Inactive Am I Clean or something infected? HiJackThis Log Included

Status
Not open for further replies.

theluckyman

Posts: 13   +0
The reason why I asked because sometime my laptop keep shutting down cuz I always know that trojan, virus, or spyware increase CPU usage like reach 88 or 89 degree in temperature then laptop turn off like no reason. So I asked to make forum thread to see if you guys can analyze my hijackthis log, thanks.
 

Attachments

  • hijackthis.log
    6.9 KB · Views: 0

Broni

Posts: 55,873   +506
Welcome aboard
yahooo.gif


Please, complete all steps listed here: https://www.techspot.com/community/...lware-removal-preliminary-instructions.58138/
Make sure, you PASTE all logs. If some log exceeds 50,000 characters post limit, split it between couple of replies.
Attached logs won't be reviewed.

Please, observe following rules:
  • Read all of my instructions very carefully. Your mistakes during cleaning process may have very serious consequences, like unbootable computer.
  • If you're stuck, or you're not sure about certain step, always ask before doing anything else.
  • Please refrain from running tools or applying updates other than those I suggest.
  • Never run more than one scan at a time.
  • Keep updating me regarding your computer behavior, good, or bad.
  • The cleaning process, once started, has to be completed. Even if your computer appears to act better, it may still be infected. Once the computer is totally clean, I'll certainly let you know.
  • If you leave the topic without explanation in the middle of a cleaning process, you may not be eligible to receive any more help in malware removal forum.
  • I close my topics if you have not replied in 5 days. If you need more time, simply let me know. If I closed your topic and you need it to be reopened, simply PM me.
 

theluckyman

Posts: 13   +0
Malwarebytes' Anti-Malware 1.46
www.malwarebytes.org

Database version: 5117

Windows 6.1.7600
Internet Explorer 9.0.7930.16406

11/14/2010 5:40:40 PM
mbam-log-2010-11-14 (19-00-40).txt

Scan type: Quick scan
Objects scanned: 140388
Time elapsed: 9 minute(s), 9 second(s)

Memory Processes Infected: 0
Memory Modules Infected: 0
Registry Keys Infected: 0
Registry Values Infected: 0
Registry Data Items Infected: 0
Folders Infected: 0
Files Infected: 0

Memory Processes Infected:
(No malicious items detected)

Memory Modules Infected:
(No malicious items detected)

Registry Keys Infected:
(No malicious items detected)

Registry Values Infected:
(No malicious items detected)

Registry Data Items Infected:
(No malicious items detected)

Folders Infected:
(No malicious items detected)

Files Infected:
(No malicious items detected)
 

theluckyman

Posts: 13   +0
GMER 1.0.15.15530 - http://www.gmer.net
Rootkit scan 2010-11-14 17:48:23
Windows 6.1.7600 Harddisk0\DR0 -> \Device\Ide\IdeDeviceP0T0L0-0 WDC_WD2500BEVS-22UST0 rev.01.01A01
Running: zxfkru3e.exe; Driver: C:\Users\THELUC~1\AppData\Local\Temp\uxlyikow.sys


---- System - GMER 1.0.15 ----

SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwCreateProcess [0x8ADD22D6]
SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwCreateProcessEx [0x8ADD24C8]
SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwCreateUserProcess [0x8ADD26D0]
SSDT \SystemRoot\system32\drivers\PCTCore.sys (PC Tools KDS Core Driver/PC Tools) ZwTerminateProcess [0x8ADD1F44]

---- Kernel code sections - GMER 1.0.15 ----

.text ntkrnlpa.exe!ZwSaveKeyEx + 13AD 82C50599 1 Byte [06]
.text ntkrnlpa.exe!KiDispatchInterrupt + 5A2 82C74F52 19 Bytes [E0, 0F, BA, F0, 07, 73, 09, ...] {LOOPNZ 0x11; MOV EDX, 0x97307f0; MOV CR4, EAX; OR AL, 0x80; MOV CR4, EAX; RET ; MOV ECX, CR3}
.text ntkrnlpa.exe!RtlSidHashLookup + 32C 82C7C83C 8 Bytes [D6, 22, DD, 8A, C8, 24, DD, ...]
.text ntkrnlpa.exe!RtlSidHashLookup + 364 82C7C874 4 Bytes [D0, 26, DD, 8A]
.text ntkrnlpa.exe!RtlSidHashLookup + 7B8 82C7CCC8 4 Bytes [44, 1F, DD, 8A]
.text C:\Windows\system32\DRIVERS\atikmdag.sys section is writeable [0x9062F000, 0x267978, 0xE8000020]

---- User code sections - GMER 1.0.15 ----

.text C:\Program Files\OO Software\Defrag\oodag.exe[1444] kernel32.dll!SetUnhandledExceptionFilter 769B3162 5 Bytes JMP 00401280 C:\Program Files\OO Software\Defrag\oodag.exe (O&O Defrag Agent (Win32)/O&O Software GmbH)

---- Devices - GMER 1.0.15 ----

AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
ttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (Kernel Mode Driver Framework Runtime/Microsoft Corporation)
AttachedDevice \Driver\volmgr \Device\HarddiskVolume1 fvevol.sys (BitLocker Drive Encryption Driver/Microsoft Corporation)

Device \Driver\ACPI_HAL \Device\00000066 halmacpi.dll (Hardware Abstraction Layer DLL/Microsoft Corporation)

---- Registry - GMER 1.0.15 ----

Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents@
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL@
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\IMAIL@Installed 1
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI@
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI@Installed 1
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MAPI@NoChange 1
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS@
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run\OptionalComponents\MSFS@Installed 1
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\System
Reg HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\System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

---- EOF - GMER 1.0.15 ----
 

theluckyman

Posts: 13   +0
DDS (Ver_10-11-10.01) - NTFSx86
Run by theluckyman at 17:51:37.41 on Sun 11/14/2010
Internet Explorer: 9.0.7930.16406 BrowserJavaVersion: 1.6.0_22
Microsoft Windows 7 Ultimate 6.1.7600.0.1252.1.1033.18.2942.1755 [GMT -6:00]

SP: Spybot - Search and Destroy *disabled* (Updated) {ED588FAF-1B8F-43B4-ACA8-8E3C85DADBE9}
SP: SUPERAntiSpyware *disabled* (Updated) {222A897C-5018-402e-943F-7E7AC8560DA7}

============== Running Processes ===============

C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
c:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\Ati2evxx.exe
C:\Windows\System32\spoolsv.exe
C:\Program Files\Avira\AntiVir Desktop\sched.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Windows\System32\svchost.exe -k NetworkService
C:\Program Files\LSI SoftModem\agrsmsvc.exe
C:\Program Files\Avira\AntiVir Desktop\avguard.exe
C:\Windows\system32\svchost.exe -k apphost
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files\OO Software\Defrag\oodag.exe
C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
C:\Windows\system32\conhost.exe
C:\Program Files\IDT\WDM\STacSV.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Windows\system32\SearchIndexer.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Windows\system32\taskhost.exe
C:\Windows\system32\taskeng.exe
C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
c:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
C:\Windows\Explorer.EXE
C:\Program Files\Microsoft Security Client\msseces.exe
C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files\SpeedFan\speedfan.exe
C:\Program Files\Privoxy\privoxy.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Windows\system32\AUDIODG.EXE
C:\Windows\system32\DllHost.exe
C:\Windows\system32\DllHost.exe
C:\Users\theluckyman\Desktop\dds.scr
C:\Windows\system32\conhost.exe
C:\Windows\system32\DllHost.exe

============== Pseudo HJT Report ===============

uStart Page = https://encrypted.google.com/
mStart Page = about:blank
uInternet Settings,ProxyOverride = local;<local>
uInternet Settings,ProxyServer = 127.0.0.1:8118
BHO: IDMIEHlprObj Class: {0055c089-8582-441b-a0bf-17b458c2a3a8} - c:\program files\internet download manager\IDMIECC.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - c:\program files\common files\adobe\acrobat\activex\AcroIEHelperShim.dll
BHO: Download Guard for Internet Explorer: {20c1a7f0-528e-444f-bac5-5804a61cca7f} - c:\program files\lavasoft\download guard for internet explorer\DownloadGuardBHO.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files\windows live\companion\companioncore.dll
BHO: Google Toolbar Notifier BHO: {af69de43-7d58-4638-b6fa-ce66b5ad205d} - c:\program files\google\googletoolbarnotifier\5.6.5612.1312\swg.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - c:\program files\java\jre6\bin\jp2ssv.dll
mRun: [Malwarebytes Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
mRun: [Malwarebytes' Anti-Malware] "c:\program files\malwarebytes' anti-malware\mbamgui.exe" /starttray
mRun: [MSC] "c:\program files\microsoft security client\msseces.exe" -hide -runkey
mRun: [avgnt] "c:\program files\avira\antivir desktop\avgnt.exe" /min
StartupFolder: c:\progra~2\micros~1\windows\startm~1\programs\startup\privoxy.lnk - c:\program files\privoxy\privoxy.exe
uPolicies-explorer: TaskbarNoNotification = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: Download all links with IDM - c:\program files\internet download manager\IEGetAll.htm
IE: Download FLV video content with IDM - c:\program files\internet download manager\IEGetVL.htm
IE: Download with IDM - c:\program files\internet download manager\IEExt.htm
IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - c:\program files\windows live\writer\WriterBrowserExtension.dll
LSP: c:\program files\iobit\advanced systemcare 3\SPICtrl.dll
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
Hosts: 127.0.0.1 www.spywareinfo.com

================= FIREFOX ===================

FF - ProfilePath - c:\users\theluc~1\appdata\roaming\mozilla\firefox\profiles\eajxme4d.default\
FF - prefs.js: browser.search.defaulturl - hxxp://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&invocationType=tb50ffwinampie7&query=
FF - prefs.js: browser.startup.homepage - hxxps://encrypted.google.com
FF - prefs.js: keyword.URL - hxxp://www.google.com/search?sourceid=navclient&hl=en&q=
FF - component: c:\users\theluckyman\appdata\roaming\mozilla\firefox\profiles\eajxme4d.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
FF - plugin: c:\program files\google\google updater\2.4.1970.7372\npCIDetect14.dll
FF - plugin: c:\program files\java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\microsoft\web platform installer\NPWPIDetector.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnu.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npdnupdater2.dll
FF - plugin: c:\program files\mozilla firefox\plugins\npwachk.dll
FF - plugin: c:\program files\opera\program\plugins\NpDam.dll
FF - plugin: c:\program files\purple communications\p3\npp3remote.dll
FF - plugin: c:\program files\windows live\photo gallery\NPWLPG.dll
FF - plugin: c:\users\theluckyman\appdata\local\google\update\1.2.183.39\npGoogleOneClick8.dll
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
FF - HiddenExtension: Java Console: No Registry Reference - c:\program files\mozilla firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}

---- FIREFOX POLICIES ----
FF - user.js: network.http.pipelining - true
FF - user.js: network.http.proxy.pipelining - true
FF - user.js: content.notify.backoffcount - 5
FF - user.js: ui.submenuDelay - 0
FF - user.js: nglayout.initialpaint.delay - 600
FF - user.js: network.http.max-connections-per-server - 8
FF - user.js: network.http.max-persistent-connections-per-proxy - 16
FF - user.js: network.http.max-persistent-connections-per-server - 4
FF - user.js: browser.cache.memory.capacity - 65536
FF - user.js: network.http.max-connections - 48
FF - user.js: network.http.pipelining.maxrequests - 8
FF - user.js: content.notify.interval - 600000
FF - user.js: content.interrupt.parsing - true
FF - user.js: content.max.tokenizing.time - 1800000
FF - user.js: content.switch.threshold - 600000
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqz9s", true); // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--fiqs8s", true); // Simplified
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--j6w193g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4a87g", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7c0a67fbc", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbqly7cvafr", true);
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kpry57d", true); // Traditional
c:\program files\mozilla firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--kprw13d", true); // Simplified

============= SERVICES / DRIVERS ===============

R0 02558312;02558312 Boot Guard Driver;c:\windows\system32\drivers\02558312.sys [2010-11-11 37392]
R0 PCTCore;PCTools KDS;c:\windows\system32\drivers\PCTCore.sys [2010-10-12 218592]
R1 dvdfabio;dvdfabio;c:\windows\system32\drivers\dvdfabio.sys [2010-10-29 11392]
R1 MpFilter;Microsoft Malware Protection Driver;c:\windows\system32\drivers\MpFilter.sys [2009-12-2 165264]
R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2010-2-17 12872]
R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2010-5-10 67656]
R1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\drivers\vwififlt.sys [2009-7-13 48128]
R2 AntiVirSchedulerService;Avira AntiVir Scheduler;c:\program files\avira\antivir desktop\sched.exe [2010-11-13 135336]
R2 AntiVirService;Avira AntiVir Guard;c:\program files\avira\antivir desktop\avguard.exe [2010-11-13 267944]
R2 IDMWFP;IDMWFP;c:\windows\system32\drivers\idmwfp.sys [2010-10-26 83184]
R2 MBAMService;MBAMService;c:\program files\malwarebytes' anti-malware\mbamservice.exe [2010-10-26 304464]
R2 OODefragAgent;O&O Defrag Agent;c:\program files\oo software\defrag\oodag.exe [2010-6-21 1619272]
R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2011\TuneUpUtilitiesService32.exe [2010-10-27 1483072]
R3 AtiHDAudioService;ATI Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW73.sys [2010-7-15 101904]
R3 dvdfab;dvdfab;c:\windows\system32\drivers\dvdfab.sys [2010-11-13 49024]
R3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2010-10-26 20952]
R3 MpNWMon;Microsoft Malware Protection Network Driver;c:\windows\system32\drivers\MpNWMon.sys [2009-12-2 43392]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\drivers\NisDrvWFP.sys [2010-6-29 54144]
R3 NisSrv;Microsoft Network Inspection;c:\program files\microsoft security client\antimalware\NisSrv.exe [2010-9-14 190928]
R3 RSUSBSTOR;RtsUStor.Sys Realtek USB Card Reader;c:\windows\system32\drivers\RtsUStor.sys [2010-10-4 193640]
R3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\drivers\Rt86win7.sys [2010-6-23 275048]
R3 RTL8187B;Realtek RTL8187B Wireless 802.11b/g 54Mbps USB 2.0 Network Adapter;c:\windows\system32\drivers\RTL8187B.sys [2010-3-31 379904]
R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2011\TuneUpUtilitiesDriver32.sys [2010-10-7 10064]
R3 vdrive;vdrive;c:\windows\system32\drivers\vdrive.sys [2010-10-29 34560]
S2 Akamai;Akamai NetSession Interface;c:\windows\system32\svchost.exe -k Akamai [2009-7-13 20992]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 Lavasoft Ad-Aware Service;Lavasoft Ad-Aware Service;c:\program files\lavasoft\ad-aware\AAWService.exe [2010-9-8 1375992]
S2 moohelp;The Cleaner 2011 Helper Service;c:\program files\the cleaner\mhelper.exe [2010-11-13 813056]
S3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
S3 DrvAgent32;DrvAgent32;c:\windows\system32\drivers\DrvAgent32.sys [2010-7-7 23456]
S3 DVDHlp;DVDHlp Driver;c:\windows\system32\drivers\dvdhlp.sys [2010-9-9 106432]
S3 fssfltr;fssfltr;c:\windows\system32\drivers\fssfltr.sys [2010-10-16 39272]
S3 fsssvc;Windows Live Family Safety Service;c:\program files\windows live\family safety\fsssvc.exe [2010-9-22 1493352]
S3 KProcessHacker;KProcessHacker;c:\users\theluckyman\desktop\tool systems\process hacker\kprocesshacker.sys [2010-4-23 59904]
S3 Lavasoft Kernexplorer;Lavasoft helper driver;c:\program files\lavasoft\ad-aware\kernexplorer.sys [2010-9-8 15264]
S3 osppsvc;Office Software Protection Platform;c:\program files\common files\microsoft shared\officesoftwareprotectionplatform\OSPPSVC.EXE [2010-1-9 4640000]
S3 pbfilter;pbfilter;c:\program files\peerblock\pbfilter.sys [2010-3-17 16472]
S3 Revoflt;Revoflt;c:\windows\system32\drivers\revoflt.sys [2010-9-18 27192]
S3 sdAuxService;PC Tools Auxiliary Service;c:\program files\spyware doctor\pctsAuxs.exe [2010-10-12 366840]
S3 sdCoreService;PC Tools Security Service;c:\program files\spyware doctor\pctsSvc.exe [2010-10-12 1142224]
S3 SwitchBoard;Adobe SwitchBoard;c:\program files\common files\adobe\switchboard\SwitchBoard.exe [2010-2-19 517096]
S3 tapoas;TAP-Win32 Adapter OAS;c:\windows\system32\drivers\tapoas.sys [2010-7-21 26112]
S4 IS360service;IS360service;c:\program files\iobit\iobit security 360\is360srv.exe [2010-10-6 312152]
S4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\windows live\mesh\wlcrasvc.exe [2010-9-22 51040]

