Jump to content

Welcome to Geeks to Go - Register now for FREE

Need help with your computer or device? Want to learn new tech skills? You're in the right place!
Geeks to Go is a friendly community of tech experts who can solve any problem you have. Just create a free account and post your question. Our volunteers will reply quickly and guide you through the steps. Don't let tech troubles stop you. Join Geeks to Go now and get the support you need!

How it Works Create Account
Photo

Win7 home security 2012

Started by elee23 , Jul 09 2011 10:20 PM

  • This topic is locked This topic is locked

#16
elee23
Posted 14 July 2011 - 11:55 PM

elee23

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 153 posts
2011/07/14 22:52:09.0057 3592 TDSS rootkit removing tool 2.5.11.0 Jul 11 2011 16:56:56
2011/07/14 22:52:09.0826 3592 ================================================================================
2011/07/14 22:52:09.0826 3592 SystemInfo:
2011/07/14 22:52:09.0826 3592
2011/07/14 22:52:09.0826 3592 OS Version: 6.1.7600 ServicePack: 0.0
2011/07/14 22:52:09.0826 3592 Product type: Workstation
2011/07/14 22:52:09.0826 3592 ComputerName: ISAAC-PC
2011/07/14 22:52:09.0826 3592 UserName: Isaac
2011/07/14 22:52:09.0826 3592 Windows directory: C:\Windows
2011/07/14 22:52:09.0826 3592 System windows directory: C:\Windows
2011/07/14 22:52:09.0826 3592 Running under WOW64
2011/07/14 22:52:09.0826 3592 Processor architecture: Intel x64
2011/07/14 22:52:09.0826 3592 Number of processors: 4
2011/07/14 22:52:09.0827 3592 Page size: 0x1000
2011/07/14 22:52:09.0827 3592 Boot type: Normal boot
2011/07/14 22:52:09.0827 3592 ================================================================================
2011/07/14 22:52:13.0377 3592 Initialize success
2011/07/14 22:52:28.0293 3124 ================================================================================
2011/07/14 22:52:28.0293 3124 Scan started
2011/07/14 22:52:28.0294 3124 Mode: Manual;
2011/07/14 22:52:28.0294 3124 ================================================================================
2011/07/14 22:52:29.0527 3124 1394ohci (1b00662092f9f9568b995902f0cc40d5) C:\Windows\system32\DRIVERS\1394ohci.sys
2011/07/14 22:52:29.0581 3124 Accelerometer (1cffe9c06e66a57dae1452e449a58240) C:\Windows\system32\DRIVERS\Accelerometer.sys
2011/07/14 22:52:29.0615 3124 ACPI (6f11e88748cdefd2f76aa215f97ddfe5) C:\Windows\system32\DRIVERS\ACPI.sys
2011/07/14 22:52:29.0668 3124 AcpiPmi (63b05a0420ce4bf0e4af6dcc7cada254) C:\Windows\system32\DRIVERS\acpipmi.sys
2011/07/14 22:52:29.0739 3124 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
2011/07/14 22:52:29.0797 3124 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
2011/07/14 22:52:29.0846 3124 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
2011/07/14 22:52:29.0957 3124 AFD (6ef20ddf3172e97d69f596fb90602f29) C:\Windows\system32\drivers\afd.sys
2011/07/14 22:52:30.0008 3124 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\DRIVERS\agp440.sys
2011/07/14 22:52:30.0073 3124 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\DRIVERS\aliide.sys
2011/07/14 22:52:30.0134 3124 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\DRIVERS\amdide.sys
2011/07/14 22:52:30.0176 3124 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
2011/07/14 22:52:30.0324 3124 amdkmdag (d1d06810bf7e21f5763eb06cb7e7262b) C:\Windows\system32\DRIVERS\atipmdag.sys
2011/07/14 22:52:30.0510 3124 amdkmdap (6ba71d6616b56816e57394d77dd1bb6f) C:\Windows\system32\DRIVERS\atikmpag.sys
2011/07/14 22:52:30.0572 3124 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
2011/07/14 22:52:30.0643 3124 amdsata (ec7ebab00a4d8448bab68d1e49b4beb9) C:\Windows\system32\drivers\amdsata.sys
2011/07/14 22:52:30.0699 3124 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
2011/07/14 22:52:30.0763 3124 amdxata (db27766102c7bf7e95140a2aa81d042e) C:\Windows\system32\drivers\amdxata.sys
2011/07/14 22:52:30.0808 3124 AmUStor (37ea167782af19301af9c05804948bb2) C:\Windows\system32\drivers\AmUStor.SYS
2011/07/14 22:52:30.0862 3124 AppID (42fd751b27fa0e9c69bb39f39e409594) C:\Windows\system32\drivers\appid.sys
2011/07/14 22:52:30.0936 3124 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
2011/07/14 22:52:30.0976 3124 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
2011/07/14 22:52:31.0035 3124 aswFsBlk (f1dbe3d02ffcdee5246f29b0ecebe6e0) C:\Windows\system32\drivers\aswFsBlk.sys
2011/07/14 22:52:31.0089 3124 aswMonFlt (f3e75dd1bcc358fb4629357ad09e7c84) C:\Windows\system32\drivers\aswMonFlt.sys
2011/07/14 22:52:31.0134 3124 aswRdr (fccbdc045dc12afd1508205117e7ed11) C:\Windows\system32\drivers\aswRdr.sys
2011/07/14 22:52:31.0169 3124 aswSnx (5824dca602a0a30e866bc2ac98c6d970) C:\Windows\system32\drivers\aswSnx.sys
2011/07/14 22:52:31.0217 3124 aswSP (af07b4bef920f90205148f3a05e2974c) C:\Windows\system32\drivers\aswSP.sys
2011/07/14 22:52:31.0258 3124 aswTdi (a3eca5af3b4823a523c285a8df0f9e4f) C:\Windows\system32\drivers\aswTdi.sys
2011/07/14 22:52:31.0300 3124 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/07/14 22:52:31.0343 3124 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\DRIVERS\atapi.sys
2011/07/14 22:52:31.0407 3124 AtiHdmiService (77c149e6d702737b2e372dee166faef8) C:\Windows\system32\drivers\AtiHdmi.sys
2011/07/14 22:52:31.0486 3124 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
2011/07/14 22:52:31.0552 3124 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
2011/07/14 22:52:31.0669 3124 BCM43XX (35756e37d5fdee22fbf27090a14fe608) C:\Windows\system32\DRIVERS\bcmwl664.sys
2011/07/14 22:52:31.0731 3124 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
2011/07/14 22:52:31.0798 3124 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
2011/07/14 22:52:31.0868 3124 bowser (19d20159708e152267e53b66677a4995) C:\Windows\system32\DRIVERS\bowser.sys
2011/07/14 22:52:31.0900 3124 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
2011/07/14 22:52:31.0944 3124 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
2011/07/14 22:52:32.0002 3124 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
2011/07/14 22:52:32.0041 3124 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
2011/07/14 22:52:32.0089 3124 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
2011/07/14 22:52:32.0123 3124 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
2011/07/14 22:52:32.0157 3124 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/07/14 22:52:32.0205 3124 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/07/14 22:52:32.0257 3124 cdrom (83d2d75e1efb81b3450c18131443f7db) C:\Windows\system32\DRIVERS\cdrom.sys
2011/07/14 22:52:32.0312 3124 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
2011/07/14 22:52:32.0358 3124 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
2011/07/14 22:52:32.0416 3124 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/07/14 22:52:32.0431 3124 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\DRIVERS\cmdide.sys
2011/07/14 22:52:32.0470 3124 CNG (f95fd4cb7da00ba2a63ce9f6b5c053e1) C:\Windows\system32\Drivers\cng.sys
2011/07/14 22:52:32.0529 3124 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
