RSMBBDAD

November 10, 2012

Done.

Got the appropriate message.

Restarted.

Not corrected. Still can not enable the "enable malicious website blocking" in Malwarebytes>Protection

November 9, 2012

07:55:49.0421 1576 TDSS rootkit removing tool 2.8.15.0 Oct 31 2012 21:47:35

07:55:50.0109 1576 ============================================================

07:55:50.0109 1576 Current date / time: 2012/11/09 07:55:50.0109

07:55:50.0109 1576 SystemInfo:

07:55:50.0109 1576

07:55:50.0109 1576 OS Version: 5.2.3790 ServicePack: 2.0

07:55:50.0109 1576 Product type: Workstation

07:55:50.0109 1576 ComputerName: ASUSSMALL

07:55:50.0109 1576 UserName: Administrator

07:55:50.0109 1576 Windows directory: C:\WINDOWS

07:55:50.0109 1576 System windows directory: C:\WINDOWS

07:55:50.0109 1576 Running under WOW64

07:55:50.0109 1576 Processor architecture: Intel x64

07:55:50.0109 1576 Number of processors: 2

07:55:50.0109 1576 Page size: 0x1000

07:55:50.0109 1576 Boot type: Normal boot

07:55:50.0109 1576 ============================================================

07:55:51.0062 1576 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000044

07:55:51.0078 1576 ============================================================

07:55:51.0078 1576 \Device\Harddisk0\DR0:

07:55:51.0078 1576 MBR partitions:

07:55:51.0078 1576 \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x1A38F37A

07:55:51.0078 1576 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x1A38F3F8, BlocksNum 0x3D1B5F09

07:55:51.0078 1576 ============================================================

07:55:51.0125 1576 C: <-> \Device\Harddisk0\DR0\Partition1

07:55:51.0125 1576 D: <-> \Device\Harddisk0\DR0\Partition2

07:55:51.0125 1576 ============================================================

07:55:51.0125 1576 Initialize success

07:55:51.0125 1576 ============================================================

07:55:54.0375 2424 ============================================================

07:55:54.0375 2424 Scan started

07:55:54.0375 2424 Mode: Manual;

07:55:54.0375 2424 ============================================================

07:55:54.0609 2424 ================ Scan system memory ========================

07:55:54.0609 2424 System memory - ok

07:55:54.0609 2424 ================ Scan services =============================

07:55:54.0671 2424 Abiosdsk - ok

07:55:54.0703 2424 [ 0CC42D1FB637112DE6F6196DDAF83DEC ] ACPI C:\WINDOWS\system32\DRIVERS\ACPI.sys

07:55:54.0703 2424 ACPI - ok

07:55:54.0734 2424 [ A4D4F508BC6613442B0C32CDE443E382 ] ACPIEC C:\WINDOWS\system32\drivers\ACPIEC.sys

07:55:54.0734 2424 ACPIEC - ok

07:55:54.0796 2424 [ 0CB0AA071C7B86A64F361DCFDF357329 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe

07:55:54.0796 2424 AdobeFlashPlayerUpdateSvc - ok

07:55:54.0796 2424 adpu160m - ok

07:55:54.0796 2424 adpu320 - ok

07:55:54.0843 2424 [ 92500BC3A6E241BBC357F532DD500A75 ] aec C:\WINDOWS\system32\drivers\aec.sys

07:55:54.0843 2424 aec - ok

07:55:54.0859 2424 [ AC7010DDE9111A1C65D7391ADA5C7257 ] AeLookupSvc C:\WINDOWS\System32\aelupsvc.dll

07:55:54.0859 2424 AeLookupSvc - ok

07:55:54.0890 2424 [ 886C37D055020D0D02C35AC5B84E76AB ] AFD C:\WINDOWS\System32\drivers\afd.sys

07:55:54.0890 2424 AFD - ok

07:55:54.0906 2424 aic78u2 - ok

07:55:54.0906 2424 aic78xx - ok

07:55:54.0921 2424 [ AFA2CF7CB731CA177CCCFFFFE5D88776 ] Alerter C:\WINDOWS\system32\alrsvc.dll

07:55:54.0921 2424 Alerter - ok

07:55:54.0937 2424 [ 2D21FF6D4CD30E679F1A294D5BA3D97B ] ALG C:\WINDOWS\System32\alg.exe

07:55:54.0937 2424 ALG - ok

07:55:54.0937 2424 AliIde - ok

07:55:55.0015 2424 [ AC75C8BDF6251E117FED0F8EC0E10D17 ] Ambfilt64 C:\WINDOWS\system32\drivers\Ambft64.sys

07:55:55.0046 2424 Ambfilt64 - ok

07:55:55.0046 2424 AmdIde - ok

07:55:55.0078 2424 [ 4F6B2DE8BC199C542F174844BB64485A ] AppMgmt C:\WINDOWS\System32\appmgmts.dll

07:55:55.0078 2424 AppMgmt - ok

07:55:55.0093 2424 arc - ok

07:55:55.0109 2424 [ 68726474C69B738EAC3A62E06B33ADDC ] AsIO C:\WINDOWS\syswow64\drivers\AsIO.sys

07:55:55.0109 2424 AsIO - ok

07:55:55.0156 2424 [ F9F0F095586009E5DA0C32E648AA99FA ] aspnet_state C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\aspnet_state.exe

07:55:55.0171 2424 aspnet_state - ok

07:55:55.0171 2424 [ 26D66E32E78D3059715B3A17BC679CD9 ] AsUpIO C:\WINDOWS\syswow64\drivers\AsUpIO.sys

07:55:55.0171 2424 AsUpIO - ok

07:55:55.0187 2424 [ 7380ACDD2D8E6621392E56D9A0467FE4 ] AsyncMac C:\WINDOWS\system32\DRIVERS\asyncmac.sys

07:55:55.0187 2424 AsyncMac - ok

07:55:55.0203 2424 [ 7A1814D0D112F50F828E25557A1ED29F ] atapi C:\WINDOWS\system32\DRIVERS\atapi.sys

07:55:55.0203 2424 atapi - ok

07:55:55.0203 2424 Atdisk - ok

07:55:55.0218 2424 [ 62D65FCE5695B53A2DDF92E83111EA06 ] Atmarpc C:\WINDOWS\system32\DRIVERS\atmarpc.sys

07:55:55.0218 2424 Atmarpc - ok

07:55:55.0234 2424 [ 0DA015AB1EE54988572CFC4B7644556A ] AudioSrv C:\WINDOWS\System32\audiosrv.dll

07:55:55.0234 2424 AudioSrv - ok

07:55:55.0250 2424 [ 1437089F59DBA75FEE4ED959077A938E ] audstub C:\WINDOWS\system32\DRIVERS\audstub.sys

07:55:55.0250 2424 audstub - ok

07:55:55.0265 2424 [ 8BA2E5CDFDE406DC4646AFB894804844 ] Beep C:\WINDOWS\system32\drivers\Beep.sys

07:55:55.0265 2424 Beep - ok

07:55:55.0296 2424 [ 749C15323919984A6E08BAD427D89936 ] BITS C:\WINDOWS\system32\qmgr.dll

07:55:55.0312 2424 BITS - ok

07:55:55.0328 2424 [ 3F12A27C914C83CACA78B6DBF4C39FA2 ] Browser C:\WINDOWS\System32\browser.dll

07:55:55.0328 2424 Browser - ok

07:55:55.0359 2424 [ 2367A4DDA10960624FE696BCEDFC995A ] CCDECODE C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

07:55:55.0359 2424 CCDECODE - ok

07:55:55.0375 2424 [ 982563CF02CD6D4E5D8E0F4B5CBB9B6A ] CdaC15BA C:\WINDOWS\system32\DRIVERS\CdaC15BA.sys

07:55:55.0375 2424 CdaC15BA - ok

07:55:55.0390 2424 [ 9067D96899D98CA4535A76E8C8B2E3A5 ] CdaD10BA C:\WINDOWS\system32\DRIVERS\CdaD10BA.sys

07:55:55.0390 2424 CdaD10BA - ok

07:55:55.0406 2424 [ 4D99E36322FB51A8D1B2B6D6B69D9889 ] Cdfs C:\WINDOWS\system32\drivers\Cdfs.sys

07:55:55.0406 2424 Cdfs - ok

07:55:55.0421 2424 [ 11663FE50E499FFEE77979542B285F38 ] Cdrom C:\WINDOWS\system32\DRIVERS\cdrom.sys

07:55:55.0421 2424 Cdrom - ok

07:55:55.0421 2424 Changer - ok

07:55:55.0437 2424 [ 46C54F209031AFA0F100D0703FC346DA ] CiSvc C:\WINDOWS\system32\cisvc.exe