=============== File Associations ===============

JSEFile=NOTEPAD.EXE %1

=============== Created Last 30 ================

2010-11-14 20:34:36 6146896 ----a-w- c:\progra~2\microsoft\microsoft antimalware\definition updates\{abac0276-ace7-4e32-b114-ceca37081b58}\mpengine.dll
2010-11-14 19:16:03 388096 ----a-r- c:\users\theluc~1\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
2010-11-14 16:27:39 -------- d-----w- c:\users\theluc~1\appdata\roaming\Avira
2010-11-14 11:03:37 439632 ------w- c:\progra~2\microsoft\microsoft antimalware\definition updates\{07ea3212-aa65-4dc1-a71f-aa9734637fea}\gapaengine.dll
2010-11-13 22:02:51 -------- d-----w- c:\users\theluc~1\appdata\roaming\thecleaner
2010-11-13 22:02:21 -------- d-----w- c:\program files\The Cleaner
2010-11-13 16:05:24 -------- d-----w- c:\program files\DVDFab Passkey 7
2010-11-13 15:38:35 49024 ----a-w- c:\windows\system32\drivers\dvdfab.sys
2010-11-13 15:38:34 -------- d-----w- c:\program files\DVDFab Passkey
2010-11-13 15:09:05 60936 ----a-w- c:\windows\system32\drivers\avgntflt.sys
2010-11-12 20:32:11 -------- d-----w- c:\users\theluc~1\appdata\roaming\TweetAdder3
2010-11-12 20:09:16 -------- d-----w- c:\program files\Tweet Adder 3
2010-11-11 23:49:56 -------- d-----w- c:\program files\Cinema Craft Encoder SP v2.67.00.27
2010-11-11 19:59:36 -------- d-----w- c:\progra~2\Kaspersky Lab
2010-11-11 19:19:16 37392 ----a-w- c:\windows\system32\drivers\02558312.sys
2010-11-11 19:19:16 311312 ----a-w- c:\windows\system32\drivers\0255831.sys
2010-11-11 15:07:04 -------- d-----w- c:\program files\GridinSoft Trojan Killer
2010-11-11 15:00:19 77312 ----a-w- c:\windows\system32\ztvunace26.dll
2010-11-11 15:00:19 162304 ----a-w- c:\windows\system32\ztvunrar36.dll
2010-11-11 15:00:18 75264 ----a-w- c:\windows\system32\unacev2.dll
2010-11-11 15:00:18 69632 ----a-w- c:\windows\system32\ztvcabinet.dll
2010-11-11 15:00:18 153088 ----a-w- c:\windows\system32\unrar3.dll
2010-11-11 14:59:31 -------- d-----w- c:\users\theluc~1\appdata\roaming\Simply Super Software
2010-11-11 14:59:31 -------- d-----w- c:\progra~2\Simply Super Software
2010-11-10 21:13:48 -------- d-----w- c:\windows\TempACB2B7F5-71D4-E64D-BE4F-59120DC00668-Signatures
2010-11-09 01:20:16 -------- d-----w- c:\users\theluc~1\appdata\roaming\SmartPCTools
2010-11-09 01:19:33 -------- d-----w- c:\program files\SmartPCTools
2010-11-06 04:09:47 -------- d-----w- c:\program files\Karen's Power Tools
2010-11-06 04:09:39 -------- d-----w- c:\progra~2\Karen's Power Tools
2010-11-05 00:38:58 -------- d-----w- c:\program files\uTorrent Ultra Accelerator
2010-11-04 01:15:41 -------- d-----w- c:\users\theluc~1\appdata\roaming\IDM
2010-11-04 01:15:41 -------- d-----w- c:\program files\Internet Download Manager
2010-11-04 01:15:41 -------- d-----w- C:\Belgelerim
2010-11-04 01:11:30 -------- d-----w- c:\progra~2\Kaspersky Lab Setup Files
2010-11-04 00:02:47 -------- d-----w- c:\program files\Intelore
2010-11-04 00:01:21 735481 ----a-w- c:\users\theluc~1\appdata\roaming\Setup.exe
2010-11-03 21:41:04 94296 ----a-w- c:\windows\system32\drivers\idmtdi.sys
2010-11-03 15:43:45 -------- d-----w- c:\program files\Nsasoft
2010-10-31 02:56:49 31552 ----a-w- c:\windows\system32\TURegOpt.exe
2010-10-31 02:56:43 29504 ----a-w- c:\windows\system32\uxtuneup.dll
2010-10-31 02:56:43 21312 ----a-w- c:\windows\system32\authuitu.dll
2010-10-31 02:56:04 -------- d-----w- c:\program files\TuneUp Utilities 2011
2010-10-31 02:52:49 -------- d-sh--w- c:\progra~2\{24036256-BFDB-4CD3-BE8A-A3D6160F2E16}
2010-10-31 02:50:52 -------- d-----w- c:\users\theluc~1\appdata\local\Thinstall
2010-10-29 23:51:13 34560 ----a-w- c:\windows\system32\drivers\vdrive.sys
2010-10-29 23:51:13 11392 ----a-w- c:\windows\system32\drivers\dvdfabio.sys
2010-10-29 23:51:13 -------- d-----w- c:\program files\DVDFab Virtual Drive
2010-10-28 23:17:49 -------- d-----w- c:\program files\SUPERAntiSpyware
2010-10-28 13:19:19 -------- d-----w- c:\program files\DVD-RB PRO
2010-10-27 20:53:05 -------- d-----w- C:\IObit
2010-10-26 21:49:11 641536 ----a-w- c:\windows\system32\CPFilters.dll
2010-10-26 21:49:11 417792 ----a-w- c:\windows\system32\msdri.dll
2010-10-26 21:49:11 204288 ----a-w- c:\windows\system32\MSNP.ax
2010-10-26 21:49:11 199680 ----a-w- c:\windows\system32\mpg2splt.ax
2010-10-26 21:48:59 26504 ----a-w- c:\windows\system32\drivers\Diskdump.sys
2010-10-26 21:05:10 -------- d-----w- c:\users\theluc~1\appdata\roaming\Process Hacker
2010-10-26 14:02:59 83184 ----a-w- c:\windows\system32\drivers\idmwfp.sys
2010-10-26 10:31:04 38224 ----a-w- c:\windows\system32\drivers\mbamswissarmy.sys
2010-10-26 10:30:59 20952 ----a-w- c:\windows\system32\drivers\mbam.sys
2010-10-25 17:38:47 -------- d-----w- c:\users\theluc~1\appdata\local\AIM
2010-10-25 17:38:46 -------- d-----w- c:\users\theluc~1\appdata\local\AOL
2010-10-25 01:37:23 -------- d-----w- c:\users\theluc~1\appdata\roaming\ScanSpyware
2010-10-24 19:50:39 -------- d-----w- c:\users\theluc~1\appdata\roaming\EurekaLog
2010-10-24 11:36:02 -------- d-----w- c:\users\theluc~1\appdata\local\Apple
2010-10-23 20:08:21 -------- d-----w- c:\users\theluc~1\appdata\roaming\Azureus
2010-10-23 20:06:55 -------- d-----w- c:\program files\Vuze
2010-10-23 10:50:06 -------- d--h--w- c:\progra~2\{CCE9E666-4D7C-4946-A98B-CFDE0A0C1706}
2010-10-23 10:49:53 -------- dc-h--w- c:\progra~2\{437292BE-95BD-4B12-B699-6D217A03ACAF}
2010-10-23 10:49:30 -------- d-----w- c:\program files\Lavasoft
2010-10-22 12:41:30 -------- d-----w- c:\users\theluc~1\appdata\local\Opera
2010-10-22 12:41:25 -------- d-----w- c:\program files\Opera 11.00 alpha
2010-10-21 00:58:43 -------- d-----w- c:\users\theluc~1\appdata\local\Adobe
2010-10-19 12:54:55 -------- d-----w- c:\windows\ehome
2010-10-18 11:57:47 -------- d-----w- c:\users\theluc~1\appdata\roaming\Megaupload
2010-10-18 11:57:06 -------- d-----w- c:\program files\Megaupload
2010-10-18 02:49:11 -------- d-----w- c:\program files\mIRC
2010-10-17 01:56:29 -------- d-----w- c:\windows\en
2010-10-17 01:55:48 39272 ----a-w- c:\windows\system32\drivers\fssfltr.sys
2010-10-17 01:49:16 2983424 ----a-w- c:\windows\system32\UIRibbon.dll
2010-10-17 01:49:15 1164800 ----a-w- c:\windows\system32\UIRibbonRes.dll
2010-10-17 01:48:10 469256 ----a-w- c:\program files\common files\windows live\.cache\58e333151cb6d9d06\InstallManager_WLE_WLE.exe
2010-10-17 01:47:58 15712 ----a-w- c:\program files\common files\windows live\.cache\5302cd691cb6d9d05\MeshBetaRemover.exe
2010-10-17 01:47:56 94040 ----a-w- c:\program files\common files\windows live\.cache\51c897c51cb6d9d04\DSETUP.dll
2010-10-17 01:47:56 525656 ----a-w- c:\program files\common files\windows live\.cache\51c897c51cb6d9d04\DXSETUP.exe
2010-10-17 01:47:56 1691480 ----a-w- c:\program files\common files\windows live\.cache\51c897c51cb6d9d04\dsetup32.dll
2010-10-17 01:47:54 94040 ----a-w- c:\program files\common files\windows live\.cache\4f9210441cb6d9d03\DSETUP.dll
2010-10-17 01:47:54 525656 ----a-w- c:\program files\common files\windows live\.cache\4f9210441cb6d9d03\DXSETUP.exe
2010-10-17 01:47:54 1691480 ----a-w- c:\program files\common files\windows live\.cache\4f9210441cb6d9d03\dsetup32.dll

==================== Find3M ====================

2010-10-19 20:51:33 222080 ------w- c:\windows\system32\MpSigStub.exe
2010-10-14 01:12:18 472808 ----a-w- c:\windows\system32\deployJava1.dll
2010-10-09 20:38:51 2 --shatr- c:\windows\winstart.bat
2010-09-28 20:01:30 13824 ----a-w- c:\windows\system32\slwga.dll
2010-09-28 20:01:29 409088 ----a-w- c:\windows\system32\systemcpl.dll
2010-09-23 05:47:28 49016 ----a-w- c:\windows\system32\sirenacm.dll
2010-09-23 05:32:56 301936 ----a-w- c:\windows\WLXPGSS.SCR
2010-09-21 19:03:14 208768 ----a-w- c:\windows\system32\LIVESSP.DLL
2010-09-01 05:46:36 1355264 ----a-w- c:\windows\system32\jscript9.dll
2010-09-01 05:44:32 367104 ----a-w- c:\windows\system32\html.iec
2010-09-01 05:44:30 1448448 ----a-w- c:\windows\system32\inetcpl.cpl
2010-09-01 05:44:24 1122304 ----a-w- c:\windows\system32\wininet.dll
2010-09-01 05:44:06 424960 ----a-w- c:\windows\system32\vbscript.dll
2010-09-01 05:43:22 23552 ----a-w- c:\windows\system32\licmgr10.dll
2010-09-01 05:43:12 142848 ----a-w- c:\windows\system32\ieUnatt.exe
2010-09-01 05:43:12 114176 ----a-w- c:\windows\system32\iesysprep.dll
2010-09-01 05:43:10 76800 ----a-w- c:\windows\system32\SetIEInstalledDate.exe
2010-09-01 05:43:10 74752 ----a-w- c:\windows\system32\RegisterIEPKEYs.exe
2010-09-01 05:42:58 51200 ----a-w- c:\windows\system32\admparse.dll
2010-09-01 05:42:54 75264 ----a-w- c:\windows\system32\iesetup.dll
2010-09-01 05:42:48 110592 ----a-w- c:\windows\system32\IEAdvpack.dll
2010-09-01 05:42:42 150016 ----a-w- c:\windows\system32\iexpress.exe
2010-09-01 05:42:42 149504 ----a-w- c:\windows\system32\wextract.exe
2010-09-01 05:42:20 33280 ----a-w- c:\windows\system32\imgutil.dll
2010-09-01 05:42:16 48640 ----a-w- c:\windows\system32\mshtmler.dll
2010-09-01 05:42:12 11264 ----a-w- c:\windows\system32\mshta.exe
2010-09-01 05:42:10 2381824 ----a-w- c:\windows\system32\mshtml.tlb
2010-09-01 05:42:04 63488 ----a-w- c:\windows\system32\tdc.ocx
2010-09-01 05:41:46 160768 ----a-w- c:\windows\system32\msls31.dll
2010-09-01 04:23:49 12625408 ----a-w- c:\windows\system32\wmploc.DLL
2010-09-01 02:34:52 2327552 ----a-w- c:\windows\system32\win32k.sys
2010-08-31 04:32:30 954752 ----a-w- c:\windows\system32\mfc40.dll
2010-08-31 04:32:30 954288 ----a-w- c:\windows\system32\mfc40u.dll
2010-08-30 17:43:22 8136704 ---ha-w- c:\windows\system32\SecSigDB.BIN
2010-08-30 17:43:22 450000 ---ha-w- c:\windows\system32\NameDB.BIN
2010-08-27 05:46:48 168448 ----a-w- c:\windows\system32\srvsvc.dll
2010-08-26 04:39:58 109056 ----a-w- c:\windows\system32\t2embed.dll
2010-08-25 20:20:00 15559228 ----a-w- c:\users\theluc~1\appdata\roaming\DVDneXtCOPY.neXt.Tech.V4.2.5.2.exe
2010-08-21 05:36:33 738816 ----a-w- c:\windows\system32\wmpmde.dll
2010-08-21 05:36:24 224256 ----a-w- c:\windows\system32\schannel.dll
2010-08-21 05:33:24 530432 ----a-w- c:\windows\system32\comctl32.dll
2010-08-21 05:32:37 316928 ----a-w- c:\windows\system32\spoolsv.exe

============= FINISH: 17:53:12.53 ===============
 

theluckyman

Posts: 13   +0
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT

DDS (Ver_10-11-10.01)

Microsoft Windows 7 Ultimate
Boot Device: \Device\HarddiskVolume1
Install Date: 4/24/2010 7:41:19 PM
System Uptime: 11/14/2010 5:13:14 PM (0 hours ago)

Motherboard: Gateway | |
Processor: AMD Turion(tm) 64 X2 Mobile Technology TL-60 | Socket M2/S1G1 | 2000/200mhz

==== Disk Partitions =========================

C: is FIXED (NTFS) - 233 GiB total, 61.934 GiB free.
D: is CDROM ()
E: is CDROM ()
F: is CDROM ()

==== Disabled Device Manager Items =============

Class GUID: {8ECC055D-047F-11D1-A537-0000F8753ED1}
Description: 02558311
Device ID: ROOT\LEGACY_02558311\0000
Manufacturer:
Name: 02558311
PNP Device ID: ROOT\LEGACY_02558311\0000
Service: 02558311

==== System Restore Points ===================

RP1035: 11/14/2010 1:56:57 PM - ComboFix created restore point
RP1036: 11/14/2010 2:34:06 PM - Windows Update

