Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

internet virus , social media virus


  • Please log in to reply
14 replies to this topic

#1 oafs

oafs

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 02 August 2013 - 05:02 AM

I have been infected by a virus or trojan etc.My access to internet is now partial .Some times it connects and sometimes it does not connect.Also one ad comes on top of other ads in the network asking to join some social media sites.I have formatted all my drives many times but still the virus comes back. Please help.



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:30 AM

Posted 02 August 2013 - 05:04 AM

:welcome:

 

:step1: Install and run MBAM

:step2:  Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step3: ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================

:step4: Please download and scan with the Kaspersky Virus Removal Tool from one of the following links and save it to your desktop.

Be sure to print out and read the instructions provided in:

  • Double-click the setup file (i.e. setup_11.0.0.1245x11_2012_18-23_13_03.exe) to install the utility.
    Vista/Windows 7/8 users right-click and select Run As Administrator.
  • If you receive a UAC prompt asking if you would like to continue running the program, you should press the Continue button.
  • The required files will be exracted and installed...be patient as this will take a few minutes.
  • At the 'Welcome!' windows, check the box next to I accept the license agreement and click Start.
  • A new window will open with two tabs (Automatic Scan and Manual Disinfection) and two icons on the right.
  • For a more comprehensive (but longer) scan, click the icon which looks like a round gear, Click Scan Scope and place a check mark in the box next to Local Disk (C:).
    System memory, Hidden Startups and Disk boot sector boxes should already be checked by default.
  • Click on the 'Automatic Scan' tab, and click the green Start scanning button to begin.
  • The time to finish and percentage completed will show as the scan is in progress...Important! Do not use the computer during the scan.
  • If no threats are detected, exit the program.
  • If threats are detected, you will be prompted for action: Disinfect, Delete if disinfection failes.
  • Place a checkmark in the Apply to all box, and click Disinfect if the button is active.
  • After the scan finishes, if any threats are left unneutralized in the Scan window (Red exclamation point), click the Neutralize allbutton.
  • Place a checkmark in the Apply to all box, and click Disinfect if the button is active.
  • If advised that a special disinfection procedure is required which demands system reboot, click the Ok button to close the window.
  • When finished, click the rectanular notepad icon > select Detected threats > click on to highlight and click the Save icon to save the results as a text file...name it avptool.txt).
  • Copy and paste the report results of avptool.txt with any threats detected in your next reply.
  • When finished, follow these instructions on How to uninstall Kaspersky Virus Removal Tool.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 oafs

oafs
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 02 August 2013 - 11:23 AM

