Jump to content

e2c

Honorary Members
  • Posts

    53
  • Joined

  • Last visited

Reputation

0 Neutral
  1. WOT: I have found this to be somewhat unreliable. There are entirely safe sites that are sometimes marked as "unsafe" by people who disagree with their content. I have seen several examples of this myself... with sites that are online magazines for the visual arts and for artists. Also, there are unsafe sites that spammers (and others) mark as "safe." Have seen a few of those come up in Google searches (Israbox, for example) and they are full of adware and malware. I think WOT entries should be reviewed on a regular basis by the developers, but that's probably not going to happen - there's too much content to deal with. Best! e.
  2. Maurice - Will do! (The recs. you've made post-cleanup.) I have to admit that I'm too slow at implementing Windows Update at times... I have saved the instructions in your most recent file to a doc and will keep them handy on a flash drive as well. Again, thanks so very much for your time, expertise - and patience! All best wishes, e.
  3. My computer seems good at this point - no trace (that I can see) of anything causing browser redirects/hijacks. Getting rid of some programs has helped quite a bit, I think, along with updating others (JRE and Adobe Acrobat).
  4. My apologies - here's the log file - 13:09:18.0703 3720 TDSS rootkit removing tool 2.7.48.0 Jul 24 2012 13:16:32 13:09:19.0468 3720 ============================================================ 13:09:19.0468 3720 Current date / time: 2012/08/11 13:09:19.0468 13:09:19.0468 3720 SystemInfo: 13:09:19.0468 3720 13:09:19.0468 3720 OS Version: 5.1.2600 ServicePack: 3.0 13:09:19.0468 3720 Product type: Workstation 13:09:19.0468 3720 ComputerName: YOUR-G3CDCO9I0L 13:09:19.0468 3720 Windows directory: C:\WINDOWS 13:09:19.0468 3720 System windows directory: C:\WINDOWS 13:09:19.0468 3720 Processor architecture: Intel x86 13:09:19.0468 3720 Number of processors: 2 13:09:19.0468 3720 Page size: 0x1000 13:09:19.0468 3720 Boot type: Normal boot 13:09:19.0468 3720 ============================================================ 13:09:26.0281 3720 Drive \Device\Harddisk0\DR0 - Size: 0x25433D6000 (149.05 Gb), SectorSize: 0x200, Cylinders: 0x4C01, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054 13:09:26.0359 3720 ============================================================ 13:09:26.0359 3720 \Device\Harddisk0\DR0: 13:09:26.0359 3720 MBR partitions: 13:09:26.0359 3720 \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x3F, BlocksNum 0x11DDAE23 13:09:26.0359 3720 ============================================================ 13:09:26.0468 3720 C: <-> \Device\Harddisk0\DR0\Partition0 13:09:26.0484 3720 ============================================================ 13:09:26.0484 3720 Initialize success 13:09:26.0484 3720 ============================================================ 13:09:29.0031 3340 ============================================================ 13:09:29.0031 3340 Scan started 13:09:29.0031 3340 Mode: Manual; 13:09:29.0031 3340 ============================================================ 13:09:30.0843 3340 !SASCORE (c0393eb99a6c72c6bef9bfc4a72b33a6) C:\Program Files\SUPERAntiSpyware\SASCORE.EXE 13:09:30.0906 3340 !SASCORE - ok 13:09:31.0109 3340 Abiosdsk - ok 13:09:31.0125 3340 abp480n5 - ok 13:09:31.0187 3340 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys 13:09:31.0281 3340 ACPI - ok 13:09:31.0312 3340 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\DRIVERS\ACPIEC.sys 13:09:31.0359 3340 ACPIEC - ok 13:09:31.0390 3340 adpu160m - ok 13:09:31.0484 3340 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys 13:09:31.0562 3340 aec - ok 13:09:31.0625 3340 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys 13:09:31.0812 3340 AFD - ok 13:09:31.0828 3340 Aha154x - ok 13:09:31.0843 3340 aic78u2 - ok 13:09:31.0890 3340 aic78xx - ok 13:09:31.0953 3340 Alerter (a9a3daa780ca6c9671a19d52456705b4) C:\WINDOWS\system32\alrsvc.dll 13:09:32.0000 3340 Alerter - ok 13:09:32.0031 3340 ALG (8c515081584a38aa007909cd02020b3d) C:\WINDOWS\System32\alg.exe 13:09:32.0093 3340 ALG - ok 13:09:32.0109 3340 AliIde - ok 13:09:32.0468 3340 Ambfilt (f6af59d6eee5e1c304f7f73706ad11d8) C:\WINDOWS\system32\drivers\Ambfilt.sys 13:09:32.0984 3340 Ambfilt - ok 13:09:33.0375 3340 amsint - ok 13:09:33.0593 3340 AntiVirSchedulerService (b4837fe56d76b2e9ea90e5365cf6a2be) C:\Program Files\Avira\AntiVir Desktop\sched.exe 13:09:33.0984 3340 AntiVirSchedulerService - ok 13:09:34.0296 3340 AntiVirService (df5a3016052755c910a206058b4a1729) C:\Program Files\Avira\AntiVir Desktop\avguard.exe 13:09:34.0375 3340 AntiVirService - ok 13:09:34.0375 3340 