==== Installed Programs ======================

µGadget
µTorrent
Acrobat.com
Ad-Aware
Adobe AIR
Adobe Community Help
Adobe Creative Suite 5 Design Premium
Adobe Flash Player 10 ActiveX
Adobe Flash Player 10 Plugin
Adobe Media Player
Adobe Reader 9.4.0
Adobe Shockwave Player 11.5
Adobe Soundbooth CS5
Advanced SystemCare 3
AIM 7
Akamai NetSession Interface
Apple Application Support
Apple Software Update
ATI Catalyst Install Manager
AviSynth 2.5
Bit Che
BitTorrent
Blu-ray/HD DVD Copy helper V2.0.0.7
Catalyst Control Center - Branding
Catalyst Control Center Core Implementation
Catalyst Control Center Graphics Full Existing
Catalyst Control Center Graphics Full New
Catalyst Control Center Graphics Light
Catalyst Control Center Graphics Previews Vista
Catalyst Control Center Localization All
ccc-core-static
ccc-utility
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
CCleaner
CloneDVD2
CNET TechTracker
Collectorz.com Movie Collector
ConvertXtoDVD 4.1.6.342
CuteFTP 8 Professional
D3DX10
Device Doctor 1.0.0.1
Download Guard for Internet Explorer
Download Updater (AOL LLC)
DVD Decrypter (Remove Only)
DVD Rebuilder
DVDFab 8.0.4.0 (11/11/2010)
DVDFab Passkey 7.0.5.6 BETA (29/09/2010)
DVDFab Passkey 8.0.0.1 (12/11/2010)
DVDFab Virtual Drive version 1.1.1.7
Easy Adder 3.83
EPSON NX300 Series Printer Uninstall
EPSON Scan
eType
Feedback Tool
FriendBlasterPro
GDS Video Thumbnailer
Google Chrome
Google Talk (remove only)
Google Updater
HiJackThis
IDT Audio
ImgBurn
Internet Download Manager
Internet Download Manager 6.03 Beta Build 4
IObit Security 360
Java Auto Updater
Java(TM) 6 Update 21
Java(TM) 6 Update 22
JDownloader
Junk Mail filter update
Karen's Cookie Viewer
Malwarebytes' Anti-Malware
MediaInfo 0.7.35
Mesh Runtime
Messenger Companion
MetroTwit
Microsoft File Transfer Manager
Microsoft .NET Framework 1.1
Microsoft .NET Framework 4 Client Profile
Microsoft .NET Framework 4 Extended
Microsoft Antimalware
Microsoft Application Error Reporting
Microsoft Baseline Security Analyzer 2.2
Microsoft Default Manager
Microsoft Security Client
Microsoft Security Essentials
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft SQL Server Native Client
Microsoft SQL Server Setup Support Files (English)
Microsoft SQL Server VSS Writer
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Web Platform Installer 2.0
Microsoft_VC80_ATL_x86
Microsoft_VC80_CRT_x86
Microsoft_VC80_MFC_x86
Microsoft_VC80_MFCLOC_x86
Microsoft_VC90_ATL_x86
Microsoft_VC90_CRT_x86
Microsoft_VC90_MFC_x86
mIRC
Mozilla Firefox (3.6.10)
Mozilla Thunderbird (3.1.3)
MSVCRT
MSXML 4.0 SP2 (KB954430)
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP2 and SOAP Toolkit 3.0
Notepad++
O&O Defrag Professional
OOo-dev 3.4
Opera 10.63
Opera 11.00 alpha build 1029
P3
PDF Settings CS5
PeerBlock 1.0.0 (r181)
PixiePack Codec Pack
Privoxy (remove only)
PS3 Media Server
QuickPar 0.9
QuickSFV (Remove only)
Random Password Generator
RAR Password Recovery v1.1 RC17 (remove only)
Realtek USB 2.0 Card Reader
RegAuditor 2.2
Registry First Aid
Registry Repair Wizard
Revo Uninstaller Pro 2.4.3
Safari
Security Update for Microsoft .NET Framework 4 Extended (KB2416472)
Skins
SlimCleaner
SlimDrivers
SpeedFan (remove only)
Spybot - Search & Destroy
Spyware Doctor 7.0
SpywareBlaster 4.4
SUPERAntiSpyware
Synaptics Pointing Device Driver
TagScanner 5.1 build 592
The Cleaner 2011
Tube Toolbox
TuneUp Utilities 2011
TuneUp Utilities Language Pack (en-US)
Tweet Adder 3
Unlocker 1.8.9
UseNeXT
uTorrent Ultra Accelerator
VirtualCloneDrive
Virus Guard - powered by BitDefender
VirusTotal Uploader 2.0
Visual C++ 2008 x86 Runtime - (v9.0.30729)
Visual C++ 2008 x86 Runtime - v9.0.30729.01
VLC media player 1.1.4
Vuze
Windows 7 Manager
Windows Installer Clean Up
Windows Live Communications Platform
Windows Live Essentials
Windows Live Family Safety
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Mail
Windows Live Mesh
Windows Live Mesh ActiveX Control for Remote Connections
Windows Live Messenger
Windows Live Messenger Companion Core
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live OneCare safety scanner
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
WinRAR archiver

==== Event Viewer Messages From Past Week ========

11/14/2010 9:41:08 AM, Error: volsnap [36] - The shadow copies of volume C: were aborted because the shadow copy storage could not grow due to a user imposed limit.
11/14/2010 5:16:02 PM, Error: Microsoft-Windows-WMPNSS-Service [14338] - A new media server was not initialized because CoCreateInstance(CLSID_UPnPRegistrar) encountered error '0x80070422'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
11/14/2010 5:15:03 PM, Error: Service Control Manager [7034] - The SQL Server VSS Writer service terminated unexpectedly. It has done this 1 time(s).
11/14/2010 5:15:03 PM, Error: Service Control Manager [7026] - The following boot-start or system-start driver(s) failed to load:
11/14/2010 5:14:13 PM, Error: Microsoft-Windows-WHEA-Logger [18] - A fatal hardware error has occurred. Reported by component: Processor Core Error Source: Machine Check Exception Error Type: Unknown Error Processor ID: 1 The details view of this entry contains further information.
11/14/2010 5:14:13 PM, Error: Microsoft-Windows-WHEA-Logger [18] - A fatal hardware error has occurred. Reported by component: Processor Core Error Source: Machine Check Exception Error Type: Cache Hierarchy Error Processor ID: 1 The details view of this entry contains further information.
11/14/2010 5:14:09 PM, Error: Service Control Manager [7023] - The Akamai NetSession Interface service terminated with the following error: The system cannot find the file specified.
11/14/2010 5:13:27 PM, Error: volmgr [46] - Crash dump initialization failed!
11/14/2010 4:03:49 PM, Error: Service Control Manager [7031] - The Microsoft Antimalware Service service terminated unexpectedly. It has done this 1 time(s). The following corrective action will be taken in 15000 milliseconds: Restart the service.
11/14/2010 2:33:35 PM, Error: Microsoft-Windows-DistributedCOM [10001] - Unable to start a DCOM Server: {F87B28F1-DA9A-4F35-8EC0-800EFCF26B83} as /. The error: "5" Happened while starting this command: C:\Windows\System32\slui.exe -Embedding
11/14/2010 1:59:13 PM, Error: Service Control Manager [7030] - The PEVSystemStart service is marked as an interactive service. However, the system is configured to not allow interactive services. This service may not function properly.
11/13/2010 8:03:28 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.93.1833.0).
11/13/2010 8:03:20 AM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: On Access Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver skipped scanning items and is in pass through mode. This may be due to low resource conditions.
11/13/2010 8:03:20 AM, Error: Microsoft Antimalware [2003] - Microsoft Antimalware has encountered an error trying to update the engine. New Engine Version: Previous Engine Version: 2.0.5850.0 Engine Type: Network Inspection System User: NT AUTHORITY\SYSTEM Error Code: 0x80092003 Error description: An error occurred while reading or writing to a file.
11/13/2010 8:03:20 AM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 8.12.0.0 Update Source: User Update Stage: Install Source Path: Signature Type: Network Inspection System Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 2.0.5850.0 Error code: 0x80092003 Error description: An error occurred while reading or writing to a file.
11/13/2010 7:36:38 AM, Error: Service Control Manager [7024] - The Avira AntiVir WebGuard service terminated with service-specific error Incorrect function..
11/13/2010 7:36:37 AM, Error: Service Control Manager [7024] - The Avira AntiVir MailGuard service terminated with service-specific error Incorrect function..
11/13/2010 6:29:00 AM, Error: Service Control Manager [7022] - The Internet Connection Sharing (ICS) service hung on starting.
11/13/2010 2:21:02 PM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Media Player Network Sharing Service service to connect.
11/13/2010 2:21:02 PM, Error: Service Control Manager [7000] - The Windows Media Player Network Sharing Service service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/13/2010 12:30:00 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.93.1795.0).
11/13/2010 12:29:52 AM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 1.93.1795.0 Update Source: Microsoft Update Server Update Stage: Install Source Path: http://www.microsoft.com Signature Type: AntiVirus Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 1.1.6301.0 Error code: 0x80070643 Error description: Fatal error during installation.
11/13/2010 12:29:46 AM, Error: Microsoft Antimalware [3002] - Microsoft Antimalware Real-Time Protection feature has encountered an error and failed. Feature: On Access Error Code: 0x80004005 Error description: Unspecified error Reason: The filter driver skipped scanning items and is in pass through mode. This may be due to low resource conditions.
11/13/2010 12:29:46 AM, Error: Microsoft Antimalware [2003] - Microsoft Antimalware has encountered an error trying to update the engine. New Engine Version: Previous Engine Version: 2.0.5850.0 Engine Type: Network Inspection System User: NT AUTHORITY\SYSTEM Error Code: 0x80092003 Error description: An error occurred while reading or writing to a file.
11/13/2010 12:29:46 AM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 8.12.0.0 Update Source: User Update Stage: Install Source Path: Signature Type: Network Inspection System Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 2.0.5850.0 Error code: 0x80092003 Error description: An error occurred while reading or writing to a file.
11/13/2010 12:05:51 AM, Error: Microsoft-Windows-WHEA-Logger [18] - A fatal hardware error has occurred. Reported by component: Processor Core Error Source: Machine Check Exception Error Type: Bus/Interconnect Error Processor ID: 1 The details view of this entry contains further information.
11/12/2010 8:55:07 AM, Error: Service Control Manager [7009] - A timeout was reached (30000 milliseconds) while waiting for the Windows Defender service to connect.
11/12/2010 8:55:07 AM, Error: Service Control Manager [7000] - The Windows Defender service failed to start due to the following error: The service did not respond to the start or control request in a timely fashion.
11/12/2010 6:35:53 AM, Error: Microsoft-Windows-WindowsUpdateClient [20] - Installation Failure: Windows failed to install the following update with error 0x80070643: Definition Update for Microsoft Security Essentials - KB2310138 (Definition 1.93.1733.0).
11/12/2010 6:35:34 AM, Error: Microsoft Antimalware [2003] - Microsoft Antimalware has encountered an error trying to update the engine. New Engine Version: Previous Engine Version: 2.0.5850.0 Engine Type: Network Inspection System User: NT AUTHORITY\SYSTEM Error Code: 0x80092003 Error description: An error occurred while reading or writing to a file.
11/12/2010 6:35:34 AM, Error: Microsoft Antimalware [2001] - Microsoft Antimalware has encountered an error trying to update signatures. New Signature Version: Previous Signature Version: 8.12.0.0 Update Source: User Update Stage: Install Source Path: Signature Type: Network Inspection System Update Type: Full User: NT AUTHORITY\SYSTEM Current Engine Version: Previous Engine Version: 2.0.5850.0 Error code: 0x80092003 Error description: An error occurred while reading or writing to a file.
11/12/2010 5:25:00 PM, Error: Service Control Manager [7001] - The Network List Service service depends on the Network Location Awareness service which failed to start because of the following error: The dependency service or group failed to start.
11/12/2010 5:24:48 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {9E175B6D-F52A-11D8-B9A5-505054503030}
11/12/2010 5:24:45 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service WSearch with arguments "" in order to run the server: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}
11/12/2010 5:24:34 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netprofm with arguments "" in order to run the server: {A47979D2-C419-11D9-A5B4-001185AD2B89}
11/12/2010 5:24:34 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1068" attempting to start the service netman with arguments "" in order to run the server: {BA126AD1-2166-11D1-B1D0-00805FC1270E}
11/12/2010 5:24:18 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service EventSystem with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
11/12/2010 5:23:53 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service ShellHWDetection with arguments "" in order to run the server: {DD522ACC-F821-461A-A407-50B198B896DC}
11/12/2010 5:23:33 PM, Error: Microsoft-Windows-DistributedCOM [10005] - DCOM got error "1084" attempting to start the service TermService with arguments "" in order to run the server: {F9A874B6-F8A8-4D73-B5A8-AB610816828B}
11/12/2010 5:23:30 PM, Error: Service Control Manager [7001] - The Workstation service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
11/12/2010 5:23:30 PM, Error: Service Control Manager [7001] - The SMB MiniRedirector Wrapper and Engine service depends on the Redirected Buffering Sub Sysytem service which failed to start because of the following error: A device attached to the system is not functioning.
11/12/2010 5:23:30 PM, Error: Service Control Manager [7001] - The SMB 2.0 MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
11/12/2010 5:23:30 PM, Error: Service Control Manager [7001] - The SMB 1.x MiniRedirector service depends on the SMB MiniRedirector Wrapper and Engine service which failed to start because of the following error: The dependency service or group failed to start.
11/12/2010 5:23:30 PM, Error: Service Control Manager [7001] - The Network Store Interface Service service depends on the NSI proxy service driver. service which failed to start because of the following error: A device attached to the system is not functioning.
11/12/2010 5:23:30 PM, Error: Service Control Manager [7001] - The Network Location Awareness service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
11/12/2010 5:23:30 PM, Error: Service Control Manager [7001] - The Network Connections service depends on the Network Store Interface Service service which failed to start because of the following error: The dependency service or group failed to start.
11/12/2010 5:23:21 PM, Error: Service Control Manager [7001] - The DHCP Client service depends on the Ancillary Function Driver for Winsock service which failed to start because of the following error: A device attached to the system is not functioning.
11/12/2010 4:37:36 PM, Error: Microsoft-Windows-WMPNSS-Service [14332] - Service 'WMPNetworkSvc' did not start correctly because CoCreateInstance(CLSID_UPnPDeviceFinder) encountered error '0x80004005'. Verify that the UPnPHost service is running and that the UPnPHost component of Windows is installed properly.
11/12/2010 3:31:23 PM, Error: Service Control Manager [7006] - The ScRegSetValueExW call failed for Start with the following error: Access is denied.
02558311 AFD avipbb cpuidlep CSC DfsC discache ElbyCDIO MpFilter NetBIOS NetBT nsiproxy Psched rdbss SASDIFSV SASKUTIL spldr ssmdrv tdx vwififlt Wanarpv6 WfpLwf ws2ifsl
02558311 AFD avipbb cpuidlep CSC DfsC discache ElbyCDIO MpFilter NetBIOS NetBT nsiproxy Psched rdbss SASDIFSV SASKUTIL spldr ssmdrv tdx vwififlt Wanarpv6 WfpLwf ws2ifsl
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311
02558311

==== End Of File ===========================
 

Broni

Posts: 55,873   +506
Download MBRCheck to your desktop

Double click MBRCheck.exe to run (Vista and Windows 7 users, right click and select Run as Administrator).
It will show a black screen with some data on it.
Enter N to exit.
A report called MBRcheckxxxx.txt will be on your desktop
Open this report and post its content in your next reply.

=====================================================================

Please download ComboFix from Here or Here to your Desktop.