TDS killer report

15:38:44.0734 1172  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42
15:38:46.0734 1172  ============================================================
15:38:46.0734 1172  Current date / time: 2013/08/02 15:38:46.0734
15:38:46.0734 1172  SystemInfo:
15:38:46.0734 1172  
15:38:46.0734 1172  OS Version: 5.1.2600 ServicePack: 2.0
15:38:46.0734 1172  Product type: Workstation
15:38:46.0734 1172  ComputerName: SYSTEM
15:38:46.0734 1172  UserName: admin
15:38:46.0734 1172  Windows directory: C:\WINDOWS
15:38:46.0734 1172  System windows directory: C:\WINDOWS
15:38:46.0734 1172  Processor architecture: Intel x86
15:38:46.0734 1172  Number of processors: 2
15:38:46.0734 1172  Page size: 0x1000
15:38:46.0734 1172  Boot type: Normal boot
15:38:46.0734 1172  ============================================================
15:38:49.0171 1172  Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
15:38:49.0203 1172  ============================================================
15:38:49.0203 1172  \Device\Harddisk0\DR0:
15:38:49.0203 1172  MBR partitions:
15:38:49.0203 1172  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x9C41AD8
15:38:49.0218 1172  \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x9C41B56, BlocksNum 0x7530462
15:38:49.0234 1172  \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x11171FF7, BlocksNum 0x4E1EDEC
15:38:49.0250 1172  \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0x15F90E22, BlocksNum 0x722F89E
15:38:49.0250 1172  ============================================================
15:38:49.0328 1172  C: <-> \Device\Harddisk0\DR0\Partition1
15:38:49.0343 1172  D: <-> \Device\Harddisk0\DR0\Partition2
15:38:49.0375 1172  E: <-> \Device\Harddisk0\DR0\Partition3
15:38:49.0406 1172  F: <-> \Device\Harddisk0\DR0\Partition4
15:38:49.0421 1172  ============================================================
15:38:49.0421 1172  Initialize success
15:38:49.0421 1172  ============================================================
15:39:31.0343 1556  ============================================================
15:39:31.0343 1556  Scan started
15:39:31.0343 1556  Mode: Manual; TDLFS; 
15:39:31.0343 1556  ============================================================
15:39:32.0921 1556  ================ Scan system memory ========================
15:39:32.0921 1556  System memory - ok
15:39:32.0921 1556  ================ Scan services =============================
15:39:32.0984 1556  [ 186B54479D98E48AEE0E9ADA4B3C4D31 ] 62805367        C:\WINDOWS\system32\DRIVERS\62805367.sys
15:39:33.0000 1556  62805367 - ok
15:39:33.0000 1556  Abiosdsk - ok
15:39:33.0000 1556  abp480n5 - ok
15:39:33.0031 1556  [ A10C7534F7223F4A73A948967D00E69B ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys
15:39:33.0031 1556  ACPI - ok
15:39:33.0062 1556  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys
15:39:33.0062 1556  ACPIEC - ok
15:39:33.0062 1556  adpu160m - ok
15:39:33.0093 1556  [ 841F385C6CFAF66B58FBD898722BB4F0 ] aec             C:\WINDOWS\system32\drivers\aec.sys
15:39:33.0093 1556  aec - ok
15:39:33.0125 1556  [ 5AC495F4CB807B2B98AD2AD591E6D92E ] AFD             C:\WINDOWS\System32\drivers\afd.sys
15:39:33.0125 1556  AFD - ok
15:39:33.0140 1556  Aha154x - ok
15:39:33.0140 1556  aic78u2 - ok
15:39:33.0140 1556  aic78xx - ok
15:39:33.0171 1556  [ C7AE0FD3867DB0D42B03B73C18F3D671 ] Alerter         C:\WINDOWS\system32\alrsvc.dll
15:39:33.0171 1556  Alerter - ok
15:39:33.0187 1556  [ F1958FBF86D5C004CF19A5951A9514B7 ] ALG             C:\WINDOWS\System32\alg.exe
15:39:33.0187 1556  ALG - ok
15:39:33.0187 1556  AliIde - ok
15:39:33.0187 1556  amsint - ok
15:39:33.0218 1556  [ 9C3C12975C97119412802B181FBEEFFE ] AppMgmt         C:\WINDOWS\System32\appmgmts.dll
15:39:33.0218 1556  AppMgmt - ok
15:39:33.0218 1556  asc - ok
15:39:33.0218 1556  asc3350p - ok
15:39:33.0218 1556  asc3550 - ok
15:39:33.0250 1556  [ 02000ABF34AF4C218C35D257024807D6 ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys
15:39:33.0250 1556  AsyncMac - ok
15:39:33.0281 1556  [ CDFE4411A69C224BD1D11B2DA92DAC51 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys
15:39:33.0281 1556  atapi - ok
15:39:33.0281 1556  Atdisk - ok
15:39:33.0296 1556  [ EC88DA854AB7D7752EC8BE11A741BB7F ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys
15:39:33.0296 1556  Atmarpc - ok
15:39:33.0312 1556  [ DB66DB626E4882EBEF55F136F12C1829 ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll
15:39:33.0328 1556  AudioSrv - ok
15:39:33.0343 1556  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys
15:39:33.0343 1556  audstub - ok
15:39:33.0390 1556  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys
15:39:33.0390 1556  Beep - ok
15:39:33.0421 1556  [ 2C69EC7E5A311334D10DD95F338FCCEA ] BITS            C:\WINDOWS\system32\qmgr.dll
15:39:33.0437 1556  BITS - ok
15:39:33.0453 1556  [ E3CFCCDDA4EDD1D0DC9168B2E18F27B8 ] Browser         C:\WINDOWS\System32\browser.dll
15:39:33.0453 1556  Browser - ok
15:39:33.0484 1556  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys
15:39:33.0484 1556  cbidf2k - ok
15:39:33.0484 1556  cd20xrnt - ok
15:39:33.0515 1556  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys
15:39:33.0515 1556  Cdaudio - ok
15:39:33.0531 1556  [ CD7D5152DF32B47F4E36F710B35AAE02 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys
15:39:33.0531 1556  Cdfs - ok
15:39:33.0531 1556  [ AF9C19B3100FE010496B1A27181FBF72 ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys
15:39:33.0531 1556  Cdrom - ok
15:39:33.0546 1556  Changer - ok
15:39:33.0546 1556  [ 3192BD04D032A9C4A85A3278C268A13A ] CiSvc           C:\WINDOWS\system32\cisvc.exe
15:39:33.0546 1556  CiSvc - ok
15:39:33.0546 1556  [ C8DEC22C4137D7A90F8BDF41CA4B82AE ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe
15:39:33.0546 1556  ClipSrv - ok
15:39:33.0562 1556  CmdIde - ok
15:39:33.0562 1556  COMSysApp - ok
15:39:33.0578 1556  Cpqarray - ok
15:39:33.0593 1556  [ 10654F9DDCEA9C46CFB77554231BE73B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll
15:39:33.0593 1556  CryptSvc - ok
15:39:33.0593 1556  dac2w2k - ok
15:39:33.0593 1556  dac960nt - ok
15:39:33.0609 1556  [ 5C83A4408604F737717AB96371201680 ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll
15:39:33.0625 1556  DcomLaunch - ok
15:39:33.0625 1556  [ CB6CA3E5261D65F6F809EED23BF167AA ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll
15:39:33.0625 1556  Dhcp - ok
15:39:33.0640 1556  [ 00CA44E4534865F8A3B64F7C0984BFF0 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys
15:39:33.0640 1556  Disk - ok
15:39:33.0640 1556  dmadmin - ok
15:39:33.0671 1556  [ C0FBB516E06E243F0CF31F597E7EBF7D ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys
15:39:33.0687 1556  dmboot - ok
15:39:33.0703 1556  [ F5E7B358A732D09F4BCF2824B88B9E28 ] dmio            C:\WINDOWS\system32\drivers\dmio.sys
15:39:33.0718 1556  dmio - ok
15:39:33.0734 1556  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys
15:39:33.0734 1556  dmload - ok
15:39:33.0750 1556  [ 1639D9964C9E1B2ECCA95C8217D3E70D ] dmserver        C:\WINDOWS\System32\dmserver.dll
15:39:33.0750 1556  dmserver - ok
15:39:33.0781 1556  [ A6F881284AC1150E37D9AE47FF601267 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys
15:39:33.0781 1556  DMusic - ok
15:39:33.0812 1556  [ 7379DE06FD196E396A00AA97B990C00D ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll
15:39:33.0812 1556  Dnscache - ok
15:39:33.0828 1556  dpti2o - ok
15:39:33.0828 1556  [ 1ED4DBBAE9F5D558DBBA4CC450E3EB2E ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys
15:39:33.0828 1556  drmkaud - ok
15:39:33.0843 1556  [ 67DFF7BBBD0E80AAB7B3CF061448DB8A ] ERSvc           C:\WINDOWS\System32\ersvc.dll
15:39:33.0843 1556  ERSvc - ok
15:39:33.0859 1556  [ C6CE6EEC82F187615D1002BB3BB50ED4 ] Eventlog        C:\WINDOWS\system32\services.exe
15:39:33.0859 1556  Eventlog - ok
15:39:33.0875 1556  [ ACD36A2DD7D1E9D8A060AA651DC07E63 ] EventSystem     C:\WINDOWS\system32\es.dll
15:39:33.0875 1556  EventSystem - ok
15:39:33.0906 1556  [ 3E9B0CB3DB273F2726536FE3A886E1A1 ] ewusbnet        C:\WINDOWS\system32\DRIVERS\ewusbnet.sys
15:39:33.0921 1556  ewusbnet - ok
15:39:33.0921 1556  [ 57C171EA22F0A7F068FCB0CAEDD1E8E7 ] ew_hwusbdev     C:\WINDOWS\system32\DRIVERS\ew_hwusbdev.sys
15:39:33.0921 1556  ew_hwusbdev - ok
15:39:33.0953 1556  [ 3117F595E9615E04F05A54FC15A03B20 ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys
15:39:33.0953 1556  Fastfat - ok
15:39:33.0968 1556  [ E7518DC542D3EBDCB80EDD98462C7821 ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll
15:39:33.0968 1556  FastUserSwitchingCompatibility - ok
15:39:33.0984 1556  [ CED2E8396A8838E59D8FD529C680E02C ] Fdc             C:\WINDOWS\system32\drivers\Fdc.sys
15:39:33.0984 1556  Fdc - ok
15:39:34.0015 1556  [ E153AB8A11DE5452BCF5AC7652DBF3ED ] Fips            C:\WINDOWS\system32\drivers\Fips.sys
15:39:34.0015 1556  Fips - ok
15:39:34.0015 1556  [ 0DD1DE43115B93F4D85E889D7A86F548 ] Flpydisk        C:\WINDOWS\system32\drivers\Flpydisk.sys
15:39:34.0031 1556  Flpydisk - ok
15:39:34.0046 1556  [ 157754F0DF355A9E0A6F54721914F9C6 ] FltMgr          C:\WINDOWS\system32\DRIVERS\fltMgr.sys
15:39:34.0046 1556  FltMgr - ok
15:39:34.0062 1556  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys
15:39:34.0062 1556  Fs_Rec - ok
15:39:34.0062 1556  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys
15:39:34.0062 1556  Ftdisk - ok
15:39:34.0078 1556  [ C0F1D4A21DE5A415DF8170616703DEBF ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys
15:39:34.0078 1556  Gpc - ok
15:39:34.0140 1556  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe
15:39:34.0140 1556  gupdate - ok
15:39:34.0140 1556  [ 506708142BC63DABA64F2D3AD1DCD5BF ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe
15:39:34.0140 1556  gupdatem - ok
15:39:34.0171 1556  [ 3FCC124B6E08EE0E9351F717DD136939 ] HDAudBus        C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
15:39:34.0171 1556  HDAudBus - ok
15:39:34.0218 1556  [ 8827911A8C37E40C027CBFC88E69D967 ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll
15:39:34.0218 1556  helpsvc - ok
15:39:34.0234 1556  [ 9376E6893E52B368ABC6255BF54F0B28 ] HidServ         C:\WINDOWS\System32\hidserv.dll
15:39:34.0234 1556  HidServ - ok
15:39:34.0265 1556  [ 1DE6783B918F540149AA69943BDFEBA8 ] hidusb          C:\WINDOWS\system32\DRIVERS\hidusb.sys
15:39:34.0265 1556  hidusb - ok
15:39:34.0281 1556  [ 52150B4AEC54956124B028D8830778C6 ] HitmanProScheduler C:\Program Files\HitmanPro\hmpsched.exe
15:39:34.0296 1556  HitmanProScheduler - ok
15:39:34.0296 1556  hpn - ok
15:39:34.0328 1556  [ C19B522A9AE0BBC3293397F3055E80A1 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys
15:39:34.0328 1556  HTTP - ok
15:39:34.0328 1556  [ 064D8581ADF77C25133E7D751D917D83 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll
15:39:34.0328 1556  HTTPFilter - ok
15:39:34.0359 1556  [ 4F3C8140A1725FBAAA786A351AF13437 ] huawei_enumerator C:\WINDOWS\system32\DRIVERS\ew_jubusenum.sys
15:39:34.0359 1556  huawei_enumerator - ok
15:39:34.0375 1556  [ 8ABB5F714050209E5C7537DE18F7FB7B ] hwdatacard      C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys
15:39:34.0375 1556  hwdatacard - ok
15:39:34.0453 1556  [ 5EF3427AE503B5C03A48F7C9FF458B69 ] HWDeviceService.exe C:\Documents and Settings\All Users\Application Data\DatacardService\HWDeviceService.exe
15:39:34.0468 1556  HWDeviceService.exe - ok
15:39:34.0468 1556  i2omgmt - ok
15:39:34.0468 1556  i2omp - ok
15:39:34.0484 1556  [ 5502B58EEF7486EE6F93F3F164DCB808 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys
15:39:34.0484 1556  i8042prt - ok
15:39:34.0609 1556  [ 9ACB03875CFE068D5CC0E98FB2CF7017 ] ialm            C:\WINDOWS\system32\DRIVERS\igxpmp32.sys
15:39:34.0703 1556  ialm - ok
15:39:34.0718 1556  [ F8AA320C6A0409C0380E5D8A99D76EC6 ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys
15:39:34.0718 1556  Imapi - ok
15:39:34.0734 1556  [ FA788520BCAC0F5D9D5CDE5615C0D931 ] ImapiService    C:\WINDOWS\system32\imapi.exe
15:39:34.0750 1556  ImapiService - ok
15:39:34.0750 1556  ini910u - ok
15:39:34.0750 1556  IntelIde - ok
15:39:34.0781 1556  [ 279FB78702454DFF2BB445F238C048D2 ] intelppm        C:\WINDOWS\system32\DRIVERS\intelppm.sys
15:39:34.0781 1556  intelppm - ok
15:39:34.0796 1556  [ 4448006B6BC60E6C027932CFC38D6855 ] Ip6Fw           C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
15:39:34.0796 1556  Ip6Fw - ok
15:39:34.0828 1556  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
15:39:34.0828 1556  IpFilterDriver - ok
15:39:34.0828 1556  [ E1EC7F5DA720B640CD8FB8424F1B14BB ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys
15:39:34.0828 1556  IpInIp - ok
15:39:34.0843 1556  [ B5A8E215AC29D24D60B4D1250EF05ACE ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys
15:39:34.0843 1556  IpNat - ok
15:39:34.0875 1556  [ 64537AA5C003A6AFEEE1DF819062D0D1 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys
15:39:34.0875 1556  IPSec - ok
15:39:34.0906 1556  [ 50708DAA1B1CBB7D6AC1CF8F56A24410 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys
15:39:34.0906 1556  IRENUM - ok
15:39:34.0921 1556  [ E504F706CCB699C2596E9A3DA1596E87 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys
15:39:34.0921 1556  isapnp - ok
15:39:35.0015 1556  [ 790385B5D3BC420551FA6969E5A50103 ] K7CrvSvc        C:\Program Files\K7 Computing\K7TSecurity\K7CrvSvc.exe
15:39:35.0015 1556  K7CrvSvc - ok
15:39:35.0031 1556  [ 8DB0F4A6C3DE4745AAE362A9EE6FF984 ] K7EmlPxy        C:\Program Files\K7 Computing\K7TSecurity\K7EmlPxy.exe
15:39:35.0031 1556  K7EmlPxy - ok
15:39:35.0046 1556  [ 29DC9002631B98BCD98CFEFBE5747AA1 ] K7FWFilt        C:\WINDOWS\system32\drivers\K7FWFilt.sys
15:39:35.0046 1556  K7FWFilt - ok
15:39:35.0062 1556  [ 92D0AD48A58C1CC46A51C1E5185D10ED ] K7FWSrvc        C:\Program Files\K7 Computing\K7TSecurity\K7FWSrvc.exe
15:39:35.0078 1556  K7FWSrvc - ok
15:39:35.0093 1556  [ 694C629F4F3B5C0B34109877720435A8 ] K7PSSrvc        C:\Program Files\K7 Computing\K7TSecurity\K7PSSrvc.exe
15:39:35.0093 1556  K7PSSrvc - ok
15:39:35.0109 1556  [ 187651EA690B84738CB5A623B24EC64C ] K7RTScan        C:\Program Files\K7 Computing\K7TSecurity\K7RTScan.exe
15:39:35.0109 1556  K7RTScan - ok
15:39:35.0140 1556  [ AE1743A424ECB331945147E22204F931 ] K7Sentry        C:\WINDOWS\system32\drivers\K7Sentry.sys
15:39:35.0156 1556  K7Sentry - ok
15:39:35.0171 1556  [ 43530DE5728810466BF6B115C9DD7D5E ] K7SpmSrc        C:\Program Files\K7 Computing\K7TSecurity\K7SpmSrc.exe
15:39:35.0187 1556  K7SpmSrc - ok
15:39:35.0187 1556  [ DF6926BAB08E5EE793561876380A843C ] K7TdiHlp        C:\WINDOWS\system32\drivers\K7TdiHlp.sys
15:39:35.0203 1556  K7TdiHlp - ok
15:39:35.0218 1556  [ B5AB0BD24421A46C2DD8C575880C92BA ] K7TSMngr        C:\Program Files\K7 Computing\K7TSecurity\K7TSMngr.exe
15:39:35.0218 1556  K7TSMngr - ok
15:39:35.0250 1556  [ EBDEE8A2EE5393890A1ACEE971C4C246 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys
15:39:35.0250 1556  Kbdclass - ok
15:39:35.0250 1556  [ E182FA8E49E8EE41B4ADC53093F3C7E6 ] kbdhid          C:\WINDOWS\system32\DRIVERS\kbdhid.sys
15:39:35.0265 1556  kbdhid - ok
15:39:35.0265 1556  [ D93CAD07C5683DB066B0B2D2D3790EAD ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys
15:39:35.0281 1556  kmixer - ok
15:39:35.0281 1556  [ EB7FFE87FD367EA8FCA0506F74A87FBB ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys
15:39:35.0281 1556  KSecDD - ok
15:39:35.0312 1556  [ 93D32468D34E000CB3407947D1D6E22A ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll
15:39:35.0375 1556  lanmanserver - ok
15:39:35.0406 1556  [ 2C0A7B2AE9C26F2C163627679B42783C ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll
15:39:35.0437 1556  lanmanworkstation - ok
15:39:35.0437 1556  lbrtfdc - ok
15:39:35.0468 1556  [ B3EFF6D938C572E90A07B3D87A3C7657 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll
15:39:35.0468 1556  LmHosts - ok
15:39:35.0500 1556  [ 4470E3C1E0C3378E4CAB137893C12C3A ] MBAMProtector   C:\WINDOWS\system32\drivers\mbam.sys
15:39:35.0500 1556  MBAMProtector - ok
15:39:35.0546 1556  [ 65085456FD9A74D7F1A999520C299ECB ] MBAMScheduler   C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
15:39:35.0546 1556  MBAMScheduler - ok
15:39:35.0578 1556  [ E0D7732F2D2E24B2DB3F67B6750295B8 ] MBAMService     C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
15:39:35.0593 1556  MBAMService - ok
15:39:35.0609 1556  [ 0DB7527DB188C7D967A37BB51BBF3963 ] MBAMSwissArmy   C:\WINDOWS\system32\drivers\mbamswissarmy.sys
15:39:35.0609 1556  MBAMSwissArmy - ok
15:39:35.0625 1556  [ 95FD808E4AC22ABA025A7B3EAC0375D2 ] Messenger       C:\WINDOWS\System32\msgsvc.dll
15:39:35.0625 1556  Messenger - ok
15:39:35.0656 1556  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys
15:39:35.0656 1556  mnmdd - ok
15:39:35.0671 1556  [ F6415361201915B9FE3896B0E4E724FF ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe
15:39:35.0671 1556  mnmsrvc - ok
15:39:35.0687 1556  [ 6FC6F9D7ACC36DCA9B914565A3AEDA05 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys
15:39:35.0687 1556  Modem - ok
15:39:35.0750 1556  [ 9FA7207D1B1ADEAD88AE8EED9CDBBAA5 ] monfilt         C:\WINDOWS\system32\drivers\monfilt.sys
15:39:35.0765 1556  monfilt - ok
15:39:35.0781 1556  [ 34E1F0031153E491910E12551400192C ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys
15:39:35.0781 1556  Mouclass - ok
15:39:35.0781 1556  [ B1C303E17FB9D46E87A98E4BA6769685 ] mouhid          C:\WINDOWS\system32\DRIVERS\mouhid.sys
15:39:35.0796 1556  mouhid - ok
15:39:35.0796 1556  [ 65653F3B4477F3C63E68A9659F85EE2E ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys
15:39:35.0796 1556  MountMgr - ok
15:39:35.0812 1556  mraid35x - ok
15:39:35.0812 1556  [ 46EDCC8F2DB2F322C24F48785CB46366 ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys
15:39:35.0828 1556  MRxDAV - ok
15:39:35.0828 1556  [ 1FD607FC67F7F7C633C3DA65BFC53D18 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
15:39:35.0843 1556  MRxSmb - ok
15:39:35.0875 1556  [ C7C3D89EB0A6F3DBA622EA737FA335B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe
15:39:35.0875 1556  MSDTC - ok
15:39:35.0875 1556  [ 561B3A4333CA2DBDBA28B5B956822519 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys
15:39:35.0875 1556  Msfs - ok
15:39:35.0890 1556  MSIServer - ok
15:39:35.0921 1556  [ AE431A8DD3C1D0D0610CDBAC16057AD0 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys
15:39:35.0921 1556  MSKSSRV - ok
15:39:35.0937 1556  [ 13E75FEF9DFEB08EEDED9D0246E1F448 ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys
15:39:35.0937 1556  MSPCLOCK - ok
15:39:35.0937 1556  [ 1988A33FF19242576C3D0EF9CE785DA7 ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys
15:39:35.0937 1556  MSPQM - ok