2011/07/14 22:52:32.0588 3124 CompositeBus (f26b3a86f6fa87ca360b879581ab4123) C:\Windows\system32\DRIVERS\CompositeBus.sys
2011/07/14 22:52:32.0627 3124 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
2011/07/14 22:52:32.0705 3124 DfsC (9c253ce7311ca60fc11c774692a13208) C:\Windows\system32\Drivers\dfsc.sys
2011/07/14 22:52:32.0742 3124 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
2011/07/14 22:52:32.0771 3124 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
2011/07/14 22:52:32.0819 3124 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
2011/07/14 22:52:32.0868 3124 DVMIO (a298aea9fca253e7eff040a08c7c6376) C:\Windows\system32\DRIVERS\dvmio.sys
2011/07/14 22:52:32.0919 3124 DXGKrnl (1633b9abf52784a1331476397a48cbef) C:\Windows\System32\drivers\dxgkrnl.sys
2011/07/14 22:52:33.0015 3124 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
2011/07/14 22:52:33.0157 3124 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
2011/07/14 22:52:33.0196 3124 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\DRIVERS\errdev.sys
2011/07/14 22:52:33.0248 3124 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
2011/07/14 22:52:33.0284 3124 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
2011/07/14 22:52:33.0315 3124 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
2011/07/14 22:52:33.0359 3124 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
2011/07/14 22:52:33.0377 3124 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
2011/07/14 22:52:33.0392 3124 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/07/14 22:52:33.0436 3124 FltMgr (f7866af72abbaf84b1fa5aa195378c59) C:\Windows\system32\drivers\fltmgr.sys
2011/07/14 22:52:33.0491 3124 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
2011/07/14 22:52:33.0518 3124 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
2011/07/14 22:52:33.0545 3124 fvevol (ae87ba80d0ec3b57126ed2cdc15b24ed) C:\Windows\system32\DRIVERS\fvevol.sys
2011/07/14 22:52:33.0581 3124 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
2011/07/14 22:52:33.0636 3124 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
2011/07/14 22:52:33.0670 3124 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
2011/07/14 22:52:33.0721 3124 HdAudAddService (6410f6f415b2a5a9037224c41da8bf12) C:\Windows\system32\drivers\HdAudio.sys
2011/07/14 22:52:33.0763 3124 HDAudBus (0a49913402747a0b67de940fb42cbdbb) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/07/14 22:52:33.0798 3124 HECIx64 (b6ac71aaa2b10848f57fc49d55a651af) C:\Windows\system32\DRIVERS\HECIx64.sys
2011/07/14 22:52:33.0813 3124 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
2011/07/14 22:52:33.0835 3124 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
2011/07/14 22:52:33.0855 3124 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
2011/07/14 22:52:33.0929 3124 HidUsb (b3bf6b5b50006def50b66306d99fcf6f) C:\Windows\system32\DRIVERS\hidusb.sys
2011/07/14 22:52:33.0991 3124 hpdskflt (05712fddbd45a5864eb326faabc6a4e3) C:\Windows\system32\DRIVERS\hpdskflt.sys
2011/07/14 22:52:34.0031 3124 HpSAMD (0886d440058f203eba0e1825e4355914) C:\Windows\system32\DRIVERS\HpSAMD.sys
2011/07/14 22:52:34.0077 3124 HTTP (cee049cac4efa7f4e1e4ad014414a5d4) C:\Windows\system32\drivers\HTTP.sys
2011/07/14 22:52:34.0119 3124 hwpolicy (f17766a19145f111856378df337a5d79) C:\Windows\system32\drivers\hwpolicy.sys
2011/07/14 22:52:34.0141 3124 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/07/14 22:52:34.0186 3124 iaStor (42e00996dfc13c46366689c0ea8abc5e) C:\Windows\system32\DRIVERS\iaStor.sys
2011/07/14 22:52:34.0243 3124 iaStorV (b75e45c564e944a2657167d197ab29da) C:\Windows\system32\drivers\iaStorV.sys
2011/07/14 22:52:34.0399 3124 igfx (90afab2b5962b1cd5bb23320675d6174) C:\Windows\system32\DRIVERS\igdkmd64.sys
2011/07/14 22:52:34.0555 3124 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
2011/07/14 22:52:34.0600 3124 Impcd (36fdf367a1dabff903e2214023d71368) C:\Windows\system32\DRIVERS\Impcd.sys
2011/07/14 22:52:34.0621 3124 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\DRIVERS\intelide.sys
2011/07/14 22:52:34.0756 3124 intelkmd (90afab2b5962b1cd5bb23320675d6174) C:\Windows\system32\DRIVERS\igdpmd64.sys
2011/07/14 22:52:34.0926 3124 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
2011/07/14 22:52:34.0970 3124 IpFilterDriver (722dd294df62483cecaae6e094b4d695) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/07/14 22:52:34.0996 3124 IPMIDRV (e2b4a4494db7cb9b89b55ca268c337c5) C:\Windows\system32\DRIVERS\IPMIDrv.sys
2011/07/14 22:52:35.0016 3124 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
2011/07/14 22:52:35.0058 3124 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
2011/07/14 22:52:35.0088 3124 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\DRIVERS\isapnp.sys
2011/07/14 22:52:35.0130 3124 iScsiPrt (fa4d2557de56d45b0a346f93564be6e1) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/07/14 22:52:35.0157 3124 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/07/14 22:52:35.0189 3124 kbdhid (6def98f8541e1b5dceb2c822a11f7323) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/07/14 22:52:35.0217 3124 KSecDD (e8b6fcc9c83535c67f835d407620bd27) C:\Windows\system32\Drivers\ksecdd.sys
2011/07/14 22:52:35.0256 3124 KSecPkg (a8c63880ef6f4d3fec7b616b9c060215) C:\Windows\system32\Drivers\ksecpkg.sys
2011/07/14 22:52:35.0283 3124 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
2011/07/14 22:52:35.0328 3124 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
2011/07/14 22:52:35.0369 3124 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
2011/07/14 22:52:35.0388 3124 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
2011/07/14 22:52:35.0413 3124 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
2011/07/14 22:52:35.0441 3124 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
2011/07/14 22:52:35.0483 3124 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
2011/07/14 22:52:35.0533 3124 MBAMProtector (ed49fd1373de93617a1f6d128d98fe4d) C:\Windows\system32\drivers\mbam.sys
2011/07/14 22:52:35.0591 3124 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
2011/07/14 22:52:35.0613 3124 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
2011/07/14 22:52:35.0659 3124 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
2011/07/14 22:52:35.0697 3124 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
2011/07/14 22:52:35.0719 3124 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
2011/07/14 22:52:35.0773 3124 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
2011/07/14 22:52:35.0798 3124 mountmgr (791af66c4d0e7c90a3646066386fb571) C:\Windows\system32\drivers\mountmgr.sys
2011/07/14 22:52:35.0825 3124 mpio (609d1d87649ecc19796f4d76d4c15cea) C:\Windows\system32\DRIVERS\mpio.sys
2011/07/14 22:52:35.0852 3124 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
2011/07/14 22:52:35.0875 3124 MRxDAV (30524261bb51d96d6fcbac20c810183c) C:\Windows\system32\drivers\mrxdav.sys