07:55:55.0437 2424 CiSvc - ok

07:55:55.0453 2424 [ 74F11D0323666D9F615A2D3692590122 ] ClipSrv C:\WINDOWS\system32\clipsrv.exe

07:55:55.0453 2424 ClipSrv - ok

07:55:55.0484 2424 [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

07:55:55.0500 2424 clr_optimization_v2.0.50727_32 - ok

07:55:55.0500 2424 [ FA58B51ED71C9133E141164EAA7C54EB ] clr_optimization_v2.0.50727_64 C:\WINDOWS\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe

07:55:55.0500 2424 clr_optimization_v2.0.50727_64 - ok

07:55:55.0531 2424 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe

07:55:55.0531 2424 clr_optimization_v4.0.30319_32 - ok

07:55:55.0546 2424 [ C6F9AF94DCD58122A4D7E89DB6BED29D ] clr_optimization_v4.0.30319_64 C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe

07:55:55.0546 2424 clr_optimization_v4.0.30319_64 - ok

07:55:55.0546 2424 CmdIde - ok

07:55:55.0562 2424 COMSysApp - ok

07:55:55.0593 2424 [ C9C25778EFE890BAA4087E32937016A0 ] cpuz132 C:\WINDOWS\system32\drivers\cpuz132_x64.sys

07:55:55.0593 2424 cpuz132 - ok

07:55:55.0625 2424 [ 641243746597FBD650E5000D95811EA3 ] cpuz133 C:\WINDOWS\system32\drivers\cpuz133_x64.sys

07:55:55.0625 2424 cpuz133 - ok

07:55:55.0625 2424 [ 423F7A6E3AF4C2A73C8C8AD945F72CBA ] crcdisk C:\WINDOWS\system32\DRIVERS\crcdisk.sys

07:55:55.0625 2424 crcdisk - ok

07:55:55.0640 2424 [ 8B0B3744C60936ACAE31012799DB3982 ] CryptSvc C:\WINDOWS\System32\cryptsvc.dll

07:55:55.0640 2424 CryptSvc - ok

07:55:55.0687 2424 [ A6130365606F3D6332B014FC3DA931AA ] DcomLaunch C:\WINDOWS\system32\rpcss.dll

07:55:55.0687 2424 DcomLaunch - ok

07:55:55.0734 2424 [ DE4C841DDA8D5800515A5CA908580A36 ] Dhcp C:\WINDOWS\System32\dhcpcsvc.dll

07:55:55.0734 2424 Dhcp - ok

07:55:55.0734 2424 [ 417D7B9C6F36685A417E54690F8BD7B2 ] Disk C:\WINDOWS\system32\DRIVERS\disk.sys

07:55:55.0734 2424 Disk - ok

07:55:55.0750 2424 dmadmin - ok

07:55:55.0765 2424 [ 19D704C92C2E2BD4DC99DB18A3523918 ] dmboot C:\WINDOWS\system32\drivers\dmboot.sys

07:55:55.0765 2424 dmboot - ok

07:55:55.0781 2424 [ B293CE1C9243219F6B9E5DBCAA75B962 ] dmio C:\WINDOWS\system32\drivers\dmio.sys

07:55:55.0781 2424 dmio - ok

07:55:55.0781 2424 [ C294E31D6CB7407A43C96EC1FEC1F8A4 ] dmload C:\WINDOWS\system32\drivers\dmload.sys

07:55:55.0781 2424 dmload - ok

07:55:55.0796 2424 [ 76F7E7922F428BE040F800920BB8FF3B ] dmserver C:\WINDOWS\System32\dmserver.dll

07:55:55.0796 2424 dmserver - ok

07:55:55.0812 2424 [ 19C1612C4F5D828935D2270C7AF13E6E ] Dnscache C:\WINDOWS\System32\dnsrslvr.dll

07:55:55.0812 2424 Dnscache - ok

07:55:55.0843 2424 [ A1B065DF9F5FC7CA177DFB3AA30AA97E ] dot4 C:\WINDOWS\system32\DRIVERS\Dot4.sys

07:55:55.0843 2424 dot4 - ok

07:55:55.0843 2424 [ 220E12EA954F0A2001697976428A9CF9 ] Dot4Print C:\WINDOWS\system32\DRIVERS\Dot4Prt.sys

07:55:55.0843 2424 Dot4Print - ok

07:55:55.0859 2424 [ 0AC64F5F7718D4BC30AA081B1170423D ] dot4usb C:\WINDOWS\system32\DRIVERS\dot4usb.sys

07:55:55.0859 2424 dot4usb - ok

07:55:55.0859 2424 dpti2o - ok

07:55:55.0890 2424 [ 1CB7FB55D52D41731D66EBE3988E0806 ] epmntdrv C:\WINDOWS\system32\epmntdrv.sys

07:55:55.0890 2424 epmntdrv - ok

07:55:55.0890 2424 [ B063A36E4E027A9DBE2B019EBBBEAE86 ] ERSvc C:\WINDOWS\System32\ersvc.dll

07:55:55.0890 2424 ERSvc - ok

07:55:55.0906 2424 [ FB949ED2C93C878A189039F3D7730942 ] EuGdiDrv C:\WINDOWS\system32\EuGdiDrv.sys

07:55:55.0906 2424 EuGdiDrv - ok

07:55:55.0921 2424 [ 1E07EE3F50DFF2FE9B0A9D196E82698F ] Eventlog C:\WINDOWS\system32\services.exe

07:55:55.0921 2424 Eventlog - ok

07:55:55.0953 2424 [ CDEF30A1DCFFCAF6A4E8B7812AE79C95 ] EventSystem C:\WINDOWS\system32\es.dll

07:55:55.0953 2424 EventSystem - ok

07:55:55.0984 2424 [ 7C713B9F6F968F135D3D819492882CDD ] Fastfat C:\WINDOWS\system32\drivers\Fastfat.sys

07:55:55.0984 2424 Fastfat - ok

07:55:56.0000 2424 [ EE07F2A9423199FF95BFDD33BACF066C ] Fax C:\WINDOWS\system32\fxssvc.exe

07:55:56.0015 2424 Fax - ok

07:55:56.0031 2424 [ 7E35D423FF10AB5B8AF1D3DE86236690 ] Fdc C:\WINDOWS\system32\drivers\Fdc.sys

07:55:56.0031 2424 Fdc - ok

07:55:56.0062 2424 [ 73EA9000F8FB2E060954EB7C3377A3C7 ] Fips C:\WINDOWS\system32\drivers\Fips.sys

07:55:56.0062 2424 Fips - ok

07:55:56.0062 2424 [ 8AC77974378EAC3548330951A5DEEEBF ] Flpydisk C:\WINDOWS\system32\drivers\Flpydisk.sys

07:55:56.0062 2424 Flpydisk - ok

07:55:56.0062 2424 [ 087DB260F98056AC40261ACAE4240882 ] FltMgr C:\WINDOWS\system32\drivers\fltmgr.sys

07:55:56.0078 2424 FltMgr - ok

07:55:56.0109 2424 [ 8A4DCD28D2BE12946F6D5D308B0942A6 ] FontCache3.0.0.0 C:\WINDOWS\Microsoft.NET\Framework64\v3.0\WPF\PresentationFontCache.exe

07:55:56.0109 2424 FontCache3.0.0.0 - ok

07:55:56.0125 2424 [ 70DF80567A55A97894B4E8952EC5E7FC ] Fs_Rec C:\WINDOWS\system32\drivers\Fs_Rec.sys

07:55:56.0125 2424 Fs_Rec - ok

07:55:56.0140 2424 [ E90AA7C073519DD8571670818CB85CCB ] Ftdisk C:\WINDOWS\system32\DRIVERS\ftdisk.sys

07:55:56.0140 2424 Ftdisk - ok

07:55:56.0140 2424 [ 865D4D0B4E3730EF8040000CFB846D9F ] Gpc C:\WINDOWS\system32\DRIVERS\msgpc.sys

07:55:56.0140 2424 Gpc - ok

07:55:56.0171 2424 [ D36E47728CDBC8D17A77D36A6CBC29BB ] HDAudBus C:\WINDOWS\system32\DRIVERS\HDAudBus.sys

07:55:56.0187 2424 HDAudBus - ok

07:55:56.0203 2424 [ 40E274B64843813A81C42687592339D7 ] helpsvc C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

07:55:56.0218 2424 helpsvc - ok

07:55:56.0218 2424 [ 9648AD494BE12B39ACC2DB638E2340A0 ] HidServ C:\WINDOWS\System32\hidserv.dll