AppMgmt - ok 13:09:34.0750 3340 AR5416 (7d53e5646ba23fd51296f7ef8979a000) C:\WINDOWS\system32\DRIVERS\athw.sys 13:09:35.0062 3340 AR5416 - ok 13:09:35.0062 3340 asc - ok 13:09:35.0078 3340 asc3350p - ok 13:09:35.0093 3340 asc3550 - ok 13:09:35.0328 3340 aspnet_state (776acefa0ca9df0faa51a5fb2f435705) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\aspnet_state.exe 13:09:35.0500 3340 aspnet_state - ok 13:09:35.0687 3340 AsusACPI (12415a4b61ded200fe9932b47a35fa42) C:\WINDOWS\system32\DRIVERS\ASUSACPI.sys 13:09:35.0796 3340 AsusACPI - ok 13:09:35.0968 3340 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys 13:09:36.0093 3340 AsyncMac - ok 13:09:36.0171 3340 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys 13:09:36.0171 3340 atapi - ok 13:09:36.0187 3340 Atdisk - ok 13:09:36.0218 3340 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys 13:09:36.0250 3340 Atmarpc - ok 13:09:36.0343 3340 AudioSrv (def7a7882bec100fe0b2ce2549188f9d) C:\WINDOWS\System32\audiosrv.dll 13:09:36.0406 3340 AudioSrv - ok 13:09:36.0484 3340 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys 13:09:36.0515 3340 audstub - ok 13:09:36.0765 3340 avgio (0b497c79824f8e1bf22fa6aacd3de3a0) C:\Program Files\Avira\AntiVir Desktop\avgio.sys 13:09:36.0859 3340 avgio - ok 13:09:36.0953 3340 avgntflt (1e4114685de1ffa9675e09c6a1fb3f4b) C:\WINDOWS\system32\DRIVERS\avgntflt.sys 13:09:37.0015 3340 avgntflt - ok 13:09:37.0109 3340 avipbb (0f78d3dae6dedd99ae54c9491c62adf2) C:\WINDOWS\system32\DRIVERS\avipbb.sys 13:09:37.0171 3340 avipbb - ok 13:09:37.0265 3340 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys 13:09:37.0343 3340 Beep - ok 13:09:37.0468 3340 BITS (574738f61fca2935f5265dc4e5691314) C:\WINDOWS\system32\qmgr.dll 13:09:37.0640 3340 BITS - ok 13:09:37.0718 3340 Browser (a06ce3399d16db864f55faeb1f1927a9) C:\WINDOWS\System32\browser.dll 13:09:37.0937 3340 Browser - ok 13:09:37.0937 3340 btaudio - ok 13:09:37.0968 3340 BTDriver - ok 13:09:37.0984 3340 BTWDNDIS - ok 13:09:38.0031 3340 btwhid - ok 13:09:38.0046 3340 BTWUSB - ok 13:09:38.0406 3340 catchme - ok 13:09:38.0625 3340 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys 13:09:38.0750 3340 cbidf2k - ok 13:09:38.0859 3340 CCDECODE (0be5aef125be881c4f854c554f2b025c) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys 13:09:38.0968 3340 CCDECODE - ok 13:09:38.0984 3340 cd20xrnt - ok 13:09:39.0062 3340 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys 13:09:39.0156 3340 Cdaudio - ok 13:09:39.0218 3340 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys 13:09:39.0281 3340 Cdfs - ok 13:09:39.0359 3340 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys 13:09:39.0421 3340 Cdrom - ok 13:09:39.0437 3340 Changer - ok 13:09:39.0609 3340 CiSvc (1cfe720eb8d93a7158a4ebc3ab178bde) C:\WINDOWS\system32\cisvc.exe 13:09:39.0796 3340 CiSvc - ok 13:09:39.0890 3340 CLBStor (cc82215750723d839dbc5d2d625fc130) C:\WINDOWS\system32\drivers\CLBStor.sys 13:09:39.0984 3340 CLBStor - ok 13:09:40.0062 3340 CLBUDFR (c002f79e6ee9bdf442514435c3d2bcb6) C:\WINDOWS\system32\drivers\CLBUDFR.sys 13:09:40.0203 3340 CLBUDFR - ok 13:09:40.0250 3340 ClipSrv (34cbe729f38138217f9c80212a2a0c82) C:\WINDOWS\system32\clipsrv.exe 13:09:40.0359 3340 ClipSrv - ok 13:09:40.0593 3340 clr_optimization_v4.0.30319_32 (c5a75eb48e2344abdc162bda79e16841) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe 13:09:40.0875 3340 clr_optimization_v4.0.30319_32 - ok 13:09:40.0953 3340 CmBatt (0f6c187d38d98f8df904589a5f94d411) C:\WINDOWS\system32\DRIVERS\CmBatt.sys 13:09:40.0984 3340 CmBatt - ok 13:09:41.0000 3340 CmdIde - ok 13:09:41.0046 3340 Compbatt (6e4c9f21f0fae8940661144f41b13203) C:\WINDOWS\system32\DRIVERS\compbatt.sys 13:09:41.0078 3340 Compbatt - ok 13:09:41.0109 3340 COMSysApp - ok 13:09:41.0140 3340 Cpqarray - ok 13:09:41.0250 3340 CryptSvc (3d4e199942e29207970e04315d02ad3b) C:\WINDOWS\System32\cryptsvc.dll 13:09:41.0312 3340 CryptSvc - ok 13:09:41.0328 3340 dac2w2k - ok 13:09:41.0359 3340 dac960nt - ok 13:09:41.0515 3340 DcomLaunch (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\system32\rpcss.dll 13:09:41.0531 3340 DcomLaunch - ok 13:09:41.0640 3340 Dhcp (5e38d7684a49cacfb752b046357e0589) C:\WINDOWS\System32\dhcpcsvc.dll 13:09:41.0953 3340 Dhcp - ok 13:09:42.0093 3340 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys 13:09:42.0156 3340 Disk - ok 13:09:42.0171 3340 dmadmin - ok 13:09:42.0562 3340 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys 13:09:43.0125 3340 dmboot - ok 13:09:43.0218 3340 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys 13:09:43.0296 3340 dmio - ok 13:09:43.0343 3340 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys 13:09:43.0406 3340 dmload - ok 