2011/07/14 22:52:35.0919 3124 mrxsmb (040d62a9d8ad28922632137acdd984f2) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/07/14 22:52:35.0948 3124 mrxsmb10 (a8c2d7673c8a010569390c826a0efaf4) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/07/14 22:52:35.0985 3124 mrxsmb20 (3c142d31de9f2f193218a53fe2632051) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/07/14 22:52:36.0006 3124 msahci (5c37497276e3b3a5488b23a326a754b7) C:\Windows\system32\DRIVERS\msahci.sys
2011/07/14 22:52:36.0034 3124 msdsm (8d27b597229aed79430fb9db3bcbfbd0) C:\Windows\system32\DRIVERS\msdsm.sys
2011/07/14 22:52:36.0072 3124 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
2011/07/14 22:52:36.0092 3124 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
2011/07/14 22:52:36.0111 3124 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\DRIVERS\msisadrv.sys
2011/07/14 22:52:36.0158 3124 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
2011/07/14 22:52:36.0199 3124 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/07/14 22:52:36.0225 3124 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
2011/07/14 22:52:36.0259 3124 MsRPC (89cb141aa8616d8c6a4610fa26c60964) C:\Windows\system32\drivers\MsRPC.sys
2011/07/14 22:52:36.0284 3124 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/07/14 22:52:36.0314 3124 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
2011/07/14 22:52:36.0338 3124 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
2011/07/14 22:52:36.0365 3124 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
2011/07/14 22:52:36.0413 3124 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
2011/07/14 22:52:36.0461 3124 NDIS (cad515dbd07d082bb317d9928ce8962c) C:\Windows\system32\drivers\ndis.sys
2011/07/14 22:52:36.0513 3124 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
2011/07/14 22:52:36.0551 3124 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/07/14 22:52:36.0593 3124 Ndisuio (f105ba1e22bf1f2ee8f005d4305e4bec) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/07/14 22:52:36.0611 3124 NdisWan (557dfab9ca1fcb036ac77564c010dad3) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/07/14 22:52:36.0644 3124 NDProxy (659b74fb74b86228d6338d643cd3e3cf) C:\Windows\system32\drivers\NDProxy.sys
2011/07/14 22:52:36.0678 3124 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
2011/07/14 22:52:36.0698 3124 NetBT (9162b273a44ab9dce5b44362731d062a) C:\Windows\system32\DRIVERS\netbt.sys
2011/07/14 22:52:36.0847 3124 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
2011/07/14 22:52:36.0970 3124 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
2011/07/14 22:52:37.0009 3124 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
2011/07/14 22:52:37.0036 3124 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
2011/07/14 22:52:37.0102 3124 Ntfs (378e0e0dfea67d98ae6ea53adbbd76bc) C:\Windows\system32\drivers\Ntfs.sys
2011/07/14 22:52:37.0153 3124 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
2011/07/14 22:52:37.0201 3124 nvraid (a4d9c9a608a97f59307c2f2600edc6a4) C:\Windows\system32\drivers\nvraid.sys
2011/07/14 22:52:37.0234 3124 nvstor (6c1d5f70e7a6a3fd1c90d840edc048b9) C:\Windows\system32\drivers\nvstor.sys
2011/07/14 22:52:37.0281 3124 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\DRIVERS\nv_agp.sys
2011/07/14 22:52:37.0316 3124 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\DRIVERS\ohci1394.sys
2011/07/14 22:52:37.0359 3124 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
2011/07/14 22:52:37.0387 3124 partmgr (7daa117143316c4a1537e074a5a9eaf0) C:\Windows\system32\drivers\partmgr.sys
2011/07/14 22:52:37.0414 3124 pci (f36f6504009f2fb0dfd1b17a116ad74b) C:\Windows\system32\DRIVERS\pci.sys
2011/07/14 22:52:37.0431 3124 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\DRIVERS\pciide.sys
2011/07/14 22:52:37.0479 3124 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
2011/07/14 22:52:37.0514 3124 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
2011/07/14 22:52:37.0546 3124 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
2011/07/14 22:52:37.0671 3124 PptpMiniport (27cc19e81ba5e3403c48302127bda717) C:\Windows\system32\DRIVERS\raspptp.sys
2011/07/14 22:52:37.0713 3124 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
2011/07/14 22:52:37.0795 3124 Psched (ee992183bd8eaefd9973f352e587a299) C:\Windows\system32\DRIVERS\pacer.sys
2011/07/14 22:52:37.0871 3124 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
2011/07/14 22:52:37.0912 3124 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
2011/07/14 22:52:37.0945 3124 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
2011/07/14 22:52:38.0012 3124 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
2011/07/14 22:52:38.0048 3124 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
2011/07/14 22:52:38.0070 3124 Rasl2tp (87a6e852a22991580d6d39adc4790463) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/07/14 22:52:38.0098 3124 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/07/14 22:52:38.0131 3124 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
2011/07/14 22:52:38.0160 3124 rdbss (3bac8142102c15d59a87757c1d41dce5) C:\Windows\system32\DRIVERS\rdbss.sys
2011/07/14 22:52:38.0197 3124 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
2011/07/14 22:52:38.0223 3124 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/07/14 22:52:38.0241 3124 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
2011/07/14 22:52:38.0268 3124 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
2011/07/14 22:52:38.0298 3124 RDPWD (8a3e6bea1c53ea6177fe2b6eba2c80d7) C:\Windows\system32\drivers\RDPWD.sys
2011/07/14 22:52:38.0320 3124 rdyboost (634b9a2181d98f15941236886164ec8b) C:\Windows\system32\drivers\rdyboost.sys
2011/07/14 22:52:38.0385 3124 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
2011/07/14 22:52:38.0418 3124 RTL8167 (7ea8d2eb9bbfd2ab8a3117a1e96d3b3a) C:\Windows\system32\DRIVERS\Rt64win7.sys
2011/07/14 22:52:38.0452 3124 sbp2port (e3bbb89983daf5622c1d50cf49f28227) C:\Windows\system32\DRIVERS\sbp2port.sys
2011/07/14 22:52:38.0486 3124 scfilter (c94da20c7e3ba1dca269bc8460d98387) C:\Windows\system32\DRIVERS\scfilter.sys
2011/07/14 22:52:38.0522 3124 sdbus (54e47ad086782d3ae9417c155cdceb9b) C:\Windows\system32\DRIVERS\sdbus.sys
2011/07/14 22:52:38.0630 3124 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
2011/07/14 22:52:38.0662 3124 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
2011/07/14 22:52:38.0691 3124 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
2011/07/14 22:52:38.0708 3124 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
2011/07/14 22:52:38.0746 3124 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\DRIVERS\sffdisk.sys
2011/07/14 22:52:38.0765 3124 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\DRIVERS\sffp_mmc.sys
2011/07/14 22:52:38.0783 3124 sffp_sd (5588b8c6193eb1522490c122eb94dffa) C:\Windows\system32\DRIVERS\sffp_sd.sys
2011/07/14 22:52:38.0808 3124 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
2011/07/14 22:52:38.0858 3124 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
2011/07/14 22:52:38.0876 3124 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
2011/07/14 22:52:38.0902 3124 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
2011/07/14 22:52:38.0949 3124 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