07:55:56.0218 2424 HidServ - ok

07:55:56.0234 2424 [ F32BEC5614A61BBB2BEDE070D279F88B ] hidusb C:\WINDOWS\system32\DRIVERS\hidusb.sys

07:55:56.0234 2424 hidusb - ok

07:55:56.0265 2424 [ B54738DF11D0E06072BF9C332DB1D254 ] HTTP C:\WINDOWS\system32\Drivers\HTTP.sys

07:55:56.0265 2424 HTTP - ok

07:55:56.0281 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] HTTPFilter C:\WINDOWS\System32\lsass.exe

07:55:56.0281 2424 HTTPFilter - ok

07:55:56.0281 2424 i2omgmt - ok

07:55:56.0281 2424 [ 50FD608643D9B56C4C75C0784513F77E ] i8042prt C:\WINDOWS\system32\DRIVERS\i8042prt.sys

07:55:56.0281 2424 i8042prt - ok

07:55:56.0343 2424 [ F48F60EEE36720BBF88E945D802ECB05 ] ialm C:\WINDOWS\system32\DRIVERS\igxpmp64.sys

07:55:56.0406 2424 ialm - ok

07:55:56.0406 2424 IASJet - ok

07:55:56.0453 2424 [ 501CF65702D7F64C38DB360F7EB07ADC ] idsvc C:\WINDOWS\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\infocard.exe

07:55:56.0468 2424 idsvc - ok

07:55:56.0468 2424 iirsp - ok

07:55:56.0468 2424 [ D2E541613B72FF9FCEDF37B166930706 ] imapi C:\WINDOWS\system32\DRIVERS\imapi.sys

07:55:56.0468 2424 imapi - ok

07:55:56.0500 2424 [ 9014C144CD95EEE1F5884664A4BFB4D8 ] ImapiService C:\WINDOWS\system32\imapi.exe

07:55:56.0500 2424 ImapiService - ok

07:55:56.0609 2424 [ 42BDAC681D13FFE0F74E882F3475C732 ] IntcAzAudAddService C:\WINDOWS\system32\drivers\RTKHDA64.SYS

07:55:56.0687 2424 IntcAzAudAddService - ok

07:55:56.0687 2424 [ 8D875F7FD8DAA9AFC102841D15C668ED ] IntcHdmiAddService C:\WINDOWS\system32\drivers\IntcHdmi.sys

07:55:56.0687 2424 IntcHdmiAddService - ok

07:55:56.0703 2424 IntelIde - ok

07:55:56.0718 2424 [ F8DEF5F83DEF3D1EE89BC851BFB6A886 ] intelppm C:\WINDOWS\system32\DRIVERS\intelppm.sys

07:55:56.0718 2424 intelppm - ok

07:55:56.0734 2424 [ 6601A43EE389D0ADB11AAEDE9A98036B ] Ip6Fw C:\WINDOWS\system32\drivers\ip6fw.sys

07:55:56.0734 2424 Ip6Fw - ok

07:55:56.0750 2424 [ 1B1B4654A5492A42D2E1BF5B2B22D32B ] IpFilterDriver C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

07:55:56.0750 2424 IpFilterDriver - ok

07:55:56.0750 2424 IpInIp - ok

07:55:56.0765 2424 [ 088ECB04137DF1F52EC10C29D57A8CCA ] IpNat C:\WINDOWS\system32\DRIVERS\ipnat.sys

07:55:56.0765 2424 IpNat - ok

07:55:56.0765 2424 [ DB841EC6F027C780002EF47AABFDDF86 ] IPSec C:\WINDOWS\system32\DRIVERS\ipsec.sys

07:55:56.0765 2424 IPSec - ok

07:55:56.0781 2424 [ 8B7015EA0171242CCA03C2FB48CCC771 ] IRENUM C:\WINDOWS\system32\DRIVERS\irenum.sys

07:55:56.0781 2424 IRENUM - ok

07:55:56.0796 2424 [ D994162E4D8E931FC16A892A87852BBB ] isapnp C:\WINDOWS\system32\DRIVERS\isapnp.sys

07:55:56.0796 2424 isapnp - ok

07:55:56.0859 2424 [ B591E761161D1EF547D76EF236EAA6A5 ] JavaQuickStarterService C:\Program Files (x86)\Java\jre7\bin\jqs.exe

07:55:56.0859 2424 JavaQuickStarterService - ok

07:55:56.0875 2424 [ E85095372008A9194C7ED6206CB782DA ] Kbdclass C:\WINDOWS\system32\DRIVERS\kbdclass.sys

07:55:56.0875 2424 Kbdclass - ok

07:55:56.0875 2424 [ F96D8CEC38EFD64AAF41976D214FC54E ] kbdhid C:\WINDOWS\system32\DRIVERS\kbdhid.sys

07:55:56.0875 2424 kbdhid - ok

07:55:56.0906 2424 [ 1B280B3B4C10CC2E3EC3AEC17EB6B658 ] kmixer C:\WINDOWS\system32\drivers\kmixer.sys

07:55:56.0906 2424 kmixer - ok

07:55:56.0921 2424 [ EDCDC587073AC4BE72C5A66FE30ACA00 ] KSecDD C:\WINDOWS\system32\drivers\KSecDD.sys

07:55:56.0921 2424 KSecDD - ok

07:55:56.0937 2424 [ 5CB302B6CAACE41AF70C34B56EB3DB23 ] ksthunk C:\WINDOWS\system32\drivers\ksthunk.sys

07:55:56.0937 2424 ksthunk - ok

07:55:56.0953 2424 [ 1C0BB341A5E2820DD84A688FD3D086A4 ] L1e C:\WINDOWS\system32\DRIVERS\l1e51x64.sys

07:55:56.0953 2424 L1e - ok

07:55:56.0984 2424 [ 4D8E9A805ADD244B5C511147A5D9BB8C ] lanmanserver C:\WINDOWS\System32\srvsvc.dll

07:55:56.0984 2424 lanmanserver - ok

07:55:57.0015 2424 [ BF4105D3EB357652A4EA73F170715ACD ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll

07:55:57.0015 2424 lanmanworkstation - ok

07:55:57.0031 2424 [ 80DB42573F8EF6CBB6A7A0FF6966A352 ] LmHosts C:\WINDOWS\System32\lmhsvc.dll

07:55:57.0031 2424 LmHosts - ok

07:55:57.0062 2424 [ A014E25D95F7091000B60FF8A1C2E988 ] lvpopf64 C:\WINDOWS\system32\DRIVERS\lvpopf64.sys

07:55:57.0078 2424 lvpopf64 - ok

07:55:57.0093 2424 [ 0C85B2B6FB74B36A251792D45E0EF860 ] LVRS64 C:\WINDOWS\system32\DRIVERS\lvrs64.sys

07:55:57.0093 2424 LVRS64 - ok

07:55:57.0171 2424 [ FF3A488924B0032B1A9CA6948C1FA9E8 ] LVUVC64 C:\WINDOWS\system32\DRIVERS\lvuvc64.sys

07:55:57.0203 2424 LVUVC64 - ok

07:55:57.0218 2424 [ A8FE8F2783B2929B56F5370A89356CE9 ] MBAMProtector C:\WINDOWS\system32\drivers\mbam.sys

07:55:57.0234 2424 MBAMProtector - ok

07:55:57.0234 2424 [ 85B16A92B117A5A800032ECD904B86DB ] MBAMScheduler C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe

07:55:57.0234 2424 MBAMScheduler - ok

07:55:57.0265 2424 [ 20E2469DB709FC675E655CEAA11BE312 ] MBAMService C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

07:55:57.0265 2424 MBAMService - ok

07:55:57.0296 2424 [ 34EF8CBEA95EF5108A1349FC22D87513 ] Messenger C:\WINDOWS\System32\msgsvc.dll

07:55:57.0296 2424 Messenger - ok

07:55:57.0296 2424 [ AD6BC1EFA0C1B53409947F06DE87FC89 ] mnmdd C:\WINDOWS\system32\drivers\mnmdd.sys

07:55:57.0296 2424 mnmdd - ok

07:55:57.0296 2424 mnmsrvc - ok

07:55:57.0312 2424 [ 9A67A96A0CBC2BC658ABF8C9B5EE065A ] Modem C:\WINDOWS\system32\drivers\Modem.sys

07:55:57.0312 2424 Modem - ok

07:55:57.0375 2424 [ 48796EB50E697A39D19D865E5CBDDAE2 ] Monfilt64 C:\WINDOWS\system32\drivers\Monft64.sys

07:55:57.0406 2424 Monfilt64 - ok

07:55:57.0437 2424 [ 12ACF32EDF03E46805347817ACB9F64C ] Mouclass C:\WINDOWS\system32\DRIVERS\mouclass.sys

