Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

myfile.exe virus deleted files in only one folder on external hard drive?


  • Please log in to reply
11 replies to this topic

#1 doomguy5000

doomguy5000

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 30 July 2013 - 12:45 PM

Hi there,
 
Usually any computer problems I can fix myself but this one has me stumped. The virus scanner I am using is Avast and the firewall I'm using is Windows Firewall. My operating system is XP Service Pack 3. Yesterday with breakfast I clicked into my "Downloaded" folder on my external hard drive to find the folder was empty except for a file called "myfile.exe." Where this has come from and how it was not picked up or recognised as a virus is unknown. I used these forums to try and solve the problem trying everything from "unhide.exe" to the recommended malware programs and followed pretty much every procedure but to no avail. The space from the files has still be taken up on the harddrive and show hidden files is checked etc. It only seems to be that folder that has been effected. The contents of the folder itself are all video files, tv shows and movies. If anyone can help it will be much appreciated!
 
 
Regards

Edit: Moved topic from Windows XP to the more appropriate forum. ~ Animal


Edited by doomguy5000, 30 July 2013 - 01:02 PM.


BC AdBot (Login to Remove)

 


#2 doomguy5000

doomguy5000
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 30 July 2013 - 01:36 PM

I seem to have found the files, they were moved from the original folder into a neibouring folder. It still doesn't explain the myfile.exe however. *edit* I have however also noticed that the computer is taking longer on start up along with the general speed of the computer and firefox is hanging regularly. :unsure:


Edited by doomguy5000, 30 July 2013 - 02:06 PM.


#3 doomguy5000

doomguy5000
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 30 July 2013 - 06:36 PM

*Update* Also rebooted computer and was told the firewall was off, when I clicked the balloon it came up that it was still switched on?



#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:30 PM

Posted 30 July 2013 - 08:24 PM

Hello, would you please run these.
 
Please download Rkill by Grinler and save it to your desktop.
  • Link 1
  • Link 2 %5BLIST%5D
  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista, right-click on it and Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • If the tool does not run from any of the links provided, please let me know.
  • Do not reboot the computer, you will need to run the application again.
  • [/list]


    Please download MiniToolBox, save it to your desktop and run it.
    Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Users, Partitions and Memory size.
  • Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.
    Note: When using "Reset FF Proxy Settings" option Firefox should be closed.



    Please Download TDSSkiller
    Launch it.
    Click on change parameters-Select TDLFS file system
    Click on "Scan".
    Please post the LOG report(log file should be in your C drive)

    Do not change the default options on scan results.



    Please download AdwCleaner by Xplode onto your desktop.
    Close all open programs and internet browsers.
    Double click on adwcleaner.exe to run the tool.
    Click on Delete.
    Confirm each time with Ok.
    You will be prompted to restart your computer. A text file will open after the restart.
    Please post the contents of that logfile with your next reply.
    You can find the logfile at C:\AdwCleaner[S1].txt as well.



    Last run ESET.
  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
  • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
  • Double click on the esetsmartinstaller_enu.png icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and "Remove found threats"
  • Click Advanced settings and select the following:
  • Scan potentially unwanted applications
  • Scan for potentially unsafe applications
  • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Click Export, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Click the Back button.
  • Click the Finish button.
  • NOTE:Sometimes if ESET finds no infections it will not create a log.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 doomguy5000

doomguy5000
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 30 July 2013 - 09:20 PM

MiniToolBox by Farbar  Version: 13-07-2013
Ran by Owner (administrator) on 31-07-2013 at 03:15:24
Running from "F:\Documents and Settings\Owner\Desktop"
Microsoft Windows XP Professional Service Pack 3 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================


Windows IP Configuration



Successfully flushed the DNS Resolver Cache.


========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================


127.0.0.1       localhost

========================= IP Configuration: ================================

Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter = Wireless Network Connection (Disconnected)
SiS191 Ethernet Controller = Local Area Connection (Connected)


# ----------------------------------
# Interface IP Configuration         
# ----------------------------------
pushd interface ip


# Interface IP Configuration for "Local Area Connection"

set address name="Local Area Connection" source=dhcp
set dns name="Local Area Connection" source=dhcp register=PRIMARY
set wins name="Local Area Connection" source=dhcp


popd
# End of interface IP configuration




Windows IP Configuration



        Host Name . . . . . . . . . . . . : Computer-5300

        Primary Dns Suffix  . . . . . . . :

        Node Type . . . . . . . . . . . . : Unknown

        IP Routing Enabled. . . . . . . . : No

        WINS Proxy Enabled. . . . . . . . : No



Ethernet adapter Local Area Connection:



        Connection-specific DNS Suffix  . :

        Description . . . . . . . . . . . : SiS191 Ethernet Controller

        Physical Address. . . . . . . . . : 44-87-FC-03-5F-B2

        Dhcp Enabled. . . . . . . . . . . : Yes

        Autoconfiguration Enabled . . . . : Yes

        IP Address. . . . . . . . . . . . : 192.168.1.3

        Subnet Mask . . . . . . . . . . . : 255.255.255.0

        Default Gateway . . . . . . . . . : 192.168.1.1

        DHCP Server . . . . . . . . . . . : 192.168.1.1

        DNS Servers . . . . . . . . . . . : 192.168.1.1

                                            192.168.1.1

        Lease Obtained. . . . . . . . . . : 30 July 2013 23:40:59

        Lease Expires . . . . . . . . . . : 31 July 2013 23:40:59

Server:  UnKnown
Address:  192.168.1.1

Name:    google.com
Addresses:  173.194.34.104, 173.194.34.110, 173.194.34.101, 173.194.34.97
      173.194.34.98, 173.194.34.102, 173.194.34.103, 173.194.34.105, 173.194.34.100
      173.194.34.96, 173.194.34.99



Pinging google.com [173.194.34.104] with 32 bytes of data:



Reply from 173.194.34.104: bytes=32 time=34ms TTL=56

Reply from 173.194.34.104: bytes=32 time=31ms TTL=56



Ping statistics for 173.194.34.104:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 31ms, Maximum = 34ms, Average = 32ms

Server:  UnKnown
Address:  192.168.1.1

Name:    yahoo.com
Addresses:  98.139.183.24, 98.138.253.109, 206.190.36.45



Pinging yahoo.com [98.139.183.24] with 32 bytes of data:



Reply from 98.139.183.24: bytes=32 time=217ms TTL=46

Reply from 98.139.183.24: bytes=32 time=116ms TTL=46



Ping statistics for 98.139.183.24:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 116ms, Maximum = 217ms, Average = 166ms



Pinging 127.0.0.1 with 32 bytes of data:



Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

    Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

    Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...44 87 fc 03 5f b2 ...... SiS191 Ethernet Controller - Packet Scheduler Miniport
===========================================================================
===========================================================================
Active Routes:
Network Destination        Netmask          Gateway       Interface  Metric
          0.0.0.0          0.0.0.0      192.168.1.1     192.168.1.3      20
        127.0.0.0        255.0.0.0        127.0.0.1       127.0.0.1      1
      192.168.1.0    255.255.255.0      192.168.1.3     192.168.1.3      20
      192.168.1.3  255.255.255.255        127.0.0.1       127.0.0.1      20
    192.168.1.255  255.255.255.255      192.168.1.3     192.168.1.3      20
        224.0.0.0        240.0.0.0      192.168.1.3     192.168.1.3      20
  255.255.255.255  255.255.255.255      192.168.1.3     192.168.1.3      1
Default Gateway:       192.168.1.1
===========================================================================
Persistent Routes:
  None
========================= Winsock entries =====================================

Catalog5 01 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog5 02 F:\WINDOWS\system32\winrnr.dll [16896] (Microsoft Corporation)
Catalog5 03 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 01 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 02 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 03 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 04 F:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 05 F:\WINDOWS\system32\rsvpsp.dll [92672] (Microsoft Corporation)
Catalog9 06 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 07 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 08 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 09 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 10 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 11 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 12 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 13 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 14 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 15 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 16 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)
Catalog9 17 F:\WINDOWS\system32\mswsock.dll [245248] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (07/27/2013 09:34:02 PM) (Source: Application Error) (User: )
Description: Faulting application epsxe.exe, version 0.0.0.0, faulting module msvcrt.dll, version 7.0.2600.5701, fault address 0x00037c7e.
Processing media-specific event for [epsxe.exe!ws!]

Error: (07/27/2013 09:33:36 PM) (Source: Application Error) (User: )
Description: Faulting application epsxe.exe, version 0.0.0.0, faulting module msvcrt.dll, version 7.0.2600.5701, fault address 0x00037c7e.
Processing media-specific event for [epsxe.exe!ws!]

Error: (06/16/2013 09:22:32 PM) (Source: Application Error) (User: )
Description: Faulting application frontpg.exe, version 11.0.5516.0, faulting module shell32.dll, version 6.0.2900.6242, fault address 0x0002adaf.
Processing media-specific event for [frontpg.exe!ws!]

Error: (06/16/2013 04:14:10 AM) (Source: MsiInstaller) (User: COMPUTER-5300)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 1922. SA_Error1922: StandardAction(0xC0070782): Service 'AVGIDSAgent' (AVGIDSAgent) could not be deleted. Verify that you have sufficient privileges to remove system services.

Error: (06/15/2013 08:21:47 PM) (Source: MsiInstaller) (User: COMPUTER-5300)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27054. CA_Error27054: SetupAction(0xC0070642): Installation failed.

Error: (06/15/2013 08:20:26 PM) (Source: Application Error) (User: )
Description: Faulting application machineidcreator.exe, version 15.1.0.2, faulting module avguidx.dll, version 2012.0.0.1, fault address 0x00028fa6.
Processing media-specific event for [machineidcreator.exe!ws!]

Error: (06/15/2013 08:20:12 PM) (Source: Application Error) (User: )
Description: Faulting application machineidcreator.exe, version 15.1.0.2, faulting module avguidx.dll, version 2012.0.0.1, fault address 0x00028fa6.
Processing media-specific event for [machineidcreator.exe!ws!]

Error: (06/15/2013 08:05:59 PM) (Source: MsiInstaller) (User: COMPUTER-5300)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 1922. SA_Error1922: StandardAction(0xC0070782): Service 'AVGIDSAgent' (AVGIDSAgent) could not be deleted. Verify that you have sufficient privileges to remove system services.