2011/07/14 22:52:39.0013 3124 srv (2408c0366d96bcdf63e8f1c78e4a29c5) C:\Windows\system32\DRIVERS\srv.sys
2011/07/14 22:52:39.0043 3124 srv2 (76548f7b818881b47d8d1ae1be9c11f8) C:\Windows\system32\DRIVERS\srv2.sys
2011/07/14 22:52:39.0085 3124 SrvHsfHDA (0c4540311e11664b245a263e1154cef8) C:\Windows\system32\DRIVERS\VSTAZL6.SYS
2011/07/14 22:52:39.0135 3124 SrvHsfV92 (02071d207a9858fbe3a48cbfd59c4a04) C:\Windows\system32\DRIVERS\VSTDPV6.SYS
2011/07/14 22:52:39.0200 3124 SrvHsfWinac (18e40c245dbfaf36fd0134a7ef2df396) C:\Windows\system32\DRIVERS\VSTCNXT6.SYS
2011/07/14 22:52:39.0275 3124 srvnet (0af6e19d39c70844c5caa8fb0183c36e) C:\Windows\system32\DRIVERS\srvnet.sys
2011/07/14 22:52:39.0332 3124 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
2011/07/14 22:52:39.0372 3124 STHDA (f991751c2477257bbcedb364a0f449b4) C:\Windows\system32\DRIVERS\stwrt64.sys
2011/07/14 22:52:39.0414 3124 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\DRIVERS\swenum.sys
2011/07/14 22:52:39.0483 3124 SynTP (be2b928de9af2848289db7a54c7e2398) C:\Windows\system32\DRIVERS\SynTP.sys
2011/07/14 22:52:39.0580 3124 Tcpip (61dc720bb065d607d5823f13d2a64321) C:\Windows\system32\drivers\tcpip.sys
2011/07/14 22:52:39.0663 3124 TCPIP6 (61dc720bb065d607d5823f13d2a64321) C:\Windows\system32\DRIVERS\tcpip.sys
2011/07/14 22:52:39.0708 3124 tcpipreg (76d078af6f587b162d50210f761eb9ed) C:\Windows\system32\drivers\tcpipreg.sys
2011/07/14 22:52:39.0758 3124 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
2011/07/14 22:52:39.0773 3124 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
2011/07/14 22:52:39.0806 3124 tdx (079125c4b17b01fcaeebce0bcb290c0f) C:\Windows\system32\DRIVERS\tdx.sys
2011/07/14 22:52:39.0829 3124 TermDD (c448651339196c0e869a355171875522) C:\Windows\system32\DRIVERS\termdd.sys
2011/07/14 22:52:39.0872 3124 tssecsrv (61b96c26131e37b24e93327a0bd1fb95) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/07/14 22:52:39.0916 3124 tunnel (3836171a2cdf3af8ef10856db9835a70) C:\Windows\system32\DRIVERS\tunnel.sys
2011/07/14 22:52:39.0942 3124 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
2011/07/14 22:52:39.0983 3124 udfs (c06e6f4679ceb8f430b90a51d76d8d3c) C:\Windows\system32\DRIVERS\udfs.sys
2011/07/14 22:52:40.0032 3124 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\DRIVERS\uliagpkx.sys
2011/07/14 22:52:40.0059 3124 umbus (eab6c35e62b1b0db0d1b48b671d3a117) C:\Windows\system32\DRIVERS\umbus.sys
2011/07/14 22:52:40.0096 3124 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
2011/07/14 22:52:40.0149 3124 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
2011/07/14 22:52:40.0192 3124 usbccgp (537a4e03d7103c12d42dfd8ffdb5bdc9) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/07/14 22:52:40.0226 3124 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\DRIVERS\usbcir.sys
2011/07/14 22:52:40.0254 3124 usbehci (fbb21ebe49f6d560db37ac25fbc68e66) C:\Windows\system32\drivers\usbehci.sys
2011/07/14 22:52:40.0281 3124 usbhub (6b7a8a99c4a459e73c286a6763ea24cc) C:\Windows\system32\DRIVERS\usbhub.sys
2011/07/14 22:52:40.0311 3124 usbohci (8c88aa7617b4cbc2e4bed61d26b33a27) C:\Windows\system32\drivers\usbohci.sys
2011/07/14 22:52:40.0342 3124 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
2011/07/14 22:52:40.0374 3124 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
2011/07/14 22:52:40.0418 3124 USBSTOR (f39983647bc1f3e6100778ddfe9dce29) C:\Windows\system32\drivers\USBSTOR.SYS
2011/07/14 22:52:40.0443 3124 usbuhci (0b5b3b2df3fd1709618acfa50b8392b0) C:\Windows\system32\drivers\usbuhci.sys
2011/07/14 22:52:40.0488 3124 usbvideo (7cb8c573c6e4a2714402cc0a36eab4fe) C:\Windows\System32\Drivers\usbvideo.sys
2011/07/14 22:52:40.0532 3124 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\DRIVERS\vdrvroot.sys
2011/07/14 22:52:40.0566 3124 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/07/14 22:52:40.0595 3124 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
2011/07/14 22:52:40.0633 3124 vhdmp (c82e748660f62a242b2dfac1442f22a4) C:\Windows\system32\DRIVERS\vhdmp.sys
2011/07/14 22:52:40.0660 3124 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\DRIVERS\viaide.sys
2011/07/14 22:52:40.0700 3124 volmgr (2b1a3dae2b4e70dbba822b7a03fbd4a3) C:\Windows\system32\DRIVERS\volmgr.sys
2011/07/14 22:52:40.0729 3124 volmgrx (99b0cbb569ca79acaed8c91461d765fb) C:\Windows\system32\drivers\volmgrx.sys
2011/07/14 22:52:40.0757 3124 volsnap (58f82eed8ca24b461441f9c3e4f0bf5c) C:\Windows\system32\DRIVERS\volsnap.sys
2011/07/14 22:52:40.0801 3124 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
2011/07/14 22:52:40.0835 3124 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
2011/07/14 22:52:40.0863 3124 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
2011/07/14 22:52:40.0902 3124 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
2011/07/14 22:52:40.0921 3124 WANARP (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
2011/07/14 22:52:40.0932 3124 Wanarpv6 (47ca49400643effd3f1c9a27e1d69324) C:\Windows\system32\DRIVERS\wanarp.sys
2011/07/14 22:52:40.0991 3124 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
2011/07/14 22:52:41.0012 3124 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
2011/07/14 22:52:41.0060 3124 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
2011/07/14 22:52:41.0083 3124 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
2011/07/14 22:52:41.0146 3124 WinUSB (817eaff5d38674edd7713b9dfb8e9791) C:\Windows\system32\DRIVERS\WinUSB.sys
2011/07/14 22:52:41.0187 3124 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/07/14 22:52:41.0242 3124 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
2011/07/14 22:52:41.0271 3124 WudfPf (7cadc74271dd6461c452c271b30bd378) C:\Windows\system32\drivers\WudfPf.sys
2011/07/14 22:52:41.0290 3124 WUDFRd (3b197af0fff08aa66b6b2241ca538d64) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/07/14 22:52:41.0345 3124 yukonw7 (b3eeacf62445e24fbb2cd4b0fb4db026) C:\Windows\system32\DRIVERS\yk62x64.sys
2011/07/14 22:52:41.0384 3124 MBR (0x1B8) (480c81614544cf5e0cdd14f5b1b8c683) \Device\Harddisk0\DR0
2011/07/14 22:52:41.0395 3124 MBR (0x1B8) (e5fa06aca0d60ba9c870d0ef3d9898c9) \Device\Harddisk1\DR1
2011/07/14 22:52:41.0409 3124 Boot (0x1200) (cf0945d39a0db093d6a05989927231c7) \Device\Harddisk0\DR0\Partition0
2011/07/14 22:52:41.0426 3124 Boot (0x1200) (0778eea06057799fe049a50c814dd4e9) \Device\Harddisk0\DR0\Partition1
2011/07/14 22:52:41.0460 3124 Boot (0x1200) (1ea6ac72cdf670f6eddbc90b5093f1e6) \Device\Harddisk0\DR0\Partition2
2011/07/14 22:52:41.0529 3124 Boot (0x1200) (2770aaf6dd04715bd90ff7146d11a05d) \Device\Harddisk0\DR0\Partition3
2011/07/14 22:52:41.0539 3124 Boot (0x1200) (aa3f8e03349839d6fdf45c5b32e78923) \Device\Harddisk1\DR1\Partition0
2011/07/14 22:52:41.0545 3124 ================================================================================
2011/07/14 22:52:41.0545 3124 Scan finished
2011/07/14 22:52:41.0545 3124 ================================================================================
2011/07/14 22:52:41.0555 4056 Detected object count: 0
2011/07/14 22:52:41.0555 4056 Actual detected object count: 0
2011/07/14 22:54:42.0620 3856 Deinitialize success
  • 0

