Vista Antispyware 2012

View previous topic View next topic Go down

Vista Antispyware 2012

Post by svt1999f150 on Thu 22 Dec 2011, 12:56 pm

I have tried posting the rest of the logs, but when i hit the post/send button it says connection timed out. Does it in both firefox and ie. But i can search google etc...

Having problems with "vista antispyware 2012" pop ups, stating my pc is infected.

Logs:
OTL logfile created on: 12/21/2011 8:04:59 PM - Run 3
OTL by OldTimer - Version 3.2.14.1 Folder = C:\Users\Cafeteiro\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.19170)
Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy

3.00 Gb Total Physical Memory | 2.00 Gb Available Physical Memory | 80.00% Memory free
6.00 Gb Paging File | 6.00 Gb Available in Paging File | 93.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 361.82 Gb Total Space | 26.77 Gb Free Space | 7.40% Space Free | Partition Type: NTFS
Drive D: | 10.79 Gb Total Space | 3.17 Gb Free Space | 29.34% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: CAFETEIRO-PC
Current User Name: Cafeteiro
Logged in as Administrator.

Current Boot Mode: SafeMode with Networking
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

========== Processes (SafeList) ==========

PRC - [2011/11/05 01:53:18 | 000,924,632 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2011/11/05 01:53:18 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2010/09/29 21:21:40 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cafeteiro\Downloads\OTL.com
PRC - [2009/04/11 01:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe


========== Modules (SafeList) ==========

MOD - [2010/09/29 21:21:40 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Users\Cafeteiro\Downloads\OTL.com
MOD - [2010/08/31 10:43:52 | 001,686,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18305_none_5cb72f2a088b0ed3\comctl32.dll
MOD - [2008/01/19 02:33:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx


========== Win32 Services (SafeList) ==========

SRV - File not found [Auto | Stopped] -- C:\Program Files\Common Files\Roxio Shared\9.0\SharedCOM\RoxLiveShare9.exe -- (RoxLiveShare9)
SRV - [2011/06/06 11:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Stopped] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2011/04/26 15:23:02 | 000,223,088 | ---- | M] () [Auto | Stopped] -- C:\Program Files\Motorola\MotoHelper\MotoHelperService.exe -- (MotoHelper)
SRV - [2011/02/22 08:33:09 | 000,797,696 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2010/09/12 18:15:14 | 000,030,192 | ---- | M] (Google) [On_Demand | Stopped] -- C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe -- (GoogleDesktopManager-051210-111108)
SRV - [2010/08/23 20:21:40 | 000,013,672 | ---- | M] (Intuit Inc.) [Auto | Stopped] -- C:\Program Files\Common Files\Intuit\Update Service\IntuitUpdateService.exe -- (IntuitUpdateService)
SRV - [2010/03/18 12:16:28 | 000,753,504 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe -- (WPFFontCache_v0400)
SRV - [2010/03/18 12:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/08/05 16:07:27 | 000,185,089 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2009/06/09 20:40:25 | 000,108,289 | ---- | M] (Avira GmbH) [Auto | Stopped] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2008/04/24 13:26:18 | 000,202,560 | ---- | M] (SupportSoft, Inc.) [Auto | Stopped] -- C:\Program Files\Comcast\Desktop Doctor\bin\sprtsvc.exe -- (sprtsvc_ddoctorv2) SupportSoft Sprocket Service (ddoctorv2)
SRV - [2007/08/29 16:58:47 | 000,181,800 | ---- | M] (WildTangent, Inc.) [On_Demand | Stopped] -- C:\Program Files\Gateway Games\Gateway Game Console\GameConsoleService.exe -- (GameConsoleService)


========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\wsimd.sys -- (WSIMD)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\SymIM.sys -- (SymIMMP)
DRV - File not found [Kernel | System | Stopped] -- C:\Windows\System32\DRIVERS\serial.sys -- (Serial)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\Drivers\RimUsb.sys -- (RimUsb)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\motusbdevice.sys -- (motusbdevice)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\motswch.sys -- (MotoSwitchService)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\motmodem.sys -- (motmodem)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\motodrv.sys -- (MotDev)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\motccgpfl.sys -- (motccgpfl)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\motccgp.sys -- (motccgp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamswissarmy.sys -- (MBAMSwissArmy)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Windows\System32\DRIVERS\ipinip.sys -- (IpInIp)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\CAFETE~1\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive)
DRV - [2010/05/10 08:04:34 | 000,202,800 | ---- | M] (Jungo) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SCTDriverV1011.sys -- (SCTDriverV1011)
DRV - [2009/12/07 21:12:11 | 000,056,816 | ---- | M] (Avira GmbH) [File_System | Auto | Stopped] -- C:\Windows\System32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2009/09/30 11:29:04 | 000,016,896 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\BurnInTest\DirectIo.sys -- (DIRECTIO)
DRV - [2009/07/10 12:01:06 | 000,025,856 | ---- | M] (Motorola) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\motoandroid.sys -- (motandroidusb)
DRV - [2009/06/09 20:40:25 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2009/04/27 08:02:28 | 000,096,104 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Windows\System32\drivers\avipbb.sys -- (avipbb)
DRV - [2009/02/13 10:35:05 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Stopped] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008/06/20 00:04:00 | 007,468,128 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2008/01/19 00:53:31 | 000,045,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\61883.sys -- (61883)
DRV - [2008/01/19 00:53:31 | 000,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\avc.sys -- (Avc)
DRV - [2008/01/19 00:53:28 | 000,052,608 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msdv.sys -- (MSDV)
DRV - [2007/07/02 19:37:08 | 000,110,112 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\DRIVERS\nvstor32.sys -- (nvstor32)
DRV - [2007/04/23 20:13:22 | 001,769,952 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007/01/09 13:00:00 | 000,221,696 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\yk60x86.sys -- (yukonwlh)
DRV - [2006/11/08 18:55:10 | 000,986,624 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HSX_DPV.sys -- (HSF_DPV)
DRV - [2006/11/08 18:54:02 | 000,258,048 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HSXHWBS2.sys -- (HSXHWBS2)
DRV - [2006/11/08 18:53:48 | 000,659,968 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HSX_CNXT.sys -- (winachsf)
DRV - [2006/11/02 04:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006/11/02 04:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006/11/02 04:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006/11/02 04:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006/11/02 04:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006/11/02 04:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006/11/02 04:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006/11/02 04:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006/11/02 04:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006/11/02 04:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006/11/02 04:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006/11/02 04:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006/11/02 04:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006/11/02 04:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006/11/02 04:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006/11/02 04:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006/11/02 04:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006/11/02 04:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006/11/02 04:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006/11/02 04:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006/11/02 04:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006/11/02 04:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006/11/02 04:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006/11/02 04:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006/11/02 04:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006/11/02 04:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006/11/02 04:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006/11/02 04:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006/11/02 04:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006/11/02 04:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006/11/02 04:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006/11/02 04:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006/11/02 04:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006/11/02 04:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006/11/02 04:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006/11/02 03:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006/11/02 03:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006/11/02 03:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006/11/02 03:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006/11/02 03:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006/11/02 03:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006/11/02 02:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006/11/02 02:36:49 | 000,108,032 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ac97intc.sys -- (ac97intc) Intel(r) 82801 Audio Driver Install Service (WDM)
DRV - [2006/11/02 02:30:56 | 002,589,184 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NETw2v32.sys -- (NETw2v32) Intel(R)
DRV - [2006/11/02 02:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2006/11/02 02:30:53 | 000,045,056 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2006/09/24 22:44:12 | 001,037,088 | ---- | M] (D-Link) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ar5416.sys -- (AR5416)
DRV - [2006/08/04 20:39:10 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\XAudio.sys -- (XAudio)
DRV - [2006/05/18 09:49:02 | 000,061,067 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftser2k.sys -- (FTSER2K)
DRV - [2006/05/18 09:48:50 | 000,047,249 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ftdibus.sys -- (FTDIBUS)
DRV - [2005/06/24 16:36:16 | 000,039,036 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbmodem.sys -- (USBModem)
DRV - [2005/05/26 09:01:36 | 000,038,144 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbdiag.sys -- (UsbDiag)
DRV - [2005/05/26 09:01:18 | 000,021,344 | ---- | M] (LG Electronics Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lgusbbus.sys -- (usbbus)
DRV - [2002/06/23 06:20:24 | 000,032,256 | ---- | M] (Cypress Semiconductor) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TPPFX.SYS -- (TPPFX) USB Storage Adapter FX (TPP)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Restore = [You must be registered and logged in to see this link.]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========