13:09:43.0453 3340 dmserver (57edec2e5f59f0335e92f35184bc8631) C:\WINDOWS\System32\dmserver.dll 13:09:43.0531 3340 dmserver - ok 13:09:43.0625 3340 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys 13:09:43.0718 3340 DMusic - ok 13:09:43.0781 3340 Dnscache (5f7e24fa9eab896051ffb87f840730d2) C:\WINDOWS\System32\dnsrslvr.dll 13:09:43.0921 3340 Dnscache - ok 13:09:43.0984 3340 Dot3svc (0f0f6e687e5e15579ef4da8dd6945814) C:\WINDOWS\System32\dot3svc.dll 13:09:44.0125 3340 Dot3svc - ok 13:09:44.0140 3340 dpti2o - ok 13:09:44.0234 3340 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys 13:09:44.0265 3340 drmkaud - ok 13:09:44.0343 3340 EapHost (2187855a7703adef0cef9ee4285182cc) C:\WINDOWS\System32\eapsvc.dll 13:09:44.0421 3340 EapHost - ok 13:09:44.0484 3340 ERSvc (bc93b4a066477954555966d77fec9ecb) C:\WINDOWS\System32\ersvc.dll 13:09:44.0515 3340 ERSvc - ok 13:09:44.0609 3340 Eventlog (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe 13:09:44.0828 3340 Eventlog - ok 13:09:44.0968 3340 EventSystem (d4991d98f2db73c60d042f1aef79efae) C:\WINDOWS\system32\es.dll 13:09:45.0046 3340 EventSystem - ok 13:09:45.0187 3340 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys 13:09:45.0265 3340 Fastfat - ok 13:09:45.0390 3340 FastUserSwitchingCompatibility (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll 13:09:45.0515 3340 FastUserSwitchingCompatibility - ok 13:09:45.0734 3340 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\drivers\Fdc.sys 13:09:45.0890 3340 Fdc - ok 13:09:45.0984 3340 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys 13:09:46.0046 3340 Fips - ok 13:09:46.0093 3340 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\drivers\Flpydisk.sys 13:09:46.0140 3340 Flpydisk - ok 13:09:46.0250 3340 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\DRIVERS\fltMgr.sys 13:09:46.0468 3340 FltMgr - ok 13:09:46.0578 3340 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys 13:09:46.0609 3340 Fs_Rec - ok 13:09:46.0671 3340 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys 13:09:46.0781 3340 Ftdisk - ok 13:09:46.0890 3340 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys 13:09:46.0984 3340 Gpc - ok 13:09:47.0203 3340 gusvc (c1b577b2169900f4cf7190c39f085794) C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe 13:09:47.0390 3340 gusvc - ok 13:09:47.0515 3340 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys 13:09:47.0562 3340 HDAudBus - ok 13:09:47.0718 3340 helpsvc (4fcca060dfe0c51a09dd5c3843888bcd) C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll 13:09:47.0750 3340 helpsvc - ok 13:09:47.0796 3340 HidServ (deb04da35cc871b6d309b77e1443c796) C:\WINDOWS\System32\hidserv.dll 13:09:47.0875 3340 HidServ - ok 13:09:47.0953 3340 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys 13:09:47.0984 3340 hidusb - ok 13:09:48.0078 3340 hkmsvc (8878bd685e490239777bfe51320b88e9) C:\WINDOWS\System32\kmsvc.dll 13:09:48.0250 3340 hkmsvc - ok 13:09:48.0312 3340 hpn - ok 13:09:48.0437 3340 HPZid412 (5faba4775d4c61e55ec669d643ffc71f) C:\WINDOWS\system32\DRIVERS\HPZid412.sys 13:09:48.0484 3340 HPZid412 - ok 13:09:48.0500 3340 HPZipr12 (a3c43980ee1f1beac778b44ea65dbdd4) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys 13:09:48.0546 3340 HPZipr12 - ok 13:09:48.0593 3340 HPZius12 (2906949bd4e206f2bb0dd1896ce9f66f) C:\WINDOWS\system32\DRIVERS\HPZius12.sys 13:09:48.0640 3340 HPZius12 - ok 13:09:48.0750 3340 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys 13:09:49.0281 3340 HTTP - ok 13:09:49.0359 3340 HTTPFilter (6100a808600f44d999cebdef8841c7a3) C:\WINDOWS\System32\w3ssl.dll 13:09:49.0437 3340 HTTPFilter - ok 13:09:49.0453 3340 i2omgmt - ok 13:09:49.0453 3340 i2omp - ok 13:09:49.0546 3340 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\DRIVERS\i8042prt.sys 13:09:49.0593 3340 i8042prt - ok 13:09:50.0281 3340 ialm (0f68e2ec713f132ffb19e45415b09679) C:\WINDOWS\system32\DRIVERS\igxpmp32.sys 13:09:50.0609 3340 ialm - ok 13:09:50.0843 3340 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys 13:09:50.0890 3340 Imapi - ok 13:09:51.0031 3340 ImapiService (30deaf54a9755bb8546168cfe8a6b5e1) C:\WINDOWS\system32\imapi.exe 13:09:51.0109 3340 ImapiService - ok 13:09:51.0171 3340 ini910u - ok 13:09:51.0968 3340 IntcAzAudAddService (816a4f17dffdeeb01896fe05991838e0) C:\WINDOWS\system32\drivers\RtkHDAud.sys 13:09:52.0359 3340 IntcAzAudAddService - ok 13:09:52.0625 3340 IntelIde - ok 13:09:52.0781 3340 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys 13:09:52.0859 3340 intelppm - ok 13:09:52.0937 3340 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys 13:09:53.0015 3340 Ip6Fw - ok 13:09:53.0078 3340 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys 13:09:53.0156 3340 