Advertisements

#17
maliprog
Posted 15 July 2011 - 12:15 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
OK. Please post aswMBR log when you do the scan and test your system for problems.
  • 0

#18
elee23
Posted 15 July 2011 - 02:12 AM

elee23

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 153 posts
sorry that scan took a while.

aswMBR version 0.9.7.747 Copyright© 2011 AVAST Software
Run date: 2011-07-14 22:56:41
-----------------------------
22:56:41.400 OS Version: Windows x64 6.1.7600
22:56:41.401 Number of processors: 4 586 0x2502
22:56:41.402 ComputerName: ISAAC-PC UserName: Isaac
22:56:43.887 Initialize success
22:56:44.120 AVAST engine defs: 11071401
22:56:50.738 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
22:56:50.740 Disk 0 Vendor: ST950042 0006 Size: 476940MB BusType: 3
22:56:50.763 Disk 0 MBR read successfully
22:56:50.766 Disk 0 MBR scan
22:56:50.769 Disk 0 unknown MBR code
22:56:50.773 Service scanning
22:56:52.047 Disk 0 trace - called modules:
22:56:52.052 ntoskrnl.exe CLASSPNP.SYS disk.sys hpdskflt.sys iaStor.sys hal.dll
22:56:52.056 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa80052bc060]
22:56:52.059 3 CLASSPNP.SYS[fffff88001ad143f] -> nt!IofCallDriver -> [0xfffffa8005152b10]
22:56:52.063 5 hpdskflt.sys[fffff88001a78289] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8004ff7050]
22:56:57.386 AVAST engine scan C:\Windows
23:47:36.533 AVAST engine scan C:\Users\Isaac
23:56:28.911 File: C:\Users\Isaac\AppData\Local\Temp\jar_cache4060123032830436902.tmp **INFECTED** Win32:FakeAV-CCJ [Trj]
00:26:03.596 AVAST engine scan C:\ProgramData
00:46:44.053 Scan finished successfully
01:11:18.945 Disk 0 MBR has been saved successfully to "C:\Users\Isaac\Desktop\MBR.dat"
01:11:18.950 The log file has been saved successfully to "C:\Users\Isaac\Desktop\aswMBR.txt"
  • 0

#19
maliprog
Posted 15 July 2011 - 02:48 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
We still have work to do...

Step 1

Download AVPTool from Here to your desktop

Run the programme you have just downloaded to your desktop (it will be randomly named )

First we will run a virus scan
On the first tab select all elements down to Computer and then select start scan
Confirm deletion to all infection AVP finds
Once it has finished select report and post that.

Do not close AVPTool or it will self uninstall, if it does uninstall - then just rerun the setup file on your desktop


Step 2

Please download MBRCheck.exe to your desktop.

  • Double click to run it
  • It will prompt you with some text
  • A text file will be generated on your desktop
  • Now paste that text here for me.

Step 3

Please don't forget to include these items in your reply:

  • AVPTool log
  • MBRCheck log
It would be helpful if you could post each log in separate post
  • 0

#20
elee23
Posted 15 July 2011 - 06:52 AM

elee23

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 153 posts
how do i get the report from avptool?

EDIT: now it's not responding -.- but i remember that it said 5 things infected under the main scan tab.

Edited by elee23, 15 July 2011 - 06:55 AM.

  • 0

#21
maliprog
Posted 15 July 2011 - 06:58 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
After the scan you should press Report button and post log it generate.
  • 0

#22
elee23
Posted 15 July 2011 - 07:00 AM

elee23

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 153 posts
I must have missed it... It's not responding right now. I'm going to wait to see if it starts to work again. I will keep you updated.
  • 0

#23
maliprog
Posted 15 July 2011 - 07:06 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Did you remove all findings? If you did remove all findings, wait 10 min then try to close it. After closing it do MBRCheck scan and post log here for me.
  • 0

#24
elee23
Posted 15 July 2011 - 07:16 AM

elee23

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 153 posts
it started working again! but i see no report button

EDIT: Nooo it's not responding again

Edited by elee23, 15 July 2011 - 07:17 AM.

  • 0

#25
maliprog
Posted 15 July 2011 - 07:18 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
In the upper right corner you have icon that looks like paper sheet. Click on it and then on the left side click Detected threats. Click on Save button and post that log here for me.
  • 0

Advertisements

#26
elee23
Posted 15 July 2011 - 07:39 AM

elee23

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 153 posts
Status: Deleted (events: 2)
7/15/2011 2:49:14 AM Deleted Trojan program Exploit.Linux.Lotoor.g C:\Program Files (x86)\Android\sdk\epic\rageagainstthecage-arm5.bin High
7/15/2011 3:43:15 AM Deleted Trojan program Exploit.Linux.Lotoor.g C:\Users\Isaac\Downloads\one.click.root.exploitv2.5.5 (4)\rageagainstthecage-arm5.bin High
Status: Disinfected (events: 6)
7/15/2011 3:26:36 AM Disinfected Trojan program Exploit.Java.CVE-2010-0840.ax C:\Users\Isaac\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\20863c36-769699f3/xmlTools/xml2html.class High
7/15/2011 3:26:36 AM Disinfected Trojan program Exploit.Java.CVE-2010-0840.ax C:\Users\Isaac\AppData\LocalLow\Sun\Java\Deployment\cache\6.0\54\20863c36-769699f3 High
7/15/2011 3:34:24 AM Disinfected Trojan program Exploit.Linux.Lotoor.g C:\Users\Isaac\Downloads\one.click.root.exploitv2.5.5.zip/rageagainstthecage-arm5.bin High
7/15/2011 3:34:24 AM Disinfected Trojan program Exploit.Linux.Lotoor.g C:\Users\Isaac\Downloads\one.click.root.exploitv2.5.5.zip High
7/15/2011 3:35:43 AM Disinfected Trojan program Exploit.Linux.Lotoor.g C:\Users\Isaac\Downloads\OneClickRootCWM3.0.2.5-EC05.zip/OneClickRootCWM3.0.2.5-EC05/rageagainstthecage-arm5.bin High
7/15/2011 3:35:43 AM Disinfected Trojan program Exploit.Linux.Lotoor.g C:\Users\Isaac\Downloads\OneClickRootCWM3.0.2.5-EC05.zip High
  • 0

#27
elee23
Posted 15 July 2011 - 07:40 AM

elee23

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 153 posts
MBRCheck, version 1.2.3
© 2010, AD

Command-line:
Windows Version: Windows 7 Home Premium Edition
Windows Information: (build 7600), 64-bit
Base Board Manufacturer: Hewlett-Packard
BIOS Manufacturer: Hewlett-Packard
System Manufacturer: Hewlett-Packard
System Product Name: HP Pavilion dm4 Notebook PC
Logical Drives Mask: 0x000000fc

