Jump to content

MrsLu

Honorary Members
  • Posts

    30
  • Joined

  • Last visited

Reputation

0 Neutral
  1. I don't understand why, buy the WinPatrol notification has stopped...it looks like I am OK? Thank you for all of your help. 08:12:59.0906 5152 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49 08:13:00.0734 5152 ============================================================ 08:13:00.0734 5152 Current date / time: 2012/02/25 08:13:00.0734 08:13:00.0734 5152 SystemInfo: 08:13:00.0734 5152 08:13:00.0734 5152 OS Version: 5.1.2600 ServicePack: 3.0 08:13:00.0734 5152 Product type: Workstation 08:13:00.0734 5152 ComputerName: RECPT 08:13:00.0734 5152 UserName: Reception 08:13:00.0734 5152 Windows directory: C:\WINDOWS 08:13:00.0734 5152 System windows directory: C:\WINDOWS 08:13:00.0734 5152 Processor architecture: Intel x86 08:13:00.0734 5152 Number of processors: 1 08:13:00.0734 5152 Page size: 0x1000 08:13:00.0734 5152 Boot type: Normal boot 08:13:00.0734 5152 ============================================================ 08:13:06.0391 5152 Drive \Device\Harddisk0\DR0 - Size: 0x9925B0000 (38.29 Gb), SectorSize: 0x200, Cylinders: 0x1386, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 08:13:06.0531 5152 \Device\Harddisk0\DR0: 08:13:06.0547 5152 MBR used 08:13:06.0547 5152 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xFB04, BlocksNum 0x4C7F241 08:13:06.0625 5152 Initialize success 08:13:06.0625 5152 ============================================================ 08:13:15.0109 4664 ============================================================ 08:13:15.0109 4664 Scan started 08:13:15.0109 4664 Mode: Manual; SigCheck; TDLFS; 08:13:15.0109 4664 ============================================================ 08:13:16.0250 4664 Abiosdsk - ok 08:13:16.0391 4664 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS 08:13:18.0797 4664 abp480n5 - ok 08:13:18.0953 4664 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys 08:13:19.0281 4664 ACPI - ok 08:13:19.0578 4664 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys 08:13:19.0891 4664 ACPIEC - ok 08:13:20.0141 4664 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\System32\DRIVERS\adpu160m.sys 08:13:20.0594 4664 adpu160m - ok 08:13:20.0984 4664 aeaudio (11c04b17ed2abbb4833694bcd644ac90) C:\WINDOWS\system32\drivers\aeaudio.sys 08:13:21.0156 4664 aeaudio - ok 08:13:21.0609 4664 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 08:13:21.0969 4664 aec - ok 08:13:22.0219 4664 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys 08:13:22.0328 4664 AFD - ok 08:13:22.0516 4664 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\System32\DRIVERS\agp440.sys 08:13:22.0875 4664 agp440 - ok 08:13:23.0156 4664 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\System32\DRIVERS\agpCPQ.sys 08:13:23.0500 4664 agpCPQ - ok 08:13:23.0703 4664 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\System32\DRIVERS\aha154x.sys 08:13:23.0859 4664 Aha154x - ok 08:13:24.0016 4664 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\System32\DRIVERS\aic78u2.sys 08:13:24.0344 4664 aic78u2 - ok 08:13:24.0547 4664 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\System32\DRIVERS\aic78xx.sys 08:13:24.0984 4664 aic78xx - ok 08:13:25.0219 4664 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\System32\DRIVERS\aliide.sys 08:13:25.0578 4664 AliIde - ok 08:13:25.0875 4664 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\System32\DRIVERS\alim1541.sys 08:13:26.0188 4664 alim1541 - ok 08:13:26.0375 4664 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\System32\DRIVERS\amdagp.sys 08:13:26.0688 4664 amdagp - ok 08:13:26.0875 4664 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\System32\DRIVERS\amsint.sys 08:13:27.0047 4664 amsint - ok 08:13:27.0203 4664 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\System32\DRIVERS\asc.sys 08:13:27.0547 4664 asc - ok 08:13:27.0750 4664 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\System32\DRIVERS\asc3350p.sys 08:13:27.0922 4664 asc3350p - ok 08:13:28.0063 4664 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\System32\DRIVERS\asc3550.sys 08:13:28.0375 4664 asc3550 - ok 08:13:28.0578 4664 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 08:13:28.0891 4664 AsyncMac - ok 08:13:29.0344 4664 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 08:13:29.0672 4664 atapi - ok 08:13:29.0813 4664 Atdisk - ok 08:13:30.0000 4664 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 08:13:30.0359 4664 Atmarpc - ok 08:13:30.0563 4664 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 08:13:30.0875 4664 audstub - ok 08:13:31.0047 4664 AVGIDSDriver (4fa401b33c1b50c816486f6951244a14) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys 08:13:31.0266 4664 AVGIDSDriver - ok 08:13:31.0422 4664 AVGIDSEH (69578bc9d43d614c6b3455db4af19762) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys 08:13:31.0469 4664 AVGIDSEH - ok 08:13:31.0609 4664 AVGIDSFilter (6df528406aa22201f392b9b19121cd6f) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys 08:13:31.0656 4664 AVGIDSFilter - ok 08:13:31.0844 4664 AVGIDSShim (1e01c2166b5599802bcd61b9691f7476) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys 08:13:31.0891 4664 AVGIDSShim - ok 08:13:32.0094 4664 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\WINDOWS\system32\DRIVERS\avgldx86.sys 08:13:32.0141 4664 Avgldx86 - ok 08:13:32.0281 4664 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys 08:13:32.0313 4664 Avgmfx86 - ok 08:13:32.0500 4664 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys 08:13:32.0531 4664 Avgrkx86 - ok 08:13:32.0703 4664 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\WINDOWS\system32\DRIVERS\avgtdix.sys 08:13:32.0750 4664 Avgtdix - ok 08:13:32.0922 4664 bcm4sbxp (f5c0d3c93235a455cdd13c954adf1a80) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys 08:13:33.0000 4664 bcm4sbxp - ok 08:13:33.0125 4664 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 08:13:33.0453 4664 Beep - ok 08:13:33.0656 4664 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\System32\DRIVERS\cbidf2k.sys 08:13:33.0984 4664 cbidf - ok 08:13:34.0141 4664 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 08:13:34.0453 4664 cbidf2k - ok 08:13:34.0641 4664 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\System32\DRIVERS\cd20xrnt.sys 08:13:34.0813 4664 cd20xrnt - ok 08:13:34.0938 4664 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 08:13:35.0266 4664 Cdaudio - ok 08:13:35.0391 4664 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 08:13:35.0750 4664 Cdfs - ok 08:13:36.0219 4664 Cdr4_xp (bf79e659c506674c0497cc9c61f1a165) C:\WINDOWS\system32\drivers\Cdr4_xp.sys 08:13:36.0250 4664 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning 08:13:36.0250 4664 Cdr4_xp - detected UnsignedFile.Multi.Generic (1) 08:13:36.0406 4664 Cdralw2k (2c41cd49d82d5fd85c72d57b6ca25471) C:\WINDOWS\system32\drivers\Cdralw2k.sys 08:13:36.0453 4664 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning 08:13:36.0453 4664 Cdralw2k - detected UnsignedFile.Multi.Generic (1) 08:13:36.0625 4664 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 08:13:36.0938 4664 Cdrom - ok 08:13:37.0109 4664 cdudf_xp (cfd81f2140193fc7f1812e6d6eaf6795) C:\WINDOWS\system32\drivers\cdudf_xp.sys 08:13:37.0156 4664 cdudf_xp ( UnsignedFile.Multi.Generic ) - warning 08:13:37.0156 4664 cdudf_xp - detected UnsignedFile.Multi.Generic (1) 08:13:37.0281 4664 Changer - ok 08:13:37.0406 4664 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\System32\DRIVERS\cmdide.sys 08:13:37.0766 4664 CmdIde - ok 08:13:37.0953 4664 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\System32\DRIVERS\cpqarray.sys 08:13:38.0297 4664 Cpqarray - ok 08:13:38.0500 4664 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\System32\DRIVERS\dac2w2k.sys 08:13:38.0859 4664 dac2w2k - ok 08:13:38.0984 4664 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\System32\DRIVERS\dac960nt.sys 08:13:39.0328 4664 dac960nt - ok 08:13:39.0516 4664 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 08:13:39.0813 4664 Disk - ok 08:13:39.0984 4664 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys 08:13:40.0328 4664 dmboot - ok 08:13:40.0500 4664 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys 08:13:40.0828 4664 dmio - ok 08:13:40.0953 4664 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 08:13:41.0297 4664 dmload - ok 08:13:41.0469 4664 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 08:13:41.0797 4664 DMusic - ok 08:13:41.0953 4664 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\System32\DRIVERS\dpti2o.sys 08:13:42.0281 4664 dpti2o - ok 08:13:42.0422 4664 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 08:13:42.0766 4664 drmkaud - ok 08:13:42.0922 4664 dvd_2K (0c7d4bf5158ab759f5e71829e93e0ba9) C:\WINDOWS\system32\drivers\dvd_2K.sys 08:13:42.0969 4664 dvd_2K ( UnsignedFile.Multi.Generic ) - warning 08:13:42.0969 4664 dvd_2K - detected UnsignedFile.Multi.Generic (1) 08:13:43.0141 4664 EL90XBC (6e883bf518296a40959131c2304af714) C:\WINDOWS\system32\DRIVERS\el90xbc5.sys 08:13:43.0469 4664 EL90XBC - ok 08:13:43.0672 4664 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 08:13:43.0969 4664 Fastfat - ok 08:13:44.0141 4664 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 08:13:44.0469 4664 Fdc - ok 08:13:44.0547 4664 febfb7f54ba8f5ca258451461b7cd608 - ok 08:13:44.0672 4664 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys 08:13:44.0984 4664 Fips - ok 08:13:45.0125 4664 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 08:13:45.0422 4664 Flpydisk - ok 08:13:45.0641 4664 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 08:13:45.0938 4664 FltMgr - ok 08:13:46.0094 4664 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 08:13:46.0438 4664 Fs_Rec - ok 08:13:46.0625 4664 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 08:13:46.0969 4664 Ftdisk - ok 08:13:47.0125 4664 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys 08:13:47.0188 4664 GEARAspiWDM - ok 08:13:47.0344 4664 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 08:13:47.0641 4664 Gpc - ok 08:13:47.0828 4664 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 08:13:48.0156 4664 HidUsb - ok 08:13:48.0297 4664 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\System32\DRIVERS\hpn.sys 08:13:48.0609 4664 hpn - ok 08:13:48.0766 4664 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 08:13:48.0906 4664 HTTP - ok 08:13:49.0063 4664 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys 08:13:49.0375 4664 i2omgmt - ok 08:13:49.0547 4664 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\System32\DRIVERS\i2omp.sys 08:13:49.0859 4664 i2omp - ok 08:13:50.0000 4664 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 08:13:50.0297 4664 i8042prt - ok 08:13:50.0453 4664 i81x (06b7ef73ba5f302eecc294cdf7e19702) C:\WINDOWS\system32\DRIVERS\i81xnt5.sys 08:13:50.0734 4664 i81x - ok 08:13:50.0938 4664 iAimFP0 (7b5b44efe5eb9dadfb8ee29700885d23) C:\WINDOWS\system32\DRIVERS\wADV01nt.sys 08:13:51.0203 4664 iAimFP0 - ok 08:13:51.0359 4664 iAimFP1 (eb1f6bab6c22ede0ba551b527475f7e9) C:\WINDOWS\system32\DRIVERS\wADV02NT.sys 08:13:51.0625 4664 iAimFP1 - ok 08:13:51.0781 4664 iAimFP2 (03ce989d846c1aa81145cb22fcb86d06) C:\WINDOWS\system32\DRIVERS\wADV05NT.sys 08:13:52.0078 4664 iAimFP2 - ok 08:13:52.0219 4664 iAimFP3 (525849b4469de021d5d61b4db9be3a9d) C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys 08:13:52.0547 4664 iAimFP3 - ok 08:13:52.0734 4664 iAimFP4 (589c2bcdb5bd602bf7b63d210407ef8c) C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys 08:13:53.0000 4664 iAimFP4 - ok 08:13:53.0141 4664 iAimTV0 (d83bdd5c059667a2f647a6be5703a4d2) C:\WINDOWS\system32\DRIVERS\wATV01nt.sys 08:13:53.0406 4664 iAimTV0 - ok 08:13:53.0547 4664 iAimTV1 (ed968d23354daa0d7c621580c012a1f6) C:\WINDOWS\system32\DRIVERS\wATV02NT.sys 08:13:53.0828 4664 iAimTV1 - ok 08:13:53.0953 4664 iAimTV2 - ok 08:13:54.0125 4664 iAimTV3 (d738273f218a224c1ddac04203f27a84) C:\WINDOWS\system32\DRIVERS\wATV04nt.sys 08:13:54.0406 4664 iAimTV3 - ok 08:13:54.0547 4664 iAimTV4 (0052d118995cbab152daabe6106d1442) C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys 08:13:54.0828 4664 iAimTV4 - ok 08:13:55.0016 4664 ialm (44b7d5a4f2bd9fe21aea0bb0bace38c4) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 08:13:55.0172 4664 ialm - ok 08:13:55.0328 4664 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys 08:13:55.0625 4664 Imapi - ok 08:13:55.0828 4664 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\System32\DRIVERS\ini910u.sys 08:13:56.0172 4664 ini910u - ok 08:13:56.0344 4664 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\System32\DRIVERS\intelide.sys 08:13:56.0656 4664 IntelIde - ok 08:13:56.0828 4664 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 08:13:57.0156 4664 Ip6Fw - ok 08:13:57.0344 4664 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 08:13:57.0656 4664 IpFilterDriver - ok 08:13:57.0828 4664 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 08:13:58.0125 4664 IpInIp - ok 08:13:58.0297 4664 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 08:13:58.0594 4664 IpNat - ok 08:13:58.0766 4664 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 08:13:59.0047 4664 IPSec - ok 08:13:59.0234 4664 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 08:13:59.0547 4664 IRENUM - ok 08:13:59.0750 4664 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys 08:14:00.0047 4664 isapnp - ok 08:14:00.0219 4664 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 08:14:00.0516 4664 Kbdclass - ok 08:14:00.0656 4664 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 08:14:00.0984 4664 kmixer - ok 08:14:01.0156 4664 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 08:14:01.0281 4664 KSecDD - ok 08:14:01.0422 4664 lbrtfdc - ok 08:14:01.0563 4664 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys 08:14:01.0625 4664 MBAMProtector - ok 08:14:01.0813 4664 mmc_2K (31700004af5b9ddabb7c43b1507d061c) C:\WINDOWS\system32\drivers\mmc_2K.sys 08:14:01.0859 4664 mmc_2K ( UnsignedFile.Multi.Generic ) - warning 08:14:01.0859 4664 mmc_2K - detected UnsignedFile.Multi.Generic (1) 08:14:02.0016 4664 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 08:14:02.0359 4664 mnmdd - ok 08:14:02.0547 4664 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys 08:14:02.0859 4664 Modem - ok 08:14:03.0000 4664 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys 08:14:03.0297 4664 Mouclass - ok 08:14:03.0438 4664 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys 08:14:03.0766 4664 mouhid - ok 08:14:03.0922 4664 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 08:14:04.0219 4664 MountMgr - ok 08:14:04.0375 4664 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\System32\DRIVERS\mraid35x.sys 08:14:04.0719 4664 mraid35x - ok 08:14:04.0859 4664 MREMPR5 (2bc9e43f55de8c30fc817ed56d0ee907) C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS 08:14:04.0922 4664 MREMPR5 ( UnsignedFile.Multi.Generic ) - warning 08:14:04.0922 4664 MREMPR5 - detected UnsignedFile.Multi.Generic (1) 08:14:05.0078 4664 MRENDIS5 (594b9d8194e3f4ecbf0325bd10bbeb05) C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS 08:14:05.0141 4664 MRENDIS5 ( UnsignedFile.Multi.Generic ) - warning 08:14:05.0141 4664 MRENDIS5 - detected UnsignedFile.Multi.Generic (1) 08:14:05.0297 4664 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 08:14:05.0609 4664 MRxDAV - ok 08:14:05.0781 4664 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 08:14:05.0969 4664 MRxSmb - ok 08:14:06.0172 4664 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 08:14:06.0469 4664 Msfs - ok 08:14:06.0641 4664 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 08:14:06.0984 4664 MSKSSRV - ok 08:14:07.0188 4664 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 08:14:07.0500 4664 MSPCLOCK - ok 08:14:07.0656 4664 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 08:14:08.0313 4664 MSPQM - ok 08:14:08.0469 4664 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 08:14:08.0766 4664 mssmbios - ok 08:14:08.0953 4664 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 08:14:09.0016 4664 Mup - ok 08:14:09.0203 4664 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 08:14:09.0531 4664 NDIS - ok 08:14:09.0688 4664 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 08:14:09.0797 4664 NdisTapi - ok 08:14:10.0000 4664 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 08:14:10.0297 4664 Ndisuio - ok 08:14:10.0469 4664 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 08:14:10.0781 4664 NdisWan - ok 08:14:10.0922 4664 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 08:14:11.0016 4664 NDProxy - ok 08:14:11.0156 4664 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 08:14:11.0469 4664 NetBIOS - ok 08:14:11.0609 4664 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 08:14:11.0906 4664 NetBT - ok 08:14:12.0109 4664 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 08:14:12.0406 4664 Npfs - ok 08:14:12.0563 4664 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 08:14:12.0922 4664 Ntfs - ok 08:14:13.0109 4664 NTSPPPOE (fa6395b0bfd241c75ff21366828d35c6) C:\WINDOWS\system32\DRIVERS\ntspppoe.sys 08:14:13.0172 4664 NTSPPPOE ( UnsignedFile.Multi.Generic ) - warning 08:14:13.0172 4664 NTSPPPOE - detected UnsignedFile.Multi.Generic (1) 08:14:13.0297 4664 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 08:14:13.0625 4664 Null - ok 08:14:13.0828 4664 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 08:14:14.0422 4664 nv - ok 08:14:14.0578 4664 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 08:14:14.0906 4664 NwlnkFlt - ok 08:14:15.0063 4664 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 08:14:15.0391 4664 NwlnkFwd - ok 08:14:15.0531 4664 omci (1d98907d80461371437a7c898c58c8ae) C:\WINDOWS\system32\DRIVERS\omci.sys 08:14:15.0578 4664 omci ( UnsignedFile.Multi.Generic ) - warning 08:14:15.0578 4664 omci - detected UnsignedFile.Multi.Generic (1) 08:14:15.0766 4664 P3 (c90018bafdc7098619a4a95b046b30f3) C:\WINDOWS\system32\DRIVERS\p3.sys 08:14:16.0078 4664 P3 - ok 08:14:16.0219 4664 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys 08:14:16.0516 4664 Parport - ok 08:14:16.0641 4664 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 08:14:16.0969 4664 PartMgr - ok 08:14:17.0094 4664 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys 08:14:17.0422 4664 ParVdm - ok 08:14:17.0547 4664 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys 08:14:17.0844 4664 PCI - ok 08:14:17.0969 4664 PCIDump - ok 08:14:18.0094 4664 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys 08:14:18.0422 4664 PCIIde - ok 08:14:18.0578 4664 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys 08:14:18.0875 4664 Pcmcia - ok 08:14:19.0016 4664 PDCOMP - ok 08:14:19.0141 4664 PDFRAME - ok 08:14:19.0297 4664 PDRELI - ok 08:14:19.0406 4664 PDRFRAME - ok 08:14:19.0547 4664 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\System32\DRIVERS\perc2.sys 08:14:19.0875 4664 perc2 - ok 08:14:20.0031 4664 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\System32\DRIVERS\perc2hib.sys 08:14:20.0359 4664 perc2hib - ok 08:14:20.0578 4664 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 08:14:20.0859 4664 PptpMiniport - ok 08:14:21.0016 4664 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys 08:14:21.0328 4664 Processor - ok 08:14:21.0453 4664 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 08:14:21.0750 4664 PSched - ok 08:14:21.0906 4664 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 08:14:22.0234 4664 Ptilink - ok 08:14:22.0391 4664 pwd_2k (05a2b66ef7c53bdd2c9cfb836a6620ce) C:\WINDOWS\system32\drivers\pwd_2k.sys 08:14:22.0438 4664 pwd_2k ( UnsignedFile.Multi.Generic ) - warning 08:14:22.0438 4664 pwd_2k - detected UnsignedFile.Multi.Generic (1) 08:14:22.0563 4664 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys 08:14:22.0641 4664 PxHelp20 - ok 08:14:22.0797 4664 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\System32\DRIVERS\ql1080.sys 08:14:23.0141 4664 ql1080 - ok 08:14:23.0297 4664 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\System32\DRIVERS\ql10wnt.sys 08:14:23.0609 4664 Ql10wnt - ok 08:14:23.0766 4664 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\System32\DRIVERS\ql12160.sys 08:14:24.0094 4664 ql12160 - ok 08:14:24.0328 4664 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\System32\DRIVERS\ql1240.sys 08:14:24.0656 4664 ql1240 - ok 08:14:24.0797 4664 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\System32\DRIVERS\ql1280.sys 08:14:25.0141 4664 ql1280 - ok 08:14:25.0281 4664 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 08:14:25.0609 4664 RasAcd - ok 08:14:25.0781 4664 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 08:14:26.0078 4664 Rasl2tp - ok 08:14:26.0250 4664 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 08:14:26.0547 4664 RasPppoe - ok 08:14:26.0672 4664 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 08:14:27.0000 4664 Raspti - ok 08:14:27.0125 4664 RAWESR (7ce613915693781815ba07b145003f0d) C:\PROGRA~1\EFFICI~1\ENTERN~1\app\RAWESR.SYS 08:14:27.0156 4664 RAWESR ( UnsignedFile.Multi.Generic ) - warning 08:14:27.0156 4664 RAWESR - detected UnsignedFile.Multi.Generic (1) 08:14:27.0313 4664 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 08:14:27.0625 4664 Rdbss - ok 08:14:27.0734 4664 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 08:14:28.0078 4664 RDPCDD - ok 08:14:28.0266 4664 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 08:14:28.0563 4664 rdpdr - ok 08:14:28.0719 4664 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys 08:14:28.0797 4664 RDPWD - ok 08:14:28.0969 4664 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys 08:14:29.0297 4664 redbook - ok 08:14:29.0609 4664 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 08:14:29.0953 4664 Secdrv - ok 08:14:30.0141 4664 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 08:14:30.0453 4664 serenum - ok 08:14:30.0609 4664 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys 08:14:30.0969 4664 Serial - ok 08:14:31.0156 4664 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 08:14:31.0453 4664 Sfloppy - ok 08:14:31.0594 4664 Simbad - ok 08:14:31.0703 4664 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\System32\DRIVERS\sisagp.sys 08:14:32.0031 4664 sisagp - ok 08:14:32.0234 4664 smwdm (8583e3dc5285eb3ddfb74fb646cdf295) C:\WINDOWS\system32\drivers\smwdm.sys 08:14:32.0328 4664 smwdm - ok 08:14:32.0500 4664 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\System32\DRIVERS\sparrow.sys 08:14:32.0672 4664 Sparrow - ok 08:14:32.0859 4664 SPBBCDrv (c30fa11923892a4dbd1c747db8492e8f) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 08:14:32.0969 4664 SPBBCDrv - ok 08:14:33.0156 4664 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 08:14:33.0453 4664 splitter - ok 08:14:33.0609 4664 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys 08:14:33.0906 4664 sr - ok 08:14:34.0094 4664 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 08:14:34.0219 4664 Srv - ok 08:14:34.0375 4664 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 08:14:34.0688 4664 swenum - ok 08:14:34.0891 4664 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 08:14:35.0203 4664 swmidi - ok 08:14:35.0391 4664 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\System32\DRIVERS\symc810.sys 08:14:35.0734 4664 symc810 - ok 08:14:35.0906 4664 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\System32\DRIVERS\symc8xx.sys 08:14:36.0250 4664 symc8xx - ok 08:14:36.0375 4664 SymEvent (b3f8b9eab2ebe205c0fe053fba951d8c) C:\Program Files\Symantec\SYMEVENT.SYS 08:14:36.0422 4664 SymEvent - ok 08:14:36.0578 4664 SYMREDRV (7c73b65f1bdfab9052a5076c0ca622de) C:\WINDOWS\System32\Drivers\SYMREDRV.SYS 08:14:36.0625 4664 SYMREDRV - ok 08:14:36.0844 4664 SYMTDI (b4562798891dca27ed67ca07acbadbd9) C:\WINDOWS\System32\Drivers\SYMTDI.SYS 08:14:36.0891 4664 SYMTDI - ok 08:14:37.0078 4664 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\System32\DRIVERS\sym_hi.sys 08:14:37.0469 4664 sym_hi - ok 08:14:37.0609 4664 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\System32\DRIVERS\sym_u3.sys 08:14:37.0922 4664 sym_u3 - ok 08:14:38.0109 4664 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 08:14:38.0422 4664 sysaudio - ok 08:14:38.0609 4664 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 08:14:38.0828 4664 Tcpip - ok 08:14:38.0984 4664 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 08:14:39.0281 4664 TDPIPE - ok 08:14:39.0438 4664 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 08:14:39.0750 4664 TDTCP - ok 08:14:39.0922 4664 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 08:14:40.0219 4664 TermDD - ok 08:14:40.0453 4664 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\System32\DRIVERS\toside.sys 08:14:40.0797 4664 TosIde - ok 08:14:41.0016 4664 UdfReadr_xp (3369211d13a73cdc830858ad934a0449) C:\WINDOWS\system32\drivers\UdfReadr_xp.sys 08:14:41.0078 4664 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - warning 08:14:41.0078 4664 UdfReadr_xp - detected UnsignedFile.Multi.Generic (1) 08:14:41.0234 4664 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 08:14:41.0578 4664 Udfs - ok 08:14:41.0719 4664 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\System32\DRIVERS\ultra.sys 08:14:41.0922 4664 ultra - ok 08:14:42.0109 4664 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 08:14:42.0469 4664 Update - ok 08:14:42.0641 4664 USBAAPL (c1ca131f4e3ed63d6bc89a35ffad4cda) C:\WINDOWS\system32\Drivers\usbaapl.sys 08:14:42.0781 4664 USBAAPL - ok 08:14:42.0953 4664 usbbus (9419faac6552a51542dbba02971c841c) C:\WINDOWS\system32\DRIVERS\lgusbbus.sys 08:14:43.0125 4664 usbbus - ok 08:14:43.0281 4664 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 08:14:43.0594 4664 usbccgp - ok 08:14:43.0750 4664 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys 08:14:43.0828 4664 UsbDiag - ok 08:14:43.0984 4664 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 08:14:44.0328 4664 usbehci - ok 08:14:44.0469 4664 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 08:14:44.0797 4664 usbhub - ok 08:14:44.0922 4664 Usblink - ok 08:14:45.0094 4664 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys 08:14:45.0172 4664 USBModem - ok 08:14:45.0328 4664 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 08:14:45.0641 4664 usbprint - ok 08:14:45.0828 4664 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 08:14:46.0156 4664 usbscan - ok 08:14:46.0313 4664 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 08:14:46.0609 4664 USBSTOR - ok 08:14:46.0734 4664 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 08:14:47.0047 4664 usbuhci - ok 08:14:47.0266 4664 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 08:14:47.0578 4664 VgaSave - ok 08:14:47.0719 4664 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\System32\DRIVERS\viaagp.sys 08:14:48.0031 4664 viaagp - ok 08:14:48.0219 4664 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys 08:14:48.0516 4664 ViaIde - ok 08:14:48.0656 4664 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys 08:14:48.0969 4664 VolSnap - ok 08:14:49.0219 4664 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 08:14:49.0531 4664 Wanarp - ok 08:14:49.0734 4664 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys 08:14:49.0813 4664 Wdf01000 - ok 08:14:49.0938 4664 WDICA - ok 08:14:50.0078 4664 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 08:14:50.0375 4664 wdmaud - ok 08:14:50.0594 4664 winusb (fd600b032e741eb6aab509fc630f7c42) C:\WINDOWS\system32\DRIVERS\WinUSB.SYS 08:14:50.0656 4664 winusb - ok 08:14:50.0875 4664 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys 08:14:51.0016 4664 WpdUsb - ok 08:14:51.0234 4664 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 08:14:51.0344 4664 WudfPf - ok 08:14:51.0594 4664 {6080A529-897E-4629-A488-ABA0C29B635E} (61002db7b6efb5711685b9d79b8e8ce6) C:\WINDOWS\system32\drivers\ialmsbw.sys 08:14:51.0891 4664 {6080A529-897E-4629-A488-ABA0C29B635E} - ok 08:14:52.0109 4664 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} (35ce2baa708ea038ab72359de87bab87) C:\WINDOWS\system32\drivers\ialmkchw.sys 08:14:52.0219 4664 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok 08:14:52.0234 4664 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0 08:14:52.0516 4664 \Device\Harddisk0\DR0 ( TDSS File System ) - warning 08:14:52.0516 4664 \Device\Harddisk0\DR0 - detected TDSS File System (1) 08:14:52.0547 4664 Boot (0x1200) (ca17d9e2a690cd1d1cbba16f7fa4a21e) \Device\Harddisk0\DR0\Partition0 08:14:52.0563 4664 \Device\Harddisk0\DR0\Partition0 - ok 08:14:52.0563 4664 ============================================================ 08:14:52.0563 4664 Scan finished 08:14:52.0563 4664 ============================================================ 08:14:52.0703 5612 Detected object count: 13 08:14:52.0703 5612 Actual detected object count: 13 08:15:50.0875 5612 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0875 5612 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0875 5612 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0875 5612 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0875 5612 cdudf_xp ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0875 5612 cdudf_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0875 5612 dvd_2K ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0875 5612 dvd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0891 5612 mmc_2K ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0891 5612 mmc_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0891 5612 MREMPR5 ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0891 5612 MREMPR5 ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0891 5612 MRENDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0891 5612 MRENDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0891 5612 NTSPPPOE ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0891 5612 NTSPPPOE ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0906 5612 omci ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0906 5612 omci ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0906 5612 pwd_2k ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0906 5612 pwd_2k ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0906 5612 RAWESR ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0906 5612 RAWESR ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0906 5612 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - skipped by user 08:15:50.0906 5612 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip 08:15:50.0984 5612 \Device\Harddisk0\DR0\TDLFS\mbr - copied to quarantine 08:15:51.0000 5612 \Device\Harddisk0\DR0\TDLFS\bid - copied to quarantine 08:15:51.0000 5612 \Device\Harddisk0\DR0\TDLFS\affid - copied to quarantine 08:15:51.0000 5612 \Device\Harddisk0\DR0\TDLFS\boot - copied to quarantine 08:15:51.0031 5612 \Device\Harddisk0\DR0\TDLFS\cmd32 - copied to quarantine 08:15:51.0063 5612 \Device\Harddisk0\DR0\TDLFS\cmd64 - copied to quarantine 08:15:51.0094 5612 \Device\Harddisk0\DR0\TDLFS\dbg32 - copied to quarantine 08:15:51.0156 5612 \Device\Harddisk0\DR0\TDLFS\dbg64 - copied to quarantine 08:15:51.0219 5612 \Device\Harddisk0\DR0\TDLFS\drv32 - copied to quarantine 08:15:51.0250 5612 \Device\Harddisk0\DR0\TDLFS\drv64 - copied to quarantine 08:15:51.0281 5612 \Device\Harddisk0\DR0\TDLFS\ldr32 - copied to quarantine 08:15:51.0313 5612 \Device\Harddisk0\DR0\TDLFS\ldr64 - copied to quarantine 08:15:51.0313 5612 \Device\Harddisk0\DR0\TDLFS\main - copied to quarantine 08:15:51.0328 5612 \Device\Harddisk0\DR0\TDLFS\subid - copied to quarantine 08:15:51.0328 5612 \Device\Harddisk0\DR0\TDLFS - deleted 08:15:51.0328 5612 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Delete
  2. Before I started the redirect issue, my WinPatrol was telling me there was something trying to change a host file. Like an idiot, I got sick of closing the alert, and finally clicked "allow" which, of course, was the start of this redirect problem. Now that I have reset Hosts to defualt, I am back to getting the occasional pop up from WinPatrol, but the redirect is not coming up anymore. I loaded a new copy of TDSS Killer, here is the report...I didn't "fix" anything, I had it skip them all... 17:23:13.0220 3716 TDSS rootkit removing tool 2.7.14.0 Feb 22 2012 16:54:49 17:23:14.0032 3716 ============================================================ 17:23:14.0032 3716 Current date / time: 2012/02/24 17:23:14.0032 17:23:14.0032 3716 SystemInfo: 17:23:14.0032 3716 17:23:14.0032 3716 OS Version: 5.1.2600 ServicePack: 3.0 17:23:14.0032 3716 Product type: Workstation 17:23:14.0032 3716 ComputerName: RECPT 17:23:14.0032 3716 UserName: Reception 17:23:14.0032 3716 Windows directory: C:\WINDOWS 17:23:14.0032 3716 System windows directory: C:\WINDOWS 17:23:14.0032 3716 Processor architecture: Intel x86 17:23:14.0032 3716 Number of processors: 1 17:23:14.0032 3716 Page size: 0x1000 17:23:14.0032 3716 Boot type: Normal boot 17:23:14.0032 3716 ============================================================ 17:23:18.0438 3716 Drive \Device\Harddisk0\DR0 - Size: 0x9925B0000 (38.29 Gb), SectorSize: 0x200, Cylinders: 0x1386, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 17:23:18.0438 3716 \Device\Harddisk0\DR0: 17:23:18.0438 3716 MBR used 17:23:18.0438 3716 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0xFB04, BlocksNum 0x4C7F241 17:23:19.0251 3716 Initialize success 17:23:19.0251 3716 ============================================================ 17:23:36.0157 3256 ============================================================ 17:23:36.0157 3256 Scan started 17:23:36.0157 3256 Mode: Manual; SigCheck; TDLFS; 17:23:36.0157 3256 ============================================================ 17:23:36.0845 3256 Abiosdsk - ok 17:23:36.0923 3256 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS 17:23:40.0829 3256 abp480n5 - ok 17:23:40.0985 3256 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys 17:23:41.0329 3256 ACPI - ok 17:23:41.0485 3256 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys 17:23:41.0798 3256 ACPIEC - ok 17:23:41.0923 3256 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\System32\DRIVERS\adpu160m.sys 17:23:42.0282 3256 adpu160m - ok 17:23:42.0423 3256 aeaudio (11c04b17ed2abbb4833694bcd644ac90) C:\WINDOWS\system32\drivers\aeaudio.sys 17:23:42.0579 3256 aeaudio - ok 17:23:42.0735 3256 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 17:23:43.0063 3256 aec - ok 17:23:43.0204 3256 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys 17:23:43.0345 3256 AFD - ok 17:23:43.0501 3256 agp440 (08fd04aa961bdc77fb983f328334e3d7) C:\WINDOWS\System32\DRIVERS\agp440.sys 17:23:43.0813 3256 agp440 - ok 17:23:43.0985 3256 agpCPQ (03a7e0922acfe1b07d5db2eeb0773063) C:\WINDOWS\System32\DRIVERS\agpCPQ.sys 17:23:44.0298 3256 agpCPQ - ok 17:23:44.0454 3256 