07:55:57.0437 2424 Mouclass - ok

07:55:57.0453 2424 [ A0C4E4A79C5D6F418315C33177F2B5BC ] mouhid C:\WINDOWS\system32\DRIVERS\mouhid.sys

07:55:57.0453 2424 mouhid - ok

07:55:57.0453 2424 [ 7E9CC7E4282A8E7A480560A6F817C177 ] MountMgr C:\WINDOWS\system32\drivers\MountMgr.sys

07:55:57.0453 2424 MountMgr - ok

07:55:57.0500 2424 [ 8BE15F71DE6FF33FC56DCDE7B2B9EFE8 ] MozillaMaintenance C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe

07:55:57.0500 2424 MozillaMaintenance - ok

07:55:57.0515 2424 [ 05BF204EC0E82CC4A054DB189C8A3D84 ] MpFilter C:\WINDOWS\system32\DRIVERS\MpFilter.sys

07:55:57.0515 2424 MpFilter - ok

07:55:57.0515 2424 mraid35x - ok

07:55:57.0546 2424 [ 3D33208E5A7414D8633D34D24F119173 ] MRxDAV C:\WINDOWS\system32\DRIVERS\mrxdav.sys

07:55:57.0546 2424 MRxDAV - ok

07:55:57.0578 2424 [ 9385E695B33068B90CF419186ECAA3DE ] MRxSmb C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

07:55:57.0593 2424 MRxSmb - ok

07:55:57.0609 2424 [ D42976785BA169C2361F97CC6A20681F ] MSDTC C:\WINDOWS\system32\msdtc.exe

07:55:57.0609 2424 MSDTC - ok

07:55:57.0609 2424 [ 983F4AB7A50D56CD33E2061EE733BD55 ] Msfs C:\WINDOWS\system32\drivers\Msfs.sys

07:55:57.0609 2424 Msfs - ok

07:55:57.0625 2424 MSIServer - ok

07:55:57.0640 2424 [ 308EC6FBEF38871CB2C4CACE9C8F4808 ] MSKSSRV C:\WINDOWS\system32\drivers\MSKSSRV.sys

07:55:57.0640 2424 MSKSSRV - ok

07:55:57.0656 2424 [ CC8E4F72F21340A4D3A3D4DB50313EF5 ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe

07:55:57.0656 2424 MsMpSvc - ok

07:55:57.0671 2424 [ 8D3226738479719AAB3B6D2617D7A55C ] MSPCLOCK C:\WINDOWS\system32\drivers\MSPCLOCK.sys

07:55:57.0671 2424 MSPCLOCK - ok

07:55:57.0687 2424 [ 058D63E8D000AE678D4549BFA8EB0DEB ] MSPQM C:\WINDOWS\system32\drivers\MSPQM.sys

07:55:57.0687 2424 MSPQM - ok

07:55:57.0703 2424 [ 5992D1F9ED64017A76AFEE2B79F5CFB9 ] mssmbios C:\WINDOWS\system32\DRIVERS\mssmbios.sys

07:55:57.0703 2424 mssmbios - ok

07:55:57.0734 2424 [ 6C679FAB17592620DE60DC7700A039EA ] MSTEE C:\WINDOWS\system32\drivers\MSTEE.sys

07:55:57.0734 2424 MSTEE - ok

07:55:57.0765 2424 [ CAC3BB575E4A0417BFF28D3196E44D3A ] MTsensor C:\WINDOWS\system32\DRIVERS\ASACPI.sys

07:55:57.0765 2424 MTsensor - ok

07:55:57.0765 2424 [ 5902C8E565FE346076786F43103EF02E ] Mup C:\WINDOWS\system32\drivers\Mup.sys

07:55:57.0781 2424 Mup - ok

07:55:57.0812 2424 [ 933012D216D0022A500CC6C0DFA16428 ] NABTSFEC C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

07:55:57.0812 2424 NABTSFEC - ok

07:55:57.0812 2424 [ 6FE83D05AEBEF7930D7CE91568DC99DF ] NDIS C:\WINDOWS\system32\drivers\NDIS.sys

07:55:57.0828 2424 NDIS - ok

07:55:57.0843 2424 [ FEBEB8BF62B229CE9DA98C32BF3D26A3 ] NdisIP C:\WINDOWS\system32\DRIVERS\NdisIP.sys

07:55:57.0843 2424 NdisIP - ok

07:55:57.0859 2424 [ 389CFAB53AA9807EA4536CB0B03609C3 ] NdisTapi C:\WINDOWS\system32\DRIVERS\ndistapi.sys

07:55:57.0859 2424 NdisTapi - ok

07:55:57.0875 2424 [ 49C1207C1AE8C6958F1C1747132814C2 ] Ndisuio C:\WINDOWS\system32\DRIVERS\ndisuio.sys

07:55:57.0875 2424 Ndisuio - ok

07:55:57.0890 2424 [ 6157A7AEAE6D2B948FF2E872FFAC765B ] NdisWan C:\WINDOWS\system32\DRIVERS\ndiswan.sys

07:55:57.0890 2424 NdisWan - ok

07:55:57.0906 2424 [ 01B8ACF7C9AFA9005DB6378077137BCE ] NDProxy C:\WINDOWS\system32\drivers\NDProxy.sys

07:55:57.0906 2424 NDProxy - ok

07:55:57.0953 2424 [ 2AAE889742376EDC5C3203DFB74F28FD ] Nero BackItUp Scheduler 3 C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe

07:55:57.0968 2424 Nero BackItUp Scheduler 3 - ok

07:55:57.0968 2424 [ B1CEE06471A069149B11FADA23FF00FD ] NetBIOS C:\WINDOWS\system32\DRIVERS\netbios.sys

07:55:57.0968 2424 NetBIOS - ok

07:55:58.0000 2424 [ FEDAAFB6CD700B9E0787C94D81C07DB5 ] NetBT C:\WINDOWS\system32\DRIVERS\netbt.sys

07:55:58.0000 2424 NetBT - ok

07:55:58.0031 2424 [ FB13279D8C89ADD5B0F7497C45BCF1C3 ] NetDDE C:\WINDOWS\system32\netdde.exe

07:55:58.0031 2424 NetDDE - ok

07:55:58.0031 2424 [ FB13279D8C89ADD5B0F7497C45BCF1C3 ] NetDDEdsdm C:\WINDOWS\system32\netdde.exe

07:55:58.0031 2424 NetDDEdsdm - ok

07:55:58.0046 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] Netlogon C:\WINDOWS\system32\lsass.exe

07:55:58.0046 2424 Netlogon - ok

07:55:58.0062 2424 [ F28FD9DBA68A85D6EE4225A83F127D2B ] Netman C:\WINDOWS\System32\netman.dll

07:55:58.0062 2424 Netman - ok

07:55:58.0093 2424 [ 8BC776595238AB62072AA6BEB17DDF59 ] NetTcpPortSharing C:\WINDOWS\Microsoft.NET\Framework64\v3.0\Windows Communication Foundation\SMSvcHost.exe

07:55:58.0093 2424 NetTcpPortSharing - ok

07:55:58.0109 2424 [ BA13C3C32A69DC37653C9543E065950E ] Nla C:\WINDOWS\System32\mswsock.dll

07:55:58.0125 2424 Nla - ok

07:55:58.0156 2424 [ CB992AE1506985D9167E85883B4C3240 ] NMIndexingService C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe

07:55:58.0171 2424 NMIndexingService - ok

07:55:58.0171 2424 [ 81819038621A2C524781EC503D400287 ] Npfs C:\WINDOWS\system32\drivers\Npfs.sys

07:55:58.0171 2424 Npfs - ok

07:55:58.0203 2424 [ C8904B5F90AB2236692E83D491C4D426 ] Ntfs C:\WINDOWS\system32\drivers\Ntfs.sys

07:55:58.0218 2424 Ntfs - ok

07:55:58.0218 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] NtLmSsp C:\WINDOWS\system32\lsass.exe

07:55:58.0218 2424 NtLmSsp - ok

07:55:58.0250 2424 [ A398462077F68A41B4DFF9FB7E8FC7B8 ] NtmsSvc C:\WINDOWS\system32\ntmssvc.dll

07:55:58.0250 2424 NtmsSvc - ok

07:55:58.0265 2424 [ 501039187C444FA7AB9D97B6A6C667B3 ] Null C:\WINDOWS\system32\drivers\Null.sys

07:55:58.0265 2424 Null - ok

07:55:58.0312 2424 [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv C:\Program Files (x86)\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