Kernel Drivers (total 205):
0x02A0A000 \SystemRoot\system32\ntoskrnl.exe
0x02FE6000 \SystemRoot\system32\hal.dll
0x00BA3000 \SystemRoot\system32\kdcom.dll
0x00CD3000 \SystemRoot\system32\mcupdate_GenuineIntel.dll
0x00D17000 \SystemRoot\system32\PSHED.dll
0x00D2B000 \SystemRoot\system32\CLFS.SYS
0x00C00000 \SystemRoot\system32\CI.dll
0x00E92000 \SystemRoot\system32\drivers\Wdf01000.sys
0x00F36000 \SystemRoot\system32\drivers\WDFLDR.SYS
0x00F45000 \SystemRoot\system32\DRIVERS\ACPI.sys
0x00F9C000 \SystemRoot\system32\DRIVERS\WMILIB.SYS
0x00FA5000 \SystemRoot\system32\DRIVERS\msisadrv.sys
0x00FAF000 \SystemRoot\system32\DRIVERS\pci.sys
0x00FE2000 \SystemRoot\system32\DRIVERS\vdrvroot.sys
0x00E00000 \SystemRoot\System32\drivers\partmgr.sys
0x00E15000 \SystemRoot\system32\DRIVERS\compbatt.sys
0x00E1E000 \SystemRoot\system32\DRIVERS\BATTC.SYS
0x00E2A000 \SystemRoot\system32\DRIVERS\volmgr.sys
0x00D89000 \SystemRoot\System32\drivers\volmgrx.sys
0x00E3F000 \SystemRoot\System32\drivers\mountmgr.sys
0x01082000 \SystemRoot\system32\DRIVERS\iaStor.sys
0x0128A000 \SystemRoot\system32\DRIVERS\atapi.sys
0x01293000 \SystemRoot\system32\DRIVERS\ataport.SYS
0x012BD000 \SystemRoot\system32\DRIVERS\msahci.sys
0x012C8000 \SystemRoot\system32\DRIVERS\PCIIDEX.SYS
0x012D8000 \SystemRoot\system32\drivers\amdxata.sys
0x012E3000 \SystemRoot\system32\drivers\fltmgr.sys
0x0132F000 \SystemRoot\system32\drivers\fileinfo.sys
0x01458000 \SystemRoot\System32\Drivers\Ntfs.sys
0x01343000 \SystemRoot\System32\Drivers\msrpc.sys
0x01400000 \SystemRoot\System32\Drivers\ksecdd.sys
0x01000000 \SystemRoot\System32\Drivers\cng.sys
0x0141A000 \SystemRoot\System32\drivers\pcw.sys
0x0142B000 \SystemRoot\System32\Drivers\Fs_Rec.sys
0x0161B000 \SystemRoot\system32\drivers\ndis.sys
0x0170D000 \SystemRoot\system32\drivers\NETIO.SYS
0x0176D000 \SystemRoot\System32\Drivers\ksecpkg.sys
0x01802000 \SystemRoot\System32\drivers\tcpip.sys
0x01798000 \SystemRoot\System32\drivers\fwpkclnt.sys
0x013A1000 \SystemRoot\system32\DRIVERS\volsnap.sys
0x017E2000 \SystemRoot\System32\Drivers\spldr.sys
0x01A21000 \SystemRoot\System32\drivers\rdyboost.sys
0x01A5B000 \SystemRoot\System32\Drivers\mup.sys
0x01A6D000 \SystemRoot\System32\drivers\hwpolicy.sys
0x01A76000 \SystemRoot\system32\DRIVERS\hpdskflt.sys
0x01A80000 \SystemRoot\System32\DRIVERS\fvevol.sys
0x01ABA000 \SystemRoot\system32\DRIVERS\disk.sys
0x01AD0000 \SystemRoot\system32\DRIVERS\CLASSPNP.SYS
0x04458000 \SystemRoot\system32\DRIVERS\cdrom.sys
0x04482000 \SystemRoot\System32\Drivers\aswSnx.SYS
0x0451A000 \SystemRoot\System32\Drivers\Null.SYS
0x04523000 \SystemRoot\System32\Drivers\Beep.SYS
0x0452A000 \SystemRoot\System32\drivers\vga.sys
0x04538000 \SystemRoot\System32\drivers\VIDEOPRT.SYS
0x0455D000 \SystemRoot\System32\drivers\watchdog.sys
0x0456D000 \SystemRoot\System32\DRIVERS\RDPCDD.sys
0x04576000 \SystemRoot\system32\drivers\rdpencdd.sys
0x0457F000 \SystemRoot\system32\drivers\rdprefmp.sys
0x04588000 \SystemRoot\System32\Drivers\Msfs.SYS
0x04593000 \SystemRoot\System32\Drivers\Npfs.SYS
0x045A4000 \SystemRoot\system32\DRIVERS\tdx.sys
0x045C2000 \SystemRoot\system32\DRIVERS\TDI.SYS
0x045CF000 \SystemRoot\System32\Drivers\aswTdi.SYS
0x01B0E000 \SystemRoot\system32\drivers\afd.sys
0x045DF000 \SystemRoot\System32\Drivers\aswRdr.SYS
0x01B97000 \SystemRoot\System32\DRIVERS\netbt.sys
0x045E9000 \SystemRoot\system32\DRIVERS\wfplwf.sys
0x04200000 \SystemRoot\system32\DRIVERS\pacer.sys
0x04226000 \SystemRoot\system32\DRIVERS\vwififlt.sys
0x01BDC000 \SystemRoot\system32\DRIVERS\netbios.sys
0x01A00000 \SystemRoot\system32\DRIVERS\wanarp.sys
0x01BEB000 \SystemRoot\system32\DRIVERS\termdd.sys
0x02E48000 \SystemRoot\system32\DRIVERS\rdbss.sys
0x02E99000 \SystemRoot\system32\drivers\nsiproxy.sys
0x02EA5000 \SystemRoot\system32\DRIVERS\mssmbios.sys
0x02EB0000 \SystemRoot\system32\DRIVERS\dvmio.sys
0x02EB8000 \SystemRoot\System32\drivers\discache.sys
0x02EC7000 \SystemRoot\System32\Drivers\dfsc.sys
0x02EE5000 \SystemRoot\system32\DRIVERS\blbdrive.sys
0x02EF6000 \SystemRoot\System32\Drivers\aswSP.SYS
0x02F43000 \SystemRoot\system32\DRIVERS\tunnel.sys
0x02F69000 \SystemRoot\system32\DRIVERS\atikmpag.sys
0x04A1D000 \SystemRoot\system32\DRIVERS\atipmdag.sys
0x0583A000 \SystemRoot\system32\DRIVERS\igdpmd64.sys
0x0508C000 \SystemRoot\System32\drivers\dxgkrnl.sys
0x05FB5000 \SystemRoot\System32\drivers\dxgmms1.sys
0x05800000 \SystemRoot\system32\DRIVERS\HDAudBus.sys
0x05824000 \SystemRoot\system32\DRIVERS\HECIx64.sys
0x05180000 \SystemRoot\system32\drivers\usbehci.sys
0x05191000 \SystemRoot\system32\drivers\USBPORT.SYS
0x05285000 \SystemRoot\system32\DRIVERS\bcmwl664.sys
0x05574000 \SystemRoot\system32\DRIVERS\vwifibus.sys
0x05581000 \SystemRoot\system32\DRIVERS\i8042prt.sys
0x0559F000 \SystemRoot\system32\DRIVERS\kbdclass.sys
0x055AE000 \SystemRoot\system32\DRIVERS\SynTP.sys
0x055FE000 \SystemRoot\system32\DRIVERS\USBD.SYS
0x05200000 \SystemRoot\system32\DRIVERS\mouclass.sys
0x0520F000 \SystemRoot\system32\DRIVERS\GEARAspiWDM.sys
0x0521C000 \SystemRoot\system32\DRIVERS\Impcd.sys
0x05242000 \SystemRoot\system32\DRIVERS\Accelerometer.sys
0x0524E000 \SystemRoot\system32\DRIVERS\CmBatt.sys
0x05253000 \SystemRoot\system32\DRIVERS\wmiacpi.sys
0x0525C000 \SystemRoot\system32\DRIVERS\intelppm.sys
0x05272000 \SystemRoot\system32\DRIVERS\CompositeBus.sys
0x051E7000 \SystemRoot\system32\DRIVERS\AgileVpn.sys
0x02E00000 \SystemRoot\system32\DRIVERS\rasl2tp.sys
0x04A00000 \SystemRoot\system32\DRIVERS\ndistapi.sys
0x00E59000 \SystemRoot\system32\DRIVERS\ndiswan.sys
0x02E24000 \SystemRoot\system32\DRIVERS\raspppoe.sys
0x01435000 \SystemRoot\system32\DRIVERS\raspptp.sys
0x01600000 \SystemRoot\system32\DRIVERS\rassstp.sys
0x05282000 \SystemRoot\system32\DRIVERS\swenum.sys
0x03C8C000 \SystemRoot\system32\DRIVERS\ks.sys
0x03CCF000 \SystemRoot\system32\DRIVERS\umbus.sys
0x03CE1000 \SystemRoot\System32\Drivers\fastfat.SYS
0x03D17000 \SystemRoot\system32\DRIVERS\usbhub.sys
0x03D71000 \SystemRoot\System32\Drivers\NDProxy.SYS
0x03D86000 \SystemRoot\system32\drivers\AtiHdmi.sys
0x03DA8000 \SystemRoot\system32\drivers\portcls.sys
0x03C00000 \SystemRoot\system32\drivers\drmk.sys
0x03C22000 \SystemRoot\system32\drivers\ksthunk.sys
0x06053000 \SystemRoot\system32\DRIVERS\stwrt64.sys
0x00070000 \SystemRoot\System32\win32k.sys
0x060D2000 \SystemRoot\System32\drivers\Dxapi.sys
0x060DE000 \SystemRoot\System32\Drivers\crashdmp.sys
0x0423C000 \SystemRoot\System32\Drivers\dump_iaStor.sys
0x060EC000 \SystemRoot\System32\Drivers\dump_dumpfve.sys
0x060FF000 \SystemRoot\system32\DRIVERS\usbccgp.sys
0x0611C000 \SystemRoot\system32\DRIVERS\hidusb.sys
0x0612A000 \SystemRoot\system32\DRIVERS\HIDCLASS.SYS
0x06143000 \SystemRoot\system32\DRIVERS\HIDPARSE.SYS
0x0614C000 \SystemRoot\system32\DRIVERS\mouhid.sys
0x06159000 \SystemRoot\system32\drivers\USBSTOR.SYS
0x06174000 \SystemRoot\system32\drivers\AmUStor.SYS
0x06182000 \SystemRoot\system32\DRIVERS\WinUSB.sys
0x06193000 \SystemRoot\System32\Drivers\usbvideo.sys
0x061C1000 \SystemRoot\system32\DRIVERS\monitor.sys
0x00460000 \SystemRoot\System32\TSDDD.dll
0x00630000 \SystemRoot\System32\cdd.dll
0x00870000 \SystemRoot\System32\ATMFD.DLL
0x061CF000 \SystemRoot\system32\drivers\luafv.sys
0x06000000 \??\C:\Windows\system32\drivers\aswMonFlt.sys
0x0603A000 \SystemRoot\System32\Drivers\aswFsBlk.SYS
0x03C28000 \SystemRoot\system32\drivers\WudfPf.sys
0x03C49000 \SystemRoot\system32\DRIVERS\lltdio.sys
0x02F9D000 \SystemRoot\system32\DRIVERS\nwifi.sys
0x03C5E000 \SystemRoot\system32\DRIVERS\ndisuio.sys
0x03C71000 \SystemRoot\system32\DRIVERS\rspndr.sys
0x05629000 \SystemRoot\system32\drivers\HTTP.sys
0x056F1000 \SystemRoot\system32\DRIVERS\bowser.sys
0x0570F000 \SystemRoot\System32\drivers\mpsdrv.sys
0x05727000 \SystemRoot\system32\DRIVERS\mrxsmb.sys
0x05754000 \SystemRoot\system32\DRIVERS\mrxsmb10.sys
0x057A2000 \SystemRoot\system32\DRIVERS\mrxsmb20.sys
0x070E0000 \SystemRoot\system32\drivers\peauth.sys
0x07186000 \SystemRoot\System32\Drivers\secdrv.SYS
0x07191000 \SystemRoot\System32\DRIVERS\srvnet.sys
0x071BE000 \SystemRoot\System32\drivers\tcpipreg.sys
0x07000000 \SystemRoot\System32\DRIVERS\srv2.sys
0x074CC000 \SystemRoot\System32\DRIVERS\srv.sys
0x07561000 \SystemRoot\system32\DRIVERS\WUDFRd.sys
0x07592000 \??\C:\Windows\system32\drivers\mbam.sys
0x07491000 \??\C:\Users\Isaac\AppData\Local\Temp\aswMBR.sys
0x07E61000 \SystemRoot\system32\DRIVERS\2360260drv.sys
0x0805F000 \SystemRoot\system32\DRIVERS\28678516.sys
0x77530000 \Windows\System32\ntdll.dll
0x48110000 \Windows\System32\smss.exe
0xFF850000 \Windows\System32\apisetschema.dll
0xFFA20000 \Windows\System32\autochk.exe
0xFF630000 \Windows\System32\ole32.dll
0xFF550000 \Windows\System32\oleaut32.dll
0xFE7C0000 \Windows\System32\shell32.dll
0x77410000 \Windows\System32\kernel32.dll
0xFE6B0000 \Windows\System32\msctf.dll
0xFE660000 \Windows\System32\Wldap32.dll
0xFE640000 \Windows\System32\imagehlp.dll
0xFE510000 \Windows\System32\wininet.dll
0xFE470000 \Windows\System32\msvcrt.dll
0xFE3F0000 \Windows\System32\shlwapi.dll
0xFE3A0000 \Windows\System32\ws2_32.dll
0xFE390000 \Windows\System32\lpk.dll
0xFE210000 \Windows\System32\urlmon.dll
0xFE1E0000 \Windows\System32\imm32.dll
0xFE160000 \Windows\System32\difxapi.dll
0xFDF80000 \Windows\System32\setupapi.dll
0xFDEA0000 \Windows\System32\advapi32.dll
0xFDE00000 \Windows\System32\comdlg32.dll
0xFDDE0000 \Windows\System32\sechost.dll
0x77700000 \Windows\System32\psapi.dll
0x77310000 \Windows\System32\user32.dll
0xFDD10000 \Windows\System32\usp10.dll
0xFDBE0000 \Windows\System32\rpcrt4.dll
0x776F0000 \Windows\System32\normaliz.dll
0xFDB70000 \Windows\System32\gdi32.dll
0xFDAD0000 \Windows\System32\clbcatq.dll
0xFD870000 \Windows\System32\iertutil.dll
0xFD860000 \Windows\System32\nsi.dll
0xFD7C0000 \Windows\System32\comctl32.dll
0xFD780000 \Windows\System32\wintrust.dll
0xFD710000 \Windows\System32\KernelBase.dll
0xFD5A0000 \Windows\System32\crypt32.dll
0xFD580000 \Windows\System32\devobj.dll
0xFD540000 \Windows\System32\cfgmgr32.dll
0xFD530000 \Windows\System32\msasn1.dll
0x77040000 \Windows\SysWOW64\normaliz.dll

