Jump to content

Luffy_zoro

Honorary Members
 View Profile  See their activity

  • Posts

    32

  • Joined

  • Last visited

Reputation

0 Neutral
  1. Luffy_zoro
    sorry for the late reply.... My first issue which used make my system restart is now gone after i completed a scan from malwarebytes... Now if you do find any other issues here pls help me solve it;........I am grateful that u took ur time to solve my issue... Thank you SystemLook 30.07.11 by jpshortstuff Log created at 20:15 on 20/10/2013 by Swamy Administrator - Elevation successful ========== filefind ========== Searching for "AutoKMS.*" C:\Windows\AutoKMS.ini --a---- 161 bytes [09:43 19/10/2012] [09:43 19/10/2012] 5908363ADF585FDB864FC1751AA91956 C:\Windows\AutoKMS\AutoKMS.ini --a---- 715 bytes [11:21 17/11/2012] [11:21 17/11/2012] 3430A2BAE8863E1013584DDD9E671A54 C:\Windows\AutoKMS\AutoKMS.log --a---- 80953 bytes [03:36 18/11/2012] [14:04 07/04/2013] 41CBE54BDEC08A660267100A33443C13 -= EOF =-
  2. Luffy_zoro
    Still there is something in this log... how to remove those in the end...... OTL logfile created on: 17-Oct-13 2:27:02 PM - Run 2OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Swamy\Desktop Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstationInternet Explorer (Version = 8.0.7600.16385)Locale: 00000409 | Country: United States | Language: ENU | Date Format: dd-MMM-yy 1.99 Gb Total Physical Memory | 0.93 Gb Available Physical Memory | 46.94% Memory free3.98 Gb Paging File | 2.65 Gb Available in Paging File | 66.54% Paging File freePaging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program FilesDrive C: | 48.83 Gb Total Space | 11.47 Gb Free Space | 23.50% Space Free | Partition Type: NTFSDrive D: | 87.89 Gb Total Space | 5.82 Gb Free Space | 6.62% Space Free | Partition Type: NTFSDrive E: | 97.65 Gb Total Space | 12.26 Gb Free Space | 12.56% Space Free | Partition Type: NTFSDrive F: | 97.65 Gb Total Space | 15.27 Gb Free Space | 15.63% Space Free | Partition Type: NTFSDrive G: | 133.73 Gb Total Space | 16.45 Gb Free Space | 12.30% Space Free | Partition Type: NTFSDrive I: | 22.28 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: CDFS Computer Name: SWAMY-PC | User Name: Swamy | Logged in as Administrator.Boot Mode: Normal | Scan Mode: All usersCompany Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days ========== Processes (SafeList) ========== PRC - [2013-10-17 14:25:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Swamy\Desktop\OTL.exePRC - [2013-10-07 19:54:20 | 004,908,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgui.exePRC - [2013-10-03 22:00:24 | 003,538,480 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgidsagent.exePRC - [2013-10-03 11:33:07 | 000,844,752 | ---- | M] (Google Inc.) -- C:\Program Files\Google\Chrome\Application\chrome.exePRC - [2013-09-25 21:55:10 | 001,358,944 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgfws.exePRC - [2013-09-25 21:47:22 | 000,301,152 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgwdsvc.exePRC - [2013-09-15 23:08:30 | 000,895,024 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgnsx.exePRC - [2013-09-03 22:22:16 | 000,588,336 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgcsrvx.exePRC - [2013-09-02 11:19:00 | 000,669,232 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgemcx.exePRC - [2013-08-29 12:07:30 | 001,942,328 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesApp32.exePRC - [2013-08-29 12:07:28 | 001,740,600 | ---- | M] (TuneUp Software) -- C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exePRC - [2013-08-20 23:03:42 | 000,728,624 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2014\avgrsx.exePRC - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exePRC - [2012-12-15 11:48:44 | 003,541,008 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IDMan.exePRC - [2012-12-12 19:14:48 | 000,268,248 | ---- | M] (Tonec Inc.) -- C:\Program Files\Internet Download Manager\IEMonitor.exePRC - [2012-10-30 17:29:54 | 000,321,736 | ---- | M] ( New Softwares.net) -- C:\Windows\System32\WinFLTray.exePRC - [2009-07-14 06:44:42 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exePRC - [2009-07-14 06:44:20 | 002,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exePRC - [2009-05-25 13:09:40 | 000,528,384 | ---- | M] () -- C:\Program Files\Mobile Partner\Mobile Partner.exe ========== Modules (No Company Name) ========== MOD - [2013-10-03 11:33:05 | 000,415,184 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\30.0.1599.69\ppgooglenaclpluginchrome.dllMOD - [2013-10-03 11:33:03 | 004,055,504 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\30.0.1599.69\pdf.dllMOD - [2013-10-03 11:32:12 | 000,698,832 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\30.0.1599.69\libglesv2.dllMOD - [2013-10-03 11:32:11 | 000,099,792 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\30.0.1599.69\libegl.dllMOD - [2013-10-03 11:32:09 | 001,604,560 | ---- | M] () -- C:\Program Files\Google\Chrome\Application\30.0.1599.69\ffmpegsumo.dllMOD - [2010-01-21 01:34:10 | 008,793,952 | ---- | M] () -- C:\Program Files\Microsoft Office\Office14\1033\GrooveIntlResource.dllMOD - [2010-01-09 20:18:18 | 004,254,560 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODFMOD - [2009-10-01 07:37:54 | 000,991,232 | ---- | M] () -- C:\Program Files\Mobile Partner\NDISAPI.dllMOD - [2009-09-21 16:44:10 | 000,139,264 | ---- | M] () -- C:\Program Files\Mobile Partner\NetInfoPlugin.dllMOD - [2009-09-19 15:24:44 | 000,143,360 | ---- | M] () -- C:\Program Files\Mobile Partner\LocaleMgrPlugin.dllMOD - [2009-09-19 15:24:02 | 000,159,744 | ---- | M] () -- C:\Program Files\Mobile Partner\SMSPlugin.dllMOD - [2009-09-19 15:23:10 | 000,032,768 | ---- | M] () -- C:\Program Files\Mobile Partner\NotifyServicePlugin.dllMOD - [2009-09-19 15:21:02 | 000,057,344 | ---- | M] () -- C:\Program Files\Mobile Partner\ConfigFilePlugin.dllMOD - [2009-09-19 15:19:42 | 000,110,592 | ---- | M] () -- C:\Program Files\Mobile Partner\DeviceMgrPlugin.dllMOD - [2009-09-19 15:16:06 | 000,073,728 | ---- | M] () -- C:\Program Files\Mobile Partner\CallPlugin.dllMOD - [2009-09-19 15:13:34 | 000,090,112 | ---- | M] () -- C:\Program Files\Mobile Partner\DialUpPlugin.dllMOD - [2009-09-19 15:12:16 | 000,229,376 | ---- | M] () -- C:\Program Files\Mobile Partner\DeviceMgrUIPlugin.dllMOD - [2009-09-19 14:56:40 | 000,176,128 | ---- | M] () -- C:\Program Files\Mobile Partner\mm1agent.dllMOD - [2009-05-25 13:09:40 | 000,528,384 | ---- | M] () -- C:\Program Files\Mobile Partner\Mobile Partner.exeMOD - [2009-05-23 11:02:32 | 000,061,440 | R--- | M] () -- C:\Program Files\Mobile Partner\XCodec.dllMOD - [2009-05-23 11:02:30 | 000,061,440 | R--- | M] () -- C:\Program Files\Mobile Partner\DeviceOperate.dllMOD - [2009-05-23 11:02:28 | 000,155,648 | R--- | M] () -- C:\Program Files\Mobile Partner\DetectDev.dllMOD - [2009-05-23 11:02:24 | 000,557,056 | R--- | M] () -- C:\Program Files\Mobile Partner\atcomm.dllMOD - [2009-03-31 16:07:20 | 000,025,600 | R--- | M] () -- C:\Program Files\Mobile Partner\rvh245AutoCaps.dllMOD - [2009-03-31 16:07:14 | 000,038,912 | R--- | M] () -- C:\Program Files\Mobile Partner\rvgef.dllMOD - [2009-03-31 16:07:06 | 000,098,304 | R--- | M] () -- C:\Program Files\Mobile Partner\rvasn1.dllMOD - [2007-08-23 16:39:30 | 000,014,848 | R--- | M] () -- C:\Program Files\Mobile Partner\isaputrace.dllMOD - [2007-07-31 15:50:04 | 000,090,112 | R--- | M] () -- C:\Program Files\Mobile Partner\FileManager.dllMOD - [2004-09-08 19:51:54 | 000,121,344 | ---- | M] () -- C:\Program Files\WinRAR\RarExt.dll ========== Services (SafeList) ========== SRV - [2013-10-10 22:32:40 | 000,257,416 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)SRV - [2013-10-03 22:00:24 | 003,538,480 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgidsagent.exe -- (AVGIDSAgent)SRV - [2013-09-25 21:55:10 | 001,358,944 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgfws.exe -- (avgfws)SRV - [2013-09-25 21:47:22 | 000,301,152 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2014\avgwdsvc.exe -- (avgwd)SRV - [2013-09-11 07:56:44 | 000,118,680 | ---- | M] (Mozilla Foundation) [Disabled | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)SRV - [2013-08-29 12:07:28 | 001,740,600 | ---- | M] (TuneUp Software) [Auto | Running] -- C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesService32.exe -- (TuneUp.UtilitiesSvc)SRV - [2013-07-03 17:33:01 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [Disabled | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)SRV - [2013-04-04 14:50:32 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)SRV - [2013-04-04 14:50:32 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Disabled | Stopped] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)SRV - [2012-11-19 17:03:24 | 000,489,256 | ---- | M] (Valve Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)SRV - [2012-10-30 17:29:57 | 000,091,336 | ---- | M] (New Softwares.net) [Disabled | Stopped] -- C:\Windows\System32\WinFLService.exe -- (FLService)SRV - [2010-01-21 17:51:12 | 030,963,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)SRV - [2009-07-14 06:46:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)SRV - [2009-07-14 06:46:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)SRV - [2009-07-14 06:45:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) ========== Driver Services (All) ========== DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Program Files\Garena Plus\Room\safedrv.sys -- (GGSAFERDriver)DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\Swamy\AppData\Local\Temp\catchme.sys -- (catchme)DRV - [2013-10-15 23:33:52 | 000,728,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\dxgkrnl.sys -- (DXGKrnl)DRV - [2013-10-11 15:16:11 | 000,075,992 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\mbamchameleon.sys -- (mbamchameleon)DRV - [2013-09-26 10:00:38 | 000,047,928 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgfwd6x.sys -- (Avgfwfd)DRV - [2013-09-25 20:57:14 | 000,120,632 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgdiskx.sys -- (Avgdiskx)DRV - [2013-09-10 22:11:44 | 000,022,840 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgidsshimx.sys -- (AVGIDSShim)DRV - [2013-09-08 22:12:16 | 000,027,448 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgrkx86.sys -- (Avgrkx86)DRV - [2013-09-02 10:39:32 | 000,176,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgldx86.sys -- (Avgldx86)DRV - [2013-09-02 10:28:06 | 000,145,720 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgidshx.sys -- (AVGIDSHX)DRV - [2013-09-02 10:28:04 | 000,209,208 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\Windows\System32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)DRV - [2013-09-02 10:28:00 | 000,223,032 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avglogx.sys -- (Avglogx)DRV - [2013-08-21 19:53:42 | 000,012,320 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C:\Program Files\TuneUp Utilities 2014\TuneUpUtilitiesDriver32.sys -- (TuneUpUtilitiesDrv)DRV - [2013-08-20 22:54:04 | 000,102,200 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\Windows\System32\drivers\avgmfx86.sys -- (Avgmfx86)DRV - [2013-08-01 16:08:52 | 000,193,848 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\Windows\System32\drivers\avgtdix.sys -- (Avgtdix)DRV - [2013-06-27 15:27:42 | 000,104,928 | ---- | M] (Tonec Inc.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\idmwfp.sys -- (IDMWFP)DRV - [2013-04-04 14:50:32 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)DRV - [2012-10-30 17:30:15 | 000,029,184 | ---- | M] () [File_System | System | Running] -- C:\Windows\System32\WinFLAdrv.sys -- (WinFLAdrv)DRV - [2012-10-30 17:30:12 | 000,228,112 | ---- | M] (NewSoftwares.net, Inc.) [File_System | Auto | Running] -- C:\Windows\System32\WinVDEdrv.sys -- (WinVDEDrv)DRV - [2010-08-31 18:09:00 | 000,208,896 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ewusbnet.sys -- (ewusbnet)DRV - [2010-08-07 17:48:42 | 000,106,880 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ewusbmdm.sys -- (hwdatacard)DRV - [2010-07-27 15:25:48 | 000,072,832 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ew_jubusenum.sys -- (huawei_enumerator)DRV - [2010-07-27 09:52:02 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev)DRV - [2009-07-14 06:56:21 | 000,249,408 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\clfs.sys -- (CLFS)DRV - [2009-07-14 06:56:21 | 000,019,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\compbatt.sys -- (Compbatt)DRV - [2009-07-14 06:56:21 | 000,015,952 | ---- | M] (CMD Technology, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\cmdide.sys -- (cmdide)DRV - [2009-07-14 06:56:17 | 000,297,552 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\adpahci.sys -- (adpahci)DRV - [2009-07-14 06:56:15 | 000,422,976 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\adp94xx.sys -- (adp94xx)DRV - [2009-07-14 06:56:15 | 000,274,496 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\acpi.sys -- (ACPI)DRV - [2009-07-14 06:56:15 | 000,159,312 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdsbs.sys -- (amdsbs)DRV - [2009-07-14 06:56:15 | 000,146,512 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\adpu320.sys -- (adpu320)DRV - [2009-07-14 06:56:15 | 000,086,608 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\arcsas.sys -- (arcsas)DRV - [2009-07-14 06:56:15 | 000,079,952 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdsata.sys -- (amdsata)DRV - [2009-07-14 06:56:15 | 000,076,368 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\arc.sys -- (arc)DRV - [2009-07-14 06:56:15 | 000,053,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AMDAGP.SYS -- (amdagp)DRV - [2009-07-14 06:56:15 | 000,053,312 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\AGP440.sys -- (agp440)DRV - [2009-07-14 06:56:15 | 000,023,616 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\amdxata.sys -- (amdxata)DRV - [2009-07-14 06:56:15 | 000,021,584 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\atapi.sys -- (atapi)DRV - [2009-07-14 06:56:15 | 000,014,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdide.sys -- (amdide)DRV - [2009-07-14 06:56:15 | 000,014,400 | ---- | M] (Acer Laboratories Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\aliide.sys -- (aliide)DRV - [2009-07-14 06:50:45 | 000,153,680 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pci.sys -- (pci)DRV - [2009-07-14 06:50:45 | 000,012,368 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pciide.sys -- (pciide)DRV - [2009-07-14 06:50:44 | 001,210,432 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\ntfs.sys -- (Ntfs)DRV - [2009-07-14 06:50:44 | 000,710,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ndis.sys -- (NDIS)DRV - [2009-07-14 06:50:44 | 000,186,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msiscsi.sys -- (iScsiPrt)DRV - [2009-07-14 06:50:44 | 000,162,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msrpc.sys -- (MsRPC)DRV - [2009-07-14 06:50:44 | 000,142,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvstor.sys -- (nvstor)DRV - [2009-07-14 06:50:44 | 000,130,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mpio.sys -- (mpio)DRV - [2009-07-14 06:50:44 | 000,117,312 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nvraid.sys -- (nvraid)DRV - [2009-07-14 06:50:44 | 000,115,792 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msdsm.sys -- (msdsm)DRV - [2009-07-14 06:50:44 | 000,105,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NV_AGP.SYS -- (nv_agp)DRV - [2009-07-14 06:50:44 | 000,078,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\mountmgr.sys -- (mountmgr)DRV - [2009-07-14 06:50:44 | 000,056,912 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\partmgr.sys -- (partmgr)DRV - [2009-07-14 06:50:44 | 000,049,728 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\mup.sys -- (Mup)DRV - [2009-07-14 06:50:44 | 000,044,624 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nfrd960.sys -- (nfrd960)DRV - [2009-07-14 06:50:44 | 000,041,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mouclass.sys -- (mouclass)DRV - [2009-07-14 06:50:44 | 000,028,240 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\mssmbios.sys -- (mssmbios)DRV - [2009-07-14 06:50:44 | 000,027,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\msahci.sys -- (msahci)DRV - [2009-07-14 06:50:43 | 000,013,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\msisadrv.sys -- (msisadrv)DRV - [2009-07-14 06:50:37 | 000,089,168 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lsi_sas.sys -- (LSI_SAS)DRV - [2009-07-14 06:50:36 | 000,332,352 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iaStorV.sys -- (iaStorV)DRV - [2009-07-14 06:50:36 | 000,235,584 | ---- | M] (LSI Corporation, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MegaSR.sys -- (MegaSR)DRV - [2009-07-14 06:50:36 | 000,133,200 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ksecpkg.sys -- (KSecPkg)DRV - [2009-07-14 06:50:36 | 000,096,848 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lsi_scsi.sys -- (LSI_SCSI)DRV - [2009-07-14 06:50:36 | 000,095,824 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lsi_fc.sys -- (LSI_FC)DRV - [2009-07-14 06:50:36 | 000,067,664 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\ksecdd.sys -- (KSecDD)DRV - [2009-07-14 06:50:36 | 000,054,864 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\lsi_sas2.sys -- (LSI_SAS2)DRV - [2009-07-14 06:50:36 | 000,046,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\isapnp.sys -- (isapnp)DRV - [2009-07-14 06:50:36 | 000,042,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\kbdclass.sys -- (kbdclass)DRV - [2009-07-14 06:50:36 | 000,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\iirsp.sys -- (iirsp)DRV - [2009-07-14 06:50:36 | 000,030,800 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\megasas.sys -- (megasas)DRV - [2009-07-14 06:50:36 | 000,015,424 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\intelide.sys -- (intelide)DRV - [2009-07-14 06:50:36 | 000,013,904 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)DRV - [2009-07-14 06:50:28 | 000,453,712 | ---- | M] (Emulex) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\elxstor.sys -- (elxstor)DRV - [2009-07-14 06:50:28 | 000,198,208 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\fltMgr.sys -- (FltMgr)DRV - [2009-07-14 06:50:28 | 000,070,720 | ---- | M] (Adaptec, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\djsvs.sys -- (aic78xx)DRV - [2009-07-14 06:50:28 | 000,067,152 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HpSAMD.sys -- (HpSAMD)DRV - [2009-07-14 06:50:28 | 000,058,448 | ---- | M] (Microsoft Corporation) [File_System | Boot | Running] -- C:\Windows\System32\drivers\fileinfo.sys -- (FileInfo)DRV - [2009-07-14 06:50:28 | 000,057,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\GAGP30KX.SYS -- (gagp30kx)DRV - [2009-07-14 06:50:28 | 000,046,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)DRV - [2009-07-14 06:50:28 | 000,022,096 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\System32\drivers\crcdisk.sys -- (crcdisk)DRV - [2009-07-14 06:50:28 | 000,019,536 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\System32\drivers\fs_rec.sys -- (Fs_Rec)DRV - [2009-07-14 06:50:27 | 000,057,424 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\disk.sys -- (Disk)DRV - [2009-07-14 06:49:11 | 000,297,040 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volmgrx.sys -- (volmgrx)DRV - [2009-07-14 06:49:11 | 000,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vsmraid.sys -- (vsmraid)DRV - [2009-07-14 06:49:11 | 000,057,424 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ULIAGPKX.SYS -- (uliagpkx)DRV - [2009-07-14 06:49:11 | 000,019,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wd.sys -- (Wd)DRV - [2009-07-14 06:49:10 | 001,285,712 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tcpip.sys -- (TCPIP6)DRV - [2009-07-14 06:49:10 | 001,285,712 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\tcpip.sys -- (Tcpip)DRV - [2009-07-14 06:49:10 | 000,445,008 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\Wdf01000.sys -- (Wdf01000)DRV - [2009-07-14 06:49:10 | 000,245,328 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volsnap.sys -- (volsnap)DRV - [2009-07-14 06:49:10 | 000,175,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)DRV - [2009-07-14 06:49:10 | 000,159,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vhdmp.sys -- (vhdmp)DRV - [2009-07-14 06:49:10 | 000,055,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\UAGP35.SYS -- (uagp35)DRV - [2009-07-14 06:49:10 | 000,053,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VIAAGP.SYS -- (viaagp)DRV - [2009-07-14 06:49:10 | 000,053,312 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\volmgr.sys -- (volmgr)DRV - [2009-07-14 06:49:10 | 000,051,776 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\termdd.sys -- (TermDD)DRV - [2009-07-14 06:49:10 | 000,040,896 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)DRV - [2009-07-14 06:49:10 | 000,032,832 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vdrvroot.sys -- (vdrvroot)DRV - [2009-07-14 06:49:10 | 000,028,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)DRV - [2009-07-14 06:49:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)DRV - [2009-07-14 06:49:10 | 000,016,976 | ---- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\viaide.sys -- (viaide)DRV - [2009-07-14 06:49:10 | 000,012,240 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\swenum.sys -- (swenum)DRV - [2009-07-14 06:49:04 | 001,383,488 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ql2300.sys -- (ql2300)DRV - [2009-07-14 06:49:04 | 000,173,648 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)DRV - [2009-07-14 06:49:04 | 000,106,064 | ---- | M] (QLogic Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ql40xx.sys -- (ql40xx)DRV - [2009-07-14 06:49:04 | 000,085,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sbp2port.sys -- (sbp2port)DRV - [2009-07-14 06:49:04 | 000,077,888 | ---- | M] (Silicon Integrated Systems) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sisraid4.sys -- (SiSRaid4)DRV - [2009-07-14 06:49:04 | 000,043,088 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\pcw.sys -- (pcw)DRV - [2009-07-14 06:49:04 | 000,040,016 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sisraid2.sys -- (SiSRaid2)DRV - [2009-07-14 06:49:04 | 000,021,072 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\stexstor.sys -- (stexstor)DRV - [2009-07-14 06:49:03 | 000,180,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\pcmcia.sys -- (pcmcia)DRV - [2009-07-14 06:49:03 | 000,052,304 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\SISAGP.SYS -- (sisagp)DRV - [2009-07-14 06:49:03 | 000,017,472 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\spldr.sys -- (spldr)DRV - [2009-07-14 06:47:54 | 000,369,568 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\cng.sys -- (CNG)DRV - [2009-07-14 06:47:54 | 000,194,488 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\fvevol.sys -- (fvevol)DRV - [2009-07-14 06:27:25 | 000,272,128 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BrSerId.sys -- (Brserid)DRV - [2009-07-14 06:11:26 | 000,078,336 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bridge.sys -- (BridgeMP)DRV - [2009-07-14 06:11:15 | 000,586,752 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\PEAuth.sys -- (PEAUTH)DRV - [2009-07-14 05:47:06 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbprint.sys -- (usbprint)DRV - [2009-07-14 05:32:58 | 000,133,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpdr.sys -- (RDPDR)DRV - [2009-07-14 05:32:41 | 000,018,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rdpbus.sys -- (rdpbus)DRV - [2009-07-14 05:31:55 | 000,177,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpwd.sys -- (RDPWD)DRV - [2009-07-14 05:31:51 | 000,030,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tssecsrv.sys -- (tssecsrv)DRV - [2009-07-14 05:31:41 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)DRV - [2009-07-14 05:31:40 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPCDD.sys -- (RDPCDD)DRV - [2009-07-14 05:31:39 | 000,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\RDPENCDD.sys -- (RDPENCDD)DRV - [2009-07-14 05:31:37 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tdtcp.sys -- (TDTCP)DRV - [2009-07-14 05:31:37 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tdpipe.sys -- (TDPIPE)DRV - [2009-07-14 05:25:24 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\modem.sys -- (Modem)DRV - [2009-07-14 05:25:02 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wanarp.sys -- (Wanarpv6)DRV - [2009-07-14 05:25:02 | 000,063,488 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wanarp.sys -- (WANARP)DRV - [2009-07-14 05:25:02 | 000,016,384 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\ws2ifsl.sys -- (ws2ifsl)DRV - [2009-07-14 05:25:00 | 000,049,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn)DRV - [2009-07-14 05:24:58 | 000,075,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rassstp.sys -- (RasSstp)DRV - [2009-07-14 05:24:53 | 000,077,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\raspppoe.sys -- (RasPppoe)DRV - [2009-07-14 05:24:48 | 000,073,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\raspptp.sys -- (PptpMiniport)DRV - [2009-07-14 05:24:46 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\asyncmac.sys -- (AsyncMac)DRV - [2009-07-14 05:24:40 | 000,011,776 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rasacd.sys -- (RasAcd)DRV - [2009-07-14 05:24:35 | 000,118,784 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndiswan.sys -- (NdisWan)DRV - [2009-07-14 05:24:34 | 000,078,848 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\rasl2tp.sys -- (Rasl2tp)DRV - [2009-07-14 05:24:29 | 000,101,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ipnat.sys -- (IPNAT)DRV - [2009-07-14 05:24:29 | 000,058,880 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ipfltdrv.sys -- (IpFilterDriver)DRV - [2009-07-14 05:24:27 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndproxy.sys -- (NDProxy)DRV - [2009-07-14 05:24:24 | 000,020,992 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndistapi.sys -- (NdisTapi)DRV - [2009-07-14 05:24:14 | 000,034,816 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\tcpipreg.sys -- (tcpipreg)DRV - [2009-07-14 05:24:13 | 000,031,744 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\qwavedrv.sys -- (QWAVEdrv)DRV - [2009-07-14 05:24:03 | 000,108,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\tunnel.sys -- (tunnel)DRV - [2009-07-14 05:23:58 | 000,104,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\pacer.sys -- (Psched)DRV - [2009-07-14 05:23:54 | 000,036,352 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\netbios.sys -- (NetBIOS)DRV - [2009-07-14 05:23:51 | 000,045,568 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ndisuio.sys -- (Ndisuio)DRV - [2009-07-14 05:23:51 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)DRV - [2009-07-14 05:23:41 | 000,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\smb.sys -- (Smb)DRV - [2009-07-14 05:23:27 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\irenum.sys -- (IRENUM)DRV - [2009-07-14 05:23:20 | 000,060,928 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rspndr.sys -- (rspndr)DRV - [2009-07-14 05:23:19 | 000,048,128 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\lltdio.sys -- (lltdio)DRV - [2009-07-14 05:22:53 | 000,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\mpsdrv.sys -- (mpsdrv)DRV - [2009-07-14 05:22:44 | 000,027,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)DRV - [2009-07-14 05:22:09 | 000,258,560 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbhub.sys -- (usbhub)DRV - [2009-07-14 05:22:03 | 000,267,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\nwifi.sys -- (NativeWifiP)DRV - [2009-07-14 05:22:02 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)DRV - [2009-07-14 05:22:00 | 000,163,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\1394ohci.sys -- (1394ohci)DRV - [2009-07-14 05:21:47 | 000,304,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\HdAudio.sys -- (HdAudAddService)DRV - [2009-07-14 05:21:39 | 000,039,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\umbus.sys -- (umbus)DRV - [2009-07-14 05:21:35 | 000,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\umpass.sys -- (UmPass)DRV - [2009-07-14 05:21:34 | 000,056,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bthmodem.sys -- (BTHMODEM)DRV - [2009-07-14 05:21:33 | 000,091,136 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidbth.sys -- (HidBth)DRV - [2009-07-14 05:21:31 | 000,075,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbccgp.sys -- (usbccgp)DRV - [2009-07-14 05:21:29 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\ohci1394.sys -- (ohci1394)DRV - [2009-07-14 05:21:19 | 000,074,752 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\USBSTOR.SYS -- (USBSTOR)DRV - [2009-07-14 05:21:18 | 000,086,016 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbcir.sys -- (usbcir)DRV - [2009-07-14 05:21:17 | 000,037,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\circlass.sys -- (circlass)DRV - [2009-07-14 05:21:14 | 000,041,472 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbehci.sys -- (usbehci)DRV - [2009-07-14 05:21:14 | 000,020,480 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\usbohci.sys -- (usbohci)DRV - [2009-07-14 05:21:10 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\usbuhci.sys -- (usbuhci)DRV - [2009-07-14 05:21:08 | 000,004,096 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)DRV - [2009-07-14 05:21:05 | 000,037,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidir.sys -- (HidIr)DRV - [2009-07-14 05:21:04 | 000,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidusb.sys -- (HidUsb)DRV - [2009-07-14 05:20:57 | 000,005,120 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\drmkaud.sys -- (drmkaud)DRV - [2009-07-14 05:20:56 | 000,108,544 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\hdaudbus.sys -- (HDAudBus)DRV - [2009-07-14 05:20:45 | 000,132,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFRd.sys -- (WUDFRd)DRV - [2009-07-14 05:20:17 | 000,092,672 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WUDFPf.sys -- (WudfPf)DRV - [2009-07-14 05:16:55 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\MTConfig.sys -- (MTConfig)DRV - [2009-07-14 05:16:53 | 000,021,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wacompen.sys -- (WacomPen)DRV - [2009-07-14 05:15:52 | 000,013,824 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sfloppy.sys -- (sfloppy)DRV - [2009-07-14 05:15:52 | 000,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sffp_sd.sys -- (sffp_sd)DRV - [2009-07-14 05:15:52 | 000,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sffp_mmc.sys -- (sffp_mmc)DRV - [2009-07-14 05:15:52 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sffdisk.sys -- (sffdisk)DRV - [2009-07-14 05:15:45 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\fdc.sys -- (fdc)DRV - [2009-07-14 05:15:45 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\flpydisk.sys -- (flpydisk)DRV - [2009-07-14 05:15:35 | 000,079,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\parport.sys -- (Parport)DRV - [2009-07-14 05:15:33 | 000,083,456 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\serial.sys -- (Serial)DRV - [2009-07-14 05:15:29 | 000,008,704 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Stopped] -- C:\Windows\System32\drivers\parvdm.sys -- (Parvdm)DRV - [2009-07-14 05:15:28 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\serenum.sys -- (Serenum)DRV - [2009-07-14 05:15:26 | 000,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)DRV - [2009-07-14 05:15:09 | 000,028,160 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\kbdhid.sys -- (kbdhid)DRV - [2009-07-14 05:15:08 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mouhid.sys -- (mouhid)DRV - [2009-07-14 05:15:08 | 000,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\sermouse.sys -- (sermouse)DRV - [2009-07-14 05:15:08 | 000,008,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mskssrv.sys -- (MSKSSRV)DRV - [2009-07-14 05:15:08 | 000,006,144 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mstee.sys -- (MSTEE)DRV - [2009-07-14 05:15:08 | 000,005,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mspclock.sys -- (MSPCLOCK)DRV - [2009-07-14 05:15:07 | 000,005,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\mspqm.sys -- (MSPQM)DRV - [2009-07-14 05:15:01 | 000,006,144 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\beep.sys -- (Beep)DRV - [2009-07-14 05:06:52 | 000,050,176 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\appid.sys -- (AppID)DRV - [2009-07-14 05:03:50 | 000,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)DRV - [2009-07-14 05:00:59 | 000,065,536 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\IPMIDrv.sys -- (IPMIDRV)DRV - [2009-07-14 04:58:47 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)DRV - [2009-07-14 04:58:45 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)DRV - [2009-07-14 04:55:59 | 000,023,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\monitor.sys -- (monitor)DRV - [2009-07-14 04:55:51 | 000,025,088 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\vga.sys -- (VgaSave)DRV - [2009-07-14 04:55:49 | 000,026,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vgapnp.sys -- (vga)DRV - [2009-07-14 04:54:05 | 000,032,256 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\discache.sys -- (discache)DRV - [2009-07-14 04:53:04 | 000,035,328 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\blbdrive.sys -- (blbdrive)DRV - [2009-07-14 04:49:21 | 000,021,504 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hidbatt.sys -- (HidBatt)DRV - [2009-07-14 04:49:19 | 000,007,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\errdev.sys -- (ErrDev)DRV - [2009-07-14 04:49:18 | 000,014,080 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\CmBatt.sys -- (CmBatt)DRV - [2009-07-14 04:49:17 | 000,011,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\wmiacpi.sys -- (WmiAcpi)DRV - [2009-07-14 04:46:36 | 000,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\acpipmi.sys -- (AcpiPmi)DRV - [2009-07-14 04:45:45 | 000,086,528 | ---- | M] (Microsoft Corporation) [File_System | Auto | Running] -- C:\Windows\System32\drivers\luafv.sys -- (luafv)DRV - [2009-07-14 04:45:29 | 000,028,160 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\filetrace.sys -- (Filetrace)DRV - [2009-07-14 04:45:13 | 000,387,584 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\csc.sys -- (CSC)DRV - [2009-07-14 04:45:13 | 000,309,760 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srv.sys -- (srv)DRV - [2009-07-14 04:44:55 | 000,306,688 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srv2.sys -- (srv2)DRV - [2009-07-14 04:44:47 | 000,113,664 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\srvnet.sys -- (srvnet)DRV - [2009-07-14 04:44:37 | 000,221,184 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mrxsmb10.sys -- (mrxsmb10)DRV - [2009-07-14 04:44:31 | 000,095,744 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mrxsmb20.sys -- (mrxsmb20)DRV - [2009-07-14 04:44:29 | 000,241,664 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\rdbss.sys -- (rdbss)DRV - [2009-07-14 04:44:26 | 000,123,392 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mrxsmb.sys -- (mrxsmb)DRV - [2009-07-14 04:44:26 | 000,115,712 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\mrxdav.sys -- (MRxDAV)DRV - [2009-07-14 04:44:22 | 000,069,632 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\bowser.sys -- (bowser)DRV - [2009-07-14 04:44:17 | 000,078,336 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\dfsc.sys -- (DfsC)DRV - [2009-07-14 04:44:09 | 000,246,784 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\Windows\System32\drivers\udfs.sys -- (udfs)DRV - [2009-07-14 04:44:03 | 000,142,336 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\exfat.sys -- (exfat)DRV - [2009-07-14 04:44:02 | 000,148,480 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\fastfat.sys -- (fastfat)DRV - [2009-07-14 04:42:59 | 000,513,024 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\http.sys -- (HTTP)DRV - [2009-07-14 04:42:38 | 000,338,944 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\afd.sys -- (AFD)DRV - [2009-07-14 04:42:21 | 000,187,904 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\netbt.sys -- (NetBT)DRV - [2009-07-14 04:42:11 | 000,074,240 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\tdx.sys -- (tdx)DRV - [2009-07-14 04:42:08 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\nsiproxy.sys -- (nsiproxy)DRV - [2009-07-14 04:41:32 | 000,035,328 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\npfs.sys -- (Npfs)DRV - [2009-07-14 04:41:26 | 000,108,544 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\cdrom.sys -- (cdrom)DRV - [2009-07-14 04:41:26 | 000,022,528 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\System32\drivers\msfs.sys -- (Msfs)DRV - [2009-07-14 04:41:24 | 000,080,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\i8042prt.sys -- (i8042prt)DRV - [2009-07-14 04:41:15 | 000,070,656 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Running] -- C:\Windows\System32\drivers\cdfs.sys -- (cdfs)DRV - [2009-07-14 04:41:12 | 000,004,608 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\System32\drivers\null.sys -- (Null)DRV - [2009-07-14 04:41:04 | 000,055,296 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdk8.sys -- (AmdK8)DRV - [2009-07-14 04:41:04 | 000,053,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\intelppm.sys -- (intelppm)DRV - [2009-07-14 04:41:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\viac7.sys -- (ViaC7)DRV - [2009-07-14 04:41:04 | 000,052,736 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\amdppm.sys -- (AmdPPM)DRV - [2009-07-14 04:41:04 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\processr.sys -- (Processor)DRV - [2009-07-14 04:24:14 | 000,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\hcw85cir.sys -- (hcw85cir)DRV - [2009-07-14 04:23:33 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BrUsbMdm.sys -- (BrUsbMdm)DRV - [2009-07-14 04:23:33 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BrUsbSer.sys -- (BrUsbSer)DRV - [2009-07-14 04:23:32 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BrSerWdm.sys -- (BrSerWdm)DRV - [2009-07-14 04:23:28 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BrFiltLo.sys -- (BrFiltLo)DRV - [2009-07-14 04:23:28 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\BrFiltUp.sys -- (BrFiltUp)DRV - [2009-07-14 03:32:50 | 000,211,456 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\e1e6032.sys -- (e1express)DRV - [2009-07-14 03:32:49 | 000,229,888 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)DRV - [2009-07-14 03:32:48 | 003,100,160 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\evbdx.sys -- (ebdrv)DRV - [2009-07-14 03:32:48 | 000,430,080 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\bxvbdx.sys -- (b06bdrv)DRV - [2009-07-14 03:11:34 | 000,002,864 | ---- | M] (Microsoft Corporation) [Adapter | On_Demand | Unknown] -- C:\Windows\System32\WINSOCK.DLL -- (Winsock)DRV - [2009-07-14 02:20:20 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)DRV - [2009-06-11 02:49:30 | 004,756,480 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\igdkmd32.sys -- (igfx)DRV - [2008-07-26 22:30:30 | 000,014,416 | ---- | M] (OpenLibSys.org) [Kernel | On_Demand | Stopped] -- C:\Users\Swamy\Downloads\Compressed\RealTemp_370\WinRing0.sys -- (WinRing0_1_2_0)DRV - [2008-03-03 09:10:10 | 002,047,576 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) ========== Standard Registry (SafeList) ========== ========== Internet Explorer ========== IE - HKLM\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}IE - HKLM\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=TJ&userid=819c4780-4268-bd07-e74a-307e5d214db4&searchtype=ds&q={searchTerms}&installDate=16/10/2013IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-19\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=en&pid=NIS&pvid=19.9.1.14IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-20\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.symantec.com/redirects/security_response/fix_homepage/index.jsp?lg=en&pid=NIS&pvid=19.9.1.14IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope = IE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.comIE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.comIE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = https://www.google.co.in/https:// [binary data over 200 bytes]IE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.comIE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = en-usIE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.comIE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.comIE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\..\SearchScopes,DefaultScope = {006ee092-9658-4fd6-bd8e-a21a348e59f5}IE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\..\SearchScopes\{006ee092-9658-4fd6-bd8e-a21a348e59f5}: "URL" = http://feed.snapdo.com/?publisher=SnapdoOCYB&dpid=SnapdoOCYB&co=TJ&userid=819c4780-4268-bd07-e74a-307e5d214db4&searchtype=ds&q={searchTerms}&installDate=16/10/2013IE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRCIE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7IE - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 ========== FireFox ========== FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_9_900_117.dll ()FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.21.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.1: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)FF - HKCU\Software\MozillaPlugins\@talk.google.com/GoogleTalkPlugin: C:\Users\Swamy\AppData\Roaming\Mozilla\plugins\npgoogletalk.dll (Google)FF - HKCU\Software\MozillaPlugins\@talk.google.com/O1DPlugin: C:\Users\Swamy\AppData\Roaming\Mozilla\plugins\npo1d.dll (Google)FF - HKCU\Software\MozillaPlugins\@talk.google.com/O3DPlugin: C:\Users\Swamy\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dll ()FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Swamy\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.)FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Swamy\AppData\Local\Google\Update\1.3.21.165\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\hotfix@mozilla.org: C:\Users\Swamy\AppData\Roaming\Mozilla\Firefox\Extensions\MozillaHotfixFF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\hotfix@mozilla.org: C:\Users\Swamy\AppData\Roaming\Mozilla\Firefox\Extensions\MozillaHotfixFF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Swamy\AppData\Roaming\IDM\idmmzcc5 [2013-10-17 14:15:14 | 000,000,000 | ---D | M]FF - HKEY_CURRENT_USER\software\mozilla\SeaMonkey\Extensions\\mozilla_cc@internetdownloadmanager.com: C:\Users\Swamy\AppData\Roaming\IDM\idmmzcc5 [2013-10-17 14:15:14 | 000,000,000 | ---D | M] [2013-10-11 22:58:07 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Swamy\AppData\Roaming\Mozilla\Firefox\Extensions[2013-10-15 22:09:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions[2013-10-15 22:09:26 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd} ========== Chrome ========== CHR - default_search_provider: Google (Enabled)CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding}CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}{google:pageClassification}sugkey={google:suggestAPIKeyParameter},CHR - homepage: http://www.india-100.com/?hp=08062013CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.69\PepperFlash\pepflashplayer.dllCHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewerCHR - plugin: Native Client (Disabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.69\ppGoogleNaClPluginChrome.dllCHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files\Google\Chrome\Application\30.0.1599.69\pdf.dllCHR - plugin: Internet Download Manager Plugin (Enabled) = C:\Users\Swamy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.17.4_2\IDMGCExt.dllCHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 9.0\Reader\Browser\nppdf32.dllCHR - plugin: Google Talk Plugin (Enabled) = C:\Users\Swamy\AppData\Roaming\Mozilla\plugins\npgoogletalk.dllCHR - plugin: Google Talk Plugin Video Accelerator (Enabled) = C:\Users\Swamy\AppData\Roaming\Mozilla\plugins\npgtpo3dautoplugin.dllCHR - plugin: Google Talk Plugin Video Renderer (Enabled) = C:\Users\Swamy\AppData\Roaming\Mozilla\plugins\npo1d.dllCHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLLCHR - plugin: Microsoft Office 2010 (Enabled) = C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLLCHR - plugin: Picasa (Enabled) = C:\Program Files\Google\Picasa3\npPicasa3.dllCHR - plugin: Google Update (Enabled) = C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dllCHR - plugin: Java Platform SE 7 U21 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dllCHR - plugin: VLC Web Plugin (Enabled) = C:\Program Files\VideoLAN\VLC\npvlc.dllCHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_8_800_94.dllCHR - Extension: Google Docs = C:\Users\Swamy\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\CHR - Extension: Google Drive = C:\Users\Swamy\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\CHR - Extension: YouTube = C:\Users\Swamy\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\CHR - Extension: Adblock Plus = C:\Users\Swamy\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.6_0\CHR - Extension: Google Search = C:\Users\Swamy\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\CHR - Extension: IDM Integration = C:\Users\Swamy\AppData\Local\Google\Chrome\User Data\Default\Extensions\jmolcgpienlcieaajfkkdamlngancncm\6.17.4_0\CHR - Extension: Chrome In-App Payments service = C:\Users\Swamy\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.4.11_0\CHR - Extension: Gmail = C:\Users\Swamy\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2013-10-11 23:00:31 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hostsO1 - Hosts: 127.0.0.1 localhostO2 - BHO: (IDM integration (IDMIEHlprObj Class)) - {0055C089-8582-441B-A0BF-17B458C2A3A8} - C:\Program Files\Internet Download Manager\IDMIECC.dll (Internet Download Manager, Tonec Inc.)O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)O2 - BHO: (Java Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)O2 - BHO: (Java Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)O4 - HKLM..