IpFilterDriver - ok 13:09:53.0234 3340 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys 13:09:53.0312 3340 IpInIp - ok 13:09:53.0343 3340 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys 13:09:53.0421 3340 IpNat - ok 13:09:53.0515 3340 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys 13:09:53.0625 3340 IPSec - ok 13:09:53.0734 3340 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys 13:09:53.0828 3340 IRENUM - ok 13:09:53.0953 3340 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys 13:09:54.0000 3340 isapnp - ok 13:09:54.0109 3340 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys 13:09:54.0140 3340 Kbdclass - ok 13:09:54.0218 3340 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys 13:09:54.0312 3340 kbdhid - ok 13:09:54.0421 3340 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys 13:09:54.0515 3340 kmixer - ok 13:09:54.0562 3340 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys 13:09:54.0609 3340 KSecDD - ok 13:09:54.0671 3340 Ktp (d1669c3eb818b4264be85fb7705acfc8) C:\WINDOWS\system32\DRIVERS\ETD.sys 13:09:54.0765 3340 Ktp - ok 13:09:54.0828 3340 L1e (fa46f5d09edf93e0c71fe6500fe3f4ae) C:\WINDOWS\system32\DRIVERS\l1e51x86.sys 13:09:54.0906 3340 L1e - ok 13:09:55.0046 3340 LanmanServer (3a7c3cbe5d96b8ae96ce81f0b22fb527) C:\WINDOWS\System32\srvsvc.dll 13:09:55.0109 3340 LanmanServer - ok 13:09:55.0203 3340 lanmanworkstation (a8888a5327621856c0cec4e385f69309) C:\WINDOWS\System32\wkssvc.dll 13:09:55.0296 3340 lanmanworkstation - ok 13:09:55.0312 3340 lbrtfdc - ok 13:09:55.0484 3340 LmHosts (a7db739ae99a796d91580147e919cc59) C:\WINDOWS\System32\lmhsvc.dll 13:09:55.0546 3340 LmHosts - ok 13:09:55.0625 3340 mbamchameleon (6c1b3c47915a8bf6bd752c9d476b1ca5) C:\WINDOWS\system32\drivers\mbamchameleon.sys 13:09:55.0640 3340 mbamchameleon - ok 13:09:55.0703 3340 MBAMProtector (6dfe7f2e8e8a337263aa5c92a215f161) C:\WINDOWS\system32\drivers\mbam.sys 13:09:55.0812 3340 MBAMProtector - ok 13:09:56.0156 3340 MBAMService (43683e970f008c93c9429ef428147a54) C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe 13:09:56.0203 3340 MBAMService - ok 13:09:56.0312 3340 McciCMService (f8b823414a22dbf3bec10dcaa5f93cd8) C:\Program Files\Common Files\Motive\McciCMService.exe 13:09:56.0406 3340 McciCMService - ok 13:09:56.0468 3340 Messenger (986b1ff5814366d71e0ac5755c88f2d3) C:\WINDOWS\System32\msgsvc.dll 13:09:56.0546 3340 Messenger - ok 13:09:56.0750 3340 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys 13:09:56.0765 3340 mnmdd - ok 13:09:56.0875 3340 mnmsrvc (d18f1f0c101d06a1c1adf26eed16fcdd) C:\WINDOWS\system32\mnmsrvc.exe 13:09:57.0031 3340 mnmsrvc - ok 13:09:57.0109 3340 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys 13:09:57.0156 3340 Modem - ok 13:09:57.0375 3340 Monfilt (9fa7207d1b1adead88ae8eed9cdbbaa5) C:\WINDOWS\system32\drivers\Monfilt.sys 13:09:57.0609 3340 Monfilt - ok 13:09:57.0734 3340 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys 13:09:57.0781 3340 Mouclass - ok 13:09:57.0906 3340 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys 13:09:57.0937 3340 mouhid - ok 13:09:58.0015 3340 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys 13:09:58.0093 3340 MountMgr - ok 13:09:58.0265 3340 MozillaMaintenance (46297fa8e30a6007f14118fc2b942fbc) C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe 13:09:58.0359 3340 MozillaMaintenance - ok 13:09:58.0406 3340 MpFilter (d993bea500e7382dc4e760bf4f35efcb) C:\WINDOWS\system32\DRIVERS\MpFilter.sys 13:09:58.0515 3340 MpFilter - ok 13:09:58.0546 3340 mraid35x - ok 13:09:58.0656 3340 MREMP50 (9bd4dcb5412921864a7aacdedfbd1923) C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS 13:09:58.0812 3340 MREMP50 - ok 13:09:58.0859 3340 MRESP50 (07c02c892e8e1a72d6bf35004f0e9c5e) C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS 13:09:58.0921 3340 MRESP50 - ok 13:09:59.0046 3340 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys 13:09:59.0171 3340 MRxDAV - ok 13:09:59.0281 3340 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 13:09:59.0453 3340 MRxSmb - ok 13:09:59.0531 3340 MSDTC (a137f1470499a205abbb9aafb3b6f2b1) C:\WINDOWS\system32\msdtc.exe 13:09:59.0578 3340 MSDTC - ok 13:09:59.0734 3340 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys 13:09:59.0781 3340 Msfs - ok 13:09:59.0796 3340 MSIServer - ok 13:09:59.0875 3340 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys 13:09:59.0906 3340 MSKSSRV - ok 13:10:00.0062 3340 MsMpSvc (24516bf4e12a46cb67302e2cdcb8cddf) c:\Program Files\Microsoft Security Client\MsMpEng.exe 13:10:00.0125 3340 MsMpSvc - ok 13:10:00.0140 3340 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys 13:10:00.0203 3340 MSPCLOCK - ok 13:10:00.0218 3340 