Processes (total 102):
0 System Idle Process
4 System
356 C:\Windows\System32\smss.exe
476 csrss.exe
564 C:\Windows\System32\wininit.exe
584 csrss.exe
620 C:\Windows\System32\services.exe
636 C:\Windows\System32\lsass.exe
644 C:\Windows\System32\lsm.exe
752 C:\Windows\System32\svchost.exe
804 C:\Windows\System32\winlogon.exe
892 C:\Windows\System32\svchost.exe
956 C:\Windows\System32\atiesrxx.exe
128 C:\Windows\System32\svchost.exe
416 C:\Windows\System32\svchost.exe
516 C:\Windows\System32\svchost.exe
432 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_471277d5d45019ea\stacsv64.exe
1140 C:\Windows\System32\svchost.exe
1184 C:\Windows\System32\hpservice.exe
1228 C:\Windows\System32\atieclxx.exe
1264 C:\Windows\System32\vcsFPService.exe
1292 C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisService.exe
1496 C:\Windows\System32\svchost.exe
1576 C:\Program Files\AVAST Software\Avast\AvastSvc.exe
1584 C:\Windows\System32\wlanext.exe
1592 C:\Windows\System32\conhost.exe
1964 C:\Windows\System32\spoolsv.exe
2000 C:\Windows\System32\svchost.exe
1240 C:\Windows\System32\svchost.exe
1532 C:\Windows\System32\DriverStore\FileRepository\stwrt64.inf_amd64_neutral_471277d5d45019ea\AESTSr64.exe
1360 C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
2068 C:\Program Files (x86)\Bonjour\mDNSResponder.exe
2124 C:\Program Files (x86)\CinemaNow\CinemaNow Media Manager\CinemaNowSvc.exe
2172 C:\SwSetup\QuickWeb\QW.SYS\config\DVMExportService.exe
2236 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPWMISVC.exe
2272 C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
2324 C:\Windows\SysWOW64\PSIService.exe
2360 C:\Program Files (x86)\Microsoft\Search Enhancement Pack\SeaPort\SeaPort.exe
2396 C:\Windows\System32\svchost.exe
2444 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
2508 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
2616 C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
2904 WUDFHost.exe
3024 C:\Windows\System32\svchost.exe
1368 C:\Windows\System32\taskhost.exe
3116 C:\Windows\System32\dwm.exe
3144 C:\Windows\explorer.exe
3276 C:\Windows\System32\rundll32.exe
3504 C:\Windows\System32\igfxpers.exe
3564 C:\Windows\System32\igfxsrvc.exe
3664 C:\Windows\System32\GfxUI.exe
3692 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
3708 C:\Program Files (x86)\AmIcoSingLun\AmIcoSinglun64.exe
3724 HP1006MC.EXE
3752 C:\Program Files\IDT\WDM\sttray64.exe
3780 C:\Program Files\Hewlett-Packard\HP MediaSmart\SmartMenu.exe
3880 C:\Program Files\Hewlett-Packard\HP Quick Launch\HPMSGSVC.exe
3924 WmiPrvSE.exe
3100 C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
3136 C:\Program Files (x86)\MSN Toolbar\Platform\4.0.0369.0\mswinext.exe
3184 C:\Program Files (x86)\EgisTec IPS\PmmUpdate.exe
3236 C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
3636 C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe
3608 C:\Program Files (x86)\Hp\HP Software Update\hpwuschd2.exe
3552 C:\Program Files\AVAST Software\Avast\AvastUI.exe
3524 C:\Program Files (x86)\Winamp\winampa.exe
3944 C:\Program Files (x86)\iTunes\iTunesHelper.exe
2204 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
4024 C:\Program Files (x86)\Hewlett-Packard\HP SimplePass Identity Protection\EgisTSR.exe
4184 C:\Windows\System32\SearchIndexer.exe
4288 C:\Program Files (x86)\EgisTec IPS\EgisUpdate.exe
4344 C:\Program Files\iPod\bin\iPodService.exe
4400 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
4480 C:\Program Files\Windows Media Player\wmpnetwk.exe
4768 C:\Windows\System32\svchost.exe
4908 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
4496 C:\Windows\System32\taskeng.exe
3556 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
5052 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
588 C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
5388 C:\Program Files (x86)\Hewlett-Packard\HP Health Check\HPHC_Service.exe
5448 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Service.exe
5500 C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
5588 C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
5624 C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
5652 C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
5704 WmiPrvSE.exe
3972 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWA_Main.exe
5972 C:\Program Files (x86)\Hewlett-Packard\Shared\hpCaslNotification.exe
5244 C:\Windows\System32\wuauclt.exe
3320 C:\Program Files (x86)\Common Files\Java\Java Update\jucheck.exe
2804 C:\Users\Isaac\Downloads\setup_11.0.0.1245.x01_2011_07_15_11_14.exe
2080 C:\Users\Isaac\AppData\Local\Temp\RarSFX0\2360260.exe
3124 C:\Users\Isaac\AppData\Local\Temp\8776220\2360260.exe
2152 C:\Windows\System32\taskhost.exe
6240 C:\Windows\System32\SearchProtocolHost.exe
7032 C:\Windows\System32\SearchFilterHost.exe
6820 C:\Windows\System32\notepad.exe
6360 dllhost.exe
6220 dllhost.exe
6980 C:\Users\Isaac\Desktop\MBRCheck.exe
7116 C:\Windows\System32\conhost.exe