**Note: In the event you already have Combofix, this is a new version that I need you to download. It is important that it is saved directly to your desktop**
  1. Please, never rename Combofix unless instructed.
  2. Close any open browsers.
  3. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
    • Very Important! Temporarily disable your anti-virus, script blocking and any anti-malware real-time protection before performing a scan. They can interfere with ComboFix or remove some of its embedded files which may cause "unpredictable results".
    • Click on this link to see a list of programs that should be disabled. The list is not all inclusive. If yours is not listed and you don't know how to disable it, please ask.
    NOTE1. If Combofix asks you to install Recovery Console, please allow it.
    NOTE 2. If Combofix asks you to update the program, always do so.
    • Close any open browsers.
    • WARNING: Combofix will disconnect your machine from the Internet as soon as it starts
    • Please do not attempt to re-connect your machine back to the Internet until Combofix has completely finished.
    • If there is no internet connection after running Combofix, then restart your computer to restore back your connection.
  4. Double click on combofix.exe & follow the prompts.
  5. When finished, it will produce a report for you.
  6. Please post the "C:\ComboFix.txt"
**Note: Do not mouseclick combofix's window while it's running. That may cause it to stall**

Make sure, you re-enable your security programs, when you're done with Combofix.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

NOTE.
If, for some reason, Combofix refuses to run, try one of the following:

1. Run Combofix from Safe Mode.

2. Delete Combofix file, download fresh one, but rename combofix.exe to your_name.exe BEFORE saving it to your desktop.
Do NOT run it yet.

Please download and run the below tool named Rkill (courtesy of BleepingComputer.com) which may help allow other programs to run.

There are 4 different versions. If one of them won't run then download and try to run the other one.

Vista and Win7 users need to right click Rkill and choose Run as Administrator

You only need to get one of these to run, not all of them. You may get warnings from your antivirus about this tool, ignore them or shutdown your antivirus.

Rkill.com
Rkill.scr
Rkill.pif
Rkill.exe

  • Double-click on the Rkill desktop icon to run the tool.
  • If using Vista or Windows 7 right-click on it and choose Run As Administrator.
  • A black DOS box will briefly flash and then disappear. This is normal and indicates the tool ran successfully.
  • If not, delete the file, then download and use the one provided in Link 2.
  • If it does not work, repeat the process and attempt to use one of the remaining links until the tool runs.
  • Do not reboot until instructed.
  • If the tool does not run from any of the links provided, please let me know.

Once you've gotten one of them to run, immediately run your_name.exe by double clicking on it.

If normal mode still doesn't work, run BOTH tools from safe mode.

In case #2, please post BOTH logs, rKill and Combofix.

DO NOT make any other changes to your computer (like installing programs, using other cleaning tools, etc.), until it's officially declared clean!!!
 

theluckyman

Posts: 13   +0
unfortunately, everytime i run Combofix normal and safe mode when it is completed stage 3 then stage 4 is taking too long but sometime after 3 then turn my laptop off so automatically even i let my laptop rest for long time so once i woke up then i turn my laptop on then i tapped to safe mode then run combofix then it just quickly turn off my laptop when i run Combofix. I knew my laptop is something infected.

here's MBRCheck:

MBRCheck, version 1.2.3
(c) 2010, AD

Command-line:
Windows Version: Windows 7 Ultimate Edition
Windows Information: (build 7600), 32-bit
Base Board Manufacturer: Gateway
BIOS Manufacturer: Phoenix Technologies LTD
System Manufacturer: Gateway
System Product Name: M-1625
Logical Drives Mask: 0x0000003c

Kernel Drivers (total 175):
0x82C4A000 \SystemRoot\system32\ntkrnlpa.exe
0x82C13000 \SystemRoot\system32\halmacpi.dll
0x80BBD000 \SystemRoot\system32\kdcom.dll
0x8323B000 \SystemRoot\system32\mcupdate_AuthenticAMD.dll
0x83246000 \SystemRoot\system32\PSHED.dll
0x83257000 \SystemRoot\system32\BOOTVID.dll
0x8325F000 \SystemRoot\system32\CLFS.SYS
0x832A1000 \SystemRoot\system32\CI.dll
0x8334C000 \SystemRoot\system32\drivers\Wdf01000.sys
0x833BD000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x8AC12000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x8AC5A000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x8AC63000 \SystemRoot\system32\drivers\fltmgr.sys
0x8AC97000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x8AC9F000 \SystemRoot\system32\DRIVERS\pci.sys
0x8ACC9000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x8ACD4000 \SystemRoot\System32\drivers\partmgr.sys
0x8ACE5000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x8ACED000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x8ACF8000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x8AD08000 \SystemRoot\System32\drivers\volmgrx.sys
0x8AD53000 \SystemRoot\system32\DRIVERS\pciide.sys
0x8AD5A000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
0x8AD68000 \SystemRoot\System32\drivers\mountmgr.sys
0x8AD7E000 \SystemRoot\system32\DRIVERS\atapi.sys
0x8AD87000 \SystemRoot\system32\DRIVERS\ataport.SYS
0x8ADAA000 \SystemRoot\system32\DRIVERS\amdxata.sys
0x8ADB3000 \SystemRoot\system32\DRIVERS\msahci.sys
0x8ADBD000 \SystemRoot\system32\drivers\fileinfo.sys
0x83200000 \SystemRoot\system32\drivers\PCTCore.sys
0x8AE12000 \SystemRoot\System32\Drivers\Ntfs.sys
0x8AF41000 \SystemRoot\System32\Drivers\msrpc.sys
0x8AF6C000 \SystemRoot\System32\Drivers\ksecdd.sys
0x8AF7F000 \SystemRoot\System32\Drivers\cng.sys
0x8AFDC000 \SystemRoot\System32\drivers\pcw.sys
0x8AFEA000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x8B004000 \SystemRoot\system32\drivers\ndis.sys
0x8B0BB000 \SystemRoot\system32\drivers\NETIO.SYS
0x8B0F9000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x8B227000 \SystemRoot\System32\drivers\tcpip.sys
0x8B370000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x8B3A1000 \SystemRoot\system32\DRIVERS\vmstorfl.sys
0x8B3AA000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x8B3E9000 \SystemRoot\System32\Drivers\spldr.sys
0x8B3F1000 \SystemRoot\system32\speedfan.sys
0x8B11E000 \SystemRoot\System32\drivers\rdyboost.sys
0x8B200000 \SystemRoot\System32\Drivers\mup.sys
0x8B210000 \SystemRoot\System32\drivers\hwpolicy.sys
0x8B218000 \SystemRoot\system32\giveio.sys
0x8B14B000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x8B17D000 \SystemRoot\system32\DRIVERS\disk.sys
0x8B18E000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x8B219000 \SystemRoot\system32\DRIVERS\02558312.sys
0x8B1B3000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x8B1D4000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x8AE00000 \SystemRoot\system32\DRIVERS\amdk8.sys
0x8ADCE000 \SystemRoot\system32\DRIVERS\MpFilter.sys
0x8B3F3000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x8B3F7000 \SystemRoot\System32\Drivers\cdrbsdrv.SYS
0x8B1F3000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x8AFF3000 \SystemRoot\System32\Drivers\Null.SYS
0x90409000 \SystemRoot\system32\DRIVERS\atikmdag.sys
0x9089A000 \SystemRoot\System32\Drivers\Beep.SYS
0x908A1000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x90958000 \SystemRoot\System32\drivers\watchdog.sys
0x90965000 \SystemRoot\System32\drivers\vga.sys
0x90971000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x90992000 \SystemRoot\System32\drivers\dxgmms1.sys
0x909CB000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x909D3000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x90A2C000 \SystemRoot\system32\DRIVERS\Rt86win7.sys
0x90A71000 \SystemRoot\system32\drivers\rdpencdd.sys
0x90A79000 \SystemRoot\system32\DRIVERS\usbohci.sys
0x90A83000 \SystemRoot\system32\DRIVERS\USBPORT.SYS
0x90ACE000 \SystemRoot\system32\drivers\rdprefmp.sys
0x90AD6000 \SystemRoot\system32\DRIVERS\usbehci.sys
0x90AE5000 \SystemRoot\system32\drivers\dvdfab.sys
0x90AF3000 \SystemRoot\System32\Drivers\Msfs.SYS
0x90AFE000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x90B16000 \SystemRoot\System32\Drivers\Npfs.SYS
0x90B24000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x90B31000 \SystemRoot\system32\DRIVERS\tdx.sys
0x90B48000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x90B53000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x90B7F000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x90B81000 \SystemRoot\system32\drivers\afd.sys
0x90BDB000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x833CB000 \SystemRoot\System32\DRIVERS\netbt.sys
0x90BE8000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x90BF6000 \SystemRoot\system32\drivers\ws2ifsl.sys
0x90A00000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x90A0D000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x90A14000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x90C25000 \SystemRoot\system32\DRIVERS\pacer.sys
0x90C44000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x90C56000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x90C67000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x90C7F000 \SystemRoot\system32\DRIVERS\netbios.sys
0x90C8D000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x90C98000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x90CAB000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x90CCD000 \SystemRoot\system32\DRIVERS\termdd.sys
0x90CDD000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x90CF5000 \SystemRoot\system32\DRIVERS\ssmdrv.sys
0x90CFB000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x90D12000 \??\C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
0x90D34000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x90D4B000 \??\C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
0x90D51000 \SystemRoot\system32\DRIVERS\tap0901.sys
0x90D5C000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x90D9D000 \SystemRoot\System32\Drivers\pcouffin.sys
0x90DA9000 \SystemRoot\system32\drivers\nsiproxy.sys
0x90DB3000 \SystemRoot\system32\DRIVERS\rdpbus.sys
0x90DBD000 \SystemRoot\System32\Drivers\ElbyCDIO.sys
0x90DC2000 \SystemRoot\system32\DRIVERS\VClone.sys
0x90DCD000 \SystemRoot\system32\DRIVERS\SCSIPORT.SYS
0x90DF3000 \??\C:\Windows\system32\drivers\dvdfabio.sys
0x90DF4000 \SystemRoot\system32\DRIVERS\vdrive.sys
0x90C00000 \SystemRoot\System32\drivers\discache.sys
0x90C0C000 \SystemRoot\system32\DRIVERS\swenum.sys
0x91229000 \SystemRoot\system32\DRIVERS\ks.sys
0x9125D000 \SystemRoot\system32\drivers\csc.sys
0x912C1000 \SystemRoot\system32\DRIVERS\umbus.sys
0x912CF000 \SystemRoot\System32\Drivers\dfsc.sys
0x912E7000 \SystemRoot\System32\Drivers\cpuidlep.SYS
0x912E8000 \SystemRoot\system32\DRIVERS\avipbb.sys
0x9130B000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x9134F000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x91360000 \SystemRoot\system32\drivers\AtihdW73.sys
0x9137D000 \SystemRoot\system32\drivers\portcls.sys
0x913AC000 \SystemRoot\system32\drivers\drmk.sys
0x91A0E000 \SystemRoot\system32\drivers\stwrt.sys
0x91A63000 \SystemRoot\system32\DRIVERS\AGRSM.sys
0x91B7F000 \SystemRoot\system32\drivers\modem.sys
0x91B99000 \SystemRoot\System32\Drivers\RtsUStor.sys
0x9761A000 \SystemRoot\system32\DRIVERS\RTL8187B.sys
0x97680000 \SystemRoot\System32\drivers\vwifibus.sys
0x9768A000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x976A1000 \SystemRoot\System32\Drivers\usbvideo.sys
0x983B0000 \SystemRoot\System32\win32k.sys
0x976C5000 \SystemRoot\System32\drivers\Dxapi.sys
0x976CF000 \SystemRoot\system32\DRIVERS\monitor.sys
0x98210000 \SystemRoot\System32\TSDDD.dll
0x98240000 \SystemRoot\System32\cdd.dll
0x98260000 \SystemRoot\System32\ATMFD.DLL
0x976DA000 \SystemRoot\system32\drivers\luafv.sys
0x976F5000 \SystemRoot\system32\drivers\WudfPf.sys
0x9770F000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x9771F000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x97765000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x97775000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x99C16000 \SystemRoot\system32\drivers\HTTP.sys
0x99C9B000 \SystemRoot\system32\DRIVERS\bowser.sys
0x99CB4000 \SystemRoot\System32\drivers\mpsdrv.sys
0x99CC6000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x99CE9000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x99D24000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x99D57000 \SystemRoot\system32\DRIVERS\idmwfp.sys
0x99D6E000 \SystemRoot\system32\DRIVERS\avgntflt.sys
0x9C21B000 \SystemRoot\system32\drivers\peauth.sys
0x9C2B2000 \SystemRoot\System32\Drivers\secdrv.SYS
0x9C2BC000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x9C2DD000 \SystemRoot\System32\drivers\tcpipreg.sys
0x9C2EA000 \SystemRoot\System32\DRIVERS\srv2.sys
0x9C339000 \SystemRoot\System32\DRIVERS\srv.sys
0x9C38A000 \??\C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys
0x9C38B000 \SystemRoot\system32\drivers\tdtcp.sys
0x9C395000 \SystemRoot\System32\DRIVERS\tssecsrv.sys
0x9C3A2000 \SystemRoot\System32\Drivers\RDPWD.SYS
0x9C3D3000 \SystemRoot\system32\DRIVERS\MpNWMon.sys
0x9C3DD000 \SystemRoot\system32\DRIVERS\NisDrvWFP.sys
0x9C3E9000 \??\C:\Windows\system32\drivers\mbam.sys
0x76DE0000 \Windows\System32\ntdll.dll
0x47830000 \Windows\System32\smss.exe
0x77020000 \Windows\System32\apisetschema.dll

Processes (total 58):
0 System Idle Process
4 System
420 C:\Windows\System32\smss.exe
588 csrss.exe
660 csrss.exe
668 C:\Windows\System32\wininit.exe
704 C:\Windows\System32\winlogon.exe
764 C:\Windows\System32\services.exe
772 C:\Windows\System32\lsass.exe
780 C:\Windows\System32\lsm.exe
884 C:\Windows\System32\svchost.exe
960 C:\Windows\System32\svchost.exe
1052 C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe
1112 C:\Windows\System32\Ati2evxx.exe
1152 C:\Windows\System32\svchost.exe
1204 C:\Windows\System32\svchost.exe
1228 C:\Windows\System32\svchost.exe
1392 C:\Windows\System32\svchost.exe
1520 C:\Windows\System32\Ati2evxx.exe
1744 C:\Windows\System32\spoolsv.exe
1784 C:\Program Files\Avira\AntiVir Desktop\sched.exe
1804 C:\Windows\System32\svchost.exe
1908 C:\Windows\System32\svchost.exe
1952 C:\Program Files\LSI SoftModem\agrsmsvc.exe
2036 C:\Windows\System32\svchost.exe
516 C:\Windows\System32\svchost.exe
1304 C:\Program Files\OO Software\Defrag\oodag.exe
2180 C:\Program Files\IDT\WDM\stacsv.exe
2212 C:\Windows\System32\svchost.exe
2272 C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesService32.exe
2332 C:\Windows\System32\svchost.exe
2364 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVC.EXE
2416 C:\Windows\System32\SearchIndexer.exe
2472 C:\Program Files\Common Files\microsoft shared\Windows Live\WLIDSVCM.EXE
2992 C:\Windows\System32\svchost.exe
3204 C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe
3704 C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
3984 C:\Windows\System32\taskhost.exe
4008 C:\Windows\System32\taskeng.exe
4016 C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesApp32.exe
2264 C:\Windows\explorer.exe
3244 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
3240 C:\Program Files\Microsoft Security Client\msseces.exe
3196 C:\Program Files\Avira\AntiVir Desktop\avgnt.exe
3848 C:\Program Files\Windows Media Player\wmpnetwk.exe
3492 C:\Program Files\SpeedFan\speedfan.exe
2580 C:\Program Files\Privoxy\privoxy.exe
2652 C:\Program Files\Mozilla Thunderbird\thunderbird.exe
3076 C:\Program Files\Avira\AntiVir Desktop\avguard.exe
3476 C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
892 C:\Windows\System32\conhost.exe
3892 WmiPrvSE.exe
2464 C:\Windows\System32\SearchProtocolHost.exe
3220 C:\Windows\System32\SearchFilterHost.exe
3916 C:\Windows\System32\audiodg.exe
2660 C:\Users\theluckyman\desktop\MBRCheck.exe
3432 C:\Windows\System32\conhost.exe
3812 C:\Windows\System32\dllhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`00100000 (NTFS)

PhysicalDrive0 Model Number: WDCWD2500BEVS-22UST0, Rev: 01.01A01

Size Device Name MBR Status
--------------------------------------------
232 GB \\.\PhysicalDrive0 Windows 7 MBR code detected
SHA1: 4379A3D43019B46FA357F7DD6A53B45A3CA8FB79


Done!
 

theluckyman

Posts: 13   +0
yeah i do that but still not doing obviously infected files like hidden files but i will keep running Combofix till it is success. it gonna take a while once it is done then I will display log.
 