FF - HKLM\software\mozilla\Firefox\Extensions\\{23fcfd51-4958-4f00-80a3-ae97e717ed8b}: C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2011/11/12 22:36:49 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 8.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/11/13 14:36:57 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 8.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/11/12 22:36:49 | 000,000,000 | ---D | M]

[2009/06/18 15:17:36 | 000,000,000 | ---D | M] -- C:\Users\Cafeteiro\AppData\Roaming\Mozilla\Extensions
[2009/06/18 15:17:36 | 000,000,000 | ---D | M] -- C:\Users\Cafeteiro\AppData\Roaming\Mozilla\Extensions\mozswing@mozswing.org
[2011/11/11 20:44:43 | 000,000,000 | ---D | M] -- C:\Users\Cafeteiro\AppData\Roaming\Mozilla\Firefox\Profiles\xpaiqrx3.default\extensions
[2009/09/02 14:49:38 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Users\Cafeteiro\AppData\Roaming\Mozilla\Firefox\Profiles\xpaiqrx3.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2011/07/27 19:48:09 | 000,002,296 | ---- | M] () -- C:\Users\Cafeteiro\AppData\Roaming\Mozilla\Firefox\Profiles\xpaiqrx3.default\searchplugins\bing-zugo.xml
[2011/11/13 14:36:57 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2011/11/05 01:53:18 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
[2008/01/07 19:45:16 | 000,054,600 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npbittorrent.dll
[2011/03/18 13:32:12 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npCouponPrinter.dll
[2011/02/02 21:40:24 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2011/03/18 13:32:14 | 000,091,552 | ---- | M] (Coupons, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npMozCouponPrinter.dll
[2011/11/04 22:21:03 | 000,002,252 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\bing.xml
[2011/11/04 22:21:03 | 000,002,040 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\twitter.xml

Hosts file not found
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5

svt1999f150

Rookie Surfer
Rookie Surfer

Posts : 51
Joined : 2009-01-11
Operating System : windows vista

View user profile

Back to top Go down

Re: Vista Antispyware 2012

Post by svt1999f150 on Thu 22 Dec 2011, 1:10 pm

its only when i paste the rest of the log.

Hosts file not found
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (DivX Plus Web Player HTML5

svt1999f150

Rookie Surfer
Rookie Surfer

Posts : 51
Joined : 2009-01-11
Operating System : windows vista

View user profile

Back to top Go down

Re: Vista Antispyware 2012

Post by svt1999f150 on Thu 22 Dec 2011, 3:21 pm

Results of screen317's Security Check version 0.99.3
Windows Vista Service Pack 2 (UAC is enabled)
Internet Explorer 8
``````````````````````````````
Antivirus/Firewall Check:

Windows Security Center service is not running! This report may not be accurate!
Avira AntiVir Personal - Free Antivirus
ESET Online Scanner v3
WMI entry may not exist for antivirus; attempting automatic update.
Avira successfully updated!
```````````````````````````````
Anti-malware/Other Utilities Check:

