software XP\XPue10 sp3\WIUE9.52011\WINDOWS UE 9.5 Ultima Edicion 2011\95eu.iso multiple threats deleted - quarantined

#6 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:22 PM

Posted 22 October 2012 - 07:13 PM

We should run a few more tools to be sure we didn't leave anything.
It should be a lot better.

I cannot stress this enough.
It appears you are dowmloading illegal content from Utorrent, all these infections are from downloading the free or cracked software. Thats why it's free. Free for them to steal your personal information.

IMPORTANT NOTE: The practice of using cracking tools, keygens, warez or any pirated software is not only considered illegal activity but it is a serious security risk.

Cracking applications are used for illegally breaking (cracking) various copy-protection and registration techniques used in commercial software. These programs may be distributed via Web sites, Usenet, and P2P networks.

trendmicro.com/vinfo

...warez and crack web pages are being used by cybercriminals as download sites for malware related to VIRUT and VIRUX. Searches for serial numbers, cracks, and even antivirus products like Trend Micro yield malcodes that come in the form of executables or self-extracting files...quick links in these sites also lead to malicious files. Ads and banners are also infection vectors...

Keygen and Crack Sites Distribute VIRUX and FakeAV

...warez/piracy sites ranked the highest in downloading spyware...just opening the web page usually sets off an exploit, never mind actually downloading anything. And by the time the malware is finished downloading, often the machine is trashed and rendered useless.

University of Washington spyware study

...One of the most aggressive and intrusive of all bad websites on the Internet are serial, warez, software cracking type sites...they sneak malware onto your system...Where do trojan viruses originate? One of the biggest malware distributors on the Internet are serial/warez/code cracking sites.

Bad Web Sites: Malware

When you use these kind of programs, be forewarned that some of the worst types of malware infections can be contracted and spread by visiting crack, keygen, warez and other pirated software sites. In many cases, those sites are infested with a sm÷rgňsbord of malware and an increasing source of system infection. Those who attempt to get software for free can end up with a computer system so badly damaged that recovery is not possible and it cannot be repaired. When that happens there is nothing you can do besides reformatting and reinstalling the OS.

Before we can continue, I need you to remove all cracks and keygens immediately to reduce the risk of infection/reinfection. If not, then we are just wasting time trying to clean your system. Further, other tools used during the disinfection process may detect crack and keygens so we need to ensure they have been removed.

Using these types of programs or the websites you visited to get them is almost a guaranteed way to get yourself infected!!

>>>>>>>>>>>>>>>>



Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.


Update your Adobe Reader and Java JRE
http://get.adobe.com/reader/

http://www.oracle.com/technetwork/java/javase/downloads/index.html
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#7 gozstar

gozstar
  • Topic Starter

  • Members
  • 25 posts
  • OFFLINE
  •  
  • Local time:04:22 PM

Posted 26 October 2012 - 11:50 AM

THANKS, But I formating and DELETED cracks.

#8 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,530 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:02:22 PM

Posted 26 October 2012 - 10:13 PM

Good move.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users