Broni

Posts: 55,873   +506
Download TDSSKiller and save it to your desktop.
  • Extract (unzip) its contents to your desktop.
  • Open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
  • If an infected file is detected, the default action will be Cure, click on Continue.
  • If a suspicious file is detected, the default action will be Skip, click on Continue.
  • It may ask you to reboot the computer to complete the process. Click on Reboot Now.
  • If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
  • If a reboot is required, the report can also be found in your root directory (usually C:\ folder) in the form of TDSSKiller_xxxx_log.txt. Please copy and paste the contents of that file here.
 

theluckyman

Posts: 13   +0
2010/11/15 19:24:25.0863 TDSS rootkit removing tool 2.4.7.0 Nov 8 2010 10:52:22
2010/11/15 19:24:25.0863 ================================================================================
2010/11/15 19:24:25.0863 SystemInfo:
2010/11/15 19:24:25.0863
2010/11/15 19:24:25.0863 OS Version: 6.1.7600 ServicePack: 0.0
2010/11/15 19:24:25.0863 Product type: Workstation
2010/11/15 19:24:25.0863 ComputerName: LUCKYMANLAPTOP
2010/11/15 19:24:25.0879 UserName: theluckyman
2010/11/15 19:24:25.0879 Windows directory: C:\Windows
2010/11/15 19:24:25.0879 System windows directory: C:\Windows
2010/11/15 19:24:25.0879 Processor architecture: Intel x86
2010/11/15 19:24:25.0879 Number of processors: 2
2010/11/15 19:24:25.0879 Page size: 0x1000
2010/11/15 19:24:25.0879 Boot type: Normal boot
2010/11/15 19:24:25.0879 ================================================================================
2010/11/15 19:24:26.0877 Initialize success
2010/11/15 19:24:29.0935 ================================================================================
2010/11/15 19:24:29.0935 Scan started
2010/11/15 19:24:29.0935 Mode: Manual;
2010/11/15 19:24:29.0935 ================================================================================
2010/11/15 19:24:31.0417 02558312 (a305fad3719c5db0c13d1c2bfd08a04d) C:\Windows\system32\DRIVERS\02558312.sys
2010/11/15 19:24:31.0463 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
2010/11/15 19:24:31.0510 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
2010/11/15 19:24:31.0541 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
2010/11/15 19:24:31.0573 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
2010/11/15 19:24:31.0619 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
2010/11/15 19:24:31.0666 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
2010/11/15 19:24:31.0729 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
2010/11/15 19:24:31.0807 AgereSoftModem (07758c2196a62f207f77556311e7459a) C:\Windows\system32\DRIVERS\AGRSM.sys
2010/11/15 19:24:31.0885 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
2010/11/15 19:24:31.0900 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
2010/11/15 19:24:31.0963 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
2010/11/15 19:24:31.0994 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
2010/11/15 19:24:32.0025 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
2010/11/15 19:24:32.0072 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
2010/11/15 19:24:32.0103 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
2010/11/15 19:24:32.0134 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
2010/11/15 19:24:32.0150 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
2010/11/15 19:24:32.0197 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
2010/11/15 19:24:32.0275 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
2010/11/15 19:24:32.0321 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
2010/11/15 19:24:32.0353 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
2010/11/15 19:24:32.0431 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
2010/11/15 19:24:32.0446 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
2010/11/15 19:24:32.0524 AtiHDAudioService (7b4342936a3885cfe18e5d1df6d55bc5) C:\Windows\system32\drivers\AtihdW73.sys
2010/11/15 19:24:32.0571 AtiHdmiService (8df873d0587596c1d35a9cececc61da1) C:\Windows\system32\drivers\AtiHdmi.sys
2010/11/15 19:24:32.0758 atikmdag (194a2261dad9b766b1b7333a5dc26999) C:\Windows\system32\DRIVERS\atikmdag.sys
2010/11/15 19:24:33.0039 avipbb (f8c56231ed5ecf7d1b46b0330880ccef) C:\Windows\system32\DRIVERS\avipbb.sys
2010/11/15 19:24:33.0148 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
2010/11/15 19:24:33.0367 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
2010/11/15 19:24:33.0429 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
2010/11/15 19:24:33.0460 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
2010/11/15 19:24:33.0491 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
2010/11/15 19:24:33.0523 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2010/11/15 19:24:33.0554 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2010/11/15 19:24:33.0601 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
2010/11/15 19:24:33.0647 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
2010/11/15 19:24:33.0663 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
2010/11/15 19:24:33.0694 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
2010/11/15 19:24:33.0725 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
2010/11/15 19:24:33.0788 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
2010/11/15 19:24:33.0835 cdrbsdrv (9008ad94f28360a2f1409592bfc7acf7) C:\Windows\system32\drivers\cdrbsdrv.sys
2010/11/15 19:24:33.0881 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
2010/11/15 19:24:33.0913 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
2010/11/15 19:24:33.0959 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
2010/11/15 19:24:34.0006 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
2010/11/15 19:24:34.0037 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
2010/11/15 19:24:34.0084 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
2010/11/15 19:24:34.0115 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
2010/11/15 19:24:34.0147 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
2010/11/15 19:24:34.0225 cpuidlep (3a1dc7c08ae1af450ffd753a0fd82f9d) C:\Windows\system32\drivers\cpuidlep.sys
2010/11/15 19:24:34.0271 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
2010/11/15 19:24:34.0365 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
2010/11/15 19:24:34.0474 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
2010/11/15 19:24:34.0505 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
2010/11/15 19:24:34.0537 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
2010/11/15 19:24:34.0630 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
2010/11/15 19:24:34.0708 dvdfab (bd95b819d269e6cb20d25bb098131814) C:\Windows\system32\drivers\dvdfab.sys
2010/11/15 19:24:34.0771 dvdfabio (abc088341624f429819ea059b614edae) C:\Windows\system32\drivers\dvdfabio.sys
2010/11/15 19:24:34.0833 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys
2010/11/15 19:24:35.0020 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
2010/11/15 19:24:35.0176 ElbyCDIO (309ac30471a0f1c3a89dee1c81230576) C:\Windows\system32\Drivers\ElbyCDIO.sys
2010/11/15 19:24:35.0223 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
2010/11/15 19:24:35.0285 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
2010/11/15 19:24:35.0332 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
2010/11/15 19:24:35.0379 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
2010/11/15 19:24:35.0426 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
2010/11/15 19:24:35.0473 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
2010/11/15 19:24:35.0504 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
2010/11/15 19:24:35.0551 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
2010/11/15 19:24:35.0582 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
2010/11/15 19:24:35.0644 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
2010/11/15 19:24:35.0707 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
2010/11/15 19:24:35.0753 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
2010/11/15 19:24:35.0816 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
2010/11/15 19:24:35.0847 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
2010/11/15 19:24:35.0894 giveio (77ebf3e9386daa51551af429052d88d0) C:\Windows\system32\giveio.sys
2010/11/15 19:24:36.0019 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
2010/11/15 19:24:36.0081 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
2010/11/15 19:24:36.0128 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
2010/11/15 19:24:36.0159 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
2010/11/15 19:24:36.0206 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
2010/11/15 19:24:36.0237 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
2010/11/15 19:24:36.0284 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
2010/11/15 19:24:36.0346 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
2010/11/15 19:24:36.0393 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
2010/11/15 19:24:36.0440 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
2010/11/15 19:24:36.0471 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
2010/11/15 19:24:36.0518 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
2010/11/15 19:24:36.0596 IDMWFP (d3ab96e19b1374be8be7e44397421407) C:\Windows\system32\DRIVERS\idmwfp.sys
2010/11/15 19:24:36.0643 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
2010/11/15 19:24:36.0736 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
2010/11/15 19:24:36.0767 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
2010/11/15 19:24:36.0814 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2010/11/15 19:24:36.0845 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
2010/11/15 19:24:36.0892 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
2010/11/15 19:24:36.0923 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
2010/11/15 19:24:36.0970 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
2010/11/15 19:24:37.0001 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
2010/11/15 19:24:37.0048 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
2010/11/15 19:24:37.0079 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
2010/11/15 19:24:37.0251 KProcessHacker (b08f83df42fadc3d688d25f9725f3aa9) C:\Users\theluckyman\desktop\Tool Systems\Process Hacker\kprocesshacker.sys
2010/11/15 19:24:37.0360 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
2010/11/15 19:24:37.0407 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
2010/11/15 19:24:37.0532 Lavasoft Kernexplorer (0bd6d3f477df86420de942a741dabe37) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
2010/11/15 19:24:37.0641 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
2010/11/15 19:24:37.0750 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
2010/11/15 19:24:37.0781 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
2010/11/15 19:24:37.0813 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2010/11/15 19:24:37.0859 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2010/11/15 19:24:37.0906 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
2010/11/15 19:24:37.0953 MBAMProtector (67b48a903430c6d4fb58cbaca1866601) C:\Windows\system32\drivers\mbam.sys
2010/11/15 19:24:38.0031 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
2010/11/15 19:24:38.0062 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
2010/11/15 19:24:38.0125 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
2010/11/15 19:24:38.0156 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
2010/11/15 19:24:38.0187 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
2010/11/15 19:24:38.0234 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
2010/11/15 19:24:38.0281 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
2010/11/15 19:24:38.0312 MpFilter (7e34bfa1a7b60bba1da03d677f16cd63) C:\Windows\system32\DRIVERS\MpFilter.sys
2010/11/15 19:24:38.0359 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
2010/11/15 19:24:38.0405 MpNWMon (f32e2d6a1640a469a9ed4f1929a4a861) C:\Windows\system32\DRIVERS\MpNWMon.sys
2010/11/15 19:24:38.0452 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
2010/11/15 19:24:38.0499 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
2010/11/15 19:24:38.0546 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys
2010/11/15 19:24:38.0577 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2010/11/15 19:24:38.0624 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2010/11/15 19:24:38.0671 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
2010/11/15 19:24:38.0702 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
2010/11/15 19:24:38.0764 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
2010/11/15 19:24:38.0811 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
2010/11/15 19:24:38.0827 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
2010/11/15 19:24:38.0889 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
2010/11/15 19:24:38.0951 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
2010/11/15 19:24:38.0998 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
2010/11/15 19:24:39.0045 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
2010/11/15 19:24:39.0107 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
2010/11/15 19:24:39.0170 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
2010/11/15 19:24:39.0201 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
2010/11/15 19:24:39.0263 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
2010/11/15 19:24:39.0341 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
2010/11/15 19:24:39.0419 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
2010/11/15 19:24:39.0529 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
2010/11/15 19:24:39.0575 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
2010/11/15 19:24:39.0622 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
2010/11/15 19:24:39.0653 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
2010/11/15 19:24:39.0700 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
2010/11/15 19:24:39.0731 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
2010/11/15 19:24:39.0778 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
2010/11/15 19:24:40.0028 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
2010/11/15 19:24:40.0090 NisDrv (17e2c08c5ecfbe94a7c67b1c275ee9d9) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
2010/11/15 19:24:40.0137 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
2010/11/15 19:24:40.0184 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
2010/11/15 19:24:40.0277 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
2010/11/15 19:24:40.0340 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
2010/11/15 19:24:40.0387 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
2010/11/15 19:24:40.0465 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
2010/11/15 19:24:40.0496 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
2010/11/15 19:24:40.0543 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
2010/11/15 19:24:40.0683 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
2010/11/15 19:24:40.0745 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
2010/11/15 19:24:40.0777 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
2010/11/15 19:24:40.0886 pbfilter (4dfe4cef1aeec1025380d7ebf40e8e2b) C:\Program Files\PeerBlock\pbfilter.sys
2010/11/15 19:24:40.0933 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
2010/11/15 19:24:40.0964 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
2010/11/15 19:24:41.0011 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
2010/11/15 19:24:41.0057 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
2010/11/15 19:24:41.0104 PCTCore (807ff1dd6e1bdf8e7d2062fca0daecaf) C:\Windows\system32\drivers\PCTCore.sys
2010/11/15 19:24:41.0151 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
2010/11/15 19:24:41.0198 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
2010/11/15 19:24:41.0354 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
2010/11/15 19:24:41.0416 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
2010/11/15 19:24:41.0479 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
2010/11/15 19:24:41.0557 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
2010/11/15 19:24:41.0635 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
2010/11/15 19:24:41.0681 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
2010/11/15 19:24:41.0713 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
2010/11/15 19:24:41.0759 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
2010/11/15 19:24:41.0806 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
2010/11/15 19:24:41.0853 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
2010/11/15 19:24:41.0884 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
2010/11/15 19:24:41.0931 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
2010/11/15 19:24:41.0978 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
2010/11/15 19:24:42.0009 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
2010/11/15 19:24:42.0087 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
2010/11/15 19:24:42.0118 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
2010/11/15 19:24:42.0165 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
2010/11/15 19:24:42.0212 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
2010/11/15 19:24:42.0259 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
2010/11/15 19:24:42.0352 Revoflt (b9bb8e2093c1615ad6ea55ad96214354) C:\Windows\system32\DRIVERS\revoflt.sys
2010/11/15 19:24:42.0430 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
2010/11/15 19:24:42.0493 RSUSBSTOR (f1ed9ffa59c369e72bc53a7631346f61) C:\Windows\system32\Drivers\RtsUStor.sys
2010/11/15 19:24:42.0555 RTL8167 (d5ede44ca85899e0478208c8413c1c31) C:\Windows\system32\DRIVERS\Rt86win7.sys
2010/11/15 19:24:42.0602 RTL8187B (949f74cb383a1d5da67aea9ccd4a8b87) C:\Windows\system32\DRIVERS\RTL8187B.sys
2010/11/15 19:24:42.0664 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
2010/11/15 19:24:42.0742 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
2010/11/15 19:24:42.0820 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
2010/11/15 19:24:42.0914 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
2010/11/15 19:24:42.0961 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
2010/11/15 19:24:43.0070 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2010/11/15 19:24:43.0132 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
2010/11/15 19:24:43.0179 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
2010/11/15 19:24:43.0226 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
2010/11/15 19:24:43.0320 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
2010/11/15 19:24:43.0351 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
2010/11/15 19:24:43.0398 sffp_sd (a0708bbd07d245c06ff9de549ca47185) C:\Windows\system32\DRIVERS\sffp_sd.sys
2010/11/15 19:24:43.0444 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
2010/11/15 19:24:43.0522 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
2010/11/15 19:24:43.0569 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2010/11/15 19:24:43.0616 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
2010/11/15 19:24:43.0647 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
2010/11/15 19:24:43.0725 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) C:\Windows\system32\speedfan.sys
2010/11/15 19:24:43.0756 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
2010/11/15 19:24:43.0850 srv (2dbedfb1853f06110ec2aa7f3213c89f) C:\Windows\system32\DRIVERS\srv.sys
2010/11/15 19:24:43.0897 srv2 (db37131d1027c50ea7ee21c8bb4536aa) C:\Windows\system32\DRIVERS\srv2.sys
2010/11/15 19:24:43.0944 srvnet (f5980b74124db9233b33f86fc5ebbb4f) C:\Windows\system32\DRIVERS\srvnet.sys
2010/11/15 19:24:44.0022 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
2010/11/15 19:24:44.0100 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
2010/11/15 19:24:44.0162 STHDA (5af135b2e2097d4494b9067ce84e2665) C:\Windows\system32\drivers\stwrt.sys
2010/11/15 19:24:44.0224 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
2010/11/15 19:24:44.0271 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
2010/11/15 19:24:44.0318 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
2010/11/15 19:24:44.0396 SynTP (21470bf105b96ded47e99e1ee7495e8f) C:\Windows\system32\DRIVERS\SynTP.sys
2010/11/15 19:24:44.0474 tap0901 (8348170623efa63e8e9a8d234b5d350f) C:\Windows\system32\DRIVERS\tap0901.sys
2010/11/15 19:24:44.0536 tapoas (827c8058c284ff0013e4462efe2591a3) C:\Windows\system32\DRIVERS\tapoas.sys
2010/11/15 19:24:44.0630 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
2010/11/15 19:24:44.0724 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
2010/11/15 19:24:44.0817 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
2010/11/15 19:24:44.0880 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
2010/11/15 19:24:44.0926 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
2010/11/15 19:24:44.0973 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
2010/11/15 19:24:45.0020 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
2010/11/15 19:24:45.0145 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
2010/11/15 19:24:45.0254 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys
2010/11/15 19:24:45.0332 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
 