\Run: [AVG_UI] C:\Program Files\AVG\AVG2014\avgui.exe (AVG Technologies CZ, s.r.o.)O4 - HKU\S-1-5-21-3756954993-494701191-2749408217-1000..\Run: [FLBackup] C:\Program Files\NewSoftware's\Folder Lock\FLComServCtrl.exe ()O4 - HKU\S-1-5-21-3756954993-494701191-2749408217-1000..\Run: [iDMan] C:\Program Files\Internet Download Manager\IDMan.exe (Tonec Inc.)O4 - HKU\S-1-5-21-3756954993-494701191-2749408217-1000..\Run: [WinFLTray] C:\Windows\System32\WinFLTray.exe ( New Softwares.net)O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions presentO6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DisableStatusMessages = 0O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel presentO7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel presentO7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel presentO7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel presentO7 - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel presentO7 - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 0O7 - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0O7 - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2O7 - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1O8 - Extra context menu item: Download all links with IDM - C:\Program Files\Internet Download Manager\IEGetAll.htm ()O8 - Extra context menu item: Download with IDM - C:\Program Files\Internet Download Manager\IEExt.htm ()O9 - Extra Button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)O9 - Extra 'Tools' menuitem : Se&nd to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)O9 - Extra Button: OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)O9 - Extra 'Tools' menuitem : OneNote Lin&ked Notes - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.)O15 - HKU\S-1-5-21-3756954993-494701191-2749408217-1000\..Trusted Domains: cgg.gov.in ([karepass] http in Trusted sites)O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} http://download.eset.com/special/eos/OnlineScanner.cab (OnlineScanner Control)O16 - DPF: {8BC53B30-32E4-4ED3-BEF9-DB761DB77453} http://u3.sandisk.com/download/apps/LPInstaller.CAB (CInstallLPCtrl Object)O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{6A1BE518-C25A-465F-80B0-2A28FE2E0AD9}: NameServer = 101.223.255.141 101.223.255.142O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{9728D89D-FD31-4F3F-B271-78461D1F9F75}: NameServer = 202.148.200.3 202.148.202.4O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EE3BDC8A-C384-4362-84D3-98472BFE0151}: NameServer = 202.148.202.3 202.148.200.3O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)O32 - HKLM CDRom: AutoRun - 1O32 - AutoRun File - [2009-06-11 03:12:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]O32 - AutoRun File - [2010-04-10 11:00:00 | 000,000,045 | R--- | M] () - I:\AUTORUN.INF -- [ CDFS ]O32 - AutoRun File - [2010-04-10 11:00:00 | 000,143,360 | R--- | M] (Huawei Technologies Co., Ltd.) - I:\AutoRun.exe -- [ CDFS ]O34 - HKLM BootExecute: (autocheck autochk *)O35 - HKLM\..comfile [open] -- "%1" %*O35 - HKLM\..exefile [open] -- "%1" %*O37 - HKLM\...com [@ = ComFile] -- "%1" %*O37 - HKLM\...exe [@ = exefile] -- "%1" %*O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)O38 - SubSystems\\Windows: (ServerDll=sxssrv,4) ========== Files/Folders - Created Within 30 Days ========== [2013-10-17 14:25:24 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Swamy\Desktop\OTL.exe[2013-10-17 11:24:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AVG[2013-10-16 20:46:04 | 000,000,000 | ---D | C] -- C:\Kaspersky Rescue Disk 10.0[2013-10-16 18:04:01 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Roaming\AVG2014[2013-10-16 18:00:15 | 000,000,000 | -H-D | C] -- C:\$AVG[2013-10-16 18:00:14 | 000,000,000 | ---D | C] -- C:\ProgramData\AVG2014[2013-10-16 17:57:48 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Local\Avg2014[2013-10-16 17:50:37 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Local\Avg2013[2013-10-16 15:05:03 | 000,000,000 | ---D | C] -- C:\EbuDllTmpDir[2013-10-16 12:04:58 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Roaming\ImgBurn[2013-10-16 10:50:10 | 000,036,664 | ---- | C] (TuneUp Software) -- C:\Windows\System32\TURegOpt.exe[2013-10-16 10:50:09 | 000,025,400 | ---- | C] (TuneUp Software) -- C:\Windows\System32\authuitu.dll[2013-10-16 10:49:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014[2013-10-16 10:48:56 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2014[2013-10-16 10:47:32 | 000,000,000 | -HSD | C] -- C:\ProgramData\{FE8D473A-6F06-4F99-B5F4-BED72B2A038C}[2013-10-16 10:44:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn[2013-10-16 10:44:21 | 000,000,000 | ---D | C] -- C:\Program Files\ImgBurn[2013-10-15 23:33:54 | 001,619,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL[2013-10-15 23:33:54 | 001,074,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll[2013-10-15 23:33:54 | 000,739,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll[2013-10-15 23:33:54 | 000,283,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll[2013-10-15 23:33:54 | 000,135,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll[2013-10-15 23:33:53 | 000,218,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll[2013-10-15 23:33:53 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll[2013-10-15 23:33:52 | 003,181,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll[2013-10-15 23:33:52 | 001,495,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll[2013-10-15 23:33:52 | 001,170,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll[2013-10-15 23:33:52 | 000,442,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll[2013-10-15 23:33:52 | 000,219,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys[2013-10-15 23:33:52 | 000,107,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll[2013-10-15 23:33:51 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll[2013-10-15 22:09:29 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service[2013-10-14 21:15:24 | 000,000,000 | ---D | C] -- C:\Users\Swamy\Doctor Web[2013-10-13 21:46:48 | 000,000,000 | ---D | C] -- C:\_OTL[2013-10-12 00:24:25 | 000,000,000 | ---D | C] -- C:\Windows\temp[2013-10-12 00:23:31 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN[2013-10-11 23:33:56 | 000,000,000 | ---D | C] -- C:\Program Files\ESET[2013-10-11 22:58:35 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Local\temp[2013-10-11 21:27:47 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe[2013-10-11 21:27:47 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe[2013-10-11 21:27:47 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe[2013-10-11 21:27:39 | 000,000,000 | ---D | C] -- C:\Qoobox[2013-10-11 21:27:22 | 000,000,000 | ---D | C] -- C:\Windows\erdnt[2013-10-11 17:44:44 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Talk[2013-10-11 15:18:59 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes' Anti-Malware (portable)[2013-10-11 15:16:11 | 000,075,992 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys[2013-10-11 13:11:58 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Roaming\Malwarebytes[2013-10-11 13:11:48 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware[2013-10-11 13:11:47 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes[2013-10-11 13:11:46 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys[2013-10-11 13:11:46 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware[2013-10-10 21:33:52 | 000,000,000 | ---D | C] -- C:\FRST[2013-10-09 18:27:31 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Roaming\SUPERAntiSpyware.com[2013-10-09 15:41:51 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Local\ElevatedDiagnostics[2013-10-09 14:39:35 | 000,000,000 | ---D | C] -- C:\AdwCleaner[2013-10-08 15:02:40 | 000,000,000 | ---D | C] -- C:\Users\Swamy\Documents\FIFA 09[2013-10-04 20:28:49 | 000,505,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml.dll[2013-10-04 20:28:43 | 000,028,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxmlr.dll[2013-10-04 20:28:43 | 000,026,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xmlinst.exe[2013-10-04 20:28:43 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3a.dll[2013-10-04 20:28:42 | 000,089,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\VB5DB.DLL[2013-10-04 20:28:42 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft[2013-10-04 