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys 13:10:00.0250 3340 MSPQM - ok 13:10:00.0328 3340 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys 13:10:00.0359 3340 mssmbios - ok 13:10:00.0421 3340 MSTEE (e53736a9e30c45fa9e7b5eac55056d1d) C:\WINDOWS\system32\drivers\MSTEE.sys 13:10:00.0484 3340 MSTEE - ok 13:10:00.0546 3340 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys 13:10:00.0609 3340 Mup - ok 13:10:00.0796 3340 NABTSFEC (5b50f1b2a2ed47d560577b221da734db) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys 13:10:00.0906 3340 NABTSFEC - ok 13:10:01.0000 3340 napagent (0102140028fad045756796e1c685d695) C:\WINDOWS\System32\qagentrt.dll 13:10:01.0156 3340 napagent - ok 13:10:01.0296 3340 NAVENG - ok 13:10:01.0312 3340 NAVEX15 - ok 13:10:01.0406 3340 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys 13:10:01.0531 3340 NDIS - ok 13:10:01.0593 3340 NdisIP (7ff1f1fd8609c149aa432f95a8163d97) C:\WINDOWS\system32\DRIVERS\NdisIP.sys 13:10:01.0609 3340 NdisIP - ok 13:10:01.0703 3340 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys 13:10:01.0750 3340 NdisTapi - ok 13:10:01.0843 3340 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys 13:10:01.0921 3340 Ndisuio - ok 13:10:01.0937 3340 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys 13:10:02.0015 3340 NdisWan - ok 13:10:02.0093 3340 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys 13:10:02.0218 3340 NDProxy - ok 13:10:02.0281 3340 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys 13:10:02.0328 3340 NetBIOS - ok 13:10:02.0421 3340 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys 13:10:02.0578 3340 NetBT - ok 13:10:02.0750 3340 NetDDE (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe 13:10:02.0812 3340 NetDDE - ok 13:10:02.0828 3340 NetDDEdsdm (b857ba82860d7ff85ae29b095645563b) C:\WINDOWS\system32\netdde.exe 13:10:02.0843 3340 NetDDEdsdm - ok 13:10:02.0937 3340 Netlogon (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 13:10:02.0984 3340 Netlogon - ok 13:10:03.0140 3340 Netman (13e67b55b3abd7bf3fe7aae5a0f9a9de) C:\WINDOWS\System32\netman.dll 13:10:03.0265 3340 Netman - ok 13:10:03.0437 3340 NetTcpPortSharing (d22cd77d4f0d63d1169bb35911bff12d) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\SMSvcHost.exe 13:10:03.0656 3340 NetTcpPortSharing - ok 13:10:03.0828 3340 Nla (943337d786a56729263071623bbb9de5) C:\WINDOWS\System32\mswsock.dll 13:10:03.0843 3340 Nla - ok 13:10:03.0984 3340 Norton Internet Security - ok 13:10:04.0109 3340 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys 13:10:04.0281 3340 Npfs - ok 13:10:04.0390 3340 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys 13:10:04.0531 3340 Ntfs - ok 13:10:04.0546 3340 NtLmSsp (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 13:10:04.0562 3340 NtLmSsp - ok 13:10:04.0656 3340 NtmsSvc (156f64a3345bd23c600655fb4d10bc08) C:\WINDOWS\system32\ntmssvc.dll 13:10:04.0812 3340 NtmsSvc - ok 13:10:04.0890 3340 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys 13:10:04.0906 3340 Null - ok 13:10:04.0968 3340 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys 13:10:05.0031 3340 NwlnkFlt - ok 13:10:05.0078 3340 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys 13:10:05.0156 3340 NwlnkFwd - ok 13:10:05.0453 3340 OpenVPNService (a861b4223b6b8ee13e1a5f7199b7e6c5) C:\Program Files\personalVPN\bin\openvpnserv.exe 13:10:05.0500 3340 OpenVPNService - ok 13:10:05.0578 3340 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys 13:10:05.0656 3340 Parport - ok 13:10:05.0750 3340 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys 13:10:05.0828 3340 PartMgr - ok 13:10:05.0906 3340 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys 13:10:05.0984 3340 ParVdm - ok 13:10:06.0078 3340 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys 13:10:06.0171 3340 PCI - ok 13:10:06.0203 3340 PCIDump - ok 13:10:06.0234 3340 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys 13:10:06.0281 3340 PCIIde - ok 13:10:06.0375 3340 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys 13:10:06.0437 3340 Pcmcia - ok 13:10:06.0453 3340 PDCOMP - ok 13:10:06.0484 3340 PDFRAME - ok 13:10:06.0500 3340 PDRELI - ok 13:10:06.0531 3340 PDRFRAME - ok 13:10:06.0546 3340 perc2 - ok 13:10:06.0578 3340 perc2hib - ok 13:10:06.0734 3340 PlugPlay (65df52f5b8b6e9bbd183505225c37315) C:\WINDOWS\system32\services.exe 13:10:06.0734 3340 PlugPlay - ok 13:10:06.0750 3340 PolicyAgent (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 13:10:06.0765 3340 PolicyAgent - ok 13:10:06.0843 3340 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys 13:10:06.0921 3340 PptpMiniport - ok 13:10:06.0921 3340 ProtectedStorage (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 