theluckyman

Posts: 13   +0
2010/11/15 19:24:25.0863 TDSS rootkit removing tool 2.4.7.0 Nov 8 2010 10:52:22
2010/11/15 19:24:25.0863 ================================================================================
2010/11/15 19:24:25.0863 SystemInfo:
2010/11/15 19:24:25.0863
2010/11/15 19:24:25.0863 OS Version: 6.1.7600 ServicePack: 0.0
2010/11/15 19:24:25.0863 Product type: Workstation
2010/11/15 19:24:25.0863 ComputerName: LUCKYMANLAPTOP
2010/11/15 19:24:25.0879 UserName: theluckyman
2010/11/15 19:24:25.0879 Windows directory: C:\Windows
2010/11/15 19:24:25.0879 System windows directory: C:\Windows
2010/11/15 19:24:25.0879 Processor architecture: Intel x86
2010/11/15 19:24:25.0879 Number of processors: 2
2010/11/15 19:24:25.0879 Page size: 0x1000
2010/11/15 19:24:25.0879 Boot type: Normal boot
2010/11/15 19:24:25.0879 ================================================================================
2010/11/15 19:24:26.0877 Initialize success
2010/11/15 19:24:29.0935 ================================================================================
2010/11/15 19:24:29.0935 Scan started
2010/11/15 19:24:29.0935 Mode: Manual;
2010/11/15 19:24:29.0935 ================================================================================
2010/11/15 19:24:31.0417 02558312 (a305fad3719c5db0c13d1c2bfd08a04d) C:\Windows\system32\DRIVERS\02558312.sys
2010/11/15 19:24:31.0463 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
2010/11/15 19:24:31.0510 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
2010/11/15 19:24:31.0541 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
2010/11/15 19:24:31.0573 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
2010/11/15 19:24:31.0619 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
2010/11/15 19:24:31.0666 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
2010/11/15 19:24:31.0729 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
2010/11/15 19:24:31.0807 AgereSoftModem (07758c2196a62f207f77556311e7459a) C:\Windows\system32\DRIVERS\AGRSM.sys
2010/11/15 19:24:31.0885 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
2010/11/15 19:24:31.0900 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
2010/11/15 19:24:31.0963 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
2010/11/15 19:24:31.0994 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
2010/11/15 19:24:32.0025 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
2010/11/15 19:24:32.0072 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
2010/11/15 19:24:32.0103 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
2010/11/15 19:24:32.0134 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
2010/11/15 19:24:32.0150 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
2010/11/15 19:24:32.0197 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
2010/11/15 19:24:32.0275 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
2010/11/15 19:24:32.0321 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
2010/11/15 19:24:32.0353 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
2010/11/15 19:24:32.0431 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
2010/11/15 19:24:32.0446 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
2010/11/15 19:24:32.0524 AtiHDAudioService (7b4342936a3885cfe18e5d1df6d55bc5) C:\Windows\system32\drivers\AtihdW73.sys
2010/11/15 19:24:32.0571 AtiHdmiService (8df873d0587596c1d35a9cececc61da1) C:\Windows\system32\drivers\AtiHdmi.sys
2010/11/15 19:24:32.0758 atikmdag (194a2261dad9b766b1b7333a5dc26999) C:\Windows\system32\DRIVERS\atikmdag.sys
2010/11/15 19:24:33.0039 avipbb (f8c56231ed5ecf7d1b46b0330880ccef) C:\Windows\system32\DRIVERS\avipbb.sys
2010/11/15 19:24:33.0148 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
2010/11/15 19:24:33.0367 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
2010/11/15 19:24:33.0429 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
2010/11/15 19:24:33.0460 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
2010/11/15 19:24:33.0491 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
2010/11/15 19:24:33.0523 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2010/11/15 19:24:33.0554 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2010/11/15 19:24:33.0601 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
2010/11/15 19:24:33.0647 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
2010/11/15 19:24:33.0663 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
2010/11/15 19:24:33.0694 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
2010/11/15 19:24:33.0725 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
2010/11/15 19:24:33.0788 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
2010/11/15 19:24:33.0835 cdrbsdrv (9008ad94f28360a2f1409592bfc7acf7) C:\Windows\system32\drivers\cdrbsdrv.sys
2010/11/15 19:24:33.0881 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
2010/11/15 19:24:33.0913 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
2010/11/15 19:24:33.0959 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
2010/11/15 19:24:34.0006 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
2010/11/15 19:24:34.0037 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
2010/11/15 19:24:34.0084 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
2010/11/15 19:24:34.0115 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
2010/11/15 19:24:34.0147 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
2010/11/15 19:24:34.0225 cpuidlep (3a1dc7c08ae1af450ffd753a0fd82f9d) C:\Windows\system32\drivers\cpuidlep.sys
2010/11/15 19:24:34.0271 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
2010/11/15 19:24:34.0365 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
2010/11/15 19:24:34.0474 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
2010/11/15 19:24:34.0505 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
2010/11/15 19:24:34.0537 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
2010/11/15 19:24:34.0630 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
2010/11/15 19:24:34.0708 dvdfab (bd95b819d269e6cb20d25bb098131814) C:\Windows\system32\drivers\dvdfab.sys
2010/11/15 19:24:34.0771 dvdfabio (abc088341624f429819ea059b614edae) C:\Windows\system32\drivers\dvdfabio.sys
2010/11/15 19:24:34.0833 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys
2010/11/15 19:24:35.0020 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
2010/11/15 19:24:35.0176 ElbyCDIO (309ac30471a0f1c3a89dee1c81230576) C:\Windows\system32\Drivers\ElbyCDIO.sys
2010/11/15 19:24:35.0223 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
2010/11/15 19:24:35.0285 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
2010/11/15 19:24:35.0332 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
2010/11/15 19:24:35.0379 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
2010/11/15 19:24:35.0426 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
2010/11/15 19:24:35.0473 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
2010/11/15 19:24:35.0504 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
2010/11/15 19:24:35.0551 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
2010/11/15 19:24:35.0582 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
2010/11/15 19:24:35.0644 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
2010/11/15 19:24:35.0707 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
2010/11/15 19:24:35.0753 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
2010/11/15 19:24:35.0816 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
2010/11/15 19:24:35.0847 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
2010/11/15 19:24:35.0894 giveio (77ebf3e9386daa51551af429052d88d0) C:\Windows\system32\giveio.sys
2010/11/15 19:24:36.0019 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
2010/11/15 19:24:36.0081 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
2010/11/15 19:24:36.0128 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
2010/11/15 19:24:36.0159 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
2010/11/15 19:24:36.0206 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
2010/11/15 19:24:36.0237 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
2010/11/15 19:24:36.0284 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
2010/11/15 19:24:36.0346 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
2010/11/15 19:24:36.0393 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
2010/11/15 19:24:36.0440 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
2010/11/15 19:24:36.0471 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
2010/11/15 19:24:36.0518 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
2010/11/15 19:24:36.0596 IDMWFP (d3ab96e19b1374be8be7e44397421407) C:\Windows\system32\DRIVERS\idmwfp.sys
2010/11/15 19:24:36.0643 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
2010/11/15 19:24:36.0736 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
2010/11/15 19:24:36.0767 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
2010/11/15 19:24:36.0814 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2010/11/15 19:24:36.0845 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
2010/11/15 19:24:36.0892 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
2010/11/15 19:24:36.0923 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
2010/11/15 19:24:36.0970 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
2010/11/15 19:24:37.0001 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
2010/11/15 19:24:37.0048 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
2010/11/15 19:24:37.0079 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
2010/11/15 19:24:37.0251 KProcessHacker (b08f83df42fadc3d688d25f9725f3aa9) C:\Users\theluckyman\desktop\Tool Systems\Process Hacker\kprocesshacker.sys
2010/11/15 19:24:37.0360 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
2010/11/15 19:24:37.0407 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
2010/11/15 19:24:37.0532 Lavasoft Kernexplorer (0bd6d3f477df86420de942a741dabe37) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
2010/11/15 19:24:37.0641 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
2010/11/15 19:24:37.0750 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
2010/11/15 19:24:37.0781 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
2010/11/15 19:24:37.0813 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2010/11/15 19:24:37.0859 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2010/11/15 19:24:37.0906 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
2010/11/15 19:24:37.0953 MBAMProtector (67b48a903430c6d4fb58cbaca1866601) C:\Windows\system32\drivers\mbam.sys
2010/11/15 19:24:38.0031 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
2010/11/15 19:24:38.0062 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
2010/11/15 19:24:38.0125 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
2010/11/15 19:24:38.0156 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
2010/11/15 19:24:38.0187 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
2010/11/15 19:24:38.0234 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
2010/11/15 19:24:38.0281 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
2010/11/15 19:24:38.0312 MpFilter (7e34bfa1a7b60bba1da03d677f16cd63) C:\Windows\system32\DRIVERS\MpFilter.sys
2010/11/15 19:24:38.0359 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
2010/11/15 19:24:38.0405 MpNWMon (f32e2d6a1640a469a9ed4f1929a4a861) C:\Windows\system32\DRIVERS\MpNWMon.sys
2010/11/15 19:24:38.0452 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
2010/11/15 19:24:38.0499 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
2010/11/15 19:24:38.0546 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys
2010/11/15 19:24:38.0577 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2010/11/15 19:24:38.0624 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2010/11/15 19:24:38.0671 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
2010/11/15 19:24:38.0702 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
2010/11/15 19:24:38.0764 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
2010/11/15 19:24:38.0811 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
2010/11/15 19:24:38.0827 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
2010/11/15 19:24:38.0889 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
2010/11/15 19:24:38.0951 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
2010/11/15 19:24:38.0998 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
2010/11/15 19:24:39.0045 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
2010/11/15 19:24:39.0107 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
2010/11/15 19:24:39.0170 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
2010/11/15 19:24:39.0201 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
2010/11/15 19:24:39.0263 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
2010/11/15 19:24:39.0341 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
2010/11/15 19:24:39.0419 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
2010/11/15 19:24:39.0529 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
2010/11/15 19:24:39.0575 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
2010/11/15 19:24:39.0622 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
2010/11/15 19:24:39.0653 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
2010/11/15 19:24:39.0700 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
2010/11/15 19:24:39.0731 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
2010/11/15 19:24:39.0778 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
2010/11/15 19:24:40.0028 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
2010/11/15 19:24:40.0090 NisDrv (17e2c08c5ecfbe94a7c67b1c275ee9d9) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
2010/11/15 19:24:40.0137 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
2010/11/15 19:24:40.0184 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
2010/11/15 19:24:40.0277 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
2010/11/15 19:24:40.0340 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
2010/11/15 19:24:40.0387 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
2010/11/15 19:24:40.0465 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
2010/11/15 19:24:40.0496 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
2010/11/15 19:24:40.0543 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
2010/11/15 19:24:40.0683 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
2010/11/15 19:24:40.0745 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
2010/11/15 19:24:40.0777 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
2010/11/15 19:24:40.0886 pbfilter (4dfe4cef1aeec1025380d7ebf40e8e2b) C:\Program Files\PeerBlock\pbfilter.sys
2010/11/15 19:24:40.0933 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
2010/11/15 19:24:40.0964 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
2010/11/15 19:24:41.0011 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
2010/11/15 19:24:41.0057 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
2010/11/15 19:24:41.0104 PCTCore (807ff1dd6e1bdf8e7d2062fca0daecaf) C:\Windows\system32\drivers\PCTCore.sys
2010/11/15 19:24:41.0151 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
2010/11/15 19:24:41.0198 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
2010/11/15 19:24:41.0354 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
2010/11/15 19:24:41.0416 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
2010/11/15 19:24:41.0479 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
2010/11/15 19:24:41.0557 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
2010/11/15 19:24:41.0635 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
2010/11/15 19:24:41.0681 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
2010/11/15 19:24:41.0713 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
2010/11/15 19:24:41.0759 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
2010/11/15 19:24:41.0806 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
2010/11/15 19:24:41.0853 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
2010/11/15 19:24:41.0884 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
2010/11/15 19:24:41.0931 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
2010/11/15 19:24:41.0978 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
2010/11/15 19:24:42.0009 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
2010/11/15 19:24:42.0087 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
2010/11/15 19:24:42.0118 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
2010/11/15 19:24:42.0165 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
2010/11/15 19:24:42.0212 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
2010/11/15 19:24:42.0259 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
2010/11/15 19:24:42.0352 Revoflt (b9bb8e2093c1615ad6ea55ad96214354) C:\Windows\system32\DRIVERS\revoflt.sys
2010/11/15 19:24:42.0430 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
2010/11/15 19:24:42.0493 RSUSBSTOR (f1ed9ffa59c369e72bc53a7631346f61) C:\Windows\system32\Drivers\RtsUStor.sys
2010/11/15 19:24:42.0555 RTL8167 (d5ede44ca85899e0478208c8413c1c31) C:\Windows\system32\DRIVERS\Rt86win7.sys
2010/11/15 19:24:42.0602 RTL8187B (949f74cb383a1d5da67aea9ccd4a8b87) C:\Windows\system32\DRIVERS\RTL8187B.sys
2010/11/15 19:24:42.0664 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
2010/11/15 19:24:42.0742 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
2010/11/15 19:24:42.0820 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
2010/11/15 19:24:42.0914 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
2010/11/15 19:24:42.0961 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
2010/11/15 19:24:43.0070 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2010/11/15 19:24:43.0132 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
2010/11/15 19:24:43.0179 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
2010/11/15 19:24:43.0226 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
2010/11/15 19:24:43.0320 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
2010/11/15 19:24:43.0351 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
2010/11/15 19:24:43.0398 sffp_sd (a0708bbd07d245c06ff9de549ca47185) C:\Windows\system32\DRIVERS\sffp_sd.sys
2010/11/15 19:24:43.0444 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
2010/11/15 19:24:43.0522 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
2010/11/15 19:24:43.0569 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2010/11/15 19:24:43.0616 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
2010/11/15 19:24:43.0647 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
2010/11/15 19:24:43.0725 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) C:\Windows\system32\speedfan.sys
2010/11/15 19:24:43.0756 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
2010/11/15 19:24:43.0850 srv (2dbedfb1853f06110ec2aa7f3213c89f) C:\Windows\system32\DRIVERS\srv.sys
2010/11/15 19:24:43.0897 srv2 (db37131d1027c50ea7ee21c8bb4536aa) C:\Windows\system32\DRIVERS\srv2.sys
2010/11/15 19:24:43.0944 srvnet (f5980b74124db9233b33f86fc5ebbb4f) C:\Windows\system32\DRIVERS\srvnet.sys
2010/11/15 19:24:44.0022 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
2010/11/15 19:24:44.0100 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
2010/11/15 19:24:44.0162 STHDA (5af135b2e2097d4494b9067ce84e2665) C:\Windows\system32\drivers\stwrt.sys
2010/11/15 19:24:44.0224 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
2010/11/15 19:24:44.0271 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
2010/11/15 19:24:44.0318 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
2010/11/15 19:24:44.0396 SynTP (21470bf105b96ded47e99e1ee7495e8f) C:\Windows\system32\DRIVERS\SynTP.sys
2010/11/15 19:24:44.0474 tap0901 (8348170623efa63e8e9a8d234b5d350f) C:\Windows\system32\DRIVERS\tap0901.sys
 