15:39:35.0968 1556  [ 469541F8BFD2B32659D5D463A6714BCE ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys
15:39:35.0984 1556  mssmbios - ok
15:39:36.0000 1556  [ D48659BB24C48345D926ECB45C1EBDF5 ] MTsensor        C:\WINDOWS\system32\DRIVERS\ASACPI.sys
15:39:36.0015 1556  MTsensor - ok
15:39:36.0015 1556  [ 82035E0F41C2DD05AE41D27FE6CF7DE1 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys
15:39:36.0015 1556  Mup - ok
15:39:36.0093 1556  [ 0D01287D85B3715FA8270E8EC919B7F7 ] NBService       C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
15:39:36.0109 1556  NBService - ok
15:39:36.0125 1556  [ 558635D3AF1C7546D26067D5D9B6959E ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys
15:39:36.0125 1556  NDIS - ok
15:39:36.0156 1556  [ 08D43BBDACDF23F34D79E44ED35C1B4C ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys
15:39:36.0156 1556  NdisTapi - ok
15:39:36.0203 1556  [ 34D6CD56409DA9A7ED573E1C90A308BF ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys
15:39:36.0203 1556  Ndisuio - ok
15:39:36.0218 1556  [ 0B90E255A9490166AB368CD55A529893 ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys
15:39:36.0218 1556  NdisWan - ok
15:39:36.0234 1556  [ 59FC3FB44D2669BC144FD87826BB571F ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys
15:39:36.0234 1556  NDProxy - ok
15:39:36.0250 1556  [ 3A2ACA8FC1D7786902CA434998D7CEB4 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys
15:39:36.0250 1556  NetBIOS - ok
15:39:36.0250 1556  [ 0C80E410CD2F47134407EE7DD19CC86B ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys
15:39:36.0250 1556  NetBT - ok
15:39:36.0296 1556  [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDE          C:\WINDOWS\system32\netdde.exe
15:39:36.0296 1556  NetDDE - ok
15:39:36.0296 1556  [ 05AFB5AD06462257BEA7495283C86D50 ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe
15:39:36.0296 1556  NetDDEdsdm - ok
15:39:36.0328 1556  [ 84885F9B82F4D55C6146EBF6065D75D2 ] Netlogon        C:\WINDOWS\system32\lsass.exe
15:39:36.0328 1556  Netlogon - ok
15:39:36.0343 1556  [ DAB9E6C7105D2EF49876FE92C524F565 ] Netman          C:\WINDOWS\System32\netman.dll
15:39:36.0343 1556  Netman - ok
15:39:36.0359 1556  [ 4E74AF063C3271FBEA20DD940CFD1184 ] Nla             C:\WINDOWS\System32\mswsock.dll
15:39:36.0359 1556  Nla - ok
15:39:36.0484 1556  [ C4EBBBD7165BE535F0BFD06B80601D91 ] NMIndexingService C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
15:39:36.0484 1556  NMIndexingService - ok
15:39:36.0515 1556  [ 4F601BCB8F64EA3AC0994F98FED03F8E ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys
15:39:36.0515 1556  Npfs - ok
15:39:36.0562 1556  [ B78BE402C3F63DD55521F73876951CDD ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys
15:39:36.0578 1556  Ntfs - ok
15:39:36.0593 1556  [ 84885F9B82F4D55C6146EBF6065D75D2 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe
15:39:36.0593 1556  NtLmSsp - ok
15:39:36.0609 1556  [ B62F29C00AC55A761B2E45877D85EA0F ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll
15:39:36.0609 1556  NtmsSvc - ok
15:39:36.0625 1556  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys
15:39:36.0625 1556  Null - ok
15:39:36.0656 1556  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
15:39:36.0656 1556  NwlnkFlt - ok
15:39:36.0671 1556  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
15:39:36.0671 1556  NwlnkFwd - ok
15:39:36.0687 1556  [ 29744EB4CE659DFE3B4122DEB45BC478 ] Parport         C:\WINDOWS\system32\drivers\Parport.sys
15:39:36.0687 1556  Parport - ok
15:39:36.0703 1556  [ 3334430C29DC338092F79C38EF7B4CD0 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys
15:39:36.0703 1556  PartMgr - ok
15:39:36.0718 1556  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys
15:39:36.0718 1556  ParVdm - ok
15:39:36.0734 1556  [ 8086D9979234B603AD5BC2F5D890B234 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys
15:39:36.0734 1556  PCI - ok
15:39:36.0750 1556  PCIDump - ok
15:39:36.0750 1556  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys
15:39:36.0750 1556  PCIIde - ok
15:39:36.0781 1556  [ 82A087207DECEC8456FBE8537947D579 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys
15:39:36.0781 1556  Pcmcia - ok
15:39:36.0781 1556  PDCOMP - ok
15:39:36.0781 1556  PDFRAME - ok
15:39:36.0781 1556  PDRELI - ok
15:39:36.0796 1556  PDRFRAME - ok
15:39:36.0796 1556  perc2 - ok
15:39:36.0796 1556  perc2hib - ok
15:39:36.0828 1556  [ C6CE6EEC82F187615D1002BB3BB50ED4 ] PlugPlay        C:\WINDOWS\system32\services.exe
15:39:36.0828 1556  PlugPlay - ok
15:39:36.0828 1556  [ 84885F9B82F4D55C6146EBF6065D75D2 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe
15:39:36.0828 1556  PolicyAgent - ok
15:39:36.0843 1556  [ 1C5CC65AAC0783C344F16353E60B72AC ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys
15:39:36.0843 1556  PptpMiniport - ok
15:39:36.0843 1556  [ 84885F9B82F4D55C6146EBF6065D75D2 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe
15:39:36.0859 1556  ProtectedStorage - ok
15:39:36.0859 1556  [ 48671F327553DCF1D27F6197F622A668 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys
15:39:36.0859 1556  PSched - ok
15:39:36.0859 1556  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys
15:39:36.0859 1556  Ptilink - ok
15:39:36.0859 1556  ql1080 - ok
15:39:36.0875 1556  Ql10wnt - ok
15:39:36.0875 1556  ql12160 - ok
15:39:36.0875 1556  ql1240 - ok
15:39:36.0890 1556  ql1280 - ok
15:39:36.0890 1556  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys
15:39:36.0906 1556  RasAcd - ok
15:39:36.0921 1556  [ 44DB7A9BDD2FB58747D123FBF1D35ADB ] RasAuto         C:\WINDOWS\System32\rasauto.dll
15:39:36.0921 1556  RasAuto - ok
15:39:36.0921 1556  [ 98FAEB4A4DCF812BA1C6FCA4AA3E115C ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
15:39:36.0921 1556  Rasl2tp - ok
15:39:36.0953 1556  [ 41A3C11E3517C962C9B44893BCEC3B34 ] RasMan          C:\WINDOWS\System32\rasmans.dll
15:39:36.0953 1556  RasMan - ok
15:39:36.0953 1556  [ 7306EEED8895454CBED4669BE9F79FAA ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys
15:39:36.0953 1556  RasPppoe - ok
15:39:36.0968 1556  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys
15:39:36.0968 1556  Raspti - ok
15:39:36.0968 1556  [ 29D66245ADBA878FFF574CD66ABD2884 ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys
15:39:36.0984 1556  Rdbss - ok
15:39:36.0984 1556  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
15:39:36.0984 1556  RDPCDD - ok
15:39:37.0015 1556  [ A2CAE2C60BC37E0751EF9DDA7CEAF4AD ] rdpdr           C:\WINDOWS\system32\DRIVERS\rdpdr.sys
15:39:37.0015 1556  rdpdr - ok
15:39:37.0046 1556  [ D4F5643D7714EF499AE9527FDCD50894 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys
15:39:37.0062 1556  RDPWD - ok
15:39:37.0078 1556  [ 729798E0933076B8FCFCD9934698F164 ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe
15:39:37.0078 1556  RDSessMgr - ok
15:39:37.0093 1556  [ B31B4588E4086D8D84ADBF9845C2402B ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys
15:39:37.0093 1556  redbook - ok
15:39:37.0125 1556  [ 3046DB917E3CFA040632799DD9B14865 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll
15:39:37.0125 1556  RemoteAccess - ok
15:39:37.0156 1556  [ 3151427DB7D87107D1C5BE58FAC53960 ] RemoteRegistry  C:\WINDOWS\system32\regsvc.dll
15:39:37.0156 1556  RemoteRegistry - ok
15:39:37.0171 1556  [ 793F04A09B15E7C6C11DBDFFAF06C0AB ] RpcLocator      C:\WINDOWS\system32\locator.exe
15:39:37.0171 1556  RpcLocator - ok
15:39:37.0187 1556  [ 5C83A4408604F737717AB96371201680 ] RpcSs           C:\WINDOWS\system32\rpcss.dll
15:39:37.0203 1556  RpcSs - ok
15:39:37.0218 1556  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe
15:39:37.0218 1556  RSVP - ok
15:39:37.0234 1556  [ F0A21C62B9B835E1C96268EAAE31D239 ] RTLE8023xp      C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys
15:39:37.0234 1556  RTLE8023xp - ok
15:39:37.0250 1556  [ 84885F9B82F4D55C6146EBF6065D75D2 ] SamSs           C:\WINDOWS\system32\lsass.exe
15:39:37.0250 1556  SamSs - ok
15:39:37.0265 1556  [ 25D8DE134DF108E3DBC8D7D23B1AA58E ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe
15:39:37.0265 1556  SCardSvr - ok
15:39:37.0296 1556  [ 92360854316611F6CC471612213C3D92 ] Schedule        C:\WINDOWS\system32\schedsvc.dll
15:39:37.0296 1556  Schedule - ok
15:39:37.0312 1556  [ D26E26EA516450AF9D072635C60387F4 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys
15:39:37.0312 1556  Secdrv - ok
15:39:37.0328 1556  [ B1E0CE09895376871746F36DC5773B4F ] seclogon        C:\WINDOWS\System32\seclogon.dll
15:39:37.0328 1556  seclogon - ok
15:39:37.0343 1556  [ DFD9870CF39C791D86C4C209DA9FA919 ] SENS            C:\WINDOWS\system32\sens.dll
15:39:37.0343 1556  SENS - ok
15:39:37.0359 1556  [ CD9404D115A00D249F70A371B46D5A26 ] Serial          C:\WINDOWS\system32\drivers\Serial.sys
15:39:37.0359 1556  Serial - ok
15:39:37.0375 1556  [ 0D13B6DF6E9E101013A7AFB0CE629FE0 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys
15:39:37.0375 1556  Sfloppy - ok
15:39:37.0375 1556  [ 36CC8C01B5E50163037BEF56CB96DEFF ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll
15:39:37.0390 1556  SharedAccess - ok
15:39:37.0406 1556  [ E7518DC542D3EBDCB80EDD98462C7821 ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll
15:39:37.0406 1556  ShellHWDetection - ok
15:39:37.0406 1556  Simbad - ok
15:39:37.0406 1556  Sparrow - ok
15:39:37.0437 1556  [ 8E186B8F23295D1E42C573B82B80D548 ] splitter        C:\WINDOWS\system32\drivers\splitter.sys