07:55:58.0312 2424 odserv - ok

07:55:58.0328 2424 [ 5A432A042DAE460ABE7199B758E8606C ] ose C:\Program Files (x86)\Common Files\Microsoft Shared\Source Engine\OSE.EXE

07:55:58.0328 2424 ose - ok

07:55:58.0343 2424 [ 7DDAA09186DA9F1D304E819B5A6BBC5A ] Parport C:\WINDOWS\system32\DRIVERS\parport.sys

07:55:58.0359 2424 Parport - ok

07:55:58.0359 2424 [ 5F9A703240468A0C35A629D17FFCA847 ] PartMgr C:\WINDOWS\system32\drivers\PartMgr.sys

07:55:58.0359 2424 PartMgr - ok

07:55:58.0359 2424 [ 5B2C8D6971D8DF4937C2FA013CD4C00D ] PCI C:\WINDOWS\system32\DRIVERS\pci.sys

07:55:58.0359 2424 PCI - ok

07:55:58.0375 2424 [ F1978C7849A0047306DB3B8BB94F0764 ] PCIIde C:\WINDOWS\system32\DRIVERS\pciide.sys

07:55:58.0375 2424 PCIIde - ok

07:55:58.0390 2424 [ 037F3A19F49A4C6A320C4154EBD6EE9D ] Pcmcia C:\WINDOWS\system32\drivers\Pcmcia.sys

07:55:58.0390 2424 Pcmcia - ok

07:55:58.0406 2424 PDCOMP - ok

07:55:58.0406 2424 PDFRAME - ok

07:55:58.0406 2424 PDRELI - ok

07:55:58.0406 2424 PDRFRAME - ok

07:55:58.0453 2424 [ 875E4E0661F3A5994DF9E5E3A0A4F96B ] PLFlash DeviceIoControl Service C:\WINDOWS\SysWOW64\IoctlSvc.exe

07:55:58.0453 2424 PLFlash DeviceIoControl Service - ok

07:55:58.0468 2424 [ 1E07EE3F50DFF2FE9B0A9D196E82698F ] PlugPlay C:\WINDOWS\system32\services.exe

07:55:58.0468 2424 PlugPlay - ok

07:55:58.0484 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] PolicyAgent C:\WINDOWS\system32\lsass.exe

07:55:58.0484 2424 PolicyAgent - ok

07:55:58.0484 2424 [ E176F640EE6BF550F61FAA9CE9A683F4 ] PptpMiniport C:\WINDOWS\system32\DRIVERS\raspptp.sys

07:55:58.0484 2424 PptpMiniport - ok

07:55:58.0484 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] ProtectedStorage C:\WINDOWS\system32\lsass.exe

07:55:58.0484 2424 ProtectedStorage - ok

07:55:58.0500 2424 [ 01AAE06E543C0956AC247546A8F2DAFE ] PSched C:\WINDOWS\system32\DRIVERS\psched.sys

07:55:58.0500 2424 PSched - ok

07:55:58.0515 2424 [ 35E39A969D227C2A56C1DC98361D8E35 ] Ptilink C:\WINDOWS\system32\DRIVERS\ptilink.sys

07:55:58.0515 2424 Ptilink - ok

07:55:58.0531 2424 [ D646A315E6386DAC1D96C8CE8A4BFEE7 ] RasAcd C:\WINDOWS\system32\DRIVERS\rasacd.sys

07:55:58.0531 2424 RasAcd - ok

07:55:58.0546 2424 [ 3F573D0C001B982C3180860366783BC0 ] RasAuto C:\WINDOWS\System32\rasauto.dll

07:55:58.0546 2424 RasAuto - ok

07:55:58.0562 2424 [ D81FDC53EE9C0F68D709E504342D1D74 ] Rasl2tp C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

07:55:58.0562 2424 Rasl2tp - ok

07:55:58.0578 2424 [ 47F7838F77A42F85C763899AB1B77D14 ] RasMan C:\WINDOWS\System32\rasmans.dll

07:55:58.0578 2424 RasMan - ok

07:55:58.0593 2424 [ 31FA5AB662C58CC5CF92396224F6B29A ] RasPppoe C:\WINDOWS\system32\DRIVERS\raspppoe.sys

07:55:58.0593 2424 RasPppoe - ok

07:55:58.0593 2424 [ 701493F9A6EDE759AF8D3FA7C08BAB3B ] Raspti C:\WINDOWS\system32\DRIVERS\raspti.sys

07:55:58.0593 2424 Raspti - ok

07:55:58.0609 2424 [ F1C8347F0E437E145B2E30A6F29E45BD ] Rdbss C:\WINDOWS\system32\DRIVERS\rdbss.sys

07:55:58.0625 2424 Rdbss - ok

07:55:58.0625 2424 [ C013379D04060318C3B2E4967D82739A ] RDPCDD C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

07:55:58.0625 2424 RDPCDD - ok

07:55:58.0640 2424 [ 0482A9BE0BE2098A12A61464306BF24B ] rdpdr C:\WINDOWS\system32\DRIVERS\rdpdr.sys

07:55:58.0640 2424 rdpdr - ok

07:55:58.0656 2424 [ 7B586DB3E86E407F6A43E83586AF4F32 ] RDPWD C:\WINDOWS\system32\drivers\RDPWD.sys

07:55:58.0656 2424 RDPWD - ok

07:55:58.0671 2424 [ A72BE0B07655141AB4EABECF0D66528A ] RDSessMgr C:\WINDOWS\system32\sessmgr.exe

07:55:58.0671 2424 RDSessMgr - ok

07:55:58.0687 2424 [ 1D793394201000D2D56E848C18FE9A62 ] redbook C:\WINDOWS\system32\DRIVERS\redbook.sys

07:55:58.0703 2424 redbook - ok

07:55:58.0703 2424 [ 60C8A5D4954CCE7D280369DFF5068019 ] RemoteAccess C:\WINDOWS\System32\mprdim.dll

07:55:58.0718 2424 RemoteAccess - ok

07:55:58.0734 2424 [ B2D55CE8C7C946C625B687F75040AD3F ] RemoteRegistry C:\WINDOWS\system32\regsvc.dll

07:55:58.0734 2424 RemoteRegistry - ok

07:55:58.0750 2424 [ 414059372A3F51F5BBE4D21A0381B381 ] Revoflt C:\WINDOWS\system32\DRIVERS\revoflt.sys

07:55:58.0750 2424 Revoflt - ok

07:55:58.0781 2424 [ 809785CF7BE1B857F3B52D9B1AF10817 ] RpcLocator C:\WINDOWS\system32\locator.exe

07:55:58.0781 2424 RpcLocator - ok

07:55:58.0812 2424 [ A6130365606F3D6332B014FC3DA931AA ] RpcSs C:\WINDOWS\system32\rpcss.dll

07:55:58.0812 2424 RpcSs - ok

07:55:58.0828 2424 [ 1A782D5CA033F553F0BE54546EBF3B4F ] SamSs C:\WINDOWS\system32\lsass.exe

07:55:58.0828 2424 SamSs - ok

07:55:58.0843 2424 [ A2069FFA2A6FEBB3818F180373C84A89 ] SCardSvr C:\WINDOWS\System32\SCardSvr.exe

07:55:58.0843 2424 SCardSvr - ok

07:55:58.0875 2424 [ 71CD398385835C08613C65E5BF91E7FA ] Schedule C:\WINDOWS\system32\schedsvc.dll

07:55:58.0875 2424 Schedule - ok

07:55:58.0906 2424 [ 3EA8A16169C26AFBEB544E0E48421186 ] Secdrv C:\WINDOWS\system32\DRIVERS\secdrv.sys

07:55:58.0906 2424 Secdrv - ok

07:55:58.0906 2424 [ B4E054549321372D995E4DB9A5304E77 ] seclogon C:\WINDOWS\System32\seclogon.dll

07:55:58.0906 2424 seclogon - ok

07:55:58.0921 2424 [ 222C0A6C354D6A90700956C60574A09A ] SENS C:\WINDOWS\system32\sens.dll

07:55:58.0921 2424 SENS - ok

07:55:58.0937 2424 [ 111B29F3FCF9FB61C903A01E3706F7DC ] serenum C:\WINDOWS\system32\DRIVERS\serenum.sys

07:55:58.0937 2424 serenum - ok

07:55:58.0953 2424 [ C0DC97399576FCCFF5FE877EC2D8DACC ] Serial C:\WINDOWS\system32\DRIVERS\serial.sys

07:55:58.0953 2424 Serial - ok

07:55:58.0968 2424 [ C6EACC8920A31B8D5842D1F7A28E2113 ] Sfloppy C:\WINDOWS\system32\drivers\Sfloppy.sys