theluckyman

Posts: 13   +0
2010/11/15 19:24:44.0536 tapoas (827c8058c284ff0013e4462efe2591a3) C:\Windows\system32\DRIVERS\tapoas.sys
2010/11/15 19:24:44.0630 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
2010/11/15 19:24:44.0724 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
2010/11/15 19:24:44.0817 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
2010/11/15 19:24:44.0880 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
2010/11/15 19:24:44.0926 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
2010/11/15 19:24:44.0973 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
2010/11/15 19:24:45.0020 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
2010/11/15 19:24:45.0145 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
2010/11/15 19:24:45.0254 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys
2010/11/15 19:24:45.0332 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
2010/11/15 19:24:45.0379 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
2010/11/15 19:24:45.0426 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
2010/11/15 19:24:45.0504 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
2010/11/15 19:24:45.0550 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
2010/11/15 19:24:45.0597 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
2010/11/15 19:24:45.0691 UnlockerDriver5 (d0cb75386d9e89c864d808d64ec9160f) C:\Program Files\Unlocker\UnlockerDriver5.sys
2010/11/15 19:24:45.0800 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
2010/11/15 19:24:45.0847 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
2010/11/15 19:24:45.0878 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
2010/11/15 19:24:45.0925 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
2010/11/15 19:24:45.0972 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
2010/11/15 19:24:46.0018 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
2010/11/15 19:24:46.0081 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
2010/11/15 19:24:46.0112 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2010/11/15 19:24:46.0159 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
2010/11/15 19:24:46.0221 usbvideo (b5f6a992d996282b7fae7048e50af83a) C:\Windows\System32\Drivers\usbvideo.sys
2010/11/15 19:24:46.0330 VClone (94d73b62e458fb56c9ce60aa96d914f9) C:\Windows\system32\DRIVERS\VClone.sys
2010/11/15 19:24:46.0362 vdrive (fdb40e38196d5878a2f03ff4d4f480f1) C:\Windows\system32\DRIVERS\vdrive.sys
2010/11/15 19:24:46.0424 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
2010/11/15 19:24:46.0486 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
2010/11/15 19:24:46.0518 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
2010/11/15 19:24:46.0580 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
2010/11/15 19:24:46.0611 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
2010/11/15 19:24:46.0674 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
2010/11/15 19:24:46.0720 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
2010/11/15 19:24:46.0783 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
2010/11/15 19:24:46.0830 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
2010/11/15 19:24:46.0876 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
2010/11/15 19:24:46.0923 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
2010/11/15 19:24:46.0986 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
2010/11/15 19:24:47.0032 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
2010/11/15 19:24:47.0095 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
2010/11/15 19:24:47.0126 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
2010/11/15 19:24:47.0204 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
2010/11/15 19:24:47.0235 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/11/15 19:24:47.0266 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/11/15 19:24:47.0391 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
2010/11/15 19:24:47.0422 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
2010/11/15 19:24:47.0563 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
2010/11/15 19:24:47.0610 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
2010/11/15 19:24:47.0781 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
2010/11/15 19:24:47.0859 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2010/11/15 19:24:47.0968 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
2010/11/15 19:24:48.0078 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
2010/11/15 19:24:48.0124 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
2010/11/15 19:24:48.0265 ================================================================================
2010/11/15 19:24:48.0265 Scan finished
2010/11/15 19:24:48.0265 ================================================================================
2010/11/15 19:25:14.0052 ================================================================================
2010/11/15 19:25:14.0052 Scan started
2010/11/15 19:25:14.0052 Mode: Manual;
2010/11/15 19:25:14.0052 ================================================================================
2010/11/15 19:25:14.0520 02558312 (a305fad3719c5db0c13d1c2bfd08a04d) C:\Windows\system32\DRIVERS\02558312.sys
2010/11/15 19:25:14.0582 1394ohci (6d2aca41739bfe8cb86ee8e85f29697d) C:\Windows\system32\DRIVERS\1394ohci.sys
2010/11/15 19:25:14.0613 ACPI (f0e07d144c8685b8774bc32fc8da4df0) C:\Windows\system32\DRIVERS\ACPI.sys
2010/11/15 19:25:14.0644 AcpiPmi (98d81ca942d19f7d9153b095162ac013) C:\Windows\system32\DRIVERS\acpipmi.sys
2010/11/15 19:25:14.0676 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
2010/11/15 19:25:14.0722 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
2010/11/15 19:25:14.0738 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
2010/11/15 19:25:14.0800 AFD (ddc040fdb01ef1712a6b13e52afb104c) C:\Windows\system32\drivers\afd.sys
2010/11/15 19:25:14.0910 AgereSoftModem (07758c2196a62f207f77556311e7459a) C:\Windows\system32\DRIVERS\AGRSM.sys
2010/11/15 19:25:14.0988 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\DRIVERS\agp440.sys
2010/11/15 19:25:15.0019 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
2010/11/15 19:25:15.0066 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\DRIVERS\aliide.sys
2010/11/15 19:25:15.0112 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\DRIVERS\amdagp.sys
2010/11/15 19:25:15.0144 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\DRIVERS\amdide.sys
2010/11/15 19:25:15.0175 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
2010/11/15 19:25:15.0222 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
2010/11/15 19:25:15.0253 amdsata (2101a86c25c154f8314b24ef49d7fbc2) C:\Windows\system32\DRIVERS\amdsata.sys
2010/11/15 19:25:15.0284 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
2010/11/15 19:25:15.0315 amdxata (b81c2b5616f6420a9941ea093a92b150) C:\Windows\system32\DRIVERS\amdxata.sys
2010/11/15 19:25:15.0378 AppID (feb834c02ce1e84b6a38f953ca067706) C:\Windows\system32\drivers\appid.sys
2010/11/15 19:25:15.0440 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
2010/11/15 19:25:15.0487 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
2010/11/15 19:25:15.0549 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
2010/11/15 19:25:15.0580 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\DRIVERS\atapi.sys
2010/11/15 19:25:15.0643 AtiHDAudioService (7b4342936a3885cfe18e5d1df6d55bc5) C:\Windows\system32\drivers\AtihdW73.sys
2010/11/15 19:25:15.0690 AtiHdmiService (8df873d0587596c1d35a9cececc61da1) C:\Windows\system32\drivers\AtiHdmi.sys
2010/11/15 19:25:15.0861 atikmdag (194a2261dad9b766b1b7333a5dc26999) C:\Windows\system32\DRIVERS\atikmdag.sys
2010/11/15 19:25:15.0955 avipbb (f8c56231ed5ecf7d1b46b0330880ccef) C:\Windows\system32\DRIVERS\avipbb.sys
2010/11/15 19:25:16.0017 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
2010/11/15 19:25:16.0048 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
2010/11/15 19:25:16.0095 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
2010/11/15 19:25:16.0126 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
2010/11/15 19:25:16.0173 bowser (fcafaef6798d7b51ff029f99a9898961) C:\Windows\system32\DRIVERS\bowser.sys
2010/11/15 19:25:16.0204 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2010/11/15 19:25:16.0236 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2010/11/15 19:25:16.0282 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
2010/11/15 19:25:16.0329 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
2010/11/15 19:25:16.0345 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
2010/11/15 19:25:16.0376 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
2010/11/15 19:25:16.0407 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
2010/11/15 19:25:16.0454 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
2010/11/15 19:25:16.0501 cdrbsdrv (9008ad94f28360a2f1409592bfc7acf7) C:\Windows\system32\drivers\cdrbsdrv.sys
2010/11/15 19:25:16.0548 cdrom (ba6e70aa0e6091bc39de29477d866a77) C:\Windows\system32\DRIVERS\cdrom.sys
2010/11/15 19:25:16.0579 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
2010/11/15 19:25:16.0626 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
2010/11/15 19:25:16.0672 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
2010/11/15 19:25:16.0704 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\DRIVERS\cmdide.sys
2010/11/15 19:25:16.0750 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
2010/11/15 19:25:16.0782 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
2010/11/15 19:25:16.0813 CompositeBus (f1724ba27e97d627f808fb0ba77a28a6) C:\Windows\system32\DRIVERS\CompositeBus.sys
2010/11/15 19:25:16.0860 cpuidlep (3a1dc7c08ae1af450ffd753a0fd82f9d) C:\Windows\system32\drivers\cpuidlep.sys
2010/11/15 19:25:16.0906 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
2010/11/15 19:25:16.0969 CSC (27c9490bdd0ae48911ab8cf1932591ed) C:\Windows\system32\drivers\csc.sys
2010/11/15 19:25:17.0031 DfsC (8e09e52ee2e3ceb199ef3dd99cf9e3fb) C:\Windows\system32\Drivers\dfsc.sys
2010/11/15 19:25:17.0062 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
2010/11/15 19:25:17.0094 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
2010/11/15 19:25:17.0172 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
2010/11/15 19:25:17.0218 dvdfab (bd95b819d269e6cb20d25bb098131814) C:\Windows\system32\drivers\dvdfab.sys
2010/11/15 19:25:17.0265 dvdfabio (abc088341624f429819ea059b614edae) C:\Windows\system32\drivers\dvdfabio.sys
2010/11/15 19:25:17.0328 DXGKrnl (8b6c3464d7fac176500061dbfff42ad4) C:\Windows\System32\drivers\dxgkrnl.sys
2010/11/15 19:25:17.0499 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
2010/11/15 19:25:17.0624 ElbyCDIO (309ac30471a0f1c3a89dee1c81230576) C:\Windows\system32\Drivers\ElbyCDIO.sys
2010/11/15 19:25:17.0686 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
2010/11/15 19:25:17.0733 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\DRIVERS\errdev.sys
2010/11/15 19:25:17.0796 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
2010/11/15 19:25:17.0827 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
2010/11/15 19:25:17.0874 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
2010/11/15 19:25:17.0920 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
2010/11/15 19:25:17.0952 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
2010/11/15 19:25:17.0998 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
2010/11/15 19:25:18.0030 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
2010/11/15 19:25:18.0092 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
2010/11/15 19:25:18.0139 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
2010/11/15 19:25:18.0186 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
2010/11/15 19:25:18.0232 fvevol (dafbd9fe39197495aed6d51f3b85b5d2) C:\Windows\system32\DRIVERS\fvevol.sys
2010/11/15 19:25:18.0264 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
2010/11/15 19:25:18.0295 giveio (77ebf3e9386daa51551af429052d88d0) C:\Windows\system32\giveio.sys
2010/11/15 19:25:18.0357 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
2010/11/15 19:25:18.0420 HdAudAddService (3530cad25deba7dc7de8bb51632cbc5f) C:\Windows\system32\drivers\HdAudio.sys
2010/11/15 19:25:18.0451 HDAudBus (717a2207fd6f13ad3e664c7d5a43c7bf) C:\Windows\system32\DRIVERS\HDAudBus.sys
2010/11/15 19:25:18.0482 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
2010/11/15 19:25:18.0529 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
2010/11/15 19:25:18.0576 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
2010/11/15 19:25:18.0622 HidUsb (25072fb35ac90b25f9e4e3bacf774102) C:\Windows\system32\DRIVERS\hidusb.sys
2010/11/15 19:25:18.0685 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\DRIVERS\HpSAMD.sys
2010/11/15 19:25:18.0732 HTTP (c531c7fd9e8b62021112787c4e2c5a5a) C:\Windows\system32\drivers\HTTP.sys
2010/11/15 19:25:18.0778 hwpolicy (8305f33cde89ad6c7a0763ed0b5a8d42) C:\Windows\system32\drivers\hwpolicy.sys
2010/11/15 19:25:18.0810 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\DRIVERS\i8042prt.sys
2010/11/15 19:25:18.0856 iaStorV (934af4d7c5f457b9f0743f4299b77b67) C:\Windows\system32\DRIVERS\iaStorV.sys
2010/11/15 19:25:18.0919 IDMWFP (d3ab96e19b1374be8be7e44397421407) C:\Windows\system32\DRIVERS\idmwfp.sys
2010/11/15 19:25:18.0966 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
2010/11/15 19:25:19.0044 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\DRIVERS\intelide.sys
2010/11/15 19:25:19.0075 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
2010/11/15 19:25:19.0122 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2010/11/15 19:25:19.0153 IPMIDRV (e4454b6c37d7ffd5649611f6496308a7) C:\Windows\system32\DRIVERS\IPMIDrv.sys
2010/11/15 19:25:19.0200 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
2010/11/15 19:25:19.0231 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
2010/11/15 19:25:19.0278 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\DRIVERS\isapnp.sys
2010/11/15 19:25:19.0324 iScsiPrt (ed46c223ae46c6866ab77cdc41c404b7) C:\Windows\system32\DRIVERS\msiscsi.sys
2010/11/15 19:25:19.0356 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
2010/11/15 19:25:19.0402 kbdhid (3d9f0ebf350edcfd6498057301455964) C:\Windows\system32\DRIVERS\kbdhid.sys
2010/11/15 19:25:19.0543 KProcessHacker (b08f83df42fadc3d688d25f9725f3aa9) C:\Users\theluckyman\desktop\Tool Systems\Process Hacker\kprocesshacker.sys
2010/11/15 19:25:19.0590 KSecDD (e36a061ec11b373826905b21be10948f) C:\Windows\system32\Drivers\ksecdd.sys
2010/11/15 19:25:19.0652 KSecPkg (365c6154bbbc5377173f1ca7bfb6cc59) C:\Windows\system32\Drivers\ksecpkg.sys
2010/11/15 19:25:19.0746 Lavasoft Kernexplorer (0bd6d3f477df86420de942a741dabe37) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
2010/11/15 19:25:19.0792 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
2010/11/15 19:25:19.0870 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
2010/11/15 19:25:19.0902 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
2010/11/15 19:25:19.0948 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2010/11/15 19:25:19.0995 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2010/11/15 19:25:20.0042 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
2010/11/15 19:25:20.0073 MBAMProtector (67b48a903430c6d4fb58cbaca1866601) C:\Windows\system32\drivers\mbam.sys
2010/11/15 19:25:20.0136 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
2010/11/15 19:25:20.0167 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
2010/11/15 19:25:20.0229 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
2010/11/15 19:25:20.0260 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
2010/11/15 19:25:20.0292 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
2010/11/15 19:25:20.0338 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
2010/11/15 19:25:20.0370 mountmgr (921c18727c5920d6c0300736646931c2) C:\Windows\system32\drivers\mountmgr.sys
2010/11/15 19:25:20.0416 MpFilter (7e34bfa1a7b60bba1da03d677f16cd63) C:\Windows\system32\DRIVERS\MpFilter.sys
2010/11/15 19:25:20.0463 mpio (2af5997438c55fb79d33d015c30e1974) C:\Windows\system32\DRIVERS\mpio.sys
2010/11/15 19:25:20.0494 MpNWMon (f32e2d6a1640a469a9ed4f1929a4a861) C:\Windows\system32\DRIVERS\MpNWMon.sys
2010/11/15 19:25:20.0541 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
2010/11/15 19:25:20.0588 MRxDAV (b1be47008d20e43da3adc37c24cdb89d) C:\Windows\system32\drivers\mrxdav.sys
2010/11/15 19:25:20.0635 mrxsmb (f1b6aa08497ea86ca6ef6f7a08b0bfb8) C:\Windows\system32\DRIVERS\mrxsmb.sys
2010/11/15 19:25:20.0682 mrxsmb10 (5613358b4050f46f5a9832da8050d6e4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2010/11/15 19:25:20.0728 mrxsmb20 (25c9792778d80feb4c8201e62281bfdf) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2010/11/15 19:25:20.0775 msahci (4326d168944123f38dd3b2d9c37a0b12) C:\Windows\system32\DRIVERS\msahci.sys
2010/11/15 19:25:20.0806 msdsm (455029c7174a2dbb03dba8a0d8bddd9a) C:\Windows\system32\DRIVERS\msdsm.sys
2010/11/15 19:25:20.0869 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
2010/11/15 19:25:20.0931 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
2010/11/15 19:25:20.0962 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\DRIVERS\msisadrv.sys
2010/11/15 19:25:21.0009 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
 

theluckyman

Posts: 13   +0
2010/11/15 19:25:21.0072 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
2010/11/15 19:25:21.0087 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
2010/11/15 19:25:21.0150 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
2010/11/15 19:25:21.0196 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\DRIVERS\mssmbios.sys
2010/11/15 19:25:21.0228 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
2010/11/15 19:25:21.0259 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
2010/11/15 19:25:21.0290 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
2010/11/15 19:25:21.0352 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
2010/11/15 19:25:21.0399 NDIS (23759d175a0a9baaf04d05047bc135a8) C:\Windows\system32\drivers\ndis.sys
2010/11/15 19:25:21.0446 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
2010/11/15 19:25:21.0493 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
2010/11/15 19:25:21.0524 Ndisuio (b30ae7f2b6d7e343b0df32e6c08fce75) C:\Windows\system32\DRIVERS\ndisuio.sys
2010/11/15 19:25:21.0555 NdisWan (267c415eadcbe53c9ca873dee39cf3a4) C:\Windows\system32\DRIVERS\ndiswan.sys
2010/11/15 19:25:21.0602 NDProxy (af7e7c63dcef3f8772726f86039d6eb4) C:\Windows\system32\drivers\NDProxy.sys
2010/11/15 19:25:21.0618 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
2010/11/15 19:25:21.0680 NetBT (dd52a733bf4ca5af84562a5e2f963b91) C:\Windows\system32\DRIVERS\netbt.sys
2010/11/15 19:25:21.0774 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
2010/11/15 19:25:21.0836 NisDrv (17e2c08c5ecfbe94a7c67b1c275ee9d9) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
2010/11/15 19:25:21.0867 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
2010/11/15 19:25:21.0914 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
2010/11/15 19:25:21.0992 Ntfs (3795dcd21f740ee799fb7223234215af) C:\Windows\system32\drivers\Ntfs.sys
2010/11/15 19:25:22.0039 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
2010/11/15 19:25:22.0086 nvraid (3f3d04b1d08d43c16ea7963954ec768d) C:\Windows\system32\DRIVERS\nvraid.sys
2010/11/15 19:25:22.0132 nvstor (c99f251a5de63c6f129cf71933aced0f) C:\Windows\system32\DRIVERS\nvstor.sys
2010/11/15 19:25:22.0164 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\DRIVERS\nv_agp.sys
2010/11/15 19:25:22.0210 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\DRIVERS\ohci1394.sys
2010/11/15 19:25:22.0288 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
2010/11/15 19:25:22.0320 partmgr (ff4218952b51de44fe910953a3e686b9) C:\Windows\system32\drivers\partmgr.sys
2010/11/15 19:25:22.0366 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
2010/11/15 19:25:22.0444 pbfilter (4dfe4cef1aeec1025380d7ebf40e8e2b) C:\Program Files\PeerBlock\pbfilter.sys
2010/11/15 19:25:22.0522 pci (c858cb77c577780ecc456a892e7e7d0f) C:\Windows\system32\DRIVERS\pci.sys
2010/11/15 19:25:22.0554 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\DRIVERS\pciide.sys
2010/11/15 19:25:22.0616 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
2010/11/15 19:25:22.0663 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
2010/11/15 19:25:22.0710 PCTCore (807ff1dd6e1bdf8e7d2062fca0daecaf) C:\Windows\system32\drivers\PCTCore.sys
2010/11/15 19:25:22.0741 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
2010/11/15 19:25:22.0788 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
2010/11/15 19:25:22.0959 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
2010/11/15 19:25:23.0006 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
2010/11/15 19:25:23.0068 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
2010/11/15 19:25:23.0146 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
2010/11/15 19:25:23.0240 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
2010/11/15 19:25:23.0287 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
2010/11/15 19:25:23.0334 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
2010/11/15 19:25:23.0396 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
2010/11/15 19:25:23.0427 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
2010/11/15 19:25:23.0474 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
2010/11/15 19:25:23.0505 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
2010/11/15 19:25:23.0552 rdbss (835d7e81bf517a3b72384bdcc85e1ce6) C:\Windows\system32\DRIVERS\rdbss.sys
2010/11/15 19:25:23.0599 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
2010/11/15 19:25:23.0630 RDPCDD (1e016846895b15a99f9a176a05029075) C:\Windows\system32\DRIVERS\RDPCDD.sys
2010/11/15 19:25:23.0692 RDPDR (c5ff95883ffef704d50c40d21cfb3ab5) C:\Windows\system32\drivers\rdpdr.sys
2010/11/15 19:25:23.0724 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
2010/11/15 19:25:23.0770 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
2010/11/15 19:25:23.0817 RDPWD (801371ba9782282892d00aadb08ee367) C:\Windows\system32\drivers\RDPWD.sys
2010/11/15 19:25:23.0864 rdyboost (4ea225bf1cf05e158853f30a99ca29a7) C:\Windows\system32\drivers\rdyboost.sys
2010/11/15 19:25:23.0942 Revoflt (b9bb8e2093c1615ad6ea55ad96214354) C:\Windows\system32\DRIVERS\revoflt.sys
2010/11/15 19:25:24.0020 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
2010/11/15 19:25:24.0082 RSUSBSTOR (f1ed9ffa59c369e72bc53a7631346f61) C:\Windows\system32\Drivers\RtsUStor.sys
2010/11/15 19:25:24.0145 RTL8167 (d5ede44ca85899e0478208c8413c1c31) C:\Windows\system32\DRIVERS\Rt86win7.sys
2010/11/15 19:25:24.0192 RTL8187B (949f74cb383a1d5da67aea9ccd4a8b87) C:\Windows\system32\DRIVERS\RTL8187B.sys
2010/11/15 19:25:24.0238 s3cap (5423d8437051e89dd34749f242c98648) C:\Windows\system32\DRIVERS\vms3cap.sys
2010/11/15 19:25:24.0332 SASDIFSV (a3281aec37e0720a2bc28034c2df2a56) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
2010/11/15 19:25:24.0379 SASKUTIL (61db0d0756a99506207fd724e3692b25) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
2010/11/15 19:25:24.0472 sbp2port (34ee0c44b724e3e4ce2eff29126de5b5) C:\Windows\system32\DRIVERS\sbp2port.sys
2010/11/15 19:25:24.0519 scfilter (a95c54b2ac3cc9c73fcdf9e51a1d6b51) C:\Windows\system32\DRIVERS\scfilter.sys
2010/11/15 19:25:24.0613 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2010/11/15 19:25:24.0675 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
2010/11/15 19:25:24.0722 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
2010/11/15 19:25:24.0753 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
2010/11/15 19:25:24.0925 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
2010/11/15 19:25:24.0972 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\DRIVERS\sffp_mmc.sys
2010/11/15 19:25:25.0018 sffp_sd (a0708bbd07d245c06ff9de549ca47185) C:\Windows\system32\DRIVERS\sffp_sd.sys
2010/11/15 19:25:25.0081 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
2010/11/15 19:25:25.0143 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\DRIVERS\sisagp.sys
2010/11/15 19:25:25.0174 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2010/11/15 19:25:25.0221 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
2010/11/15 19:25:25.0252 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
2010/11/15 19:25:25.0330 speedfan (5d6401db90ec81b71f8e2c5c8f0fef23) C:\Windows\system32\speedfan.sys
2010/11/15 19:25:25.0362 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
2010/11/15 19:25:25.0455 srv (2dbedfb1853f06110ec2aa7f3213c89f) C:\Windows\system32\DRIVERS\srv.sys
2010/11/15 19:25:25.0502 srv2 (db37131d1027c50ea7ee21c8bb4536aa) C:\Windows\system32\DRIVERS\srv2.sys
2010/11/15 19:25:25.0533 srvnet (f5980b74124db9233b33f86fc5ebbb4f) C:\Windows\system32\DRIVERS\srvnet.sys
2010/11/15 19:25:25.0596 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\Windows\system32\DRIVERS\ssmdrv.sys
2010/11/15 19:25:25.0674 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
2010/11/15 19:25:25.0736 STHDA (5af135b2e2097d4494b9067ce84e2665) C:\Windows\system32\drivers\stwrt.sys
2010/11/15 19:25:25.0798 storflt (957e346ca948668f2496a6ccf6ff82cc) C:\Windows\system32\DRIVERS\vmstorfl.sys
2010/11/15 19:25:25.0845 storvsc (d5751969dc3e4b88bf482ac8ec9fe019) C:\Windows\system32\DRIVERS\storvsc.sys
2010/11/15 19:25:25.0892 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\DRIVERS\swenum.sys
2010/11/15 19:25:25.0986 SynTP (21470bf105b96ded47e99e1ee7495e8f) C:\Windows\system32\DRIVERS\SynTP.sys
2010/11/15 19:25:26.0048 tap0901 (8348170623efa63e8e9a8d234b5d350f) C:\Windows\system32\DRIVERS\tap0901.sys
2010/11/15 19:25:26.0126 tapoas (827c8058c284ff0013e4462efe2591a3) C:\Windows\system32\DRIVERS\tapoas.sys
2010/11/15 19:25:26.0220 Tcpip (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\drivers\tcpip.sys
2010/11/15 19:25:26.0298 TCPIP6 (bb7f39c31c4a4417fd318e7cd184e225) C:\Windows\system32\DRIVERS\tcpip.sys
2010/11/15 19:25:26.0360 tcpipreg (e64444523add154f86567c469bc0b17f) C:\Windows\system32\drivers\tcpipreg.sys
2010/11/15 19:25:26.0407 TDPIPE (1875c1490d99e70e449e3afae9fcbadf) C:\Windows\system32\drivers\tdpipe.sys
2010/11/15 19:25:26.0454 TDTCP (7551e91ea999ee9a8e9c331d5a9c31f3) C:\Windows\system32\drivers\tdtcp.sys
2010/11/15 19:25:26.0500 tdx (cb39e896a2a83702d1737bfd402b3542) C:\Windows\system32\DRIVERS\tdx.sys
2010/11/15 19:25:26.0547 TermDD (c36f41ee20e6999dbf4b0425963268a5) C:\Windows\system32\DRIVERS\termdd.sys
2010/11/15 19:25:26.0656 tssecsrv (98ae6fa07d12cb4ec5cf4a9bfa5f4242) C:\Windows\system32\DRIVERS\tssecsrv.sys
2010/11/15 19:25:26.0750 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2011\TuneUpUtilitiesDriver32.sys
2010/11/15 19:25:26.0781 tunnel (3e461d890a97f9d4c168f5fda36e1d00) C:\Windows\system32\DRIVERS\tunnel.sys
2010/11/15 19:25:26.0828 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
2010/11/15 19:25:26.0875 udfs (09cc3e16f8e5ee7168e01cf8fcbe061a) C:\Windows\system32\DRIVERS\udfs.sys
2010/11/15 19:25:26.0968 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\DRIVERS\uliagpkx.sys
2010/11/15 19:25:27.0015 umbus (049b3a50b3d646baeeee9eec9b0668dc) C:\Windows\system32\DRIVERS\umbus.sys
2010/11/15 19:25:27.0046 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
2010/11/15 19:25:27.0140 UnlockerDriver5 (d0cb75386d9e89c864d808d64ec9160f) C:\Program Files\Unlocker\UnlockerDriver5.sys
2010/11/15 19:25:27.0202 usbccgp (8455c4ed038efd09e99327f9d2d48ffa) C:\Windows\system32\DRIVERS\usbccgp.sys
2010/11/15 19:25:27.0249 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\DRIVERS\usbcir.sys
2010/11/15 19:25:27.0280 usbehci (1c333bfd60f2fed2c7ad5daf533cb742) C:\Windows\system32\DRIVERS\usbehci.sys
2010/11/15 19:25:27.0327 usbhub (ee6ef93ccfa94fae8c6ab298273d8ae2) C:\Windows\system32\DRIVERS\usbhub.sys
2010/11/15 19:25:27.0374 usbohci (a6fb7957ea7afb1165991e54ce934b74) C:\Windows\system32\DRIVERS\usbohci.sys
2010/11/15 19:25:27.0421 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
2010/11/15 19:25:27.0483 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
2010/11/15 19:25:27.0514 USBSTOR (d8889d56e0d27e57ed4591837fe71d27) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2010/11/15 19:25:27.0561 usbuhci (78780c3ebce17405b1ccd07a3a8a7d72) C:\Windows\system32\DRIVERS\usbuhci.sys
2010/11/15 19:25:27.0624 usbvideo (b5f6a992d996282b7fae7048e50af83a) C:\Windows\System32\Drivers\usbvideo.sys
2010/11/15 19:25:27.0717 VClone (94d73b62e458fb56c9ce60aa96d914f9) C:\Windows\system32\DRIVERS\VClone.sys
2010/11/15 19:25:27.0764 vdrive (fdb40e38196d5878a2f03ff4d4f480f1) C:\Windows\system32\DRIVERS\vdrive.sys
2010/11/15 19:25:27.0811 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\DRIVERS\vdrvroot.sys
2010/11/15 19:25:27.0873 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
2010/11/15 19:25:27.0920 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
2010/11/15 19:25:27.0967 vhdmp (3be6e1f3a4f1afec8cee0d7883f93583) C:\Windows\system32\DRIVERS\vhdmp.sys
2010/11/15 19:25:28.0014 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\DRIVERS\viaagp.sys
2010/11/15 19:25:28.0045 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
2010/11/15 19:25:28.0092 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\DRIVERS\viaide.sys
2010/11/15 19:25:28.0154 vmbus (379b349f65f453d2a6e75ea6b7448e49) C:\Windows\system32\DRIVERS\vmbus.sys
2010/11/15 19:25:28.0201 VMBusHID (ec2bbab4b84d0738c6c83d2234dc36fe) C:\Windows\system32\DRIVERS\VMBusHID.sys
2010/11/15 19:25:28.0248 volmgr (384e5a2aa49934295171e499f86ba6f3) C:\Windows\system32\DRIVERS\volmgr.sys
2010/11/15 19:25:28.0279 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
2010/11/15 19:25:28.0326 volsnap (58df9d2481a56edde167e51b334d44fd) C:\Windows\system32\DRIVERS\volsnap.sys
2010/11/15 19:25:28.0388 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
2010/11/15 19:25:28.0450 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
2010/11/15 19:25:28.0482 vwififlt (7090d3436eeb4e7da3373090a23448f7) C:\Windows\system32\DRIVERS\vwififlt.sys
2010/11/15 19:25:28.0560 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
2010/11/15 19:25:28.0591 WANARP (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/11/15 19:25:28.0622 Wanarpv6 (692a712062146e96d28ba0b7d75de31b) C:\Windows\system32\DRIVERS\wanarp.sys
2010/11/15 19:25:28.0747 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
2010/11/15 19:25:28.0778 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
2010/11/15 19:25:28.0918 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
2010/11/15 19:25:28.0981 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
2010/11/15 19:25:29.0152 WinUsb (30fc6e5448d0cbaaa95280eeef7fedae) C:\Windows\system32\DRIVERS\WinUsb.sys
2010/11/15 19:25:29.0230 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2010/11/15 19:25:29.0340 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
2010/11/15 19:25:29.0433 WudfPf (6f9b6c0c93232cff47d0f72d6db1d21e) C:\Windows\system32\drivers\WudfPf.sys
2010/11/15 19:25:29.0496 WUDFRd (f91ff1e51fca30b3c3981db7d5924252) C:\Windows\system32\DRIVERS\WUDFRd.sys
2010/11/15 19:25:29.0636 ================================================================================
2010/11/15 19:25:29.0636 Scan finished
2010/11/15 19:25:29.0636 ================================================================================
2010/11/15 19:26:13.0160 Deinitialize success
 

Broni

Posts: 55,873   +506
When you download Combofix, do you rename it before saving the file, as my instructions say?
 
Status
Not open for further replies.