Error: (06/15/2013 07:17:22 PM) (Source: Application Error) (User: )
Description: Faulting application frontpg.exe, version 11.0.5516.0, faulting module shell32.dll, version 6.0.2900.6242, fault address 0x0002adaf.
Processing media-specific event for [frontpg.exe!ws!]

Error: (06/15/2013 07:15:51 PM) (Source: Application Error) (User: )
Description: Faulting application frontpg.exe, version 11.0.5516.0, faulting module unknown, version 0.0.0.0, fault address 0x30ce8581.
Processing media-specific event for [frontpg.exe!ws!]


System errors:
=============
Error: (07/30/2013 11:42:02 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (07/30/2013 11:38:39 PM) (Source: Service Control Manager) (User: )
Description: The Application Layer Gateway Service service failed to start due to the following error:
%%1053

Error: (07/30/2013 11:38:39 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect.

Error: (07/30/2013 07:21:26 PM) (Source: Service Control Manager) (User: )
Description: The Application Layer Gateway Service service failed to start due to the following error:
%%1053

Error: (07/30/2013 07:21:25 PM) (Source: Service Control Manager) (User: )
Description: Timeout (30000 milliseconds) waiting for the Application Layer Gateway Service service to connect.

Error: (07/30/2013 06:42:01 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1058" attempting to start the service gupdate with arguments "/comsvc"
in order to run the server:
{4EB61BAC-A3B6-4760-9581-655041EF4D69}

Error: (07/30/2013 06:20:23 PM) (Source: DCOM) (User: NT AUTHORITY)
Description: DCOM got error "%%1084" attempting to start the service EventSystem with arguments ""
in order to run the server:
{1BE1F766-5536-11D1-B726-00C04FB926AF}

Error: (07/30/2013 00:32:18 PM) (Source: DCOM) (User: COMPUTER-5300)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/30/2013 00:17:31 PM) (Source: DCOM) (User: COMPUTER-5300)
Description: DCOM got error "%%1084" attempting to start the service StiSvc with arguments ""
in order to run the server:
{A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error: (07/30/2013 00:17:25 PM) (Source: Service Control Manager) (User: )
Description: The following boot-start or system-start driver(s) failed to load:
AFD
AswRdr
aswRvrt
aswSnx
aswSP
aswTdi
aswVmm
Fips
intelppm
IPSec
MRxSmb
NetBIOS
NetBT
RasAcd
Rdbss
SASDIFSV
SASKUTIL
Tcpip


Microsoft Office Sessions:
=========================
Error: (07/27/2013 09:34:02 PM) (Source: Application Error)(User: )
Description: epsxe.exe0.0.0.0msvcrt.dll7.0.2600.570100037c7e

Error: (07/27/2013 09:33:36 PM) (Source: Application Error)(User: )
Description: epsxe.exe0.0.0.0msvcrt.dll7.0.2600.570100037c7e

Error: (06/16/2013 09:22:32 PM) (Source: Application Error)(User: )
Description: frontpg.exe11.0.5516.0shell32.dll6.0.2900.62420002adaf

Error: (06/16/2013 04:14:10 AM) (Source: MsiInstaller)(User: COMPUTER-5300)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 1922. SA_Error1922: StandardAction(0xC0070782): Service 'AVGIDSAgent' (AVGIDSAgent) could not be deleted. Verify that you have sufficient privileges to remove system services.(NULL)(NULL)(NULL)(NULL)

Error: (06/15/2013 08:21:47 PM) (Source: MsiInstaller)(User: COMPUTER-5300)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 27054. CA_Error27054: SetupAction(0xC0070642): Installation failed.(NULL)(NULL)(NULL)(NULL)

Error: (06/15/2013 08:20:26 PM) (Source: Application Error)(User: )
Description: machineidcreator.exe15.1.0.2avguidx.dll2012.0.0.100028fa6

Error: (06/15/2013 08:20:12 PM) (Source: Application Error)(User: )
Description: machineidcreator.exe15.1.0.2avguidx.dll2012.0.0.100028fa6

Error: (06/15/2013 08:05:59 PM) (Source: MsiInstaller)(User: COMPUTER-5300)
Description: SA_Error1709: StandardAction(0xC00706AD): Product: AVG 2013 -- Error 1922. SA_Error1922: StandardAction(0xC0070782): Service 'AVGIDSAgent' (AVGIDSAgent) could not be deleted. Verify that you have sufficient privileges to remove system services.(NULL)(NULL)(NULL)(NULL)

Error: (06/15/2013 07:17:22 PM) (Source: Application Error)(User: )
Description: frontpg.exe11.0.5516.0shell32.dll6.0.2900.62420002adaf

Error: (06/15/2013 07:15:51 PM) (Source: Application Error)(User: )
Description: frontpg.exe11.0.5516.0unknown0.0.0.030ce8581


=========================== Installed Programs ============================

µTorrent (Version: 1.8.2)
7-Zip 9.20
Adobe Flash Player 11 Plugin (Version: 11.8.800.94)
Adobe Reader XI (11.0.03) (Version: 11.0.03)
avast! Free Antivirus (Version: 8.0.1489.0)
BitLocker To Go Reader
CASHFLOW® THE E-GAME
CCleaner (Version: 4.03)
ClearType Tuning Control Panel Applet (Version: 1.01.0000)
ContextConsole Shell Extension (x86-32) (Version: 2.1.0.1)
Core Temp 1.0 RC5 (Version: 1.0)
DAEMON Tools Lite (Version: 4.47.1.0333)
Delta Force
Delta Force 2
D-Fend Reloaded 1.3.3 (deinstall) (Version: 1.3.3)
Ezvid (Version: 0.9.3.5)
Freemake Video Downloader (Version: 3.5.1)
Google Chrome (Version: 28.0.1500.72)
Google Update Helper (Version: 1.3.21.153)
Half-Life
HashCheck Shell Extension (x86-32) (Version: 2.1.11.1)
IP Camera Viewer 1.0
Java 7 Update 25 (Version: 7.0.250)
Java Auto Updater (Version: 2.1.9.5)
Kastor Free Video Catcher V 2.0 (Version: 2.0.0.0)
KinoniDrivers 2.8.1 (Version: 2.8.1)
K-Lite Mega Codec Pack 9.7.5 (Version: 9.7.5)
Lagarith lossless video codec (Remove Only)
Malwarebytes Anti-Malware version 1.75.0.1300 (Version: 1.75.0.1300)
Microsoft .NET Framework 1.1 (Version: 1.1.4322)
Microsoft .NET Framework 1.1 Security Update (KB2833941)
Microsoft .NET Framework 2.0 Service Pack 2 (Version: 2.2.30729)
Microsoft .NET Framework 3.0 Service Pack 2 (Version: 3.2.30729)
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30730)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft .NET Framework 4 Extended (Version: 4.0.30319)
Microsoft Expression Blend 3 (Version: 3.0.1927.0)
Microsoft Expression Blend 3 SDK (Version: 1.0.1327.0)
Microsoft Expression Design 3 (Version: 6.0.1739.0)
Microsoft Expression Encoder 3 (Version: 3.0.1332.0)
Microsoft Expression Studio 3 (Version: 3.0.1061.0)
Microsoft Expression Web 3 (Version: 3.0.3813.0)
Microsoft Expression Web 3 SP1
Microsoft Kernel-Mode Driver Framework Feature Pack 1.7
Microsoft Silverlight (Version: 5.1.20513.0)
Microsoft Silverlight 3 SDK (Version: 3.0.40624.0)
Microsoft Visual C++ 2005 Redistributable - x86 8.0.50727.6229 (Version: 8.0.61187)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6313 (Version: 9.0.30729.6313)
Microsoft Visual C++ 2010 Redistributable - x86 10.0.40219.436 (Version: 10.0.40219)
Microsoft Visual C++ 2012 Redistributable - x86 11.0.51106.1 (Version: 11.0.51106.1)
Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.51106 (Version: 11.0.51106)
Microsoft Xbox 360 Accessories 1.2 (Version: 1.20.146.0)
MiTeC Weather Agent
Mozilla Firefox 22.0 (x86 en-US) (Version: 22.0)
Mozilla Maintenance Service (Version: 22.0)
MyWebcamBroadcasterSetup (Version: 2.4.30)
OpenOffice.org 3.4.1 (Version: 3.41.9593)
Rainlendar2 (remove only)
Realtek High Definition Audio Driver (Version: 5.10.0.6662)
Sentinel Protection Installer 7.6.6 (Version: 7.6.6)
Sentinel System Driver Installer 7.5.8 (Version: 7.5.8)
SiS Mirage 3 Graphics
Steam (Version: 1.0.0.0)
Stickies 7.1e
SumatraPDF 2.2.1 (Version: 2.2.1)
SUPERAntiSpyware (Version: 5.6.1020)
User Profile Hive Cleanup Service (Version: 1.6.36)
VLC media player 2.0.5 (Version: 2.0.5)
VSDC Free Video Editor version 1.2.2.0 (Version: 1.2.2.0)
Walyk Wallpaper Changer 1.6 (Version: 1.6)
WebFldrs XP (Version: 9.50.7523)
Winamp (remove only)
WinPcap 4.1.2 (Version: 4.1.0.2001)
WPF Toolkit June 2009 (Version 3.5.40619.1) (Version: 3.5.40619.1)
Yawcam 0.4.1
Zandronum (Version: 1.0)
Zip Motion Block Video codec (Remove Only)

**** End of log ****
 

Stand by...