15:39:37.0437 1556  splitter - ok
15:39:37.0453 1556  [ 7435B108B935E42EA92CA94F59C8E717 ] Spooler         C:\WINDOWS\system32\spoolsv.exe
15:39:37.0453 1556  Spooler - ok
15:39:37.0468 1556  [ E41B6D037D6CD08461470AF04500DC24 ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys
15:39:37.0468 1556  sr - ok
15:39:37.0484 1556  [ 92BDF74F12D6CBEC43C94D4B7F804838 ] srservice       C:\WINDOWS\system32\srsvc.dll
15:39:37.0484 1556  srservice - ok
15:39:37.0500 1556  [ 20B7E396720353E4117D64D9DCB926CA ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys
15:39:37.0500 1556  Srv - ok
15:39:37.0531 1556  [ 4B8D61792F7175BED48859CC18CE4E38 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll
15:39:37.0531 1556  SSDPSRV - ok
15:39:37.0562 1556  [ D9F6C4F6B1E188ADAFC42B561D9BC2E6 ] stisvc          C:\WINDOWS\system32\wiaservc.dll
15:39:37.0562 1556  stisvc - ok
15:39:37.0578 1556  [ 03C1BAE4766E2450219D20B993D6E046 ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys
15:39:37.0578 1556  swenum - ok
15:39:37.0593 1556  [ 94ABC808FC4B6D7D2BBF42B85E25BB4D ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys
15:39:37.0593 1556  swmidi - ok
15:39:37.0593 1556  SwPrv - ok
15:39:37.0593 1556  symc810 - ok
15:39:37.0593 1556  symc8xx - ok
15:39:37.0609 1556  sym_hi - ok
15:39:37.0609 1556  sym_u3 - ok
15:39:37.0609 1556  [ 650AD082D46BAC0E64C9C0E0928492FD ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys
15:39:37.0625 1556  sysaudio - ok
15:39:37.0625 1556  [ 8B54AA346D1B1B113FFAA75501B8B1B2 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe
15:39:37.0640 1556  SysmonLog - ok
15:39:37.0640 1556  [ EB4A4187D74A8EFDCBEA3EA2CB1BDFBD ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll
15:39:37.0656 1556  TapiSrv - ok
15:39:37.0656 1556  [ 9F4B36614A0FC234525BA224957DE55C ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys
15:39:37.0671 1556  Tcpip - ok
15:39:37.0687 1556  [ 38D437CF2D98965F239B0ABCD66DCB0F ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys
15:39:37.0703 1556  TDPIPE - ok
15:39:37.0703 1556  [ ED0580AF02502D00AD8C4C066B156BE9 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys
15:39:37.0703 1556  TDTCP - ok
15:39:37.0718 1556  [ A540A99C281D933F3D69D55E48727F47 ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys
15:39:37.0718 1556  TermDD - ok
15:39:37.0750 1556  [ B60C877D16D9C880B952FDA04ADF16E6 ] TermService     C:\WINDOWS\System32\termsrv.dll
15:39:37.0765 1556  TermService - ok
15:39:37.0781 1556  [ E7518DC542D3EBDCB80EDD98462C7821 ] Themes          C:\WINDOWS\System32\shsvcs.dll
15:39:37.0781 1556  Themes - ok
15:39:37.0812 1556  [ 37DB0A7D097310E8B4DE803FC3119C78 ] TlntSvr         C:\WINDOWS\system32\tlntsvr.exe
15:39:37.0812 1556  TlntSvr - ok
15:39:37.0812 1556  TosIde - ok
15:39:37.0843 1556  [ 6D9AC544B30F96C57F8206566C1FB6A1 ] TrkWks          C:\WINDOWS\system32\trkwks.dll
15:39:37.0843 1556  TrkWks - ok
15:39:37.0875 1556  [ 12F70256F140CD7D52C58C7048FDE657 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys
15:39:37.0875 1556  Udfs - ok
15:39:37.0906 1556  [ 4150F039DCDE99FFDCB564AC455B7700 ] UDisk Monitor   C:\Program Files\Reliance Netconnect - Broadband+\bin\MonServiceUDisk.exe
15:39:37.0906 1556  UDisk Monitor - ok
15:39:37.0921 1556  ultra - ok
15:39:37.0937 1556  [ C81B8635DEE0D3EF5F64B3DD643023A5 ] UMWdf           C:\WINDOWS\system32\wdfmgr.exe
15:39:37.0937 1556  UMWdf - ok
15:39:37.0968 1556  [ AFF2E5045961BBC0A602BB6F95EB1345 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys
15:39:37.0968 1556  Update - ok
15:39:37.0984 1556  [ 0546477BDE979E33294FE97F6B3DE84A ] upnphost        C:\WINDOWS\System32\upnphost.dll
15:39:38.0000 1556  upnphost - ok
15:39:38.0000 1556  [ 3F5DF65B0758675F95A2D43918A740A3 ] UPS             C:\WINDOWS\System32\ups.exe
15:39:38.0000 1556  UPS - ok
15:39:38.0046 1556  [ BFFD9F120CC63BCBAA3D840F3EEF9F79 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys
15:39:38.0046 1556  usbccgp - ok
15:39:38.0078 1556  [ 15E993BA2F6946B2BFBBFCD30398621E ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys
15:39:38.0078 1556  usbehci - ok
15:39:38.0078 1556  [ C72F40947F92CEA56A8FB532EDF025F1 ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys
15:39:38.0078 1556  usbhub - ok
15:39:38.0109 1556  [ 6CD7B22193718F1D17A47A1CD6D37E75 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
15:39:38.0109 1556  USBSTOR - ok
15:39:38.0125 1556  [ F8FD1400092E23C8F2F31406EF06167B ] usbuhci         C:\WINDOWS\system32\DRIVERS\usbuhci.sys
15:39:38.0125 1556  usbuhci - ok
15:39:38.0140 1556  [ 8A60EDD72B4EA5AEA8202DAF0E427925 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys
15:39:38.0140 1556  VgaSave - ok
15:39:38.0203 1556  [ 2E16E69DE644113F287DE4CD7B8A73A6 ] VIAHdAudAddService C:\WINDOWS\system32\drivers\viahduaa.sys
15:39:38.0218 1556  VIAHdAudAddService - ok
15:39:38.0218 1556  ViaIde - ok
15:39:38.0218 1556  [ EE4660083DEBA849FF6C485D944B379B ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys
15:39:38.0234 1556  VolSnap - ok
15:39:38.0265 1556  [ 3EE00364AE0FD8D604F46CBAF512838A ] VSS             C:\WINDOWS\System32\vssvc.exe
15:39:38.0265 1556  VSS - ok
15:39:38.0296 1556  [ 2B281958F5D0CF99ED626E3EF39D5C8D ] W32Time         C:\WINDOWS\system32\w32time.dll
15:39:38.0296 1556  W32Time - ok
15:39:38.0312 1556  [ 984EF0B9788ABF89974CFED4BFBAACBC ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys
15:39:38.0312 1556  Wanarp - ok
15:39:38.0343 1556  [ BBCFEAB7E871CDDAC2D397EE7FA91FDC ] Wdf01000        C:\WINDOWS\system32\Drivers\wdf01000.sys
15:39:38.0343 1556  Wdf01000 - ok
15:39:38.0359 1556  WDICA - ok
15:39:38.0375 1556  [ 2797F33EBF50466020C430EE4F037933 ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys
15:39:38.0375 1556  wdmaud - ok
15:39:38.0390 1556  [ 5D0A442864BFBF3B19DCCA4CD29F6E99 ] WebClient       C:\WINDOWS\System32\webclnt.dll
15:39:38.0390 1556  WebClient - ok
15:39:38.0437 1556  [ F399242A80C4066FD155EFA4CF96658E ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll
15:39:38.0453 1556  winmgmt - ok
15:39:38.0468 1556  [ A477391B7A8B0A0DAABADB17CF533A4B ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll
15:39:38.0484 1556  WmdmPmSN - ok
15:39:38.0500 1556  [ 1AFF244CA134956C54474F4E2433E4CE ] Wmi             C:\WINDOWS\System32\advapi32.dll
15:39:38.0515 1556  Wmi - ok
15:39:38.0531 1556  [ BA8CECC3E813E1F7C441B20393D4F86C ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe
15:39:38.0531 1556  WmiApSrv - ok
15:39:38.0546 1556  [ 1124FAE97BD6FAEC3141AF9A0BC326B5 ] WRkrn           C:\WINDOWS\system32\drivers\WRkrn.sys
15:39:38.0546 1556  WRkrn - ok
15:39:38.0578 1556  [ 8C32ACF1DA5549B30D022C121985C9FB ] WRSVC           C:\Program Files\Webroot\WRSA.exe
15:39:38.0593 1556  WRSVC - ok
15:39:38.0625 1556  [ 6ABE6E225ADB5A751622A9CC3BC19CE8 ] WS2IFSL         C:\WINDOWS\System32\drivers\ws2ifsl.sys
15:39:38.0625 1556  WS2IFSL - ok
15:39:38.0640 1556  [ 4D59DAA66C60858CDF4F67A900F42D4A ] wscsvc          C:\WINDOWS\system32\wscsvc.dll
15:39:38.0656 1556  wscsvc - ok
15:39:38.0671 1556  [ 13D72740963CBA12D9FF76A7F218BCD8 ] wuauserv        C:\WINDOWS\system32\wuauserv.dll
15:39:38.0671 1556  wuauserv - ok
15:39:38.0687 1556  [ 5A91E6FEAB9F901302FA7FF768C0120F ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll
15:39:38.0687 1556  WZCSVC - ok
15:39:38.0703 1556  [ EEF46DAB68229A14DA3D8E73C99E2959 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll
15:39:38.0718 1556  xmlprov - ok
15:39:38.0734 1556  [ 33A5E7628230636E718F2504B8F3D02A ] ztemtusbser     C:\WINDOWS\system32\DRIVERS\CT_ZTEMT_U_USBSER.sys
15:39:38.0734 1556  ztemtusbser - ok
15:39:38.0750 1556  ================ Scan global ===============================
15:39:38.0781 1556  [ 00EF9C3AF83EDBAF18CA7A2837750117 ] C:\WINDOWS\system32\basesrv.dll
15:39:38.0781 1556  [ 442D0EAD5534E4ADCF6D4469043C82C0 ] C:\WINDOWS\system32\winsrv.dll
15:39:38.0796 1556  [ 442D0EAD5534E4ADCF6D4469043C82C0 ] C:\WINDOWS\system32\winsrv.dll
15:39:38.0812 1556  [ C6CE6EEC82F187615D1002BB3BB50ED4 ] C:\WINDOWS\system32\services.exe
15:39:38.0812 1556  [Global] - ok
15:39:38.0812 1556  ================ Scan MBR ==================================
15:39:38.0828 1556  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0
15:39:39.0187 1556  \Device\Harddisk0\DR0 - ok
15:39:39.0187 1556  ================ Scan VBR ==================================
15:39:39.0187 1556  [ B79DCA018713F0473E1B312AA4BA1039 ] \Device\Harddisk0\DR0\Partition1
15:39:39.0187 1556  \Device\Harddisk0\DR0\Partition1 - ok
15:39:39.0187 1556  [ D66D7417E1DCC1D6BC177BAD794E4312 ] \Device\Harddisk0\DR0\Partition2
15:39:39.0187 1556  \Device\Harddisk0\DR0\Partition2 - ok
15:39:39.0218 1556  [ A23512AEA0FA6AA80797332902CAAF7F ] \Device\Harddisk0\DR0\Partition3
15:39:39.0218 1556  \Device\Harddisk0\DR0\Partition3 - ok
15:39:39.0218 1556  [ A96226790389C445CD5B4D22684A221D ] \Device\Harddisk0\DR0\Partition4
15:39:39.0234 1556  \Device\Harddisk0\DR0\Partition4 - ok
15:39:39.0234 1556  ============================================================
15:39:39.0234 1556  Scan finished
15:39:39.0234 1556  ============================================================
15:39:39.0234 2832  Detected object count: 0
15:39:39.0234 2832  Actual detected object count: 0
mbam log
Malwarebytes Anti-Malware (Trial) 1.75.0.1300
www.malwarebytes.org
 