Malwarebytes' Anti-Malware
HijackThis 2.0.2
Java(TM) 6 Update 24
Out of date Java installed!
Adobe Flash Player 10
Adobe Reader X (10.1.1)
````````````````````````````````
Process Check:
objlist.exe by Laurent

Avira Antivir avguard.exe
````````````````````````````````
DNS Vulnerability Check:


``````````End of Log````````````

svt1999f150

Rookie Surfer
Rookie Surfer

Posts : 51
Joined : 2009-01-11
Operating System : windows vista

View user profile

Back to top Go down

Re: Vista Antispyware 2012

Post by svt1999f150 on Thu 22 Dec 2011, 4:01 pm

aswMBR version 0.9.9.1116 Copyright(c) 2011 AVAST Software
Run date: 2011-12-21 23:15:10
-----------------------------
23:15:10.095 OS Version: Windows 6.0.6002 Service Pack 2
23:15:10.095 Number of processors: 2 586 0x6B01
23:15:10.111 ComputerName: CAFETEIRO-PC UserName: Cafeteiro
23:15:14.682 Initialize success
23:15:24.853 AVAST engine defs: 11122102
23:15:29.627 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
23:15:29.627 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 6
23:15:31.686 Disk 0 MBR read successfully
23:15:31.686 Disk 0 MBR scan
23:15:31.701 Disk 0 Windows VISTA default MBR code
23:15:31.701 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 11052 MB offset 63
23:15:31.717 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 370499 MB offset 22635585
23:15:31.748 Disk 0 scanning sectors +781417665
23:15:31.842 Disk 0 scanning C:\Windows\system32\drivers
23:15:33.792 Disk 0 MBR has been saved successfully to "C:\Users\Cafeteiro\Desktop\MBR.dat"
23:15:33.792 The log file has been saved successfully to "C:\Users\Cafeteiro\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1116 Copyright(c) 2011 AVAST Software
Run date: 2011-12-21 23:15:10
-----------------------------
23:15:10.095 OS Version: Windows 6.0.6002 Service Pack 2
23:15:10.095 Number of processors: 2 586 0x6B01
23:15:10.111 ComputerName: CAFETEIRO-PC UserName: Cafeteiro
23:15:14.682 Initialize success
23:15:24.853 AVAST engine defs: 11122102
23:15:29.627 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
23:15:29.627 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 6
23:15:31.686 Disk 0 MBR read successfully
23:15:31.686 Disk 0 MBR scan
23:15:31.701 Disk 0 Windows VISTA default MBR code
23:15:31.701 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 11052 MB offset 63
23:15:31.717 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 370499 MB offset 22635585
23:15:31.748 Disk 0 scanning sectors +781417665
23:15:31.842 Disk 0 scanning C:\Windows\system32\drivers
23:15:34.899 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:15:42.824 Disk 0 MBR has been saved successfully to "C:\Users\Cafeteiro\Desktop\MBR.dat"
23:15:42.840 The log file has been saved successfully to "C:\Users\Cafeteiro\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1116 Copyright(c) 2011 AVAST Software
Run date: 2011-12-21 23:15:10
-----------------------------
23:15:10.095 OS Version: Windows 6.0.6002 Service Pack 2
23:15:10.095 Number of processors: 2 586 0x6B01
23:15:10.111 ComputerName: CAFETEIRO-PC UserName: Cafeteiro
23:15:14.682 Initialize success
23:15:24.853 AVAST engine defs: 11122102
23:15:29.627 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
23:15:29.627 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 6
23:15:31.686 Disk 0 MBR read successfully
23:15:31.686 Disk 0 MBR scan
23:15:31.701 Disk 0 Windows VISTA default MBR code
23:15:31.701 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 11052 MB offset 63
23:15:31.717 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 370499 MB offset 22635585
23:15:31.748 Disk 0 scanning sectors +781417665
23:15:31.842 Disk 0 scanning C:\Windows\system32\drivers
23:15:34.899 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:15:55.710 Service scanning
23:15:57.083 Modules scanning
23:16:05.210 Module: C:\Windows\system32\DRIVERS\cdrom.sys **SUSPICIOUS**
23:16:14.523 Disk 0 trace - called modules:
23:16:14.539 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x86cbef10]<<
23:16:14.539 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x863a5ac8]
23:16:14.539 3 CLASSPNP.SYS[8aba78b3] -> nt!IofCallDriver -> [0x86ccc690]
23:16:14.539 \Driver\00004108[0x86ccc7f8] -> IRP_MJ_CREATE -> 0x86cbef10
23:16:15.943 AVAST engine scan C:\Windows
23:16:39.577 Disk 0 MBR has been saved successfully to "C:\Users\Cafeteiro\Desktop\MBR.dat"
23:16:39.593 The log file has been saved successfully to "C:\Users\Cafeteiro\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1116 Copyright(c) 2011 AVAST Software
Run date: 2011-12-21 23:15:10
-----------------------------
23:15:10.095 OS Version: Windows 6.0.6002 Service Pack 2
23:15:10.095 Number of processors: 2 586 0x6B01
23:15:10.111 ComputerName: CAFETEIRO-PC UserName: Cafeteiro
23:15:14.682 Initialize success
23:15:24.853 AVAST engine defs: 11122102
23:15:29.627 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
23:15:29.627 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 6
23:15:31.686 Disk 0 MBR read successfully
23:15:31.686 Disk 0 MBR scan
23:15:31.701 Disk 0 Windows VISTA default MBR code
23:15:31.701 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 11052 MB offset 63
23:15:31.717 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 370499 MB offset 22635585
23:15:31.748 Disk 0 scanning sectors +781417665
23:15:31.842 Disk 0 scanning C:\Windows\system32\drivers
23:15:34.899 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:15:55.710 Service scanning
23:15:57.083 Modules scanning
23:16:05.210 Module: C:\Windows\system32\DRIVERS\cdrom.sys **SUSPICIOUS**
23:16:14.523 Disk 0 trace - called modules:
23:16:14.539 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x86cbef10]<<
23:16:14.539 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x863a5ac8]
23:16:14.539 3 CLASSPNP.SYS[8aba78b3] -> nt!IofCallDriver -> [0x86ccc690]
23:16:14.539 \Driver\00004108[0x86ccc7f8] -> IRP_MJ_CREATE -> 0x86cbef10
23:16:15.943 AVAST engine scan C:\Windows
23:16:53.882 AVAST engine scan C:\Windows\system32
23:18:14.114 Disk 0 MBR has been saved successfully to "C:\Users\Cafeteiro\Desktop\MBR.dat"
23:18:14.125 The log file has been saved successfully to "C:\Users\Cafeteiro\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1116 Copyright(c) 2011 AVAST Software
Run date: 2011-12-21 23:15:10
-----------------------------
23:15:10.095 OS Version: Windows 6.0.6002 Service Pack 2
23:15:10.095 Number of processors: 2 586 0x6B01
23:15:10.111 ComputerName: CAFETEIRO-PC UserName: Cafeteiro
23:15:14.682 Initialize success
23:15:24.853 AVAST engine defs: 11122102
23:15:29.627 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
23:15:29.627 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 6
23:15:31.686 Disk 0 MBR read successfully
23:15:31.686 Disk 0 MBR scan
23:15:31.701 Disk 0 Windows VISTA default MBR code
23:15:31.701 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 11052 MB offset 63
23:15:31.717 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 370499 MB offset 22635585
23:15:31.748 Disk 0 scanning sectors +781417665
23:15:31.842 Disk 0 scanning C:\Windows\system32\drivers
23:15:34.899 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:15:55.710 Service scanning
23:15:57.083 Modules scanning
23:16:05.210 Module: C:\Windows\system32\DRIVERS\cdrom.sys **SUSPICIOUS**
23:16:14.523 Disk 0 trace - called modules:
23:16:14.539 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x86cbef10]<<
23:16:14.539 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x863a5ac8]
23:16:14.539 3 CLASSPNP.SYS[8aba78b3] -> nt!IofCallDriver -> [0x86ccc690]
23:16:14.539 \Driver\00004108[0x86ccc7f8] -> IRP_MJ_CREATE -> 0x86cbef10
23:16:15.943 AVAST engine scan C:\Windows
23:16:53.882 AVAST engine scan C:\Windows\system32
23:20:56.087 AVAST engine scan C:\Windows\system32\drivers
23:20:57.723 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:21:12.171 AVAST engine scan C:\Users\Cafeteiro
23:21:58.663 Disk 0 MBR has been saved successfully to "C:\Users\Cafeteiro\Desktop\MBR.dat"