#6 doomguy5000

doomguy5000
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 30 July 2013 - 09:24 PM

03:22:47.0171 2572  TDSS rootkit removing tool 2.8.18.0 Jun 10 2013 21:44:19
03:22:47.0656 2572  ============================================================
03:22:47.0656 2572  Current date / time: 2013/07/31 03:22:47.0656
03:22:47.0656 2572  SystemInfo:
03:22:47.0656 2572  
03:22:47.0656 2572  OS Version: 5.1.2600 ServicePack: 3.0
03:22:47.0656 2572  Product type: Workstation
03:22:47.0656 2572  ComputerName: COMPUTER-5300
03:22:47.0656 2572  UserName: Owner
03:22:47.0656 2572  Windows directory: F:\WINDOWS
03:22:47.0656 2572  System windows directory: F:\WINDOWS
03:22:47.0656 2572  Processor architecture: Intel x86
03:22:47.0656 2572  Number of processors: 1
03:22:47.0656 2572  Page size: 0x1000
03:22:47.0656 2572  Boot type: Normal boot
03:22:47.0656 2572  ============================================================
03:22:50.0687 2572  Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
03:22:50.0703 2572  Drive \Device\Harddisk1\DR2 - Size: 0x7470A00000 (465.76 Gb), SectorSize: 0x200, Cylinders: 0xED81, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
03:22:50.0718 2572  ============================================================
03:22:50.0718 2572  \Device\Harddisk0\DR0:
03:22:50.0718 2572  MBR partitions:
03:22:50.0718 2572  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x12A14BC1
03:22:50.0718 2572  \Device\Harddisk1\DR2:
03:22:50.0718 2572  MBR partitions:
03:22:50.0718 2572  \Device\Harddisk1\DR2\Partition1: MBR, Type 0x7, StartLBA 0x5D61E2A, BlocksNum 0x346231C8
03:22:50.0718 2572  ============================================================
03:22:50.0750 2572  C: <-> \Device\Harddisk1\DR2\Partition1
03:22:50.0953 2572  F: <-> \Device\Harddisk0\DR0\Partition1
03:22:50.0953 2572  ============================================================
03:22:50.0953 2572  Initialize success
03:22:50.0953 2572  ============================================================
03:22:56.0203 3744  ============================================================
03:22:56.0203 3744  Scan started
03:22:56.0203 3744  Mode: Manual; TDLFS;
03:22:56.0203 3744  ============================================================
03:22:56.0937 3744  ================ Scan system memory ========================
03:22:56.0937 3744  System memory - ok
03:22:56.0937 3744  ================ Scan services =============================
03:22:57.0125 3744  [ 9EBE730D4B5E3FF25EAAF5A59BA6CCFF ] !SASCORE        F:\Program Files\SUPERAntiSpyware\SASCORE.EXE
03:22:57.0125 3744  !SASCORE - ok
03:22:58.0593 3744  Abiosdsk - ok
03:22:58.0609 3744  abp480n5 - ok
03:22:58.0703 3744  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            F:\WINDOWS\system32\DRIVERS\ACPI.sys
03:22:58.0718 3744  ACPI - ok
03:22:58.0750 3744  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          F:\WINDOWS\system32\DRIVERS\ACPIEC.sys
03:22:58.0750 3744  ACPIEC - ok
03:22:58.0906 3744  [ 476BB014F3F68C0C15EDDD5B444DA8FF ] AdobeFlashPlayerUpdateSvc F:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe
03:22:58.0906 3744  AdobeFlashPlayerUpdateSvc - ok
03:22:58.0921 3744  adpu160m - ok
03:22:59.0015 3744  [ 8BED39E3C35D6A489438B8141717A557 ] aec             F:\WINDOWS\system32\drivers\aec.sys
03:22:59.0015 3744  aec - ok
03:22:59.0093 3744  [ F6B7B1ECD7B41736BDB6FF4B092BCB79 ] AFD             F:\WINDOWS\System32\drivers\afd.sys
03:22:59.0093 3744  AFD - ok
03:22:59.0109 3744  Aha154x - ok
03:22:59.0125 3744  aic78u2 - ok
03:22:59.0140 3744  aic78xx - ok
03:22:59.0171 3744  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         F:\WINDOWS\system32\alrsvc.dll
03:22:59.0171 3744  Alerter - ok
03:22:59.0203 3744  [ 8C515081584A38AA007909CD02020B3D ] ALG             F:\WINDOWS\System32\alg.exe
03:22:59.0203 3744  ALG - ok
03:22:59.0218 3744  AliIde - ok
03:22:59.0531 3744  ALSysIO - ok
03:23:00.0125 3744  [ 267FC636801EDC5AB28E14036349E3BE ] Ambfilt         F:\WINDOWS\system32\drivers\Ambfilt.sys
03:23:00.0140 3744  Ambfilt - ok
03:23:00.0156 3744  amsint - ok
03:23:00.0265 3744  [ D8849F77C0B66226335A59D26CB4EDC6 ] AppMgmt         F:\WINDOWS\System32\appmgmts.dll
03:23:00.0265 3744  AppMgmt - ok
03:23:00.0281 3744  asc - ok
03:23:00.0296 3744  asc3350p - ok
03:23:00.0312 3744  asc3550 - ok
03:23:00.0765 3744  [ 776ACEFA0CA9DF0FAA51A5FB2F435705 ] aspnet_state    F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe
03:23:00.0765 3744  aspnet_state - ok
03:23:00.0812 3744  [ 4AF5F360BA1E8794D32B366E45A64A0A ] aswFsBlk        F:\WINDOWS\system32\drivers\aswFsBlk.sys
03:23:00.0828 3744  aswFsBlk - ok
03:23:00.0890 3744  [ 1F7094D4268D46F718C51286DC189791 ] aswMonFlt       F:\WINDOWS\system32\drivers\aswMonFlt.sys
03:23:00.0890 3744  aswMonFlt - ok
03:23:00.0937 3744  [ 7B43265F92257A21CBFD88E7A651044C ] AswRdr          F:\WINDOWS\system32\drivers\AswRdr.sys
03:23:00.0937 3744  AswRdr - ok
03:23:00.0984 3744  [ B680134BA1813B78B47FDD1DFF223CA5 ] aswRvrt         F:\WINDOWS\system32\drivers\aswRvrt.sys
03:23:00.0984 3744  aswRvrt - ok
03:23:01.0250 3744  [ CCD565A8A72AF7D45F9A242013870926 ] aswSnx          F:\WINDOWS\system32\drivers\aswSnx.sys
03:23:01.0265 3744  aswSnx - ok
03:23:01.0500 3744  [ 937300BC7C4CDF7576BCCE44E19BBB9D ] aswSP           F:\WINDOWS\system32\drivers\aswSP.sys
03:23:01.0515 3744  aswSP - ok
03:23:01.0562 3744  [ 1F71F170D90E42EFDE9633D81D5E12DC ] aswTdi          F:\WINDOWS\system32\drivers\aswTdi.sys
03:23:01.0562 3744  aswTdi - ok
03:23:01.0640 3744  [ 8CFAA2B965773A653F48F1207A9CB9C4 ] aswVmm          F:\WINDOWS\system32\drivers\aswVmm.sys
03:23:01.0640 3744  aswVmm - ok
03:23:01.0687 3744  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        F:\WINDOWS\system32\DRIVERS\asyncmac.sys
03:23:01.0687 3744  AsyncMac - ok
03:23:01.0734 3744  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           F:\WINDOWS\system32\DRIVERS\atapi.sys
03:23:01.0734 3744  atapi - ok
03:23:01.0750 3744  Atdisk - ok
03:23:01.0796 3744  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         F:\WINDOWS\system32\DRIVERS\atmarpc.sys
03:23:01.0796 3744  Atmarpc - ok
03:23:01.0828 3744  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        F:\WINDOWS\System32\audiosrv.dll
03:23:01.0843 3744  AudioSrv - ok
03:23:01.0875 3744  [ D9F724AA26C010A217C97606B160ED68 ] audstub         F:\WINDOWS\system32\DRIVERS\audstub.sys
03:23:01.0875 3744  audstub - ok
03:23:01.0984 3744  [ 28D6701C710AD7BA3CB95E75F8F1A9AA ] avast! Antivirus F:\Program Files\AVAST Software\Avast\AvastSvc.exe
03:23:01.0984 3744  avast! Antivirus - ok
03:23:02.0078 3744  [ A2ECECE11639FEA1CCB66D853451F7E2 ] BazisVirtualCDBus F:\WINDOWS\system32\DRIVERS\BazisVirtualCDBus.sys
03:23:02.0078 3744  BazisVirtualCDBus - ok
03:23:02.0125 3744  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            F:\WINDOWS\system32\drivers\Beep.sys
03:23:02.0125 3744  Beep - ok
03:23:02.0296 3744  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            F:\WINDOWS\system32\qmgr.dll
03:23:02.0312 3744  BITS - ok
03:23:02.0375 3744  [ FC6D1D80588D371F0321E15A75B2F8F2 ] Browser         F:\WINDOWS\System32\browser.dll
03:23:02.0375 3744  Browser - ok
03:23:02.0406 3744  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         F:\WINDOWS\system32\drivers\cbidf2k.sys
03:23:02.0406 3744  cbidf2k - ok
03:23:02.0468 3744  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        F:\WINDOWS\system32\DRIVERS\CCDECODE.sys
03:23:02.0468 3744  CCDECODE - ok
03:23:02.0484 3744  cd20xrnt - ok
03:23:02.0593 3744  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         F:\WINDOWS\system32\drivers\Cdaudio.sys
03:23:02.0609 3744  Cdaudio - ok
03:23:02.0656 3744  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            F:\WINDOWS\system32\drivers\Cdfs.sys
03:23:02.0656 3744  Cdfs - ok
03:23:02.0703 3744  [ 4B0A100EAF5C49EF3CCA8C641431EACC ] Cdrom           F:\WINDOWS\system32\DRIVERS\cdrom.sys
03:23:02.0703 3744  Cdrom - ok
03:23:02.0718 3744  Changer - ok
03:23:02.0734 3744  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           F:\WINDOWS\system32\cisvc.exe
03:23:02.0750 3744  CiSvc - ok
03:23:02.0765 3744  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         F:\WINDOWS\system32\clipsrv.exe
03:23:02.0765 3744  ClipSrv - ok
03:23:02.0968 3744  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 F:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
03:23:02.0968 3744  clr_optimization_v2.0.50727_32 - ok
03:23:03.0046 3744  [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
03:23:03.0046 3744  clr_optimization_v4.0.30319_32 - ok
03:23:03.0078 3744  [ 0F6C187D38D98F8DF904589A5F94D411 ] CmBatt          F:\WINDOWS\system32\DRIVERS\CmBatt.sys
03:23:03.0078 3744  CmBatt - ok
03:23:03.0093 3744  CmdIde - ok
03:23:03.0125 3744  [ 6E4C9F21F0FAE8940661144F41B13203 ] Compbatt        F:\WINDOWS\system32\DRIVERS\compbatt.sys
03:23:03.0140 3744  Compbatt - ok