Database version: v2013.08.02.03
 
Windows XP Service Pack 2 x86 NTFS
Internet Explorer 6.0.2900.2180
admin :: SYSTEM [administrator]
 
Protection: Enabled
 
8/2/2013 3:44:28 PM
mbam-log-2013-08-02 (15-44-28).txt
 
Scan type: Full scan (C:\|D:\|E:\|F:\|G:\|H:\|I:\|J:\|)
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 212318
Time elapsed: 15 minute(s), 2 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
(end)
 

Avptool

 

  

 

 


 

 



#4 oafs

oafs
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 02 August 2013 - 11:26 AM

AVP TOOL

 

  

It is difficult post AVP tool log it is so big how to attach



#5 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:30 AM

Posted 02 August 2013 - 11:29 AM

For the AVP tool log:

 

Example file hosting sites
 
 
 

Edited by GodfatherKing, 02 August 2013 - 11:29 AM.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#6 oafs

oafs
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 02 August 2013 - 11:45 AM

AVP Tool text link

 

https://app.box.com/s/9sj0xo7ew3wgvw6axnmb



#7 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:30 AM

Posted 02 August 2013 - 12:32 PM

Run Rkill:

 

http://www.bleepingcomputer.com/forums/t/308364/rkill-what-it-does-and-what-it-doesnt-a-brief-introduction-to-the-program/


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#8 oafs

oafs
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 03 August 2013 - 12:02 PM

Rkill log

Rkill 2.5.9 by Lawrence Abrams (Grinler)

Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 
Program started at: 08/03/2013 10:00:36 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 2
 
Checking for Windows services to stop:
 
 * No malware services found to stop.
 
Checking for processes to terminate:
 
 * No malware processes found to kill.
 
Checking Registry for malware related settings:
 
 * No issues found in the Registry.
 
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
 
Performing miscellaneous checks:
 
 * Windows Firewall Disabled
 
   [HKLM\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
   "EnableFirewall" = dword:00000000
 
Checking Windows Service Integrity: 
 
 * No issues found.
 
Searching for Missing Digital Signatures: 
 
 * No issues found.
 
Checking HOSTS File: 
 
 * HOSTS file entries found: 
 
  127.0.0.1       localhost
 
Program finished at: 08/03/2013 10:01:00 PM
Execution time: 0 hours(s), 0 minute(s), and 23 seconds(s)


#9 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:30 AM

Posted 03 August 2013 - 12:04 PM

Are you still getting those ads?


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#10 oafs

oafs
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 04 August 2013 - 07:45 AM

Ads are still in place. I am still getting internet blocks.



#11 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:30 AM

Posted 04 August 2013 - 07:49 AM

:step1: Download Emsisoft Emergency Kit

  • Open EmsisoftEmergencyKit by  double-click Start.exe.
  • A new window will open. Under "Run Directly:" click Emergency Kit Scanner.
  • When asked to run an online update, click Yes.
  • When the update is finished, click the Back to Security Status link in the left corner. On the main screen click the Scan Now button.
  • Select the Deep Scan option and click the SCAN button.
  • When the scan is finished click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
  • Click the View Report button and in the Reports window double-click on the most recent log. Note, logs are named as follows: a2scan_<date>-<time>.txt.
  • Copy/paste the report contents in your next reply.

