Infected - google redirect + MBAM blocking outgoing connection

westmaniac · November 14, 2011

Hi, I have been infected and my computer is being redirected when google searching and MBAM is blocking an outgoing connection very often.

Here is my hijackthis-log.

Thanks in advance

Logfile of Trend Micro HijackThis v2.0.4

Scan saved at 14:56:57, on 2011-11-14

Platform: Windows Vista SP2 (WinNT 6.00.1906)

MSIE: Internet Explorer v9.00 (9.00.8112.16421)

Boot mode: Normal

Running processes:

C:\Program Files\Hardware\Keyboard\Ikeymain.exe

C:\Program Files (x86)\Personal\bin\Personal.exe

C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Users\olwe01\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE

C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\Spotify\spotify.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\TweetDeck\TweetDeck.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Program Files (x86)\Trend Micro\HiJackThis\HiJackThis.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.maetcenter.com/

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.shareware-sw.com/sv/index.php?rvs=hompag

R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm

R1 - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings,ProxyOverride = *.local

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =

O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

O2 - BHO: Adobe PDF Conversion Toolbar Helper - {AE7CD045-E861-484f-8273-0445EE161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O2 - BHO: swedish.ilsc Toolbar - {bc355688-39a0-4c1b-826a-892ce39e0801} - C:\Program Files (x86)\swedish.ilsc\tbswe1.dll

O2 - BHO: Java Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

O2 - BHO: SmartSelect - {F4971EE7-DAA0-4053-9964-665D8EE6A077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O3 - Toolbar: swedish.ilsc Toolbar - {bc355688-39a0-4c1b-826a-892ce39e0801} - C:\Program Files (x86)\swedish.ilsc\tbswe1.dll

O3 - Toolbar: Adobe PDF - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

O4 - HKLM\..\Run: [OfficeScanNT Monitor] "C:\Program Files (x86)\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow

O4 - HKLM\..\Run: [switchBoard] "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"

O4 - HKLM\..\Run: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

O4 - HKLM\..\Run: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"

O4 - HKLM\..\Run: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"

O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

O4 - HKLM\..\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

O4 - HKLM\..\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

O4 - HKLM\..\Run: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

O4 - Startup: Auto Mail Sender Birthday Edition.lnk = C:\Program Files (x86)\trisunsoft\Auto Mail Sender Birthday Edition.exe

O4 - Startup: Dropbox.lnk = olwe01\AppData\Roaming\Dropbox\bin\Dropbox.exe

O4 - Startup: EvernoteClipper.lnk = C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

O4 - Startup: Yammer.lnk = C:\Program Files (x86)\Yammer\Yammer.exe

O4 - Global Startup: Personal.lnk = C:\Program Files (x86)\Personal\bin\Personal.exe

O4 - Global Startup: ZDWLan Utility.lnk = C:\Program Files (x86)\ZyDAS Technology Corporation\ZyDAS_802.11g_Utility\ZDWlan.exe

O8 - Extra context menu item: Add to Evernote 4.0 - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204

O8 - Extra context menu item: Append Link Target to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

O8 - Extra context menu item: Append to Existing PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html

O8 - Extra context menu item: Convert Link Target to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

O8 - Extra context menu item: Convert to Adobe PDF - res://C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html

O8 - Extra context menu item: E&xportera till Microsoft Excel - res://C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

O9 - Extra button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra 'Tools' menuitem: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O9 - Extra button: Referensinformation - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL

O9 - Extra button: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)

O9 - Extra 'Tools' menuitem: @C:\Program Files (x86)\Evernote\Evernote\Resource.dll,-101 - {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204 (file missing)

O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics

O16 - DPF: {00134F72-5284-44F7-95A8-52A619F70751} (ObjWinNTCheck Class) - https://fs01-213:4343/officescan/console/html/ClientInstall/WinNTChk.cab

O16 - DPF: {08D75BC1-D2B5-11D1-88FC-0080C859833B} (OfficeScan Corp Edition Web-Deployment SetupCtrl Class) - https://fs01-213:4343/officescan/console/html/ClientInstall/setup.cab

O16 - DPF: {35C3D91E-401A-4E45-88A5-F3B32CD72DF4} (Encrypt Class) - https://fs01-213:4343/officescan/console/html/root/AtxEnc.cab

O16 - DPF: {5EFE8CB1-D095-11D1-88FC-0080C859833B} (OfficeScan Corp Edition Web-Deployment ObjRemoveCtrl Class) - https://fs01-213:4343/officescan/console/html/ClientInstall/RemoveCtrl.cab

O16 - DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - http://download.eset.com/special/eos/OnlineScanner.cab

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} (Shockwave Flash Object) - http://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: Domain = CNET.local

O17 - HKLM\System\CS1\Services\Tcpip\Parameters: Domain = CNET.local

O17 - HKLM\System\CS2\Services\Tcpip\Parameters: Domain = CNET.local

O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

O22 - SharedTaskScheduler: Component Categories cache daemon - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\Windows\system32\browseui.dll

O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing)

O23 - Service: Apple Mobile Device - Apple Inc. - C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

O23 - Service: Autodesk Licensing Service - Autodesk - C:\Program Files (x86)\Common Files\Autodesk Shared\Service\AdskScSrv.exe

O23 - Service: Bonjour-tjänst (Bonjour Service) - Apple Inc. - C:\Program Files (x86)\Bonjour\mDNSResponder.exe

O23 - Service: @dfsrres.dll,-101 (DFSR) - Unknown owner - C:\Windows\system32\DFSR.exe (file missing)

O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing)

O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

O23 - Service: Tjänsten Google Update (gupdate1ca7caeaae6f180) (gupdate1ca7caeaae6f180) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: Tjänsten Google Update (gupdatem) (gupdatem) - Google Inc. - C:\Program Files (x86)\Google\Update\GoogleUpdate.exe

O23 - Service: HASP License Manager (hasplms) - Unknown owner - C:\Windows\system32\hasplms.exe (file missing)

O23 - Service: iPod Service - Apple Inc. - C:\Program Files\iPod\bin\iPodService.exe

O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing)

O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: OfficeScanNT RealTime Scan (ntrtscan) - Trend Micro Inc. - C:\Program Files (x86)\Trend Micro\OfficeScan Client\ntrtscan.exe

O23 - Service: NVIDIA Performance Driver Service - Unknown owner - C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe

O23 - Service: NVIDIA Display Driver Service (nvsvc) - Unknown owner - C:\Windows\system32\nvvsvc.exe (file missing)

O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing)

O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing)

O23 - Service: @%SystemRoot%\system32\SLsvc.exe,-101 (slsvc) - Unknown owner - C:\Windows\system32\SLsvc.exe (file missing)

O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing)

O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing)

O23 - Service: NVIDIA Stereoscopic 3D Driver Service (Stereo Service) - NVIDIA Corporation - C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

O23 - Service: SwitchBoard - Adobe Systems Incorporated - C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe

O23 - Service: OfficeScan NT Listener (tmlisten) - Trend Micro Inc. - C:\Program Files (x86)\Trend Micro\OfficeScan Client\tmlisten.exe

O23 - Service: OfficeScan NT Firewall (TmPfw) - Trend Micro Inc. - C:\Program Files (x86)\Trend Micro\OfficeScan Client\TmPfw.exe

O23 - Service: OfficeScan NT Proxy Service (TmProxy) - Trend Micro Inc. - C:\Program Files (x86)\Trend Micro\OfficeScan Client\TmProxy.exe

O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing)

O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing)

O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing)

O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing)

O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing)

O23 - Service: @%ProgramFiles%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing)

--

End of file - 12588 bytes

Maniac · November 14, 2011

Hello westmaniac! My name is Maniac and I will be glad to help you solve your malware problem.

Please note:

I recommend you to keep the instructions I will be giving you so that they are available to you at any time. You can save them in a text file or print them.
Make sure you read all of the instructions and fixes thoroughly before continuing with them.
Follow my instructions strictly and don’t hesitate to stop and ask me if you have any questions.
Post your log files, don't attach them. Every log file should be copy/paste in your next reply.

Please follow the instructions here:

http://forums.malwarebytes.org/index.php?showtopic=9573

When you are ready, post the log files.

westmaniac · November 15, 2011

Hi Maniac. Didn't expect to see another maniac here

Here is my DDS-log. Should i attach the attach-log also?

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_29

Run by olwe01 at 7:55:51 on 2011-11-15

Microsoft® Windows Vista™ Business 6.0.6002.2.1252.46.1053.18.4094.2178 [GMT 1:00]

.

AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k rpcss

C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\Bonjour\mDNSResponder.exe

C:\Windows\system32\hasplms.exe

C:\Program Files (x86)\Trend Micro\OfficeScan Client\ntrtscan.exe

C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\SearchIndexer.exe

C:\Program Files (x86)\Trend Micro\OfficeScan Client\tmlisten.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\WUDFHost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Windows\System32\mobsync.exe

C:\Program Files\Hardware\Keyboard\Ikeymain.exe

C:\Program Files\Hardware\Mouse\Amoumain.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files (x86)\Personal\bin\Personal.exe

C:\Program Files (x86)\ZyDAS Technology Corporation\ZyDAS_802.11g_Utility\ZDWlan.exe

C:\Users\olwe01\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

C:\Program Files (x86)\Trend Micro\OfficeScan Client\PccNTMon.exe

C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\iPod\bin\iPodService.exe

C:\Windows\system32\conime.exe

C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\Trend Micro\OfficeScan Client\CNTAoSMgr.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\system32\SearchProtocolHost.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\REGSVR32.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.maetcenter.com/

mStart Page = hxxp://www.shareware-sw.com/sv/index.php?rvs=hompag

uInternet Settings,ProxyOverride = *.local

mURLSearchHooks: swedish.ilsc Toolbar: {bc355688-39a0-4c1b-826a-892ce39e0801} - C:\Program Files (x86)\swedish.ilsc\tbswe1.dll

BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll

BHO: Adobe PDF Conversion Toolbar Helper: {ae7cd045-e861-484f-8273-0445ee161910} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

BHO: Skype Browser Helper: {ae805869-2e5c-4ed4-8f7b-f1f7851a4497} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

BHO: swedish.ilsc Toolbar: {bc355688-39a0-4c1b-826a-892ce39e0801} - C:\Program Files (x86)\swedish.ilsc\tbswe1.dll

BHO: Java Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll

BHO: SmartSelect Class: {f4971ee7-daa0-4053-9964-665d8ee6a077} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

TB: swedish.ilsc Toolbar: {bc355688-39a0-4c1b-826a-892ce39e0801} - C:\Program Files (x86)\swedish.ilsc\tbswe1.dll

TB: Adobe PDF: {47833539-d0c5-4125-9fa8-0819e2eaac93} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll

mRun: [OfficeScanNT Monitor] "C:\Program Files (x86)\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow

mRun: [switchBoard] "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"

mRun: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

mRun: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"

mRun: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"

mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

StartupFolder: C:\Users\olwe01\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\AUTOMA~1.LNK - C:\Program Files (x86)\trisunsoft\Auto Mail Sender Birthday Edition.exe

StartupFolder: C:\Users\olwe01\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\olwe01\AppData\Roaming\Dropbox\bin\Dropbox.exe

StartupFolder: C:\Users\olwe01\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\EVERNO~1.LNK - C:\Program Files (x86)\Evernote\Evernote\EvernoteClipper.exe

StartupFolder: C:\Users\olwe01\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Yammer.lnk - C:\Program Files (x86)\Yammer\Yammer.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\Personal.lnk - C:\Program Files (x86)\Personal\bin\Personal.exe

StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\ZDWLAN~1.LNK - C:\Program Files (x86)\ZyDAS Technology Corporation\ZyDAS_802.11g_Utility\ZDWlan.exe

mPolicies-explorer: BindDirectlyToPropertySetStorage = 0 (0x0)

mPolicies-system: EnableLUA = 0 (0x0)

mPolicies-system: EnableUIADesktopToggle = 0 (0x0)

IE: Add to Evernote 4.0 - C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204

IE: Append Link Target to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppendSelLinks.html

IE: Append to Existing PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIEAppend.html

IE: Convert Link Target to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECaptureSelLinks.html

IE: Convert to Adobe PDF - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEFavClient.dll/AcroIECapture.html

IE: E&xportera till Microsoft Excel - C:\PROGRA~2\MICROS~1\Office12\EXCEL.EXE/3000

IE: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204

IE: {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~1\OFFICE11\REFIEBAR.DLL

DPF: {00134F72-5284-44F7-95A8-52A619F70751} - hxxps://fs01-213:4343/officescan/console/html/ClientInstall/WinNTChk.cab

DPF: {08D75BC1-D2B5-11D1-88FC-0080C859833B} - hxxps://fs01-213:4343/officescan/console/html/ClientInstall/setup.cab

DPF: {35C3D91E-401A-4E45-88A5-F3B32CD72DF4} - hxxps://fs01-213:4343/officescan/console/html/root/AtxEnc.cab

DPF: {5EFE8CB1-D095-11D1-88FC-0080C859833B} - hxxps://fs01-213:4343/officescan/console/html/ClientInstall/RemoveCtrl.cab

DPF: {7530BFB8-7293-4D34-9923-61A11451AFC5} - hxxp://download.eset.com/special/eos/OnlineScanner.cab

DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab

DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/flashplayer/current/swflash.cab

TCP: DhcpNameServer = 172.16.255.10

TCP: Interfaces\{00CDC8E3-CC79-48B9-9073-FA28641AAE99} : DhcpNameServer = 192.168.1.1

TCP: Interfaces\{D8CE116C-EAAD-44B3-9C39-E8B7C7AA03EE} : DhcpNameServer = 172.16.255.10

Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files (x86)\Skype\Toolbars\Internet Explorer\skypeieplugin.dll

{18DF081C-E8AD-4283-A596-FA578C2EBDC3}

{AE7CD045-E861-484f-8273-0445EE161910}

{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}

{bc355688-39a0-4c1b-826a-892ce39e0801}

{DBC80044-A445-435b-BC74-9C25C1C588A9}

{F4971EE7-DAA0-4053-9964-665D8EE6A077}

{bc355688-39a0-4c1b-826a-892ce39e0801}

{47833539-D0C5-4125-9FA8-0819E2EAAC93}

mRun-x64: [OfficeScanNT Monitor] "C:\Program Files (x86)\Trend Micro\OfficeScan Client\pccntmon.exe" -HideWindow

mRun-x64: [switchBoard] "C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe"

mRun-x64: [AdobeCS5ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe" -launchedbylogin

mRun-x64: [Adobe Acrobat Speed Launcher] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat_sl.exe"

mRun-x64: [Acrobat Assistant 8.0] "C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrotray.exe"

mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"

mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime

mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"

mRun-x64: [Malwarebytes' Anti-Malware] "C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe" /starttray

mRun-x64: [sunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"

IE-X64: {A95fe080-8f5d-11d2-a20b-00aa003c157a} - res://C:\Program Files (x86)\Evernote\Evernote\EvernoteIE.dll/204

.