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\System32\DRIVERS\aha154x.sys 17:23:44.0610 3256 Aha154x - ok 17:23:44.0767 3256 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\System32\DRIVERS\aic78u2.sys 17:23:45.0079 3256 aic78u2 - ok 17:23:45.0282 3256 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\System32\DRIVERS\aic78xx.sys 17:23:45.0610 3256 aic78xx - ok 17:23:45.0767 3256 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\System32\DRIVERS\aliide.sys 17:23:46.0110 3256 AliIde - ok 17:23:46.0298 3256 alim1541 (cb08aed0de2dd889a8a820cd8082d83c) C:\WINDOWS\System32\DRIVERS\alim1541.sys 17:23:46.0610 3256 alim1541 - ok 17:23:46.0751 3256 amdagp (95b4fb835e28aa1336ceeb07fd5b9398) C:\WINDOWS\System32\DRIVERS\amdagp.sys 17:23:47.0063 3256 amdagp - ok 17:23:47.0204 3256 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\System32\DRIVERS\amsint.sys 17:23:47.0360 3256 amsint - ok 17:23:47.0532 3256 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\System32\DRIVERS\asc.sys 17:23:48.0079 3256 asc - ok 17:23:48.0251 3256 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\System32\DRIVERS\asc3350p.sys 17:23:48.0423 3256 asc3350p - ok 17:23:48.0579 3256 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\System32\DRIVERS\asc3550.sys 17:23:48.0892 3256 asc3550 - ok 17:23:49.0063 3256 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 17:23:49.0376 3256 AsyncMac - ok 17:23:49.0532 3256 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 17:23:49.0860 3256 atapi - ok 17:23:49.0970 3256 Atdisk - ok 17:23:50.0079 3256 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 17:23:50.0392 3256 Atmarpc - ok 17:23:50.0548 3256 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 17:23:50.0860 3256 audstub - ok 17:23:51.0001 3256 AVGIDSDriver (4fa401b33c1b50c816486f6951244a14) C:\WINDOWS\system32\DRIVERS\AVGIDSDriver.Sys 17:23:51.0220 3256 AVGIDSDriver - ok 17:23:51.0376 3256 AVGIDSEH (69578bc9d43d614c6b3455db4af19762) C:\WINDOWS\system32\DRIVERS\AVGIDSEH.Sys 17:23:51.0407 3256 AVGIDSEH - ok 17:23:51.0548 3256 AVGIDSFilter (6df528406aa22201f392b9b19121cd6f) C:\WINDOWS\system32\DRIVERS\AVGIDSFilter.Sys 17:23:51.0595 3256 AVGIDSFilter - ok 17:23:51.0751 3256 AVGIDSShim (1e01c2166b5599802bcd61b9691f7476) C:\WINDOWS\system32\DRIVERS\AVGIDSShim.Sys 17:23:51.0782 3256 AVGIDSShim - ok 17:23:51.0923 3256 Avgldx86 (bf8118cd5e2255387b715b534d64acd1) C:\WINDOWS\system32\DRIVERS\avgldx86.sys 17:23:51.0970 3256 Avgldx86 - ok 17:23:52.0126 3256 Avgmfx86 (1c77ef67f196466adc9924cb288afe87) C:\WINDOWS\system32\DRIVERS\avgmfx86.sys 17:23:52.0157 3256 Avgmfx86 - ok 17:23:52.0360 3256 Avgrkx86 (f2038ed7284b79dcef581468121192a9) C:\WINDOWS\system32\DRIVERS\avgrkx86.sys 17:23:52.0392 3256 Avgrkx86 - ok 17:23:52.0563 3256 Avgtdix (a6d562b612216d8d02a35ebeb92366bd) C:\WINDOWS\system32\DRIVERS\avgtdix.sys 17:23:52.0626 3256 Avgtdix - ok 17:23:52.0782 3256 bcm4sbxp (f5c0d3c93235a455cdd13c954adf1a80) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys 17:23:52.0845 3256 bcm4sbxp - ok 17:23:52.0938 3256 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 17:23:53.0282 3256 Beep - ok 17:23:53.0423 3256 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\System32\DRIVERS\cbidf2k.sys 17:23:53.0798 3256 cbidf - ok 17:23:53.0907 3256 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 17:23:54.0267 3256 cbidf2k - ok 17:23:54.0423 3256 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\System32\DRIVERS\cd20xrnt.sys 17:23:54.0642 3256 cd20xrnt - ok 17:23:54.0798 3256 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 17:23:55.0204 3256 Cdaudio - ok 17:23:55.0392 3256 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 17:23:55.0704 3256 Cdfs - ok 17:23:55.0876 3256 Cdr4_xp (bf79e659c506674c0497cc9c61f1a165) C:\WINDOWS\system32\drivers\Cdr4_xp.sys 17:23:55.0923 3256 Cdr4_xp ( UnsignedFile.Multi.Generic ) - warning 17:23:55.0923 3256 Cdr4_xp - detected UnsignedFile.Multi.Generic (1) 17:23:56.0548 3256 Cdralw2k (2c41cd49d82d5fd85c72d57b6ca25471) C:\WINDOWS\system32\drivers\Cdralw2k.sys 17:23:56.0626 3256 Cdralw2k ( UnsignedFile.Multi.Generic ) - warning 17:23:56.0626 3256 Cdralw2k - detected UnsignedFile.Multi.Generic (1) 17:23:56.0938 3256 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 17:23:57.0282 3256 Cdrom - ok 17:23:57.0470 3256 cdudf_xp (cfd81f2140193fc7f1812e6d6eaf6795) C:\WINDOWS\system32\drivers\cdudf_xp.sys 17:23:57.0517 3256 cdudf_xp ( UnsignedFile.Multi.Generic ) - warning 17:23:57.0517 3256 cdudf_xp - detected UnsignedFile.Multi.Generic (1) 17:23:57.0626 3256 Changer - ok 17:23:57.0720 3256 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\System32\DRIVERS\cmdide.sys 17:23:58.0063 3256 CmdIde - ok 17:23:58.0423 3256 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\System32\DRIVERS\cpqarray.sys 17:23:58.0813 3256 Cpqarray - ok 17:23:59.0079 3256 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\System32\DRIVERS\dac2w2k.sys 17:23:59.0423 3256 dac2w2k - ok 17:23:59.0563 3256 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\System32\DRIVERS\dac960nt.sys 17:23:59.0892 3256 dac960nt - ok 17:24:00.0673 3256 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 17:24:01.0079 3256 Disk - ok 17:24:01.0610 3256 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys 17:24:02.0204 3256 dmboot - ok 17:24:02.0454 3256 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys 17:24:02.0782 3256 dmio - ok 17:24:03.0017 3256 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 17:24:03.0376 3256 dmload - ok 17:24:03.0673 3256 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 17:24:03.0985 3256 DMusic - ok 17:24:04.0360 3256 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\System32\DRIVERS\dpti2o.sys 17:24:04.0767 3256 dpti2o - ok 17:24:05.0235 3256 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 17:24:05.0563 3256 drmkaud - ok 17:24:05.0938 3256 dvd_2K (0c7d4bf5158ab759f5e71829e93e0ba9) C:\WINDOWS\system32\drivers\dvd_2K.sys 17:24:06.0657 3256 dvd_2K ( UnsignedFile.Multi.Generic ) - warning 17:24:06.0657 3256 dvd_2K - detected UnsignedFile.Multi.Generic (1) 17:24:06.0985 3256 EL90XBC (6e883bf518296a40959131c2304af714) C:\WINDOWS\system32\DRIVERS\el90xbc5.sys 17:24:07.0376 3256 EL90XBC - ok 17:24:07.0735 3256 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 17:24:08.0063 3256 Fastfat - ok 17:24:08.0298 3256 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys 17:24:08.0610 3256 Fdc - ok 17:24:08.0782 3256 febfb7f54ba8f5ca258451461b7cd608 - ok 17:24:09.0032 3256 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys 17:24:09.0345 3256 Fips - ok 17:24:09.0548 3256 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys 17:24:09.0845 3256 Flpydisk - ok 17:24:09.0970 3256 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys 17:24:10.0282 3256 FltMgr - ok 17:24:10.0407 3256 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 17:24:10.0720 3256 Fs_Rec - ok 17:24:10.0892 3256 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 17:24:11.0204 3256 Ftdisk - ok 17:24:11.0345 3256 GEARAspiWDM (ab8a6a87d9d7255c3884d5b9541a6e80) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys 17:24:11.0392 3256 GEARAspiWDM - ok 17:24:11.0548 3256 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 17:24:11.0860 3256 Gpc - ok 17:24:12.0079 3256 HidUsb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 17:24:12.0407 3256 HidUsb - ok 17:24:12.0579 3256 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\System32\DRIVERS\hpn.sys 17:24:12.0923 3256 hpn - ok 17:24:13.0063 3256 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 17:24:13.0142 3256 HTTP - ok 17:24:13.0313 3256 i2omgmt (9368670bd426ebea5e8b18a62416ec28) C:\WINDOWS\system32\drivers\i2omgmt.sys 17:24:13.0657 3256 i2omgmt - ok 17:24:13.0798 3256 i2omp (f10863bf1ccc290babd1a09188ae49e0) C:\WINDOWS\System32\DRIVERS\i2omp.sys 17:24:14.0095 3256 i2omp - ok 17:24:14.0267 3256 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 17:24:14.0563 3256 i8042prt - ok 17:24:14.0735 3256 i81x (06b7ef73ba5f302eecc294cdf7e19702) C:\WINDOWS\system32\DRIVERS\i81xnt5.sys 17:24:15.0032 3256 i81x - ok 17:24:15.0142 3256 iAimFP0 (7b5b44efe5eb9dadfb8ee29700885d23) C:\WINDOWS\system32\DRIVERS\wADV01nt.sys 17:24:15.0438 3256 iAimFP0 - ok 17:24:15.0579 3256 iAimFP1 (eb1f6bab6c22ede0ba551b527475f7e9) C:\WINDOWS\system32\DRIVERS\wADV02NT.sys 17:24:15.0845 3256 iAimFP1 - ok 17:24:15.0985 3256 iAimFP2 (03ce989d846c1aa81145cb22fcb86d06) C:\WINDOWS\system32\DRIVERS\wADV05NT.sys 17:24:16.0282 3256 iAimFP2 - ok 17:24:16.0438 3256 iAimFP3 (525849b4469de021d5d61b4db9be3a9d) C:\WINDOWS\system32\DRIVERS\wSiINTxx.sys 17:24:16.0704 3256 iAimFP3 - ok 17:24:16.0860 3256 iAimFP4 (589c2bcdb5bd602bf7b63d210407ef8c) C:\WINDOWS\system32\DRIVERS\wVchNTxx.sys 17:24:17.0142 3256 iAimFP4 - ok 17:24:17.0298 3256 iAimTV0 (d83bdd5c059667a2f647a6be5703a4d2) C:\WINDOWS\system32\DRIVERS\wATV01nt.sys 17:24:17.0813 3256 iAimTV0 - ok 17:24:17.0970 3256 iAimTV1 (ed968d23354daa0d7c621580c012a1f6) C:\WINDOWS\system32\DRIVERS\wATV02NT.sys 17:24:18.0235 3256 iAimTV1 - ok 17:24:18.0345 3256 iAimTV2 - ok 17:24:18.0454 3256 iAimTV3 (d738273f218a224c1ddac04203f27a84) C:\WINDOWS\system32\DRIVERS\wATV04nt.sys 17:24:18.0735 3256 iAimTV3 - ok 17:24:18.0860 3256 iAimTV4 (0052d118995cbab152daabe6106d1442) C:\WINDOWS\system32\DRIVERS\wCh7xxNT.sys 17:24:19.0126 3256 iAimTV4 - ok 17:24:19.0345 3256 ialm (44b7d5a4f2bd9fe21aea0bb0bace38c4) C:\WINDOWS\system32\DRIVERS\ialmnt5.sys 17:24:19.0470 3256 ialm - ok 17:24:19.0626 3256 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\drivers\Imapi.sys 17:24:19.0938 3256 Imapi - ok 17:24:20.0063 3256 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\System32\DRIVERS\ini910u.sys 17:24:20.0407 3256 ini910u - ok 17:24:20.0579 3256 IntelIde (b5466a9250342a7aa0cd1fba13420678) C:\WINDOWS\System32\DRIVERS\intelide.sys 17:24:20.0892 3256 IntelIde - ok 17:24:21.0017 3256 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys 17:24:21.0329 3256 Ip6Fw - ok 17:24:21.0485 3256 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 17:24:21.0798 3256 IpFilterDriver - ok 17:24:22.0017 3256 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 17:24:22.0298 3256 IpInIp - ok 17:24:22.0470 3256 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 17:24:22.0767 3256 IpNat - ok 17:24:22.0907 3256 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 17:24:23.0188 3256 IPSec - ok 17:24:23.0407 3256 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 17:24:23.0720 3256 IRENUM - ok 17:24:23.0876 3256 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys 17:24:24.0157 3256 isapnp - ok 17:24:24.0345 3256 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 17:24:24.0657 3256 Kbdclass - ok 17:24:24.0798 3256 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 17:24:25.0110 3256 kmixer - ok 17:24:25.0282 3256 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 17:24:25.0407 3256 KSecDD - ok 17:24:25.0532 3256 lbrtfdc - ok 17:24:25.0657 3256 MBAMProtector (b7ca8cc3f978201856b6ab82f40953c3) C:\WINDOWS\system32\drivers\mbam.sys 17:24:25.0688 3256 MBAMProtector - ok 17:24:25.0860 3256 mmc_2K (31700004af5b9ddabb7c43b1507d061c) C:\WINDOWS\system32\drivers\mmc_2K.sys 17:24:26.0063 3256 mmc_2K ( UnsignedFile.Multi.Generic ) - warning 17:24:26.0063 3256 mmc_2K - detected UnsignedFile.Multi.Generic (1) 17:24:26.0188 3256 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 17:24:26.0517 3256 mnmdd - ok 17:24:26.0673 3256 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys 17:24:26.0985 3256 Modem - ok 17:24:27.0142 3256 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys 17:24:27.0438 3256 Mouclass - ok 17:24:27.0595 3256 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys 17:24:27.0923 3256 mouhid - ok 17:24:28.0063 3256 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 17:24:28.0360 3256 MountMgr - ok 17:24:28.0517 3256 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\System32\DRIVERS\mraid35x.sys 17:24:28.0845 3256 mraid35x - ok 17:24:28.0970 3256 MREMPR5 (2bc9e43f55de8c30fc817ed56d0ee907) C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS 17:24:29.0173 3256 MREMPR5 ( UnsignedFile.Multi.Generic ) - warning 17:24:29.0173 3256 MREMPR5 - detected UnsignedFile.Multi.Generic (1) 17:24:29.0329 3256 MRENDIS5 (594b9d8194e3f4ecbf0325bd10bbeb05) C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS 17:24:29.0563 3256 MRENDIS5 ( UnsignedFile.Multi.Generic ) - warning 17:24:29.0563 3256 MRENDIS5 - detected UnsignedFile.Multi.Generic (1) 17:24:29.0751 3256 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 17:24:30.0063 3256 MRxDAV - ok 17:24:30.0220 3256 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 17:24:30.0392 3256 MRxSmb - ok 17:24:30.0579 3256 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 17:24:30.0876 3256 Msfs - ok 17:24:31.0017 3256 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 17:24:31.0329 3256 MSKSSRV - ok 17:24:31.0485 3256 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 17:24:31.0782 3256 MSPCLOCK - ok 17:24:31.0923 3256 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 17:24:32.0235 3256 MSPQM - ok 17:24:32.0423 3256 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 17:24:32.0735 3256 mssmbios - ok 17:24:32.0907 3256 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 17:24:32.0970 3256 Mup - ok 17:24:33.0157 3256 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 17:24:33.0470 3256 NDIS - ok 17:24:33.0610 3256 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 17:24:33.0688 3256 NdisTapi - ok 17:24:33.0829 3256 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 17:24:34.0267 3256 Ndisuio - ok 17:24:34.0423 3256 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 17:24:34.0735 3256 NdisWan - ok 17:24:34.0860 3256 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 17:24:34.0938 3256 NDProxy - ok 17:24:35.0063 3256 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 17:24:35.0360 3256 NetBIOS - ok 17:24:35.0532 3256 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 17:24:35.0845 3256 NetBT - ok 17:24:36.0032 3256 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 17:24:36.0345 3256 Npfs - ok 17:24:36.0517 3256 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 17:24:36.0892 3256 Ntfs - ok 17:24:37.0126 3256 NTSPPPOE (fa6395b0bfd241c75ff21366828d35c6) C:\WINDOWS\system32\DRIVERS\ntspppoe.sys 17:24:37.0360 3256 NTSPPPOE ( UnsignedFile.Multi.Generic ) - warning 17:24:37.0360 3256 NTSPPPOE - detected UnsignedFile.Multi.Generic (1) 17:24:37.0485 3256 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 17:24:37.0829 3256 Null - ok 17:24:38.0095 3256 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 17:24:38.0485 3256 nv - ok 17:24:38.0642 3256 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 17:24:38.0985 3256 NwlnkFlt - ok 17:24:39.0126 3256 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 17:24:39.0438 3256 NwlnkFwd - ok 17:24:39.0595 3256 omci (1d98907d80461371437a7c898c58c8ae) C:\WINDOWS\system32\DRIVERS\omci.sys 17:24:39.0782 3256 omci ( UnsignedFile.Multi.Generic ) - warning 17:24:39.0782 3256 omci - detected UnsignedFile.Multi.Generic (1) 17:24:39.0938 3256 P3 (c90018bafdc7098619a4a95b046b30f3) C:\WINDOWS\system32\DRIVERS\p3.sys 17:24:40.0235 3256 P3 - ok 17:24:40.0407 3256 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\DRIVERS\parport.sys 17:24:40.0720 3256 Parport - ok 17:24:40.0845 3256 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 17:24:41.0142 3256 PartMgr - ok 17:24:41.0282 3256 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys 17:24:41.0610 3256 ParVdm - ok 17:24:41.0767 3256 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys 17:24:42.0063 3256 PCI - ok 17:24:42.0188 3256 PCIDump - ok 17:24:42.0360 3256 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys 17:24:42.0704 3256 PCIIde - ok 17:24:42.0860 3256 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys 17:24:43.0157 3256 Pcmcia - ok 17:24:43.0345 3256 PDCOMP - ok 17:24:43.0438 3256 PDFRAME - ok 17:24:43.0548 3256 PDRELI - ok 17:24:43.0626 3256 PDRFRAME - ok 17:24:43.0751 3256 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\System32\DRIVERS\perc2.sys 17:24:44.0079 3256 perc2 - ok 17:24:44.0220 3256 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\System32\DRIVERS\perc2hib.sys 17:24:44.0563 3256 perc2hib - ok 17:24:44.0767 3256 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 17:24:45.0063 3256 PptpMiniport - ok 17:24:45.0173 3256 Processor (a32bebaf723557681bfc6bd93e98bd26) C:\WINDOWS\system32\DRIVERS\processr.sys 17:24:45.0501 3256 Processor - ok 17:24:45.0657 3256 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 17:24:45.0970 3256 PSched - ok 17:24:46.0063 3256 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 17:24:46.0392 3256 Ptilink - ok 17:24:46.0501 3256 pwd_2k (05a2b66ef7c53bdd2c9cfb836a6620ce) C:\WINDOWS\system32\drivers\pwd_2k.sys 17:24:46.0720 3256 pwd_2k ( UnsignedFile.Multi.Generic ) - warning 17:24:46.0720 3256 pwd_2k - detected UnsignedFile.Multi.Generic (1) 17:24:46.0829 3256 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys 17:24:47.0376 3256 PxHelp20 - ok 17:24:47.0532 3256 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\System32\DRIVERS\ql1080.sys 17:24:47.0876 3256 ql1080 - ok 17:24:48.0017 3256 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\System32\DRIVERS\ql10wnt.sys 17:24:48.0329 3256 Ql10wnt - ok 17:24:48.0485 3256 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\System32\DRIVERS\ql12160.sys 17:24:48.0845 3256 ql12160 - ok 17:24:49.0001 3256 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\System32\DRIVERS\ql1240.sys 17:24:49.0329 3256 ql1240 - ok 17:24:49.0485 3256 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\System32\DRIVERS\ql1280.sys 17:24:49.0798 3256 ql1280 - ok 17:24:49.0892 3256 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 17:24:50.0220 3256 RasAcd - ok 17:24:50.0329 3256 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 17:24:50.0626 3256 Rasl2tp - ok 17:24:50.0767 3256 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 17:24:51.0079 3256 RasPppoe - ok 17:24:51.0220 3256 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 17:24:51.0548 3256 Raspti - ok 17:24:51.0657 3256 RAWESR (7ce613915693781815ba07b145003f0d) C:\PROGRA~1\EFFICI~1\ENTERN~1\app\RAWESR.SYS 17:24:51.0876 3256 RAWESR ( UnsignedFile.Multi.Generic ) - warning 17:24:51.0876 3256 RAWESR - detected UnsignedFile.Multi.Generic (1) 17:24:52.0048 3256 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 17:24:52.0360 3256 Rdbss - ok 17:24:52.0470 3256 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 17:24:52.0782 3256 RDPCDD - ok 17:24:52.0907 3256 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys 17:24:53.0220 3256 rdpdr - ok 17:24:53.0376 3256 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys 17:24:53.0485 3256 RDPWD - ok 17:24:53.0642 3256 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys 17:24:53.0954 3256 redbook - ok 17:24:54.0173 3256 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 17:24:54.0517 3256 Secdrv - ok 17:24:54.0688 3256 serenum (0f29512ccd6bead730039fb4bd2c85ce) C:\WINDOWS\system32\DRIVERS\serenum.sys 17:24:55.0017 3256 serenum - ok 17:24:55.0157 3256 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\DRIVERS\serial.sys 17:24:55.0454 3256 Serial - ok 17:24:55.0642 3256 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 17:24:55.0954 3256 Sfloppy - ok 17:24:56.0063 3256 Simbad - ok 17:24:56.0157 3256 sisagp (6b33d0ebd30db32e27d1d78fe946a754) C:\WINDOWS\System32\DRIVERS\sisagp.sys 17:24:56.0470 3256 sisagp - ok 17:24:56.0642 3256 smwdm (8583e3dc5285eb3ddfb74fb646cdf295) C:\WINDOWS\system32\drivers\smwdm.sys 17:24:56.0751 3256 smwdm - ok 17:24:56.0907 3256 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\System32\DRIVERS\sparrow.sys 17:24:57.0095 3256 Sparrow - ok 17:24:57.0267 3256 SPBBCDrv (c30fa11923892a4dbd1c747db8492e8f) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys 17:24:57.0345 3256 SPBBCDrv - ok 17:24:57.0501 3256 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 17:24:57.0798 3256 splitter - ok 17:24:57.0938 3256 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys 17:24:58.0235 3256 sr - ok 17:24:58.0407 3256 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 17:24:58.0548 3256 Srv - ok 17:24:58.0720 3256 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 17:24:59.0032 3256 swenum - ok 17:24:59.0173 3256 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 17:24:59.0485 3256 swmidi - ok 17:24:59.0720 3256 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\System32\DRIVERS\symc810.sys 17:25:00.0063 3256 symc810 - ok 17:25:00.0220 3256 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\System32\DRIVERS\symc8xx.sys 17:25:00.0563 3256 symc8xx - ok 17:25:00.0642 3256 SymEvent (b3f8b9eab2ebe205c0fe053fba951d8c) C:\Program Files\Symantec\SYMEVENT.SYS 17:25:00.0688 3256 SymEvent - ok 17:25:00.0845 3256 SYMREDRV (7c73b65f1bdfab9052a5076c0ca622de) C:\WINDOWS\System32\Drivers\SYMREDRV.SYS 17:25:00.0892 3256 SYMREDRV - ok 17:25:01.0048 3256 SYMTDI (b4562798891dca27ed67ca07acbadbd9) C:\WINDOWS\System32\Drivers\SYMTDI.SYS 17:25:01.0110 3256 SYMTDI - ok 17:25:01.0235 3256 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\System32\DRIVERS\sym_hi.sys 17:25:01.0563 3256 sym_hi - ok 17:25:01.0720 3256 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\System32\DRIVERS\sym_u3.sys 17:25:02.0048 3256 sym_u3 - ok 17:25:02.0220 3256 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 17:25:02.0532 3256 sysaudio - ok 17:25:02.0720 3256 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 17:25:02.0907 3256 Tcpip - ok 17:25:03.0063 3256 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 17:25:03.0360 3256 TDPIPE - ok 17:25:03.0532 3256 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 17:25:03.0829 3256 TDTCP - ok 17:25:03.0970 3256 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 17:25:04.0267 3256 TermDD - ok 17:25:04.0485 3256 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\System32\DRIVERS\toside.sys 17:25:04.0845 3256 TosIde - ok 17:25:05.0048 3256 UdfReadr_xp (3369211d13a73cdc830858ad934a0449) C:\WINDOWS\system32\drivers\UdfReadr_xp.sys 17:25:05.0095 3256 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - warning 17:25:05.0095 3256 UdfReadr_xp - detected UnsignedFile.Multi.Generic (1) 17:25:05.0267 3256 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 17:25:05.0595 3256 Udfs - ok 17:25:05.0751 3256 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\System32\DRIVERS\ultra.sys 17:25:05.0938 3256 ultra - ok 17:25:06.0110 3256 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 17:25:06.0438 3256 Update - ok 17:25:06.0610 3256 USBAAPL (c1ca131f4e3ed63d6bc89a35ffad4cda) C:\WINDOWS\system32\Drivers\usbaapl.sys 17:25:06.0720 3256 USBAAPL - ok 17:25:06.0876 3256 usbbus (9419faac6552a51542dbba02971c841c) C:\WINDOWS\system32\DRIVERS\lgusbbus.sys 17:25:07.0032 3256 usbbus - ok 17:25:07.0220 3256 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 17:25:07.0532 3256 usbccgp - ok 17:25:07.0673 3256 UsbDiag (c0a466fa4ffec464320e159bc1bbdc0c) C:\WINDOWS\system32\DRIVERS\lgusbdiag.sys 17:25:07.0735 3256 UsbDiag - ok 17:25:07.0892 3256 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 17:25:08.0204 3256 usbehci - ok 17:25:08.0376 3256 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 17:25:08.0673 3256 usbhub - ok 17:25:08.0798 3256 Usblink - ok 17:25:08.0923 3256 USBModem (f74a54774a9b0afeb3c40adec68aa600) C:\WINDOWS\system32\DRIVERS\lgusbmodem.sys 17:25:08.0985 3256 USBModem - ok 17:25:09.0142 3256 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 17:25:09.0470 3256 usbprint - ok 17:25:09.0642 3256 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 17:25:09.0954 3256 usbscan - ok 17:25:10.0079 3256 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 17:25:10.0392 3256 USBSTOR - ok 17:25:10.0548 3256 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 17:25:10.0845 3256 usbuhci - ok 17:25:11.0001 3256 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 17:25:11.0313 3256 VgaSave - ok 17:25:11.0501 3256 viaagp (754292ce5848b3738281b4f3607eaef4) C:\WINDOWS\System32\DRIVERS\viaagp.sys 17:25:11.0798 3256 viaagp - ok 17:25:12.0079 3256 ViaIde (3b3efcda263b8ac14fdf9cbdd0791b2e) C:\WINDOWS\System32\DRIVERS\viaide.sys 17:25:12.0407 3256 ViaIde - ok 17:25:12.0626 3256 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys 17:25:12.0970 3256 VolSnap - ok 17:25:13.0204 3256 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 17:25:13.0501 3256 Wanarp - ok 17:25:13.0751 3256 Wdf01000 (fd47474bd21794508af449d9d91af6e6) C:\WINDOWS\system32\DRIVERS\Wdf01000.sys 17:25:13.0860 3256 Wdf01000 - ok 17:25:13.0970 3256 WDICA - ok 17:25:14.0110 3256 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 17:25:14.0407 3256 wdmaud - ok 17:25:14.0626 3256 winusb (fd600b032e741eb6aab509fc630f7c42) C:\WINDOWS\system32\DRIVERS\WinUSB.SYS 17:25:14.0688 3256 winusb - ok 17:25:14.0892 3256 WpdUsb (cf4def1bf66f06964dc0d91844239104) C:\WINDOWS\system32\DRIVERS\wpdusb.sys 17:25:14.0985 3256 WpdUsb - ok 17:25:15.0142 3256 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys 17:25:15.0220 3256 WudfPf - ok 17:25:15.0454 3256 {6080A529-897E-4629-A488-ABA0C29B635E} (61002db7b6efb5711685b9d79b8e8ce6) C:\WINDOWS\system32\drivers\ialmsbw.sys 17:25:15.0876 3256 {6080A529-897E-4629-A488-ABA0C29B635E} - ok 17:25:16.0032 3256 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} (35ce2baa708ea038ab72359de87bab87) C:\WINDOWS\system32\drivers\ialmkchw.sys 17:25:16.0126 3256 {D31A0762-0CEB-444e-ACFF-B049A1F6FE91} - ok 17:25:16.0157 3256 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0 17:25:16.0392 3256 \Device\Harddisk0\DR0 ( TDSS File System ) - warning 17:25:16.0392 3256 \Device\Harddisk0\DR0 - detected TDSS File System (1) 17:25:16.0438 3256 Boot (0x1200) (ca17d9e2a690cd1d1cbba16f7fa4a21e) \Device\Harddisk0\DR0\Partition0 17:25:16.0438 3256 \Device\Harddisk0\DR0\Partition0 - ok 17:25:16.0438 3256 ============================================================ 17:25:16.0438 3256 Scan finished 17:25:16.0454 3256 ============================================================ 17:25:16.0642 3336 Detected object count: 13 17:25:16.0642 3336 Actual detected object count: 13 17:25:52.0173 3336 Cdr4_xp ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0173 3336 Cdr4_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0173 3336 Cdralw2k ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0173 3336 Cdralw2k ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0173 3336 cdudf_xp ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0173 3336 cdudf_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0173 3336 dvd_2K ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0173 3336 dvd_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0188 3336 mmc_2K ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0188 3336 mmc_2K ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0188 3336 MREMPR5 ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0188 3336 MREMPR5 ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0188 3336 MRENDIS5 ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0188 3336 MRENDIS5 ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0188 3336 NTSPPPOE ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0188 3336 NTSPPPOE ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0204 3336 omci ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0204 3336 omci ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0204 3336 pwd_2k ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0204 3336 pwd_2k ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0204 3336 RAWESR ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0204 3336 RAWESR ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0204 3336 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - skipped by user 17:25:52.0204 3336 UdfReadr_xp ( UnsignedFile.Multi.Generic ) - User select action: Skip 17:25:52.0204 3336 \Device\Harddisk0\DR0 ( TDSS File System ) - skipped by user 17:25:52.0204 3336 \Device\Harddisk0\DR0 ( TDSS File System ) - User select action: Skip
  3. Can I load the new copy of TDSSKiller from the link you posted here (that is the same link I loaded the original copy from)? Also, I found this on Bleeping computer, I loaded the Microsoft fix listed in post #5 and it did stop the redirect, however the file is still there, since WinPatrol keeps telling me there is a program trying to make a change to my host file (accepting this change is what started the redirect problem to start with) http://www.bleepingcomputer.com/forums/topic443482.html
  4. This is all that shows up on the report: Status: Deleted (events: 2) 2/23/2012 4:11:24 AM Deleted Trojan program Backdoor.Win64.GeckaSeka.a C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\APTemp\AP7.dta High 2/23/2012 4:11:23 AM Deleted Trojan program Backdoor.Win64.GeckaSeka.a C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\APTemp\AP0.dta High
  5. Virus is still there. Kapersky did find 2 viruses, but still have the VIP search. It is taking several minutes now to save the Kapersky report...once it is done, I will post it here.
  6. Well, it is running at a normal speed now, but after completing 3 searches, I got the same VIP search redirect again.
  7. Malwarebytes Anti-Malware (PRO) 1.60.1.1000 www.malwarebytes.org Database version: v2012.02.21.03 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 Reception :: RECPT [administrator] Protection: Enabled 2/21/2012 11:45:00 AM mbam-log-2012-02-21 (11-45-00).txt Scan type: Quick scan Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM Scan options disabled: P2P Objects scanned: 177998 Time elapsed: 15 minute(s), 5 second(s) Memory Processes Detected: 0 (No malicious items detected) Memory Modules Detected: 0 (No malicious items detected) Registry Keys Detected: 0 (No malicious items detected) Registry Values Detected: 0 (No malicious items detected) Registry Data Items Detected: 0 (No malicious items detected) Folders Detected: 0 (No malicious items detected) Files Detected: 0 (No malicious items detected) (end)
  8. MWB did not find anything. ESET (do I have that name right?) Found 3 and cleaned them, but I still have the problem. cacESETSmartInstaller@High as CAB hook log: OnlineScanner.ocx - registred OK # version=7 # iexplore.exe=8.00.6001.18702 (longhorn_ie8_rtm(wmbla).090308-0339) # OnlineScanner.ocx=1.0.0.6583 # api_version=3.0.2 # EOSSerial=5bb5ce9da4e4a44fbdd0a4e77a3cf447 # end=finished # remove_checked=true # archives_checked=true # unwanted_checked=true # unsafe_checked=false # antistealth_checked=true # utc_time=2012-02-21 08:04:13 # local_time=2012-02-21 03:04:13 (-0500, Eastern Standard Time) # country="United States" # lang=1033 # osver=5.1.2600 NT Service Pack 3 # compatibility_mode=512 16777215 100 0 95641134 95641134 0 0 # compatibility_mode=1024 16777215 100 0 475638 475638 0 0 # compatibility_mode=8192 67108863 100 0 0 0 0 0 # scanned=141842 # found=3 # cleaned=3 # scan_time=9383 C:\Documents and Settings\All Users\Application Data\Symantec\Symantec AntiVirus Corporate Edition\7.5\APTemp\APQF6.tmp a variant of Win32/Olmasco.O trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\17.02.2012_17.23.35\mbr0000\tdlfs0000\tsk0004.dta Win32/Olmasco.O trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C C:\TDSSKiller_Quarantine\17.02.2012_18.15.44\tdlfs0000\tsk0004.dta Win32/Olmasco.O trojan (cleaned by deleting - quarantined) 00000000000000000000000000000000 C
  9. I did a hard shut down, then ran OTL in safe mode, here is the log...I still have the VIP search coming up... All processes killed ========== OTL ========== Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@viewpoint.com/VMP\ deleted successfully. File C:\Program Files\Viewpoint\Viewpoint Media Player\npViewpoint.dll not found. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{7b13ec3e-999a-4b70-b9cb-2617b8323822}\ not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ShellBrowser\\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}\ not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{4B3803EA-5230-4DC3-A7FC-33638F3D3542} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{4B3803EA-5230-4DC3-A7FC-33638F3D3542}\ not found. Registry value HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run\\Vrixalirikijira deleted successfully. C:\Documents and Settings\All Users\Application Data\9kWNpeptoA3dKP moved successfully. C:\Documents and Settings\All Users\Application Data\~9kWNpeptoA3dKP moved successfully. C:\Documents and Settings\All Users\Application Data\~9kWNpeptoA3dKPr moved successfully. ========== FILES ========== C:\Program Files\Viewpoint\Viewpoint Toolbar folder moved successfully. C:\Program Files\Viewpoint folder moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 66016 bytes ->Temporary Internet Files folder emptied: 167682 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 32969 bytes User: Reception ->Temp folder emptied: 91846647 bytes ->Temporary Internet Files folder emptied: 18553477 bytes ->Java cache emptied: 12306094 bytes ->FireFox cache emptied: 44948326 bytes ->Google Chrome cache emptied: 89819007 bytes ->Flash cache emptied: 44040 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 203170 bytes %systemroot%\System32 .tmp files removed: 2675729 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 48037413 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temp folder emptied: 51039308 bytes %systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 421907 bytes RecycleBin emptied: 375475083 bytes Total Files Cleaned = 702.00 mb Restore points cleared and new OTL Restore Point set! OTL by OldTimer - Version 3.2.33.0 log created on 02202012_180943 Files\Folders moved on Reboot... Registry entries deleted on Reboot...
  10. It still says "Killing Processes. Please don't interrupt".
  11. I started OTL 2 hours ago. It still just says "killing processes. Do not interrupt" Should I be concerned about all this killing? Just let it keep going, or do hard shut down?
  12. OK. But I have Symantec Live Update, which is not any of the products listed...which one do I use?
  13. I can not remove the Symantec...when I open it in change/remove programs, there is no "uninstall" option.Yesterday, I removed what I could (there were two Symantec programs, one did have the uninstall option). Should I go ahead with the next step anyway? If I try to launch Symantec, it says that it isn't functioning because it needs a disk...I guess because I uninstalled part of it yesterday?
  14. Also, we normally leave our computer runnning. Every monrning when I wake up, the computer is turned off, and I need to turn it back on. Is MWB pro doing that, or something else? Should I turn off system restore?
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.