:step2:  Use AdwCleaner 

 

       http://www.bleepingcomputer.com/download/adwcleaner/

       

    Note: Please note that Antivir Webguard uses ASK Toolbar as part of its web security. If you remove ASK by using Adwcleaner, Antivir Webguard will no longer work properly. Therefore, if you use this program please use the instructions below to access the options screen where you should enable/DisableAskDetections before using AdwCleaner.

 

  • Using AdwCleaner is very simple. Simply download the program and run it.  You will then be presented with a screen that contains a Search and Delete button.  The Search button will cause AdwCleaner to search your computer for unwanted programs and then display a log showing the various files, folders, and registry entries used by these programs.
     
  • To delete these unwanted programs simply click on the Delete button, which will cause AdwCleaner to reboot your computer and remove the files and registry entries associated with the various adware that you are removing.  On reboot, AdwCleaner will display a log showing the files, folders, and registry entries that were removed.

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#12 oafs

oafs
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 04 August 2013 - 09:35 AM

Adwcleaner
# AdwCleaner v2.306 - Logfile created 08/04/2013 at 18:41:44
# Updated 19/07/2013 by Xplode
# Operating system : Microsoft Windows XP Service Pack 2 (32 bits)
# User : admin - SYSTEM
# Boot Mode : Normal
# Running from : C:\Documents and Settings\admin\My Documents\Downloads\AdwCleaner (1).exe
# Option [Delete]
 
 
***** [Services] *****
 
 
***** [Files / Folders] *****
 
 
***** [Registry] *****
 
 
***** [Internet Browsers] *****
 
-\\ Internet Explorer v6.0.2900.2180
 
[OK] Registry is clean.
 
-\\ Google Chrome v28.0.1500.95
 
File : C:\Documents and Settings\admin\Local Settings\Application Data\Google\Chrome\User Data\Default\Preferences
 
[OK] File is clean.
 
*************************
 
AdwCleaner[R1].txt - [845 octets] - [02/08/2013 01:04:13]
AdwCleaner[R2].txt - [904 octets] - [02/08/2013 01:04:42]
AdwCleaner[R3].txt - [1022 octets] - [02/08/2013 01:09:43]
AdwCleaner[R4].txt - [1147 octets] - [04/08/2013 18:41:06]
AdwCleaner[S1].txt - [963 octets] - [02/08/2013 01:05:07]
AdwCleaner[S2].txt - [1083 octets] - [02/08/2013 01:10:02]
AdwCleaner[S3].txt - [1079 octets] - [04/08/2013 18:41:44]
 
########## EOF - C:\AdwCleaner[S3].txt - [1139 octets] ##########
Emisoft 
Emsisoft Emergency Kit - Version 4.0
Last update: 8/4/2013 7:50:45 PM
User account: SYSTEM\admin
 
Scan settings:
 
Scan type: Deep Scan
Objects: Rootkits, Memory, Traces, C:\, D:\, E:\, F:\
 
Detect Riskware: Off
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off
 
Scan start: 8/4/2013 7:51:32 PM
 
Scanned 350709
Found 0
 
Scan end: 8/4/2013 8:01:00 PM
Scan time: 0:09:28


#13 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:30 AM

Posted 04 August 2013 - 10:42 AM

Download Malwarebytes Anti-Rootkit from HERE to your Desktop.

  • Unzip downloaded file.
  • Open the folder where the contents were unzipped and run mbar.exe
  • Follow the instructions in the wizard to update and allow the program to scan your computer for threats.
  • DO NOT click on the Cleanup button. Simply exit the program.
  • When done, please post the two logs produced they will be in the MBAR folder..... mbar-log-xxxxx.txt and system-log.txt

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#14 oafs

oafs
  • Topic Starter

  • Members
  • 8 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 04 August 2013 - 12:24 PM

mbar log

Malwarebytes Anti-Rootkit BETA 1.06.0.1004

www.malwarebytes.org
 
Database version: v2013.08.04.03
 
Windows XP Service Pack 2 x86 NTFS
Internet Explorer 6.0.2900.2180
admin :: SYSTEM [administrator]
 
8/4/2013 10:30:43 PM
mbar-log-2013-08-04 (22-30-43).txt
 
Scan type: Quick scan
Scan options enabled: Anti-Rootkit | Drivers | MBR | Physical Sectors | Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUM | P2P
Scan options disabled: PUP
Objects scanned: 221318
Time elapsed: 19 minute(s), 53 second(s)
 
Memory Processes Detected: 0
(No malicious items detected)
 
Memory Modules Detected: 0
(No malicious items detected)
 
Registry Keys Detected: 0
(No malicious items detected)
 
Registry Values Detected: 0
(No malicious items detected)
 
Registry Data Items Detected: 0
(No malicious items detected)
 
Folders Detected: 0
(No malicious items detected)
 
Files Detected: 0
(No malicious items detected)
 
Physical Sectors Detected: 0
(No malicious items detected)
 
(end)
 

System log

---------------------------------------

Malwarebytes Anti-Rootkit BETA 1.06.0.1004
 
© Malwarebytes Corporation 2011-2012
 
OS version: 5.1.2600 Windows XP Service Pack 2 x86
 
Account is Administrative
 
Internet Explorer version: 6.0.2900.2180
 
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, E:\ DRIVE_FIXED, F:\ DRIVE_FIXED
CPU speed: 2.599000 GHz
Memory total: 1063366656, free: 494292992
 
Initializing...
------------ Kernel report ------------
     08/04/2013 22:18:23
------------ Loaded modules -----------
\WINDOWS\system32\ntkrnlpa.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
62805367.sys
pciide.sys
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
MountMgr.sys
ftdisk.sys
dmload.sys
dmio.sys
PartMgr.sys
VolSnap.sys
atapi.sys
disk.sys
\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
fltMgr.sys
K7Sentry.sys
sr.sys
KSecDD.sys
Ntfs.sys
NDIS.sys
Mup.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\igxpmp32.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\Rtenicxp.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\ASACPI.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\imapi.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\redbook.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\system32\DRIVERS\rdpdr.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\ew_jubusenum.sys
\SystemRoot\system32\DRIVERS\WDFLDR.SYS
\SystemRoot\System32\Drivers\wdf01000.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\drivers\viahduaa.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\monfilt.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\??\C:\WINDOWS\system32\drivers\K7FWFilt.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\??\C:\WINDOWS\system32\drivers\K7TdiHlp.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\System32\drivers\ws2ifsl.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\Drivers\Fips.SYS
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\System32\Drivers\Cdfs.SYS
\SystemRoot\system32\DRIVERS\ewusbmdm.sys
\SystemRoot\System32\Drivers\Modem.SYS
\SystemRoot\system32\DRIVERS\ewusbnet.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\CT_ZTEMT_U_USBSER.sys
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_WMILIB.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\igxpgd32.dll
\SystemRoot\System32\igxprd32.dll
\SystemRoot\System32\igxpdv32.DLL
\SystemRoot\System32\igxpdx32.DLL
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\mrxdav.sys
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\SystemRoot\system32\DRIVERS\srv.sys
\SystemRoot\System32\Drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys
\WINDOWS\system32\ntdll.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk2\DR7
Upper Device Object: 0xffffffff8687c030
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\00000084\
Lower Device Object: 0xffffffff86798a30
Lower Device Driver Name: \Driver\USBSTOR\
<<<1>>>
Upper Device Name: \Device\Harddisk1\DR5
Upper Device Object: 0xffffffff86889030
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\00000079\
Lower Device Object: 0xffffffff86798ea0
Lower Device Driver Name: \Driver\USBSTOR\
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff86b7aab8
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP1T0L0-e\
Lower Device Object: 0xffffffff86b0ad98
Lower Device Driver Name: \Driver\atapi\
<<<2>>>
Device number: 0, partition: 1
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff86b7aab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86b79e08, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff86b7aab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86adf2a8, DeviceName: \Device\00000066\, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff86b0ad98, DeviceName: \Device\Ide\IdeDeviceP1T0L0-e\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
Device number: 0, partition: 1
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\system32\drivers...
<<<2>>>
Device number: 0, partition: 1
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 37533752
 
Partition information:
 
    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 63  Numsec = 163846872
    Partition file system is NTFS
    Partition is bootable
 
    Partition 1 type is Extended with LBA (0xf)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 163846935  Numsec = 324529065
 
    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
Disk Size: 250059350016 bytes
Sector size: 512 bytes
 