23:21:58.677 The log file has been saved successfully to "C:\Users\Cafeteiro\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1116 Copyright(c) 2011 AVAST Software
Run date: 2011-12-21 23:15:10
-----------------------------
23:15:10.095 OS Version: Windows 6.0.6002 Service Pack 2
23:15:10.095 Number of processors: 2 586 0x6B01
23:15:10.111 ComputerName: CAFETEIRO-PC UserName: Cafeteiro
23:15:14.682 Initialize success
23:15:24.853 AVAST engine defs: 11122102
23:15:29.627 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
23:15:29.627 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 6
23:15:31.686 Disk 0 MBR read successfully
23:15:31.686 Disk 0 MBR scan
23:15:31.701 Disk 0 Windows VISTA default MBR code
23:15:31.701 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 11052 MB offset 63
23:15:31.717 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 370499 MB offset 22635585
23:15:31.748 Disk 0 scanning sectors +781417665
23:15:31.842 Disk 0 scanning C:\Windows\system32\drivers
23:15:34.899 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:15:55.710 Service scanning
23:15:57.083 Modules scanning
23:16:05.210 Module: C:\Windows\system32\DRIVERS\cdrom.sys **SUSPICIOUS**
23:16:14.523 Disk 0 trace - called modules:
23:16:14.539 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x86cbef10]<<
23:16:14.539 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x863a5ac8]
23:16:14.539 3 CLASSPNP.SYS[8aba78b3] -> nt!IofCallDriver -> [0x86ccc690]
23:16:14.539 \Driver\00004108[0x86ccc7f8] -> IRP_MJ_CREATE -> 0x86cbef10
23:16:15.943 AVAST engine scan C:\Windows
23:16:53.882 AVAST engine scan C:\Windows\system32
23:20:56.087 AVAST engine scan C:\Windows\system32\drivers
23:20:57.723 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:21:12.171 AVAST engine scan C:\Users\Cafeteiro
23:24:12.633 File: C:\Users\Cafeteiro\AppData\Local\temp\ualegamghp **INFECTED** Win32:MalOb-GR [Cryp]
23:24:21.195 Disk 0 MBR has been saved successfully to "C:\Users\Cafeteiro\Desktop\MBR.dat"
23:24:21.210 The log file has been saved successfully to "C:\Users\Cafeteiro\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1116 Copyright(c) 2011 AVAST Software
Run date: 2011-12-21 23:15:10
-----------------------------
23:15:10.095 OS Version: Windows 6.0.6002 Service Pack 2
23:15:10.095 Number of processors: 2 586 0x6B01
23:15:10.111 ComputerName: CAFETEIRO-PC UserName: Cafeteiro
23:15:14.682 Initialize success
23:15:24.853 AVAST engine defs: 11122102
23:15:29.627 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
23:15:29.627 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 6
23:15:31.686 Disk 0 MBR read successfully
23:15:31.686 Disk 0 MBR scan
23:15:31.701 Disk 0 Windows VISTA default MBR code
23:15:31.701 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 11052 MB offset 63
23:15:31.717 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 370499 MB offset 22635585
23:15:31.748 Disk 0 scanning sectors +781417665
23:15:31.842 Disk 0 scanning C:\Windows\system32\drivers
23:15:34.899 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:15:55.710 Service scanning
23:15:57.083 Modules scanning
23:16:05.210 Module: C:\Windows\system32\DRIVERS\cdrom.sys **SUSPICIOUS**
23:16:14.523 Disk 0 trace - called modules:
23:16:14.539 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x86cbef10]<<
23:16:14.539 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x863a5ac8]
23:16:14.539 3 CLASSPNP.SYS[8aba78b3] -> nt!IofCallDriver -> [0x86ccc690]
23:16:14.539 \Driver\00004108[0x86ccc7f8] -> IRP_MJ_CREATE -> 0x86cbef10
23:16:15.943 AVAST engine scan C:\Windows
23:16:53.882 AVAST engine scan C:\Windows\system32
23:20:56.087 AVAST engine scan C:\Windows\system32\drivers
23:20:57.723 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:21:12.171 AVAST engine scan C:\Users\Cafeteiro
23:24:12.633 File: C:\Users\Cafeteiro\AppData\Local\temp\ualegamghp **INFECTED** Win32:MalOb-GR [Cryp]
23:44:11.930 Disk 0 MBR has been saved successfully to "C:\Users\Cafeteiro\Desktop\MBR.dat"
23:44:11.930 The log file has been saved successfully to "C:\Users\Cafeteiro\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1116 Copyright(c) 2011 AVAST Software
Run date: 2011-12-21 23:15:10
-----------------------------
23:15:10.095 OS Version: Windows 6.0.6002 Service Pack 2
23:15:10.095 Number of processors: 2 586 0x6B01
23:15:10.111 ComputerName: CAFETEIRO-PC UserName: Cafeteiro
23:15:14.682 Initialize success
23:15:24.853 AVAST engine defs: 11122102
23:15:29.627 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
23:15:29.627 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 6
23:15:31.686 Disk 0 MBR read successfully
23:15:31.686 Disk 0 MBR scan
23:15:31.701 Disk 0 Windows VISTA default MBR code
23:15:31.701 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 11052 MB offset 63
23:15:31.717 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 370499 MB offset 22635585
23:15:31.748 Disk 0 scanning sectors +781417665
23:15:31.842 Disk 0 scanning C:\Windows\system32\drivers
23:15:34.899 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:15:55.710 Service scanning
23:15:57.083 Modules scanning
23:16:05.210 Module: C:\Windows\system32\DRIVERS\cdrom.sys **SUSPICIOUS**
23:16:14.523 Disk 0 trace - called modules:
23:16:14.539 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x86cbef10]<<
23:16:14.539 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x863a5ac8]
23:16:14.539 3 CLASSPNP.SYS[8aba78b3] -> nt!IofCallDriver -> [0x86ccc690]
23:16:14.539 \Driver\00004108[0x86ccc7f8] -> IRP_MJ_CREATE -> 0x86cbef10
23:16:15.943 AVAST engine scan C:\Windows
23:16:53.882 AVAST engine scan C:\Windows\system32
23:20:56.087 AVAST engine scan C:\Windows\system32\drivers
23:20:57.723 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:21:12.171 AVAST engine scan C:\Users\Cafeteiro
23:24:12.633 File: C:\Users\Cafeteiro\AppData\Local\temp\ualegamghp **INFECTED** Win32:MalOb-GR [Cryp]
23:45:52.010 Disk 0 MBR has been saved successfully to "C:\Users\Cafeteiro\Desktop\MBR.dat"
23:45:52.018 The log file has been saved successfully to "C:\Users\Cafeteiro\Desktop\aswMBR.txt"


aswMBR version 0.9.9.1116 Copyright(c) 2011 AVAST Software
Run date: 2011-12-21 23:15:10
-----------------------------
23:15:10.095 OS Version: Windows 6.0.6002 Service Pack 2
23:15:10.095 Number of processors: 2 586 0x6B01
23:15:10.111 ComputerName: CAFETEIRO-PC UserName: Cafeteiro
23:15:14.682 Initialize success
23:15:24.853 AVAST engine defs: 11122102
23:15:29.627 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\0000005b
23:15:29.627 Disk 0 Vendor: Hitachi_ V5CO Size: 381554MB BusType: 6
23:15:31.686 Disk 0 MBR read successfully
23:15:31.686 Disk 0 MBR scan
23:15:31.701 Disk 0 Windows VISTA default MBR code
23:15:31.701 Disk 0 Partition 1 00 07 HPFS/NTFS NTFS 11052 MB offset 63
23:15:31.717 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 370499 MB offset 22635585
23:15:31.748 Disk 0 scanning sectors +781417665
23:15:31.842 Disk 0 scanning C:\Windows\system32\drivers
23:15:34.899 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:15:55.710 Service scanning
23:15:57.083 Modules scanning
23:16:05.210 Module: C:\Windows\system32\DRIVERS\cdrom.sys **SUSPICIOUS**
23:16:14.523 Disk 0 trace - called modules:
23:16:14.539 ntkrnlpa.exe CLASSPNP.SYS disk.sys >>UNKNOWN [0x86cbef10]<<
23:16:14.539 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x863a5ac8]
23:16:14.539 3 CLASSPNP.SYS[8aba78b3] -> nt!IofCallDriver -> [0x86ccc690]
23:16:14.539 \Driver\00004108[0x86ccc7f8] -> IRP_MJ_CREATE -> 0x86cbef10
23:16:15.943 AVAST engine scan C:\Windows
23:16:53.882 AVAST engine scan C:\Windows\system32
23:20:56.087 AVAST engine scan C:\Windows\system32\drivers
23:20:57.723 File: C:\Windows\system32\drivers\cdrom.sys **INFECTED** Win32:Aluroot [Rtk]
23:21:12.171 AVAST engine scan C:\Users\Cafeteiro
23:24:12.633 File: C:\Users\Cafeteiro\AppData\Local\temp\ualegamghp **INFECTED** Win32:MalOb-GR [Cryp]
23:52:08.909 AVAST engine scan C:\ProgramData
23:56:50.579 Scan finished successfully
23:57:25.073 Disk 0 MBR has been saved successfully to "C:\Users\Cafeteiro\Desktop\MBR.dat"