13:10:06.0921 3340 ProtectedStorage - ok 13:10:07.0046 3340 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys 13:10:07.0203 3340 PSched - ok 13:10:07.0265 3340 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys 13:10:07.0328 3340 Ptilink - ok 13:10:07.0421 3340 PxHelp20 (49452bfcec22f36a7a9b9c2181bc3042) C:\WINDOWS\system32\Drivers\PxHelp20.sys 13:10:07.0515 3340 PxHelp20 - ok 13:10:07.0546 3340 ql1080 - ok 13:10:07.0578 3340 Ql10wnt - ok 13:10:07.0609 3340 ql12160 - ok 13:10:07.0625 3340 ql1240 - ok 13:10:07.0656 3340 ql1280 - ok 13:10:07.0750 3340 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys 13:10:07.0843 3340 RasAcd - ok 13:10:07.0921 3340 RasAuto (ad188be7bdf94e8df4ca0a55c00a5073) C:\WINDOWS\System32\rasauto.dll 13:10:08.0015 3340 RasAuto - ok 13:10:08.0093 3340 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 13:10:08.0171 3340 Rasl2tp - ok 13:10:08.0234 3340 RasMan (76a9a3cbeadd68cc57cda5e1d7448235) C:\WINDOWS\System32\rasmans.dll 13:10:08.0296 3340 RasMan - ok 13:10:08.0390 3340 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys 13:10:08.0468 3340 RasPppoe - ok 13:10:08.0484 3340 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys 13:10:08.0531 3340 Raspti - ok 13:10:08.0671 3340 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys 13:10:08.0796 3340 Rdbss - ok 13:10:08.0875 3340 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys 13:10:08.0906 3340 RDPCDD - ok 13:10:09.0062 3340 RDPWD (6589db6e5969f8eee594cf71171c5028) C:\WINDOWS\system32\drivers\RDPWD.sys 13:10:09.0281 3340 RDPWD - ok 13:10:09.0406 3340 RDSessMgr (3c37bf86641bda977c3bf8a840f3b7fa) C:\WINDOWS\system32\sessmgr.exe 13:10:09.0515 3340 RDSessMgr - ok 13:10:09.0593 3340 redbook (f828dd7e1419b6653894a8f97a0094c5) C:\WINDOWS\system32\DRIVERS\redbook.sys 13:10:09.0640 3340 redbook - ok 13:10:09.0703 3340 RemoteAccess (7e699ff5f59b5d9de5390e3c34c67cf5) C:\WINDOWS\System32\mprdim.dll 13:10:09.0812 3340 RemoteAccess - ok 13:10:09.0890 3340 RpcLocator (aaed593f84afa419bbae8572af87cf6a) C:\WINDOWS\system32\locator.exe 13:10:09.0984 3340 RpcLocator - ok 13:10:10.0125 3340 RpcSs (6b27a5c03dfb94b4245739065431322c) C:\WINDOWS\System32\rpcss.dll 13:10:10.0156 3340 RpcSs - ok 13:10:10.0265 3340 RSVP (471b3f9741d762abe75e9deea4787e47) C:\WINDOWS\system32\rsvp.exe 13:10:10.0375 3340 RSVP - ok 13:10:10.0421 3340 SamSs (bf2466b3e18e970d8a976fb95fc1ca85) C:\WINDOWS\system32\lsass.exe 13:10:10.0437 3340 SamSs - ok 13:10:10.0703 3340 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS 13:10:10.0796 3340 SASDIFSV - ok 13:10:10.0890 3340 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS 13:10:11.0031 3340 SASKUTIL - ok 13:10:11.0109 3340 SCardSvr (86d007e7a654b9a71d1d7d856b104353) C:\WINDOWS\System32\SCardSvr.exe 13:10:11.0218 3340 SCardSvr - ok 13:10:11.0312 3340 Schedule (0a9a7365a1ca4319aa7c1d6cd8e4eafa) C:\WINDOWS\system32\schedsvc.dll 13:10:11.0390 3340 Schedule - ok 13:10:11.0500 3340 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys 13:10:11.0609 3340 Secdrv - ok 13:10:11.0718 3340 seclogon (cbe612e2bb6a10e3563336191eda1250) C:\WINDOWS\System32\seclogon.dll 13:10:11.0843 3340 seclogon - ok 13:10:11.0875 3340 SENS (7fdd5d0684eca8c1f68b4d99d124dcd0) C:\WINDOWS\system32\sens.dll 13:10:11.0953 3340 SENS - ok 13:10:12.0078 3340 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys 13:10:12.0156 3340 Serial - ok 13:10:12.0265 3340 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys 13:10:12.0296 3340 Sfloppy - ok 13:10:12.0406 3340 SharedAccess (83f41d0d89645d7235c051ab1d9523ac) C:\WINDOWS\System32\ipnathlp.dll 13:10:12.0468 3340 SharedAccess - ok 13:10:12.0546 3340 ShellHWDetection (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll 13:10:12.0546 3340 ShellHWDetection - ok 13:10:12.0562 3340 Simbad - ok 13:10:12.0640 3340 SLIP (866d538ebe33709a5c9f5c62b73b7d14) C:\WINDOWS\system32\DRIVERS\SLIP.sys 13:10:12.0718 3340 SLIP - ok 13:10:12.0734 3340 Sparrow - ok 13:10:12.0828 3340 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys 13:10:12.0937 3340 splitter - ok 13:10:13.0015 3340 Spooler (60784f891563fb1b767f70117fc2428f) C:\WINDOWS\system32\spoolsv.exe 13:10:13.0125 3340 Spooler - ok 13:10:13.0218 3340 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys 13:10:13.0390 3340 sr - ok 13:10:13.0531 3340 srservice (3805df0ac4296a34ba4bf93b346cc378) C:\WINDOWS\system32\srsvc.dll 13:10:13.0687 3340 srservice - ok 13:10:13.0703 3340 SRTSP - ok 13:10:13.0734 3340 SRTSPX - ok 13:10:13.0812 3340 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys 13:10:13.0890 3340 Srv - ok 13:10:13.0984 3340 SSDPSRV (0a5679b3714edab99e357057ee88fca6) C:\WINDOWS\System32\ssdpsrv.dll 13:10:14.0046 3340 SSDPSRV - ok 