07:55:58.0968 2424 Sfloppy - ok

07:55:58.0984 2424 [ D71A8153D3CF0ED527F6BA1F087FAA22 ] SharedAccess C:\WINDOWS\system32\ipnathlp.dll

07:55:59.0000 2424 SharedAccess - ok

07:55:59.0015 2424 [ 15DE8EAE99A0F4E313E83ABA5B849FAA ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

07:55:59.0031 2424 ShellHWDetection - ok

07:55:59.0031 2424 Simbad - ok

07:55:59.0078 2424 [ F07AF60B152221472FBDB2FECEC4896D ] SkypeUpdate C:\Program Files (x86)\Skype\Updater\Updater.exe

07:55:59.0078 2424 SkypeUpdate - ok

07:55:59.0093 2424 [ 6763442AF574D3D42CBFB8008B7A140F ] SLIP C:\WINDOWS\system32\DRIVERS\SLIP.sys

07:55:59.0109 2424 SLIP - ok

07:55:59.0125 2424 [ 17EC29105989101DB536C49E1279A0EB ] splitter C:\WINDOWS\system32\drivers\splitter.sys

07:55:59.0125 2424 splitter - ok

07:55:59.0125 2424 [ 206FD327B4AAD3AEAA8E0D7D03F2044A ] Spooler C:\WINDOWS\system32\spoolsv.exe

07:55:59.0125 2424 Spooler - ok

07:55:59.0156 2424 [ DAE1D5553D42A06034001D6EF4F5CB36 ] sr C:\WINDOWS\system32\DRIVERS\sr.sys

07:55:59.0156 2424 sr - ok

07:55:59.0187 2424 [ 7B6DA719973755BD091131E53AD6EC23 ] srservice C:\WINDOWS\system32\srsvc.dll

07:55:59.0187 2424 srservice - ok

07:55:59.0218 2424 [ 2A08328562D0BA596B699EEB90B511D1 ] Srv C:\WINDOWS\system32\DRIVERS\srv.sys

07:55:59.0218 2424 Srv - ok

07:55:59.0218 2424 [ 94AD81C8EE2385EDDB08C7E34FEDB7A8 ] SSDPSRV C:\WINDOWS\System32\ssdpsrv.dll

07:55:59.0234 2424 SSDPSRV - ok

07:55:59.0250 2424 [ F6D4F452DB507820F726525A1425F0CC ] stisvc C:\WINDOWS\system32\wiaservc.dll

07:55:59.0265 2424 stisvc - ok

07:55:59.0281 2424 [ 90C7874FF6BABF98A801C7AEBE3AD5A6 ] streamip C:\WINDOWS\system32\DRIVERS\StreamIP.sys

07:55:59.0281 2424 streamip - ok

07:55:59.0281 2424 [ B6536185FEEB8F0C86AD3BF2FBAB4F2F ] swenum C:\WINDOWS\system32\DRIVERS\swenum.sys

07:55:59.0281 2424 swenum - ok

07:55:59.0296 2424 [ 8E9E35B36A27AD154A5F92397CDE343C ] swmidi C:\WINDOWS\system32\drivers\swmidi.sys

07:55:59.0296 2424 swmidi - ok

07:55:59.0328 2424 [ 2E54746998139CB708B83974F1AC09F3 ] swprv C:\WINDOWS\System32\swprv.dll

07:55:59.0343 2424 swprv - ok

07:55:59.0343 2424 symc8xx - ok

07:55:59.0343 2424 symmpi - ok

07:55:59.0343 2424 sym_hi - ok

07:55:59.0359 2424 sym_u3 - ok

07:55:59.0359 2424 [ 2E843F129DAF4C789DF7ACD40E26208F ] sysaudio C:\WINDOWS\system32\drivers\sysaudio.sys

07:55:59.0359 2424 sysaudio - ok

07:55:59.0375 2424 [ D3FFFEA8C94BA3C1CEAC9694AC390472 ] SysmonLog C:\WINDOWS\system32\smlogsvc.exe

07:55:59.0375 2424 SysmonLog - ok

07:55:59.0390 2424 [ FAFEFC85FC929B81571BFF315C93E299 ] TapiSrv C:\WINDOWS\System32\tapisrv.dll

07:55:59.0390 2424 TapiSrv - ok

07:55:59.0437 2424 [ 34D970B38E9E835009E1AD07C5422B58 ] Tcpip C:\WINDOWS\system32\DRIVERS\tcpip.sys

07:55:59.0437 2424 Tcpip - ok

07:55:59.0468 2424 [ DA1E9CD22238FA4DB565EF41C7312E1B ] TDPIPE C:\WINDOWS\system32\drivers\TDPIPE.sys

07:55:59.0468 2424 TDPIPE - ok

07:55:59.0484 2424 [ 47D24EBB1C442DCC18D89B8B89BAFB49 ] TDTCP C:\WINDOWS\system32\drivers\TDTCP.sys

07:55:59.0484 2424 TDTCP - ok

07:55:59.0484 2424 [ 8AB9AD44907D4C57AD10E175C8720ECF ] TermDD C:\WINDOWS\system32\DRIVERS\termdd.sys

07:55:59.0484 2424 TermDD - ok

07:55:59.0500 2424 [ F4849A4962779132B02CA4BBF696F434 ] TermService C:\WINDOWS\System32\termsrv.dll

07:55:59.0515 2424 TermService - ok

07:55:59.0515 2424 [ 15DE8EAE99A0F4E313E83ABA5B849FAA ] Themes C:\WINDOWS\System32\shsvcs.dll

07:55:59.0515 2424 Themes - ok

07:55:59.0531 2424 [ 0FDF294D30CA53391485132854151B26 ] TlntSvr C:\WINDOWS\system32\tlntsvr.exe

07:55:59.0546 2424 TlntSvr - ok

07:55:59.0546 2424 TosIde - ok

07:55:59.0546 2424 [ 483FFCD8E5080198D87EEED44246E6A9 ] TrkWks C:\WINDOWS\system32\trkwks.dll

07:55:59.0546 2424 TrkWks - ok

07:55:59.0578 2424 [ A6DD2DFCC44EC61D18AA645620CD8F63 ] Udfs C:\WINDOWS\system32\drivers\Udfs.sys

07:55:59.0578 2424 Udfs - ok

07:55:59.0578 2424 ultra - ok

07:55:59.0593 2424 [ 67A95B9D129ED5399E7965CD09CF30E7 ] UMVPFSrv C:\Program Files (x86)\Common Files\logishrd\LVMVFM\UMVPFSrv.exe

07:55:59.0609 2424 UMVPFSrv - ok

07:55:59.0609 2424 [ 1446762923434D2A9C315325CF4770C8 ] Update C:\WINDOWS\system32\DRIVERS\update.sys

07:55:59.0625 2424 Update - ok

07:55:59.0640 2424 [ 325FB38C323C63C7F57885B4DFB1B91E ] UPHClean C:\Program Files (x86)\UPHClean\uphclean.exe

07:55:59.0656 2424 UPHClean - ok

07:55:59.0687 2424 [ 78C605CB6E0CE966D3347FF7CAF3F8AC ] upnphost C:\WINDOWS\System32\upnphost.dll

07:55:59.0687 2424 upnphost - ok

07:55:59.0718 2424 [ 3EC1501AA03CECD66ED093428FBC8B0E ] UPS C:\WINDOWS\System32\ups.exe

07:55:59.0718 2424 UPS - ok

07:55:59.0734 2424 [ 88354BA123549C6B0016592866063837 ] usbaudio C:\WINDOWS\system32\drivers\usbaudio.sys

07:55:59.0734 2424 usbaudio - ok

07:55:59.0750 2424 [ 3421B0691A0E365A020836369A296F0C ] usbccgp C:\WINDOWS\system32\DRIVERS\usbccgp.sys

07:55:59.0750 2424 usbccgp - ok

07:55:59.0765 2424 [ AE6521A1C79FC955FF26BE9CA5521B51 ] usbehci C:\WINDOWS\system32\DRIVERS\usbehci.sys

07:55:59.0765 2424 usbehci - ok

07:55:59.0765 2424 [ D63CB1B59D54F9C2BB8A4107584A664F ] usbhub C:\WINDOWS\system32\DRIVERS\usbhub.sys

07:55:59.0781 2424 usbhub - ok

07:55:59.0796 2424 [ 040F6F425A6CC4FB156470502CAFB31B ] usbprint C:\WINDOWS\system32\DRIVERS\usbprint.sys

07:55:59.0796 2424 usbprint - ok

07:55:59.0796 2424 [ 280894F834F5B9910DADFF7568F37B31 ] usbscan C:\WINDOWS\system32\DRIVERS\usbscan.sys