Scanning physical sectors of unpartitioned space on drive 0 (1-62-488377168-488397168)...
Done!
Physical Sector Size: 0
Drive: 1, DevicePointer: 0xffffffff86889030, DeviceName: \Device\Harddisk1\DR5\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86a5d258, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff86889030, DeviceName: \Device\Harddisk1\DR5\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86798ea0, DeviceName: \Device\00000079\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 2, DevicePointer: 0xffffffff8687c030, DeviceName: \Device\Harddisk2\DR7\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86a00aa0, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff8687c030, DeviceName: \Device\Harddisk2\DR7\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86798a30, DeviceName: \Device\00000084\, DriverName: \Driver\USBSTOR\
------------ End ----------
Scan Interrupted
=======================================
 
 
Removal queue found; removal started
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\bootstrap_0_0_63_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...
Removal finished
---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.06.0.1004
 
© Malwarebytes Corporation 2011-2012
 
OS version: 5.1.2600 Windows XP Service Pack 2 x86
 
Account is Administrative
 
Internet Explorer version: 6.0.2900.2180
 
File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED, E:\ DRIVE_FIXED, F:\ DRIVE_FIXED
CPU speed: 2.599000 GHz
Memory total: 1063366656, free: 591695872
 
Host not found
Initializing...
------------ Kernel report ------------
     08/04/2013 22:30:36
------------ Loaded modules -----------
\WINDOWS\system32\ntkrnlpa.exe
\WINDOWS\system32\hal.dll
\WINDOWS\system32\KDCOM.DLL
\WINDOWS\system32\BOOTVID.dll
ACPI.sys
\WINDOWS\system32\DRIVERS\WMILIB.SYS
pci.sys
isapnp.sys
62805367.sys
pciide.sys
\WINDOWS\system32\DRIVERS\PCIIDEX.SYS
MountMgr.sys
ftdisk.sys
dmload.sys
dmio.sys
PartMgr.sys
VolSnap.sys
atapi.sys
disk.sys
\WINDOWS\system32\DRIVERS\CLASSPNP.SYS
fltMgr.sys
K7Sentry.sys
sr.sys
KSecDD.sys
Ntfs.sys
NDIS.sys
Mup.sys
\SystemRoot\system32\DRIVERS\intelppm.sys
\SystemRoot\system32\DRIVERS\igxpmp32.sys
\SystemRoot\system32\DRIVERS\VIDEOPRT.SYS
\SystemRoot\system32\DRIVERS\HDAudBus.sys
\SystemRoot\system32\DRIVERS\Rtenicxp.sys
\SystemRoot\system32\DRIVERS\usbuhci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\DRIVERS\ASACPI.sys
\SystemRoot\system32\DRIVERS\i8042prt.sys
\SystemRoot\system32\DRIVERS\kbdclass.sys
\SystemRoot\system32\DRIVERS\imapi.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\redbook.sys
\SystemRoot\system32\DRIVERS\ks.sys
\SystemRoot\system32\DRIVERS\audstub.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\psched.sys
\SystemRoot\system32\DRIVERS\msgpc.sys
\SystemRoot\system32\DRIVERS\ptilink.sys
\SystemRoot\system32\DRIVERS\raspti.sys
\SystemRoot\system32\DRIVERS\rdpdr.sys
\SystemRoot\system32\DRIVERS\termdd.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\DRIVERS\swenum.sys
\SystemRoot\system32\DRIVERS\update.sys
\SystemRoot\system32\DRIVERS\mssmbios.sys
\SystemRoot\system32\DRIVERS\ew_jubusenum.sys
\SystemRoot\system32\DRIVERS\WDFLDR.SYS
\SystemRoot\System32\Drivers\wdf01000.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\drivers\viahduaa.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\monfilt.sys
\SystemRoot\System32\Drivers\Fs_Rec.SYS
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\Drivers\mnmdd.SYS
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\rasacd.sys
\??\C:\WINDOWS\system32\drivers\K7FWFilt.sys
\SystemRoot\system32\DRIVERS\ipsec.sys
\SystemRoot\system32\DRIVERS\tcpip.sys
\??\C:\WINDOWS\system32\drivers\K7TdiHlp.sys
\SystemRoot\system32\DRIVERS\ipnat.sys
\SystemRoot\system32\DRIVERS\netbt.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\System32\drivers\ws2ifsl.sys
\SystemRoot\System32\drivers\afd.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\System32\Drivers\Fips.SYS
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\System32\Drivers\Cdfs.SYS
\SystemRoot\system32\DRIVERS\ewusbmdm.sys
\SystemRoot\System32\Drivers\Modem.SYS
\SystemRoot\system32\DRIVERS\ewusbnet.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\CT_ZTEMT_U_USBSER.sys
\SystemRoot\System32\Drivers\dump_atapi.sys
\SystemRoot\System32\Drivers\dump_WMILIB.SYS
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\watchdog.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\drivers\dxg.sys
\SystemRoot\System32\drivers\dxgthk.sys
\SystemRoot\System32\igxpgd32.dll
\SystemRoot\System32\igxprd32.dll
\SystemRoot\System32\igxpdv32.DLL
\SystemRoot\System32\igxpdx32.DLL
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\mrxdav.sys
\SystemRoot\system32\drivers\wdmaud.sys
\SystemRoot\system32\drivers\sysaudio.sys
\SystemRoot\system32\DRIVERS\srv.sys
\SystemRoot\System32\Drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\asyncmac.sys
\??\C:\WINDOWS\system32\drivers\mbamchameleon.sys
\SystemRoot\system32\drivers\kmixer.sys
\??\C:\WINDOWS\system32\drivers\mbamswissarmy.sys
\WINDOWS\system32\ntdll.dll
----------- End -----------
Done!
<<<1>>>
Upper Device Name: \Device\Harddisk2\DR7
Upper Device Object: 0xffffffff8687c030
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\00000084\
Lower Device Object: 0xffffffff86798a30
Lower Device Driver Name: \Driver\USBSTOR\
<<<1>>>
Upper Device Name: \Device\Harddisk1\DR5
Upper Device Object: 0xffffffff86889030
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\00000079\
Lower Device Object: 0xffffffff86798ea0
Lower Device Driver Name: \Driver\USBSTOR\
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xffffffff86b7aab8
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\Ide\IdeDeviceP1T0L0-e\
Lower Device Object: 0xffffffff86b0ad98
Lower Device Driver Name: \Driver\atapi\
<<<2>>>
Device number: 0, partition: 1
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xffffffff86b7aab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86b79e08, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff86b7aab8, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86adf2a8, DeviceName: \Device\00000066\, DriverName: \Driver\ACPI\
DevicePointer: 0xffffffff86b0ad98, DeviceName: \Device\Ide\IdeDeviceP1T0L0-e\, DriverName: \Driver\atapi\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0x0, 0x0, 0x0
Lower DeviceData: 0x0, 0x0, 0x0
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
<<<2>>>
Device number: 0, partition: 1
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning drivers directory: C:\WINDOWS\system32\drivers...
<<<2>>>
Device number: 0, partition: 1
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 37533752
 
Partition information:
 
    Partition 0 type is Primary (0x7)
    Partition is ACTIVE.
    Partition starts at LBA: 63  Numsec = 163846872
    Partition file system is NTFS
    Partition is bootable
 
    Partition 1 type is Extended with LBA (0xf)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 163846935  Numsec = 324529065
 
    Partition 2 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
    Partition 3 type is Empty (0x0)
    Partition is NOT ACTIVE.
    Partition starts at LBA: 0  Numsec = 0
 
Disk Size: 250059350016 bytes
Sector size: 512 bytes
 
Scanning physical sectors of unpartitioned space on drive 0 (1-62-488377168-488397168)...
Done!
Physical Sector Size: 0
Drive: 1, DevicePointer: 0xffffffff86889030, DeviceName: \Device\Harddisk1\DR5\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86a5d258, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff86889030, DeviceName: \Device\Harddisk1\DR5\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86798ea0, DeviceName: \Device\00000079\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 2, DevicePointer: 0xffffffff8687c030, DeviceName: \Device\Harddisk2\DR7\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xffffffff86a00aa0, DeviceName: Unknown, DriverName: \Driver\PartMgr\
DevicePointer: 0xffffffff8687c030, DeviceName: \Device\Harddisk2\DR7\, DriverName: \Driver\Disk\
DevicePointer: 0xffffffff86798a30, DeviceName: \Device\00000084\, DriverName: \Driver\USBSTOR\
------------ End ----------
Scan finished
=======================================
 
 
Removal queue found; removal started
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_0_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\bootstrap_0_0_63_i.mbam...
Removing c:\documents and settings\all users\application data\malwarebytes' anti-malware (portable)\mbr_0_r.mbam...
Removal finished


#15 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:10:30 AM

Posted 06 August 2013 - 02:21 PM

Do you still have issues?


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users