03:23:03.0156 3744  COMSysApp - ok
03:23:03.0171 3744  Cpqarray - ok
03:23:03.0250 3744  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        F:\WINDOWS\System32\cryptsvc.dll
03:23:03.0250 3744  CryptSvc - ok
03:23:03.0265 3744  dac2w2k - ok
03:23:03.0281 3744  dac960nt - ok
03:23:03.0484 3744  [ 9222562D44021B988B9F9F62207FB6F2 ] DcomLaunch      F:\WINDOWS\system32\rpcss.dll
03:23:03.0484 3744  DcomLaunch - ok
03:23:03.0562 3744  [ C51DE19619D50CBD03708647ACA10E70 ] Dhcp            F:\WINDOWS\System32\dhcpcsvc.dll
03:23:03.0562 3744  Dhcp - ok
03:23:03.0687 3744  [ 47B6AAEC570F2C11D8BAD80A064D8ED1 ] Disk            F:\WINDOWS\system32\DRIVERS\disk.sys
03:23:03.0687 3744  Disk - ok
03:23:03.0703 3744  dmadmin - ok
03:23:03.0984 3744  [ AEE02DE337D8E038D31630EA26286C8E ] dmboot          F:\WINDOWS\system32\drivers\dmboot.sys
03:23:04.0000 3744  dmboot - ok
03:23:04.0078 3744  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            F:\WINDOWS\system32\drivers\dmio.sys
03:23:04.0093 3744  dmio - ok
03:23:04.0125 3744  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          F:\WINDOWS\system32\drivers\dmload.sys
03:23:04.0125 3744  dmload - ok
03:23:04.0140 3744  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        F:\WINDOWS\System32\dmserver.dll
03:23:04.0156 3744  dmserver - ok
03:23:04.0218 3744  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          F:\WINDOWS\system32\drivers\DMusic.sys
03:23:04.0218 3744  DMusic - ok
03:23:04.0265 3744  [ D977659AE4D8ECE5286D99D1ED34614D ] Dnscache        F:\WINDOWS\System32\dnsrslvr.dll
03:23:04.0265 3744  Dnscache - ok
03:23:04.0343 3744  [ B4109C8C3D54C83246997A777724F318 ] Dot3svc         F:\WINDOWS\System32\dot3svc.dll
03:23:04.0343 3744  Dot3svc - ok
03:23:04.0359 3744  dpti2o - ok
03:23:04.0375 3744  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         F:\WINDOWS\system32\drivers\drmkaud.sys
03:23:04.0390 3744  drmkaud - ok
03:23:04.0500 3744  [ 687AF6BB383885FF6A64071B189A7F3E ] dtsoftbus01     F:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys
03:23:04.0515 3744  dtsoftbus01 - ok
03:23:04.0578 3744  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         F:\WINDOWS\System32\eapsvc.dll
03:23:04.0578 3744  EapHost - ok
03:23:04.0687 3744  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           F:\WINDOWS\System32\ersvc.dll
03:23:04.0703 3744  ERSvc - ok
03:23:04.0765 3744  [ C519E15665CD89A91AD383FCE3CB556A ] Eventlog        F:\WINDOWS\system32\services.exe
03:23:04.0781 3744  Eventlog - ok
03:23:04.0875 3744  [ F17F6226BDC0CD5F0BEF0DAF84D29BEC ] EventSystem     F:\WINDOWS\system32\es.dll
03:23:04.0875 3744  EventSystem - ok
03:23:04.0953 3744  [ 4D893323DAE445E34A4C9038B0551BC9 ] exFat           F:\WINDOWS\system32\drivers\exFat.sys
03:23:04.0953 3744  exFat - ok
03:23:05.0015 3744  [ 38D332A6D56AF32635675F132548343E ] Fastfat         F:\WINDOWS\system32\drivers\Fastfat.sys
03:23:05.0015 3744  Fastfat - ok
03:23:05.0093 3744  [ 888CD7B39C37E13A2419BECFAAF0A28C ] FastUserSwitchingCompatibility F:\WINDOWS\System32\shsvcs.dll
03:23:05.0093 3744  FastUserSwitchingCompatibility - ok
03:23:05.0250 3744  [ E97D6A8684466DF94FF3BC24FB787A07 ] Fax             F:\WINDOWS\system32\fxssvc.exe
03:23:05.0250 3744  Fax - ok
03:23:05.0281 3744  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             F:\WINDOWS\system32\drivers\Fdc.sys
03:23:05.0296 3744  Fdc - ok
03:23:05.0328 3744  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            F:\WINDOWS\system32\drivers\Fips.sys
03:23:05.0328 3744  Fips - ok
03:23:05.0359 3744  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        F:\WINDOWS\system32\drivers\Flpydisk.sys
03:23:05.0359 3744  Flpydisk - ok
03:23:05.0437 3744  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          F:\WINDOWS\system32\DRIVERS\fltMgr.sys
03:23:05.0453 3744  FltMgr - ok
03:23:05.0515 3744  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 F:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe
03:23:05.0515 3744  FontCache3.0.0.0 - ok
03:23:05.0625 3744  [ 46532E80E18BB25D3B568DA10A160653 ] FreemakeVideoCapture F:\Program Files\Freemake\CaptureLib\CaptureLibService.exe
03:23:05.0625 3744  FreemakeVideoCapture - ok
03:23:05.0750 3744  [ 30D42943A54704EF13E2562911DBFCEA ] Fs_Rec          F:\WINDOWS\system32\drivers\Fs_Rec.sys
03:23:05.0750 3744  Fs_Rec - ok
03:23:05.0812 3744  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          F:\WINDOWS\system32\DRIVERS\ftdisk.sys
03:23:05.0812 3744  Ftdisk - ok
03:23:05.0859 3744  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             F:\WINDOWS\system32\DRIVERS\msgpc.sys
03:23:05.0859 3744  Gpc - ok
03:23:05.0968 3744  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         F:\Program Files\Google\Update\GoogleUpdate.exe
03:23:05.0968 3744  gupdate - ok
03:23:06.0015 3744  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        F:\Program Files\Google\Update\GoogleUpdate.exe
03:23:06.0015 3744  gupdatem - ok
03:23:06.0125 3744  [ 573C7D0A32852B48F3058CFD8026F511 ] HDAudBus        F:\WINDOWS\system32\DRIVERS\HDAudBus.sys
03:23:06.0125 3744  HDAudBus - ok
03:23:06.0187 3744  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         F:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
03:23:06.0187 3744  helpsvc - ok
03:23:06.0234 3744  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         F:\WINDOWS\System32\hidserv.dll
03:23:06.0234 3744  HidServ - ok
03:23:06.0265 3744  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] hidusb          F:\WINDOWS\system32\DRIVERS\hidusb.sys
03:23:06.0265 3744  hidusb - ok
03:23:06.0328 3744  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          F:\WINDOWS\System32\kmsvc.dll
03:23:06.0343 3744  hkmsvc - ok
03:23:06.0359 3744  hpn - ok
03:23:06.0484 3744  [ 937031C085718C1C04A9C0864625EC6B ] HTTP            F:\WINDOWS\system32\Drivers\HTTP.sys
03:23:06.0484 3744  HTTP - ok
03:23:06.0531 3744  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      F:\WINDOWS\System32\w3ssl.dll
03:23:06.0531 3744  HTTPFilter - ok
03:23:06.0546 3744  i2omgmt - ok
03:23:06.0562 3744  i2omp - ok
03:23:06.0609 3744  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        F:\WINDOWS\system32\DRIVERS\i8042prt.sys
03:23:06.0609 3744  i8042prt - ok
03:23:07.0109 3744  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           F:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
03:23:07.0125 3744  idsvc - ok
03:23:07.0171 3744  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           F:\WINDOWS\system32\DRIVERS\imapi.sys
03:23:07.0171 3744  Imapi - ok
03:23:07.0250 3744  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    F:\WINDOWS\system32\imapi.exe
03:23:07.0250 3744  ImapiService - ok
03:23:07.0265 3744  ini910u - ok
03:23:09.0500 3744  [ 063DD51CBDC37B8668E09148E0A118BC ] IntcAzAudAddService F:\WINDOWS\system32\drivers\RtkHDAud.sys
03:23:09.0546 3744  IntcAzAudAddService - ok
03:23:09.0562 3744  IntelIde - ok
03:23:09.0609 3744  [ 8C953733D8F36EB2133F5BB58808B66B ] intelppm        F:\WINDOWS\system32\DRIVERS\intelppm.sys
03:23:09.0625 3744  intelppm - ok
03:23:09.0656 3744  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           F:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
03:23:09.0656 3744  Ip6Fw - ok
03:23:09.0703 3744  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  F:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
03:23:09.0703 3744  IpFilterDriver - ok
03:23:09.0718 3744  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          F:\WINDOWS\system32\DRIVERS\ipinip.sys
03:23:09.0718 3744  IpInIp - ok
03:23:09.0796 3744  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           F:\WINDOWS\system32\DRIVERS\ipnat.sys
03:23:09.0796 3744  IpNat - ok
03:23:09.0843 3744  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           F:\WINDOWS\system32\DRIVERS\ipsec.sys
03:23:09.0859 3744  IPSec - ok
03:23:09.0984 3744  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          F:\WINDOWS\system32\DRIVERS\irenum.sys
03:23:09.0984 3744  IRENUM - ok
03:23:10.0031 3744  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          F:\WINDOWS\system32\DRIVERS\isapnp.sys
03:23:10.0031 3744  isapnp - ok
03:23:10.0250 3744  [ 9ECF00E19736054E019C532AED8228FC ] JavaQuickStarterService F:\Program Files\Java\jre7\bin\jqs.exe
03:23:10.0250 3744  JavaQuickStarterService - ok
03:23:10.0296 3744  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        F:\WINDOWS\system32\DRIVERS\kbdclass.sys
03:23:10.0312 3744  Kbdclass - ok
03:23:10.0343 3744  [ 9EF487A186DEA361AA06913A75B3FA99 ] kbdhid          F:\WINDOWS\system32\DRIVERS\kbdhid.sys
03:23:10.0343 3744  kbdhid - ok
03:23:10.0640 3744  [ 4988C1583CA3DFAC85339057FF550C52 ] KinoniSvc       F:\Program Files\Kinoni\EpocCam_and_Barcode_drivers\KinoniSvc.exe
03:23:10.0640 3744  KinoniSvc - ok
03:23:11.0718 3744  [ 19FF9DCCD9EAD8510DD71B594CBD7713 ] kinonivd        F:\WINDOWS\system32\DRIVERS\kinonivd.sys
03:23:11.0734 3744  kinonivd - ok
03:23:11.0796 3744  [ BDF0D8FFB6652B885263BAEA6256ACC5 ] KINONI_Wave     F:\WINDOWS\system32\drivers\kinonivad.sys
03:23:11.0796 3744  KINONI_Wave - ok
03:23:11.0906 3744  [ 692BCF44383D056AED41B045A323D378 ] kmixer          F:\WINDOWS\system32\drivers\kmixer.sys
03:23:11.0906 3744  kmixer - ok
03:23:11.0968 3744  [ C6EBF1D6AD71DF30DB49B8D3287E1368 ] KSecDD          F:\WINDOWS\system32\drivers\KSecDD.sys
03:23:11.0984 3744  KSecDD - ok
03:23:12.0125 3744  [ 3695B8D03745B2F8022B161238347A9D ] LanmanServer    F:\WINDOWS\System32\srvsvc.dll
03:23:12.0140 3744  LanmanServer - ok
03:23:12.0218 3744  [ 3B9324D60DD321BAB7BF6F77931D3FD1 ] lanmanworkstation F:\WINDOWS\System32\wkssvc.dll
03:23:12.0234 3744  lanmanworkstation - ok
03:23:12.0250 3744  lbrtfdc - ok
03:23:12.0312 3744  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         F:\WINDOWS\System32\lmhsvc.dll
03:23:12.0312 3744  LmHosts - ok
03:23:12.0375 3744  [ 4A5FFDF0FE830C448830BD4B02B02B4B ] mbamchameleon   F:\WINDOWS\system32\drivers\mbamchameleon.sys
03:23:12.0390 3744  mbamchameleon - ok
03:23:12.0453 3744  [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector   F:\WINDOWS\system32\drivers\mbam.sys
03:23:12.0453 3744  MBAMProtector - ok
03:23:12.0625 3744  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   F:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
03:23:12.0640 3744  MBAMScheduler - ok
03:23:12.0875 3744  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     F:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
03:23:12.0890 3744  MBAMService - ok
03:23:13.0015 3744  [ 90B11EC07E81D95772A86F0CF2F24162 ] mbamswissarmy   F:\WINDOWS\system32\drivers\mbamswissarmy.sys
03:23:13.0015 3744  mbamswissarmy - ok
03:23:13.0062 3744  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       F:\WINDOWS\System32\msgsvc.dll
03:23:13.0062 3744  Messenger - ok
03:23:13.0218 3744  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           F:\WINDOWS\system32\drivers\Modem.sys
03:23:13.0234 3744  Modem - ok
03:23:13.0750 3744  [ C7D9F9717916B34C1B00DD4834AF485C ] Monfilt         F:\WINDOWS\system32\drivers\Monfilt.sys
03:23:13.0765 3744  Monfilt - ok
03:23:13.0796 3744  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        F:\WINDOWS\system32\DRIVERS\mouclass.sys
03:23:13.0796 3744  Mouclass - ok
03:23:13.0843 3744  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          F:\WINDOWS\system32\DRIVERS\mouhid.sys
03:23:13.0843 3744  mouhid - ok
03:23:13.0890 3744  [ 1A1FAA5102466F418494E94FF9B0B091 ] MountMgr        F:\WINDOWS\system32\drivers\MountMgr.sys
03:23:13.0890 3744  MountMgr - ok
03:23:14.0000 3744  [ 528A5C2570F468155A1B3CF0A2FF5EBD ] MozillaMaintenance F:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe
03:23:14.0000 3744  MozillaMaintenance - ok
03:23:14.0015 3744  mraid35x - ok
03:23:14.0093 3744  [ 4FEFD389D71126EE581B9F9CB2918BE4 ] MRxDAV          F:\WINDOWS\system32\DRIVERS\mrxdav.sys
03:23:14.0093 3744  MRxDAV - ok
03:23:14.0343 3744  [ FB2FCCC70F7174C7BF64F48E96D3ADF4 ] MRxSmb          F:\WINDOWS\system32\DRIVERS\mrxsmb.sys
03:23:14.0359 3744  MRxSmb - ok
03:23:14.0406 3744  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           F:\WINDOWS\system32\msdtc.exe
03:23:14.0406 3744  MSDTC - ok
03:23:14.0453 3744  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            F:\WINDOWS\system32\drivers\Msfs.sys
03:23:14.0453 3744  Msfs - ok
03:23:14.0468 3744  MSIServer - ok
03:23:14.0484 3744  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         F:\WINDOWS\system32\drivers\MSKSSRV.sys
03:23:14.0484 3744  MSKSSRV - ok
03:23:14.0531 3744  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        F:\WINDOWS\system32\drivers\MSPCLOCK.sys
03:23:14.0531 3744  MSPCLOCK - ok
03:23:14.0562 3744  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           F:\WINDOWS\system32\drivers\MSPQM.sys
03:23:14.0562 3744  MSPQM - ok
03:23:14.0609 3744  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        F:\WINDOWS\system32\DRIVERS\mssmbios.sys
03:23:14.0609 3744  mssmbios - ok
03:23:14.0656 3744  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE           F:\WINDOWS\system32\drivers\MSTEE.sys
03:23:14.0656 3744  MSTEE - ok
03:23:14.0718 3744  [ F7B1AD991491F02AF6DA70B00B8BF114 ] Mup             F:\WINDOWS\system32\drivers\Mup.sys
03:23:14.0718 3744  Mup - ok
03:23:14.0750 3744  [ 8CE3E969D857AAC02C3FE23AA0DC7B82 ] mv61xxmm        F:\WINDOWS\system32\drivers\mv61xxmm.sys
03:23:14.0750 3744  mv61xxmm - ok
03:23:14.0765 3744  [ 6090786DAA545A3EC7D34A46A8CD1661 ] mv64xxmm        F:\WINDOWS\system32\drivers\mv64xxmm.sys
03:23:14.0765 3744  mv64xxmm - ok
03:23:14.0796 3744  [ 70EBDF0D7D16CDDA5FAA7D3102748371 ] mvxxmm          F:\WINDOWS\system32\drivers\mvxxmm.sys
03:23:14.0796 3744  mvxxmm - ok
03:23:14.0859 3744  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        F:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
03:23:14.0875 3744  NABTSFEC - ok
03:23:15.0000 3744  [ 0102140028FAD045756796E1C685D695 ] napagent        F:\WINDOWS\System32\qagentrt.dll
03:23:15.0015 3744  napagent - ok
03:23:15.0109 3744  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            F:\WINDOWS\system32\drivers\NDIS.sys
03:23:15.0109 3744  NDIS - ok
03:23:15.0156 3744  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          F:\WINDOWS\system32\DRIVERS\NdisIP.sys
03:23:15.0156 3744  NdisIP - ok
03:23:15.0187 3744  [ 091735A5F20ACB1DC147383A905AE002 ] NdisTapi        F:\WINDOWS\system32\DRIVERS\ndistapi.sys
03:23:15.0187 3744  NdisTapi - ok
03:23:15.0203 3744  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         F:\WINDOWS\system32\DRIVERS\ndisuio.sys
03:23:15.0203 3744  Ndisuio - ok
03:23:15.0250 3744  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         F:\WINDOWS\system32\DRIVERS\ndiswan.sys
03:23:15.0250 3744  NdisWan - ok
03:23:15.0281 3744  [ 816460BD4B4ACD27937D1D0813E2E9E9 ] NDProxy         F:\WINDOWS\system32\drivers\NDProxy.sys
03:23:15.0281 3744  NDProxy - ok
03:23:15.0343 3744  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         F:\WINDOWS\system32\DRIVERS\netbios.sys
03:23:15.0343 3744  NetBIOS - ok
03:23:15.0406 3744  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           F:\WINDOWS\system32\DRIVERS\netbt.sys
03:23:15.0421 3744  NetBT - ok
03:23:15.0484 3744  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          F:\WINDOWS\system32\netdde.exe
03:23:15.0500 3744  NetDDE - ok
03:23:15.0546 3744  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      F:\WINDOWS\system32\netdde.exe
03:23:15.0546 3744  NetDDEdsdm - ok
03:23:15.0593 3744  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        F:\WINDOWS\system32\lsass.exe
03:23:15.0593 3744  Netlogon - ok
03:23:15.0687 3744  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          F:\WINDOWS\System32\netman.dll
03:23:15.0703 3744  Netman - ok
03:23:15.0796 3744  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing f:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
03:23:15.0796 3744  NetTcpPortSharing - ok
03:23:15.0906 3744  [ FCEE5FCB99F7C724593365C706D28388 ] Nla             F:\WINDOWS\System32\mswsock.dll
03:23:15.0921 3744  Nla - ok
03:23:15.0984 3744  [ B48DC6ABCD3AEFF8618350CCBDC6B09A ] npf             F:\WINDOWS\system32\drivers\npf.sys
03:23:15.0984 3744  npf - ok
03:23:16.0015 3744  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            F:\WINDOWS\system32\drivers\Npfs.sys
03:23:16.0015 3744  Npfs - ok
03:23:16.0234 3744  [ 4C51D5275AE8A16999EDFE7E647D00DE ] Ntfs            F:\WINDOWS\system32\drivers\Ntfs.sys
03:23:16.0234 3744  Ntfs - ok
03:23:16.0265 3744  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         F:\WINDOWS\system32\lsass.exe
03:23:16.0265 3744  NtLmSsp - ok
03:23:16.0437 3744  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         F:\WINDOWS\system32\ntmssvc.dll
03:23:16.0437 3744  NtmsSvc - ok
03:23:16.0484 3744  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            F:\WINDOWS\system32\drivers\Null.sys
03:23:16.0484 3744  Null - ok
03:23:16.0515 3744  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        F:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
03:23:16.0515 3744  NwlnkFlt - ok
03:23:16.0531 3744  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        F:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
03:23:16.0546 3744  NwlnkFwd - ok
03:23:16.0593 3744  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         F:\WINDOWS\system32\drivers\Parport.sys
03:23:16.0593 3744  Parport - ok
03:23:16.0625 3744  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         F:\WINDOWS\system32\drivers\PartMgr.sys
03:23:16.0625 3744  PartMgr - ok
03:23:16.0640 3744  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          F:\WINDOWS\system32\drivers\ParVdm.sys
03:23:16.0640 3744  ParVdm - ok
03:23:16.0687 3744  [ A219903CCF74233761D92BEF471A07B1 ] PCI             F:\WINDOWS\system32\DRIVERS\pci.sys
03:23:16.0687 3744  PCI - ok
03:23:16.0703 3744  PCIDump - ok
03:23:16.0750 3744  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          F:\WINDOWS\system32\DRIVERS\pciide.sys
03:23:16.0750 3744  PCIIde - ok
03:23:16.0812 3744  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          F:\WINDOWS\system32\drivers\Pcmcia.sys
03:23:16.0828 3744  Pcmcia - ok
03:23:16.0843 3744  PDCOMP - ok
03:23:16.0859 3744  PDFRAME - ok
03:23:16.0875 3744  PDRELI - ok
03:23:16.0890 3744  PDRFRAME - ok
03:23:16.0906 3744  perc2 - ok
03:23:16.0921 3744  perc2hib - ok
03:23:17.0062 3744  [ C519E15665CD89A91AD383FCE3CB556A ] PlugPlay        F:\WINDOWS\system32\services.exe
03:23:17.0062 3744  PlugPlay - ok
03:23:17.0093 3744  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     F:\WINDOWS\system32\lsass.exe
03:23:17.0093 3744  PolicyAgent - ok
03:23:17.0125 3744  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    F:\WINDOWS\system32\DRIVERS\raspptp.sys
03:23:17.0140 3744  PptpMiniport - ok
03:23:17.0156 3744  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage F:\WINDOWS\system32\lsass.exe
03:23:17.0156 3744  ProtectedStorage - ok
03:23:17.0203 3744  [ D8E11D311785F89F1D70A28B0E879127 ] PSched          F:\WINDOWS\system32\DRIVERS\psched.sys
03:23:17.0203 3744  PSched - ok
03:23:17.0250 3744  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         F:\WINDOWS\system32\DRIVERS\ptilink.sys
03:23:17.0265 3744  Ptilink - ok
03:23:17.0281 3744  ql1080 - ok
03:23:17.0296 3744  Ql10wnt - ok
03:23:17.0312 3744  ql12160 - ok
03:23:17.0328 3744  ql1240 - ok
03:23:17.0343 3744  ql1280 - ok
03:23:17.0359 3744  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          F:\WINDOWS\system32\DRIVERS\rasacd.sys
03:23:17.0359 3744  RasAcd - ok
03:23:17.0421 3744  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         F:\WINDOWS\System32\rasauto.dll
03:23:17.0437 3744  RasAuto - ok
03:23:17.0484 3744  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         F:\WINDOWS\system32\DRIVERS\rasl2tp.sys
03:23:17.0500 3744  Rasl2tp - ok
03:23:17.0578 3744  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          F:\WINDOWS\System32\rasmans.dll
03:23:17.0578 3744  RasMan - ok
03:23:17.0609 3744  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        F:\WINDOWS\system32\DRIVERS\raspppoe.sys
03:23:17.0609 3744  RasPppoe - ok
03:23:17.0656 3744  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          F:\WINDOWS\system32\DRIVERS\raspti.sys
03:23:17.0656 3744  Raspti - ok
03:23:17.0734 3744  [ 77050C6615F6EB5402F832B27FD695E0 ] Rdbss           F:\WINDOWS\system32\DRIVERS\rdbss.sys
03:23:17.0734 3744  Rdbss - ok
03:23:17.0765 3744  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          F:\WINDOWS\system32\DRIVERS\RDPCDD.sys
03:23:17.0765 3744  RDPCDD - ok
03:23:17.0875 3744  [ 47EA20320E3D6FDC7B7BB22B2B881CA6 ] rdpdr           F:\WINDOWS\system32\DRIVERS\rdpdr.sys
03:23:17.0875 3744  rdpdr - ok
03:23:17.0953 3744  [ C7D9BC54354B8C706ABF172D48313F1B ] RDPWD           F:\WINDOWS\system32\drivers\RDPWD.sys
03:23:17.0953 3744  RDPWD - ok
03:23:18.0031 3744  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       F:\WINDOWS\system32\sessmgr.exe
03:23:18.0046 3744  RDSessMgr - ok
03:23:18.0078 3744  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         F:\WINDOWS\system32\DRIVERS\redbook.sys
03:23:18.0078 3744  redbook - ok
03:23:18.0140 3744  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    F:\WINDOWS\System32\mprdim.dll
03:23:18.0140 3744  RemoteAccess - ok
03:23:18.0203 3744  [ 5B19B557B0C188210A56A6B699D90B8F ] RemoteRegistry  F:\WINDOWS\system32\regsvc.dll
03:23:18.0203 3744  RemoteRegistry - ok
03:23:18.0281 3744  [ B60F58F175DE20A6739194E85B035178 ] rpcapd          F:\Program Files\WinPcap\rpcapd.exe
03:23:18.0281 3744  rpcapd - ok
03:23:18.0468 3744  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      F:\WINDOWS\system32\locator.exe
03:23:18.0468 3744  RpcLocator - ok
03:23:18.0625 3744  [ 9222562D44021B988B9F9F62207FB6F2 ] RpcSs           F:\WINDOWS\system32\rpcss.dll
03:23:18.0640 3744  RpcSs - ok
03:23:18.0687 3744  [ 743D7D59767073A617B1DCC6C546F234 ] rspndr          F:\WINDOWS\system32\DRIVERS\rspndr.sys
03:23:18.0687 3744  rspndr - ok
03:23:18.0765 3744  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            F:\WINDOWS\system32\rsvp.exe
03:23:18.0765 3744  RSVP - ok
03:23:18.0906 3744  [ 083713CFCAC269DF626678159F684DAF ] RTL8187B        F:\WINDOWS\system32\DRIVERS\RTL8187B.sys
03:23:18.0921 3744  RTL8187B - ok
03:23:18.0937 3744  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           F:\WINDOWS\system32\lsass.exe
03:23:18.0953 3744  SamSs - ok
03:23:19.0015 3744  [ 39763504067962108505BFF25F024345 ] SASDIFSV        F:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
03:23:19.0015 3744  SASDIFSV - ok
03:23:19.0062 3744  [ 77B9FC20084B48408AD3E87570EB4A85 ] SASKUTIL        F:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
03:23:19.0062 3744  SASKUTIL - ok
03:23:19.0140 3744  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        F:\WINDOWS\System32\SCardSvr.exe
03:23:19.0140 3744  SCardSvr - ok
03:23:19.0250 3744  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        F:\WINDOWS\system32\schedsvc.dll
03:23:19.0250 3744  Schedule - ok
03:23:19.0281 3744  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          F:\WINDOWS\system32\DRIVERS\secdrv.sys
03:23:19.0281 3744  Secdrv - ok
03:23:19.0312 3744  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        F:\WINDOWS\System32\seclogon.dll
03:23:19.0312 3744  seclogon - ok
03:23:19.0359 3744  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            F:\WINDOWS\system32\sens.dll
03:23:19.0359 3744  SENS - ok
03:23:19.0437 3744  [ A2CC81C30BEF6AC9F27055490EEF6DE3 ] Sentinel        F:\WINDOWS\System32\Drivers\SENTINEL.SYS
03:23:19.0453 3744  Sentinel - ok
03:23:19.0656 3744  [ 02D35C4BC3404CF9F40EADDDF411BE61 ] SentinelKeysServer F:\Program Files\Common Files\SafeNet Sentinel\Sentinel Keys Server\sntlkeyssrvr.exe
03:23:19.0656 3744  SentinelKeysServer - ok
03:23:20.0125 3744  [ A4B4F5CDF3A20914E284A0F6854489B2 ] SentinelProtectionServer F:\Program Files\Common Files\SafeNet Sentinel\Sentinel Protection Server\WinNT\spnsrvnt.exe
03:23:20.0140 3744  SentinelProtectionServer - ok
03:23:20.0281 3744  [ C2F8444C44F5B13D35330624636D5AF4 ] SentinelSecurityRuntime F:\Program Files\Common Files\SafeNet Sentinel\Sentinel Security Runtime\sntlsrtsrvr.exe
03:23:20.0281 3744  SentinelSecurityRuntime - ok
03:23:20.0328 3744  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          F:\WINDOWS\system32\drivers\Serial.sys
03:23:20.0328 3744  Serial - ok
03:23:20.0437 3744  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         F:\WINDOWS\system32\drivers\Sfloppy.sys
03:23:20.0437 3744  Sfloppy - ok
03:23:20.0562 3744  [ 4F10A2FA76B5BD54CD68AFA94E8ADB39 ] SharedAccess    F:\WINDOWS\System32\ipnathlp.dll
03:23:20.0562 3744  SharedAccess - ok
03:23:20.0640 3744  [ 888CD7B39C37E13A2419BECFAAF0A28C ] ShellHWDetection F:\WINDOWS\System32\shsvcs.dll
03:23:20.0640 3744  ShellHWDetection - ok
03:23:20.0656 3744  Simbad - ok
03:23:20.0781 3744  [ 018873ADF44084B8EEE15C76FE46692A ] SiS315          F:\WINDOWS\system32\DRIVERS\sisgrp.sys
03:23:20.0781 3744  SiS315 - ok
03:23:20.0843 3744  [ A86E52C55DE3488B3FC0FF2B8AD711BF ] SiSGbeXP        F:\WINDOWS\system32\DRIVERS\SiSGbeXP.sys
03:23:20.0843 3744  SiSGbeXP - ok
03:23:20.0875 3744  [ 9DFD2324340F5EE6D5CB9CCE808C1124 ] SiSkp           F:\WINDOWS\system32\DRIVERS\srvkp.sys
03:23:20.0890 3744  SiSkp - ok
03:23:20.0937 3744  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            F:\WINDOWS\system32\DRIVERS\SLIP.sys
03:23:20.0937 3744  SLIP - ok
03:23:20.0968 3744  Sparrow - ok
03:23:21.0031 3744  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        F:\WINDOWS\system32\drivers\splitter.sys
03:23:21.0031 3744  splitter - ok
03:23:21.0093 3744  [ 258DD5D4283FD9F9A7166BE9AE45CE73 ] Spooler         F:\WINDOWS\system32\spoolsv.exe
03:23:21.0093 3744  Spooler - ok
03:23:21.0140 3744  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              F:\WINDOWS\system32\DRIVERS\sr.sys
03:23:21.0156 3744  sr - ok
03:23:21.0234 3744  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       F:\WINDOWS\system32\srsvc.dll
03:23:21.0234 3744  srservice - ok
03:23:21.0390 3744  [ 9B390283569EA58D43D2586032B892F5 ] Srv             F:\WINDOWS\system32\DRIVERS\srv.sys
03:23:21.0390 3744  Srv - ok
03:23:21.0453 3744  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         F:\WINDOWS\System32\ssdpsrv.dll
03:23:21.0453 3744  SSDPSRV - ok
03:23:21.0484 3744  Steam Client Service - ok
03:23:21.0640 3744  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          F:\WINDOWS\system32\wiaservc.dll
03:23:21.0640 3744  stisvc - ok
03:23:21.0718 3744  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        F:\WINDOWS\system32\DRIVERS\StreamIP.sys
03:23:21.0718 3744  streamip - ok
03:23:21.0765 3744  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          F:\WINDOWS\system32\DRIVERS\swenum.sys
03:23:21.0765 3744  swenum - ok
03:23:21.0812 3744  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          F:\WINDOWS\system32\drivers\swmidi.sys
03:23:21.0812 3744  swmidi - ok
03:23:21.0828 3744  SwPrv - ok
03:23:21.0843 3744  symc810 - ok
03:23:21.0859 3744  symc8xx - ok
03:23:21.0875 3744  sym_hi - ok
03:23:21.0890 3744  sym_u3 - ok
03:23:21.0953 3744  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        F:\WINDOWS\system32\drivers\sysaudio.sys
03:23:21.0953 3744  sysaudio - ok
03:23:22.0031 3744  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       F:\WINDOWS\system32\smlogsvc.exe
03:23:22.0031 3744  SysmonLog - ok
03:23:22.0140 3744  [ E2B32B10ACC5D97623275AAFB67E5F03 ] TapiSrv         F:\WINDOWS\System32\tapisrv.dll
03:23:22.0140 3744  TapiSrv - ok
03:23:22.0296 3744  [ 474D3DCCB57DEFCD917311EEC47204B9 ] Tcpip           F:\WINDOWS\system32\DRIVERS\tcpip.sys
03:23:22.0312 3744  Tcpip - ok
03:23:22.0359 3744  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          F:\WINDOWS\system32\drivers\TDPIPE.sys
03:23:22.0359 3744  TDPIPE - ok
03:23:22.0390 3744  [ C0578456F29E5F26285F81B7B71FE57D ] TDTCP           F:\WINDOWS\system32\drivers\TDTCP.sys
03:23:22.0390 3744  TDTCP - ok
03:23:22.0421 3744  [ 88155247177638048422893737429D9E ] TermDD          F:\WINDOWS\system32\DRIVERS\termdd.sys
03:23:22.0421 3744  TermDD - ok
03:23:22.0562 3744  [ 5128852A18AE46C387F87BF27DA4C9DD ] TermService     F:\WINDOWS\System32\termsrv.dll
03:23:22.0562 3744  TermService - ok
03:23:22.0640 3744  [ 888CD7B39C37E13A2419BECFAAF0A28C ] Themes          F:\WINDOWS\System32\shsvcs.dll
03:23:22.0640 3744  Themes - ok
03:23:22.0687 3744  [ DB7205804759FF62C34E3EFD8A4CC76A ] TlntSvr         F:\WINDOWS\system32\tlntsvr.exe
03:23:22.0703 3744  TlntSvr - ok
03:23:22.0718 3744  TosIde - ok
03:23:22.0765 3744  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          F:\WINDOWS\system32\trkwks.dll
03:23:22.0781 3744  TrkWks - ok
03:23:22.0828 3744  [ D85938F272D1BCF3DB3A31FC0A048928 ] uagp35          F:\WINDOWS\system32\DRIVERS\uagp35.sys
03:23:22.0828 3744  uagp35 - ok
03:23:22.0875 3744  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            F:\WINDOWS\system32\drivers\Udfs.sys
03:23:22.0890 3744  Udfs - ok
03:23:22.0906 3744  ultra - ok
03:23:23.0062 3744  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          F:\WINDOWS\system32\DRIVERS\update.sys
03:23:23.0062 3744  Update - ok
03:23:23.0171 3744  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        F:\WINDOWS\System32\upnphost.dll
03:23:23.0171 3744  upnphost - ok
03:23:23.0218 3744  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             F:\WINDOWS\System32\ups.exe
03:23:23.0218 3744  UPS - ok
03:23:23.0250 3744  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         F:\WINDOWS\system32\DRIVERS\usbccgp.sys
03:23:23.0250 3744  usbccgp - ok
03:23:23.0281 3744  [ 52674B5DBEE499342A599C7771ABECAA ] usbehci         F:\WINDOWS\system32\DRIVERS\usbehci.sys
03:23:23.0281 3744  usbehci - ok
03:23:23.0312 3744  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          F:\WINDOWS\system32\DRIVERS\usbhub.sys
03:23:23.0328 3744  usbhub - ok
03:23:23.0359 3744  [ C5E11CD822ADF0019A5A862D9C4E2222 ] usbohci         F:\WINDOWS\system32\DRIVERS\usbohci.sys
03:23:23.0359 3744  usbohci - ok
03:23:23.0390 3744  [ A32426D9B14A089EAA1D922E0C5801A9 ] usbstor         F:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
03:23:23.0390 3744  usbstor - ok
03:23:23.0468 3744  [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo        F:\WINDOWS\system32\Drivers\usbvideo.sys
03:23:23.0468 3744  usbvideo - ok
03:23:23.0500 3744  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         F:\WINDOWS\System32\drivers\vga.sys
03:23:23.0500 3744  VgaSave - ok
03:23:23.0515 3744  ViaIde - ok
03:23:23.0546 3744  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         F:\WINDOWS\system32\drivers\VolSnap.sys
03:23:23.0562 3744  VolSnap - ok
03:23:23.0671 3744  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             F:\WINDOWS\System32\vssvc.exe
03:23:23.0671 3744  VSS - ok
03:23:23.0750 3744  [ 9F8A0D0CBB2FA265A754516128C00E22 ] W32Time         F:\WINDOWS\system32\w32time.dll
03:23:23.0765 3744  W32Time - ok
03:23:23.0796 3744  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          F:\WINDOWS\system32\DRIVERS\wanarp.sys
03:23:23.0796 3744  Wanarp - ok
03:23:24.0000 3744  [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000        F:\WINDOWS\system32\Drivers\wdf01000.sys
03:23:24.0000 3744  Wdf01000 - ok
03:23:24.0031 3744  WDICA - ok
03:23:24.0109 3744  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          F:\WINDOWS\system32\drivers\wdmaud.sys
03:23:24.0109 3744  wdmaud - ok
03:23:24.0156 3744  [ 703591CD1403BC19E7198CA7B314E132 ] WebClient       F:\WINDOWS\System32\webclnt.dll
03:23:24.0171 3744  WebClient - ok
03:23:24.0359 3744  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         F:\WINDOWS\system32\wbem\WMIsvc.dll
03:23:24.0359 3744  winmgmt - ok
03:23:24.0437 3744  [ 051B1BDECD6DEE18C771B5D5EC7F044D ] WmdmPmSN        F:\WINDOWS\system32\MsPMSNSv.dll
03:23:24.0437 3744  WmdmPmSN - ok
03:23:24.0671 3744  [ C8A6C82F90B055149925DC7526B2D78C ] Wmi             F:\WINDOWS\System32\advapi32.dll
03:23:24.0687 3744  Wmi - ok
03:23:24.0781 3744  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        F:\WINDOWS\system32\wbem\wmiapsrv.exe
03:23:24.0781 3744  WmiApSrv - ok
03:23:25.0125 3744  [ 6BAB4DC65515A098505F8B3D01FB6FE5 ] WMPNetworkSvc   F:\Program Files\Windows Media Player\WMPNetwk.exe
03:23:25.0140 3744  WMPNetworkSvc - ok
03:23:25.0453 3744  [ B800EEC15851597405784126C407188C ] WPFFontCache_v0400 F:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe
03:23:25.0468 3744  WPFFontCache_v0400 - ok
03:23:25.0531 3744  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          F:\WINDOWS\system32\wscsvc.dll
03:23:25.0531 3744  wscsvc - ok
03:23:25.0578 3744  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        F:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
03:23:25.0578 3744  WSTCODEC - ok
03:23:25.0640 3744  [ 37E17DF31E2883F394FABFBC93AC3069 ] wuauserv        F:\WINDOWS\system32\wuauserv.dll
03:23:25.0656 3744  wuauserv - ok
03:23:25.0718 3744  [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf          F:\WINDOWS\system32\DRIVERS\WudfPf.sys
03:23:25.0718 3744  WudfPf - ok
03:23:25.0781 3744  [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd          F:\WINDOWS\system32\DRIVERS\wudfrd.sys
03:23:25.0781 3744  WudfRd - ok
03:23:25.0812 3744  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc         F:\WINDOWS\System32\WUDFSvc.dll
03:23:25.0828 3744  WudfSvc - ok
03:23:26.0000 3744  [ 349B8D2BB755E8C3B0E3E82A87663E55 ] WZCSVC          F:\WINDOWS\System32\wzcsvc.dll
03:23:26.0015 3744  WZCSVC - ok
03:23:26.0093 3744  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         F:\WINDOWS\System32\xmlprov.dll
03:23:26.0109 3744  xmlprov - ok
03:23:26.0156 3744  [ 09E5340BD9B2CB730BF4DC6BE7721291 ] xusb21          F:\WINDOWS\system32\DRIVERS\xusb21.sys
03:23:26.0171 3744  xusb21 - ok
03:23:26.0203 3744  ================ Scan global ===============================
03:23:26.0265 3744  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] F:\WINDOWS\system32\basesrv.dll
03:23:26.0390 3744  [ A6430B97C05DA8A4BA70E8280B2E6287 ] F:\WINDOWS\system32\winsrv.dll
03:23:26.0500 3744  [ A6430B97C05DA8A4BA70E8280B2E6287 ] F:\WINDOWS\system32\winsrv.dll
03:23:26.0578 3744  [ C519E15665CD89A91AD383FCE3CB556A ] F:\WINDOWS\system32\services.exe
03:23:26.0593 3744  [Global] - ok
03:23:26.0593 3744  ================ Scan MBR ==================================
03:23:26.0625 3744  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
03:23:27.0000 3744  \Device\Harddisk0\DR0 - ok
03:23:27.0046 3744  [ C65997CECA84B0140E5059C7EA324A15 ] \Device\Harddisk1\DR2
03:23:28.0656 3744  \Device\Harddisk1\DR2 - ok
03:23:28.0671 3744  ================ Scan VBR ==================================
03:23:28.0734 3744  [ 6E66BB96D28685080D57D8371D8B7899 ] \Device\Harddisk0\DR0\Partition1
03:23:28.0734 3744  \Device\Harddisk0\DR0\Partition1 - ok
03:23:28.0765 3744  [ AA90C5643CDE9B06568D8EEDBFEE509B ] \Device\Harddisk1\DR2\Partition1
03:23:28.0765 3744  \Device\Harddisk1\DR2\Partition1 - ok
03:23:28.0781 3744  ============================================================
03:23:28.0781 3744  Scan finished
03:23:28.0781 3744  ============================================================
03:23:28.0796 0552  Detected object count: 0
03:23:28.0796 0552  Actual detected object count: 0
 

Stand by...



#7 doomguy5000

doomguy5000
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 30 July 2013 - 09:37 PM

# AdwCleaner v2.306 - Logfile created 07/31/2013 at 03:25:48
# Updated 19/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 3 (32 bits)
# User : Owner - COMPUTER-5300
# Boot Mode : Normal
# Running from : F:\Documents and Settings\Owner\My Documents\Downloads\AdwCleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

File Deleted : F:\END
Folder Deleted : F:\Documents and Settings\All Users\Application Data\APN
Folder Deleted : F:\Documents and Settings\Owner\Local Settings\Application Data\AVG Secure Search
Folder Deleted : F:\Program Files\Common Files\Speedbit
Folder Deleted : F:\Program Files\Iminent

***** [Registry] *****

Key Deleted : HKCU\Software\APN PIP
Key Deleted : HKCU\Software\Iminent
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{95B7759C-8C7F-4BF1-B163-73684A933233}
Key Deleted : HKCU\Software\Softonic
Key Deleted : HKLM\SOFTWARE\Classes\AppID\{D616A4A2-7B38-4DBC-9093-6FE7A4A21B17}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{02054E11-5113-4BE3-8153-AA8DFB5D3761}
Key Deleted : HKLM\SOFTWARE\Classes\CLSID\{80922EE0-8A76-46AE-95D5-BD3C3FE0708D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{021B4049-F57D-4565-A693-FD3B04786BFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0362AA09-808D-48E9-B360-FB51A8CBCE09}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{06844020-CD0B-3D3D-A7FE-371153013E49}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{0ADC01BB-303B-3F8E-93DA-12C140E85460}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{10D3722F-23E6-3901-B6C1-FF6567121920}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{1675E62B-F911-3B7B-A046-EB57261212F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{192929F2-9273-3894-91B0-F54671C4C861}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2932897E-3036-43D9-8A64-B06447992065}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{2DE92D29-A042-3C37-BFF8-07C7D8893EFA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{32B80AD6-1214-45F4-994E-78A5D482C000}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{3A8E103F-B2B7-3BEF-B3B0-88E29B2420E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{478CE5D3-D38E-3FFE-8DBE-8C4A0F1C4D8D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{48B7DA4E-69ED-39E3-BAD5-3E3EFF22CFB0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5982F405-44E4-3BBB-BAC4-CF8141CBBC5C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{5D8C3CC3-3C05-38A1-B244-924A23115FE9}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{641593AF-D9FD-30F7-B783-36E16F7A2E08}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{711FC48A-1356-3932-94D8-A8B733DBC7E4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{72227B7F-1F02-3560-95F5-592E68BACC0C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{7B5E8CE3-4722-4C0E-A236-A6FF731BEF37}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{890D4F59-5ED0-3CB4-8E0E-74A5A86E7ED0}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8C68913C-AC3C-4494-8B9C-984D87C85003}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{8D019513-083F-4AA5-933F-7D43A6DA82C4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{923F6FB8-A390-370E-A0D2-DD505432481D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{9BBB26EF-B178-35D6-9D3D-B485F4279FE5}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A62DDBE0-8D2A-339A-B089-8CBCC5CD322A}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{A82AD04D-0B8E-3A49-947B-6A69A8A9C96D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ADEB3CC9-A05D-4FCC-BD09-9025456AA3EA}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{B06D4521-D09C-3F41-8E39-9D784CCA2A75}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C06DAD42-6F39-4CE1-83CC-9A8B9105E556}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{C2E799D0-43A5-3477-8A98-FC5F3677F35C}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D16107CD-2AD5-46A8-BA59-303B7C32C500}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D25B101F-8188-3B43-9D85-201F372BC205}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D2BA7595-5E44-3F1E-880F-03B3139FA5ED}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D35F5C81-17D9-3E1C-A1FC-4472542E1D25}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{D8FA96CA-B250-312C-AF34-4FF1DD72589D}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DAFC1E63-3359-416D-9BC2-E7DCA6F7B0F3}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{DC5E5C44-80FD-3697-9E65-9F286D92F3E7}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E1B4C9DE-D741-385F-981E-6745FACE6F01}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{E7B623F5-9715-3F9F-A671-D1485A39F8A2}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{ED916A7B-7C68-3198-B87D-2DABC30A5587}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{EFA1BDB2-BB3D-3D9A-8EB5-D0D22E0F64F4}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{F4CBF4DD-F8FE-35BA-BB7E-68304DAAB70B}
Key Deleted : HKLM\SOFTWARE\Classes\Interface\{FC32005D-E27C-32E0-ADFA-152F598B75E7}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{13ABD093-D46F-40DF-A608-47E162EC799D}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{2BF2028E-3F3C-4C05-AB45-B2F1DCFE0759}
Key Deleted : HKLM\SOFTWARE\Classes\TypeLib\{DB538320-D3C5-433C-BCA9-C4081A054FCF}
Key Deleted : HKLM\Software\Iminent
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{68B81CCD-A80C-4060-8947-5AE69ED01199}
Key Deleted : HKLM\SOFTWARE\Microsoft\Internet Explorer\Low Rights\ElevationPolicy\{E6B969FB-6D33-48D2-9061-8BBD4899EB08}
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\Wajam
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\0238BBE24EA3A70408B81E4BB89C15E5
Key Deleted : HKLM\Software\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Components\29799DE249E7DBC459FC6C8F07EB8375
Key Deleted : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall\SearchTheWebARP
Key Deleted : HKLM\Software\PIP
Key Deleted : HKLM\Software\SpeedBit
Key Deleted : HKLM\Software\Tarma Installer

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v22.0 (en-US)

File : F:\Documents and Settings\Owner\Application Data\Mozilla\Firefox\Profiles\rzp0bcpz.default\prefs.js

[OK] File is clean.

-\\ Google Chrome v28.0.1500.72

File : F:\Documents and Settings\Owner\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences

[OK] File is clean.

*************************

AdwCleaner[S1].txt - [6460 octets] - [31/07/2013 03:25:48]

########## EOF - F:\AdwCleaner[S1].txt - [6520 octets] ##########
 

Stand by...



#8 doomguy5000

doomguy5000
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 31 July 2013 - 12:14 PM

C:\Desktop\Downloaded\Games\Delta Force\_AK-47_Single_Player_Add-On_For_DF1.zip    Win32/Keylogger.HotKeysHook.A virus    deleted - quarantined
C:\Downloads\Adobe Dreamweaver CS5 -CyberPiraten-\Activation Blocker 1,7.bat    BAT/HostsChanger.A application    cleaned by deleting - quarantined
F:\Documents and Settings\Owner\Local Settings\Application Data\Sun\Java\Deployment\cache\6.0\31\41c6d2df-21da44c5    multiple threats    cleaned by deleting - quarantined
F:\Documents and Settings\Owner\Local Settings\Temp\is1275519350\wajam_download.exe    Win32/Wajam.B application    cleaned by deleting - quarantined
F:\Documents and Settings\Owner\My Documents\Downloads\cbsidlm-tr1_13-IP_Camera_Viewer-ORG-75609217.exe    Win32/DownloadAdmin.G application    cleaned by deleting - quarantined
F:\Documents and Settings\Owner\My Documents\Downloads\cbsidlm-tr1_13-Transparent_TaskBar-ORG-10456716.exe    Win32/DownloadAdmin.G application    cleaned by deleting - quarantined
F:\Documents and Settings\Owner\My Documents\Downloads\coretemp_1236.exe    a variant of Win32/InstallIQ.A application    cleaned by deleting - quarantined
F:\Documents and Settings\Owner\My Documents\Downloads\FreemakeVideoDownloaderSetup.exe    Win32/OpenCandy application    cleaned by deleting - quarantined
F:\Documents and Settings\Owner\My Documents\Downloads\Install_WinsockxpFix.exe    a variant of Win32/InstallCore.AZ application    cleaned by deleting - quarantined
F:\Documents and Settings\Owner\My Documents\Downloads\SkypeSetup(1).exe    Win32/InstallCore.BL application    cleaned by deleting - quarantined



#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:30 PM

Posted 31 July 2013 - 08:01 PM

This is the problem with torrent downloads. In exchange for a free app they install a keylogger and steal all your personal info.

I would advise you to disconnect this PC from the Internet, and then go to
a known clean computer and change any passwords or security information held
on the infected computer. In particular, check whatever relates to online
banking financial transactions, shopping, credit cards, or sensitive
personal information. It is also wise to contact your financial institutions
to apprise them of your situation.

But all appears removed now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 doomguy5000

doomguy5000
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 01 August 2013 - 04:39 AM

Thank you for your time. I will follow your advice provided. Could you recommend approprate software to protect my computer in future since Avast now appears utterly useless at fending off or detecting virus's?

 

 

Much Appreciated



#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,404 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:04:30 PM

Posted 01 August 2013 - 01:33 PM

It's not truly Avast's fault. You downloaded the app. If you do not scan it first but allow it to run, you say OK to the exe file. Hence you said install the malware too.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 doomguy5000

doomguy5000
  • Topic Starter

  • Members
  • 9 posts
  • OFFLINE
  •  
  • Local time:09:30 PM

Posted 02 August 2013 - 10:27 AM

I always scan every file or torrent I download Avast has failed to show up anything wrong.






0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users