23:57:25.089 The log file has been saved successfully to "C:\Users\Cafeteiro\Desktop\aswMBR.txt"



svt1999f150

Rookie Surfer
Rookie Surfer

Posts : 51
Joined : 2009-01-11
Operating System : windows vista

View user profile

Back to top Go down

Re: Vista Antispyware 2012

Post by Belahzur on Fri 23 Dec 2011, 11:12 am

Please download TDSSKiller from here and save it to your Desktop.

  • Doubleclick TDSSKiller.exe to run the tool
  • Click the Start Scan button
  • After the scan has finished, click the Close button
  • Click the Report button and copy/paste the contents of it into your next reply
Note:It will also create a log in the C:\ directory.


@RealBelahzur - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur

Manager | Tech Officer
Manager | Tech Officer

Posts : 34917
Joined : 2008-08-04
Operating System : XP SP3 Media Centre

View user profile

Back to top Go down

Re: Vista Antispyware 2012

Post by svt1999f150 on Fri 23 Dec 2011, 11:29 am

19:18:59.0356 3324 TDSS rootkit removing tool 2.6.24.0 Dec 22 2011 18:21:27
19:18:59.0602 3324 ============================================================
19:18:59.0602 3324 Current date / time: 2011/12/22 19:18:59.0602
19:18:59.0602 3324 SystemInfo:
19:18:59.0603 3324
19:18:59.0603 3324 OS Version: 6.0.6002 ServicePack: 2.0
19:18:59.0603 3324 Product type: Workstation
19:18:59.0603 3324 ComputerName: CAFETEIRO-PC
19:18:59.0603 3324 UserName: Cafeteiro
19:18:59.0603 3324 Windows directory: C:\Windows
19:18:59.0603 3324 System windows directory: C:\Windows
19:18:59.0603 3324 Processor architecture: Intel x86
19:18:59.0603 3324 Number of processors: 2
19:18:59.0603 3324 Page size: 0x1000
19:18:59.0603 3324 Boot type: Normal boot
19:18:59.0603 3324 ============================================================
19:19:00.0204 3324 Initialize success
19:19:14.0135 3684 ============================================================
19:19:14.0135 3684 Scan started
19:19:14.0135 3684 Mode: Manual;
19:19:14.0135 3684 ============================================================
19:19:15.0901 3684 61883 (585e64bb6dfbc0a2f1f0b554ded012df) C:\Windows\system32\DRIVERS\61883.sys
19:19:15.0908 3684 61883 - ok
19:19:15.0960 3684 ac97intc (4b56caafed0b0b996341d74ce0e76565) C:\Windows\system32\drivers\ac97intc.sys
19:19:15.0961 3684 ac97intc - ok
19:19:16.0027 3684 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
19:19:16.0029 3684 ACPI - ok
19:19:16.0142 3684 adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
19:19:16.0161 3684 adp94xx - ok
19:19:16.0209 3684 adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
19:19:16.0222 3684 adpahci - ok
19:19:16.0348 3684 adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
19:19:16.0359 3684 adpu160m - ok
19:19:16.0593 3684 adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
19:19:16.0595 3684 adpu320 - ok
19:19:17.0340 3684 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
19:19:17.0471 3684 AFD - ok
19:19:17.0823 3684 agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
19:19:17.0835 3684 agp440 - ok
19:19:17.0896 3684 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
19:19:17.0907 3684 aic78xx - ok
19:19:17.0942 3684 aliide (90395b64600ebb4552e26e178c94b2e4) C:\Windows\system32\drivers\aliide.sys
19:19:17.0943 3684 aliide - ok
19:19:17.0978 3684 amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
19:19:17.0987 3684 amdagp - ok
19:19:18.0016 3684 amdide (0577df1d323fe75a739c787893d300ea) C:\Windows\system32\drivers\amdide.sys
19:19:18.0046 3684 amdide - ok
19:19:18.0090 3684 AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
19:19:18.0091 3684 AmdK7 - ok
19:19:18.0129 3684 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
19:19:18.0138 3684 AmdK8 - ok
19:19:18.0265 3684 AR5416 (1f96e1324ab7eb3dc7afe107bfbc8a84) C:\Windows\system32\DRIVERS\ar5416.sys
19:19:18.0296 3684 AR5416 - ok
19:19:18.0403 3684 arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
19:19:18.0404 3684 arc - ok
19:19:18.0445 3684 arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
19:19:18.0455 3684 arcsas - ok
19:19:19.0328 3684 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
19:19:19.0646 3684 AsyncMac - ok
19:19:20.0933 3684 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
19:19:21.0047 3684 atapi - ok
19:19:21.0463 3684 Avc (f4b56425a00beb32f5fa6603ff7b0ea2) C:\Windows\system32\DRIVERS\avc.sys
19:19:21.0475 3684 Avc - ok
19:19:21.0576 3684 avgio (6a646c46b9415e13095aa9b352040a7a) C:\Program Files\Avira\AntiVir Desktop\avgio.sys
19:19:21.0587 3684 avgio - ok
19:19:21.0693 3684 avgntflt (14fe36d8f2c6a2435275338d061a0b66) C:\Windows\system32\DRIVERS\avgntflt.sys
19:19:21.0704 3684 avgntflt - ok
19:19:21.0835 3684 avipbb (452e382340bb0c5e694ed9d3625356d0) C:\Windows\system32\DRIVERS\avipbb.sys
19:19:21.0836 3684 avipbb - ok
19:19:21.0907 3684 bcm4sbxp (08015d34f6fdd0b355805bad978497c3) C:\Windows\system32\DRIVERS\bcm4sbxp.sys
19:19:21.0916 3684 bcm4sbxp - ok
19:19:22.0021 3684 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
19:19:22.0022 3684 Beep - ok
19:19:22.0042 3684 blbdrive - ok
19:19:22.0196 3684 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
19:19:22.0205 3684 bowser - ok
19:19:22.0323 3684 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
19:19:22.0333 3684 BrFiltLo - ok
19:19:22.0378 3684 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
19:19:22.0401 3684 BrFiltUp - ok
19:19:22.0520 3684 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
19:19:22.0528 3684 Brserid - ok
19:19:22.0584 3684 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
19:19:22.0592 3684 BrSerWdm - ok
19:19:22.0657 3684 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
19:19:22.0658 3684 BrUsbMdm - ok
19:19:22.0695 3684 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
19:19:22.0708 3684 BrUsbSer - ok
19:19:22.0783 3684 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
19:19:22.0791 3684 BTHMODEM - ok
19:19:22.0899 3684 catchme - ok
19:19:22.0982 3684 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
19:19:22.0984 3684 cdfs - ok
19:19:23.0052 3684 cdrom (16afdc0c76cff6243890ac7be3b7414e) C:\Windows\system32\DRIVERS\cdrom.sys
19:19:55.0661 3684 cdrom - ok
19:19:55.0753 3684 circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
19:19:55.0763 3684 circlass - ok
19:19:55.0814 3684 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
19:19:55.0817 3684 CLFS - ok
19:19:55.0930 3684 CmBatt (0fed59edb4a83ff17f1778827b88ab1a) C:\Windows\system32\DRIVERS\CmBatt.sys
19:19:55.0936 3684 CmBatt - ok
19:19:55.0956 3684 cmdide (45201046c776ffdaf3fc8a0029c581c8) C:\Windows\system32\drivers\cmdide.sys
19:19:55.0964 3684 cmdide - ok
19:19:56.0069 3684 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
19:19:56.0079 3684 Compbatt - ok
19:19:56.0103 3684 crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
19:19:56.0106 3684 crcdisk - ok
19:19:56.0131 3684 Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
19:19:56.0140 3684 Crusoe - ok
19:19:56.0216 3684 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
19:19:56.0226 3684 DfsC - ok
19:19:56.0324 3684 DIRECTIO (d77fb9fb256b0c2ec0258c39b80dc513) C:\Program Files\BurnInTest\DirectIo.sys
19:19:56.0330 3684 DIRECTIO - ok
19:19:56.0426 3684 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
19:19:56.0441 3684 disk - ok
19:19:56.0536 3684 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
19:19:56.0540 3684 drmkaud - ok
19:19:56.0644 3684 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
19:19:56.0684 3684 DXGKrnl - ok
19:19:56.0785 3684 E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
19:19:56.0796 3684 E1G60 - ok
19:19:56.0911 3684 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
19:19:56.0928 3684 Ecache - ok
19:19:56.0976 3684 elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
19:19:56.0991 3684 elxstor - ok
19:19:57.0072 3684 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
19:19:57.0083 3684 exfat - ok
19:19:57.0177 3684 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
19:19:57.0221 3684 fastfat - ok