================= FIREFOX ===================

.

FF - ProfilePath - C:\Users\olwe01\AppData\Roaming\Mozilla\Firefox\Profiles\ebx7fj8w.default\

FF - plugin: C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Air\nppdf32.dll

FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll

FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll

FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll

FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll

FF - plugin: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll

FF - plugin: C:\Program Files (x86)\Personal\bin\np_prsnl.dll

FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll

.

============= SERVICES / DRIVERS ===============

.

R1 MpFilter;Microsoft Malware Protection Driver;C:\Windows\system32\DRIVERS\MpFilter.sys --> C:\Windows\system32\DRIVERS\MpFilter.sys [?]

R1 tmlwf;Trend Micro NDIS 6.0 Filter Driver;C:\Windows\system32\DRIVERS\tmlwf.sys --> C:\Windows\system32\DRIVERS\tmlwf.sys [?]

R2 aksdf;aksdf;C:\Windows\system32\DRIVERS\aksdf.sys --> C:\Windows\system32\DRIVERS\aksdf.sys [?]

R2 FontCache;Windows Font Cache Service;C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation [2009-4-2 21504]

R2 hasplms;HASP License Manager;C:\Windows\system32\hasplms.exe -run --> C:\Windows\system32\hasplms.exe -run [?]

R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2011-10-24 366152]

R2 NVIDIA Performance Driver Service;NVIDIA Performance Driver Service;C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe [2008-12-11 4297728]

R2 Stereo Service;NVIDIA Stereoscopic 3D Driver Service;C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe [2011-9-25 381248]

R2 TmFilter;Trend Micro Filter;C:\Program Files (x86)\Trend Micro\OfficeScan Client\tmxpflt.sys [2009-3-27 342288]

R2 TmPreFilter;Trend Micro PreFilter;C:\Program Files (x86)\Trend Micro\OfficeScan Client\tmpreflt.sys [2009-3-27 42768]

R2 tmwfp;Trend Micro WFP Callout Driver;C:\Windows\system32\DRIVERS\tmwfp.sys --> C:\Windows\system32\DRIVERS\tmwfp.sys [?]

R3 MBAMProtector;MBAMProtector;\??\C:\Windows\system32\drivers\mbam.sys --> C:\Windows\system32\drivers\mbam.sys [?]

S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]

S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]

S2 gupdate1ca7caeaae6f180;Tjänsten Google Update (gupdate1ca7caeaae6f180);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2009-12-14 133104]

S3 gupdatem;Tjänsten Google Update (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2009-12-14 133104]

S3 MpNWMon;Microsoft Malware Protection Network Driver;C:\Windows\system32\DRIVERS\MpNWMon.sys --> C:\Windows\system32\DRIVERS\MpNWMon.sys [?]

S3 NisDrv;Microsoft Network Inspection System;C:\Windows\system32\DRIVERS\NisDrvWFP.sys --> C:\Windows\system32\DRIVERS\NisDrvWFP.sys [?]

S3 NisSrv;Microsoft - nätverkskontroll;C:\Program Files\Microsoft Security Client\Antimalware\NisSrv.exe [2011-4-27 288272]

S3 PerfHost;Värd för prestandaräknar-DLL;C:\Windows\SysWOW64\perfhost.exe [2009-4-2 19968]

S3 SwitchBoard;SwitchBoard;C:\Program Files (x86)\Common Files\Adobe\SwitchBoard\SwitchBoard.exe [2010-2-19 517096]

S3 TmPfw;OfficeScan NT Firewall;C:\Program Files (x86)\Trend Micro\OfficeScan Client\TmPfw.exe [2007-11-30 588720]

S3 TmProxy;OfficeScan NT Proxy Service;C:\Program Files (x86)\Trend Micro\OfficeScan Client\TmProxy.exe [2007-11-30 865032]

S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]

S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\WPFFontCache_v0400.exe [2010-3-18 1020768]

S4 clr_optimization_v2.0.50727_64;Microsoft .NET Framework NGEN v2.0.50727_X64;C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe [2009-12-14 89920]

.

=============== File Associations ===============

.

JSEFile=C:\Windows\SysWOW64\WScript.exe "%1" %*

.

=============== Created Last 30 ================

.

2011-11-15 06:46:40 69000 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{57898674-6600-4F73-A185-905ED90904D8}\offreg.dll

2011-11-15 06:46:36 8570192 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{57898674-6600-4F73-A185-905ED90904D8}\mpengine.dll

2011-11-15 06:36:06 -------- d-sh--w- C:\$RECYCLE.BIN

2011-11-14 13:55:45 388096 ----a-r- C:\Users\olwe01\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe

2011-11-14 09:02:41 208896 ----a-w- C:\Windows\MBR.exe

2011-11-14 09:02:40 98816 ----a-w- C:\Windows\sed.exe

2011-11-14 09:02:40 518144 ----a-w- C:\Windows\SWREG.exe

2011-11-14 09:02:40 256000 ----a-w- C:\Windows\PEV.exe

2011-11-14 09:01:16 -------- d-----w- C:\ComboFix

2011-11-09 22:19:02 40448 ----a-w- C:\Windows\System32\drivers\tcpipreg.sys

2011-11-09 22:19:02 1423744 ----a-w- C:\Windows\System32\drivers\tcpip.sys

2011-11-09 22:19:00 2409784 ----a-w- C:\Program Files\Windows Mail\OESpamFilter.dat

2011-11-09 22:19:00 2409784 ----a-w- C:\Program Files (x86)\Windows Mail\OESpamFilter.dat

2011-11-09 22:18:59 893440 ----a-w- C:\Program Files\Common Files\System\wab32.dll

2011-11-09 22:18:58 707584 ----a-w- C:\Program Files (x86)\Common Files\System\wab32.dll

2011-11-09 22:18:58 50688 ----a-w- C:\Program Files\Windows Mail\wabimp.dll

2011-11-08 10:39:51 -------- d-----w- C:\Users\olwe01\unifaun

2011-11-01 07:37:22 -------- d-----w- C:\Users\olwe01\AppData\Local\Apple

2011-11-01 07:37:15 -------- d-----w- C:\Users\olwe01\AppData\Local\Apple Computer

2011-10-31 07:16:57 -------- d-----w- C:\Users\olwe01\AppData\Local\Adobe

2011-10-28 12:36:06 24416 ----a-r- C:\Windows\System32\AdobePDFUI.dll

2011-10-28 08:14:02 -------- d-----w- C:\Windows\System32\appmgmt

2011-10-26 07:04:12 -------- d-----w- C:\Program Files (x86)\NVIDIA Corporation

2011-10-26 07:03:32 809792 ----a-w- C:\Windows\System32\nv3dappshext.dll

2011-10-26 07:03:32 741184 ----a-w- C:\Windows\System32\easyupdatusapiu64.dll

2011-10-26 07:03:32 63296 ----a-w- C:\Windows\System32\nvshext.dll

2011-10-26 07:03:32 55616 ----a-w- C:\Windows\System32\nv3dappshextr.dll

2011-10-26 07:02:34 -------- d-----w- C:\ProgramData\NVIDIA Corporation

2011-10-26 06:49:58 -------- d-----w- C:\Program Files (x86)\SystemRequirementsLab

2011-10-26 06:40:33 8570192 ----a-w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll

2011-10-26 06:39:37 917840 ------w- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A8319FB8-E98B-40CB-8416-BBAD9A6DAF55}\gapaengine.dll

2011-10-26 06:30:50 -------- d-----w- C:\Program Files (x86)\Microsoft Security Client

2011-10-26 06:30:23 -------- d-----w- C:\Program Files\Microsoft Security Client

2011-10-26 06:29:45 345984 ----a-w- C:\Windows\System32\drivers\netio.sys

2011-10-26 06:27:51 1100320 ----a-w- C:\Windows\System32\nvcpluir.dll

2011-10-26 05:31:42 6144 ----a-w- C:\Program Files\Internet Explorer\iecompat.dll

2011-10-26 05:31:42 6144 ----a-w- C:\Program Files (x86)\Internet Explorer\iecompat.dll

2011-10-25 06:36:56 8570192 ----a-w- C:\ProgramData\Microsoft\Windows Defender\Definition Updates\{38186AC7-54F8-4892-9C27-A01F6D0F6A54}\mpengine.dll

2011-10-24 12:55:49 -------- d-----w- C:\Users\olwe01\AppData\Roaming\Malwarebytes

2011-10-24 12:55:41 -------- d-----w- C:\ProgramData\Malwarebytes

2011-10-24 12:55:37 25416 ----a-w- C:\Windows\System32\drivers\mbam.sys

2011-10-24 12:55:37 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware

.

==================== Find3M ====================

.

2011-10-03 03:06:03 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll

2011-09-25 14:15:40 307008 ----a-w- C:\Windows\SysWow64\nvStreaming.exe

2011-09-06 13:56:50 2764288 ----a-w- C:\Windows\System32\win32k.sys

2011-08-25 16:20:38 735744 ----a-w- C:\Windows\System32\UIAutomationCore.dll

2011-08-25 16:19:32 847360 ----a-w- C:\Windows\System32\oleaut32.dll

2011-08-25 16:19:32 332288 ----a-w- C:\Windows\System32\oleacc.dll

2011-08-25 16:15:04 555520 ----a-w- C:\Windows\SysWow64\UIAutomationCore.dll

2011-08-25 16:14:01 563712 ----a-w- C:\Windows\SysWow64\oleaut32.dll

2011-08-25 16:14:01 238080 ----a-w- C:\Windows\SysWow64\oleacc.dll

2011-08-25 13:54:14 4096 ----a-w- C:\Windows\System32\oleaccrc.dll

2011-08-25 13:31:01 4096 ----a-w- C:\Windows\SysWow64\oleaccrc.dll

2011-08-24 05:28:52 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl

2010-08-12 06:54:58 567816 ----a-w- C:\Program Files\googleupdatesetup.exe

.

============= FINISH: 8:03:40,54 ===============

Maniac · November 15, 2011

Me too.

No, just post it in your next reply. I don't link attachment files, makes mu job here much more slowly and difficult.

westmaniac · November 15, 2011

.

UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.

IF REQUESTED, ZIP IT UP & ATTACH IT

.

DDS (Ver_2011-08-26.01)

.

Microsoft® Windows Vista™ Business

Boot Device: \Device\HarddiskVolume1

Install Date: 2009-04-01 18:35:48

System Uptime: 2011-11-15 07:35:28 (1 hours ago)

.

Motherboard: ASUSTeK Computer INC. | | P5Q-PRO

Processor: Intel® Core2 Quad CPU Q9550 @ 2.83GHz | LGA 775 | 2833/333mhz

.

==== Disk Partitions =========================

.

C: is FIXED (NTFS) - 122 GiB total, 24,353 GiB free.

D: is FIXED (NTFS) - 298 GiB total, 231,859 GiB free.

E: is CDROM ()

K: is NetworkDisk (NTFS) - 512 GiB total, 306,716 GiB free.

N: is NetworkDisk (NTFS) - 998 GiB total, 478,138 GiB free.

O: is NetworkDisk (NTFS) - 512 GiB total, 306,716 GiB free.

P: is NetworkDisk (NTFS) - 512 GiB total, 306,716 GiB free.

Q: is NetworkDisk (NTFS) - 512 GiB total, 306,716 GiB free.

R: is NetworkDisk (NTFS) - 512 GiB total, 306,716 GiB free.

S: is NetworkDisk (NTFS) - 28 GiB total, 9,419 GiB free.

W: is Removable

X: is Removable

Y: is Removable

Z: is Removable

.

==== Disabled Device Manager Items =============

.

==== System Restore Points ===================

.

RP491: 2011-11-12 00:00:01 - Schemalagd kontrollpunkt

RP492: 2011-11-12 03:00:11 - Windows Update

RP493: 2011-11-12 03:27:32 - Windows Update

RP494: 2011-11-13 00:00:03 - Schemalagd kontrollpunkt

RP495: 2011-11-13 01:37:37 - Windows Update

RP496: 2011-11-14 - Schemalagd kontrollpunkt

RP497: 2011-11-14 03:26:54 - Windows Update

RP498: 2011-11-14 14:55:29 - Installed HiJackThis

RP499: 2011-11-15 07:46:19 - Windows Update

.

==== Installed Programs ======================

.

Update for Microsoft Office 2007 (KB2508958)

Adobe Acrobat 9 Pro - English, Français, Deutsch

Adobe Acrobat 9.4.6 - CPSID_83708

Adobe AIR

Adobe Community Help

Adobe Creative Suite 5 Design Standard

Adobe Flash Player 10 ActiveX

Adobe Flash Player 10 Plugin

Adobe Media Player

Apple Application Support

Apple Software Update

Atheros Communications Inc.® AR8121/AR8113/AR8114 Gigabit/Fast Ethernet Driver

AutoUpdate

Compatibility Pack för Office 2007-systemet

DivX Codec

DivX Converter

DivX Player

DivX Version Checker

Dropbox

Evernote v. 4.3.1

FileZilla Client 3.3.4.1

Geo 2010

Geo Professional 2008

Google Chrome

Google Earth

Google Update Helper

HASP HL Device Driver

HASP SRM Run-time

HiJackThis

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB953595)

Hotfix for Microsoft .NET Framework 3.5 SP1 (KB958484)

Java Auto Updater

Java 6 Update 29

Malwarebytes' Anti-Malware version 1.51.2.1300

Microsoft Office 2007 Service Pack 3 (SP3)

Microsoft Office Excel 2007 Help Uppdatering (KB963678)

Microsoft Office Excel MUI (Swedish) 2007

Microsoft Office File Validation Add-In

Microsoft Office Outlook MUI (Swedish) 2007

Microsoft Office Powerpoint 2007 Help Uppdatering (KB963669)

Microsoft Office PowerPoint MUI (Swedish) 2007

Microsoft Office Professional Edition 2003

Microsoft Office Proof (English) 2007

Microsoft Office Proof (Finnish) 2007

Microsoft Office Proof (German) 2007

Microsoft Office Proof (Swedish) 2007

Microsoft Office Proofing (Swedish) 2007

Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)

Microsoft Office Publisher MUI (Swedish) 2007

Microsoft Office Shared MUI (Swedish) 2007

Microsoft Office Small Business 2007

Microsoft Office Word 2007 Help Uppdatering (KB963665)

Microsoft Office Word MUI (Swedish) 2007

Microsoft Silverlight

Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053

Microsoft Visual C++ 2005 Redistributable

Microsoft_VC80_ATL_x86

Microsoft_VC80_CRT_x86

Microsoft_VC80_MFC_x86

Microsoft_VC80_MFCLOC_x86

Microsoft_VC90_ATL_x86

Microsoft_VC90_CRT_x86

Microsoft_VC90_MFC_x86

Mozilla Firefox 8.0 (x86 en-US)

NVIDIA 3D Vision Controller Driver

NVIDIA Stereoscopic 3D Driver

PDF Settings CS5

Personal 4.10.2

QuickTime

Security Update for Microsoft .NET Framework 3.5 SP1 (KB2416473)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)

Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)

Security Update for Microsoft .NET Framework 4 Client Profile Language Pack - SVE (KB2478663)

Security Update for Microsoft .NET Framework 4 Client Profile Language Pack - SVE (KB2518870)

Skype Toolbars

Skype™ 5.3

Spotify

swedish.ilsc Toolbar

System Requirements Lab

Trend Micro OfficeScan Client

TweetDeck

Update for 2007 Microsoft Office System (KB967642)

Update for Microsoft .NET Framework 3.5 SP1 (KB963707)

Update for Microsoft .NET Framework 4 Client Profile (KB2468871)

Update for Microsoft .NET Framework 4 Client Profile (KB2473228)

Update for Microsoft .NET Framework 4 Client Profile (KB2533523)

Update for Outlook 2007 Junk Email Filter (KB2596560)

VBA (2627.01)

VC80CRTRedist - 8.0.50727.4053

Windows Media Player Firefox Plugin

WinRAR

VLC media player 1.1.7

ZyDAS IEEE 802.11 b+g Wireless LAN - USB

.

==== End Of File ===========================

Maniac · November 15, 2011

Step 1

Please uninstall the following application: swedish.ilsc Toolbar. More information here:

http://www.systemlookup.com/CLSID/62068-tbswed_dll_tbswe0_dll_tbswe1_dll.html

Step 2

Download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters.
Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.
Click the Start Scan button.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results and offer three (3) options.
Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

A report will be created in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste its contents on your next reply.

In your next reply, please post the following log files:

TDSSKiller log
a new fresh DDS log with Attach.txt

westmaniac · November 15, 2011

I removed the swedish.ilsc toolbar and did the scans. Here are the logs.

10:33:59.0483 2700 TDSS rootkit removing tool 2.6.18.0 Nov 11 2011 15:47:15

10:33:59.0646 2700 ============================================================

10:33:59.0646 2700 Current date / time: 2011/11/15 10:33:59.0646

10:33:59.0646 2700 SystemInfo:

10:33:59.0646 2700

10:33:59.0646 2700 OS Version: 6.0.6002 ServicePack: 2.0

10:33:59.0646 2700 Product type: Workstation

10:33:59.0646 2700 ComputerName: INDOOR01

10:33:59.0646 2700 UserName: olwe01

10:33:59.0646 2700 Windows directory: C:\Windows

10:33:59.0646 2700 System windows directory: C:\Windows

10:33:59.0646 2700 Running under WOW64

10:33:59.0646 2700 Processor architecture: Intel x64

10:33:59.0646 2700 Number of processors: 4

10:33:59.0646 2700 Page size: 0x1000

10:33:59.0646 2700 Boot type: Normal boot

10:33:59.0646 2700 ============================================================

10:34:00.0518 2700 Initialize success

10:34:06.0348 4644 ============================================================

10:34:06.0348 4644 Scan started

10:34:06.0348 4644 Mode: Manual; SigCheck; TDLFS;

10:34:06.0348 4644 ============================================================

10:34:07.0357 4644 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys

10:34:07.0462 4644 ACPI - ok

10:34:07.0499 4644 adp94xx (9137451d37ba1c325cd6c2def3d2d692) C:\Windows\system32\drivers\adp94xx.sys

10:34:07.0531 4644 adp94xx - ok

10:34:07.0559 4644 adpahci (01f80898df5cc7df19b3b11351846263) C:\Windows\system32\drivers\adpahci.sys

10:34:07.0592 4644 adpahci - ok

10:34:07.0622 4644 adpu160m (da001db13fff45dfe9109936e265b7cc) C:\Windows\system32\drivers\adpu160m.sys

10:34:07.0631 4644 adpu160m - ok

10:34:07.0650 4644 adpu320 (2b10c35c5b7c5c0c28f572e035319602) C:\Windows\system32\drivers\adpu320.sys

10:34:07.0668 4644 adpu320 - ok

10:34:07.0709 4644 AFD (0cc146c4addea45791b18b1e2659f4a9) C:\Windows\system32\drivers\afd.sys

10:34:07.0786 4644 AFD - ok

10:34:07.0806 4644 agp440 (5ccdd13bc602ae33cd8b62d33c29ab72) C:\Windows\system32\drivers\agp440.sys

10:34:07.0820 4644 agp440 - ok

10:34:07.0885 4644 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys

10:34:07.0898 4644 aic78xx - ok

10:34:07.0930 4644 aksdf (10315db50a6d4061ffbcad43ab911a29) C:\Windows\system32\DRIVERS\aksdf.sys

10:34:07.0973 4644 aksdf - ok

10:34:07.0994 4644 aksfridge (8589471f54797f430e72e077de0d6af6) C:\Windows\system32\DRIVERS\aksfridge.sys

10:34:08.0033 4644 aksfridge - ok

10:34:08.0114 4644 akshasp (bfb22aeb822dca54186b4973029756c1) C:\Windows\system32\DRIVERS\akshasp.sys

10:34:08.0168 4644 akshasp - ok

10:34:08.0200 4644 akshhl (67dff8c8f95cb21c9c3380dd4c0387f2) C:\Windows\system32\DRIVERS\akshhl.sys

10:34:08.0224 4644 akshhl - ok

10:34:08.0236 4644 aksusb (ce3eb7eed1da61b77eaf232b04c32bcb) C:\Windows\system32\DRIVERS\aksusb.sys

10:34:08.0261 4644 aksusb - ok

10:34:08.0292 4644 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys

10:34:08.0304 4644 aliide - ok

10:34:08.0332 4644 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys

10:34:08.0345 4644 amdide - ok

10:34:08.0356 4644 AmdK8 (de55dc52f7ceb89a967572d6b491ada2) C:\Windows\system32\drivers\amdk8.sys

10:34:08.0474 4644 AmdK8 - ok

10:34:08.0546 4644 Amfilter (71aff825b960731e2ae366467bc0d1f3) C:\Windows\system32\DRIVERS\Amfltx64.sys

10:34:08.0584 4644 Amfilter - ok

10:34:08.0609 4644 Amusbprt (8f1db3d133197affa3a721953eb0988c) C:\Windows\system32\DRIVERS\Amusbx64.sys

10:34:08.0633 4644 Amusbprt - ok

10:34:08.0687 4644 arc (2e8623f2fed998a97129a3db919551c8) C:\Windows\system32\drivers\arc.sys

10:34:08.0701 4644 arc - ok

10:34:08.0715 4644 arcsas (741a003c041a3ec480a2e71af71e9654) C:\Windows\system32\drivers\arcsas.sys

10:34:08.0729 4644 arcsas - ok

10:34:08.0761 4644 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys

10:34:08.0876 4644 AsyncMac - ok

10:34:08.0894 4644 atapi (e68d9b3a3905619732f7fe039466a623) C:\Windows\system32\drivers\atapi.sys

10:34:08.0902 4644 atapi - ok

10:34:08.0961 4644 Beep - ok

10:34:08.0977 4644 blbdrive - ok

10:34:09.0016 4644 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys

10:34:09.0057 4644 bowser - ok

10:34:09.0088 4644 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys

10:34:09.0171 4644 BrFiltLo - ok

10:34:09.0186 4644 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys

10:34:09.0232 4644 BrFiltUp - ok

10:34:09.0248 4644 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys

10:34:09.0302 4644 Brserid - ok

10:34:09.0312 4644 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys

10:34:09.0369 4644 BrSerWdm - ok

10:34:09.0382 4644 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys

10:34:09.0425 4644 BrUsbMdm - ok

10:34:09.0436 4644 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys

10:34:09.0488 4644 BrUsbSer - ok

10:34:09.0545 4644 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys

10:34:09.0601 4644 BTHMODEM - ok

10:34:09.0695 4644 catchme - ok

10:34:09.0726 4644 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys

10:34:09.0771 4644 cdfs - ok

10:34:09.0788 4644 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys

10:34:09.0819 4644 cdrom - ok

10:34:09.0845 4644 circlass (f28f00596824058bc61d5edf434c9b82) C:\Windows\system32\drivers\circlass.sys

10:34:09.0897 4644 circlass - ok

10:34:09.0966 4644 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys

10:34:09.0996 4644 CLFS - ok

10:34:10.0034 4644 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys

10:34:10.0047 4644 cmdide - ok

10:34:10.0070 4644 Compbatt (0e77a445640bf310817f60941c50560c) C:\Windows\system32\drivers\compbatt.sys

10:34:10.0082 4644 Compbatt - ok

10:34:10.0090 4644 crcdisk (b1192dcd5b9cf46beed0e2a9e5bcf59a) C:\Windows\system32\drivers\crcdisk.sys

10:34:10.0102 4644 crcdisk - ok

10:34:10.0134 4644 CSC (f60f50c8ed3fcbe358430b95fe27d09c) C:\Windows\system32\drivers\csc.sys

10:34:10.0173 4644 CSC - ok

10:34:10.0222 4644 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys

10:34:10.0266 4644 DfsC - ok

10:34:10.0309 4644 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys

10:34:10.0325 4644 disk - ok

10:34:10.0345 4644 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys

10:34:10.0369 4644 drmkaud - ok

10:34:10.0400 4644 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys

10:34:10.0436 4644 DXGKrnl - ok

10:34:10.0499 4644 E1G60 (d57fe09b575545738a73a0c193d0616a) C:\Windows\system32\DRIVERS\E1G6032E.sys

10:34:10.0555 4644 E1G60 - ok

10:34:10.0594 4644 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys

10:34:10.0612 4644 Ecache - ok

10:34:10.0634 4644 elxstor (3d6298aff3fe06c0616ce5d090a3eeaa) C:\Windows\system32\drivers\elxstor.sys

10:34:10.0656 4644 elxstor - ok

10:34:10.0694 4644 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys

10:34:10.0733 4644 exfat - ok

10:34:10.0760 4644 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys

10:34:10.0806 4644 fastfat - ok

10:34:10.0818 4644 fdc (61b6dbd1ad1143f008364d4e9a96b224) C:\Windows\system32\DRIVERS\fdc.sys

10:34:10.0882 4644 fdc - ok

10:34:10.0896 4644 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys

10:34:10.0911 4644 FileInfo - ok

10:34:10.0926 4644 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys

10:34:10.0979 4644 Filetrace - ok

10:34:11.0017 4644 flpydisk (12c3d1b4d0ce49e1ce343ba2f22f15e0) C:\Windows\system32\DRIVERS\flpydisk.sys

10:34:11.0074 4644 flpydisk - ok

10:34:11.0139 4644 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys

10:34:11.0161 4644 FltMgr - ok

10:34:11.0193 4644 Fs_Rec (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys

10:34:11.0237 4644 Fs_Rec - ok

10:34:11.0259 4644 gagp30kx (b54520cc7b4b55134d7527b1cd3fc1f2) C:\Windows\system32\drivers\gagp30kx.sys

10:34:11.0274 4644 gagp30kx - ok

10:34:11.0305 4644 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

10:34:11.0317 4644 GEARAspiWDM - ok

10:34:11.0346 4644 Hardlock (8a015d646cfad3b00efc0889f8b92f0d) C:\Windows\system32\drivers\hardlock.sys

10:34:11.0369 4644 Hardlock - ok

10:34:11.0404 4644 HdAudAddService (68e732382b32417ff61fd663259b4b09) C:\Windows\system32\drivers\HdAudio.sys

10:34:11.0454 4644 HdAudAddService - ok

10:34:11.0486 4644 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys

10:34:11.0534 4644 HDAudBus - ok

10:34:11.0560 4644 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys

10:34:11.0615 4644 HidBth - ok

10:34:11.0630 4644 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys

10:34:11.0683 4644 HidIr - ok

10:34:11.0736 4644 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys

10:34:11.0763 4644 HidUsb - ok

10:34:11.0789 4644 HpCISSs (8edc820115df1e04763b2923676ea5b2) C:\Windows\system32\drivers\hpcisss.sys

10:34:11.0802 4644 HpCISSs - ok

10:34:11.0836 4644 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys

10:34:11.0894 4644 HTTP - ok

10:34:11.0906 4644 i2omp (f2901763845570ecac48e6a50ec50812) C:\Windows\system32\drivers\i2omp.sys

10:34:11.0918 4644 i2omp - ok

10:34:11.0941 4644 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys

10:34:11.0974 4644 i8042prt - ok

10:34:11.0991 4644 iaStorV (72c3ee7ea3cd75a772e62ae0e5df8b8c) C:\Windows\system32\drivers\iastorv.sys

10:34:12.0012 4644 iaStorV - ok

10:34:12.0028 4644 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys

10:34:12.0041 4644 iirsp - ok

10:34:12.0058 4644 intelide (36a266c673812878996f72b200203fbb) C:\Windows\system32\drivers\intelide.sys

10:34:12.0070 4644 intelide - ok

10:34:12.0090 4644 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys

10:34:12.0121 4644 intelppm - ok

10:34:12.0158 4644 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys

10:34:12.0191 4644 IpFilterDriver - ok

10:34:12.0258 4644 IpInIp - ok

10:34:12.0272 4644 IPMIDRV (eacdbbe429c6d170bdeee0effcbc317b) C:\Windows\system32\drivers\ipmidrv.sys

10:34:12.0311 4644 IPMIDRV - ok

10:34:12.0336 4644 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys

10:34:12.0379 4644 IPNAT - ok

10:34:12.0411 4644 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys

10:34:12.0452 4644 IRENUM - ok

10:34:12.0476 4644 isapnp (d3bb520b31f28c1a065cd058e762ee73) C:\Windows\system32\drivers\isapnp.sys

10:34:12.0489 4644 isapnp - ok

10:34:12.0506 4644 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys

10:34:12.0516 4644 iScsiPrt - ok

10:34:12.0528 4644 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys

10:34:12.0541 4644 iteatapi - ok

10:34:12.0555 4644 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys

10:34:12.0568 4644 iteraid - ok

10:34:12.0581 4644 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys

10:34:12.0594 4644 kbdclass - ok

10:34:12.0611 4644 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys

10:34:12.0639 4644 kbdhid - ok

10:34:12.0667 4644 KSecDD (476e2c1dcea45895994bef11c2a98715) C:\Windows\system32\Drivers\ksecdd.sys

10:34:12.0682 4644 KSecDD - ok

10:34:12.0700 4644 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys

10:34:12.0737 4644 ksthunk - ok

10:34:12.0785 4644 L1E (3e3d1d8dcb2ca53463d34252e99465d3) C:\Windows\system32\DRIVERS\L1E60x64.sys

10:34:12.0825 4644 L1E - ok

10:34:12.0892 4644 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys

10:34:12.0930 4644 lltdio - ok

10:34:12.0944 4644 LSI_FC (1572f8d999c0ab4376afdce058a78df9) C:\Windows\system32\drivers\lsi_fc.sys

10:34:12.0952 4644 LSI_FC - ok

10:34:12.0966 4644 LSI_SAS (64470979c3e3c9ff60edfb5230c56e0e) C:\Windows\system32\drivers\lsi_sas.sys

10:34:12.0980 4644 LSI_SAS - ok

10:34:13.0005 4644 LSI_SCSI (4ced7d3b54bfc5bbae75c4a73c7f7428) C:\Windows\system32\drivers\lsi_scsi.sys

10:34:13.0013 4644 LSI_SCSI - ok

10:34:13.0027 4644 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys

10:34:13.0062 4644 luafv - ok

10:34:13.0082 4644 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys

10:34:13.0499 4644 MBAMProtector - ok

10:34:13.0555 4644 megasas (2f631c2939d5f2e8958935ee701d70d7) C:\Windows\system32\drivers\megasas.sys

10:34:13.0562 4644 megasas - ok

10:34:13.0586 4644 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys

10:34:13.0627 4644 Modem - ok

10:34:13.0653 4644 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys

10:34:13.0685 4644 monitor - ok

10:34:13.0704 4644 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys

10:34:13.0712 4644 mouclass - ok

10:34:13.0734 4644 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys

10:34:13.0772 4644 mouhid - ok

10:34:13.0788 4644 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys

10:34:13.0796 4644 MountMgr - ok

10:34:13.0835 4644 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys

10:34:13.0845 4644 MpFilter - ok

10:34:13.0864 4644 mpio (ed48eac719ee28db773359eb1b06e2b5) C:\Windows\system32\drivers\mpio.sys

10:34:13.0872 4644 mpio - ok

10:34:13.0885 4644 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys

10:34:13.0893 4644 MpNWMon - ok

10:34:13.0916 4644 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys

10:34:13.0944 4644 mpsdrv - ok

10:34:13.0957 4644 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys

10:34:13.0970 4644 Mraid35x - ok

10:34:13.0993 4644 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys

10:34:14.0018 4644 MRxDAV - ok

10:34:14.0104 4644 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys

10:34:14.0127 4644 mrxsmb - ok

10:34:14.0157 4644 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys

10:34:14.0195 4644 mrxsmb10 - ok

10:34:14.0202 4644 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys

10:34:14.0227 4644 mrxsmb20 - ok

10:34:14.0253 4644 msahci (eeadf970795148bfbb1db3abcc89c16b) C:\Windows\system32\drivers\msahci.sys

10:34:14.0260 4644 msahci - ok

10:34:14.0274 4644 msdsm (96d7c0a1b98434c6e4ff0c2e26a0e20a) C:\Windows\system32\drivers\msdsm.sys

10:34:14.0282 4644 msdsm - ok

10:34:14.0318 4644 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys

10:34:14.0354 4644 Msfs - ok

10:34:14.0370 4644 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys

10:34:14.0381 4644 msisadrv - ok

10:34:14.0402 4644 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys

10:34:14.0432 4644 MSKSSRV - ok

10:34:14.0443 4644 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys

10:34:14.0474 4644 MSPCLOCK - ok

10:34:14.0497 4644 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys

10:34:14.0532 4644 MSPQM - ok

10:34:14.0556 4644 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys

10:34:14.0568 4644 MsRPC - ok

10:34:14.0628 4644 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys

10:34:14.0635 4644 mssmbios - ok

10:34:14.0656 4644 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys

10:34:14.0686 4644 MSTEE - ok

10:34:14.0715 4644 MTsensor (03b7145c889603537e9ffeabb1ad1089) C:\Windows\system32\DRIVERS\ASACPI.sys

10:34:14.0730 4644 MTsensor - ok

10:34:14.0737 4644 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys

10:34:14.0746 4644 Mup - ok

10:34:14.0781 4644 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys

10:34:14.0799 4644 NativeWifiP - ok

10:34:14.0840 4644 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys

10:34:14.0885 4644 NDIS - ok

10:34:14.0925 4644 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys

10:34:14.0955 4644 NdisTapi - ok

10:34:14.0966 4644 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys

10:34:14.0997 4644 Ndisuio - ok

10:34:15.0026 4644 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys

10:34:15.0061 4644 NdisWan - ok

10:34:15.0119 4644 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys

10:34:15.0143 4644 NDProxy - ok

10:34:15.0155 4644 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys

10:34:15.0194 4644 NetBIOS - ok

10:34:15.0217 4644 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys

10:34:15.0247 4644 netbt - ok

10:34:15.0271 4644 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys

10:34:15.0278 4644 nfrd960 - ok

10:34:15.0296 4644 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys

10:34:15.0304 4644 NisDrv - ok

10:34:15.0322 4644 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys

10:34:15.0347 4644 Npfs - ok

10:34:15.0362 4644 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys

10:34:15.0411 4644 nsiproxy - ok

10:34:15.0455 4644 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys

10:34:15.0538 4644 Ntfs - ok

10:34:15.0603 4644 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys

10:34:15.0635 4644 Null - ok

10:34:15.0842 4644 nvlddmkm (0a9b7e99d431db94846929f4c94470d6) C:\Windows\system32\DRIVERS\nvlddmkm.sys

10:34:16.0390 4644 nvlddmkm - ok

10:34:16.0460 4644 nvraid (840eeb44dc49317a6161961f7682cd99) C:\Windows\system32\drivers\nvraid.sys

10:34:16.0477 4644 nvraid - ok

10:34:16.0490 4644 nvstor (94c5334040a5d500897f4c5fd12aeede) C:\Windows\system32\drivers\nvstor.sys

10:34:16.0504 4644 nvstor - ok

10:34:16.0517 4644 nv_agp (aa1b6c86a4763502e20b65c025f39bad) C:\Windows\system32\drivers\nv_agp.sys

10:34:16.0533 4644 nv_agp - ok

10:34:16.0539 4644 NwlnkFlt - ok

10:34:16.0545 4644 NwlnkFwd - ok

10:34:16.0574 4644 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys

10:34:16.0602 4644 ohci1394 - ok

10:34:16.0620 4644 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys

10:34:16.0681 4644 Parport - ok

10:34:16.0708 4644 partmgr (f9b5eda4c17a2be7663f064dbf0fe254) C:\Windows\system32\drivers\partmgr.sys

10:34:16.0723 4644 partmgr - ok

10:34:16.0735 4644 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys

10:34:16.0761 4644 pci - ok

10:34:16.0774 4644 pciide (2657f6c0b78c36d95034be109336e382) C:\Windows\system32\drivers\pciide.sys

10:34:16.0787 4644 pciide - ok

10:34:16.0807 4644 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys

10:34:16.0828 4644 pcmcia - ok

10:34:16.0852 4644 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys

10:34:16.0941 4644 PEAUTH - ok

10:34:16.0985 4644 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys

10:34:17.0021 4644 PptpMiniport - ok

10:34:17.0089 4644 Processor (6bc78e5f12cbb74e7930aaaa4a0db387) C:\Windows\system32\drivers\processr.sys

10:34:17.0140 4644 Processor - ok

10:34:17.0176 4644 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys

10:34:17.0204 4644 PSched - ok

10:34:17.0229 4644 ql2300 (4a29d25704917161bad9b4659a248dfd) C:\Windows\system32\drivers\ql2300.sys

10:34:17.0297 4644 ql2300 - ok

10:34:17.0323 4644 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys

10:34:17.0338 4644 ql40xx - ok

10:34:17.0353 4644 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys

10:34:17.0379 4644 QWAVEdrv - ok

10:34:17.0398 4644 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys

10:34:17.0428 4644 RasAcd - ok

10:34:17.0442 4644 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys

10:34:17.0470 4644 Rasl2tp - ok

10:34:17.0496 4644 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys

10:34:17.0526 4644 RasPppoe - ok

10:34:17.0589 4644 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys

10:34:17.0620 4644 RasSstp - ok

10:34:17.0643 4644 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys

10:34:17.0681 4644 rdbss - ok

10:34:17.0692 4644 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys

10:34:17.0721 4644 RDPCDD - ok

10:34:17.0742 4644 rdpdr (ae23e79b13feb62939e2ca1189e71735) C:\Windows\system32\DRIVERS\rdpdr.sys

10:34:17.0782 4644 rdpdr - ok

10:34:17.0788 4644 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys

10:34:17.0824 4644 RDPENCDD - ok

10:34:17.0838 4644 RDPWD (b1d741c87cea8d7282146366cc9c3f81) C:\Windows\system32\drivers\RDPWD.sys

10:34:17.0873 4644 RDPWD - ok

10:34:17.0904 4644 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys

10:34:17.0944 4644 rspndr - ok

10:34:17.0970 4644 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys

10:34:17.0983 4644 sbp2port - ok

10:34:17.0999 4644 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

10:34:18.0050 4644 secdrv - ok

10:34:18.0065 4644 Serenum (2449316316411d65bd2c761a6ffb2ce2) C:\Windows\system32\DRIVERS\serenum.sys

10:34:18.0096 4644 Serenum - ok

10:34:18.0154 4644 Serial (4b438170be2fc8e0bd35ee87a960f84f) C:\Windows\system32\DRIVERS\serial.sys

10:34:18.0193 4644 Serial - ok

10:34:18.0208 4644 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys

10:34:18.0239 4644 sermouse - ok

10:34:18.0256 4644 sffdisk (541b32f8d6b2dcb92ec43bab267e79ea) C:\Windows\system32\drivers\sffdisk.sys

10:34:18.0305 4644 sffdisk - ok

10:34:18.0319 4644 sffp_mmc (446e7cca3325c7e0ae0fde7f73cdd9c2) C:\Windows\system32\drivers\sffp_mmc.sys

10:34:18.0362 4644 sffp_mmc - ok

10:34:18.0372 4644 sffp_sd (67edc221348911e895af51c57d9a3725) C:\Windows\system32\drivers\sffp_sd.sys

10:34:18.0416 4644 sffp_sd - ok

10:34:18.0429 4644 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys

10:34:18.0477 4644 sfloppy - ok

10:34:18.0493 4644 SiSRaid2 (08dda16573fa44f8b13afe74597ad2e5) C:\Windows\system32\drivers\sisraid2.sys

10:34:18.0506 4644 SiSRaid2 - ok

10:34:18.0517 4644 SiSRaid4 (c52259e9daaf3890d572d87ffee0979e) C:\Windows\system32\drivers\sisraid4.sys

10:34:18.0530 4644 SiSRaid4 - ok

10:34:18.0563 4644 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys

10:34:18.0595 4644 Smb - ok

10:34:18.0621 4644 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys

10:34:18.0634 4644 spldr - ok

10:34:18.0666 4644 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys

10:34:18.0720 4644 srv - ok

10:34:18.0759 4644 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys

10:34:18.0807 4644 srv2 - ok

10:34:18.0880 4644 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys

10:34:18.0907 4644 srvnet - ok

10:34:18.0945 4644 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys

10:34:18.0957 4644 swenum - ok

10:34:18.0976 4644 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys

10:34:18.0990 4644 Symc8xx - ok

10:34:19.0001 4644 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys

10:34:19.0014 4644 Sym_hi - ok

10:34:19.0029 4644 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys

10:34:19.0043 4644 Sym_u3 - ok

10:34:19.0094 4644 Tcpip (73bed5067ed53a9df05fa8eab42578d0) C:\Windows\system32\drivers\tcpip.sys

10:34:19.0175 4644 Tcpip - ok

10:34:19.0214 4644 Tcpip6 (73bed5067ed53a9df05fa8eab42578d0) C:\Windows\system32\DRIVERS\tcpip.sys

10:34:19.0245 4644 Tcpip6 - ok

10:34:19.0267 4644 tcpipreg (848f87c604b5e674602498cb51067db6) C:\Windows\system32\drivers\tcpipreg.sys

10:34:19.0295 4644 tcpipreg - ok

10:34:19.0313 4644 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys

10:34:19.0352 4644 TDPIPE - ok

10:34:19.0373 4644 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys

10:34:19.0408 4644 TDTCP - ok

10:34:19.0459 4644 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys

10:34:19.0492 4644 tdx - ok

10:34:19.0513 4644 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys

10:34:19.0527 4644 TermDD - ok

10:34:19.0585 4644 TmFilter (8b97ba7e28bd39a2bc4a2bb66a83fec0) C:\Program Files (x86)\Trend Micro\OfficeScan Client\TmXPFlt.sys

10:34:19.0607 4644 TmFilter - ok

10:34:19.0640 4644 tmlwf (8222b74635002f26516a410192f519e5) C:\Windows\system32\DRIVERS\tmlwf.sys

10:34:19.0656 4644 tmlwf - ok

10:34:19.0675 4644 TmPreFilter (1889f49a828b1cf0e2866cdd325875b0) C:\Program Files (x86)\Trend Micro\OfficeScan Client\TmPreFlt.sys

10:34:19.0687 4644 TmPreFilter - ok

10:34:19.0726 4644 tmtdi (e3033f9b5cbb5c7c0f9ef75f69ba875b) C:\Windows\system32\DRIVERS\tmtdi.sys

10:34:19.0739 4644 tmtdi - ok

10:34:19.0764 4644 tmwfp (331c62797d434c807dc62267112dd9ca) C:\Windows\system32\DRIVERS\tmwfp.sys

10:34:19.0783 4644 tmwfp - ok

10:34:19.0805 4644 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys

10:34:19.0854 4644 tssecsrv - ok

10:34:19.0874 4644 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys

10:34:19.0906 4644 tunmp - ok

10:34:19.0953 4644 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys

10:34:19.0973 4644 tunnel - ok

10:34:19.0991 4644 uagp35 (e4722dfbd6232acf17543ef2c2dce8d2) C:\Windows\system32\drivers\uagp35.sys

10:34:20.0006 4644 uagp35 - ok

10:34:20.0033 4644 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys

10:34:20.0064 4644 udfs - ok

10:34:20.0083 4644 uliagpkx (5663d7696abbe71f8c9d915c5374118a) C:\Windows\system32\drivers\uliagpkx.sys

10:34:20.0097 4644 uliagpkx - ok

10:34:20.0116 4644 uliahci (6030b68e86a30d1b315b51c4d7778b16) C:\Windows\system32\drivers\uliahci.sys

10:34:20.0136 4644 uliahci - ok

10:34:20.0151 4644 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys

10:34:20.0168 4644 UlSata - ok

10:34:20.0179 4644 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys

10:34:20.0197 4644 ulsata2 - ok

10:34:20.0239 4644 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys

10:34:20.0276 4644 umbus - ok

10:34:20.0317 4644 USBAAPL64 (54d4b48d443e7228bf64cf7cdc3118ac) C:\Windows\system32\Drivers\usbaapl64.sys

10:34:20.0338 4644 USBAAPL64 - ok

10:34:20.0372 4644 usbaudio (c6ba890de6e41857fbe84175519cae7d) C:\Windows\system32\drivers\usbaudio.sys

10:34:20.0405 4644 usbaudio - ok

10:34:20.0420 4644 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys

10:34:20.0456 4644 usbccgp - ok

10:34:20.0497 4644 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys

10:34:20.0551 4644 usbcir - ok

10:34:20.0574 4644 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys

10:34:20.0603 4644 usbehci - ok

10:34:20.0619 4644 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys

10:34:20.0650 4644 usbhub - ok

10:34:20.0660 4644 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys

10:34:20.0708 4644 usbohci - ok

10:34:20.0741 4644 usbprint (acfee697af477021bb3ec78c5431fed2) C:\Windows\system32\drivers\usbprint.sys

10:34:20.0793 4644 usbprint - ok

10:34:20.0806 4644 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS

10:34:20.0831 4644 USBSTOR - ok

10:34:20.0851 4644 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys

10:34:20.0882 4644 usbuhci - ok

10:34:20.0919 4644 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys

10:34:20.0958 4644 usbvideo - ok

10:34:20.0980 4644 vga (2998dc48905e9b4821ad8fd75b3e070c) C:\Windows\system32\DRIVERS\vgapnp.sys

10:34:21.0031 4644 vga - ok

10:34:21.0086 4644 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys

10:34:21.0125 4644 VgaSave - ok

10:34:21.0139 4644 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys

10:34:21.0151 4644 viaide - ok

10:34:21.0160 4644 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys

10:34:21.0175 4644 volmgr - ok

10:34:21.0204 4644 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys

10:34:21.0229 4644 volmgrx - ok

10:34:21.0244 4644 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys

10:34:21.0266 4644 volsnap - ok

10:34:21.0335 4644 VSApiNt (3a5862d9a4fe4bbb2ffa1700e2b21b9b) C:\Program Files (x86)\Trend Micro\OfficeScan Client\VSApiNt.sys

10:34:21.0428 4644 VSApiNt - ok

10:34:21.0473 4644 vsmraid (410ae2c141142c58bc617fc2c677f8b0) C:\Windows\system32\drivers\vsmraid.sys

10:34:21.0489 4644 vsmraid - ok

10:34:21.0503 4644 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys

10:34:21.0556 4644 WacomPen - ok

10:34:21.0590 4644 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys

10:34:21.0621 4644 Wanarp - ok

10:34:21.0631 4644 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys

10:34:21.0650 4644 Wanarpv6 - ok

10:34:21.0696 4644 Wd (59b501b0a04c9672142b7ffa2bdbf663) C:\Windows\system32\drivers\wd.sys

10:34:21.0709 4644 Wd - ok

10:34:21.0732 4644 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys

10:34:21.0783 4644 Wdf01000 - ok

10:34:21.0813 4644 WmiAcpi (ae34218455d5dc12d1e45de85f160346) C:\Windows\system32\drivers\wmiacpi.sys

10:34:21.0861 4644 WmiAcpi - ok

10:34:21.0889 4644 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys

10:34:21.0916 4644 WpdUsb - ok

10:34:21.0934 4644 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys

10:34:21.0972 4644 ws2ifsl - ok

10:34:21.0992 4644 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys

10:34:22.0034 4644 WUDFRd - ok

10:34:22.0076 4644 ZD1211U(ZyDAS) (d8fd23fb28e413b5439bed7e976238c7) C:\Windows\system32\DRIVERS\zd1211u.sys

10:34:22.0110 4644 ZD1211U(ZyDAS) ( UnsignedFile.Multi.Generic ) - warning

10:34:22.0111 4644 ZD1211U(ZyDAS) - detected UnsignedFile.Multi.Generic (1)

10:34:22.0117 4644 ZDPSp60a64 - ok

10:34:22.0144 4644 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0

10:34:22.0195 4644 \Device\Harddisk0\DR0 - ok

10:34:22.0215 4644 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1

10:34:22.0316 4644 \Device\Harddisk1\DR1 - ok

10:34:22.0319 4644 Boot (0x1200) (9a20fc3ee86b9466d61ed888f173c902) \Device\Harddisk0\DR0\Partition0

10:34:22.0319 4644 \Device\Harddisk0\DR0\Partition0 - ok

10:34:22.0332 4644 Boot (0x1200) (c2447d47122a02d54ff76c394d797438) \Device\Harddisk0\DR0\Partition1

10:34:22.0332 4644 \Device\Harddisk0\DR0\Partition1 - ok

10:34:22.0364 4644 Boot (0x1200) (cccdccf07017bbf3fd96334831882432) \Device\Harddisk1\DR1\Partition0

10:34:22.0365 4644 \Device\Harddisk1\DR1\Partition0 - ok

10:34:22.0366 4644 ============================================================

10:34:22.0366 4644 Scan finished

10:34:22.0366 4644 ============================================================

10:34:22.0371 6108 Detected object count: 1

10:34:22.0372 6108 Actual detected object count: 1

10:36:11.0581 6108 ZD1211U(ZyDAS) ( UnsignedFile.Multi.Generic ) - skipped by user

10:36:11.0581 6108 ZD1211U(ZyDAS) ( UnsignedFile.Multi.Generic ) - User select action: Skip

10:36:34.0239 5324 ============================================================

10:36:34.0239 5324 Scan started

10:36:34.0239 5324 Mode: Manual; SigCheck; TDLFS;

10:36:34.0239 5324 ============================================================

10:36:34.0515 5324 ACPI (1965aaffab07e3fb03c77f81beba3547) C:\Windows\system32\drivers\acpi.sys

10:36:34.0534 5324 ACPI - ok

10:36:34.0559 5324 adp94xx (9137451d37ba1c325cd6c2def3d2d692) C:\Windows\system32\drivers\adp94xx.sys

10:36:34.0574 5324 adp94xx - ok

10:36:34.0590 5324 adpahci (01f80898df5cc7df19b3b11351846263) C:\Windows\system32\drivers\adpahci.sys

10:36:34.0601 5324 adpahci - ok

10:36:34.0617 5324 adpu160m (da001db13fff45dfe9109936e265b7cc) C:\Windows\system32\drivers\adpu160m.sys

10:36:34.0626 5324 adpu160m - ok

10:36:34.0639 5324 adpu320 (2b10c35c5b7c5c0c28f572e035319602) C:\Windows\system32\drivers\adpu320.sys

10:36:34.0648 5324 adpu320 - ok

10:36:34.0679 5324 AFD (0cc146c4addea45791b18b1e2659f4a9) C:\Windows\system32\drivers\afd.sys

10:36:34.0706 5324 AFD - ok

10:36:34.0729 5324 agp440 (5ccdd13bc602ae33cd8b62d33c29ab72) C:\Windows\system32\drivers\agp440.sys

10:36:34.0737 5324 agp440 - ok

10:36:34.0748 5324 aic78xx (222cb641b4b8a1d1126f8033f9fd6a00) C:\Windows\system32\drivers\djsvs.sys

10:36:34.0755 5324 aic78xx - ok

10:36:34.0775 5324 aksdf (10315db50a6d4061ffbcad43ab911a29) C:\Windows\system32\DRIVERS\aksdf.sys

10:36:34.0784 5324 aksdf - ok

10:36:34.0803 5324 aksfridge (8589471f54797f430e72e077de0d6af6) C:\Windows\system32\DRIVERS\aksfridge.sys

10:36:34.0812 5324 aksfridge - ok

10:36:34.0827 5324 akshasp (bfb22aeb822dca54186b4973029756c1) C:\Windows\system32\DRIVERS\akshasp.sys

10:36:34.0844 5324 akshasp - ok

10:36:34.0859 5324 akshhl (67dff8c8f95cb21c9c3380dd4c0387f2) C:\Windows\system32\DRIVERS\akshhl.sys

10:36:34.0868 5324 akshhl - ok

10:36:34.0883 5324 aksusb (ce3eb7eed1da61b77eaf232b04c32bcb) C:\Windows\system32\DRIVERS\aksusb.sys

10:36:34.0892 5324 aksusb - ok

10:36:34.0903 5324 aliide (157d0898d4b73f075ce9fa26b482df98) C:\Windows\system32\drivers\aliide.sys

10:36:34.0910 5324 aliide - ok

10:36:34.0919 5324 amdide (970fa5059e61e30d25307b99903e991e) C:\Windows\system32\drivers\amdide.sys

10:36:34.0926 5324 amdide - ok

10:36:34.0937 5324 AmdK8 (de55dc52f7ceb89a967572d6b491ada2) C:\Windows\system32\drivers\amdk8.sys

10:36:34.0976 5324 AmdK8 - ok

10:36:35.0007 5324 Amfilter (71aff825b960731e2ae366467bc0d1f3) C:\Windows\system32\DRIVERS\Amfltx64.sys

10:36:35.0016 5324 Amfilter - ok

10:36:35.0100 5324 Amusbprt (8f1db3d133197affa3a721953eb0988c) C:\Windows\system32\DRIVERS\Amusbx64.sys

10:36:35.0111 5324 Amusbprt - ok

10:36:35.0136 5324 arc (2e8623f2fed998a97129a3db919551c8) C:\Windows\system32\drivers\arc.sys

10:36:35.0144 5324 arc - ok

10:36:35.0158 5324 arcsas (741a003c041a3ec480a2e71af71e9654) C:\Windows\system32\drivers\arcsas.sys

10:36:35.0166 5324 arcsas - ok

10:36:35.0186 5324 AsyncMac (22d13ff3dafec2a80634752b1eaa2de6) C:\Windows\system32\DRIVERS\asyncmac.sys

10:36:35.0211 5324 AsyncMac - ok

10:36:35.0229 5324 atapi (e68d9b3a3905619732f7fe039466a623) C:\Windows\system32\drivers\atapi.sys

10:36:35.0237 5324 atapi - ok

10:36:35.0248 5324 Beep - ok

10:36:35.0256 5324 blbdrive - ok

10:36:35.0285 5324 bowser (2348447a80920b2493a9b582a23e81e1) C:\Windows\system32\DRIVERS\bowser.sys

10:36:35.0296 5324 bowser - ok

10:36:35.0309 5324 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\drivers\brfiltlo.sys

10:36:35.0328 5324 BrFiltLo - ok

10:36:35.0338 5324 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\drivers\brfiltup.sys

10:36:35.0357 5324 BrFiltUp - ok

10:36:35.0373 5324 Brserid (f0f0ba4d815be446aa6a4583ca3bca9b) C:\Windows\system32\drivers\brserid.sys

10:36:35.0412 5324 Brserid - ok

10:36:35.0425 5324 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\system32\drivers\brserwdm.sys

10:36:35.0465 5324 BrSerWdm - ok

10:36:35.0477 5324 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\system32\drivers\brusbmdm.sys

10:36:35.0515 5324 BrUsbMdm - ok

10:36:35.0525 5324 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\system32\drivers\brusbser.sys

10:36:35.0564 5324 BrUsbSer - ok

10:36:35.0580 5324 BTHMODEM (e0777b34e05f8a82a21856efc900c29f) C:\Windows\system32\drivers\bthmodem.sys

10:36:35.0619 5324 BTHMODEM - ok

10:36:35.0694 5324 catchme - ok

10:36:35.0761 5324 cdfs (b4d787db8d30793a4d4df9feed18f136) C:\Windows\system32\DRIVERS\cdfs.sys

10:36:35.0788 5324 cdfs - ok

10:36:35.0799 5324 cdrom (c025aa69be3d0d25c7a2e746ef6f94fc) C:\Windows\system32\DRIVERS\cdrom.sys

10:36:35.0818 5324 cdrom - ok

10:36:35.0832 5324 circlass (f28f00596824058bc61d5edf434c9b82) C:\Windows\system32\drivers\circlass.sys

10:36:35.0871 5324 circlass - ok

10:36:35.0899 5324 CLFS (3dca9a18b204939cfb24bea53e31eb48) C:\Windows\system32\CLFS.sys

10:36:35.0921 5324 CLFS - ok

10:36:35.0949 5324 cmdide (e5d5499a1c50a54b5161296b6afe6192) C:\Windows\system32\drivers\cmdide.sys

10:36:35.0957 5324 cmdide - ok

10:36:35.0968 5324 Compbatt (0e77a445640bf310817f60941c50560c) C:\Windows\system32\drivers\compbatt.sys

10:36:35.0975 5324 Compbatt - ok

10:36:35.0982 5324 crcdisk (b1192dcd5b9cf46beed0e2a9e5bcf59a) C:\Windows\system32\drivers\crcdisk.sys

10:36:35.0990 5324 crcdisk - ok

10:36:36.0025 5324 CSC (f60f50c8ed3fcbe358430b95fe27d09c) C:\Windows\system32\drivers\csc.sys

10:36:36.0051 5324 CSC - ok

10:36:36.0089 5324 DfsC (8b722ba35205c71e7951cdc4cdbade19) C:\Windows\system32\Drivers\dfsc.sys

10:36:36.0108 5324 DfsC - ok

10:36:36.0128 5324 disk (b0107e40ecdb5fa692ebf832f295d905) C:\Windows\system32\drivers\disk.sys

10:36:36.0138 5324 disk - ok

10:36:36.0152 5324 drmkaud (f1a78a98cfc2ee02144c6bec945447e6) C:\Windows\system32\drivers\drmkaud.sys

10:36:36.0171 5324 drmkaud - ok

10:36:36.0243 5324 DXGKrnl (b8e554e502d5123bc111f99d6a2181b4) C:\Windows\System32\drivers\dxgkrnl.sys

10:36:36.0276 5324 DXGKrnl - ok

10:36:36.0300 5324 E1G60 (d57fe09b575545738a73a0c193d0616a) C:\Windows\system32\DRIVERS\E1G6032E.sys

10:36:36.0350 5324 E1G60 - ok

10:36:36.0385 5324 Ecache (5f94962be5a62db6e447ff6470c4f48a) C:\Windows\system32\drivers\ecache.sys

10:36:36.0402 5324 Ecache - ok

10:36:36.0555 5324 elxstor (3d6298aff3fe06c0616ce5d090a3eeaa) C:\Windows\system32\drivers\elxstor.sys

10:36:36.0582 5324 elxstor - ok

10:36:36.0615 5324 exfat (486844f47b6636044a42454614ed4523) C:\Windows\system32\drivers\exfat.sys

10:36:36.0628 5324 exfat - ok

10:36:36.0656 5324 fastfat (1a4bee34277784619ddaf0422c0c6e23) C:\Windows\system32\drivers\fastfat.sys

10:36:36.0678 5324 fastfat - ok

10:36:36.0691 5324 fdc (61b6dbd1ad1143f008364d4e9a96b224) C:\Windows\system32\DRIVERS\fdc.sys

10:36:36.0730 5324 fdc - ok

10:36:36.0745 5324 FileInfo (457b7d1d533e4bd62a99aed9c7bb4c59) C:\Windows\system32\drivers\fileinfo.sys

10:36:36.0754 5324 FileInfo - ok

10:36:36.0769 5324 Filetrace (d421327fd6efccaf884a54c58e1b0d7f) C:\Windows\system32\drivers\filetrace.sys

10:36:36.0794 5324 Filetrace - ok

10:36:36.0806 5324 flpydisk (12c3d1b4d0ce49e1ce343ba2f22f15e0) C:\Windows\system32\DRIVERS\flpydisk.sys

10:36:36.0844 5324 flpydisk - ok

10:36:36.0868 5324 FltMgr (e3041bc26d6930d61f42aedb79c91720) C:\Windows\system32\drivers\fltmgr.sys

10:36:36.0879 5324 FltMgr - ok

10:36:36.0892 5324 Fs_Rec (29d99e860a1ca0a03c6a733fdd0da703) C:\Windows\system32\drivers\Fs_Rec.sys

10:36:36.0911 5324 Fs_Rec - ok

10:36:36.0922 5324 gagp30kx (b54520cc7b4b55134d7527b1cd3fc1f2) C:\Windows\system32\drivers\gagp30kx.sys

10:36:36.0930 5324 gagp30kx - ok

10:36:36.0956 5324 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys

10:36:36.0963 5324 GEARAspiWDM - ok

10:36:36.0985 5324 Hardlock (8a015d646cfad3b00efc0889f8b92f0d) C:\Windows\system32\drivers\hardlock.sys

10:36:36.0998 5324 Hardlock - ok

10:36:37.0025 5324 HdAudAddService (68e732382b32417ff61fd663259b4b09) C:\Windows\system32\drivers\HdAudio.sys

10:36:37.0040 5324 HdAudAddService - ok

10:36:37.0118 5324 HDAudBus (f942c5820205f2fb453243edfec82a3d) C:\Windows\system32\DRIVERS\HDAudBus.sys

10:36:37.0162 5324 HDAudBus - ok

10:36:37.0211 5324 HidBth (b4881c84a180e75b8c25dc1d726c375f) C:\Windows\system32\drivers\hidbth.sys

10:36:37.0260 5324 HidBth - ok

10:36:37.0275 5324 HidIr (4e77a77e2c986e8f88f996bb3e1ad829) C:\Windows\system32\drivers\hidir.sys

10:36:37.0314 5324 HidIr - ok

10:36:37.0326 5324 HidUsb (443bdd2d30bb4f00795c797e2cf99edf) C:\Windows\system32\DRIVERS\hidusb.sys

10:36:37.0345 5324 HidUsb - ok

10:36:37.0362 5324 HpCISSs (8edc820115df1e04763b2923676ea5b2) C:\Windows\system32\drivers\hpcisss.sys

10:36:37.0370 5324 HpCISSs - ok

10:36:37.0420 5324 HTTP (098f1e4e5c9cb5b0063a959063631610) C:\Windows\system32\drivers\HTTP.sys

10:36:37.0485 5324 HTTP - ok

10:36:37.0510 5324 i2omp (f2901763845570ecac48e6a50ec50812) C:\Windows\system32\drivers\i2omp.sys

10:36:37.0526 5324 i2omp - ok

10:36:37.0539 5324 i8042prt (cbb597659a2713ce0c9cc20c88c7591f) C:\Windows\system32\DRIVERS\i8042prt.sys

10:36:37.0559 5324 i8042prt - ok

10:36:37.0589 5324 iaStorV (72c3ee7ea3cd75a772e62ae0e5df8b8c) C:\Windows\system32\drivers\iastorv.sys

10:36:37.0601 5324 iaStorV - ok

10:36:37.0674 5324 iirsp (8c3951ad2fe886ef76c7b5027c3125d3) C:\Windows\system32\drivers\iirsp.sys

10:36:37.0682 5324 iirsp - ok

10:36:37.0704 5324 intelide (36a266c673812878996f72b200203fbb) C:\Windows\system32\drivers\intelide.sys

10:36:37.0712 5324 intelide - ok

10:36:37.0730 5324 intelppm (bfd84af32fa1bad6231c4585cb469630) C:\Windows\system32\DRIVERS\intelppm.sys

10:36:37.0755 5324 intelppm - ok

10:36:37.0780 5324 IpFilterDriver (d8aabc341311e4780d6fce8c73c0ad81) C:\Windows\system32\DRIVERS\ipfltdrv.sys

10:36:37.0800 5324 IpFilterDriver - ok

10:36:37.0807 5324 IpInIp - ok

10:36:37.0822 5324 IPMIDRV (eacdbbe429c6d170bdeee0effcbc317b) C:\Windows\system32\drivers\ipmidrv.sys

10:36:37.0869 5324 IPMIDRV - ok

10:36:37.0886 5324 IPNAT (b7e6212f581ea5f6ab0c3a6ceeeb89be) C:\Windows\system32\DRIVERS\ipnat.sys

10:36:37.0917 5324 IPNAT - ok

10:36:37.0937 5324 IRENUM (8c42ca155343a2f11d29feca67faa88d) C:\Windows\system32\drivers\irenum.sys

10:36:37.0962 5324 IRENUM - ok

10:36:37.0978 5324 isapnp (d3bb520b31f28c1a065cd058e762ee73) C:\Windows\system32\drivers\isapnp.sys

10:36:37.0986 5324 isapnp - ok

10:36:38.0002 5324 iScsiPrt (e4fdf99599f27ec25d2cf6d754243520) C:\Windows\system32\DRIVERS\msiscsi.sys

10:36:38.0014 5324 iScsiPrt - ok

10:36:38.0037 5324 iteatapi (63c766cdc609ff8206cb447a65abba4a) C:\Windows\system32\drivers\iteatapi.sys

10:36:38.0045 5324 iteatapi - ok

10:36:38.0057 5324 iteraid (1281fe73b17664631d12f643cbea3f59) C:\Windows\system32\drivers\iteraid.sys

10:36:38.0065 5324 iteraid - ok

10:36:38.0077 5324 kbdclass (423696f3ba6472dd17699209b933bc26) C:\Windows\system32\DRIVERS\kbdclass.sys

10:36:38.0085 5324 kbdclass - ok

10:36:38.0101 5324 kbdhid (dbdf75d51464fbc47d0104ec3d572c05) C:\Windows\system32\DRIVERS\kbdhid.sys

10:36:38.0120 5324 kbdhid - ok

10:36:38.0145 5324 KSecDD (476e2c1dcea45895994bef11c2a98715) C:\Windows\system32\Drivers\ksecdd.sys

10:36:38.0173 5324 KSecDD - ok

10:36:38.0256 5324 ksthunk (1d419cf43db29396ecd7113d129d94eb) C:\Windows\system32\drivers\ksthunk.sys

10:36:38.0281 5324 ksthunk - ok

10:36:38.0311 5324 L1E (3e3d1d8dcb2ca53463d34252e99465d3) C:\Windows\system32\DRIVERS\L1E60x64.sys

10:36:38.0326 5324 L1E - ok

10:36:38.0352 5324 lltdio (96ece2659b6654c10a0c310ae3a6d02c) C:\Windows\system32\DRIVERS\lltdio.sys

10:36:38.0377 5324 lltdio - ok

10:36:38.0398 5324 LSI_FC (1572f8d999c0ab4376afdce058a78df9) C:\Windows\system32\drivers\lsi_fc.sys

10:36:38.0414 5324 LSI_FC - ok

10:36:38.0426 5324 LSI_SAS (64470979c3e3c9ff60edfb5230c56e0e) C:\Windows\system32\drivers\lsi_sas.sys

10:36:38.0434 5324 LSI_SAS - ok

10:36:38.0447 5324 LSI_SCSI (4ced7d3b54bfc5bbae75c4a73c7f7428) C:\Windows\system32\drivers\lsi_scsi.sys

10:36:38.0456 5324 LSI_SCSI - ok

10:36:38.0469 5324 luafv (52f87b9cc8932c2a7375c3b2a9be5e3e) C:\Windows\system32\drivers\luafv.sys

10:36:38.0496 5324 luafv - ok

10:36:38.0506 5324 MBAMProtector (23a854450dab5c9b7a42ab9be6f2e4bd) C:\Windows\system32\drivers\mbam.sys

10:36:38.0514 5324 MBAMProtector - ok

10:36:38.0529 5324 megasas (2f631c2939d5f2e8958935ee701d70d7) C:\Windows\system32\drivers\megasas.sys

10:36:38.0537 5324 megasas - ok

10:36:38.0560 5324 Modem (59848d5cc74606f0ee7557983bb73c2e) C:\Windows\system32\drivers\modem.sys

10:36:38.0586 5324 Modem - ok

10:36:38.0609 5324 monitor (c247cc2a57e0a0c8c6dccf7807b3e9e5) C:\Windows\system32\DRIVERS\monitor.sys

10:36:38.0634 5324 monitor - ok

10:36:38.0651 5324 mouclass (9367304e5e412b120cf5f4ea14e4e4f1) C:\Windows\system32\DRIVERS\mouclass.sys

10:36:38.0666 5324 mouclass - ok

10:36:38.0675 5324 mouhid (c2c2bd5c5ce5aaf786ddd74b75d2ac69) C:\Windows\system32\DRIVERS\mouhid.sys

10:36:38.0701 5324 mouhid - ok

10:36:38.0714 5324 MountMgr (11bc9b1e8801b01f7f6adb9ead30019b) C:\Windows\system32\drivers\mountmgr.sys

10:36:38.0727 5324 MountMgr - ok

10:36:38.0749 5324 MpFilter (c177a7ebf5e8a0b596f618870516cab8) C:\Windows\system32\DRIVERS\MpFilter.sys

10:36:38.0761 5324 MpFilter - ok

10:36:38.0844 5324 mpio (ed48eac719ee28db773359eb1b06e2b5) C:\Windows\system32\drivers\mpio.sys

10:36:38.0859 5324 mpio - ok

10:36:38.0877 5324 MpNWMon (8fbf6b31fe8af1833d93c5913d5b4d55) C:\Windows\system32\DRIVERS\MpNWMon.sys

10:36:38.0885 5324 MpNWMon - ok

10:36:38.0908 5324 mpsdrv (c92b9abdb65a5991e00c28f13491dba2) C:\Windows\system32\drivers\mpsdrv.sys

10:36:38.0928 5324 mpsdrv - ok

10:36:38.0943 5324 Mraid35x (3c200630a89ef2c0864d515b7a75802e) C:\Windows\system32\drivers\mraid35x.sys

10:36:38.0951 5324 Mraid35x - ok

10:36:38.0986 5324 MRxDAV (7c1de4aa96dc0c071611f9e7de02a68d) C:\Windows\system32\drivers\mrxdav.sys

10:36:38.0999 5324 MRxDAV - ok

10:36:39.0024 5324 mrxsmb (1485811b320ff8c7edad1caebb1c6c2b) C:\Windows\system32\DRIVERS\mrxsmb.sys

10:36:39.0040 5324 mrxsmb - ok

10:36:39.0089 5324 mrxsmb10 (3b929a60c833fc615fd97fba82bc7632) C:\Windows\system32\DRIVERS\mrxsmb10.sys

10:36:39.0102 5324 mrxsmb10 - ok

10:36:39.0109 5324 mrxsmb20 (c64ab3e1f53b4f5b5bb6d796b2d7bec3) C:\Windows\system32\DRIVERS\mrxsmb20.sys

10:36:39.0120 5324 mrxsmb20 - ok

10:36:39.0131 5324 msahci (eeadf970795148bfbb1db3abcc89c16b) C:\Windows\system32\drivers\msahci.sys

10:36:39.0138 5324 msahci - ok

10:36:39.0152 5324 msdsm (96d7c0a1b98434c6e4ff0c2e26a0e20a) C:\Windows\system32\drivers\msdsm.sys

10:36:39.0161 5324 msdsm - ok

10:36:39.0184 5324 Msfs (704f59bfc4512d2bb0146aec31b10a7c) C:\Windows\system32\drivers\Msfs.sys

10:36:39.0209 5324 Msfs - ok

10:36:39.0228 5324 msisadrv (00ebc952961664780d43dca157e79b27) C:\Windows\system32\drivers\msisadrv.sys

10:36:39.0236 5324 msisadrv - ok

10:36:39.0256 5324 MSKSSRV (0ea73e498f53b96d83dbfca074ad4cf8) C:\Windows\system32\drivers\MSKSSRV.sys

10:36:39.0281 5324 MSKSSRV - ok

10:36:39.0297 5324 MSPCLOCK (52e59b7e992a58e740aa63f57edbae8b) C:\Windows\system32\drivers\MSPCLOCK.sys

10:36:39.0322 5324 MSPCLOCK - ok

10:36:39.0339 5324 MSPQM (49084a75bae043ae02d5b44d02991bb2) C:\Windows\system32\drivers\MSPQM.sys

10:36:39.0364 5324 MSPQM - ok

10:36:39.0414 5324 MsRPC (dc6ccf440cdede4293db41c37a5060a5) C:\Windows\system32\drivers\MsRPC.sys

10:36:39.0434 5324 MsRPC - ok

10:36:39.0524 5324 mssmbios (855796e59df77ea93af46f20155bf55b) C:\Windows\system32\DRIVERS\mssmbios.sys

10:36:39.0540 5324 mssmbios - ok

10:36:39.0570 5324 MSTEE (86d632d75d05d5b7c7c043fa3564ae86) C:\Windows\system32\drivers\MSTEE.sys

10:36:39.0595 5324 MSTEE - ok

10:36:39.0623 5324 MTsensor (03b7145c889603537e9ffeabb1ad1089) C:\Windows\system32\DRIVERS\ASACPI.sys

10:36:39.0638 5324 MTsensor - ok

10:36:39.0644 5324 Mup (0cc49f78d8aca0877d885f149084e543) C:\Windows\system32\Drivers\mup.sys

10:36:39.0653 5324 Mup - ok

10:36:39.0677 5324 NativeWifiP (2007b826c4acd94ae32232b41f0842b9) C:\Windows\system32\DRIVERS\nwifi.sys

10:36:39.0690 5324 NativeWifiP - ok

10:36:39.0736 5324 NDIS (65950e07329fcee8e6516b17c8d0abb6) C:\Windows\system32\drivers\ndis.sys

10:36:39.0755 5324 NDIS - ok

10:36:39.0797 5324 NdisTapi (64df698a425478e321981431ac171334) C:\Windows\system32\DRIVERS\ndistapi.sys

10:36:39.0817 5324 NdisTapi - ok

10:36:39.0832 5324 Ndisuio (8baa43196d7b5bb972c9a6b2bbf61a19) C:\Windows\system32\DRIVERS\ndisuio.sys

10:36:39.0857 5324 Ndisuio - ok

10:36:39.0886 5324 NdisWan (f8158771905260982ce724076419ef19) C:\Windows\system32\DRIVERS\ndiswan.sys

10:36:39.0907 5324 NdisWan - ok

10:36:39.0919 5324 NDProxy (9cb77ed7cb72850253e973a2d6afdf49) C:\Windows\system32\drivers\NDProxy.sys

10:36:39.0938 5324 NDProxy - ok

10:36:39.0949 5324 NetBIOS (a499294f5029a7862adc115bda7371ce) C:\Windows\system32\DRIVERS\netbios.sys

10:36:39.0974 5324 NetBIOS - ok

10:36:40.0011 5324 netbt (fc2c792ebddc8e28df939d6a92c83d61) C:\Windows\system32\DRIVERS\netbt.sys

10:36:40.0031 5324 netbt - ok

10:36:40.0095 5324 nfrd960 (4ac08bd6af2df42e0c3196d826c8aea7) C:\Windows\system32\drivers\nfrd960.sys

10:36:40.0103 5324 nfrd960 - ok

10:36:40.0132 5324 NisDrv (5f7d72cbcdd025af1f38fdeee5646968) C:\Windows\system32\DRIVERS\NisDrvWFP.sys

10:36:40.0140 5324 NisDrv - ok

10:36:40.0210 5324 Npfs (b298874f8e0ea93f06ec40aa8d146478) C:\Windows\system32\drivers\Npfs.sys

10:36:40.0229 5324 Npfs - ok

10:36:40.0252 5324 nsiproxy (1523af19ee8b030ba682f7a53537eaeb) C:\Windows\system32\drivers\nsiproxy.sys

10:36:40.0277 5324 nsiproxy - ok

10:36:40.0442 5324 Ntfs (bac869dfb98e499ba4d9bb1fb43270e1) C:\Windows\system32\drivers\Ntfs.sys

10:36:40.0492 5324 Ntfs - ok

10:36:40.0625 5324 Null (dd5d684975352b85b52e3fd5347c20cb) C:\Windows\system32\drivers\Null.sys

10:36:40.0651 5324 Null - ok

10:36:40.0913 5324 nvlddmkm (0a9b7e99d431db94846929f4c94470d6) C:\Windows\system32\DRIVERS\nvlddmkm.sys

10:36:41.0220 5324 nvlddmkm - ok

10:36:41.0356 5324 nvraid (840eeb44dc49317a6161961f7682cd99) C:\Windows\system32\drivers\nvraid.sys

10:36:41.0365 5324 nvraid - ok

10:36:41.0422 5324 nvstor (94c5334040a5d500897f4c5fd12aeede) C:\Windows\system32\drivers\nvstor.sys

10:36:41.0430 5324 nvstor - ok

10:36:41.0473 5324 nv_agp (aa1b6c86a4763502e20b65c025f39bad) C:\Windows\system32\drivers\nv_agp.sys

10:36:41.0482 5324 nv_agp - ok

10:36:41.0556 5324 NwlnkFlt - ok

10:36:41.0611 5324 NwlnkFwd - ok

10:36:41.0638 5324 ohci1394 (b5b1ce65ac15bbd11c0619e3ef7cfc28) C:\Windows\system32\DRIVERS\ohci1394.sys

10:36:41.0657 5324 ohci1394 - ok

10:36:41.0678 5324 Parport (aecd57f94c887f58919f307c35498ea0) C:\Windows\system32\drivers\parport.sys

10:36:41.0717 5324 Parport - ok

10:36:41.0760 5324 partmgr (f9b5eda4c17a2be7663f064dbf0fe254) C:\Windows\system32\drivers\partmgr.sys

10:36:41.0769 5324 partmgr - ok

10:36:41.0817 5324 pci (47ab1e0fc9d0e12bb53ba246e3a0906d) C:\Windows\system32\drivers\pci.sys

10:36:41.0827 5324 pci - ok

10:36:41.0850 5324 pciide (2657f6c0b78c36d95034be109336e382) C:\Windows\system32\drivers\pciide.sys

10:36:41.0858 5324 pciide - ok

10:36:41.0949 5324 pcmcia (037661f3d7c507c9993b7010ceee6288) C:\Windows\system32\drivers\pcmcia.sys

10:36:41.0958 5324 pcmcia - ok

10:36:42.0046 5324 PEAUTH (58865916f53592a61549b04941bfd80d) C:\Windows\system32\drivers\peauth.sys

10:36:42.0092 5324 PEAUTH - ok

10:36:42.0133 5324 PptpMiniport (23386e9952025f5f21c368971e2e7301) C:\Windows\system32\DRIVERS\raspptp.sys

10:36:42.0152 5324 PptpMiniport - ok

10:36:42.0237 5324 Processor (6bc78e5f12cbb74e7930aaaa4a0db387) C:\Windows\system32\drivers\processr.sys

10:36:42.0276 5324 Processor - ok

10:36:42.0396 5324 PSched (c5ab7f0809392d0da027f4a2a81bfa31) C:\Windows\system32\DRIVERS\pacer.sys

10:36:42.0416 5324 PSched - ok

10:36:42.0577 5324 ql2300 (4a29d25704917161bad9b4659a248dfd) C:\Windows\system32\drivers\ql2300.sys

10:36:42.0601 5324 ql2300 - ok

10:36:42.0621 5324 ql40xx (e1c80f8d4d1e39ef9595809c1369bf2a) C:\Windows\system32\drivers\ql40xx.sys

10:36:42.0629 5324 ql40xx - ok

10:36:42.0703 5324 QWAVEdrv (e8d76edab77ec9c634c27b8eac33adc5) C:\Windows\system32\drivers\qwavedrv.sys

10:36:42.0713 5324 QWAVEdrv - ok

10:36:42.0762 5324 RasAcd (1013b3b663a56d3ddd784f581c1bd005) C:\Windows\system32\DRIVERS\rasacd.sys

10:36:42.0787 5324 RasAcd - ok

10:36:42.0895 5324 Rasl2tp (ac7bc4d42a7e558718dfdec599bbfc2c) C:\Windows\system32\DRIVERS\rasl2tp.sys

10:36:42.0916 5324 Rasl2tp - ok

10:36:42.0943 5324 RasPppoe (4517fbf8b42524afe4ede1de102aae3e) C:\Windows\system32\DRIVERS\raspppoe.sys

10:36:42.0963 5324 RasPppoe - ok

10:36:43.0006 5324 RasSstp (c6a593b51f34c33e5474539544072527) C:\Windows\system32\DRIVERS\rassstp.sys

10:36:43.0017 5324 RasSstp - ok

10:36:43.0048 5324 rdbss (322db5c6b55e8d8ee8d6f358b2aaabb1) C:\Windows\system32\DRIVERS\rdbss.sys

10:36:43.0069 5324 rdbss - ok

10:36:43.0079 5324 RDPCDD (603900cc05f6be65ccbf373800af3716) C:\Windows\system32\DRIVERS\RDPCDD.sys

10:36:43.0104 5324 RDPCDD - ok

10:36:43.0144 5324 rdpdr (ae23e79b13feb62939e2ca1189e71735) C:\Windows\system32\DRIVERS\rdpdr.sys

10:36:43.0165 5324 rdpdr - ok

10:36:43.0188 5324 RDPENCDD (cab9421daf3d97b33d0d055858e2c3ab) C:\Windows\system32\drivers\rdpencdd.sys

10:36:43.0213 5324 RDPENCDD - ok

10:36:43.0231 5324 RDPWD (b1d741c87cea8d7282146366cc9c3f81) C:\Windows\system32\drivers\RDPWD.sys

10:36:43.0252 5324 RDPWD - ok

10:36:43.0309 5324 rspndr (22a9cb08b1a6707c1550c6bf099aae73) C:\Windows\system32\DRIVERS\rspndr.sys

10:36:43.0335 5324 rspndr - ok

10:36:43.0423 5324 sbp2port (cd9c693589c60ad59bbbcfb0e524e01b) C:\Windows\system32\drivers\sbp2port.sys

10:36:43.0431 5324 sbp2port - ok

10:36:43.0482 5324 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys

10:36:43.0521 5324 secdrv - ok

10:36:43.0564 5324 Serenum (2449316316411d65bd2c761a6ffb2ce2) C:\Windows\system32\DRIVERS\serenum.sys

10:36:43.0592 5324 Serenum - ok

10:36:43.0607 5324 Serial (4b438170be2fc8e0bd35ee87a960f84f) C:\Windows\system32\DRIVERS\serial.sys

10:36:43.0634 5324 Serial - ok

10:36:43.0649 5324 sermouse (a842f04833684bceea7336211be478df) C:\Windows\system32\drivers\sermouse.sys

10:36:43.0675 5324 sermouse - ok

10:36:43.0691 5324 sffdisk (541b32f8d6b2dcb92ec43bab267e79ea) C:\Windows\system32\drivers\sffdisk.sys

10:36:43.0731 5324 sffdisk - ok

10:36:43.0743 5324 sffp_mmc (446e7cca3325c7e0ae0fde7f73cdd9c2) C:\Windows\system32\drivers\sffp_mmc.sys

10:36:43.0781 5324 sffp_mmc - ok

10:36:43.0915 5324 sffp_sd (67edc221348911e895af51c57d9a3725) C:\Windows\system32\drivers\sffp_sd.sys

10:36:43.0954 5324 sffp_sd - ok

10:36:43.0978 5324 sfloppy (6b7838c94135768bd455cbdc23e39e5f) C:\Windows\system32\drivers\sfloppy.sys

10:36:44.0017 5324 sfloppy - ok

10:36:44.0030 5324 SiSRaid2 (08dda16573fa44f8b13afe74597ad2e5) C:\Windows\system32\drivers\sisraid2.sys

10:36:44.0038 5324 SiSRaid2 - ok

10:36:44.0054 5324 SiSRaid4 (c52259e9daaf3890d572d87ffee0979e) C:\Windows\system32\drivers\sisraid4.sys

10:36:44.0062 5324 SiSRaid4 - ok

10:36:44.0088 5324 Smb (290b6f6a0ec4fcdfc90f5cb6d7020473) C:\Windows\system32\DRIVERS\smb.sys

10:36:44.0107 5324 Smb - ok

10:36:44.0164 5324 spldr (386c3c63f00a7040c7ec5e384217e89d) C:\Windows\system32\drivers\spldr.sys

10:36:44.0173 5324 spldr - ok

10:36:44.0203 5324 srv (880a57fccb571ebd063d4dd50e93e46d) C:\Windows\system32\DRIVERS\srv.sys

10:36:44.0217 5324 srv - ok

10:36:44.0242 5324 srv2 (a1ad14a6d7a37891fffeca35ebbb0730) C:\Windows\system32\DRIVERS\srv2.sys

10:36:44.0253 5324 srv2 - ok

10:36:44.0279 5324 srvnet (4bed62f4fa4d8300973f1151f4c4d8a7) C:\Windows\system32\DRIVERS\srvnet.sys

10:36:44.0290 5324 srvnet - ok

10:36:44.0308 5324 swenum (8a851ca908b8b974f89c50d2e18d4f0c) C:\Windows\system32\DRIVERS\swenum.sys

10:36:44.0315 5324 swenum - ok

10:36:44.0333 5324 Symc8xx (2f26a2c6fc96b29beff5d8ed74e6625b) C:\Windows\system32\drivers\symc8xx.sys

10:36:44.0341 5324 Symc8xx - ok

10:36:44.0364 5324 Sym_hi (a909667976d3bccd1df813fed517d837) C:\Windows\system32\drivers\sym_hi.sys

10:36:44.0372 5324 Sym_hi - ok

10:36:44.0392 5324 Sym_u3 (36887b56ec2d98b9c362f6ae4de5b7b0) C:\Windows\system32\drivers\sym_u3.sys

10:36:44.0400 5324 Sym_u3 - ok

10:36:44.0445 5324 Tcpip (73bed5067ed53a9df05fa8eab42578d0) C:\Windows\system32\drivers\tcpip.sys

10:36:44.0475 5324 Tcpip - ok

10:36:44.0511 5324 Tcpip6 (73bed5067ed53a9df05fa8eab42578d0) C:\Windows\system32\DRIVERS\tcpip.sys

10:36:44.0541 5324 Tcpip6 - ok

10:36:44.0571 5324 tcpipreg (848f87c604b5e674602498cb51067db6) C:\Windows\system32\drivers\tcpipreg.sys

10:36:44.0581 5324 tcpipreg - ok

10:36:44.0598 5324 TDPIPE (1d8bf4aaa5fb7a2761475781dc1195bc) C:\Windows\system32\drivers\tdpipe.sys

10:36:44.0623 5324 TDPIPE - ok

10:36:44.0640 5324 TDTCP (7f7e00cdf609df657f4cda02dd1c9bb1) C:\Windows\system32\drivers\tdtcp.sys

10:36:44.0665 5324 TDTCP - ok

10:36:44.0690 5324 tdx (458919c8c42e398dc4802178d5ffee27) C:\Windows\system32\DRIVERS\tdx.sys

10:36:44.0709 5324 tdx - ok

10:36:44.0732 5324 TermDD (8c19678d22649ec002ef2282eae92f98) C:\Windows\system32\DRIVERS\termdd.sys

10:36:44.0741 5324 TermDD - ok

10:36:44.0791 5324 TmFilter (8b97ba7e28bd39a2bc4a2bb66a83fec0) C:\Program Files (x86)\Trend Micro\OfficeScan Client\TmXPFlt.sys

10:36:44.0803 5324 TmFilter - ok

10:36:44.0853 5324 tmlwf (8222b74635002f26516a410192f519e5) C:\Windows\system32\DRIVERS\tmlwf.sys

10:36:44.0861 5324 tmlwf - ok

10:36:44.0876 5324 TmPreFilter (1889f49a828b1cf0e2866cdd325875b0) C:\Program Files (x86)\Trend Micro\OfficeScan Client\TmPreFlt.sys

10:36:44.0883 5324 TmPreFilter - ok

10:36:44.0897 5324 tmtdi (e3033f9b5cbb5c7c0f9ef75f69ba875b) C:\Windows\system32\DRIVERS\tmtdi.sys

10:36:44.0904 5324 tmtdi - ok

10:36:44.0917 5324 tmwfp (331c62797d434c807dc62267112dd9ca) C:\Windows\system32\DRIVERS\tmwfp.sys

10:36:44.0926 5324 tmwfp - ok

10:36:44.0958 5324 tssecsrv (9e5409cd17c8bef193aad498f3bc2cb8) C:\Windows\system32\DRIVERS\tssecsrv.sys

10:36:44.0983 5324 tssecsrv - ok

10:36:45.0003 5324 tunmp (89ec74a9e602d16a75a4170511029b3c) C:\Windows\system32\DRIVERS\tunmp.sys

10:36:45.0013 5324 tunmp - ok

10:36:45.0028 5324 tunnel (30a9b3f45ad081bffc3bcaa9c812b609) C:\Windows\system32\DRIVERS\tunnel.sys

10:36:45.0038 5324 tunnel - ok

10:36:45.0060 5324 uagp35 (e4722dfbd6232acf17543ef2c2dce8d2) C:\Windows\system32\drivers\uagp35.sys

10:36:45.0068 5324 uagp35 - ok

10:36:45.0096 5324 udfs (faf2640a2a76ed03d449e443194c4c34) C:\Windows\system32\DRIVERS\udfs.sys

10:36:45.0117 5324 udfs - ok

10:36:45.0146 5324 uliagpkx (5663d7696abbe71f8c9d915c5374118a) C:\Windows\system32\drivers\uliagpkx.sys

10:36:45.0153 5324 uliagpkx - ok

10:36:45.0167 5324 uliahci (6030b68e86a30d1b315b51c4d7778b16) C:\Windows\system32\drivers\uliahci.sys

10:36:45.0177 5324 uliahci - ok

10:36:45.0190 5324 UlSata (31707f09846056651ea2c37858f5ddb0) C:\Windows\system32\drivers\ulsata.sys

10:36:45.0198 5324 UlSata - ok

10:36:45.0212 5324 ulsata2 (85e5e43ed5b48c8376281bab519271b7) C:\Windows\system32\drivers\ulsata2.sys

10:36:45.0220 5324 ulsata2 - ok

10:36:45.0242 5324 umbus (46e9a994c4fed537dd951f60b86ad3f4) C:\Windows\system32\DRIVERS\umbus.sys

10:36:45.0267 5324 umbus - ok

10:36:45.0296 5324 USBAAPL64 (54d4b48d443e7228bf64cf7cdc3118ac) C:\Windows\system32\Drivers\usbaapl64.sys

10:36:45.0305 5324 USBAAPL64 - ok

10:36:45.0363 5324 usbaudio (c6ba890de6e41857fbe84175519cae7d) C:\Windows\system32\drivers\usbaudio.sys

10:36:45.0382 5324 usbaudio - ok

10:36:45.0405 5324 usbccgp (07e3498fc60834219d2356293da0fecc) C:\Windows\system32\DRIVERS\usbccgp.sys

10:36:45.0424 5324 usbccgp - ok

10:36:45.0434 5324 usbcir (9247f7e0b65852c1f6631480984d6ed2) C:\Windows\system32\drivers\usbcir.sys

10:36:45.0472 5324 usbcir - ok

10:36:45.0487 5324 usbehci (827e44de934a736ea31e91d353eb126f) C:\Windows\system32\DRIVERS\usbehci.sys

10:36:45.0506 5324 usbehci - ok

10:36:45.0526 5324 usbhub (bb35cd80a2ececfadc73569b3d70c7d1) C:\Windows\system32\DRIVERS\usbhub.sys

10:36:45.0546 5324 usbhub - ok

10:36:45.0561 5324 usbohci (eba14ef0c07cec233f1529c698d0d154) C:\Windows\system32\drivers\usbohci.sys

10:36:45.0599 5324 usbohci - ok

10:36:45.0618 5324 usbprint (acfee697af477021bb3ec78c5431fed2) C:\Windows\system32\drivers\usbprint.sys

10:36:45.0657 5324 usbprint - ok

10:36:45.0671 5324 USBSTOR (b854c1558fca0c269a38663e8b59b581) C:\Windows\system32\DRIVERS\USBSTOR.SYS

10:36:45.0690 5324 USBSTOR - ok

10:36:45.0710 5324 usbuhci (b2872cbf9f47316abd0e0c74a1aba507) C:\Windows\system32\DRIVERS\usbuhci.sys

10:36:45.0729 5324 usbuhci - ok

10:36:45.0754 5324 usbvideo (fc33099877790d51b0927b7039059855) C:\Windows\system32\Drivers\usbvideo.sys

10:36:45.0781 5324 usbvideo - ok

10:36:45.0815 5324 vga (2998dc48905e9b4821ad8fd75b3e070c) C:\Windows\system32\DRIVERS\vgapnp.sys

10:36:45.0853 5324 vga - ok

10:36:45.0873 5324 VgaSave (b83ab16b51feda65dd81b8c59d114d63) C:\Windows\System32\drivers\vga.sys

10:36:45.0898 5324 VgaSave - ok

10:36:45.0908 5324 viaide (8294b6c3fdb6c33f24e150de647ecdaa) C:\Windows\system32\drivers\viaide.sys

10:36:45.0915 5324 viaide - ok

10:36:45.0929 5324 volmgr (2b7e885ed951519a12c450d24535dfca) C:\Windows\system32\drivers\volmgr.sys

10:36:45.0938 5324 volmgr - ok

10:36:45.0961 5324 volmgrx (cec5ac15277d75d9e5dec2e1c6eaf877) C:\Windows\system32\drivers\volmgrx.sys

10:36:45.0974 5324 volmgrx - ok

10:36:45.0989 5324 volsnap (5280aada24ab36b01a84a6424c475c8d) C:\Windows\system32\drivers\volsnap.sys

10:36:46.0000 5324 volsnap - ok

10:36:46.0068 5324 VSApiNt (3a5862d9a4fe4bbb2ffa1700e2b21b9b) C:\Program Files (x86)\Trend Micro\OfficeScan Client\VSApiNt.sys

10:36:46.0106 5324 VSApiNt - ok

10:36:46.0158 5324 vsmraid (410ae2c141142c58bc617fc2c677f8b0) C:\Windows\system32\drivers\vsmraid.sys

10:36:46.0166 5324 vsmraid - ok

10:36:46.0182 5324 WacomPen (fef8fe5923fead2cee4dfabfce3393a7) C:\Windows\system32\drivers\wacompen.sys

10:36:46.0220 5324 WacomPen - ok

10:36:46.0239 5324 Wanarp (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys

10:36:46.0258 5324 Wanarp - ok

10:36:46.0261 5324 Wanarpv6 (b8e7049622300d20ba6d8be0c47c0cfd) C:\Windows\system32\DRIVERS\wanarp.sys

10:36:46.0280 5324 Wanarpv6 - ok

10:36:46.0297 5324 Wd (59b501b0a04c9672142b7ffa2bdbf663) C:\Windows\system32\drivers\wd.sys

10:36:46.0304 5324 Wd - ok

10:36:46.0327 5324 Wdf01000 (d02e7e4567da1e7582fbf6a91144b0df) C:\Windows\system32\drivers\Wdf01000.sys

10:36:46.0348 5324 Wdf01000 - ok

10:36:46.0390 5324 WmiAcpi (ae34218455d5dc12d1e45de85f160346) C:\Windows\system32\drivers\wmiacpi.sys

10:36:46.0428 5324 WmiAcpi - ok

10:36:46.0454 5324 WpdUsb (5e2401b3fc1089c90e081291357371a9) C:\Windows\system32\DRIVERS\wpdusb.sys

10:36:46.0464 5324 WpdUsb - ok

10:36:46.0475 5324 ws2ifsl (8a900348370e359b6bff6a550e4649e1) C:\Windows\system32\drivers\ws2ifsl.sys

10:36:46.0500 5324 ws2ifsl - ok

10:36:46.0527 5324 WUDFRd (501a65252617b495c0f1832f908d54d8) C:\Windows\system32\DRIVERS\WUDFRd.sys

10:36:46.0553 5324 WUDFRd - ok

10:36:46.0582 5324 ZD1211U(ZyDAS) (d8fd23fb28e413b5439bed7e976238c7) C:\Windows\system32\DRIVERS\zd1211u.sys

10:36:46.0589 5324 ZD1211U(ZyDAS) ( UnsignedFile.Multi.Generic ) - warning

10:36:46.0589 5324 ZD1211U(ZyDAS) - detected UnsignedFile.Multi.Generic (1)

10:36:46.0595 5324 ZDPSp60a64 - ok

10:36:46.0607 5324 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0

10:36:46.0651 5324 \Device\Harddisk0\DR0 - ok

10:36:46.0654 5324 MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk1\DR1

10:36:46.0709 5324 \Device\Harddisk1\DR1 - ok

10:36:46.0712 5324 Boot (0x1200) (9a20fc3ee86b9466d61ed888f173c902) \Device\Harddisk0\DR0\Partition0

10:36:46.0712 5324 \Device\Harddisk0\DR0\Partition0 - ok

10:36:46.0723 5324 Boot (0x1200) (c2447d47122a02d54ff76c394d797438) \Device\Harddisk0\DR0\Partition1

10:36:46.0724 5324 \Device\Harddisk0\DR0\Partition1 - ok

10:36:46.0725 5324 Boot (0x1200) (cccdccf07017bbf3fd96334831882432) \Device\Harddisk1\DR1\Partition0

10:36:46.0726 5324 \Device\Harddisk1\DR1\Partition0 - ok

10:36:46.0727 5324 ============================================================

10:36:46.0727 5324 Scan finished

10:36:46.0727 5324 ============================================================

10:36:46.0731 3872 Detected object count: 1

10:36:46.0731 3872 Actual detected object count: 1

10:37:06.0021 3872 ZD1211U(ZyDAS) ( UnsignedFile.Multi.Generic ) - skipped by user

10:37:06.0021 3872 ZD1211U(ZyDAS) ( UnsignedFile.Multi.Generic ) - User select action: Skip

10:37:13.0433 5824 Deinitialize success

westmaniac · November 15, 2011

.

DDS (Ver_2011-08-26.01) - NTFSAMD64

Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_29

Run by olwe01 at 10:39:38 on 2011-11-15

Microsoft® Windows Vista™ Business 6.0.6002.2.1252.46.1053.18.4094.1765 [GMT 1:00]

.

AV: Microsoft Security Essentials *Disabled/Updated* {108DAC43-C256-20B7-BB05-914135DA5160}

SP: Microsoft Security Essentials *Disabled/Updated* {ABEC4DA7-E46C-2F39-81B5-AA334E5D1BDD}

SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}

.

============== Running Processes ===============

.

C:\Windows\system32\wininit.exe

C:\Windows\system32\lsm.exe

C:\Windows\system32\svchost.exe -k DcomLaunch

C:\Windows\system32\nvvsvc.exe

C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe

C:\Windows\system32\svchost.exe -k rpcss

C:\Program Files\Microsoft Security Client\Antimalware\MsMpEng.exe

C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted

C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted

C:\Windows\system32\svchost.exe -k netsvcs

C:\Windows\system32\svchost.exe -k GPSvcGroup

C:\Windows\system32\SLsvc.exe

C:\Windows\system32\svchost.exe -k LocalService

C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe

C:\Windows\system32\nvvsvc.exe

C:\Windows\system32\svchost.exe -k NetworkService

C:\Windows\System32\spoolsv.exe

C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork

C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

C:\Program Files (x86)\Bonjour\mDNSResponder.exe

C:\Windows\system32\hasplms.exe

C:\Program Files (x86)\Trend Micro\OfficeScan Client\ntrtscan.exe

C:\Program Files\NVIDIA Corporation\Performance Drivers\nvPDsvc.exe

C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted

C:\Windows\system32\svchost.exe -k imgsvc

C:\Windows\System32\svchost.exe -k WerSvcGroup

C:\Windows\system32\SearchIndexer.exe

C:\Program Files (x86)\Trend Micro\OfficeScan Client\tmlisten.exe

C:\Windows\system32\taskeng.exe

C:\Windows\system32\WUDFHost.exe

C:\Windows\system32\Dwm.exe

C:\Windows\Explorer.EXE

C:\Windows\system32\taskeng.exe

C:\Windows\System32\mobsync.exe

C:\Program Files\Hardware\Keyboard\Ikeymain.exe

C:\Program Files\Hardware\Mouse\Amoumain.exe

C:\Program Files\Microsoft Security Client\msseces.exe

C:\Program Files (x86)\Personal\bin\Personal.exe

C:\Program Files (x86)\ZyDAS Technology Corporation\ZyDAS_802.11g_Utility\ZDWlan.exe

C:\Users\olwe01\AppData\Roaming\Dropbox\bin\Dropbox.exe

C:\Program Files (x86)\Trend Micro\OfficeScan Client\PccNTMon.exe

C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\acrotray.exe

C:\Program Files (x86)\iTunes\iTunesHelper.exe

C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe

C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation

C:\Program Files\iPod\bin\iPodService.exe

C:\Windows\system32\conime.exe

C:\Program Files (x86)\Mozilla Firefox\firefox.exe

C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe

C:\Program Files (x86)\Mozilla Firefox\plugin-container.exe

C:\Program Files (x86)\Trend Micro\OfficeScan Client\CNTAoSMgr.exe

C:\Program Files (x86)\Microsoft Office\Office12\OUTLOOK.EXE

C:\Program Files (x86)\Microsoft Office\Office12\EXCEL.EXE

C:\Program Files (x86)\Adobe\Acrobat 9.0\Acrobat\Acrobat.exe

C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe

C:\Program Files (x86)\Common Files\Adobe\CS5ServiceManager\CS5ServiceManager.exe

C:\Program Files (x86)\Internet Explorer\iexplore.exe

C:\Windows\system32\SearchFilterHost.exe

C:\Windows\system32\NOTEPAD.EXE

C:\Windows\sysWow64\SearchProtocolHost.exe

C:\Windows\system32\REGSVR32.exe

C:\Windows\SysWOW64\cmd.exe

C:\Windows\SysWOW64\cscript.exe

C:\Windows\system32\wbem\wmiprvse.exe

.

============== Pseudo HJT Report ===============

.

uStart Page = hxxp://www.shareware-sw.com/sv/index.php?rvs=hompag