20:26:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\UBISOFT[2013-10-03 00:06:41 | 000,000,000 | ---D | C] -- C:\Users\Swamy\Documents\My Fingerprint Data[2013-10-03 00:06:41 | 000,000,000 | ---D | C] -- C:\ProgramData\JetFlash220[2013-10-02 23:08:15 | 000,000,000 | ---D | C] -- C:\Users\Swamy\AppData\Roaming\tmp[2013-10-02 13:23:45 | 000,000,000 | ---D | C] -- C:\Users\Swamy\Documents\GTA Vice City User Files[2013-09-30 10:32:57 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt[2013-09-26 14:03:13 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Video Convert Master[2013-09-26 14:03:12 | 000,000,000 | ---D | C] -- C:\Program Files\Video Convert Master[2013-09-25 20:57:14 | 000,120,632 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgdiskx.sys[2013-09-23 01:57:40 | 000,000,000 | ---D | C] -- C:\Windows\Minidump ========== Files - Modified Within 30 Days ========== [2013-10-17 14:25:28 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Swamy\Desktop\OTL.exe[2013-10-17 14:20:04 | 000,013,536 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0[2013-10-17 14:20:04 | 000,013,536 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0[2013-10-17 14:15:16 | 000,000,880 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job[2013-10-17 14:14:59 | 001,773,920 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT[2013-10-17 14:14:25 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat[2013-10-17 13:34:38 | 000,000,908 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3756954993-494701191-2749408217-1000UA.job[2013-10-17 13:34:00 | 000,000,856 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3756954993-494701191-2749408217-1000Core.job[2013-10-17 13:31:13 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job[2013-10-17 13:31:01 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job[2013-10-17 11:24:07 | 000,000,895 | ---- | M] () -- C:\Users\Public\Desktop\AVG 2014.lnk[2013-10-16 20:44:18 | 000,003,272 | ---- | M] () -- C:\bootsqm.dat[2013-10-16 14:49:29 | 000,662,484 | ---- | M] () -- C:\Windows\System32\perfh009.dat[2013-10-16 14:49:29 | 000,121,352 | ---- | M] () -- C:\Windows\System32\perfc009.dat[2013-10-16 14:45:21 | 000,001,944 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader 9.lnk[2013-10-16 10:50:02 | 000,002,115 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk[2013-10-16 10:50:02 | 000,002,089 | ---- | M] () -- C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk[2013-10-16 10:44:27 | 000,001,771 | ---- | M] () -- C:\Users\Public\Desktop\ImgBurn.lnk[2013-10-15 23:33:54 | 001,619,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVDECOD.DLL[2013-10-15 23:33:54 | 001,074,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll[2013-10-15 23:33:54 | 000,739,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d2d1.dll[2013-10-15 23:33:54 | 000,283,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsGdiConverter.dll[2013-10-15 23:33:54 | 000,135,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsRasterService.dll[2013-10-15 23:33:53 | 000,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1core.dll[2013-10-15 23:33:53 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10_1.dll[2013-10-15 23:33:52 | 003,181,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll[2013-10-15 23:33:52 | 001,495,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll[2013-10-15 23:33:52 | 001,170,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d10warp.dll[2013-10-15 23:33:52 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\XpsPrint.dll[2013-10-15 23:33:52 | 000,219,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\dxgmms1.sys[2013-10-15 23:33:52 | 000,107,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll[2013-10-15 23:33:51 | 000,196,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfreadwrite.dll[2013-10-15 22:09:32 | 000,001,065 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk[2013-10-15 01:11:08 | 000,891,167 | ---- | M] () -- C:\Users\Swamy\Desktop\SecurityCheck.exe[2013-10-14 20:09:14 | 132,580,728 | ---- | M] () -- C:\Users\Swamy\Desktop\6il2ugij.exe[2013-10-11 23:00:31 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts[2013-10-11 15:16:11 | 000,075,992 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbamchameleon.sys[2013-10-11 13:11:48 | 000,001,027 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk[2013-10-10 22:32:39 | 000,692,616 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe[2013-10-10 22:32:39 | 000,071,048 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl[2013-10-08 15:02:22 | 000,000,552 | ---- | M] () -- C:\Users\Swamy\Desktop\FIFA 09.lnk[2013-10-03 11:59:04 | 000,000,721 | ---- | M] () -- C:\Users\Swamy\Desktop\Condition Zero.lnk[2013-10-01 21:03:13 | 000,001,258 | RHS- | M] () -- C:\Users\Swamy\ntuser.pol[2013-09-26 14:03:19 | 000,000,902 | ---- | M] () -- C:\Users\Swamy\Desktop\Video Convert Master.lnk[2013-09-26 10:00:38 | 000,047,928 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgfwd6x.sys[2013-09-25 20:57:14 | 000,120,632 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Windows\System32\drivers\avgdiskx.sys ========== Files Created - No Company Name ========== [2013-10-17 14:14:11 | 001,773,920 | ---- | C] () -- C:\Windows\System32\FNTCACHE.DAT[2013-10-16 20:44:18 | 000,003,272 | ---- | C] () -- C:\bootsqm.dat[2013-10-16 18:02:37 | 000,000,895 | ---- | C] () -- C:\Users\Public\Desktop\AVG 2014.lnk[2013-10-16 10:50:02 | 000,002,115 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp 1-Click Maintenance.lnk[2013-10-16 10:50:02 | 000,002,089 | ---- | C] () -- C:\Users\Public\Desktop\TuneUp Utilities 2014.lnk[2013-10-16 10:49:55 | 000,002,101 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TuneUp Utilities 2014.lnk[2013-10-16 10:44:27 | 000,001,783 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ImgBurn.lnk[2013-10-16 10:44:27 | 000,001,771 | ---- | C] () -- C:\Users\Public\Desktop\ImgBurn.lnk[2013-10-15 22:09:32 | 000,001,077 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk[2013-10-15 22:09:32 | 000,001,065 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk[2013-10-15 01:00:23 | 000,891,167 | ---- | C] () -- C:\Users\Swamy\Desktop\SecurityCheck.exe[2013-10-14 21:12:46 | 132,580,728 | ---- | C] () -- C:\Users\Swamy\Desktop\6il2ugij.exe[2013-10-11 21:27:47 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe[2013-10-11 21:27:47 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe[2013-10-11 21:27:47 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe[2013-10-11 21:27:47 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe[2013-10-11 21:27:47 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe[2013-10-11 13:11:48 | 000,001,027 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk[2013-10-08 15:02:22 | 000,000,552 | ---- | C] () -- C:\Users\Swamy\Desktop\FIFA 09.lnk[2013-10-04 20:28:43 | 000,069,632 | ---- | C] () -- C:\Windows\System32\xmltok.dll[2013-10-04 20:28:43 | 000,036,864 | ---- | C] () -- C:\Windows\System32\xmlparse.dll[2013-10-04 20:28:43 | 000,035,840 | ---- | C] () -- C:\Windows\System32\comdlg32.oca[2013-10-04 20:28:42 | 000,029,184 | ---- | C] () -- C:\Windows\System32\MSINET.oca[2013-10-03 11:59:04 | 000,000,721 | ---- | C] () -- C:\Users\Swamy\Desktop\Condition Zero.lnk[2013-09-26 14:03:19 | 000,000,902 | ---- | C] () -- C:\Users\Swamy\Desktop\Video Convert Master.lnk[2013-07-03 17:43:13 | 002,463,976 | ---- | C] () -- C:\Windows\System32\NPSWF32.dll[2013-06-22 11:49:33 | 000,001,258 | RHS- | C] () -- C:\Users\Swamy\ntuser.pol[2013-05-05 14:41:55 | 000,011,776 | ---- | C] () -- C:\Users\Swamy\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini[2013-02-27 22:06:01 | 000,000,693 | -HS- | C] () -- C:\Windows\System32\win_lockerdb_sys.dat[2013-02-27 22:06:01 | 000,000,693 | -HS- | C] () -- C:\Users\Swamy\AppData\Local\win_lockerdb_sys.dat[2013-02-08 18:39:38 | 000,002,079 | -HS- | C] () -- C:\Windows\System32\win_fldb_sys.dat[2013-02-08 18:35:41 | 000,000,867 | ---- | C] () -- C:\Users\Swamy\AppData\Local\HackLogs.dat[2012-12-13 13:43:45 | 000,045,270 | ---- | C] () -- C:\Users\Swamy\AppData\Roaming\room_v3.dat[2012-11-19 16:17:14 | 000,116,224 | ---- | C] () -- C:\Windows\System32\pdfcmnnt.dll[2012-11-17 21:29:37 | 000,000,136 | ---- | C] () -- C:\Windows\UNlock.dat[2012-11-04 16:12:25 | 000,019,339 | ---- | C] () -- C:\Users\Swamy\AppData\Roaming\4356[2012-10-30 17:35:22 | 000,000,620 | -HS- | C] () -- C:\Users\Swamy\AppData\Local\settingsFL.dat[2012-10-30 17:33:03 | 000,002,599 | -HS- | C] () -- C:\Users\Swamy\AppData\Local\win_fldb_sys.dat[2012-10-30 17:31:11 | 000,000,700 | -HS- | C] () -- C:\Users\Swamy\AppData\Local\systemFL7.dat[2012-10-30 17:30:34 | 000,003,465 | -HS- | C] () -- C:\Windows\System32\win_stlthdb_sys.dat[2012-10-30 17:30:34 | 000,003,465 | -HS- | C] () -- C:\Users\Swamy\AppData\Local\win_stlthdb_sys.dat[2012-10-30 17:30:15 | 000,029,184 | ---- | C] () -- C:\Windows\System32\WinFLAdrv.sys[2012-10-30 17:30:13 | 000,188,176 | ---- | C] () -- C:\Windows\System32\WinVDEdrv6.sys[2012-10-30 17:29:56 | 000,014,024 | ---- | C] () -- C:\Windows\System32\WinFLMsgService.exe[2012-10-30 17:29:55 | 000,040,960 | ---- | C] () -- C:\Windows\System32\nwsftUninstall.exe[2012-10-19 15:13:05 | 000,000,161 | ---- | C] () -- C:\Windows\AutoKMS.ini[2012-10-08 21:31:42 | 000,000,990 | -HS- | C] () -- C:\Users\Swamy\AppData\Roaming\systemfl.