19:19:57.0263 3684 fdc (63bdada84951b9c03e641800e176898a) C:\Windows\system32\DRIVERS\fdc.sys
19:19:57.0271 3684 fdc - ok
19:19:57.0325 3684 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
19:19:57.0326 3684 FileInfo - ok
19:19:57.0384 3684 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
19:19:57.0391 3684 Filetrace - ok
19:19:57.0473 3684 flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
19:19:57.0479 3684 flpydisk - ok
19:19:57.0568 3684 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
19:19:57.0584 3684 FltMgr - ok
19:19:57.0651 3684 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
19:19:57.0655 3684 Fs_Rec - ok
19:19:57.0747 3684 FTDIBUS (b283f1bc1ff852bd232449a4b3e3ce63) C:\Windows\system32\drivers\ftdibus.sys
19:19:57.0756 3684 FTDIBUS - ok
19:19:57.0861 3684 FTSER2K (678a73f56ddf84a08c31123c386e9967) C:\Windows\system32\drivers\ftser2k.sys
19:19:57.0870 3684 FTSER2K - ok
19:19:57.0933 3684 gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
19:19:57.0943 3684 gagp30kx - ok
19:19:57.0996 3684 GEARAspiWDM (f2f431d1573ee632975c524418655b84) C:\Windows\system32\Drivers\GEARAspiWDM.sys
19:19:58.0004 3684 GEARAspiWDM - ok
19:19:58.0148 3684 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
19:19:58.0164 3684 HdAudAddService - ok
19:19:58.0246 3684 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
19:19:58.0253 3684 HDAudBus - ok
19:19:58.0288 3684 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
19:19:58.0293 3684 HidBth - ok
19:19:58.0321 3684 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
19:19:58.0334 3684 HidIr - ok
19:19:58.0389 3684 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
19:19:58.0393 3684 HidUsb - ok
19:19:58.0478 3684 HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
19:19:58.0486 3684 HpCISSs - ok
19:19:58.0565 3684 HSF_DPV (9efa5fec26cec696a66a891ac90b412d) C:\Windows\system32\DRIVERS\HSX_DPV.sys
19:19:58.0577 3684 HSF_DPV - ok
19:19:58.0609 3684 HSXHWBS2 (a3077d9ed7ff612a033536a6009dbea5) C:\Windows\system32\DRIVERS\HSXHWBS2.sys
19:19:58.0622 3684 HSXHWBS2 - ok
19:19:58.0692 3684 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
19:19:58.0714 3684 HTTP - ok
19:19:58.0752 3684 i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
19:19:58.0759 3684 i2omp - ok
19:19:58.0886 3684 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
19:19:58.0894 3684 i8042prt - ok
19:19:58.0999 3684 ialm (8318e04a6455ced1020bcc5039b62cfa) C:\Windows\system32\DRIVERS\ialmnt5.sys
19:19:59.0030 3684 ialm - ok
19:19:59.0072 3684 iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
19:19:59.0086 3684 iaStorV - ok
19:19:59.0164 3684 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
19:19:59.0172 3684 iirsp - ok
19:19:59.0296 3684 IntcAzAudAddService (389f5d4859f4300d52ead838f1a17131) C:\Windows\system32\drivers\RTKVHDA.sys
19:19:59.0337 3684 IntcAzAudAddService - ok
19:19:59.0388 3684 intelide (97469037714070e45194ed318d636401) C:\Windows\system32\drivers\intelide.sys
19:19:59.0397 3684 intelide - ok
19:19:59.0448 3684 intelppm (ce44cc04262f28216dd4341e9e36a16f) C:\Windows\system32\DRIVERS\intelppm.sys
19:19:59.0459 3684 intelppm - ok
19:19:59.0599 3684 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
19:19:59.0600 3684 IpFilterDriver - ok
19:19:59.0621 3684 IpInIp - ok
19:19:59.0674 3684 IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
19:19:59.0690 3684 IPMIDRV - ok
19:19:59.0750 3684 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
19:19:59.0762 3684 IPNAT - ok
19:19:59.0817 3684 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
19:19:59.0825 3684 IRENUM - ok
19:19:59.0906 3684 isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
19:19:59.0915 3684 isapnp - ok
19:19:59.0985 3684 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
19:20:00.0000 3684 iScsiPrt - ok
19:20:00.0068 3684 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
19:20:00.0077 3684 iteatapi - ok
19:20:00.0108 3684 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
19:20:00.0109 3684 iteraid - ok
19:20:00.0157 3684 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
19:20:00.0166 3684 kbdclass - ok
19:20:00.0216 3684 kbdhid (d2600cb17b7408b4a83f231dc9a11ac3) C:\Windows\system32\drivers\kbdhid.sys
19:20:00.0217 3684 kbdhid - ok
19:20:00.0295 3684 KSecDD (86165728af9bf72d6442a894fdfb4f8b) C:\Windows\system32\Drivers\ksecdd.sys
19:20:00.0319 3684 KSecDD - ok
19:20:00.0408 3684 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
19:20:00.0415 3684 lltdio - ok
19:20:00.0474 3684 LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
19:20:00.0482 3684 LSI_FC - ok
19:20:00.0510 3684 LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
19:20:00.0519 3684 LSI_SAS - ok
19:20:00.0603 3684 LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
19:20:00.0612 3684 LSI_SCSI - ok
19:20:00.0669 3684 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
19:20:00.0680 3684 luafv - ok
19:20:00.0722 3684 MBAMSwissArmy - ok
19:20:00.0758 3684 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
19:20:00.0764 3684 mdmxsdk - ok
19:20:00.0839 3684 megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
19:20:00.0848 3684 megasas - ok
19:20:00.0952 3684 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
19:20:00.0960 3684 Modem - ok
19:20:01.0055 3684 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
19:20:01.0056 3684 monitor - ok
19:20:01.0100 3684 motandroidusb (0a43169e115b5e9346a4ba1effcb04cb) C:\Windows\system32\Drivers\motoandroid.sys
19:20:01.0106 3684 motandroidusb - ok
19:20:01.0168 3684 motccgp - ok
19:20:01.0185 3684 motccgpfl - ok
19:20:01.0206 3684 MotDev - ok
19:20:01.0236 3684 motmodem - ok
19:20:01.0257 3684 MotoSwitchService - ok
19:20:01.0271 3684 motusbdevice - ok
19:20:01.0314 3684 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
19:20:01.0322 3684 mouclass - ok
19:20:01.0373 3684 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
19:20:01.0382 3684 mouhid - ok
19:20:01.0431 3684 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
19:20:01.0460 3684 MountMgr - ok
19:20:01.0499 3684 mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
19:20:01.0500 3684 mpio - ok
19:20:01.0566 3684 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
19:20:01.0574 3684 mpsdrv - ok
19:20:01.0602 3684 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
19:20:01.0610 3684 Mraid35x - ok
19:20:01.0665 3684 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
19:20:01.0676 3684 MRxDAV - ok
19:20:01.0735 3684 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
19:20:01.0745 3684 mrxsmb - ok
19:20:01.0790 3684 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
19:20:01.0805 3684 mrxsmb10 - ok
19:20:01.0830 3684 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
19:20:01.0839 3684 mrxsmb20 - ok
19:20:01.0897 3684 msahci (742aed7939e734c36b7e8d6228ce26b7) C:\Windows\system32\drivers\msahci.sys
19:20:01.0905 3684 msahci - ok
19:20:01.0941 3684 msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
19:20:01.0942 3684 msdsm - ok
19:20:02.0032 3684 MSDV (343291a4dfd7c923c3f71f550830ec1c) C:\Windows\system32\DRIVERS\msdv.sys
19:20:02.0039 3684 MSDV - ok
19:20:02.0080 3684 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
19:20:02.0086 3684 Msfs - ok
19:20:02.0151 3684 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
19:20:02.0158 3684 msisadrv - ok
19:20:02.0242 3684 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
19:20:02.0246 3684 MSKSSRV - ok
19:20:02.0281 3684 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
19:20:02.0285 3684 MSPCLOCK - ok
19:20:02.0313 3684 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
19:20:02.0319 3684 MSPQM - ok
19:20:02.0372 3684 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
19:20:02.0384 3684 MsRPC - ok
19:20:02.0414 3684 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
19:20:02.0423 3684 mssmbios - ok
19:20:02.0475 3684 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
19:20:02.0475 3684 MSTEE - ok
19:20:02.0512 3684 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
19:20:02.0522 3684 Mup - ok
19:20:02.0618 3684 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
19:20:02.0634 3684 NativeWifiP - ok
19:20:02.0779 3684 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
19:20:02.0815 3684 NDIS - ok
19:20:02.0899 3684 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
19:20:02.0905 3684 NdisTapi - ok
19:20:02.0938 3684 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
19:20:02.0943 3684 Ndisuio - ok
19:20:02.0989 3684 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
19:20:03.0000 3684 NdisWan - ok
19:20:03.0063 3684 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
19:20:03.0064 3684 NDProxy - ok
19:20:03.0103 3684 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
19:20:03.0109 3684 NetBIOS - ok
19:20:03.0195 3684 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
19:20:03.0215 3684 netbt - ok
19:20:03.0365 3684 NETw2v32 (6e9edc1020b319e7676387b8cdf2398c) C:\Windows\system32\DRIVERS\NETw2v32.sys
19:20:03.0423 3684 NETw2v32 - ok
19:20:03.0483 3684 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
19:20:03.0492 3684 nfrd960 - ok
19:20:03.0578 3684 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
19:20:03.0592 3684 Npfs - ok
19:20:03.0638 3684 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
19:20:03.0643 3684 nsiproxy - ok
19:20:03.0827 3684 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
19:20:03.0863 3684 Ntfs - ok
19:20:03.0947 3684 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
19:20:03.0948 3684 ntrigdigi - ok
19:20:03.0994 3684 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
19:20:03.0998 3684 Null - ok
19:20:04.0264 3684 nvlddmkm (ff58c7a7da6116c1f71e883cb088d598) C:\Windows\system32\DRIVERS\nvlddmkm.sys
19:20:04.0359 3684 nvlddmkm - ok
19:20:04.0474 3684 nvraid (e69e946f80c1c31c53003bfbf50cbb7c) C:\Windows\system32\drivers\nvraid.sys
19:20:04.0476 3684 nvraid - ok
19:20:04.0490 3684 nvstor (9e0ba19a28c498a6d323d065db76dffc) C:\Windows\system32\drivers\nvstor.sys
19:20:04.0499 3684 nvstor - ok
19:20:04.0567 3684 nvstor32 (a1ce1a6fd74c046f029448fcfa5e386d) C:\Windows\system32\DRIVERS\nvstor32.sys
19:20:04.0568 3684 nvstor32 - ok
19:20:04.0619 3684 nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
19:20:04.0633 3684 nv_agp - ok
19:20:04.0649 3684 NwlnkFlt - ok
19:20:04.0660 3684 NwlnkFwd - ok
19:20:04.0812 3684 ohci1394 (6f310e890d46e246e0e261a63d9b36b4) C:\Windows\system32\DRIVERS\ohci1394.sys
19:20:04.0822 3684 ohci1394 - ok
19:20:04.0878 3684 Parport (8a79fdf04a73428597e2caf9d0d67850) C:\Windows\system32\DRIVERS\parport.sys
19:20:04.0887 3684 Parport - ok
19:20:04.0932 3684 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
19:20:04.0966 3684 partmgr - ok
19:20:04.0998 3684 Parvdm (6c580025c81caf3ae9e3617c22cad00e) C:\Windows\system32\DRIVERS\parvdm.sys
19:20:05.0026 3684 Parvdm - ok
19:20:05.0159 3684 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
19:20:05.0161 3684 pci - ok
19:20:05.0218 3684 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
19:20:05.0226 3684 pciide - ok
19:20:05.0293 3684 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\DRIVERS\pcmcia.sys
19:20:05.0308 3684 pcmcia - ok
19:20:05.0337 3684 pcouffin (5b6c11de7e839c05248ced8825470fef) C:\Windows\system32\Drivers\pcouffin.sys
19:20:05.0346 3684 pcouffin - ok
19:20:05.0444 3684 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
19:20:05.0488 3684 PEAUTH - ok
19:20:05.0593 3684 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
19:20:05.0602 3684 PptpMiniport - ok
19:20:05.0657 3684 Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
19:20:05.0665 3684 Processor - ok
19:20:05.0801 3684 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
19:20:05.0814 3684 PSched - ok
19:20:05.0953 3684 PxHelp20 (e42e3433dbb4cffe8fdd91eab29aea8e) C:\Windows\system32\Drivers\PxHelp20.sys
19:20:05.0967 3684 PxHelp20 - ok
19:20:06.0061 3684 ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
19:20:06.0087 3684 ql2300 - ok
19:20:06.0132 3684 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
19:20:06.0143 3684 ql40xx - ok
19:20:06.0226 3684 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
19:20:06.0232 3684 QWAVEdrv - ok
19:20:06.0287 3684 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
19:20:06.0292 3684 RasAcd - ok
19:20:06.0336 3684 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
19:20:06.0344 3684 Rasl2tp - ok
19:20:06.0431 3684 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
19:20:06.0441 3684 RasPppoe - ok
19:20:06.0514 3684 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
19:20:06.0522 3684 RasSstp - ok
19:20:06.0665 3684 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
19:20:06.0680 3684 rdbss - ok
19:20:06.0720 3684 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
19:20:06.0724 3684 RDPCDD - ok
19:20:06.0794 3684 rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
19:20:06.0797 3684 rdpdr - ok
19:20:06.0815 3684 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
19:20:06.0822 3684 RDPENCDD - ok
19:20:06.0879 3684 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
19:20:06.0898 3684 RDPWD - ok
19:20:06.0995 3684 RimUsb - ok
19:20:07.0088 3684 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\Windows\system32\DRIVERS\RimSerial.sys
19:20:07.0099 3684 RimVSerPort - ok
19:20:07.0193 3684 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
19:20:07.0228 3684 ROOTMODEM - ok
19:20:07.0290 3684 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
19:20:07.0301 3684 rspndr - ok
19:20:07.0358 3684 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
19:20:07.0381 3684 sbp2port - ok
19:20:07.0593 3684 SCTDriverV1011 (67bcfb3f5b6f5caf30965b598ebb435f) C:\Windows\system32\drivers\SCTDriverV1011.sys
19:20:07.0619 3684 SCTDriverV1011 - ok
19:20:07.0673 3684 sdbus (4339a2585708c7d9b0c0ce5aad3dd6ff) C:\Windows\system32\DRIVERS\sdbus.sys
19:20:07.0733 3684 sdbus - ok
19:20:07.0765 3684 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
19:20:07.0790 3684 secdrv - ok
19:20:07.0846 3684 Serenum (ce9ec966638ef0b10b864ddedf62a099) C:\Windows\system32\DRIVERS\serenum.sys
19:20:07.0855 3684 Serenum - ok
19:20:07.0871 3684 Serial - ok
19:20:07.0945 3684 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
19:20:07.0969 3684 sermouse - ok
19:20:08.0081 3684 sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
19:20:08.0139 3684 sffdisk - ok
19:20:08.0173 3684 sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
19:20:08.0174 3684 sffp_mmc - ok
19:20:08.0223 3684 sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
19:20:08.0224 3684 sffp_sd - ok
19:20:08.0262 3684 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
19:20:08.0285 3684 sfloppy - ok
19:20:08.0365 3684 sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
19:20:08.0405 3684 sisagp - ok
19:20:08.0481 3684 SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
19:20:08.0647 3684 SiSRaid2 - ok
19:20:08.0691 3684 SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
19:20:08.0707 3684 SiSRaid4 - ok
19:20:08.0861 3684 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
19:20:08.0883 3684 Smb - ok
19:20:08.0972 3684 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
19:20:08.0987 3684 spldr - ok
19:20:09.0051 3684 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
19:20:09.0087 3684 srv - ok
19:20:09.0211 3684 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
19:20:09.0224 3684 srv2 - ok
19:20:09.0238 3684 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
19:20:09.0251 3684 srvnet - ok
19:20:09.0299 3684 ssmdrv (654dfea96bc82b4acda4f37e5e4a3bbf) C:\Windows\system32\DRIVERS\ssmdrv.sys
19:20:09.0308 3684 ssmdrv - ok
19:20:09.0380 3684 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
19:20:09.0424 3684 swenum - ok
19:20:09.0481 3684 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
19:20:09.0490 3684 Symc8xx - ok
19:20:09.0551 3684 SymIMMP - ok
19:20:09.0585 3684 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
19:20:09.0586 3684 Sym_hi - ok
19:20:09.0626 3684 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
19:20:09.0686 3684 Sym_u3 - ok