07:55:59.0796 2424 usbscan - ok

07:55:59.0812 2424 [ EDCE8A162E8023FD1751E08E23E41948 ] USBSTOR C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

07:55:59.0812 2424 USBSTOR - ok

07:55:59.0828 2424 [ 4B7B4A2CC997C482A0AA7CA663AF62A0 ] usbuhci C:\WINDOWS\system32\DRIVERS\usbuhci.sys

07:55:59.0828 2424 usbuhci - ok

07:55:59.0843 2424 [ 64FF08340D138E99F8E3796853AF7EF4 ] usbvideo C:\WINDOWS\system32\Drivers\usbvideo.sys

07:55:59.0843 2424 usbvideo - ok

07:55:59.0875 2424 [ B1E327AEA4ECF42DDF7C579B0FB0DE4C ] vds C:\WINDOWS\System32\vds.exe

07:55:59.0875 2424 vds - ok

07:55:59.0906 2424 [ B40CFD2FFDD838B0CE0C35EE449407BD ] vga C:\WINDOWS\system32\DRIVERS\vgapnp.sys

07:55:59.0906 2424 vga - ok

07:55:59.0921 2424 [ 78EBFE6F11F10DB8237B910E9158CA91 ] VgaSave C:\WINDOWS\System32\drivers\vga.sys

07:55:59.0921 2424 VgaSave - ok

07:55:59.0921 2424 ViaIde - ok

07:55:59.0953 2424 [ FD6D28D1BBF31C719D9C5EC2D20FB5C2 ] VolSnap C:\WINDOWS\system32\DRIVERS\volsnap.sys

07:55:59.0953 2424 VolSnap - ok

07:56:00.0000 2424 [ 0A05DE966B412D6289632AC05FC6ADA2 ] VSS C:\WINDOWS\System32\vssvc.exe

07:56:00.0031 2424 VSS - ok

07:56:00.0046 2424 [ 6FE371026674BAF189F7A81746A67C87 ] W32Time C:\WINDOWS\system32\w32time.dll

07:56:00.0062 2424 W32Time - ok

07:56:00.0078 2424 [ D2A01D73FE4A455C1D741B48C56763B2 ] Wanarp C:\WINDOWS\system32\DRIVERS\wanarp.sys

07:56:00.0078 2424 Wanarp - ok

07:56:00.0093 2424 WDICA - ok

07:56:00.0109 2424 [ DAFF7E89C84079022B9606F83E1BD29A ] wdmaud C:\WINDOWS\system32\drivers\wdmaud.sys

07:56:00.0109 2424 wdmaud - ok

07:56:00.0125 2424 [ FE8590FA0367A29BC7ED7BFC4962AD1C ] WebClient C:\WINDOWS\System32\webclnt.dll

07:56:00.0125 2424 WebClient - ok

07:56:00.0140 2424 WinHttpAutoProxySvc - ok

07:56:00.0187 2424 [ 881271D649E778690A365D73B8958509 ] winmgmt C:\WINDOWS\system32\wbem\WMIsvc.dll

07:56:00.0203 2424 winmgmt - ok

07:56:00.0218 2424 [ BEEE2C812019D6D8E7E22F37E6F1F560 ] WmdmPmSN C:\WINDOWS\system32\mspmsnsv.dll

07:56:00.0218 2424 WmdmPmSN - ok

07:56:00.0250 2424 [ B51966DB20D5C700228DFE222FDF9E67 ] Wmi C:\WINDOWS\System32\advapi32.dll

07:56:00.0265 2424 Wmi - ok

07:56:00.0281 2424 [ 56980BE8B5A6861B5D9175EABA8AC7DC ] WmiApSrv C:\WINDOWS\system32\wbem\wmiapsrv.exe

07:56:00.0296 2424 WmiApSrv - ok

07:56:00.0359 2424 [ F74E3D9A7FA9556C3BBB14D4E5E63D3B ] WMPNetworkSvc C:\Program Files (x86)\Windows Media Player\WMPNetwk.exe

07:56:00.0359 2424 WMPNetworkSvc - ok

07:56:00.0437 2424 [ 991E2C2CF3BC204C2BB2EE1476149E4E ] WPFFontCache_v0400 C:\WINDOWS\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe

07:56:00.0453 2424 WPFFontCache_v0400 - ok

07:56:00.0468 2424 [ 82960CE97C1898C28D7AE62BA6721D27 ] wscsvc C:\WINDOWS\system32\wscsvc.dll

07:56:00.0468 2424 wscsvc - ok

07:56:00.0500 2424 [ 478A0C5CC7DC817269654804E495B81A ] WSTCODEC C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

07:56:00.0500 2424 WSTCODEC - ok

07:56:00.0515 2424 [ EF7576AF44B484F7A3E6072D633BAB34 ] wuauserv C:\WINDOWS\system32\wuauserv.dll

07:56:00.0531 2424 wuauserv - ok

07:56:00.0562 2424 [ 3F98A4E57933963CF2A941BB48F9D47A ] WudfPf C:\WINDOWS\system32\DRIVERS\WudfPf.sys

07:56:00.0562 2424 WudfPf - ok

07:56:00.0562 2424 [ 881C0C35CDD09077B0E95EC2269CB44C ] WudfRd C:\WINDOWS\system32\DRIVERS\wudfrd.sys

07:56:00.0578 2424 WudfRd - ok

07:56:00.0578 2424 [ 9DCF6C499773B709DE8F70CD5013CB38 ] WudfSvc C:\WINDOWS\System32\WUDFSvc.dll

07:56:00.0578 2424 WudfSvc - ok

07:56:00.0609 2424 [ F4EC5C736BBA9A27F9C36412C930B386 ] WZCSVC C:\WINDOWS\System32\wzcsvc.dll

07:56:00.0609 2424 WZCSVC - ok

07:56:00.0625 2424 [ A1ABA5A0B4F1FF9B83C50F92F8C080A2 ] xmlprov C:\WINDOWS\System32\xmlprov.dll

07:56:00.0640 2424 xmlprov - ok

07:56:00.0640 2424 ================ Scan global ===============================

07:56:00.0656 2424 [ 2AE60E46216266CDC9E20886E4CE3281 ] C:\WINDOWS\system32\basesrv.dll

07:56:00.0687 2424 [ 7233204EBC55628D6A160F9829304E2A ] C:\WINDOWS\system32\winsrv.dll

07:56:00.0703 2424 [ 7233204EBC55628D6A160F9829304E2A ] C:\WINDOWS\system32\winsrv.dll

07:56:00.0718 2424 [ 1E07EE3F50DFF2FE9B0A9D196E82698F ] C:\WINDOWS\system32\services.exe

07:56:00.0718 2424 [Global] - ok

07:56:00.0718 2424 ================ Scan MBR ==================================

07:56:00.0734 2424 [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk0\DR0

07:56:00.0875 2424 \Device\Harddisk0\DR0 - ok

07:56:00.0875 2424 ================ Scan VBR ==================================

07:56:00.0875 2424 [ D33E5F84EA03BC050693D28E5892736E ] \Device\Harddisk0\DR0\Partition1

07:56:00.0875 2424 \Device\Harddisk0\DR0\Partition1 - ok

07:56:00.0890 2424 [ 17599AEF0DD19E499476E87207C30248 ] \Device\Harddisk0\DR0\Partition2

07:56:00.0906 2424 \Device\Harddisk0\DR0\Partition2 - ok

07:56:00.0906 2424 ============================================================

07:56:00.0906 2424 Scan finished

07:56:00.0906 2424 ============================================================

07:56:00.0906 1908 Detected object count: 0

07:56:00.0906 1908 Actual detected object count: 0

Run date: 2012-11-09 08:00:22

-----------------------------

08:00:22.859 OS Version: Windows x64 5.2.3790 Service Pack 2

08:00:22.859 Number of processors: 2 586 0x170A

08:00:22.875 ComputerName: ASUSSMALL UserName:

08:00:25.531 Initialize success

08:01:30.031 AVAST engine defs: 12110801

08:01:52.687 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-7

08:01:52.687 Disk 0 Vendor: ST3750528AS CC38 Size: 715404MB BusType: 3

08:01:52.687 Disk 0 MBR read successfully

08:01:52.687 Disk 0 MBR scan

08:01:52.687 Disk 0 Windows XP default MBR code

08:01:52.703 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 214814 MB offset 63

08:01:52.703 Disk 0 Partition - 00 0F Extended LBA 500587 MB offset 439940025

08:01:52.718 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 500587 MB offset 439940088

08:01:52.750 Disk 0 scanning C:\WINDOWS\system32\drivers

08:01:58.281 Service scanning

08:02:08.328 Modules scanning

08:02:08.328 Disk 0 trace - called modules:

08:02:08.328 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys atapi.sys pciide.sys PCIIDEX.SYS hal.dll

08:02:08.343 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffadfcebb4060]

08:02:08.343 3 CLASSPNP.SYS[fffffadfc92378c9] -> nt!IofCallDriver -> \Device\0000006c[0xfffffadfcf6db380]

08:02:08.343 5 ACPI.sys[fffffadfc93a9e69] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-7[0xfffffadfcebb4c30]

08:02:11.625 AVAST engine scan C:\WINDOWS

08:02:15.546 AVAST engine scan C:\WINDOWS\system32

08:04:09.875 AVAST engine scan C:\WINDOWS\system32\drivers

08:04:20.281 AVAST engine scan C:\Documents and Settings\Administrator

08:06:20.328 AVAST engine scan C:\Documents and Settings\All Users

08:06:39.328 Scan finished successfully

08:07:42.390 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"

08:07:42.390 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"

Run date: 2012-11-09 08:00:22

-----------------------------

08:00:22.859 OS Version: Windows x64 5.2.3790 Service Pack 2

08:00:22.859 Number of processors: 2 586 0x170A

08:00:22.875 ComputerName: ASUSSMALL UserName:

08:00:25.531 Initialize success

08:01:30.031 AVAST engine defs: 12110801

08:01:52.687 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-7

08:01:52.687 Disk 0 Vendor: ST3750528AS CC38 Size: 715404MB BusType: 3

08:01:52.687 Disk 0 MBR read successfully

08:01:52.687 Disk 0 MBR scan

08:01:52.687 Disk 0 Windows XP default MBR code

08:01:52.703 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 214814 MB offset 63

08:01:52.703 Disk 0 Partition - 00 0F Extended LBA 500587 MB offset 439940025

08:01:52.718 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 500587 MB offset 439940088

08:01:52.750 Disk 0 scanning C:\WINDOWS\system32\drivers

08:01:58.281 Service scanning

08:02:08.328 Modules scanning

08:02:08.328 Disk 0 trace - called modules:

08:02:08.328 ntoskrnl.exe CLASSPNP.SYS disk.sys ACPI.sys atapi.sys pciide.sys PCIIDEX.SYS hal.dll

08:02:08.343 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffadfcebb4060]

08:02:08.343 3 CLASSPNP.SYS[fffffadfc92378c9] -> nt!IofCallDriver -> \Device\0000006c[0xfffffadfcf6db380]

08:02:08.343 5 ACPI.sys[fffffadfc93a9e69] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-7[0xfffffadfcebb4c30]

08:02:11.625 AVAST engine scan C:\WINDOWS

08:02:15.546 AVAST engine scan C:\WINDOWS\system32

08:04:09.875 AVAST engine scan C:\WINDOWS\system32\drivers

08:04:20.281 AVAST engine scan C:\Documents and Settings\Administrator

08:06:20.328 AVAST engine scan C:\Documents and Settings\All Users

08:06:39.328 Scan finished successfully

08:07:42.390 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"

08:07:42.390 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"

08:08:46.640 Disk 0 MBR has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\MBR.dat"

08:08:46.640 The log file has been saved successfully to "C:\Documents and Settings\Administrator\Desktop\aswMBR.txt"

November 9, 2012

Unable to run. I am running xp 64bit, exe file says it is not compatible.

November 9, 2012

Scans as requested>

Results of screen317's Security Check version 0.99.54

Windows XP x64

Out of date service pack!!

Internet Explorer 8

``````````````Antivirus/Firewall Check:``````````````

Windows Firewall Enabled!

Microsoft Security Essentials

Antivirus up to date!

`````````Anti-malware/Other Utilities Check:`````````

Spybot - Search & Destroy

Malwarebytes Anti-Malware version 1.65.1.1000

Java 6 Update 37

Java version out of Date!

Adobe Flash Player 11.4.402.287

Adobe Reader 9 Adobe Reader out of Date!

Mozilla Firefox (16.0.2)

````````Process Check: objlist.exe by Laurent````````

Microsoft Security Essentials msseces.exe

Windows Defender MSMpEng.exe

Malwarebytes' Anti-Malware mbamscheduler.exe

`````````````````System Health check`````````````````

Total Fragmentation on Drive C: %

````````````````````End of Log``````````````````````

# AdwCleaner v2.007 - Logfile created 11/08/2012 at 22:54:48

# Updated 06/11/2012 by Xplode

# Operating system : Microsoft Windows XP Service Pack 2 (64 bits)

# User : Administrator - ASUSSMALL

# Boot Mode : Normal

# Running from : C:\Documents and Settings\Administrator\My Documents\Downloads\adwcleaner.exe

# Option [Delete]

***** [services] *****

***** [Files / Folders] *****

Folder Deleted : C:\Documents and Settings\All Users\Application Data\boost_interprocess

***** [Registry] *****

Key Deleted : HKCU\Software\Zugo

***** [internet Browsers] *****

-\\ Internet Explorer v8.0.6001.18702

[OK] Registry is clean.

-\\ Mozilla Firefox v16.0.2 (en-US)

Profile name : default

File : C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1nbemqas.default\prefs.js

C:\Documents and Settings\Administrator\Application Data\Mozilla\Firefox\Profiles\1nbemqas.default\user.js ... Deleted !

Deleted : user_pref("browser.search.selectedEngineURL", "hxxp://mp3tubetoolbarsearch.com/?prt=mp3tubetb01ff&cl[...]

Deleted : user_pref("keyword.URL", "hxxp://mp3tubetoolbar.com/?tmp=nemo_results_removelink2&q=");

Deleted : user_pref("mp3tubetoolbar.configXml", "<?xml version=\"1.0\" encoding=\"UTF-8\" ?>\r\n<toolbarlayout[...]

Deleted : user_pref("mp3tubetoolbar.configXml_lastcheck", "21858999");

Deleted : user_pref("mp3tubetoolbar.startupPop", "no");

*************************

AdwCleaner[R1].txt - [1447 octets] - [08/11/2012 22:52:58]

AdwCleaner[R2].txt - [1507 octets] - [08/11/2012 22:53:51]

AdwCleaner[R3].txt - [1567 octets] - [08/11/2012 22:54:33]

AdwCleaner[s1].txt - [1636 octets] - [08/11/2012 22:54:48]

########## EOF - C:\AdwCleaner[s1].txt - [1696 octets] ##########

RogueKiller V8.2.3 [11/07/2012] by Tigzy

mail: tigzyRK<at>gmail<dot>com

Feedback: http://www.geekstogo.com/forum/files/file/413-roguekiller/

Website: http://tigzy.geekstogo.com/roguekiller.php

Blog: http://tigzyrk.blogspot.com

Operating System: Windows XP 64 / Windows Home Server / Windows Server 2003 (5.2.3790 Service Pack 2) 32 bits version

Started in : Normal mode

User : Administrator [Admin rights]

Mode : Remove -- Date : 11/08/2012 23:00:15

¤¤¤ Bad processes : 1 ¤¤¤

¤¤¤ Registry Entries : 0 ¤¤¤

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤

--> C:\WINDOWS\system32\drivers\etc\hosts

127.0.0.1 localhost

¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: ST3750528AS +++++

--- User ---

[MBR] 8677ab1f487973bdc7963a91842d187c

[bSP] 0f2354a9e5c134b93acc2f2d2e25eb98 : Windows XP MBR Code

Partition table:

0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 63 | Size: 214814 Mo

1 - [XXXXXX] EXTEN-LBA (0x0f) [VISIBLE] Offset (sectors): 439940025 | Size: 500587 Mo

User = LL1 ... OK!

User = LL2 ... OK!

Finished : << RKreport[2]_D_11082012_02d2300.txt >>

RKreport[1]_S_11082012_02d2259.txt ; RKreport[2]_D_11082012_02d2300.txt

November 9, 2012

Recently had a change in my system where I can not active the "enable malicious website blocking." Seems to be related to an infection.

Help would be appreciated.

hijackthis.log

protection-log-2012-11-08.txt

mbam-log-2012-11-08 (20-11-47).txt

Sign In

RSMBBDAD

Posts

Joined

Last visited

Content Type

Events

Profiles

Forums

Posts posted by RSMBBDAD

enable malicious website blocking--blocked

enable malicious website blocking--blocked

enable malicious website blocking--blocked

enable malicious website blocking--blocked

enable malicious website blocking--blocked

Browse

Activity

Personal

Business

Business Modules

Partners

Learn

Start here

Type of malware/attacks

How does it get on my computer?

Scams and grifts

Support

Important Information