$dk ========== ZeroAccess Check ========== [2009-07-14 10:12:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]"" = %SystemRoot%\system32\shell32.dll -- [2009-07-14 06:46:14 | 012,866,560 | ---- | M] (Microsoft Corporation)"ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]"" = %systemroot%\system32\wbem\fastprox.dll -- [2009-07-14 06:45:20 | 000,605,696 | ---- | M] (Microsoft Corporation)"ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]"" = %systemroot%\system32\wbem\wbemess.dll -- [2009-07-14 06:46:17 | 000,342,528 | ---- | M] (Microsoft Corporation)"ThreadingModel" = Both ========== LOP Check ========== [2013-05-09 21:02:33 | 000,000,000 | ---D | M] -- C:\Users\Default\AppData\Roaming\TuneUp Software[2013-05-09 21:02:33 | 000,000,000 | ---D | M] -- C:\Users\Default User\AppData\Roaming\TuneUp Software[2013-09-10 17:16:17 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\AnvsoftPdfTools[2013-10-16 18:04:01 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\AVG2014[2013-04-29 16:14:13 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\BitTorrent[2013-01-29 21:39:33 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\COWON[2013-07-31 19:07:14 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\Crayon Physics Deluxe[2013-10-17 14:12:28 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\DMCache[2013-10-02 13:16:45 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\GameRanger[2012-12-15 11:08:08 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\GarenaPlus[2013-10-16 11:27:45 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\IDM[2013-10-16 12:04:58 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\ImgBurn[2013-10-01 14:02:46 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\MCommon[2012-11-18 13:42:16 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\SoftOrbits[2013-10-02 23:19:24 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\tmp[2013-10-16 10:49:36 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\TuneUp Software[2012-11-05 12:06:43 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\TypingMaster7[2013-01-17 21:14:15 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\Unigraphics Solutions[2013-10-10 21:31:42 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\uTorrent[2013-04-07 22:27:21 | 000,000,000 | ---D | M] -- C:\Users\Swamy\AppData\Roaming\WinLive ========== Purity Check ========== ========== Files - Unicode (All) ==========[2013-01-07 19:38:48 | 000,001,138 | ---- | M] ()(C:\Windows\System32\?????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????-???????-????????????vn Girl - Sex Videos, Adult Movies, Porn V.lnk) -- C:\Windows\System32\楦敬⼺⼯㩃唯敳獲匯慷祭䐯睯汮慯獤嘯摩潥嘯摩潥┭〲晈ⵦ㈰┰〲畃楲獯瑩╹〲┳〲潓╮〲晏㈥䄰㈥䠰畯敳敫灥牥㈥吰╯〲湁潮╹〲態敲╮〲┭〲晨ⵦ㈰┰〲畣楲獯瑩╹〲┳〲潳╮〲景㈥愰㈥栰畯敳敫灥牥㈥琰╯〲湡潮╹〲慫敲╮〲┭〲獁慩╮〲楇汲㈥ⴰ㈥匰硥㈥嘰摩潥ⱳ㈥䄰畤瑬㈥䴰癯敩ⱳ㈥倰牯╮〲楖敤獯┬〲敓祸㈥䌰楬獰┬〲牆敥㈥堰塘㈥估汮湩⹥汦vn Girl - Sex Videos, Adult Movies, Porn V.lnk[2013-01-06 18:34:18 | 000,001,138 | ---- | C] ()(C:\Windows\System32\?????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????????-???????-????????????vn Girl - Sex Videos, Adult Movies, Porn V.lnk) -- C:\Windows\System32\楦敬⼺⼯㩃唯敳獲匯慷祭䐯睯汮慯獤嘯摩潥嘯摩潥┭〲晈ⵦ㈰┰〲畃楲獯瑩╹〲┳〲潓╮〲晏㈥䄰㈥䠰畯敳敫灥牥㈥吰╯〲湁潮╹〲態敲╮〲┭〲晨ⵦ㈰┰〲畣楲獯瑩╹〲┳〲潳╮〲景㈥愰㈥栰畯敳敫灥牥㈥琰╯〲湡潮╹〲慫敲╮〲┭〲獁慩╮〲楇汲㈥ⴰ㈥匰硥㈥嘰摩潥ⱳ㈥䄰畤瑬㈥䴰癯敩ⱳ㈥倰牯╮〲楖敤獯┬〲敓祸㈥䌰楬獰┬〲牆敥㈥堰塘㈥估汮湩⹥汦vn Girl - Sex Videos, Adult Movies, Porn V.lnk[2012-12-21 23:37:14 | 000,001,888 | ---- | M] ()(C:\Windows\System32\????????????????????????????????????????????????????????????????????????????????????????¦????????????????????????????????-???????-????????????vto - Sex Videos, Adult Movies, Porn Videos, Sexy Clips, F.lnk) -- C:\Windows\System32\楦敬⼺⼯㩃唯敳獲匯慷祭䐯睯汮慯獤嘯摩潥嘯摩潥┭〲牄⵳㌸㈥䈰杩㈥吰瑩╳〲慄杵瑨牥㈥䄰摮㈥估獢散敮㈥䘰浡汩╹〲┭〲牤⵳㌸㈥戰杩㈥琰瑩╳〲慤杵瑨牥㈥愰摮㈥漰獢散敮㈥昰浡汩╹〲┭〲獁歵╡〲潍楲潭潴㈥ⴰ㈥匰硥㈥嘰摩潥ⱳ㈥䄰畤瑬㈥䴰癯敩ⱳ㈥倰牯╮〲楖敤獯┬〲敓祸㈥䌰楬獰┬〲牆敥㈥堰塘㈥估汮湩⹥汦vto - Sex Videos, Adult Movies, Porn Videos, Sexy Clips, F.lnk[2012-12-21 23:37:14 | 000,001,888 | ---- | C] ()(C:\Windows\System32\????????????????????????????????????????????????????????????????????????????????????????¦????????????????????????????????-???????-????????????vto - Sex Videos, Adult Movies, Porn Videos, Sexy Clips, F.lnk) -- C:\Windows\System32\楦敬⼺⼯㩃唯敳獲匯慷祭䐯睯汮慯獤嘯摩潥嘯摩潥┭〲牄⵳㌸㈥䈰杩㈥吰瑩╳〲慄杵瑨牥㈥䄰摮㈥估獢散敮㈥䘰浡汩╹〲┭〲牤⵳㌸㈥戰杩㈥琰瑩╳〲慤杵瑨牥㈥愰摮㈥漰獢散敮㈥昰浡汩╹〲┭〲獁歵╡〲潍楲潭潴㈥ⴰ㈥匰硥㈥嘰摩潥ⱳ㈥䄰畤瑬㈥䴰癯敩ⱳ㈥倰牯╮〲楖敤獯┬〲敓祸㈥䌰楬獰┬〲牆敥㈥堰塘㈥估汮湩⹥汦vto - Sex Videos, Adult Movies, Porn Videos, Sexy Clips, F.lnk < End of report > Extras.Txt
  3. Luffy_zoro
    Something really simple and fantastic happened......I have scanned so many times using malwarebytes i have looked at the point where the scan would freeze and make the system restart.....The path which used to do tht is: C:\Windows\ServiceProfiles\LocalProfiles\Appdata\Local\FontCache..."lots of numbers"..dat.......this was the point where Scan froze......I saw it so Many times...I got really pissed off went to safe mode and deleted the file in location....There were three files...... And later started a scan in malwarebytes the scan went smoothly and completed...................But i am still worried though a simple delete would solve the issue... So what to do now.... I have posted the log from malwarebytes so please check on it and tell me what to... i have not deleted anything from threats found in malwarebytes...i have left it like that...Do u want me simply remove the threats???? MBAM-log-2013-10-17 (12-31-21).txt
  4. Luffy_zoro
    NO there are no files in the minidump folder......The system restarted during the malwarebytes scan i am sure of it....but there was a blue screen just this time, it only flashed for a second...
  5. Luffy_zoro
    The system again restarted during the mawarebytes scan....only this time before restarting blue screen flashed for a second and the system restarted again.....
  6. Luffy_zoro
    i couldn find the scanoject log.... so i booted again with kaspersky and from there i saved the detailed report manually of the previous scan.....i am attaching the file i obtained.....i also have the threats detected seperately........ scan object.txt 12334.txt
  7. Luffy_zoro
    i Scaned using kaspersky.... after restarting into windows there is no log in the specified folder.... the scan went smoothly ....there was no problems ....It found 5 threats it couldn disinfect ...i deleted them....
  8. Luffy_zoro
    should i write this in a disk....... cant i boot using portable drive..
  9. Luffy_zoro
    I did the clean boot and ran the malwarebytes as soon as the system restarted but again the system froze and restarted..... Now i have found out that even mozilla firefox causes the problem.. i was not using firefox for sometime only chrome i used......When i tried to run firefox system restarted...Even after complete uninstall and during the installation of firefox the system restarted...... Is this malware contagious... I have attached Dr.web scan log just in case..... cureit.log
  10. Luffy_zoro
    No there are no such logs...only protection logs are there in the Log Tab...............
  11. Luffy_zoro
    this the recent log 2013/10/15 01:16:04 +0530 SWAMY-PC (null) MESSAGE Starting protection 2013/10/15 01:16:05 +0530 SWAMY-PC (null) MESSAGE Protection started successfully 2013/10/15 01:16:05 +0530 SWAMY-PC (null) MESSAGE Starting IP protection 2013/10/15 01:16:07 +0530 SWAMY-PC (null) MESSAGE IP Protection started successfully 2013/10/15 11:29:17 +0530 SWAMY-PC (null) MESSAGE Starting protection 2013/10/15 11:29:17 +0530 SWAMY-PC (null) MESSAGE Protection started successfully 2013/10/15 11:29:17 +0530 SWAMY-PC (null) MESSAGE Starting IP protection 2013/10/15 11:29:21 +0530 SWAMY-PC (null) MESSAGE IP Protection started successfully
  12. Luffy_zoro
    System restarted during malwarebytes scan...Dr.web scan there no problems it went smooth found threats...
  13. Luffy_zoro
    I am sure during DR.web scan there were no threats found................I ran the malware scan but system restarted during the scan................I did the security check ... Results of screen317's Security Check version 0.99.74 Windows 7 x86 (UAC is enabled) Out of date service pack!! ``````````````Antivirus/Firewall Check:`````````````` Windows Firewall Enabled! AVG AntiVirus Free Edition 2013 Antivirus up to date! `````````Anti-malware/Other Utilities Check:````````` TuneUp Utilities 2012 TuneUp Utilities Language Pack (en-US) Java 7 Update 21 Java version out of Date! Adobe Flash Player 11.9.900.117 Adobe Reader 9 Adobe Reader out of Date! Mozilla Firefox 16.0.2 Firefox out of Date! Google Chrome 27.0.1453.116 Google Chrome 30.0.1599.69 ````````Process Check: objlist.exe by Laurent```````` Malwarebytes Anti-Malware mbamservice.exe AVG avgwdsvc.exe AVG avgrsx.exe AVG avgnsx.exe AVG avgemc.exe Malwarebytes' Anti-Malware mbamscheduler.exe `````````````````System Health check````````````````` Total Fragmentation on Drive C: 2% ````````````````````End of Log``````````````````````
  14. Luffy_zoro
    dr.web log
  15. Luffy_zoro
    There were no threats found....What next
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.