13:10:14.0140 3340 ssmdrv (a36ee93698802cd899f98bfd553d8185) C:\WINDOWS\system32\DRIVERS\ssmdrv.sys 13:10:14.0281 3340 ssmdrv - ok 13:10:14.0328 3340 stisvc (8bad69cbac032d4bbacfce0306174c30) C:\WINDOWS\system32\wiaservc.dll 13:10:14.0390 3340 stisvc - ok 13:10:14.0453 3340 streamip (77813007ba6265c4b6098187e6ed79d2) C:\WINDOWS\system32\DRIVERS\StreamIP.sys 13:10:14.0500 3340 streamip - ok 13:10:14.0593 3340 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys 13:10:14.0625 3340 swenum - ok 13:10:14.0765 3340 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys 13:10:14.0796 3340 swmidi - ok 13:10:14.0812 3340 SwPrv - ok 13:10:14.0828 3340 symc810 - ok 13:10:14.0875 3340 symc8xx - ok 13:10:14.0890 3340 sym_hi - ok 13:10:14.0906 3340 sym_u3 - ok 13:10:14.0984 3340 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys 13:10:15.0031 3340 sysaudio - ok 13:10:15.0140 3340 SysmonLog (c7abbc59b43274b1109df6b24d617051) C:\WINDOWS\system32\smlogsvc.exe 13:10:15.0203 3340 SysmonLog - ok 13:10:15.0328 3340 tap0801 (0c82061920a2de35d33c2c2bb83b1e98) C:\WINDOWS\system32\DRIVERS\tap0801.sys 13:10:15.0406 3340 tap0801 - ok 13:10:15.0500 3340 tap0901 (09a4e6ae5e2e8b69dc14208241ca20a5) C:\WINDOWS\system32\DRIVERS\tap0901.sys 13:10:15.0515 3340 tap0901 - ok 13:10:15.0625 3340 TapiSrv (3cb78c17bb664637787c9a1c98f79c38) C:\WINDOWS\System32\tapisrv.dll 13:10:15.0656 3340 TapiSrv - ok 13:10:15.0781 3340 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys 13:10:15.0968 3340 Tcpip - ok 13:10:16.0046 3340 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys 13:10:16.0093 3340 TDPIPE - ok 13:10:16.0187 3340 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys 13:10:16.0265 3340 TDTCP - ok 13:10:16.0343 3340 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys 13:10:16.0375 3340 TermDD - ok 13:10:16.0437 3340 TermService (ff3477c03be7201c294c35f684b3479f) C:\WINDOWS\System32\termsrv.dll 13:10:16.0578 3340 TermService - ok 13:10:16.0671 3340 Themes (99bc0b50f511924348be19c7c7313bbf) C:\WINDOWS\System32\shsvcs.dll 13:10:16.0671 3340 Themes - ok 13:10:16.0703 3340 TMPassthruMP - ok 13:10:16.0718 3340 TosIde - ok 13:10:16.0781 3340 TrkWks (55bca12f7f523d35ca3cb833c725f54e) C:\WINDOWS\system32\trkwks.dll 13:10:16.0906 3340 TrkWks - ok 13:10:16.0984 3340 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys 13:10:17.0062 3340 Udfs - ok 13:10:17.0078 3340 ultra - ok 13:10:17.0234 3340 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys 13:10:17.0375 3340 Update - ok 13:10:17.0437 3340 upnphost (1ebafeb9a3fbdc41b8d9c7f0f687ad91) C:\WINDOWS\System32\upnphost.dll 13:10:17.0546 3340 upnphost - ok 13:10:17.0562 3340 UPS (05365fb38fca1e98f7a566aaaf5d1815) C:\WINDOWS\System32\ups.exe 13:10:17.0609 3340 UPS - ok 13:10:17.0609 3340 USBAAPL - ok 13:10:17.0718 3340 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys 13:10:17.0781 3340 usbccgp - ok 13:10:17.0859 3340 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys 13:10:17.0890 3340 usbehci - ok 13:10:17.0968 3340 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys 13:10:18.0015 3340 usbhub - ok 13:10:18.0109 3340 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys 13:10:18.0171 3340 usbprint - ok 13:10:18.0234 3340 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys 13:10:18.0265 3340 usbscan - ok 13:10:18.0281 3340 usbstor (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 13:10:18.0343 3340 usbstor - ok 13:10:18.0437 3340 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys 13:10:18.0453 3340 usbuhci - ok 13:10:18.0515 3340 usbvideo (63bbfca7f390f4c49ed4b96bfb1633e0) C:\WINDOWS\system32\Drivers\usbvideo.sys 13:10:18.0578 3340 usbvideo - ok 13:10:18.0640 3340 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys 13:10:18.0750 3340 VgaSave - ok 13:10:18.0750 3340 ViaIde - ok 13:10:18.0859 3340 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys 13:10:18.0906 3340 VolSnap - ok 13:10:18.0984 3340 VSS (7a9db3a67c333bf0bd42e42b8596854b) C:\WINDOWS\System32\vssvc.exe 13:10:19.0078 3340 VSS - ok 13:10:19.0187 3340 W32Time (54af4b1d5459500ef0937f6d33b1914f) C:\WINDOWS\system32\w32time.dll 13:10:19.0390 3340 W32Time - ok 13:10:19.0421 3340 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys 13:10:19.0453 3340 Wanarp - ok 13:10:19.0468 3340 WDICA - ok 13:10:19.0546 3340 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys 13:10:19.0593 3340 wdmaud - ok 13:10:19.0671 3340 WebClient (77a354e28153ad2d5e120a5a8687bc06) C:\WINDOWS\System32\webclnt.dll 13:10:19.0734 3340 WebClient - ok 13:10:19.0906 3340 winmgmt (2d0e4ed081963804ccc196a0929275b5) C:\WINDOWS\system32\wbem\WMIsvc.dll 13:10:19.0968 3340 winmgmt - ok 13:10:20.0046 3340 WmdmPmSN (c7e39ea41233e9f5b86c8da3a9f1e4a8) C:\WINDOWS\system32\mspmsnsv.dll 13:10:20.0109 3340 WmdmPmSN - ok 13:10:20.0187 3340 WmiApSrv (e0673f1106e62a68d2257e376079f821) C:\WINDOWS\system32\wbem\wmiapsrv.exe 13:10:20.0250 3340 WmiApSrv - ok 13:10:20.0515 3340 WPFFontCache_v0400 (dcf3e3edf5109ee8bc02fe6e1f045795) C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe 13:10:20.0640 3340 WPFFontCache_v0400 - ok 13:10:20.0718 3340 WS2IFSL (6abe6e225adb5a751622a9cc3bc19ce8) C:\WINDOWS\System32\drivers\ws2ifsl.sys 13:10:20.0796 3340 WS2IFSL - ok 13:10:20.0812 3340 wscsvc (7c278e6408d1dce642230c0585a854d5) C:\WINDOWS\system32\wscsvc.dll 13:10:20.0875 3340 wscsvc - ok 13:10:20.0937 3340 WSTCODEC (c98b39829c2bbd34e454150633c62c78) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS 13:10:20.0984 3340 WSTCODEC - ok 13:10:21.0078 3340 wuauserv (35321fb577cdc98ce3eb3a3eb9e4610a) C:\WINDOWS\system32\wuauserv.dll 13:10:21.0093 3340 wuauserv - ok 13:10:21.0234 3340 WZCSVC (81dc3f549f44b1c1fff022dec9ecf30b) C:\WINDOWS\System32\wzcsvc.dll 13:10:21.0328 3340 WZCSVC - ok 13:10:21.0406 3340 xmlprov (295d21f14c335b53cb8154e5b1f892b9) C:\WINDOWS\System32\xmlprov.dll 13:10:21.0484 3340 xmlprov - ok 13:10:21.0562 3340 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0 13:10:22.0546 3340 \Device\Harddisk0\DR0 - ok 13:10:22.0562 3340 Boot (0x1200) (09a113fe6b6e71cbf12b4d340f4ff5c0) \Device\Harddisk0\DR0\Partition0 13:10:22.0562 3340 \Device\Harddisk0\DR0\Partition0 - ok 13:10:22.0562 3340 ============================================================ 13:10:22.0562 3340 Scan finished 13:10:22.0562 3340 ============================================================ 13:10:22.0609 3812 Detected object count: 0 13:10:22.0609 3812 Actual detected object count: 0 13:10:43.0671 3880 Deinitialize success
  5. Tdsskiller found zero problems/infected files. ONe browser - Google Chrome - is still infected.
  6. MS Safety Scanner shows 0 problems. Still have to run the MBAM scan...
  7. Maurice - Will do. If the machine is left off for several hours, the BIOS screen does flash on at startup, but it's for a split second. I didn't react fast enough to hit the F2 key, which is what should take me into the BIOS. Off to follow the instructions you've posted... and thanks.
  8. Also... I opened Opera, just for the heck of it, and there are no redirects (for now, anyway).
  9. It's F8, and this is what I see: Windows Advanced Options Menu [snip Safe mode Safe mode with nteworking Safe mode with C:/ Enable boot logging Enable VGA mode Last known good config. Directory services restore mode Debugging mode Disable auto restart on sys failure Star Win. normally Reboot Return to OS choices menu * This the only thing I can get to... and it's the logical (and only) choice other than booting directly into XP I really, really wish I could see the Asus BIOS options, but ...
  10. The BIOS used to flash on as you have described, but that was prior to my installation of the Windows Recovery Console (as directed by another volunteer from this board, a few years ago when I was hit by a form of Vundo). So far, I haven't been able to get any information from ASUS, but I'm hoping they will be able to help...
  11. If only it were that simple... The computer that's having problems is an ASUS Eee with Windows Recovery Console installed. It runs XP (SP3). I can't get into the BIOS settings (it seems) in order to be able to change the boot order and get it to boot from a USB drive. And since it's an Eee, it doesn't have a CD/DVD drive. (I have an external, but it has its own proprietary ASUS program installed as a default, and I don't think I don't know enough about how it works to be able to turn it off.) So I have a nicely-formatted USB stick with WD Offline ready to go, but ... I can't get it to work. (Have tried using F8, F10 and F12, but that doesn't get me anywhere... there's no option for a removable drive in the Windows Recovery console.)
  12. Done... what next? (Both Chrome and Firefox are still infected.)
  13. ESET results - C:\System Volume Information\_restore{AC907EA6-59BC-4576-8A6B-DAC903AB0DE6}\RP883\A0264437.exe Win32/Adware.1ClickDownload.B application cleaned by deleting - quarantined
  14. Also... I know you would prefer that I use IE, but I was able to get ESET to dl and start using Firefox. It's dlíng the signature database now... will post results, though I would be more than happy to use IE if you would like.
  15. It won't work - the app loads, and then terminates. Error message reads: "MatsBoot.exe - .NET framework initialization error. Unable to find a version of the runtime to run this application."
Back to top
×
×
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.