19:20:09.0793 3684 Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
19:20:09.0972 3684 Tcpip - ok
19:20:10.0020 3684 Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
19:20:10.0027 3684 Tcpip6 - ok
19:20:10.0072 3684 tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
19:20:10.0081 3684 tcpipreg - ok
19:20:10.0162 3684 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
19:20:10.0177 3684 TDPIPE - ok
19:20:10.0214 3684 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
19:20:10.0223 3684 TDTCP - ok
19:20:10.0273 3684 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
19:20:10.0358 3684 tdx - ok
19:20:10.0417 3684 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
19:20:10.0446 3684 TermDD - ok
19:20:10.0571 3684 TPPFX (43c1f6a5ba52aa0c96b6890636e11d9e) C:\Windows\system32\DRIVERS\TPPFX.SYS
19:20:10.0601 3684 TPPFX - ok
19:20:10.0717 3684 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
19:20:10.0732 3684 tssecsrv - ok
19:20:10.0819 3684 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
19:20:10.0825 3684 tunmp - ok
19:20:10.0942 3684 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
19:20:10.0980 3684 tunnel - ok
19:20:11.0043 3684 uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
19:20:11.0054 3684 uagp35 - ok
19:20:11.0166 3684 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
19:20:11.0169 3684 udfs - ok
19:20:11.0203 3684 uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
19:20:11.0218 3684 uliagpkx - ok
19:20:11.0243 3684 uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
19:20:11.0256 3684 uliahci - ok
19:20:11.0291 3684 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
19:20:11.0303 3684 UlSata - ok
19:20:11.0335 3684 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
19:20:11.0373 3684 ulsata2 - ok
19:20:11.0479 3684 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
19:20:11.0505 3684 umbus - ok
19:20:11.0736 3684 usbbus (5353218b3265e3b8190335059f697a11) C:\Windows\system32\DRIVERS\lgusbbus.sys
19:20:11.0736 3684 usbbus - ok
19:20:11.0819 3684 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
19:20:11.0829 3684 usbccgp - ok
19:20:11.0870 3684 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
19:20:11.0884 3684 usbcir - ok
19:20:11.0952 3684 UsbDiag (7dd3eefc62a1ef44e5f940fa651ed9ed) C:\Windows\system32\DRIVERS\lgusbdiag.sys
19:20:11.0963 3684 UsbDiag - ok
19:20:12.0081 3684 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
19:20:12.0088 3684 usbehci - ok
19:20:12.0129 3684 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
19:20:12.0141 3684 usbhub - ok
19:20:12.0231 3684 USBModem (083031a78822eccbd7510bccd3e20d4c) C:\Windows\system32\DRIVERS\lgusbmodem.sys
19:20:12.0243 3684 USBModem - ok
19:20:12.0322 3684 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
19:20:12.0327 3684 usbohci - ok
19:20:12.0441 3684 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
19:20:12.0442 3684 usbprint - ok
19:20:12.0653 3684 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
19:20:12.0683 3684 usbscan - ok
19:20:12.0786 3684 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
19:20:12.0787 3684 USBSTOR - ok
19:20:12.0840 3684 usbuhci (325dbbacb8a36af9988ccf40eac228cc) C:\Windows\system32\DRIVERS\usbuhci.sys
19:20:12.0841 3684 usbuhci - ok
19:20:12.0935 3684 vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
19:20:12.0941 3684 vga - ok
19:20:13.0069 3684 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
19:20:13.0078 3684 VgaSave - ok
19:20:13.0182 3684 viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
19:20:13.0193 3684 viaagp - ok
19:20:13.0246 3684 ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
19:20:13.0255 3684 ViaC7 - ok
19:20:13.0298 3684 viaide (fd2e3175fcada350c7ab4521dca187ec) C:\Windows\system32\drivers\viaide.sys
19:20:13.0298 3684 viaide - ok
19:20:13.0370 3684 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
19:20:13.0462 3684 volmgr - ok
19:20:13.0780 3684 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
19:20:13.0816 3684 volmgrx - ok
19:20:13.0896 3684 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
19:20:13.0910 3684 volsnap - ok
19:20:13.0994 3684 vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
19:20:14.0004 3684 vsmraid - ok
19:20:14.0050 3684 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
19:20:14.0056 3684 WacomPen - ok
19:20:14.0108 3684 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:20:14.0147 3684 Wanarp - ok
19:20:14.0183 3684 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
19:20:14.0184 3684 Wanarpv6 - ok
19:20:14.0253 3684 Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
19:20:14.0261 3684 Wd - ok
19:20:14.0347 3684 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
19:20:14.0371 3684 Wdf01000 - ok
19:20:14.0514 3684 winachsf (cf27edac75c87f2b776d9218f02f8301) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
19:20:14.0539 3684 winachsf - ok
19:20:14.0624 3684 WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
19:20:14.0629 3684 WmiAcpi - ok
19:20:14.0748 3684 WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
19:20:14.0749 3684 WpdUsb - ok
19:20:14.0885 3684 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
19:20:14.0891 3684 ws2ifsl - ok
19:20:14.0951 3684 WSIMD - ok
19:20:15.0090 3684 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
19:20:15.0099 3684 WUDFRd - ok
19:20:15.0147 3684 XAudio (5a7ff9a18ff6d7e0527fe3abf9204ef8) C:\Windows\system32\DRIVERS\xaudio.sys
19:20:15.0152 3684 XAudio - ok
19:20:15.0233 3684 yukonwlh (1dd951cf8a69fa2bea82f3e3a811fa95) C:\Windows\system32\DRIVERS\yk60x86.sys
19:20:15.0248 3684 yukonwlh - ok
19:20:15.0296 3684 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
19:20:15.0309 3684 \Device\Harddisk0\DR0 - ok
19:20:15.0313 3684 Boot (0x1200) (655f0c5d8397887fe1181b9fa0cb8df1) \Device\Harddisk0\DR0\Partition0
19:20:15.0314 3684 \Device\Harddisk0\DR0\Partition0 - ok
19:20:15.0323 3684 Boot (0x1200) (d9ca3257306d2c58eb6a4114d2adaab1) \Device\Harddisk0\DR0\Partition1
19:20:15.0323 3684 \Device\Harddisk0\DR0\Partition1 - ok
19:20:15.0327 3684 ============================================================
19:20:15.0327 3684 Scan finished
19:20:15.0327 3684 ============================================================
19:20:15.0364 2560 Detected object count: 0
19:20:15.0364 2560 Actual detected object count: 0
19:25:01.0637 3280 Deinitialize success

svt1999f150

Rookie Surfer
Rookie Surfer

Posts : 51
Joined : 2009-01-11
Operating System : windows vista

View user profile

Back to top Go down

Re: Vista Antispyware 2012

Post by svt1999f150 on Sat 31 Dec 2011, 7:37 am

It is also redirecting my google searches and my desktop shortcuts do not work anymore.

svt1999f150

Rookie Surfer
Rookie Surfer

Posts : 51
Joined : 2009-01-11
Operating System : windows vista

View user profile

Back to top Go down

Re: Vista Antispyware 2012

Post by Belahzur on Tue 03 Jan 2012, 12:10 pm

Hello.

Please download ComboFix from BleepingComputer.com

Alternate link: GeeksToGo.com


Rename ComboFix.exe to commy.exe before you save it to your Desktop

  • Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools A guide to do this can be found here
  • Click Start then copy paste the following command into the search box & hit enter: "%userprofile%\desktop\commy.exe" /stepdel
  • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. This will not install in Vista. Just continue scanning, and skip the console install.
  • When finished, it shall produce a log for you. Please include the contents of C:\ComboFix.txt in your next reply.


@RealBelahzur - [You must be registered and logged in to see this link.] - Please PM me if I fail to respond within 24hrs.


Belahzur

Manager | Tech Officer
Manager | Tech Officer

Posts : 34917
Joined : 2008-08-04
Operating System : XP SP3 Media Centre

View user profile

Back to top Go down

Re: Vista Antispyware 2012

Post by Sponsored content Today at 5:58 am


Sponsored content


Back to top Go down

View previous topic View next topic Back to top


 
Permissions in this forum:
You cannot reply to topics in this forum