\\.\C: --> \\.\PhysicalDrive0 at offset 0x00000000`0c800000 (NTFS)
\\.\D: --> \\.\PhysicalDrive0 at offset 0x0000006f`cb400000 (NTFS)
\\.\E: --> \\.\PhysicalDrive0 at offset 0x00000074`6a400000 (FAT32)

PhysicalDrive0 Model Number: ST9500420AS, Rev: 0006HPM1

Size Device Name MBR Status
--------------------------------------------
465 GB \\.\PhysicalDrive0 Unknown MBR code
SHA1: 592432387C401754054AABD77CA679E54D8C1154


Found non-standard or infected MBR.
Enter 'Y' and hit ENTER for more options, or 'N' to exit:
Options:
[1] Dump the MBR of a physical disk to file.
[2] Restore the MBR of a physical disk with a standard boot code.
[3] Exit.

Enter your choice:
  • 0

#28
maliprog
Posted 15 July 2011 - 11:00 AM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
How is your system now? Any problems?
  • 0

#29
elee23
Posted 15 July 2011 - 12:08 PM

elee23

    Member

  • Topic Starter
  • Member
  • PipPipPip
  • 153 posts
My laptop seems fine for now, but I used to have win 7 home security 2011 and it became dormant for a while after I thought I had gotten rid of it. But at this moment my laptop seems good. Thanks for your help!
  • 0

#30
maliprog
Posted 15 July 2011 - 01:28 PM

maliprog

    Trusted Helper

  • Malware Removal
  • 6,172 posts
Hi elee23,

Your logs and system are clean now. I'm glad we fix up your computer. We need to clean up your PC from programs we used.

Step 1

Please start OTL one more time and click CleanUp button. OTL will restart your system at the end. Remove all other application we used to clean your PC.

General recommendations

Here are some recommendations you should follow to minimize infection risk in the future:

1. Enable Windows Update
  • Click Start, click Run, type sysdm.cpl, and then press ENTER.
  • Click the Automatic Updates tab, and then click to select one of the following options. We recommend that you select the Automatic (recommended) Automatically download recommended updates for my computer and install them option.
  • Click OK button

2. Delete Temp files

Download TFC to your desktop
  • Open the file and close any other windows.
  • It will close all programs itself when run, make sure to let it run uninterrupted.
  • Click the Start button to begin the process. The program should not take long to finish its job
  • Once its finished it should reboot your machine, if not, do this yourself to ensure a complete clean

3. Make Backups of Important Files

Please read this article Home Computer Data Backup.


4. Regularly update your software

To eliminate design flaws and security vulnerabilities, all software needs to be updated to the latest version or the vendor’s patch installed.

You should download Update Checker from here. The program will automaticly check for newer version of software installed on your system.
  • 0
Back to Virus, Spyware, Malware Removal · Next Unread Topic →




Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

  1. Geeks to Go Community
  2. Security
  3. Virus, Spyware, Malware Removal

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP