Javascript Disabled Detected

You currently have javascript disabled. Several functions may not work. Please re-enable javascript to access full functionality.

Please Help for Malware Removal [Closed]

Started by kingfisher3210 , Sep 23 2012 08:29 AM

This topic is locked

#1
kingfisher3210

Posted 23 September 2012 - 08:29 AM

Member

Member
42 posts

PC is running slow and search websites are opening up.

OTL logfile created on: 9/23/2012 7:30:11 PM - Run 1
OTL by OldTimer - Version 3.2.66.0 Folder = C:\Users\Akhil Baveja\Downloads
Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: India | Language: ENN | Date Format: dd-MM-yyyy

1011.87 Mb Total Physical Memory | 287.07 Mb Available Physical Memory | 28.37% Memory free
2.00 Gb Paging File | 0.79 Gb Available in Paging File | 39.43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 87.53 Gb Total Space | 65.21 Gb Free Space | 74.50% Space Free | Partition Type: NTFS
Drive D: | 4.10 Gb Total Space | 2.56 Gb Free Space | 62.45% Space Free | Partition Type: FAT32
Drive E: | 94.73 Gb Total Space | 93.55 Gb Free Space | 98.76% Space Free | Partition Type: NTFS
Drive F: | 98.63 Gb Total Space | 98.42 Gb Free Space | 99.79% Space Free | Partition Type: NTFS

Computer Name: AKHILBAVEJA-PC | User Name: Akhil Baveja | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/23 19:29:53 | 000,601,600 | ---- | M] (OldTimer Tools) -- C:\Users\Akhil Baveja\Downloads\OTL.exe
PRC - [2012/07/28 02:21:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/06/24 09:52:20 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2011/05/10 10:31:33 | 000,492,096 | ---- | M] (Insyde Software Corp.) -- C:\Program Files\Acer\Updater\iUpdate.exe
PRC - [2011/05/10 10:31:32 | 000,408,128 | ---- | M] (Insyde Software Corp.) -- C:\Program Files\Acer\Android Manager\iSync.exe
PRC - [2011/03/14 17:14:38 | 000,414,800 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LMutilps32.exe
PRC - [2011/03/14 17:14:38 | 000,334,416 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LMworker.exe
PRC - [2011/03/14 17:14:36 | 001,081,424 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2011/03/14 17:14:36 | 000,352,336 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\dsiwmis.exe
PRC - [2011/03/07 14:15:22 | 001,755,136 | ---- | M] (Realsil Microelectronics Inc.) -- C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe
PRC - [2011/02/25 11:00:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011/02/23 09:31:10 | 000,715,368 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
PRC - [2011/02/23 09:31:08 | 000,739,944 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
PRC - [2011/02/23 09:31:02 | 000,469,608 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
PRC - [2011/02/01 02:25:14 | 000,244,624 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2010/11/21 02:59:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/06 12:24:22 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/11/06 12:24:20 | 000,283,160 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/10/06 03:16:10 | 000,704,104 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\AcerVCM.exe
PRC - [2010/09/28 07:30:56 | 000,340,336 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
PRC - [2010/09/18 04:40:16 | 000,407,920 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec IPS\PmmUpdate.exe
PRC - [2010/09/18 04:40:02 | 000,201,584 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec IPS\EgisUpdate.exe
PRC - [2010/03/25 18:42:36 | 000,388,096 | ---- | M] (Trend Micro Inc.) -- C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe
PRC - [2010/01/30 05:22:58 | 000,260,640 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe

========== Modules (No Company Name) ==========

MOD - [2012/06/14 20:36:37 | 000,475,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\3ac345f23c9bf10342c5c12f2d2c5728\IAStorUtil.ni.dll
MOD - [2012/06/14 18:01:35 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\828e99a57411166ccc26d24be089ba44\System.Windows.Forms.ni.dll
MOD - [2012/06/14 18:01:10 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\502adc65e43b9d025cba1fd0bfa964a8\System.Drawing.ni.dll
MOD - [2012/05/12 15:01:55 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\23917a73056cd44ac791a08442c9848a\IAStorCommon.ni.dll
MOD - [2012/05/12 14:27:29 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\12dc22db56f7933e84654ecc590beba5\System.Runtime.Remoting.ni.dll
MOD - [2012/05/12 14:24:32 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\5b10c18a074132f1ae4a86d860cf9615\WindowsBase.ni.dll
MOD - [2012/05/12 14:24:14 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\cfb0e4de1afd3f2efbbf39a5e39f646a\System.Xml.ni.dll
MOD - [2012/05/12 14:24:03 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2a5cbab122112cd4291b684e67460c16\System.Configuration.ni.dll
MOD - [2012/05/12 14:24:01 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9447bd5b21a91081d4275b4c4401b1f9\System.ni.dll
MOD - [2012/05/12 14:23:42 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\2ab531f4915cccb998c4e852fb7efd00\mscorlib.ni.dll

========== Services (SafeList) ==========

SRV - [2012/07/28 02:21:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/03/14 17:14:36 | 000,352,336 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2011/03/07 14:15:22 | 001,755,136 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2011/02/23 09:31:08 | 000,739,944 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV - [2011/02/01 02:25:14 | 000,244,624 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Live Updater Service)
SRV - [2010/11/06 12:24:22 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/09/28 06:39:54 | 000,172,912 | ---- | M] (Egis Technology Inc. ) [On_Demand | Stopped] -- C:\Program Files\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service)
SRV - [2010/01/30 05:22:58 | 000,260,640 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer VCM\RS_Service.exe -- (RS_Service)
SRV - [2009/07/14 06:45:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{92BE8BFD-CEC6-4D87-BA39-8C0C01536B81}\MpKslff8899ad.sys -- (MpKslff8899ad)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKslfdbce2ee.sys -- (MpKslfdbce2ee)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslfbd2caf1.sys -- (MpKslfbd2caf1)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKslf8244d8a.sys -- (MpKslf8244d8a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E67270D3-2F8E-4AD2-9928-B3FBCE43821E}\MpKslf6b04e98.sys -- (MpKslf6b04e98)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslf48e10b4.sys -- (MpKslf48e10b4)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3382A8A9-8112-4889-841B-36C4CCE7D63D}\MpKslf1433579.sys -- (MpKslf1433579)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C59764B-24A9-4C19-B28F-957B83FD0ECB}\MpKslf006b12e.sys -- (MpKslf006b12e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{125A2177-586F-4CBC-A2A1-E4CDC3131FF5}\MpKslee01476d.sys -- (MpKslee01476d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4EF603EF-F10D-45C9-9968-0DFBC777A294}\MpKsledb5f72c.sys -- (MpKsledb5f72c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7A811974-143C-4192-810F-E526ED6E58C9}\MpKslecd217de.sys -- (MpKslecd217de)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7775643-145D-4848-B4BC-51957DD2C503}\MpKslecb2691b.sys -- (MpKslecb2691b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC3374BA-9E78-4EC4-83D3-7AB6B6B04046}\MpKslea8ca7cb.sys -- (MpKslea8ca7cb)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKsle923b9a6.sys -- (MpKsle923b9a6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{63C8D80E-9686-4207-A43F-A347CA09CE39}\MpKsle910a5f5.sys -- (MpKsle910a5f5)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75F901F6-310E-453C-8A7B-15403DEE0D7A}\MpKsle729d806.sys -- (MpKsle729d806)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CA5A3ABB-2E07-4C39-8276-A7501DF24765}\MpKsle6ae4d60.sys -- (MpKsle6ae4d60)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC4E357E-FE72-4CD2-931B-9BE8F61F92C1}\MpKsle572f6ba.sys -- (MpKsle572f6ba)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FB37A0B6-824F-49B5-A446-F75B2D66AE11}\MpKsle56f7b4f.sys -- (MpKsle56f7b4f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{78A3BB43-3DFD-4D78-B724-8EF2653FBF4A}\MpKsle1761ce5.sys -- (MpKsle1761ce5)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2EA92FCE-24B9-4DA5-9300-FA693A1B29C9}\MpKslde60af67.sys -- (MpKslde60af67)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKslde1c7de5.sys -- (MpKslde1c7de5)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DD038CBD-6BC7-4FA0-B48C-2000FCCEBFEF}\MpKsldd51ab34.sys -- (MpKsldd51ab34)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1E8E37DD-94FA-43F2-9DBC-A3863D8E5DC7}\MpKslda6e4aea.sys -- (MpKslda6e4aea)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4A50C759-D9DA-4F91-9134-E796341ECA56}\MpKsld7e586c6.sys -- (MpKsld7e586c6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{77AC7797-FA37-4A49-BF05-9B96F1429127}\MpKsld747c86f.sys -- (MpKsld747c86f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5285C302-45B0-4D11-A56C-63291B5ECF2F}\MpKsld58d6931.sys -- (MpKsld58d6931)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9E27DE14-7F7B-426E-810F-DEEBD5315B15}\MpKslce9d0181.sys -- (MpKslce9d0181)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BA7CDA28-6FE4-41D5-ABC9-428C8B897FE7}\MpKslca589ceb.sys -- (MpKslca589ceb)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8F48956F-658D-4E0B-9C3D-08A5FA7313F3}\MpKslc39453af.sys -- (MpKslc39453af)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKslbcf74d57.sys -- (MpKslbcf74d57)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKslbc59489c.sys -- (MpKslbc59489c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0C8F2FC8-5167-435F-8DBD-2605F723E28B}\MpKslbb9cb6cd.sys -- (MpKslbb9cb6cd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKslb5d67722.sys -- (MpKslb5d67722)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1E8E37DD-94FA-43F2-9DBC-A3863D8E5DC7}\MpKslb3776706.sys -- (MpKslb3776706)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EB476B9C-7D7B-44E0-AFE8-8D0EA879A0E7}\MpKslafdd0155.sys -- (MpKslafdd0155)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKslaf88753f.sys -- (MpKslaf88753f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKslae6ebf88.sys -- (MpKslae6ebf88)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslac0a44e8.sys -- (MpKslac0a44e8)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C93BCF6E-CBF5-4FF2-ADCF-1128BDE2E0C5}\MpKsla7a69055.sys -- (MpKsla7a69055)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C59764B-24A9-4C19-B28F-957B83FD0ECB}\MpKsla75d66af.sys -- (MpKsla75d66af)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AE09BD0F-6E5C-40AF-B220-7086D4CC6570}\MpKsla5f4e6a8.sys -- (MpKsla5f4e6a8)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsla536fda6.sys -- (MpKsla536fda6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5FA0C4E3-B949-4E03-83D4-BF8433BA43D6}\MpKsla47860c6.sys -- (MpKsla47860c6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{40A9D23C-78A1-49C6-8C8E-8996360F1093}\MpKsla3b74131.sys -- (MpKsla3b74131)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1772E180-8748-4D3E-B24C-D6D2C5F9B5A3}\MpKsl985b3f8e.sys -- (MpKsl985b3f8e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{08E1CB06-2276-4365-9E98-33429F68E66B}\MpKsl950dae20.sys -- (MpKsl950dae20)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{238ABD0D-BB80-41D1-816D-101CD48DB40A}\MpKsl93e06edd.sys -- (MpKsl93e06edd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{89129128-A246-425E-9064-A163F30156C3}\MpKsl9134de0b.sys -- (MpKsl9134de0b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{29744E99-DB21-4352-8935-079363060011}\MpKsl8f785007.sys -- (MpKsl8f785007)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8F48956F-658D-4E0B-9C3D-08A5FA7313F3}\MpKsl8f45d270.sys -- (MpKsl8f45d270)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D9A9D432-6DAD-4751-9B4C-D0746373D450}\MpKsl8d0e4e03.sys -- (MpKsl8d0e4e03)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKsl8bbf55ef.sys -- (MpKsl8bbf55ef)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39B354B6-CF95-4B9D-AC21-05762961ACB2}\MpKsl8a94550b.sys -- (MpKsl8a94550b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKsl8887dd69.sys -- (MpKsl8887dd69)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl849ddc69.sys -- (MpKsl849ddc69)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F8348DFA-B2EC-4D0C-8183-8A7F1A26DBBD}\MpKsl825d4dcd.sys -- (MpKsl825d4dcd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C06F1EB1-24A6-4A04-A4A5-CF2133B9D20A}\MpKsl810da3ce.sys -- (MpKsl810da3ce)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl808cdd75.sys -- (MpKsl808cdd75)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC4E357E-FE72-4CD2-931B-9BE8F61F92C1}\MpKsl80047a56.sys -- (MpKsl80047a56)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{686F8D9F-7DFB-4123-962E-D524A41B8F07}\MpKsl79dcca5b.sys -- (MpKsl79dcca5b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F1DAEE56-5BF9-4C3A-9888-2BF33891348E}\MpKsl79139c6f.sys -- (MpKsl79139c6f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1772E180-8748-4D3E-B24C-D6D2C5F9B5A3}\MpKsl78bb618c.sys -- (MpKsl78bb618c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{04D1AB29-B55C-4DC2-9DCF-AFCCBB897CCB}\MpKsl76c4500e.sys -- (MpKsl76c4500e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9F723B4E-1363-43E7-93FB-F7DBD1A734D0}\MpKsl74cea91a.sys -- (MpKsl74cea91a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKsl74b68d33.sys -- (MpKsl74b68d33)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E9FB65E-1258-4CBD-AC75-F7769C4DE9E1}\MpKsl7107e1bb.sys -- (MpKsl7107e1bb)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7382277E-3EF8-415E-B60F-3B294925D32B}\MpKsl6fbd6c71.sys -- (MpKsl6fbd6c71)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D1DC07D7-3A2F-46CC-8B94-AD3DB9E07DB7}\MpKsl6e254e07.sys -- (MpKsl6e254e07)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4A50C759-D9DA-4F91-9134-E796341ECA56}\MpKsl6cdb11b2.sys -- (MpKsl6cdb11b2)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6D871E12-EE11-4FA3-ADAC-8DDDDC61D211}\MpKsl6a4aee20.sys -- (MpKsl6a4aee20)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{04D1AB29-B55C-4DC2-9DCF-AFCCBB897CCB}\MpKsl667b9d9a.sys -- (MpKsl667b9d9a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKsl65626759.sys -- (MpKsl65626759)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3A3D9F2A-43D0-4FF4-85D4-FF36F131DDD8}\MpKsl63b7466e.sys -- (MpKsl63b7466e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{428C7610-9B6E-4BF7-9CE5-8F4C76F45B14}\MpKsl6307e0b6.sys -- (MpKsl6307e0b6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D1DC07D7-3A2F-46CC-8B94-AD3DB9E07DB7}\MpKsl62f71e41.sys -- (MpKsl62f71e41)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{92BE8BFD-CEC6-4D87-BA39-8C0C01536B81}\MpKsl5b5b0756.sys -- (MpKsl5b5b0756)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl5adf0c5d.sys -- (MpKsl5adf0c5d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9AFD9547-F4A9-4980-92C4-EA0B73808D85}\MpKsl595fe79e.sys -- (MpKsl595fe79e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{96C05351-F320-4153-909F-9E0650990025}\MpKsl588727c3.sys -- (MpKsl588727c3)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEAD3384-A148-4DAE-B8B7-4C5A0E2ECF20}\MpKsl56dcf45a.sys -- (MpKsl56dcf45a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2435138B-C207-4436-9C21-7BCBD68F10CE}\MpKsl55b1c7dc.sys -- (MpKsl55b1c7dc)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl550588d0.sys -- (MpKsl550588d0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC3374BA-9E78-4EC4-83D3-7AB6B6B04046}\MpKsl52944419.sys -- (MpKsl52944419)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6801923D-6C98-4F19-9935-1AF0D75C79CC}\MpKsl52616f74.sys -- (MpKsl52616f74)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7A510B5A-7392-4414-9931-2D017F817EB2}\MpKsl5022c774.sys -- (MpKsl5022c774)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10A420C9-DAD7-4A60-A46C-ABEE2355C0B4}\MpKsl4ec6c2a0.sys -- (MpKsl4ec6c2a0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AE09BD0F-6E5C-40AF-B220-7086D4CC6570}\MpKsl4e13e741.sys -- (MpKsl4e13e741)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{30054914-C736-47C1-BBE4-951997B4221D}\MpKsl4d4d2db8.sys -- (MpKsl4d4d2db8)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C9200220-4401-46EB-9B7B-0D7578DFE4CA}\MpKsl4d30669b.sys -- (MpKsl4d30669b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4EF603EF-F10D-45C9-9968-0DFBC777A294}\MpKsl4c5c63dd.sys -- (MpKsl4c5c63dd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl4a4e1391.sys -- (MpKsl4a4e1391)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{457223A7-0ED2-4E74-961A-A5C3BF5C1654}\MpKsl4a2ec07c.sys -- (MpKsl4a2ec07c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsl47853568.sys -- (MpKsl47853568)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{62CAF5F3-0C4F-4CBB-B696-519E85DF46CA}\MpKsl466e1bef.sys -- (MpKsl466e1bef)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{40A9D23C-78A1-49C6-8C8E-8996360F1093}\MpKsl45db01c1.sys -- (MpKsl45db01c1)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKsl45b6953f.sys -- (MpKsl45b6953f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E9FB65E-1258-4CBD-AC75-F7769C4DE9E1}\MpKsl4395796c.sys -- (MpKsl4395796c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A60C0A22-96CB-4543-B8F1-E5F76A9EA7BD}\MpKsl3e1e6704.sys -- (MpKsl3e1e6704)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl3a89a42b.sys -- (MpKsl3a89a42b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AE0F988F-6461-4644-926A-826A7993D796}\MpKsl388a373f.sys -- (MpKsl388a373f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl3822fce0.sys -- (MpKsl3822fce0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{503E92E6-27C7-403C-9BA6-301930245543}\MpKsl37aaca1d.sys -- (MpKsl37aaca1d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4F555093-FEEC-4BA3-8179-821EBDF1E619}\MpKsl3552e5d9.sys -- (MpKsl3552e5d9)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61EAD053-A5E4-4463-BBE2-D1FDF9DF45D4}\MpKsl321d210f.sys -- (MpKsl321d210f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9F723B4E-1363-43E7-93FB-F7DBD1A734D0}\MpKsl2c092542.sys -- (MpKsl2c092542)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{89129128-A246-425E-9064-A163F30156C3}\MpKsl299db2bf.sys -- (MpKsl299db2bf)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{96C20DD7-AFBB-4FD0-9D47-84D326542D45}\MpKsl2951948a.sys -- (MpKsl2951948a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl26fd884d.sys -- (MpKsl26fd884d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsl25974fdd.sys -- (MpKsl25974fdd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{77AC7797-FA37-4A49-BF05-9B96F1429127}\MpKsl247b440a.sys -- (MpKsl247b440a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DDA39423-3BEE-4887-ADB5-C7B142041B80}\MpKsl23511d90.sys -- (MpKsl23511d90)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{639B94F3-05D4-4638-84E3-96A97557F47B}\MpKsl22b466c0.sys -- (MpKsl22b466c0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7775643-145D-4848-B4BC-51957DD2C503}\MpKsl215a7d0e.sys -- (MpKsl215a7d0e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKsl1ff5b50f.sys -- (MpKsl1ff5b50f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BA7CDA28-6FE4-41D5-ABC9-428C8B897FE7}\MpKsl1c8a8c50.sys -- (MpKsl1c8a8c50)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKsl1bc93270.sys -- (MpKsl1bc93270)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKsl1b0a817c.sys -- (MpKsl1b0a817c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKsl1a8bab1e.sys -- (MpKsl1a8bab1e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75F901F6-310E-453C-8A7B-15403DEE0D7A}\MpKsl1a1cb220.sys -- (MpKsl1a1cb220)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4AAF7265-7C68-4649-97CD-87153FA28C59}\MpKsl175dbe8b.sys -- (MpKsl175dbe8b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6801923D-6C98-4F19-9935-1AF0D75C79CC}\MpKsl175c11c3.sys -- (MpKsl175c11c3)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C93BCF6E-CBF5-4FF2-ADCF-1128BDE2E0C5}\MpKsl16c6f296.sys -- (MpKsl16c6f296)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{35C15002-65A0-4EB0-8392-17CCE6A9CD82}\MpKsl1543184b.sys -- (MpKsl1543184b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E67270D3-2F8E-4AD2-9928-B3FBCE43821E}\MpKsl10d13f7d.sys -- (MpKsl10d13f7d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C693B576-85EA-4AF2-9527-B45F01B372F1}\MpKsl1010d031.sys -- (MpKsl1010d031)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F1DAEE56-5BF9-4C3A-9888-2BF33891348E}\MpKsl0e82d3ac.sys -- (MpKsl0e82d3ac)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{686F8D9F-7DFB-4123-962E-D524A41B8F07}\MpKsl0db3a256.sys -- (MpKsl0db3a256)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A4F46F46-F4EA-46AA-8BF0-91F8C42026D2}\MpKsl0d77b33e.sys -- (MpKsl0d77b33e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C9200220-4401-46EB-9B7B-0D7578DFE4CA}\MpKsl0afc50cc.sys -- (MpKsl0afc50cc)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKsl084932dc.sys -- (MpKsl084932dc)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4AAF7265-7C68-4649-97CD-87153FA28C59}\MpKsl0800b086.sys -- (MpKsl0800b086)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{763AB2EA-F204-4FCB-8628-DF53D9D5B85C}\MpKsl06ad743b.sys -- (MpKsl06ad743b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{817BB6C2-512A-4B9F-9E65-F1D79D1BDD5A}\MpKsl065c61dd.sys -- (MpKsl065c61dd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2435138B-C207-4436-9C21-7BCBD68F10CE}\MpKsl0641446a.sys -- (MpKsl0641446a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0C8F2FC8-5167-435F-8DBD-2605F723E28B}\MpKsl04819391.sys -- (MpKsl04819391)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl030b0605.sys -- (MpKsl030b0605)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E6731360-4E36-484C-AE4A-C964F375BDE1}\MpKsl02dbef18.sys -- (MpKsl02dbef18)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7A811974-143C-4192-810F-E526ED6E58C9}\MpKsl016e5b84.sys -- (MpKsl016e5b84)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{592C9A2B-F81E-4140-8296-5836472582C4}\MpKsl00cf017c.sys -- (MpKsl00cf017c)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwrchid.sys -- (btwrchid)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwl2cap.sys -- (btwl2cap)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwavdt.sys -- (btwavdt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\btwaudio.sys -- (btwaudio)
DRV - [2012/03/20 20:44:12 | 000,074,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/05/12 16:52:14 | 000,062,048 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV - [2011/05/12 16:52:14 | 000,019,304 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\System32\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV - [2011/05/12 16:52:14 | 000,016,744 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV - [2011/03/07 09:16:26 | 000,252,520 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtsPStor.sys -- (RSPCIESTOR)
DRV - [2010/11/21 02:59:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/21 02:59:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2009/07/14 03:32:46 | 001,096,704 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athr.sys -- (athr)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Akhil Baveja\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Akhil Baveja\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/04/05 16:19:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2011/12/23 15:03:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Akhil Baveja\AppData\Roaming\Mozilla\Extensions
[2012/06/24 23:54:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Akhil Baveja\AppData\Roaming\Mozilla\Firefox\Profiles\ayqgim5j.default\extensions
[2011/12/23 15:03:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/04/05 16:19:56 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/04/05 16:19:49 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/04/05 16:19:49 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.83\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.83\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.83\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: YouTube = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: BitTorrentBar = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhfdcmehmjcclgopdodkjdicohagipid\2.3.7.1_0\
CHR - Extension: Gmail = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/11 03:09:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found.
O4 - HKLM..\Run: [AndroidManager] C:\Program Files\Acer\Android Manager\AML.exe ()
O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [EgisUpdate] C:\Program Files\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [iPatchData] C:\Program Files\Acer\Updater\iUpdate.exe (Insyde Software Corp.)
O4 - HKLM..\Run: [iSyncData] C:\Program Files\Acer\Android Manager\iSync.exe (Insyde Software Corp.)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4 - HKLM..\Run: [SuiteTray] C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] E:\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [Wisdom-soft ScreenHunter 5.1 Plus] 0 File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - E:\office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\NPJPI150.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://javadl-esd.su...indows-i586.cab (Java Plug-in 1.5.0)
O16 - DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5FFBFED2-2E72-4757-9463-108CB0E9F941}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BC84C8BC-2919-4F99-B293-F3C33B4F2358}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 03:12:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/09/22 21:21:25 | 000,000,000 | ---D | C] -- C:\Users\Akhil Baveja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012/09/22 21:21:24 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/09/23 19:30:00 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\Acer Registration - Reminder Recall task.job
[2012/09/23 19:14:00 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3807445768-3563054489-1376992915-1000UA.job
[2012/09/23 15:35:04 | 000,630,560 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/09/23 15:35:04 | 000,111,612 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/09/23 14:21:18 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/23 12:53:46 | 000,016,160 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/23 12:53:46 | 000,016,160 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/23 12:46:32 | 000,016,384 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2012/09/23 12:46:31 | 000,000,318 | ---- | M] () -- C:\Windows\tasks\wkqvwvtid.job
[2012/09/23 12:46:12 | 795,762,688 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/22 21:21:25 | 000,002,995 | ---- | M] () -- C:\Users\Akhil Baveja\Desktop\HiJackThis.lnk
[2012/09/22 00:52:29 | 000,126,976 | RHS- | M] () -- C:\Windows\System32\difxapid.dll
[2012/09/20 11:14:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3807445768-3563054489-1376992915-1000Core.job
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/09/22 21:21:25 | 000,002,995 | ---- | C] () -- C:\Users\Akhil Baveja\Desktop\HiJackThis.lnk
[2012/09/22 00:52:29 | 000,000,318 | ---- | C] () -- C:\Windows\tasks\wkqvwvtid.job
[2012/09/22 00:52:28 | 000,126,976 | RHS- | C] () -- C:\Windows\System32\difxapid.dll
[2012/02/13 22:47:25 | 000,004,037 | ---- | C] () -- C:\Windows\System32\doc-0o-4.com-viewer-securedownload-5sj8mc9cp1vsrvk6n9j6e1hdqqd6fhce-umh5ev1fv5oufk72sfjgcqlasjd3ief4-1329152400000-Z21haWw=-AGZ5hq_U1cWSHHkQejQOuHY9ERti-MTM1NzdiNDZiYjIxZmZkZXwwLjEuMC4xLjAuMQ==.lnk
[2011/08/17 11:59:31 | 000,000,065 | ---- | C] () -- C:\Windows\wininit.ini
[2011/08/01 01:30:43 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2011/05/12 16:09:00 | 000,131,984 | ---- | C] () -- C:\ProgramData\FullRemove.exe
[2011/05/12 16:04:53 | 000,039,672 | ---- | C] () -- C:\Windows\System32\drivers\RtPCEE3.DAT
[2011/05/12 16:04:53 | 000,029,494 | ---- | C] () -- C:\Windows\System32\drivers\RtPCEE4.DAT
[2011/05/12 16:04:53 | 000,001,448 | ---- | C] () -- C:\Windows\System32\drivers\RtHdatEx.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX3.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX2.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2011/05/12 16:04:53 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ1.dat
[2011/05/12 16:04:53 | 000,000,040 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat
[2011/05/12 16:04:52 | 000,247,560 | ---- | C] () -- C:\Windows\System32\drivers\RTConvEQ.dat
[2011/05/12 16:01:42 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll

========== ZeroAccess Check ==========

[2009/07/14 10:12:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 10:11:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 06:46:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/01/19 13:28:58 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Binreader
[2012/05/08 07:18:12 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\BitTorrent
[2012/01/11 13:06:34 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\FreeCall
[2012/06/07 14:58:11 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Gleim
[2011/12/01 19:51:38 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Mobipocket
[2012/01/10 13:02:50 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Rebtel
[2012/04/24 02:45:26 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\SoftGrid Client
[2011/08/05 12:59:11 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\TP
[2011/08/05 01:34:45 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Windows Live Writer

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:C46995DA

< End of report >

OTL Extras logfile created on: 9/23/2012 7:30:11 PM - Run 1
OTL by OldTimer - Version 3.2.66.0 Folder = C:\Users\Akhil Baveja\Downloads
Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: India | Language: ENN | Date Format: dd-MM-yyyy

1011.87 Mb Total Physical Memory | 287.07 Mb Available Physical Memory | 28.37% Memory free
2.00 Gb Paging File | 0.79 Gb Available in Paging File | 39.43% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 87.53 Gb Total Space | 65.21 Gb Free Space | 74.50% Space Free | Partition Type: NTFS
Drive D: | 4.10 Gb Total Space | 2.56 Gb Free Space | 62.45% Space Free | Partition Type: FAT32
Drive E: | 94.73 Gb Total Space | 93.55 Gb Free Space | 98.76% Space Free | Partition Type: NTFS
Drive F: | 98.63 Gb Total Space | 98.42 Gb Free Space | 99.79% Space Free | Partition Type: NTFS

Computer Name: AKHILBAVEJA-PC | User Name: Akhil Baveja | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- "E:\office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
htmlfile [print] -- "E:\office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{871A008E-D574-4C64-BB0B-2F4E76B14AF2}" = lport=2869 | protocol=6 | dir=in | name=tcp 2869 |
"{91962BAE-B658-4B53-A21D-98394A426F14}" = lport=1900 | protocol=17 | dir=in | name=udp 1900 |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{3DE7DB44-2A9F-442E-970F-A39B3346781F}" = protocol=6 | dir=in | app=c:\program files\freecall.com\freecall\freecall.exe |
"{5C1BE5AD-1458-4EC7-8C8E-3C746FBDD36A}" = protocol=17 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{6C907A36-0304-44BA-AFE4-68B532AC93FE}" = protocol=6 | dir=in | app=c:\program files\freecall.com\freecall\freecall.exe |
"{6D7B9DA7-7C4F-46F1-9B20-331D1ED0A760}" = protocol=17 | dir=in | app=e:\messenger\yahoomessenger.exe |
"{7732415D-DB28-47D1-9DE2-261165C7554C}" = dir=in | app=c:\program files\acer\acer vcm\rs_service.exe |
"{7A44251D-04A9-4878-BDBA-32FBD822F102}" = protocol=17 | dir=in | app=c:\program files\freecall.com\freecall\freecall.exe |
"{B76370E3-3638-4065-9684-89338AD148A8}" = dir=in | app=c:\program files\acer\acer vcm\vc.exe |
"{D269D237-1808-45A7-BF5C-B32086BC52F5}" = protocol=6 | dir=in | app=c:\program files\common files\mcafee\mcsvchost\mcsvhost.exe |
"{D5A4D9F2-7EA8-46DC-9845-86993ACB7F86}" = protocol=6 | dir=in | app=e:\messenger\yahoomessenger.exe |
"{D8BDC2E0-021E-4CCF-89BD-C0CFD6985842}" = protocol=6 | dir=in | app=e:\bittorrent.exe |
"{EE52209C-5B3E-4089-AAA5-B6CB15B80E2F}" = protocol=17 | dir=in | app=e:\bittorrent.exe |
"{FD83E17B-DB21-48BF-8EB0-D86F2C0ACFB0}" = protocol=17 | dir=in | app=c:\program files\freecall.com\freecall\freecall.exe |
"TCP Query User{1B232F02-BD60-4861-A4C4-714049AFE64E}C:\users\akhil baveja\appdata\local\apps\2.0\yc8zw66g.t2t\por8nhp8.r2y\rebt..tion_59eb1b2cffdb6323_0002.0002_19c81faf577a3c2b\rebtelphone.exe" = protocol=6 | dir=in | app=c:\users\akhil baveja\appdata\local\apps\2.0\yc8zw66g.t2t\por8nhp8.r2y\rebt..tion_59eb1b2cffdb6323_0002.0002_19c81faf577a3c2b\rebtelphone.exe |
"TCP Query User{95C85A45-120C-4679-B6E3-4214AE91270D}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"TCP Query User{B71DB471-BF4B-4E6F-889B-9BB62E6E601E}C:\users\akhil baveja\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe" = protocol=6 | dir=in | app=c:\users\akhil baveja\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe |
"UDP Query User{06A41E1F-F081-497A-AECE-D48DA92AF8FC}C:\users\akhil baveja\appdata\local\apps\2.0\yc8zw66g.t2t\por8nhp8.r2y\rebt..tion_59eb1b2cffdb6323_0002.0002_19c81faf577a3c2b\rebtelphone.exe" = protocol=17 | dir=in | app=c:\users\akhil baveja\appdata\local\apps\2.0\yc8zw66g.t2t\por8nhp8.r2y\rebt..tion_59eb1b2cffdb6323_0002.0002_19c81faf577a3c2b\rebtelphone.exe |
"UDP Query User{26BAC1E8-CF34-4E80-AC20-424E958CF610}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe |
"UDP Query User{668112A0-D3CA-4A4F-A8F1-4A4A24F21F21}C:\users\akhil baveja\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe" = protocol=17 | dir=in | app=c:\users\akhil baveja\appdata\roaming\macromedia\flash player\www.macromedia.com\bin\octoshape\octoshape.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam
"{047F790A-7A2A-4B6A-AD02-38092BA63DAC}" = Acer VCM
"{0F842B77-56EA-4AAF-8295-81A022350B5E}" = Microsoft Security Client
"{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{3248F0A8-6813-11D6-A77B-00B0D0150000}" = J2SE Runtime Environment 5.0
"{342126E1-173C-4585-BFBE-3EBDD20E3E9E}" = Mobipocket Reader 6.2
"{39F15B50-A977-4CA6-B1C3-6A8724CDA025}" = MyWinLocker 4
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DB0448D-AD82-4923-B305-D001E521A964}" = Acer ePower Management
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{523281E5-91DD-49F5-9D85-954148F7596A}" = AndroidInstaller
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{7F811A54-5A09-4579-90E1-C93498E230D9}" = Acer eRecovery Management
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90120000-0020-0409-0000-0000000FF1CE}" = Compatibility Pack for the 2007 Office system
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{90A40409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office 2003 Web Components
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175
"{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.4)
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{C2695E83-CF1D-43D1-84FE-B3BEC561012A}" = Shredder
"{EE171732-BEB4-4576-887D-CB62727F01CA}" = Acer Updater
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F8A9085D-4C7A-41a9-8A77-C8998A96C421}" = Intel® Control Center
"7-Zip" = 7-Zip 9.20
"Acer Screensaver" = Acer ScreenSaver
"Acer Welcome Center" = Welcome Center
"Adobe AIR" = Adobe AIR
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"BitTorrent" = BitTorrent
"CIATPWSUEW47" = Gleim CIA Test Prep 15th Edition WebDeploy
"CIATPWSUEW48" = Gleim CIA Test Prep 16th Edition WebDeploy
"Digital Editions" = Adobe Digital Editions
"FreeCall_is1" = FreeCall
"HDMI" = Intel® Graphics Media Accelerator Driver
"Identity Card" = Identity Card
"InstallShield_{01FB4998-33C4-4431-85ED-079E3EEFE75D}" = Acer Crystal Eye Webcam
"InstallShield_{17DF9714-60C9-43C9-A9C2-32BCAED44CBE}" = MyWinLocker Suite
"InstallShield_{523281E5-91DD-49F5-9D85-954148F7596A}" = AndroidInstaller
"LManager" = Launch Manager
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft Security Client" = Microsoft Security Essentials
"Mozilla Firefox 11.0 (x86 en-US)" = Mozilla Firefox 11.0 (x86 en-US)
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"VLC media player" = VLC media player 2.0.2
"WinRAR archiver" = WinRAR 4.01 (32-bit)
"Yahoo! Messenger" = Yahoo! Messenger

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
"Octoshape add-in for Adobe Flash Player" = Octoshape add-in for Adobe Flash Player

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 8/14/2012 9:37:19 PM | Computer Name = AkhilBaveja-PC | Source = WinMgmt | ID = 10
Description =

Error - 8/15/2012 6:41:49 AM | Computer Name = AkhilBaveja-PC | Source = WinMgmt | ID = 10
Description =

Error - 8/15/2012 10:08:40 AM | Computer Name = AkhilBaveja-PC | Source = Application Hang | ID = 1002
Description = The program iexplore.exe version 9.0.8112.16447 stopped interacting
with Windows and was closed. To see if more information about the problem is available,
check the problem history in the Action Center control panel. Process ID: c1c Start
Time: 01cd7aef2778062f Termination Time: 31 Application Path: C:\Program Files\Internet
Explorer\iexplore.exe Report Id: b1ca0003-e6e2-11e1-b27c-e89a8f1e79e7

Error - 8/15/2012 10:38:53 AM | Computer Name = AkhilBaveja-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
of attribute "version" in element "assemblyIdentity" is invalid.

Error - 8/16/2012 3:02:19 AM | Computer Name = AkhilBaveja-PC | Source = WinMgmt | ID = 10
Description =

Error - 8/16/2012 3:16:45 AM | Computer Name = AkhilBaveja-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =

Error - 8/16/2012 3:45:09 AM | Computer Name = AkhilBaveja-PC | Source = SideBySide | ID = 16842815
Description = Activation context generation failed for "c:\Program Files\Common
Files\Adobe AIR\Versions\1.0\Adobe AIR.dll".Error in manifest or policy file "c:\Program
Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR.dll" on line 3. The value "MAJOR_VERSION.MINOR_VERSION.BUILD_NUMBER_MAJOR.BUILD_NUMBER_MINOR"
of attribute "version" in element "assemblyIdentity" is invalid.

Error - 8/16/2012 10:43:07 AM | Computer Name = AkhilBaveja-PC | Source = WinMgmt | ID = 10
Description =

Error - 8/16/2012 2:23:11 PM | Computer Name = AkhilBaveja-PC | Source = WinMgmt | ID = 10
Description =

Error - 8/16/2012 3:55:04 PM | Computer Name = AkhilBaveja-PC | Source = Customer Experience Improvement Program | ID = 1008
Description =

[ System Events ]
Error - 9/19/2012 7:10:40 AM | Computer Name = AkhilBaveja-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the NlaSvc service.

Error - 9/19/2012 11:06:43 AM | Computer Name = AkhilBaveja-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the ShellHWDetection service.

Error - 9/21/2012 3:18:52 AM | Computer Name = AkhilBaveja-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the lmhosts service.

Error - 9/21/2012 3:18:52 AM | Computer Name = AkhilBaveja-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the ShellHWDetection service.

Error - 9/21/2012 8:40:58 AM | Computer Name = AkhilBaveja-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the Wlansvc service.

Error - 9/21/2012 10:45:44 AM | Computer Name = AkhilBaveja-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the ShellHWDetection service.

Error - 9/21/2012 12:07:14 PM | Computer Name = AkhilBaveja-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the Netman service.

Error - 9/21/2012 1:05:05 PM | Computer Name = AkhilBaveja-PC | Source = Service Control Manager | ID = 7011
Description = A timeout (30000 milliseconds) was reached while waiting for a transaction
response from the ShellHWDetection service.

Error - 9/22/2012 4:08:03 AM | Computer Name = AkhilBaveja-PC | Source = DCOM | ID = 10010
Description =

Error - 9/23/2012 4:51:19 AM | Computer Name = AkhilBaveja-PC | Source = DCOM | ID = 10010
Description =

< End of report >

#2
Essexboy

Posted 23 September 2012 - 10:50 AM

GeekU Moderator

Retired Staff
69,964 posts

Hi there lets see if we can sort this for you

Warning This fix is only relevant for this system and no other, using on another computer may cause problems

Be advised that when the fix commences it will shut down all running processes and you may lose the desktop and icons, they will return on reboot

Run OTL

Under the Custom Scans/Fixes box at the bottom, paste in the following
Posted Image

:OTL
[2012/09/22 00:52:29 | 000,000,318 | ---- | C] () -- C:\Windows\tasks\wkqvwvtid.job
[2012/09/22 00:52:28 | 000,126,976 | RHS- | C] () -- C:\Windows\System32\difxapid.dll
[2012/02/13 22:47:25 | 000,004,037 | ---- | C] () -- C:\Windows\System32\doc-0o-4.com-viewer-securedownload-5sj8mc9cp1vsrvk6n9j6e1hdqqd6fhce-umh5ev1fv5oufk72sfjgcqlasjd3ief4-1329152400000-Z21haWw=-AGZ5hq_U1cWSHHkQejQOuHY9ERti-MTM1NzdiNDZiYjIxZmZkZXwwLjEuMC4xLjAuMQ==.lnk

:Commands
[purity]
[resethosts]
[emptytemp]
[CREATERESTOREPOINT]
[Reboot]

Then click the Run Fix button at the top
Let the program run unhindered, reboot the PC when it is done
Open OTL again and click the Quick Scan button. Post the log it produces in your next reply.

THEN

Download the latest version of TDSSKiller from here and save it to your Desktop.

Doubleclick on TDSSKiller.exe to run the application
Then click on Change parameters.
Check the boxes beside Verify Driver Digital Signature and Detect TDLFS file system, then click OK.
Click the Start Scan button.
If a suspicious object is detected, the default action will be Skip, click on Continue.
If malicious objects are found, they will show in the Scan results and offer three (3) options.
Ensure Cure is selected, then click Continue => Reboot now to finish the cleaning process.
Get the report by selecting Reports
Note: If Cure is not available, please choose Skip instead, do not choose Delete unless instructed.

Please copy and paste its contents on your next reply.

#3
kingfisher3210

Posted 23 September 2012 - 02:37 PM

Member

Topic Starter
Member
42 posts

OTL logfile created on: 9/24/2012 1:40:26 AM - Run 2
OTL by OldTimer - Version 3.2.66.0 Folder = C:\Users\Akhil Baveja\Downloads
Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: India | Language: ENN | Date Format: dd-MM-yyyy

1011.87 Mb Total Physical Memory | 306.25 Mb Available Physical Memory | 30.27% Memory free
1.99 Gb Paging File | 1.11 Gb Available in Paging File | 56.00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 87.53 Gb Total Space | 69.19 Gb Free Space | 79.04% Space Free | Partition Type: NTFS
Drive D: | 4.10 Gb Total Space | 2.56 Gb Free Space | 62.45% Space Free | Partition Type: FAT32
Drive E: | 94.73 Gb Total Space | 93.55 Gb Free Space | 98.76% Space Free | Partition Type: NTFS
Drive F: | 98.63 Gb Total Space | 98.42 Gb Free Space | 99.79% Space Free | Partition Type: NTFS

Computer Name: AKHILBAVEJA-PC | User Name: Akhil Baveja | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/23 19:29:53 | 000,601,600 | ---- | M] (OldTimer Tools) -- C:\Users\Akhil Baveja\Downloads\OTL.exe
PRC - [2012/07/28 02:21:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/06/24 09:52:20 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2011/05/10 10:31:33 | 000,492,096 | ---- | M] (Insyde Software Corp.) -- C:\Program Files\Acer\Updater\iUpdate.exe
PRC - [2011/05/10 10:31:32 | 000,408,128 | ---- | M] (Insyde Software Corp.) -- C:\Program Files\Acer\Android Manager\iSync.exe
PRC - [2011/03/14 17:14:38 | 000,414,800 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LMutilps32.exe
PRC - [2011/03/14 17:14:38 | 000,334,416 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LMworker.exe
PRC - [2011/03/14 17:14:36 | 001,081,424 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2011/03/14 17:14:36 | 000,352,336 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\dsiwmis.exe
PRC - [2011/03/07 14:15:22 | 001,755,136 | ---- | M] (Realsil Microelectronics Inc.) -- C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe
PRC - [2011/02/25 11:00:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011/02/23 09:31:10 | 000,715,368 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
PRC - [2011/02/23 09:31:08 | 000,739,944 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
PRC - [2011/02/23 09:31:02 | 000,469,608 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
PRC - [2011/02/01 02:25:14 | 000,244,624 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2010/11/21 02:59:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/06 12:24:22 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/11/06 12:24:20 | 000,283,160 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/10/06 03:16:10 | 000,704,104 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\AcerVCM.exe
PRC - [2010/09/28 07:30:56 | 000,340,336 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
PRC - [2010/09/18 04:40:16 | 000,407,920 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec IPS\PmmUpdate.exe
PRC - [2010/09/18 04:40:02 | 000,201,584 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec IPS\EgisUpdate.exe
PRC - [2010/01/30 05:22:58 | 000,260,640 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe

========== Modules (No Company Name) ==========

MOD - [2012/06/14 20:36:37 | 000,475,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\3ac345f23c9bf10342c5c12f2d2c5728\IAStorUtil.ni.dll
MOD - [2012/06/14 18:01:35 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\828e99a57411166ccc26d24be089ba44\System.Windows.Forms.ni.dll
MOD - [2012/06/14 18:01:10 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\502adc65e43b9d025cba1fd0bfa964a8\System.Drawing.ni.dll
MOD - [2012/05/12 15:01:55 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\23917a73056cd44ac791a08442c9848a\IAStorCommon.ni.dll
MOD - [2012/05/12 14:27:29 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\12dc22db56f7933e84654ecc590beba5\System.Runtime.Remoting.ni.dll
MOD - [2012/05/12 14:24:32 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\5b10c18a074132f1ae4a86d860cf9615\WindowsBase.ni.dll
MOD - [2012/05/12 14:24:14 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\cfb0e4de1afd3f2efbbf39a5e39f646a\System.Xml.ni.dll
MOD - [2012/05/12 14:24:03 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2a5cbab122112cd4291b684e67460c16\System.Configuration.ni.dll
MOD - [2012/05/12 14:24:01 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9447bd5b21a91081d4275b4c4401b1f9\System.ni.dll
MOD - [2012/05/12 14:23:42 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\2ab531f4915cccb998c4e852fb7efd00\mscorlib.ni.dll

========== Services (SafeList) ==========

SRV - [2012/07/28 02:21:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/03/14 17:14:36 | 000,352,336 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2011/03/07 14:15:22 | 001,755,136 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2011/02/23 09:31:08 | 000,739,944 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV - [2011/02/01 02:25:14 | 000,244,624 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Live Updater Service)
SRV - [2010/11/06 12:24:22 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/09/28 06:39:54 | 000,172,912 | ---- | M] (Egis Technology Inc. ) [On_Demand | Stopped] -- C:\Program Files\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service)
SRV - [2010/01/30 05:22:58 | 000,260,640 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer VCM\RS_Service.exe -- (RS_Service)
SRV - [2009/07/14 06:45:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{92BE8BFD-CEC6-4D87-BA39-8C0C01536B81}\MpKslff8899ad.sys -- (MpKslff8899ad)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKslfdbce2ee.sys -- (MpKslfdbce2ee)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslfbd2caf1.sys -- (MpKslfbd2caf1)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKslf8244d8a.sys -- (MpKslf8244d8a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E67270D3-2F8E-4AD2-9928-B3FBCE43821E}\MpKslf6b04e98.sys -- (MpKslf6b04e98)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslf48e10b4.sys -- (MpKslf48e10b4)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3382A8A9-8112-4889-841B-36C4CCE7D63D}\MpKslf1433579.sys -- (MpKslf1433579)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C59764B-24A9-4C19-B28F-957B83FD0ECB}\MpKslf006b12e.sys -- (MpKslf006b12e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{125A2177-586F-4CBC-A2A1-E4CDC3131FF5}\MpKslee01476d.sys -- (MpKslee01476d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4EF603EF-F10D-45C9-9968-0DFBC777A294}\MpKsledb5f72c.sys -- (MpKsledb5f72c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7A811974-143C-4192-810F-E526ED6E58C9}\MpKslecd217de.sys -- (MpKslecd217de)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7775643-145D-4848-B4BC-51957DD2C503}\MpKslecb2691b.sys -- (MpKslecb2691b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC3374BA-9E78-4EC4-83D3-7AB6B6B04046}\MpKslea8ca7cb.sys -- (MpKslea8ca7cb)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKsle923b9a6.sys -- (MpKsle923b9a6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{63C8D80E-9686-4207-A43F-A347CA09CE39}\MpKsle910a5f5.sys -- (MpKsle910a5f5)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75F901F6-310E-453C-8A7B-15403DEE0D7A}\MpKsle729d806.sys -- (MpKsle729d806)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CA5A3ABB-2E07-4C39-8276-A7501DF24765}\MpKsle6ae4d60.sys -- (MpKsle6ae4d60)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC4E357E-FE72-4CD2-931B-9BE8F61F92C1}\MpKsle572f6ba.sys -- (MpKsle572f6ba)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FB37A0B6-824F-49B5-A446-F75B2D66AE11}\MpKsle56f7b4f.sys -- (MpKsle56f7b4f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{78A3BB43-3DFD-4D78-B724-8EF2653FBF4A}\MpKsle1761ce5.sys -- (MpKsle1761ce5)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2EA92FCE-24B9-4DA5-9300-FA693A1B29C9}\MpKslde60af67.sys -- (MpKslde60af67)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKslde1c7de5.sys -- (MpKslde1c7de5)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DD038CBD-6BC7-4FA0-B48C-2000FCCEBFEF}\MpKsldd51ab34.sys -- (MpKsldd51ab34)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1E8E37DD-94FA-43F2-9DBC-A3863D8E5DC7}\MpKslda6e4aea.sys -- (MpKslda6e4aea)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4A50C759-D9DA-4F91-9134-E796341ECA56}\MpKsld7e586c6.sys -- (MpKsld7e586c6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{77AC7797-FA37-4A49-BF05-9B96F1429127}\MpKsld747c86f.sys -- (MpKsld747c86f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5285C302-45B0-4D11-A56C-63291B5ECF2F}\MpKsld58d6931.sys -- (MpKsld58d6931)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9E27DE14-7F7B-426E-810F-DEEBD5315B15}\MpKslce9d0181.sys -- (MpKslce9d0181)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BA7CDA28-6FE4-41D5-ABC9-428C8B897FE7}\MpKslca589ceb.sys -- (MpKslca589ceb)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8F48956F-658D-4E0B-9C3D-08A5FA7313F3}\MpKslc39453af.sys -- (MpKslc39453af)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKslbcf74d57.sys -- (MpKslbcf74d57)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKslbc59489c.sys -- (MpKslbc59489c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0C8F2FC8-5167-435F-8DBD-2605F723E28B}\MpKslbb9cb6cd.sys -- (MpKslbb9cb6cd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKslb5d67722.sys -- (MpKslb5d67722)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1E8E37DD-94FA-43F2-9DBC-A3863D8E5DC7}\MpKslb3776706.sys -- (MpKslb3776706)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EB476B9C-7D7B-44E0-AFE8-8D0EA879A0E7}\MpKslafdd0155.sys -- (MpKslafdd0155)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKslaf88753f.sys -- (MpKslaf88753f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKslae6ebf88.sys -- (MpKslae6ebf88)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslac0a44e8.sys -- (MpKslac0a44e8)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C93BCF6E-CBF5-4FF2-ADCF-1128BDE2E0C5}\MpKsla7a69055.sys -- (MpKsla7a69055)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C59764B-24A9-4C19-B28F-957B83FD0ECB}\MpKsla75d66af.sys -- (MpKsla75d66af)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AE09BD0F-6E5C-40AF-B220-7086D4CC6570}\MpKsla5f4e6a8.sys -- (MpKsla5f4e6a8)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsla536fda6.sys -- (MpKsla536fda6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5FA0C4E3-B949-4E03-83D4-BF8433BA43D6}\MpKsla47860c6.sys -- (MpKsla47860c6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{40A9D23C-78A1-49C6-8C8E-8996360F1093}\MpKsla3b74131.sys -- (MpKsla3b74131)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1772E180-8748-4D3E-B24C-D6D2C5F9B5A3}\MpKsl985b3f8e.sys -- (MpKsl985b3f8e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{08E1CB06-2276-4365-9E98-33429F68E66B}\MpKsl950dae20.sys -- (MpKsl950dae20)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{238ABD0D-BB80-41D1-816D-101CD48DB40A}\MpKsl93e06edd.sys -- (MpKsl93e06edd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{89129128-A246-425E-9064-A163F30156C3}\MpKsl9134de0b.sys -- (MpKsl9134de0b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{29744E99-DB21-4352-8935-079363060011}\MpKsl8f785007.sys -- (MpKsl8f785007)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8F48956F-658D-4E0B-9C3D-08A5FA7313F3}\MpKsl8f45d270.sys -- (MpKsl8f45d270)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D9A9D432-6DAD-4751-9B4C-D0746373D450}\MpKsl8d0e4e03.sys -- (MpKsl8d0e4e03)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKsl8bbf55ef.sys -- (MpKsl8bbf55ef)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39B354B6-CF95-4B9D-AC21-05762961ACB2}\MpKsl8a94550b.sys -- (MpKsl8a94550b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKsl8887dd69.sys -- (MpKsl8887dd69)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl849ddc69.sys -- (MpKsl849ddc69)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F8348DFA-B2EC-4D0C-8183-8A7F1A26DBBD}\MpKsl825d4dcd.sys -- (MpKsl825d4dcd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C06F1EB1-24A6-4A04-A4A5-CF2133B9D20A}\MpKsl810da3ce.sys -- (MpKsl810da3ce)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl808cdd75.sys -- (MpKsl808cdd75)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC4E357E-FE72-4CD2-931B-9BE8F61F92C1}\MpKsl80047a56.sys -- (MpKsl80047a56)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{686F8D9F-7DFB-4123-962E-D524A41B8F07}\MpKsl79dcca5b.sys -- (MpKsl79dcca5b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F1DAEE56-5BF9-4C3A-9888-2BF33891348E}\MpKsl79139c6f.sys -- (MpKsl79139c6f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1772E180-8748-4D3E-B24C-D6D2C5F9B5A3}\MpKsl78bb618c.sys -- (MpKsl78bb618c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{04D1AB29-B55C-4DC2-9DCF-AFCCBB897CCB}\MpKsl76c4500e.sys -- (MpKsl76c4500e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9F723B4E-1363-43E7-93FB-F7DBD1A734D0}\MpKsl74cea91a.sys -- (MpKsl74cea91a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKsl74b68d33.sys -- (MpKsl74b68d33)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E9FB65E-1258-4CBD-AC75-F7769C4DE9E1}\MpKsl7107e1bb.sys -- (MpKsl7107e1bb)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7382277E-3EF8-415E-B60F-3B294925D32B}\MpKsl6fbd6c71.sys -- (MpKsl6fbd6c71)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D1DC07D7-3A2F-46CC-8B94-AD3DB9E07DB7}\MpKsl6e254e07.sys -- (MpKsl6e254e07)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4A50C759-D9DA-4F91-9134-E796341ECA56}\MpKsl6cdb11b2.sys -- (MpKsl6cdb11b2)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6D871E12-EE11-4FA3-ADAC-8DDDDC61D211}\MpKsl6a4aee20.sys -- (MpKsl6a4aee20)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{04D1AB29-B55C-4DC2-9DCF-AFCCBB897CCB}\MpKsl667b9d9a.sys -- (MpKsl667b9d9a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKsl65626759.sys -- (MpKsl65626759)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3A3D9F2A-43D0-4FF4-85D4-FF36F131DDD8}\MpKsl63b7466e.sys -- (MpKsl63b7466e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{428C7610-9B6E-4BF7-9CE5-8F4C76F45B14}\MpKsl6307e0b6.sys -- (MpKsl6307e0b6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D1DC07D7-3A2F-46CC-8B94-AD3DB9E07DB7}\MpKsl62f71e41.sys -- (MpKsl62f71e41)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{92BE8BFD-CEC6-4D87-BA39-8C0C01536B81}\MpKsl5b5b0756.sys -- (MpKsl5b5b0756)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl5adf0c5d.sys -- (MpKsl5adf0c5d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9AFD9547-F4A9-4980-92C4-EA0B73808D85}\MpKsl595fe79e.sys -- (MpKsl595fe79e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{96C05351-F320-4153-909F-9E0650990025}\MpKsl588727c3.sys -- (MpKsl588727c3)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEAD3384-A148-4DAE-B8B7-4C5A0E2ECF20}\MpKsl56dcf45a.sys -- (MpKsl56dcf45a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2435138B-C207-4436-9C21-7BCBD68F10CE}\MpKsl55b1c7dc.sys -- (MpKsl55b1c7dc)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl550588d0.sys -- (MpKsl550588d0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC3374BA-9E78-4EC4-83D3-7AB6B6B04046}\MpKsl52944419.sys -- (MpKsl52944419)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6801923D-6C98-4F19-9935-1AF0D75C79CC}\MpKsl52616f74.sys -- (MpKsl52616f74)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7A510B5A-7392-4414-9931-2D017F817EB2}\MpKsl5022c774.sys -- (MpKsl5022c774)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10A420C9-DAD7-4A60-A46C-ABEE2355C0B4}\MpKsl4ec6c2a0.sys -- (MpKsl4ec6c2a0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AE09BD0F-6E5C-40AF-B220-7086D4CC6570}\MpKsl4e13e741.sys -- (MpKsl4e13e741)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{30054914-C736-47C1-BBE4-951997B4221D}\MpKsl4d4d2db8.sys -- (MpKsl4d4d2db8)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C9200220-4401-46EB-9B7B-0D7578DFE4CA}\MpKsl4d30669b.sys -- (MpKsl4d30669b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4EF603EF-F10D-45C9-9968-0DFBC777A294}\MpKsl4c5c63dd.sys -- (MpKsl4c5c63dd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl4a4e1391.sys -- (MpKsl4a4e1391)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{457223A7-0ED2-4E74-961A-A5C3BF5C1654}\MpKsl4a2ec07c.sys -- (MpKsl4a2ec07c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsl47853568.sys -- (MpKsl47853568)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{62CAF5F3-0C4F-4CBB-B696-519E85DF46CA}\MpKsl466e1bef.sys -- (MpKsl466e1bef)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{40A9D23C-78A1-49C6-8C8E-8996360F1093}\MpKsl45db01c1.sys -- (MpKsl45db01c1)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKsl45b6953f.sys -- (MpKsl45b6953f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E9FB65E-1258-4CBD-AC75-F7769C4DE9E1}\MpKsl4395796c.sys -- (MpKsl4395796c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A60C0A22-96CB-4543-B8F1-E5F76A9EA7BD}\MpKsl3e1e6704.sys -- (MpKsl3e1e6704)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl3a89a42b.sys -- (MpKsl3a89a42b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AE0F988F-6461-4644-926A-826A7993D796}\MpKsl388a373f.sys -- (MpKsl388a373f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl3822fce0.sys -- (MpKsl3822fce0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{503E92E6-27C7-403C-9BA6-301930245543}\MpKsl37aaca1d.sys -- (MpKsl37aaca1d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4F555093-FEEC-4BA3-8179-821EBDF1E619}\MpKsl3552e5d9.sys -- (MpKsl3552e5d9)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61EAD053-A5E4-4463-BBE2-D1FDF9DF45D4}\MpKsl321d210f.sys -- (MpKsl321d210f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9F723B4E-1363-43E7-93FB-F7DBD1A734D0}\MpKsl2c092542.sys -- (MpKsl2c092542)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{89129128-A246-425E-9064-A163F30156C3}\MpKsl299db2bf.sys -- (MpKsl299db2bf)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{96C20DD7-AFBB-4FD0-9D47-84D326542D45}\MpKsl2951948a.sys -- (MpKsl2951948a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl26fd884d.sys -- (MpKsl26fd884d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsl25974fdd.sys -- (MpKsl25974fdd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{77AC7797-FA37-4A49-BF05-9B96F1429127}\MpKsl247b440a.sys -- (MpKsl247b440a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DDA39423-3BEE-4887-ADB5-C7B142041B80}\MpKsl23511d90.sys -- (MpKsl23511d90)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{639B94F3-05D4-4638-84E3-96A97557F47B}\MpKsl22b466c0.sys -- (MpKsl22b466c0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7775643-145D-4848-B4BC-51957DD2C503}\MpKsl215a7d0e.sys -- (MpKsl215a7d0e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKsl1ff5b50f.sys -- (MpKsl1ff5b50f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BA7CDA28-6FE4-41D5-ABC9-428C8B897FE7}\MpKsl1c8a8c50.sys -- (MpKsl1c8a8c50)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKsl1bc93270.sys -- (MpKsl1bc93270)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKsl1b0a817c.sys -- (MpKsl1b0a817c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKsl1a8bab1e.sys -- (MpKsl1a8bab1e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75F901F6-310E-453C-8A7B-15403DEE0D7A}\MpKsl1a1cb220.sys -- (MpKsl1a1cb220)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4AAF7265-7C68-4649-97CD-87153FA28C59}\MpKsl175dbe8b.sys -- (MpKsl175dbe8b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6801923D-6C98-4F19-9935-1AF0D75C79CC}\MpKsl175c11c3.sys -- (MpKsl175c11c3)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C93BCF6E-CBF5-4FF2-ADCF-1128BDE2E0C5}\MpKsl16c6f296.sys -- (MpKsl16c6f296)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{35C15002-65A0-4EB0-8392-17CCE6A9CD82}\MpKsl1543184b.sys -- (MpKsl1543184b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E67270D3-2F8E-4AD2-9928-B3FBCE43821E}\MpKsl10d13f7d.sys -- (MpKsl10d13f7d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C693B576-85EA-4AF2-9527-B45F01B372F1}\MpKsl1010d031.sys -- (MpKsl1010d031)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F1DAEE56-5BF9-4C3A-9888-2BF33891348E}\MpKsl0e82d3ac.sys -- (MpKsl0e82d3ac)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{686F8D9F-7DFB-4123-962E-D524A41B8F07}\MpKsl0db3a256.sys -- (MpKsl0db3a256)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A4F46F46-F4EA-46AA-8BF0-91F8C42026D2}\MpKsl0d77b33e.sys -- (MpKsl0d77b33e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C9200220-4401-46EB-9B7B-0D7578DFE4CA}\MpKsl0afc50cc.sys -- (MpKsl0afc50cc)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKsl084932dc.sys -- (MpKsl084932dc)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4AAF7265-7C68-4649-97CD-87153FA28C59}\MpKsl0800b086.sys -- (MpKsl0800b086)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{763AB2EA-F204-4FCB-8628-DF53D9D5B85C}\MpKsl06ad743b.sys -- (MpKsl06ad743b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{817BB6C2-512A-4B9F-9E65-F1D79D1BDD5A}\MpKsl065c61dd.sys -- (MpKsl065c61dd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2435138B-C207-4436-9C21-7BCBD68F10CE}\MpKsl0641446a.sys -- (MpKsl0641446a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0C8F2FC8-5167-435F-8DBD-2605F723E28B}\MpKsl04819391.sys -- (MpKsl04819391)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl030b0605.sys -- (MpKsl030b0605)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E6731360-4E36-484C-AE4A-C964F375BDE1}\MpKsl02dbef18.sys -- (MpKsl02dbef18)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7A811974-143C-4192-810F-E526ED6E58C9}\MpKsl016e5b84.sys -- (MpKsl016e5b84)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{592C9A2B-F81E-4140-8296-5836472582C4}\MpKsl00cf017c.sys -- (MpKsl00cf017c)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwrchid.sys -- (btwrchid)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwl2cap.sys -- (btwl2cap)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwavdt.sys -- (btwavdt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\btwaudio.sys -- (btwaudio)
DRV - [2012/03/20 20:44:12 | 000,074,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/05/12 16:52:14 | 000,062,048 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV - [2011/05/12 16:52:14 | 000,019,304 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\System32\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV - [2011/05/12 16:52:14 | 000,016,744 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV - [2011/03/07 09:16:26 | 000,252,520 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtsPStor.sys -- (RSPCIESTOR)
DRV - [2010/11/21 02:59:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/21 02:59:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2009/07/14 03:32:46 | 001,096,704 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athr.sys -- (athr)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = http://acer.msn.com
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKCU\..\URLSearchHook: {88c7f2aa-f93f-432c-8f0e-b7d85967a527} - No CLSID value found
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Akhil Baveja\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Akhil Baveja\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/04/05 16:19:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2011/12/23 15:03:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Akhil Baveja\AppData\Roaming\Mozilla\Extensions
[2012/06/24 23:54:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Akhil Baveja\AppData\Roaming\Mozilla\Firefox\Profiles\ayqgim5j.default\extensions
[2011/12/23 15:03:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/04/05 16:19:56 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/04/05 16:19:49 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/04/05 16:19:49 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.83\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.83\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.83\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: YouTube = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: BitTorrentBar = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\mhfdcmehmjcclgopdodkjdicohagipid\2.3.7.1_0\
CHR - Extension: Gmail = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009/06/11 03:09:37 | 000,000,824 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O3 - HKLM\..\Toolbar: (no name) - Locked - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} - No CLSID value found.
O4 - HKLM..\Run: [AndroidManager] C:\Program Files\Acer\Android Manager\AML.exe ()
O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [EgisUpdate] C:\Program Files\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [iPatchData] C:\Program Files\Acer\Updater\iUpdate.exe (Insyde Software Corp.)
O4 - HKLM..\Run: [iSyncData] C:\Program Files\Acer\Android Manager\iSync.exe (Insyde Software Corp.)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4 - HKLM..\Run: [SuiteTray] C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
O4 - HKCU..\Run: [Messenger (Yahoo!)] E:\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKCU..\Run: [Wisdom-soft ScreenHunter 5.1 Plus] 0 File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&xport to Microsoft Excel - E:\office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\NPJPI150.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://javadl-esd.su...indows-i586.cab (Java Plug-in 1.5.0)
O16 - DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5FFBFED2-2E72-4757-9463-108CB0E9F941}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BC84C8BC-2919-4F99-B293-F3C33B4F2358}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 03:12:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2012/09/24 01:34:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/09/22 21:21:25 | 000,000,000 | ---D | C] -- C:\Users\Akhil Baveja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012/09/22 21:21:24 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/09/24 01:43:19 | 000,016,160 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/24 01:43:19 | 000,016,160 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/24 01:36:11 | 000,016,384 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2012/09/24 01:36:11 | 000,000,318 | ---- | M] () -- C:\Windows\tasks\wkqvwvtid.job
[2012/09/24 01:36:06 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/24 01:35:59 | 795,762,688 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/24 01:30:00 | 000,000,376 | ---- | M] () -- C:\Windows\tasks\Acer Registration - Reminder Recall task.job
[2012/09/24 01:14:01 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3807445768-3563054489-1376992915-1000UA.job
[2012/09/23 15:35:04 | 000,630,560 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/09/23 15:35:04 | 000,111,612 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/09/22 21:21:25 | 000,002,995 | ---- | M] () -- C:\Users\Akhil Baveja\Desktop\HiJackThis.lnk
[2012/09/22 00:52:29 | 000,126,976 | RHS- | M] () -- C:\Windows\System32\difxapid.dll
[2012/09/20 11:14:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3807445768-3563054489-1376992915-1000Core.job
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/09/22 21:21:25 | 000,002,995 | ---- | C] () -- C:\Users\Akhil Baveja\Desktop\HiJackThis.lnk
[2012/09/22 00:52:29 | 000,000,318 | ---- | C] () -- C:\Windows\tasks\wkqvwvtid.job
[2012/09/22 00:52:28 | 000,126,976 | RHS- | C] () -- C:\Windows\System32\difxapid.dll
[2012/02/13 22:47:25 | 000,004,037 | ---- | C] () -- C:\Windows\System32\doc-0o-4.com-viewer-securedownload-5sj8mc9cp1vsrvk6n9j6e1hdqqd6fhce-umh5ev1fv5oufk72sfjgcqlasjd3ief4-1329152400000-Z21haWw=-AGZ5hq_U1cWSHHkQejQOuHY9ERti-MTM1NzdiNDZiYjIxZmZkZXwwLjEuMC4xLjAuMQ==.lnk
[2011/08/17 11:59:31 | 000,000,065 | ---- | C] () -- C:\Windows\wininit.ini
[2011/08/01 01:30:43 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2011/05/12 16:09:00 | 000,131,984 | ---- | C] () -- C:\ProgramData\FullRemove.exe
[2011/05/12 16:04:53 | 000,039,672 | ---- | C] () -- C:\Windows\System32\drivers\RtPCEE3.DAT
[2011/05/12 16:04:53 | 000,029,494 | ---- | C] () -- C:\Windows\System32\drivers\RtPCEE4.DAT
[2011/05/12 16:04:53 | 000,001,448 | ---- | C] () -- C:\Windows\System32\drivers\RtHdatEx.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX3.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX2.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2011/05/12 16:04:53 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ1.dat
[2011/05/12 16:04:53 | 000,000,040 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat
[2011/05/12 16:04:52 | 000,247,560 | ---- | C] () -- C:\Windows\System32\drivers\RTConvEQ.dat
[2011/05/12 16:01:42 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll

========== ZeroAccess Check ==========

[2009/07/14 10:12:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 10:11:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 06:46:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/01/19 13:28:58 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Binreader
[2012/05/08 07:18:12 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\BitTorrent
[2012/01/11 13:06:34 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\FreeCall
[2012/06/07 14:58:11 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Gleim
[2011/12/01 19:51:38 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Mobipocket
[2012/01/10 13:02:50 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Rebtel
[2012/04/24 02:45:26 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\SoftGrid Client
[2011/08/05 12:59:11 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\TP
[2011/08/05 01:34:45 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Windows Live Writer

========== Purity Check ==========

========== Alternate Data Streams ==========

@Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:C46995DA

< End of report >

#4
kingfisher3210

Posted 23 September 2012 - 02:45 PM

Member

Topic Starter
Member
42 posts

02:12:52.0654 3180 TDSS rootkit removing tool 2.8.10.0 Sep 17 2012 19:23:24
02:12:53.0855 3180 ============================================================
02:12:53.0855 3180 Current date / time: 2012/09/24 02:12:53.0855
02:12:53.0855 3180 SystemInfo:
02:12:53.0855 3180
02:12:53.0855 3180 OS Version: 6.1.7601 ServicePack: 1.0
02:12:53.0855 3180 Product type: Workstation
02:12:53.0855 3180 ComputerName: AKHILBAVEJA-PC
02:12:53.0855 3180 UserName: Akhil Baveja
02:12:53.0855 3180 Windows directory: C:\Windows
02:12:53.0855 3180 System windows directory: C:\Windows
02:12:53.0855 3180 Processor architecture: Intel x86
02:12:53.0855 3180 Number of processors: 4
02:12:53.0855 3180 Page size: 0x1000
02:12:53.0855 3180 Boot type: Normal boot
02:12:53.0855 3180 ============================================================
02:12:54.0604 3180 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
02:12:54.0604 3180 ============================================================
02:12:54.0604 3180 \Device\Harddisk0\DR0:
02:12:54.0604 3180 MBR partitions:
02:12:54.0604 3180 \Device\Harddisk0\DR0\Partition1: MBR, Type 0xC, StartLBA 0x1A00800, BlocksNum 0x833800
02:12:54.0604 3180 \Device\Harddisk0\DR0\Partition2: MBR, Type 0x7, StartLBA 0x2234000, BlocksNum 0x32000
02:12:54.0620 3180 \Device\Harddisk0\DR0\Partition3: MBR, Type 0x7, StartLBA 0x2266800, BlocksNum 0xAF0F800
02:12:54.0635 3180 \Device\Harddisk0\DR0\Partition4: MBR, Type 0x7, StartLBA 0xD176800, BlocksNum 0xBD73800
02:12:54.0666 3180 \Device\Harddisk0\DR0\Partition5: MBR, Type 0x7, StartLBA 0x18EEA800, BlocksNum 0xC543800
02:12:54.0666 3180 ============================================================
02:12:54.0682 3180 C: <-> \Device\Harddisk0\DR0\Partition3
02:12:54.0698 3180 D: <-> \Device\Harddisk0\DR0\Partition1
02:12:54.0729 3180 E: <-> \Device\Harddisk0\DR0\Partition4
02:12:54.0776 3180 F: <-> \Device\Harddisk0\DR0\Partition5
02:12:54.0776 3180 ============================================================
02:12:54.0776 3180 Initialize success
02:12:54.0776 3180 ============================================================
02:13:01.0016 2056 ============================================================
02:13:01.0016 2056 Scan started
02:13:01.0016 2056 Mode: Manual; SigCheck; TDLFS;
02:13:01.0016 2056 ============================================================
02:13:01.0234 2056 ================ Scan system memory ========================
02:13:01.0234 2056 System memory - ok
02:13:01.0234 2056 ================ Scan services =============================
02:13:01.0593 2056 [ 1B133875B8AA8AC48969BD3458AFE9F5 ] 1394ohci C:\Windows\system32\drivers\1394ohci.sys
02:13:01.0733 2056 1394ohci - ok
02:13:01.0780 2056 [ CEA80C80BED809AA0DA6FEBC04733349 ] ACPI C:\Windows\system32\drivers\ACPI.sys
02:13:01.0842 2056 ACPI - ok
02:13:01.0858 2056 [ 1EFBC664ABFF416D1D07DB115DCB264F ] AcpiPmi C:\Windows\system32\drivers\acpipmi.sys
02:13:01.0905 2056 AcpiPmi - ok
02:13:02.0030 2056 [ D19C4EE2AC7C47B8F5F84FFF1A789D8A ] AdobeARMservice C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
02:13:02.0061 2056 AdobeARMservice - ok
02:13:02.0108 2056 [ 21E785EBD7DC90A06391141AAC7892FB ] adp94xx C:\Windows\system32\drivers\adp94xx.sys
02:13:02.0154 2056 adp94xx - ok
02:13:02.0170 2056 [ 0C676BC278D5B59FF5ABD57BBE9123F2 ] adpahci C:\Windows\system32\drivers\adpahci.sys
02:13:02.0217 2056 adpahci - ok
02:13:02.0248 2056 [ 7C7B5EE4B7B822EC85321FE23A27DB33 ] adpu320 C:\Windows\system32\drivers\adpu320.sys
02:13:02.0279 2056 adpu320 - ok
02:13:02.0326 2056 [ 8B5EEFEEC1E6D1A72A06C526628AD161 ] AeLookupSvc C:\Windows\System32\aelupsvc.dll
02:13:02.0388 2056 AeLookupSvc - ok
02:13:02.0435 2056 [ 9EBBBA55060F786F0FCAA3893BFA2806 ] AFD C:\Windows\system32\drivers\afd.sys
02:13:02.0498 2056 AFD - ok
02:13:02.0529 2056 [ 507812C3054C21CEF746B6EE3D04DD6E ] agp440 C:\Windows\system32\drivers\agp440.sys
02:13:02.0544 2056 agp440 - ok
02:13:02.0591 2056 [ 8B30250D573A8F6B4BD23195160D8707 ] aic78xx C:\Windows\system32\drivers\djsvs.sys
02:13:02.0622 2056 aic78xx - ok
02:13:02.0700 2056 [ 18A54E132947CD98FEA9ACCC57F98F13 ] ALG C:\Windows\System32\alg.exe
02:13:02.0763 2056 ALG - ok
02:13:02.0778 2056 [ 0D40BCF52EA90FC7DF2AEAB6503DEA44 ] aliide C:\Windows\system32\drivers\aliide.sys
02:13:02.0810 2056 aliide - ok
02:13:02.0825 2056 [ 3C6600A0696E90A463771C7422E23AB5 ] amdagp C:\Windows\system32\drivers\amdagp.sys
02:13:02.0856 2056 amdagp - ok
02:13:02.0872 2056 [ CD5914170297126B6266860198D1D4F0 ] amdide C:\Windows\system32\drivers\amdide.sys
02:13:02.0903 2056 amdide - ok
02:13:02.0919 2056 [ 00DDA200D71BAC534BF56A9DB5DFD666 ] AmdK8 C:\Windows\system32\drivers\amdk8.sys
02:13:02.0950 2056 AmdK8 - ok
02:13:02.0966 2056 [ 3CBF30F5370FDA40DD3E87DF38EA53B6 ] AmdPPM C:\Windows\system32\drivers\amdppm.sys
02:13:03.0012 2056 AmdPPM - ok
02:13:03.0044 2056 [ D320BF87125326F996D4904FE24300FC ] amdsata C:\Windows\system32\drivers\amdsata.sys
02:13:03.0075 2056 amdsata - ok
02:13:03.0090 2056 [ EA43AF0C423FF267355F74E7A53BDABA ] amdsbs C:\Windows\system32\drivers\amdsbs.sys
02:13:03.0122 2056 amdsbs - ok
02:13:03.0153 2056 [ 46387FB17B086D16DEA267D5BE23A2F2 ] amdxata C:\Windows\system32\drivers\amdxata.sys
02:13:03.0184 2056 amdxata - ok
02:13:03.0200 2056 [ AEA177F783E20150ACE5383EE368DA19 ] AppID C:\Windows\system32\drivers\appid.sys
02:13:03.0262 2056 AppID - ok
02:13:03.0278 2056 [ 62A9C86CB6085E20DB4823E4E97826F5 ] AppIDSvc C:\Windows\System32\appidsvc.dll
02:13:03.0340 2056 AppIDSvc - ok
02:13:03.0371 2056 [ FB1959012294D6AD43E5304DF65E3C26 ] Appinfo C:\Windows\System32\appinfo.dll
02:13:03.0434 2056 Appinfo - ok
02:13:03.0449 2056 [ 2932004F49677BD84DBC72EDB754FFB3 ] arc C:\Windows\system32\drivers\arc.sys
02:13:03.0496 2056 arc - ok
02:13:03.0496 2056 [ 5D6F36C46FD283AE1B57BD2E9FEB0BC7 ] arcsas C:\Windows\system32\drivers\arcsas.sys
02:13:03.0527 2056 arcsas - ok
02:13:03.0558 2056 [ ADD2ADE1C2B285AB8378D2DAAF991481 ] AsyncMac C:\Windows\system32\DRIVERS\asyncmac.sys
02:13:03.0621 2056 AsyncMac - ok
02:13:03.0668 2056 [ 338C86357871C167A96AB976519BF59E ] atapi C:\Windows\system32\drivers\atapi.sys
02:13:03.0714 2056 atapi - ok
02:13:03.0761 2056 [ 76BAB0C824E2D05B940C4DD40A9B08BF ] athr C:\Windows\system32\DRIVERS\athr.sys
02:13:03.0839 2056 athr - ok
02:13:03.0870 2056 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] AudioEndpointBuilder C:\Windows\System32\Audiosrv.dll
02:13:03.0948 2056 AudioEndpointBuilder - ok
02:13:03.0980 2056 [ CE3B4E731638D2EF62FCB419BE0D39F0 ] Audiosrv C:\Windows\System32\Audiosrv.dll
02:13:04.0058 2056 Audiosrv - ok
02:13:04.0104 2056 [ 6E30D02AAC9CAC84F421622E3A2F6178 ] AxInstSV C:\Windows\System32\AxInstSV.dll
02:13:04.0151 2056 AxInstSV - ok
02:13:04.0198 2056 [ 1A231ABEC60FD316EC54C66715543CEC ] b06bdrv C:\Windows\system32\drivers\bxvbdx.sys
02:13:04.0245 2056 b06bdrv - ok
02:13:04.0260 2056 [ BD8869EB9CDE6BBE4508D869929869EE ] b57nd60x C:\Windows\system32\DRIVERS\b57nd60x.sys
02:13:04.0307 2056 b57nd60x - ok
02:13:04.0448 2056 [ 10F5B65A57D091CC61C1D200F6F503FC ] BCM43XX C:\Windows\system32\DRIVERS\bcmwl6.sys
02:13:04.0713 2056 BCM43XX - ok
02:13:04.0869 2056 [ EE1E9C3BB8228AE423DD38DB69128E71 ] BDESVC C:\Windows\System32\bdesvc.dll
02:13:04.0931 2056 BDESVC - ok
02:13:05.0087 2056 [ 505506526A9D467307B3C393DEDAF858 ] Beep C:\Windows\system32\drivers\Beep.sys
02:13:05.0150 2056 Beep - ok
02:13:05.0196 2056 [ 1E2BAC209D184BB851E1A187D8A29136 ] BFE C:\Windows\System32\bfe.dll
02:13:05.0274 2056 BFE - ok
02:13:05.0321 2056 [ E585445D5021971FAE10393F0F1C3961 ] BITS C:\Windows\System32\qmgr.dll
02:13:05.0415 2056 BITS - ok
02:13:05.0430 2056 [ 2287078ED48FCFC477B05B20CF38F36F ] blbdrive C:\Windows\system32\drivers\blbdrive.sys
02:13:05.0477 2056 blbdrive - ok
02:13:05.0493 2056 [ 8F2DA3028D5FCBD1A060A3DE64CD6506 ] bowser C:\Windows\system32\DRIVERS\bowser.sys
02:13:05.0540 2056 bowser - ok
02:13:05.0555 2056 [ 9F9ACC7F7CCDE8A15C282D3F88B43309 ] BrFiltLo C:\Windows\system32\drivers\BrFiltLo.sys
02:13:05.0602 2056 BrFiltLo - ok
02:13:05.0618 2056 [ 56801AD62213A41F6497F96DEE83755A ] BrFiltUp C:\Windows\system32\drivers\BrFiltUp.sys
02:13:05.0664 2056 BrFiltUp - ok
02:13:05.0696 2056 [ 3DAA727B5B0A45039B0E1C9A211B8400 ] Browser C:\Windows\System32\browser.dll
02:13:05.0742 2056 Browser - ok
02:13:05.0774 2056 [ 845B8CE732E67F3B4133164868C666EA ] Brserid C:\Windows\System32\Drivers\Brserid.sys
02:13:05.0805 2056 Brserid - ok
02:13:05.0836 2056 [ 203F0B1E73ADADBBB7B7B1FABD901F6B ] BrSerWdm C:\Windows\System32\Drivers\BrSerWdm.sys
02:13:05.0867 2056 BrSerWdm - ok
02:13:05.0883 2056 [ BD456606156BA17E60A04E18016AE54B ] BrUsbMdm C:\Windows\System32\Drivers\BrUsbMdm.sys
02:13:05.0930 2056 BrUsbMdm - ok
02:13:05.0930 2056 [ AF72ED54503F717A43268B3CC5FAEC2E ] BrUsbSer C:\Windows\System32\Drivers\BrUsbSer.sys
02:13:05.0976 2056 BrUsbSer - ok
02:13:06.0039 2056 [ 2865A5C8E98C70C605F417908CEBB3A4 ] BthEnum C:\Windows\system32\drivers\BthEnum.sys
02:13:06.0070 2056 BthEnum - ok
02:13:06.0086 2056 [ ED3DF7C56CE0084EB2034432FC56565A ] BTHMODEM C:\Windows\system32\drivers\bthmodem.sys
02:13:06.0132 2056 BTHMODEM - ok
02:13:06.0164 2056 [ AD1872E5829E8A2C3B5B4B641C3EAB0E ] BthPan C:\Windows\system32\DRIVERS\bthpan.sys
02:13:06.0210 2056 BthPan - ok
02:13:06.0257 2056 [ 1153DE2E4F5941E10C399CB5592F78A1 ] BTHPORT C:\Windows\System32\Drivers\BTHport.sys
02:13:06.0288 2056 BTHPORT - ok
02:13:06.0351 2056 [ 1DF19C96EEF6C29D1C3E1A8678E07190 ] bthserv C:\Windows\system32\bthserv.dll
02:13:06.0429 2056 bthserv - ok
02:13:06.0476 2056 [ C81E9413A25A439F436B1D4B6A0CF9E9 ] BTHUSB C:\Windows\System32\Drivers\BTHUSB.sys
02:13:06.0538 2056 BTHUSB - ok
02:13:06.0554 2056 btwaudio - ok
02:13:06.0569 2056 btwavdt - ok
02:13:06.0585 2056 btwl2cap - ok
02:13:06.0600 2056 btwrchid - ok
02:13:06.0647 2056 [ 77EA11B065E0A8AB902D78145CA51E10 ] cdfs C:\Windows\system32\DRIVERS\cdfs.sys
02:13:06.0725 2056 cdfs - ok
02:13:06.0741 2056 [ BE167ED0FDB9C1FA1133953C18D5A6C9 ] cdrom C:\Windows\system32\drivers\cdrom.sys
02:13:06.0788 2056 cdrom - ok
02:13:06.0819 2056 [ 319C6B309773D063541D01DF8AC6F55F ] CertPropSvc C:\Windows\System32\certprop.dll
02:13:06.0881 2056 CertPropSvc - ok
02:13:06.0897 2056 [ 3FE3FE94A34DF6FB06E6418D0F6A0060 ] circlass C:\Windows\system32\drivers\circlass.sys
02:13:06.0928 2056 circlass - ok
02:13:06.0959 2056 [ 635181E0E9BBF16871BF5380D71DB02D ] CLFS C:\Windows\system32\CLFS.sys
02:13:07.0006 2056 CLFS - ok
02:13:07.0084 2056 [ D88040F816FDA31C3B466F0FA0918F29 ] clr_optimization_v2.0.50727_32 C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe
02:13:07.0100 2056 clr_optimization_v2.0.50727_32 - ok
02:13:07.0193 2056 [ C5A75EB48E2344ABDC162BDA79E16841 ] clr_optimization_v4.0.30319_32 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
02:13:07.0224 2056 clr_optimization_v4.0.30319_32 - ok
02:13:07.0271 2056 [ DEA805815E587DAD1DD2C502220B5616 ] CmBatt C:\Windows\system32\DRIVERS\CmBatt.sys
02:13:07.0302 2056 CmBatt - ok
02:13:07.0318 2056 [ C537B1DB64D495B9B4717B4D6D9EDBF2 ] cmdide C:\Windows\system32\drivers\cmdide.sys
02:13:07.0349 2056 cmdide - ok
02:13:07.0396 2056 [ 247B4CE2DAB1160CD422D532D5241E1F ] CNG C:\Windows\system32\Drivers\cng.sys
02:13:07.0458 2056 CNG - ok
02:13:07.0490 2056 [ A6023D3823C37043986713F118A89BEE ] Compbatt C:\Windows\system32\drivers\compbatt.sys
02:13:07.0521 2056 Compbatt - ok
02:13:07.0536 2056 [ CBE8C58A8579CFE5FCCF809E6F114E89 ] CompositeBus C:\Windows\system32\drivers\CompositeBus.sys
02:13:07.0583 2056 CompositeBus - ok
02:13:07.0599 2056 COMSysApp - ok
02:13:07.0614 2056 [ 2C4EBCFC84A9B44F209DFF6C6E6C61D1 ] crcdisk C:\Windows\system32\drivers\crcdisk.sys
02:13:07.0661 2056 crcdisk - ok
02:13:07.0708 2056 [ 06E771AA596B8761107AB57E99F128D7 ] CryptSvc C:\Windows\system32\cryptsvc.dll
02:13:07.0755 2056 CryptSvc - ok
02:13:07.0802 2056 [ 7660F01D3B38ACA1747E397D21D790AF ] DcomLaunch C:\Windows\system32\rpcss.dll
02:13:07.0880 2056 DcomLaunch - ok
02:13:07.0911 2056 [ 8D6E10A2D9A5EED59562D9B82CF804E1 ] defragsvc C:\Windows\System32\defragsvc.dll
02:13:07.0989 2056 defragsvc - ok
02:13:08.0020 2056 [ F024449C97EC1E464AAFFDA18593DB88 ] DfsC C:\Windows\system32\Drivers\dfsc.sys
02:13:08.0082 2056 DfsC - ok
02:13:08.0114 2056 [ E9E01EB683C132F7FA27CD607B8A2B63 ] Dhcp C:\Windows\system32\dhcpcore.dll
02:13:08.0192 2056 Dhcp - ok
02:13:08.0207 2056 [ 1A050B0274BFB3890703D490F330C0DA ] discache C:\Windows\system32\drivers\discache.sys
02:13:08.0285 2056 discache - ok
02:13:08.0316 2056 [ 565003F326F99802E68CA78F2A68E9FF ] Disk C:\Windows\system32\drivers\disk.sys
02:13:08.0348 2056 Disk - ok
02:13:08.0363 2056 [ 33EF4861F19A0736B11314AAD9AE28D0 ] Dnscache C:\Windows\System32\dnsrslvr.dll
02:13:08.0410 2056 Dnscache - ok
02:13:08.0441 2056 [ 366BA8FB4B7BB7435E3B9EACB3843F67 ] dot3svc C:\Windows\System32\dot3svc.dll
02:13:08.0519 2056 dot3svc - ok
02:13:08.0535 2056 [ 8EC04CA86F1D68DA9E11952EB85973D6 ] DPS C:\Windows\system32\dps.dll
02:13:08.0597 2056 DPS - ok
02:13:08.0628 2056 [ B918E7C5F9BF77202F89E1A9539F2EB4 ] drmkaud C:\Windows\system32\drivers\drmkaud.sys
02:13:08.0675 2056 drmkaud - ok
02:13:08.0753 2056 [ 4AB2A58816CC6BE771F1D8C768B804C5 ] DsiWMIService C:\Program Files\Launch Manager\dsiwmis.exe
02:13:08.0800 2056 DsiWMIService - ok
02:13:08.0831 2056 [ 23F5D28378A160352BA8F817BD8C71CB ] DXGKrnl C:\Windows\System32\drivers\dxgkrnl.sys
02:13:08.0894 2056 DXGKrnl - ok
02:13:08.0909 2056 [ 8600142FA91C1B96367D3300AD0F3F3A ] EapHost C:\Windows\System32\eapsvc.dll
02:13:08.0987 2056 EapHost - ok
02:13:09.0112 2056 [ 024E1B5CAC09731E4D868E64DBFB4AB0 ] ebdrv C:\Windows\system32\drivers\evbdx.sys
02:13:09.0284 2056 ebdrv - ok
02:13:09.0315 2056 [ 81951F51E318AECC2D68559E47485CC4 ] EFS C:\Windows\System32\lsass.exe
02:13:09.0346 2056 EFS - ok
02:13:09.0408 2056 [ 03E6888DA1A85ACF14AC2A3C328A9E62 ] EgisTec Ticket Service C:\Program Files\Common Files\EgisTec\Services\EgisTicketService.exe
02:13:09.0440 2056 EgisTec Ticket Service - ok
02:13:09.0471 2056 [ 0ED67910C8C326796FAA00B2BF6D9D3C ] elxstor C:\Windows\system32\drivers\elxstor.sys
02:13:09.0518 2056 elxstor - ok
02:13:09.0611 2056 [ 884EFD5C5586AF9233B76132EDE51905 ] ePowerSvc C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
02:13:09.0705 2056 ePowerSvc - ok
02:13:09.0720 2056 [ 8FC3208352DD3912C94367A206AB3F11 ] ErrDev C:\Windows\system32\drivers\errdev.sys
02:13:09.0752 2056 ErrDev - ok
02:13:09.0830 2056 [ F6916EFC29D9953D5D0DF06882AE8E16 ] EventSystem C:\Windows\system32\es.dll
02:13:09.0908 2056 EventSystem - ok
02:13:09.0954 2056 [ 2DC9108D74081149CC8B651D3A26207F ] exfat C:\Windows\system32\drivers\exfat.sys
02:13:10.0017 2056 exfat - ok
02:13:10.0048 2056 [ 7E0AB74553476622FB6AE36F73D97D35 ] fastfat C:\Windows\system32\drivers\fastfat.sys
02:13:10.0110 2056 fastfat - ok
02:13:10.0173 2056 [ 967EA5B213E9984CBE270205DF37755B ] Fax C:\Windows\system32\fxssvc.exe
02:13:10.0220 2056 Fax - ok
02:13:10.0235 2056 [ E817A017F82DF2A1F8CFDBDA29388B29 ] fdc C:\Windows\system32\drivers\fdc.sys
02:13:10.0266 2056 fdc - ok
02:13:10.0298 2056 [ F3222C893BD2F5821A0179E5C71E88FB ] fdPHost C:\Windows\system32\fdPHost.dll
02:13:10.0360 2056 fdPHost - ok
02:13:10.0391 2056 [ 7DBE8CBFE79EFBDEB98C9FB08D3A9A5B ] FDResPub C:\Windows\system32\fdrespub.dll
02:13:10.0454 2056 FDResPub - ok
02:13:10.0469 2056 [ 6CF00369C97F3CF563BE99BE983D13D8 ] FileInfo C:\Windows\system32\drivers\fileinfo.sys
02:13:10.0516 2056 FileInfo - ok
02:13:10.0532 2056 [ 42C51DC94C91DA21CB9196EB64C45DB9 ] Filetrace C:\Windows\system32\drivers\filetrace.sys
02:13:10.0610 2056 Filetrace - ok
02:13:10.0610 2056 [ 87907AA70CB3C56600F1C2FB8841579B ] flpydisk C:\Windows\system32\drivers\flpydisk.sys
02:13:10.0656 2056 flpydisk - ok
02:13:10.0688 2056 [ 7520EC808E0C35E0EE6F841294316653 ] FltMgr C:\Windows\system32\drivers\fltmgr.sys
02:13:10.0719 2056 FltMgr - ok
02:13:10.0766 2056 [ B3A5EC6B6B6673DB7E87C2BCDBDDC074 ] FontCache C:\Windows\system32\FntCache.dll
02:13:10.0844 2056 FontCache - ok
02:13:10.0922 2056 [ E56F39F6B7FDA0AC77A79B0FD3DE1A2F ] FontCache3.0.0.0 C:\Windows\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe
02:13:10.0953 2056 FontCache3.0.0.0 - ok
02:13:11.0000 2056 [ 1A16B57943853E598CFF37FE2B8CBF1D ] FsDepends C:\Windows\system32\drivers\FsDepends.sys
02:13:11.0031 2056 FsDepends - ok
02:13:11.0374 2056 [ 7DAE5EBCC80E45D3253F4923DC424D05 ] Fs_Rec C:\Windows\system32\drivers\Fs_Rec.sys
02:13:11.0405 2056 Fs_Rec - ok
02:13:11.0468 2056 [ 8A73E79089B282100B9393B644CB853B ] fvevol C:\Windows\system32\DRIVERS\fvevol.sys
02:13:11.0514 2056 fvevol - ok
02:13:11.0546 2056 [ 65EE0C7A58B65E74AE05637418153938 ] gagp30kx C:\Windows\system32\drivers\gagp30kx.sys
02:13:11.0577 2056 gagp30kx - ok
02:13:11.0624 2056 [ E897EAF5ED6BA41E081060C9B447A673 ] gpsvc C:\Windows\System32\gpsvc.dll
02:13:11.0702 2056 gpsvc - ok
02:13:11.0733 2056 [ C44E3C2BAB6837DB337DDEE7544736DB ] hcw85cir C:\Windows\system32\drivers\hcw85cir.sys
02:13:11.0764 2056 hcw85cir - ok
02:13:11.0795 2056 [ A5EF29D5315111C80A5C1ABAD14C8972 ] HdAudAddService C:\Windows\system32\drivers\HdAudio.sys
02:13:11.0842 2056 HdAudAddService - ok
02:13:11.0858 2056 [ 9036377B8A6C15DC2EEC53E489D159B5 ] HDAudBus C:\Windows\system32\drivers\HDAudBus.sys
02:13:11.0904 2056 HDAudBus - ok
02:13:11.0920 2056 [ 1D58A7F3E11A9731D0EAAAA8405ACC36 ] HidBatt C:\Windows\system32\drivers\HidBatt.sys
02:13:11.0951 2056 HidBatt - ok
02:13:11.0967 2056 [ 89448F40E6DF260C206A193A4683BA78 ] HidBth C:\Windows\system32\drivers\hidbth.sys
02:13:12.0014 2056 HidBth - ok
02:13:12.0045 2056 [ CF50B4CF4A4F229B9F3C08351F99CA5E ] HidIr C:\Windows\system32\drivers\hidir.sys
02:13:12.0092 2056 HidIr - ok
02:13:12.0107 2056 [ 2BC6F6A1992B3A77F5F41432CA6B3B6B ] hidserv C:\Windows\system32\hidserv.dll
02:13:12.0185 2056 hidserv - ok
02:13:12.0216 2056 [ 10C19F8290891AF023EAEC0832E1EB4D ] HidUsb C:\Windows\system32\DRIVERS\hidusb.sys
02:13:12.0248 2056 HidUsb - ok
02:13:12.0294 2056 [ 196B4E3F4CCCC24AF836CE58FACBB699 ] hkmsvc C:\Windows\system32\kmsvc.dll
02:13:12.0357 2056 hkmsvc - ok
02:13:12.0388 2056 [ 6658F4404DE03D75FE3BA09F7ABA6A30 ] HomeGroupListener C:\Windows\system32\ListSvc.dll
02:13:12.0435 2056 HomeGroupListener - ok
02:13:12.0466 2056 [ DBC02D918FFF1CAD628ACBE0C0EAA8E8 ] HomeGroupProvider C:\Windows\system32\provsvc.dll
02:13:12.0513 2056 HomeGroupProvider - ok
02:13:12.0528 2056 [ 295FDC419039090EB8B49FFDBB374549 ] HpSAMD C:\Windows\system32\drivers\HpSAMD.sys
02:13:12.0560 2056 HpSAMD - ok
02:13:12.0606 2056 [ 871917B07A141BFF43D76D8844D48106 ] HTTP C:\Windows\system32\drivers\HTTP.sys
02:13:12.0684 2056 HTTP - ok
02:13:12.0716 2056 [ 0C4E035C7F105F1299258C90886C64C5 ] hwpolicy C:\Windows\system32\drivers\hwpolicy.sys
02:13:12.0747 2056 hwpolicy - ok
02:13:12.0762 2056 [ F151F0BDC47F4A28B1B20A0818EA36D6 ] i8042prt C:\Windows\system32\drivers\i8042prt.sys
02:13:12.0809 2056 i8042prt - ok
02:13:12.0856 2056 [ F4037A3FEDB92DD97C95F320766EA5C9 ] iaStor C:\Windows\system32\drivers\iaStor.sys
02:13:12.0887 2056 iaStor - ok
02:13:12.0965 2056 [ 8FFF9083252C16FE3960173722605E9E ] IAStorDataMgrSvc C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
02:13:12.0981 2056 IAStorDataMgrSvc - ok
02:13:13.0043 2056 [ 5CD5F9A5444E6CDCB0AC89BD62D8B76E ] iaStorV C:\Windows\system32\drivers\iaStorV.sys
02:13:13.0090 2056 iaStorV - ok
02:13:13.0199 2056 [ 0DFFBA5AE3D2E1C076BD8E6F52C4FDFB ] IconMan_R C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe
02:13:13.0277 2056 IconMan_R ( UnsignedFile.Multi.Generic ) - warning
02:13:13.0277 2056 IconMan_R - detected UnsignedFile.Multi.Generic (1)
02:13:13.0340 2056 [ C521D7EB6497BB1AF6AFA89E322FB43C ] idsvc C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe
02:13:13.0418 2056 idsvc - ok
02:13:13.0589 2056 [ BA41E1BBA410212CE6D30E0DAC47972B ] igfx C:\Windows\system32\DRIVERS\igdkmd32.sys
02:13:13.0776 2056 igfx - ok
02:13:13.0823 2056 [ 4173FF5708F3236CF25195FECD742915 ] iirsp C:\Windows\system32\drivers\iirsp.sys
02:13:13.0854 2056 iirsp - ok
02:13:13.0917 2056 [ F95622F161474511B8D80D6B093AA610 ] IKEEXT C:\Windows\System32\ikeext.dll
02:13:14.0010 2056 IKEEXT - ok
02:13:14.0166 2056 [ FEAAE1C549D14B9759B88C569F33CD4E ] IntcAzAudAddService C:\Windows\system32\drivers\RTKVHDA.sys
02:13:14.0369 2056 IntcAzAudAddService - ok
02:13:14.0385 2056 [ A0F12F2C9BA6C72F3987CE780E77C130 ] intelide C:\Windows\system32\drivers\intelide.sys
02:13:14.0416 2056 intelide - ok
02:13:14.0447 2056 [ 3B514D27BFC4ACCB4037BC6685F766E0 ] intelppm C:\Windows\system32\DRIVERS\intelppm.sys
02:13:14.0478 2056 intelppm - ok
02:13:14.0510 2056 [ ACB364B9075A45C0736E5C47BE5CAE19 ] IPBusEnum C:\Windows\system32\ipbusenum.dll
02:13:14.0588 2056 IPBusEnum - ok
02:13:14.0603 2056 [ 709D1761D3B19A932FF0238EA6D50200 ] IpFilterDriver C:\Windows\system32\DRIVERS\ipfltdrv.sys
02:13:14.0666 2056 IpFilterDriver - ok
02:13:14.0712 2056 [ 4D65A07B795D6674312F879D09AA7663 ] iphlpsvc C:\Windows\System32\iphlpsvc.dll
02:13:14.0790 2056 iphlpsvc - ok
02:13:14.0806 2056 [ 4BD7134618C1D2A27466A099062547BF ] IPMIDRV C:\Windows\system32\drivers\IPMIDrv.sys
02:13:14.0853 2056 IPMIDRV - ok
02:13:14.0868 2056 [ A5FA468D67ABCDAA36264E463A7BB0CD ] IPNAT C:\Windows\system32\drivers\ipnat.sys
02:13:14.0931 2056 IPNAT - ok
02:13:14.0962 2056 [ 42996CFF20A3084A56017B7902307E9F ] IRENUM C:\Windows\system32\drivers\irenum.sys
02:13:15.0009 2056 IRENUM - ok
02:13:15.0009 2056 [ 1F32BB6B38F62F7DF1A7AB7292638A35 ] isapnp C:\Windows\system32\drivers\isapnp.sys
02:13:15.0040 2056 isapnp - ok
02:13:15.0071 2056 [ CB7A9ABB12B8415BCE5D74994C7BA3AE ] iScsiPrt C:\Windows\system32\drivers\msiscsi.sys
02:13:15.0102 2056 iScsiPrt - ok
02:13:15.0134 2056 [ ADEF52CA1AEAE82B50DF86B56413107E ] kbdclass C:\Windows\system32\drivers\kbdclass.sys
02:13:15.0165 2056 kbdclass - ok
02:13:15.0180 2056 [ 9E3CED91863E6EE98C24794D05E27A71 ] kbdhid C:\Windows\system32\drivers\kbdhid.sys
02:13:15.0212 2056 kbdhid - ok
02:13:15.0243 2056 [ 81951F51E318AECC2D68559E47485CC4 ] KeyIso C:\Windows\system32\lsass.exe
02:13:15.0274 2056 KeyIso - ok
02:13:15.0305 2056 [ B7895B4182C0D16F6EFADEB8081E8D36 ] KSecDD C:\Windows\system32\Drivers\ksecdd.sys
02:13:15.0336 2056 KSecDD - ok
02:13:15.0368 2056 [ D30159AC9237519FBC62C6EC247D2D46 ] KSecPkg C:\Windows\system32\Drivers\ksecpkg.sys
02:13:15.0414 2056 KSecPkg - ok
02:13:15.0461 2056 [ 89A7B9CC98D0D80C6F31B91C0A310FCD ] KtmRm C:\Windows\system32\msdtckrm.dll
02:13:15.0539 2056 KtmRm - ok
02:13:15.0586 2056 [ D64AF876D53ECA3668BB97B51B4E70AB ] LanmanServer C:\Windows\system32\srvsvc.dll
02:13:15.0664 2056 LanmanServer - ok
02:13:15.0711 2056 [ 58405E4F68BA8E4057C6E914F326ABA2 ] LanmanWorkstation C:\Windows\System32\wkssvc.dll
02:13:15.0789 2056 LanmanWorkstation - ok
02:13:15.0851 2056 [ 6BCEE9C766815BFFF89DE7D81AF34CE1 ] Live Updater Service C:\Program Files\Acer\Acer Updater\UpdaterService.exe
02:13:15.0882 2056 Live Updater Service - ok
02:13:15.0929 2056 [ F7611EC07349979DA9B0AE1F18CCC7A6 ] lltdio C:\Windows\system32\DRIVERS\lltdio.sys
02:13:16.0007 2056 lltdio - ok
02:13:16.0038 2056 [ 5700673E13A2117FA3B9020C852C01E2 ] lltdsvc C:\Windows\System32\lltdsvc.dll
02:13:16.0116 2056 lltdsvc - ok
02:13:16.0148 2056 [ 55CA01BA19D0006C8F2639B6C045E08B ] lmhosts C:\Windows\System32\lmhsvc.dll
02:13:16.0210 2056 lmhosts - ok
02:13:16.0241 2056 [ EB119A53CCF2ACC000AC71B065B78FEF ] LSI_FC C:\Windows\system32\drivers\lsi_fc.sys
02:13:16.0288 2056 LSI_FC - ok
02:13:16.0288 2056 [ 8ADE1C877256A22E49B75D1CC9161F9C ] LSI_SAS C:\Windows\system32\drivers\lsi_sas.sys
02:13:16.0319 2056 LSI_SAS - ok
02:13:16.0335 2056 [ DC9DC3D3DAA0E276FD2EC262E38B11E9 ] LSI_SAS2 C:\Windows\system32\drivers\lsi_sas2.sys
02:13:16.0366 2056 LSI_SAS2 - ok
02:13:16.0382 2056 [ 0A036C7D7CAB643A7F07135AC47E0524 ] LSI_SCSI C:\Windows\system32\drivers\lsi_scsi.sys
02:13:16.0413 2056 LSI_SCSI - ok
02:13:16.0444 2056 [ 6703E366CC18D3B6E534F5CF7DF39CEE ] luafv C:\Windows\system32\drivers\luafv.sys
02:13:16.0506 2056 luafv - ok
02:13:16.0522 2056 [ 0FFF5B045293002AB38EB1FD1FC2FB74 ] megasas C:\Windows\system32\drivers\megasas.sys
02:13:16.0569 2056 megasas - ok
02:13:16.0600 2056 [ DCBAB2920C75F390CAF1D29F675D03D6 ] MegaSR C:\Windows\system32\drivers\MegaSR.sys
02:13:16.0631 2056 MegaSR - ok
02:13:16.0647 2056 [ 146B6F43A673379A3C670E86D89BE5EA ] MMCSS C:\Windows\system32\mmcss.dll
02:13:16.0725 2056 MMCSS - ok
02:13:16.0740 2056 [ F001861E5700EE84E2D4E52C712F4964 ] Modem C:\Windows\system32\drivers\modem.sys
02:13:16.0803 2056 Modem - ok
02:13:16.0818 2056 [ 79D10964DE86B292320E9DFE02282A23 ] monitor C:\Windows\system32\DRIVERS\monitor.sys
02:13:16.0865 2056 monitor - ok
02:13:16.0881 2056 [ FB18CC1D4C2E716B6B903B0AC0CC0609 ] mouclass C:\Windows\system32\DRIVERS\mouclass.sys
02:13:16.0912 2056 mouclass - ok
02:13:16.0943 2056 [ 2C388D2CD01C9042596CF3C8F3C7B24D ] mouhid C:\Windows\system32\DRIVERS\mouhid.sys
02:13:16.0974 2056 mouhid - ok
02:13:16.0990 2056 [ FC8771F45ECCCFD89684E38842539B9B ] mountmgr C:\Windows\system32\drivers\mountmgr.sys
02:13:17.0021 2056 mountmgr - ok
02:13:17.0084 2056 [ D993BEA500E7382DC4E760BF4F35EFCB ] MpFilter C:\Windows\system32\DRIVERS\MpFilter.sys
02:13:17.0130 2056 MpFilter - ok
02:13:17.0162 2056 [ 2D699FB6E89CE0D8DA14ECC03B3EDFE0 ] mpio C:\Windows\system32\drivers\mpio.sys
02:13:17.0193 2056 mpio - ok
02:13:17.0286 2056 MpKsl00cf017c - ok
02:13:17.0333 2056 MpKsl016e5b84 - ok
02:13:17.0349 2056 MpKsl02dbef18 - ok
02:13:17.0364 2056 MpKsl030b0605 - ok
02:13:17.0396 2056 MpKsl04819391 - ok
02:13:17.0411 2056 MpKsl0641446a - ok
02:13:17.0427 2056 MpKsl065c61dd - ok
02:13:17.0442 2056 MpKsl06ad743b - ok
02:13:17.0458 2056 MpKsl0800b086 - ok
02:13:17.0474 2056 MpKsl084932dc - ok
02:13:17.0489 2056 MpKsl0afc50cc - ok
02:13:17.0520 2056 MpKsl0d77b33e - ok
02:13:17.0536 2056 MpKsl0db3a256 - ok
02:13:17.0552 2056 MpKsl0e82d3ac - ok
02:13:17.0567 2056 MpKsl1010d031 - ok
02:13:17.0598 2056 MpKsl10d13f7d - ok
02:13:17.0614 2056 MpKsl1543184b - ok
02:13:17.0630 2056 MpKsl16c6f296 - ok
02:13:17.0645 2056 MpKsl175c11c3 - ok
02:13:17.0661 2056 MpKsl175dbe8b - ok
02:13:17.0676 2056 MpKsl1a1cb220 - ok
02:13:17.0692 2056 MpKsl1a8bab1e - ok
02:13:17.0708 2056 MpKsl1b0a817c - ok
02:13:17.0739 2056 MpKsl1bc93270 - ok
02:13:17.0754 2056 MpKsl1c8a8c50 - ok
02:13:17.0786 2056 MpKsl1ff5b50f - ok
02:13:17.0801 2056 MpKsl215a7d0e - ok
02:13:17.0817 2056 MpKsl22b466c0 - ok
02:13:17.0832 2056 MpKsl23511d90 - ok
02:13:17.0848 2056 MpKsl247b440a - ok
02:13:17.0864 2056 MpKsl25974fdd - ok
02:13:17.0879 2056 MpKsl26fd884d - ok
02:13:17.0895 2056 MpKsl2951948a - ok
02:13:17.0910 2056 MpKsl299db2bf - ok
02:13:17.0926 2056 MpKsl2c092542 - ok
02:13:17.0942 2056 MpKsl321d210f - ok
02:13:17.0973 2056 MpKsl3552e5d9 - ok
02:13:17.0973 2056 MpKsl37aaca1d - ok
02:13:17.0988 2056 MpKsl3822fce0 - ok
02:13:18.0004 2056 MpKsl388a373f - ok
02:13:18.0020 2056 MpKsl3a89a42b - ok
02:13:18.0035 2056 MpKsl3e1e6704 - ok
02:13:18.0066 2056 MpKsl4395796c - ok
02:13:18.0082 2056 MpKsl45b6953f - ok
02:13:18.0098 2056 MpKsl45db01c1 - ok
02:13:18.0113 2056 MpKsl466e1bef - ok
02:13:18.0129 2056 MpKsl47853568 - ok
02:13:18.0160 2056 MpKsl4a2ec07c - ok
02:13:18.0176 2056 MpKsl4a4e1391 - ok
02:13:18.0191 2056 MpKsl4c5c63dd - ok
02:13:18.0207 2056 MpKsl4d30669b - ok
02:13:18.0222 2056 MpKsl4d4d2db8 - ok
02:13:18.0238 2056 MpKsl4e13e741 - ok
02:13:18.0254 2056 MpKsl4ec6c2a0 - ok
02:13:18.0269 2056 MpKsl5022c774 - ok
02:13:18.0285 2056 MpKsl52616f74 - ok
02:13:18.0300 2056 MpKsl52944419 - ok
02:13:18.0316 2056 MpKsl550588d0 - ok
02:13:18.0332 2056 MpKsl55b1c7dc - ok
02:13:18.0347 2056 MpKsl56dcf45a - ok
02:13:18.0363 2056 MpKsl588727c3 - ok
02:13:18.0378 2056 MpKsl595fe79e - ok
02:13:18.0394 2056 MpKsl5adf0c5d - ok
02:13:18.0425 2056 MpKsl5b5b0756 - ok
02:13:18.0441 2056 MpKsl62f71e41 - ok
02:13:18.0456 2056 MpKsl6307e0b6 - ok
02:13:18.0472 2056 MpKsl63b7466e - ok
02:13:18.0488 2056 MpKsl65626759 - ok
02:13:18.0503 2056 MpKsl667b9d9a - ok
02:13:18.0519 2056 MpKsl6a4aee20 - ok
02:13:18.0534 2056 MpKsl6cdb11b2 - ok
02:13:18.0550 2056 MpKsl6e254e07 - ok
02:13:18.0566 2056 MpKsl6fbd6c71 - ok
02:13:18.0581 2056 MpKsl7107e1bb - ok
02:13:18.0597 2056 MpKsl74b68d33 - ok
02:13:18.0612 2056 MpKsl74cea91a - ok
02:13:18.0644 2056 MpKsl76c4500e - ok
02:13:18.0659 2056 MpKsl78bb618c - ok
02:13:18.0675 2056 MpKsl79139c6f - ok
02:13:18.0690 2056 MpKsl79dcca5b - ok
02:13:18.0706 2056 MpKsl80047a56 - ok
02:13:18.0722 2056 MpKsl808cdd75 - ok
02:13:18.0737 2056 MpKsl810da3ce - ok
02:13:18.0768 2056 MpKsl825d4dcd - ok
02:13:18.0768 2056 MpKsl849ddc69 - ok
02:13:18.0784 2056 MpKsl8887dd69 - ok
02:13:18.0800 2056 MpKsl8a94550b - ok
02:13:18.0815 2056 MpKsl8bbf55ef - ok
02:13:18.0831 2056 MpKsl8d0e4e03 - ok
02:13:18.0862 2056 MpKsl8f45d270 - ok
02:13:18.0878 2056 MpKsl8f785007 - ok
02:13:18.0893 2056 MpKsl9134de0b - ok
02:13:18.0909 2056 MpKsl93e06edd - ok
02:13:18.0924 2056 MpKsl950dae20 - ok
02:13:18.0940 2056 MpKsl985b3f8e - ok
02:13:18.0956 2056 MpKsla3b74131 - ok
02:13:18.0971 2056 MpKsla47860c6 - ok
02:13:18.0987 2056 MpKsla536fda6 - ok
02:13:19.0002 2056 MpKsla5f4e6a8 - ok
02:13:19.0018 2056 MpKsla75d66af - ok
02:13:19.0034 2056 MpKsla7a69055 - ok
02:13:19.0049 2056 MpKslac0a44e8 - ok
02:13:19.0065 2056 MpKslae6ebf88 - ok
02:13:19.0080 2056 MpKslaf88753f - ok
02:13:19.0096 2056 MpKslafdd0155 - ok
02:13:19.0112 2056 MpKslb3776706 - ok
02:13:19.0127 2056 MpKslb5d67722 - ok
02:13:19.0143 2056 MpKslbb9cb6cd - ok
02:13:19.0158 2056 MpKslbc59489c - ok
02:13:19.0174 2056 MpKslbcf74d57 - ok
02:13:19.0190 2056 MpKslc39453af - ok
02:13:19.0205 2056 MpKslca589ceb - ok
02:13:19.0221 2056 MpKslce9d0181 - ok
02:13:19.0236 2056 MpKsld58d6931 - ok
02:13:19.0252 2056 MpKsld747c86f - ok
02:13:19.0268 2056 MpKsld7e586c6 - ok
02:13:19.0283 2056 MpKslda6e4aea - ok
02:13:19.0314 2056 MpKsldd51ab34 - ok
02:13:19.0330 2056 MpKslde1c7de5 - ok
02:13:19.0361 2056 MpKslde60af67 - ok
02:13:19.0377 2056 MpKsle1761ce5 - ok
02:13:19.0392 2056 MpKsle56f7b4f - ok
02:13:19.0408 2056 MpKsle572f6ba - ok
02:13:19.0424 2056 MpKsle6ae4d60 - ok
02:13:19.0439 2056 MpKsle729d806 - ok
02:13:19.0455 2056 MpKsle910a5f5 - ok
02:13:19.0470 2056 MpKsle923b9a6 - ok
02:13:19.0486 2056 MpKslea8ca7cb - ok
02:13:19.0502 2056 MpKslecb2691b - ok
02:13:19.0517 2056 MpKslecd217de - ok
02:13:19.0533 2056 MpKsledb5f72c - ok
02:13:19.0564 2056 MpKslee01476d - ok
02:13:19.0580 2056 MpKslf006b12e - ok
02:13:19.0580 2056 MpKslf1433579 - ok
02:13:19.0611 2056 MpKslf48e10b4 - ok
02:13:19.0626 2056 MpKslf6b04e98 - ok
02:13:19.0642 2056 MpKslf8244d8a - ok
02:13:19.0658 2056 MpKslfbd2caf1 - ok
02:13:19.0673 2056 MpKslfdbce2ee - ok
02:13:19.0689 2056 MpKslff8899ad - ok
02:13:19.0704 2056 [ AD2723A7B53DD1AACAE6AD8C0BFBF4D0 ] mpsdrv C:\Windows\system32\drivers\mpsdrv.sys
02:13:19.0782 2056 mpsdrv - ok
02:13:19.0829 2056 [ 9835584E999D25004E1EE8E5F3E3B881 ] MpsSvc C:\Windows\system32\mpssvc.dll
02:13:19.0923 2056 MpsSvc - ok
02:13:19.0954 2056 [ CEB46AB7C01C9F825F8CC6BABC18166A ] MRxDAV C:\Windows\system32\drivers\mrxdav.sys
02:13:20.0001 2056 MRxDAV - ok
02:13:20.0048 2056 [ 5D16C921E3671636C0EBA3BBAAC5FD25 ] mrxsmb C:\Windows\system32\DRIVERS\mrxsmb.sys
02:13:20.0079 2056 mrxsmb - ok
02:13:20.0126 2056 [ 6D17A4791ACA19328C685D256349FEFC ] mrxsmb10 C:\Windows\system32\DRIVERS\mrxsmb10.sys
02:13:20.0157 2056 mrxsmb10 - ok
02:13:20.0188 2056 [ B81F204D146000BE76651A50670A5E9E ] mrxsmb20 C:\Windows\system32\DRIVERS\mrxsmb20.sys
02:13:20.0219 2056 mrxsmb20 - ok
02:13:20.0250 2056 [ 012C5F4E9349E711E11E0F19A8589F0A ] msahci C:\Windows\system32\drivers\msahci.sys
02:13:20.0282 2056 msahci - ok
02:13:20.0297 2056 [ 55055F8AD8BE27A64C831322A780A228 ] msdsm C:\Windows\system32\drivers\msdsm.sys
02:13:20.0328 2056 msdsm - ok
02:13:20.0344 2056 [ E1BCE74A3BD9902B72599C0192A07E27 ] MSDTC C:\Windows\System32\msdtc.exe
02:13:20.0391 2056 MSDTC - ok
02:13:20.0438 2056 [ DAEFB28E3AF5A76ABCC2C3078C07327F ] Msfs C:\Windows\system32\drivers\Msfs.sys
02:13:20.0500 2056 Msfs - ok
02:13:20.0531 2056 [ 3E1E5767043C5AF9367F0056295E9F84 ] mshidkmdf C:\Windows\System32\drivers\mshidkmdf.sys
02:13:20.0594 2056 mshidkmdf - ok
02:13:20.0625 2056 [ 0A4E5757AE09FA9622E3158CC1AEF114 ] msisadrv C:\Windows\system32\drivers\msisadrv.sys
02:13:20.0656 2056 msisadrv - ok
02:13:20.0703 2056 [ 90F7D9E6B6F27E1A707D4A297F077828 ] MSiSCSI C:\Windows\system32\iscsiexe.dll
02:13:20.0765 2056 MSiSCSI - ok
02:13:20.0781 2056 msiserver - ok
02:13:20.0828 2056 [ 8C0860D6366AAFFB6C5BB9DF9448E631 ] MSKSSRV C:\Windows\system32\drivers\MSKSSRV.sys
02:13:20.0890 2056 MSKSSRV - ok
02:13:20.0937 2056 [ 24516BF4E12A46CB67302E2CDCB8CDDF ] MsMpSvc C:\Program Files\Microsoft Security Client\MsMpEng.exe
02:13:20.0968 2056 MsMpSvc - ok
02:13:20.0984 2056 [ 3EA8B949F963562CEDBB549EAC0C11CE ] MSPCLOCK C:\Windows\system32\drivers\MSPCLOCK.sys
02:13:21.0062 2056 MSPCLOCK - ok
02:13:21.0077 2056 [ F456E973590D663B1073E9C463B40932 ] MSPQM C:\Windows\system32\drivers\MSPQM.sys
02:13:21.0140 2056 MSPQM - ok
02:13:21.0171 2056 [ 0E008FC4819D238C51D7C93E7B41E560 ] MsRPC C:\Windows\system32\drivers\MsRPC.sys
02:13:21.0202 2056 MsRPC - ok
02:13:21.0233 2056 [ FC6B9FF600CC585EA38B12589BD4E246 ] mssmbios C:\Windows\system32\drivers\mssmbios.sys
02:13:21.0264 2056 mssmbios - ok
02:13:21.0296 2056 [ B42C6B921F61A6E55159B8BE6CD54A36 ] MSTEE C:\Windows\system32\drivers\MSTEE.sys
02:13:21.0358 2056 MSTEE - ok
02:13:21.0389 2056 [ 33599130F44E1F34631CEA241DE8AC84 ] MTConfig C:\Windows\system32\drivers\MTConfig.sys
02:13:21.0420 2056 MTConfig - ok
02:13:21.0436 2056 [ 159FAD02F64E6381758C990F753BCC80 ] Mup C:\Windows\system32\Drivers\mup.sys
02:13:21.0467 2056 Mup - ok
02:13:21.0483 2056 [ 247F867957F2750E32E0FFFF60223B14 ] mwlPSDFilter C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
02:13:21.0514 2056 mwlPSDFilter - ok
02:13:21.0530 2056 [ F409D176DD75714D927F0A7264D08E51 ] mwlPSDNServ C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
02:13:21.0561 2056 mwlPSDNServ - ok
02:13:21.0576 2056 [ 604F49AAD2C890E56040B87E88823DDF ] mwlPSDVDisk C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
02:13:21.0592 2056 mwlPSDVDisk - ok
02:13:21.0639 2056 [ 61D57A5D7C6D9AFE10E77DAE6E1B445E ] napagent C:\Windows\system32\qagentRT.dll
02:13:21.0717 2056 napagent - ok
02:13:21.0764 2056 [ 26384429FCD85D83746F63E798AB1480 ] NativeWifiP C:\Windows\system32\DRIVERS\nwifi.sys
02:13:21.0810 2056 NativeWifiP - ok
02:13:21.0873 2056 [ 8C9C922D71F1CD4DEF73F186416B7896 ] NDIS C:\Windows\system32\drivers\ndis.sys
02:13:21.0935 2056 NDIS - ok
02:13:21.0966 2056 [ 0E1787AA6C9191D3D319E8BAFE86F80C ] NdisCap C:\Windows\system32\DRIVERS\ndiscap.sys
02:13:22.0044 2056 NdisCap - ok
02:13:22.0076 2056 [ E4A8AEC125A2E43A9E32AFEEA7C9C888 ] NdisTapi C:\Windows\system32\DRIVERS\ndistapi.sys
02:13:22.0138 2056 NdisTapi - ok
02:13:22.0154 2056 [ D8A65DAFB3EB41CBB622745676FCD072 ] Ndisuio C:\Windows\system32\DRIVERS\ndisuio.sys
02:13:22.0216 2056 Ndisuio - ok
02:13:22.0247 2056 [ 38FBE267E7E6983311179230FACB1017 ] NdisWan C:\Windows\system32\DRIVERS\ndiswan.sys
02:13:22.0310 2056 NdisWan - ok
02:13:22.0325 2056 [ A4BDC541E69674FBFF1A8FF00BE913F2 ] NDProxy C:\Windows\system32\drivers\NDProxy.sys
02:13:22.0403 2056 NDProxy - ok
02:13:22.0419 2056 [ 80B275B1CE3B0E79909DB7B39AF74D51 ] NetBIOS C:\Windows\system32\DRIVERS\netbios.sys
02:13:22.0497 2056 NetBIOS - ok
02:13:22.0512 2056 [ 280122DDCF04B378EDD1AD54D71C1E54 ] NetBT C:\Windows\system32\DRIVERS\netbt.sys
02:13:22.0575 2056 NetBT - ok
02:13:22.0606 2056 [ 81951F51E318AECC2D68559E47485CC4 ] Netlogon C:\Windows\system32\lsass.exe
02:13:22.0637 2056 Netlogon - ok
02:13:22.0715 2056 [ 7CCCFCA7510684768DA22092D1FA4DB2 ] Netman C:\Windows\System32\netman.dll
02:13:22.0793 2056 Netman - ok
02:13:22.0824 2056 [ 8C338238C16777A802D6A9211EB2BA50 ] netprofm C:\Windows\System32\netprofm.dll
02:13:22.0902 2056 netprofm - ok
02:13:22.0934 2056 [ F476EC40033CDB91EFBE73EB99B8362D ] NetTcpPortSharing C:\Windows\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe
02:13:22.0965 2056 NetTcpPortSharing - ok
02:13:22.0996 2056 [ 1D85C4B390B0EE09C7A46B91EFB2C097 ] nfrd960 C:\Windows\system32\drivers\nfrd960.sys
02:13:23.0027 2056 nfrd960 - ok
02:13:23.0090 2056 [ B52F26BADE7D7E4A79706E3FD91834CD ] NisDrv C:\Windows\system32\DRIVERS\NisDrvWFP.sys
02:13:23.0105 2056 NisDrv - ok
02:13:23.0136 2056 [ 290C0D4C4889398797F8DF3BE00B9698 ] NisSrv C:\Program Files\Microsoft Security Client\NisSrv.exe
02:13:23.0183 2056 NisSrv - ok
02:13:23.0230 2056 [ 912084381D30D8B89EC4E293053F4710 ] NlaSvc C:\Windows\System32\nlasvc.dll
02:13:23.0292 2056 NlaSvc - ok
02:13:23.0324 2056 [ 1DB262A9F8C087E8153D89BEF3D2235F ] Npfs C:\Windows\system32\drivers\Npfs.sys
02:13:23.0386 2056 Npfs - ok
02:13:23.0417 2056 [ BA387E955E890C8A88306D9B8D06BF17 ] nsi C:\Windows\system32\nsisvc.dll
02:13:23.0480 2056 nsi - ok
02:13:23.0495 2056 [ E9A0A4D07E53D8FEA2BB8387A3293C58 ] nsiproxy C:\Windows\system32\drivers\nsiproxy.sys
02:13:23.0558 2056 nsiproxy - ok
02:13:23.0636 2056 [ 81189C3D7763838E55C397759D49007A ] Ntfs C:\Windows\system32\drivers\Ntfs.sys
02:13:23.0714 2056 Ntfs - ok
02:13:23.0729 2056 [ F9756A98D69098DCA8945D62858A812C ] Null C:\Windows\system32\drivers\Null.sys
02:13:23.0792 2056 Null - ok
02:13:23.0838 2056 [ B3E25EE28883877076E0E1FF877D02E0 ] nvraid C:\Windows\system32\drivers\nvraid.sys
02:13:23.0870 2056 nvraid - ok
02:13:23.0901 2056 [ 4380E59A170D88C4F1022EFF6719A8A4 ] nvstor C:\Windows\system32\drivers\nvstor.sys
02:13:23.0932 2056 nvstor - ok
02:13:23.0948 2056 [ 5A0983915F02BAE73267CC2A041F717D ] nv_agp C:\Windows\system32\drivers\nv_agp.sys
02:13:23.0994 2056 nv_agp - ok
02:13:24.0010 2056 [ 08A70A1F2CDDE9BB49B885CB817A66EB ] ohci1394 C:\Windows\system32\drivers\ohci1394.sys
02:13:24.0041 2056 ohci1394 - ok
02:13:24.0119 2056 [ 9D10F99A6712E28F8ACD5641E3A7EA6B ] ose C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE
02:13:24.0166 2056 ose - ok
02:13:24.0197 2056 [ 82A8521DDC60710C3D3D3E7325209BEC ] p2pimsvc C:\Windows\system32\pnrpsvc.dll
02:13:24.0244 2056 p2pimsvc - ok
02:13:24.0275 2056 [ 59C3DDD501E39E006DAC31BF55150D91 ] p2psvc C:\Windows\system32\p2psvc.dll
02:13:24.0322 2056 p2psvc - ok
02:13:24.0353 2056 [ 2EA877ED5DD9713C5AC74E8EA7348D14 ] Parport C:\Windows\system32\drivers\parport.sys
02:13:24.0384 2056 Parport - ok
02:13:24.0431 2056 [ 3F34A1B4C5F6475F320C275E63AFCE9B ] partmgr C:\Windows\system32\drivers\partmgr.sys
02:13:24.0462 2056 partmgr - ok
02:13:24.0478 2056 [ EB0A59F29C19B86479D36B35983DAADC ] Parvdm C:\Windows\system32\drivers\parvdm.sys
02:13:24.0525 2056 Parvdm - ok
02:13:24.0540 2056 [ 358AB7956D3160000726574083DFC8A6 ] PcaSvc C:\Windows\System32\pcasvc.dll
02:13:24.0587 2056 PcaSvc - ok
02:13:24.0603 2056 [ 673E55C3498EB970088E812EA820AA8F ] pci C:\Windows\system32\drivers\pci.sys
02:13:24.0650 2056 pci - ok
02:13:24.0665 2056 [ AFE86F419014DB4E5593F69FFE26CE0A ] pciide C:\Windows\system32\drivers\pciide.sys
02:13:24.0696 2056 pciide - ok
02:13:24.0728 2056 [ F396431B31693E71E8A80687EF523506 ] pcmcia C:\Windows\system32\drivers\pcmcia.sys
02:13:24.0759 2056 pcmcia - ok
02:13:24.0790 2056 [ 250F6B43D2B613172035C6747AEEB19F ] pcw C:\Windows\system32\drivers\pcw.sys
02:13:24.0821 2056 pcw - ok
02:13:24.0852 2056 [ 9E0104BA49F4E6973749A02BF41344ED ] PEAUTH C:\Windows\system32\drivers\peauth.sys
02:13:24.0930 2056 PEAUTH - ok
02:13:25.0040 2056 [ 414BBA67A3DED1D28437EB66AEB8A720 ] pla C:\Windows\system32\pla.dll
02:13:25.0149 2056 pla - ok
02:13:25.0196 2056 [ EC7BC28D207DA09E79B3E9FAF8B232CA ] PlugPlay C:\Windows\system32\umpnpmgr.dll
02:13:25.0242 2056 PlugPlay - ok
02:13:25.0258 2056 [ 63FF8572611249931EB16BB8EED6AFC8 ] PNRPAutoReg C:\Windows\system32\pnrpauto.dll
02:13:25.0305 2056 PNRPAutoReg - ok
02:13:25.0336 2056 [ 82A8521DDC60710C3D3D3E7325209BEC ] PNRPsvc C:\Windows\system32\pnrpsvc.dll
02:13:25.0367 2056 PNRPsvc - ok
02:13:25.0430 2056 [ 53946B69BA0836BD95B03759530C81EC ] PolicyAgent C:\Windows\System32\ipsecsvc.dll
02:13:25.0492 2056 PolicyAgent - ok
02:13:25.0539 2056 [ F87D30E72E03D579A5199CCB3831D6EA ] Power C:\Windows\system32\umpo.dll
02:13:25.0617 2056 Power - ok
02:13:25.0648 2056 [ 631E3E205AD6D86F2AED6A4A8E69F2DB ] PptpMiniport C:\Windows\system32\DRIVERS\raspptp.sys
02:13:25.0726 2056 PptpMiniport - ok
02:13:25.0757 2056 [ 85B1E3A0C7585BC4AAE6899EC6FCF011 ] Processor C:\Windows\system32\drivers\processr.sys
02:13:25.0788 2056 Processor - ok
02:13:25.0851 2056 [ CADEFAC453040E370A1BDFF3973BE00D ] ProfSvc C:\Windows\system32\profsvc.dll
02:13:25.0898 2056 ProfSvc - ok
02:13:25.0913 2056 [ 81951F51E318AECC2D68559E47485CC4 ] ProtectedStorage C:\Windows\system32\lsass.exe
02:13:25.0960 2056 ProtectedStorage - ok
02:13:25.0976 2056 [ 6270CCAE2A86DE6D146529FE55B3246A ] Psched C:\Windows\system32\DRIVERS\pacer.sys
02:13:26.0054 2056 Psched - ok
02:13:26.0116 2056 [ AB95ECF1F6659A60DDC166D8315B0751 ] ql2300 C:\Windows\system32\drivers\ql2300.sys
02:13:26.0194 2056 ql2300 - ok
02:13:26.0210 2056 [ B4DD51DD25182244B86737DC51AF2270 ] ql40xx C:\Windows\system32\drivers\ql40xx.sys
02:13:26.0241 2056 ql40xx - ok
02:13:26.0288 2056 [ 31AC809E7707EB580B2BDB760390765A ] QWAVE C:\Windows\system32\qwave.dll
02:13:26.0334 2056 QWAVE - ok
02:13:26.0350 2056 [ 584078CA1B95CA72DF2A27C336F9719D ] QWAVEdrv C:\Windows\system32\drivers\qwavedrv.sys
02:13:26.0397 2056 QWAVEdrv - ok
02:13:26.0412 2056 [ 30A81B53C766D0133BB86D234E5556AB ] RasAcd C:\Windows\system32\DRIVERS\rasacd.sys
02:13:26.0475 2056 RasAcd - ok
02:13:26.0490 2056 [ 57EC4AEF73660166074D8F7F31C0D4FD ] RasAgileVpn C:\Windows\system32\DRIVERS\AgileVpn.sys
02:13:26.0553 2056 RasAgileVpn - ok
02:13:26.0584 2056 [ A60F1839849C0C00739787FD5EC03F13 ] RasAuto C:\Windows\System32\rasauto.dll
02:13:26.0646 2056 RasAuto - ok
02:13:26.0678 2056 [ D9F91EAFEC2815365CBE6D167E4E332A ] Rasl2tp C:\Windows\system32\DRIVERS\rasl2tp.sys
02:13:26.0756 2056 Rasl2tp - ok
02:13:26.0802 2056 [ CB9E04DC05EACF5B9A36CA276D475006 ] RasMan C:\Windows\System32\rasmans.dll
02:13:26.0865 2056 RasMan - ok
02:13:26.0896 2056 [ 0FE8B15916307A6AC12BFB6A63E45507 ] RasPppoe C:\Windows\system32\DRIVERS\raspppoe.sys
02:13:26.0958 2056 RasPppoe - ok
02:13:26.0990 2056 [ 44101F495A83EA6401D886E7FD70096B ] RasSstp C:\Windows\system32\DRIVERS\rassstp.sys
02:13:27.0052 2056 RasSstp - ok
02:13:27.0083 2056 [ D528BC58A489409BA40334EBF96A311B ] rdbss C:\Windows\system32\DRIVERS\rdbss.sys
02:13:27.0161 2056 rdbss - ok
02:13:27.0192 2056 [ 0D8F05481CB76E70E1DA06EE9F0DA9DF ] rdpbus C:\Windows\system32\drivers\rdpbus.sys
02:13:27.0224 2056 rdpbus - ok
02:13:27.0255 2056 [ 23DAE03F29D253AE74C44F99E515F9A1 ] RDPCDD C:\Windows\system32\DRIVERS\RDPCDD.sys
02:13:27.0317 2056 RDPCDD - ok
02:13:27.0333 2056 [ 5A53CA1598DD4156D44196D200C94B8A ] RDPENCDD C:\Windows\system32\drivers\rdpencdd.sys
02:13:27.0411 2056 RDPENCDD - ok
02:13:27.0426 2056 [ 44B0A53CD4F27D50ED461DAE0C0B4E1F ] RDPREFMP C:\Windows\system32\drivers\rdprefmp.sys
02:13:27.0489 2056 RDPREFMP - ok
02:13:27.0536 2056 [ F031683E6D1FEA157ABB2FF260B51E61 ] RDPWD C:\Windows\system32\drivers\RDPWD.sys
02:13:27.0582 2056 RDPWD - ok
02:13:27.0614 2056 [ 518395321DC96FE2C9F0E96AC743B656 ] rdyboost C:\Windows\system32\drivers\rdyboost.sys
02:13:27.0645 2056 rdyboost - ok
02:13:27.0676 2056 [ 7B5E1419717FAC363A31CC302895217A ] RemoteAccess C:\Windows\System32\mprdim.dll
02:13:27.0754 2056 RemoteAccess - ok
02:13:27.0785 2056 [ CB9A8683F4EF2BF99E123D79950D7935 ] RemoteRegistry C:\Windows\system32\regsvc.dll
02:13:27.0863 2056 RemoteRegistry - ok
02:13:27.0894 2056 [ CB928D9E6DAF51879DD6BA8D02F01321 ] RFCOMM C:\Windows\system32\DRIVERS\rfcomm.sys
02:13:27.0941 2056 RFCOMM - ok
02:13:27.0972 2056 [ 78D072F35BC45D9E4E1B61895C152234 ] RpcEptMapper C:\Windows\System32\RpcEpMap.dll
02:13:28.0035 2056 RpcEptMapper - ok
02:13:28.0066 2056 [ 94D36C0E44677DD26981D2BFEEF2A29D ] RpcLocator C:\Windows\system32\locator.exe
02:13:28.0113 2056 RpcLocator - ok
02:13:28.0128 2056 [ 7660F01D3B38ACA1747E397D21D790AF ] RpcSs C:\Windows\system32\rpcss.dll
02:13:28.0206 2056 RpcSs - ok
02:13:28.0253 2056 [ 5AFF9074165F855B790D3A576B6B453B ] RSPCIESTOR C:\Windows\system32\DRIVERS\RtsPStor.sys
02:13:28.0284 2056 RSPCIESTOR - ok
02:13:28.0331 2056 [ 032B0D36AD92B582D869879F5AF5B928 ] rspndr C:\Windows\system32\DRIVERS\rspndr.sys
02:13:28.0409 2056 rspndr - ok
02:13:28.0487 2056 [ 7CB9F0FDD730F4A4ECF6CDE15EA12E8A ] RS_Service C:\Program Files\Acer\Acer VCM\RS_Service.exe
02:13:28.0518 2056 RS_Service - ok
02:13:28.0565 2056 [ F83FEAF4C5A3A559A6CC98E112B62744 ] RTL8167 C:\Windows\system32\DRIVERS\Rt86win7.sys
02:13:28.0612 2056 RTL8167 - ok
02:13:28.0628 2056 [ 81951F51E318AECC2D68559E47485CC4 ] SamSs C:\Windows\system32\lsass.exe
02:13:28.0659 2056 SamSs - ok
02:13:28.0674 2056 [ 05D860DA1040F111503AC416CCEF2BCA ] sbp2port C:\Windows\system32\drivers\sbp2port.sys
02:13:28.0721 2056 sbp2port - ok
02:13:28.0752 2056 [ 8FC518FFE9519C2631D37515A68009C4 ] SCardSvr C:\Windows\System32\SCardSvr.dll
02:13:28.0815 2056 SCardSvr - ok
02:13:28.0846 2056 [ 0693B5EC673E34DC147E195779A4DCF6 ] scfilter C:\Windows\system32\DRIVERS\scfilter.sys
02:13:28.0908 2056 scfilter - ok
02:13:28.0955 2056 [ A04BB13F8A72F8B6E8B4071723E4E336 ] Schedule C:\Windows\system32\schedsvc.dll
02:13:29.0033 2056 Schedule - ok
02:13:29.0064 2056 [ 319C6B309773D063541D01DF8AC6F55F ] SCPolicySvc C:\Windows\System32\certprop.dll
02:13:29.0127 2056 SCPolicySvc - ok
02:13:29.0158 2056 [ 08236C4BCE5EDD0A0318A438AF28E0F7 ] SDRSVC C:\Windows\System32\SDRSVC.dll
02:13:29.0189 2056 SDRSVC - ok
02:13:29.0220 2056 [ 90A3935D05B494A5A39D37E71F09A677 ] secdrv C:\Windows\system32\drivers\secdrv.sys
02:13:29.0283 2056 secdrv - ok
02:13:29.0314 2056 [ A59B3A4442C52060CC7A85293AA3546F ] seclogon C:\Windows\system32\seclogon.dll
02:13:29.0392 2056 seclogon - ok
02:13:29.0423 2056 [ DCB7FCDCC97F87360F75D77425B81737 ] SENS C:\Windows\System32\sens.dll
02:13:29.0486 2056 SENS - ok
02:13:29.0517 2056 [ 9AD8B8B515E3DF6ACD4212EF465DE2D1 ] Serenum C:\Windows\system32\drivers\serenum.sys
02:13:29.0548 2056 Serenum - ok
02:13:29.0579 2056 [ 5FB7FCEA0490D821F26F39CC5EA3D1E2 ] Serial C:\Windows\system32\drivers\serial.sys
02:13:29.0610 2056 Serial - ok
02:13:29.0626 2056 [ 79BFFB520327FF916A582DFEA17AA813 ] sermouse C:\Windows\system32\drivers\sermouse.sys
02:13:29.0657 2056 sermouse - ok
02:13:29.0704 2056 [ 4AE380F39A0032EAB7DD953030B26D28 ] SessionEnv C:\Windows\system32\sessenv.dll
02:13:29.0766 2056 SessionEnv - ok
02:13:29.0782 2056 [ 9F976E1EB233DF46FCE808D9DEA3EB9C ] sffdisk C:\Windows\system32\drivers\sffdisk.sys
02:13:29.0829 2056 sffdisk - ok
02:13:29.0844 2056 [ 932A68EE27833CFD57C1639D375F2731 ] sffp_mmc C:\Windows\system32\drivers\sffp_mmc.sys
02:13:29.0876 2056 sffp_mmc - ok
02:13:29.0891 2056 [ 6D4CCAEDC018F1CF52866BBBAA235982 ] sffp_sd C:\Windows\system32\drivers\sffp_sd.sys
02:13:29.0922 2056 sffp_sd - ok
02:13:29.0938 2056 [ DB96666CC8312EBC45032F30B007A547 ] sfloppy C:\Windows\system32\drivers\sfloppy.sys
02:13:29.0969 2056 sfloppy - ok
02:13:30.0000 2056 [ D1A079A0DE2EA524513B6930C24527A2 ] SharedAccess C:\Windows\System32\ipnathlp.dll
02:13:30.0078 2056 SharedAccess - ok
02:13:30.0110 2056 [ 414DA952A35BF5D50192E28263B40577 ] ShellHWDetection C:\Windows\System32\shsvcs.dll
02:13:30.0188 2056 ShellHWDetection - ok
02:13:30.0203 2056 [ 2565CAC0DC9FE0371BDCE60832582B2E ] sisagp C:\Windows\system32\drivers\sisagp.sys
02:13:30.0234 2056 sisagp - ok
02:13:30.0250 2056 [ A9F0486851BECB6DDA1D89D381E71055 ] SiSRaid2 C:\Windows\system32\drivers\SiSRaid2.sys
02:13:30.0281 2056 SiSRaid2 - ok
02:13:30.0297 2056 [ 3727097B55738E2F554972C3BE5BC1AA ] SiSRaid4 C:\Windows\system32\drivers\sisraid4.sys
02:13:30.0328 2056 SiSRaid4 - ok
02:13:30.0359 2056 [ 3E21C083B8A01CB70BA1F09303010FCE ] Smb C:\Windows\system32\DRIVERS\smb.sys
02:13:30.0422 2056 Smb - ok
02:13:30.0468 2056 [ 6A984831644ECA1A33FFEAE4126F4F37 ] SNMPTRAP C:\Windows\System32\snmptrap.exe
02:13:30.0500 2056 SNMPTRAP - ok
02:13:30.0531 2056 [ 95CF1AE7527FB70F7816563CBC09D942 ] spldr C:\Windows\system32\drivers\spldr.sys
02:13:30.0562 2056 spldr - ok
02:13:30.0609 2056 [ 9AEA093B8F9C37CF45538382CABA2475 ] Spooler C:\Windows\System32\spoolsv.exe
02:13:30.0656 2056 Spooler - ok
02:13:30.0843 2056 [ CF87A1DE791347E75B98885214CED2B8 ] sppsvc C:\Windows\system32\sppsvc.exe
02:13:30.0999 2056 sppsvc - ok
02:13:31.0014 2056 [ B0180B20B065D89232A78A40FE56EAA6 ] sppuinotify C:\Windows\system32\sppuinotify.dll
02:13:31.0092 2056 sppuinotify - ok
02:13:31.0124 2056 [ E4C2764065D66EA1D2D3EBC28FE99C46 ] srv C:\Windows\system32\DRIVERS\srv.sys
02:13:31.0186 2056 srv - ok
02:13:31.0217 2056 [ 03F0545BD8D4C77FA0AE1CEEDFCC71AB ] srv2 C:\Windows\system32\DRIVERS\srv2.sys
02:13:31.0248 2056 srv2 - ok
02:13:31.0280 2056 [ BE6BD660CAA6F291AE06A718A4FA8ABC ] srvnet C:\Windows\system32\DRIVERS\srvnet.sys
02:13:31.0311 2056 srvnet - ok
02:13:31.0358 2056 [ D887C9FD02AC9FA880F6E5027A43E118 ] SSDPSRV C:\Windows\System32\ssdpsrv.dll
02:13:31.0436 2056 SSDPSRV - ok
02:13:31.0451 2056 [ D318F23BE45D5E3A107469EB64815B50 ] SstpSvc C:\Windows\system32\sstpsvc.dll
02:13:31.0529 2056 SstpSvc - ok
02:13:31.0560 2056 [ DB32D325C192B801DF274BFD12A7E72B ] stexstor C:\Windows\system32\drivers\stexstor.sys
02:13:31.0576 2056 stexstor - ok
02:13:31.0623 2056 [ E1FB3706030FB4578A0D72C2FC3689E4 ] StiSvc C:\Windows\System32\wiaservc.dll
02:13:31.0685 2056 StiSvc - ok
02:13:31.0701 2056 [ E58C78A848ADD9610A4DB6D214AF5224 ] swenum C:\Windows\system32\drivers\swenum.sys
02:13:31.0732 2056 swenum - ok
02:13:31.0763 2056 [ A28BD92DF340E57B024BA433165D34D7 ] swprv C:\Windows\System32\swprv.dll
02:13:31.0841 2056 swprv - ok
02:13:31.0919 2056 [ 31B6B2D25FCFF1B71AE225000D656CD0 ] SynTP C:\Windows\system32\DRIVERS\SynTP.sys
02:13:31.0997 2056 SynTP - ok
02:13:32.0028 2056 [ 36650D618CA34C9D357DFD3D89B2C56F ] SysMain C:\Windows\system32\sysmain.dll
02:13:32.0106 2056 SysMain - ok
02:13:32.0122 2056 [ 763FECDC3D30C815FE72DD57936C6CD1 ] TabletInputService C:\Windows\System32\TabSvc.dll
02:13:32.0169 2056 TabletInputService - ok
02:13:32.0200 2056 [ 613BF4820361543956909043A265C6AC ] TapiSrv C:\Windows\System32\tapisrv.dll
02:13:32.0278 2056 TapiSrv - ok
02:13:32.0309 2056 [ B799D9FDB26111737F58288D8DC172D9 ] TBS C:\Windows\System32\tbssvc.dll
02:13:32.0372 2056 TBS - ok
02:13:32.0450 2056 [ A5EBB8F648000E88B7D9390B514976BF ] Tcpip C:\Windows\system32\drivers\tcpip.sys
02:13:32.0528 2056 Tcpip - ok
02:13:32.0590 2056 [ A5EBB8F648000E88B7D9390B514976BF ] TCPIP6 C:\Windows\system32\DRIVERS\tcpip.sys
02:13:32.0668 2056 TCPIP6 - ok
02:13:32.0715 2056 [ CCA24162E055C3714CE5A88B100C64ED ] tcpipreg C:\Windows\system32\drivers\tcpipreg.sys
02:13:32.0777 2056 tcpipreg - ok
02:13:32.0808 2056 [ 1CB91B2BD8F6DD367DFC2EF26FD751B2 ] TDPIPE C:\Windows\system32\drivers\tdpipe.sys
02:13:32.0855 2056 TDPIPE - ok
02:13:32.0886 2056 [ 2C2C5AFE7EE4F620D69C23C0617651A8 ] TDTCP C:\Windows\system32\drivers\tdtcp.sys
02:13:32.0918 2056 TDTCP - ok
02:13:32.0949 2056 [ B459575348C20E8121D6039DA063C704 ] tdx C:\Windows\system32\DRIVERS\tdx.sys
02:13:33.0011 2056 tdx - ok
02:13:33.0027 2056 [ 04DBF4B01EA4BF25A9A3E84AFFAC9B20 ] TermDD C:\Windows\system32\drivers\termdd.sys
02:13:33.0058 2056 TermDD - ok
02:13:33.0105 2056 [ 382C804C92811BE57829D8E550A900E2 ] TermService C:\Windows\System32\termsrv.dll
02:13:33.0183 2056 TermService - ok
02:13:33.0214 2056 [ 42FB6AFD6B79D9FE07381609172E7CA4 ] Themes C:\Windows\system32\themeservice.dll
02:13:33.0261 2056 Themes - ok
02:13:33.0276 2056 [ 146B6F43A673379A3C670E86D89BE5EA ] THREADORDER C:\Windows\system32\mmcss.dll
02:13:33.0339 2056 THREADORDER - ok
02:13:33.0386 2056 [ 4792C0378DB99A9BC2AE2DE6CFFF0C3A ] TrkWks C:\Windows\System32\trkwks.dll
02:13:33.0464 2056 TrkWks - ok
02:13:33.0510 2056 [ 2C49B175AEE1D4364B91B531417FE583 ] TrustedInstaller C:\Windows\servicing\TrustedInstaller.exe
02:13:33.0588 2056 TrustedInstaller - ok
02:13:33.0620 2056 [ 254BB140EEE3C59D6114C1A86B636877 ] tssecsrv C:\Windows\system32\DRIVERS\tssecsrv.sys
02:13:33.0698 2056 tssecsrv - ok
02:13:33.0713 2056 [ FD1D6C73E6333BE727CBCC6054247654 ] TsUsbFlt C:\Windows\system32\drivers\tsusbflt.sys
02:13:33.0760 2056 TsUsbFlt - ok
02:13:33.0776 2056 [ 01246F0BAAD7B68EC0F472AA41E33282 ] TsUsbGD C:\Windows\system32\drivers\TsUsbGD.sys
02:13:33.0807 2056 TsUsbGD - ok
02:13:33.0854 2056 [ B2FA25D9B17A68BB93D58B0556E8C90D ] tunnel C:\Windows\system32\DRIVERS\tunnel.sys
02:13:33.0916 2056 tunnel - ok
02:13:33.0932 2056 [ 750FBCB269F4D7DD2E420C56B795DB6D ] uagp35 C:\Windows\system32\drivers\uagp35.sys
02:13:33.0963 2056 uagp35 - ok
02:13:33.0994 2056 [ EE43346C7E4B5E63E54F927BABBB32FF ] udfs C:\Windows\system32\DRIVERS\udfs.sys
02:13:34.0056 2056 udfs - ok
02:13:34.0103 2056 [ 8344FD4FCE927880AA1AA7681D4927E5 ] UI0Detect C:\Windows\system32\UI0Detect.exe
02:13:34.0150 2056 UI0Detect - ok
02:13:34.0166 2056 [ 44E8048ACE47BEFBFDC2E9BE4CBC8880 ] uliagpkx C:\Windows\system32\drivers\uliagpkx.sys
02:13:34.0197 2056 uliagpkx - ok
02:13:34.0228 2056 [ D295BED4B898F0FD999FCFA9B32B071B ] umbus C:\Windows\system32\DRIVERS\umbus.sys
02:13:34.0275 2056 umbus - ok
02:13:34.0290 2056 [ 7550AD0C6998BA1CB4843E920EE0FEAC ] UmPass C:\Windows\system32\drivers\umpass.sys
02:13:34.0337 2056 UmPass - ok
02:13:34.0353 2056 [ 833FBB672460EFCE8011D262175FAD33 ] upnphost C:\Windows\System32\upnphost.dll
02:13:34.0431 2056 upnphost - ok
02:13:34.0478 2056 [ BD9C55D7023C5DE374507ACC7A14E2AC ] usbccgp C:\Windows\system32\DRIVERS\usbccgp.sys
02:13:34.0509 2056 usbccgp - ok
02:13:34.0540 2056 [ 04EC7CEC62EC3B6D9354EEE93327FC82 ] usbcir C:\Windows\system32\drivers\usbcir.sys
02:13:34.0587 2056 usbcir - ok
02:13:34.0602 2056 [ F92DE757E4B7CE9C07C5E65423F3AE3B ] usbehci C:\Windows\system32\drivers\usbehci.sys
02:13:34.0634 2056 usbehci - ok
02:13:34.0665 2056 [ 8DC94AEC6A7E644A06135AE7506DC2E9 ] usbhub C:\Windows\system32\DRIVERS\usbhub.sys
02:13:34.0696 2056 usbhub - ok
02:13:34.0727 2056 [ E185D44FAC515A18D9DEDDC23C2CDF44 ] usbohci C:\Windows\system32\drivers\usbohci.sys
02:13:34.0758 2056 usbohci - ok
02:13:34.0790 2056 [ 797D862FE0875E75C7CC4C1AD7B30252 ] usbprint C:\Windows\system32\DRIVERS\usbprint.sys
02:13:34.0821 2056 usbprint - ok
02:13:34.0868 2056 [ 576096CCBC07E7C4EA4F5E6686D6888F ] usbscan C:\Windows\system32\DRIVERS\usbscan.sys
02:13:34.0899 2056 usbscan - ok
02:13:34.0930 2056 [ F991AB9CC6B908DB552166768176896A ] USBSTOR C:\Windows\system32\DRIVERS\USBSTOR.SYS
02:13:34.0961 2056 USBSTOR - ok
02:13:34.0992 2056 [ 68DF884CF41CDADA664BEB01DAF67E3D ] usbuhci C:\Windows\system32\drivers\usbuhci.sys
02:13:35.0024 2056 usbuhci - ok
02:13:35.0055 2056 [ 45F4E7BF43DB40A6C6B4D92C76CBC3F2 ] usbvideo C:\Windows\system32\Drivers\usbvideo.sys
02:13:35.0102 2056 usbvideo - ok
02:13:35.0133 2056 [ 081E6E1C91AEC36758902A9F727CD23C ] UxSms C:\Windows\System32\uxsms.dll
02:13:35.0195 2056 UxSms - ok
02:13:35.0211 2056 [ 81951F51E318AECC2D68559E47485CC4 ] VaultSvc C:\Windows\system32\lsass.exe
02:13:35.0258 2056 VaultSvc - ok
02:13:35.0289 2056 [ A059C4C3EDB09E07D21A8E5C0AABD3CB ] vdrvroot C:\Windows\system32\drivers\vdrvroot.sys
02:13:35.0320 2056 vdrvroot - ok
02:13:35.0351 2056 [ C3CD30495687C2A2F66A65CA6FD89BE9 ] vds C:\Windows\System32\vds.exe
02:13:35.0429 2056 vds - ok
02:13:35.0460 2056 [ 17C408214EA61696CEC9C66E388B14F3 ] vga C:\Windows\system32\DRIVERS\vgapnp.sys
02:13:35.0492 2056 vga - ok
02:13:35.0523 2056 [ 8E38096AD5C8570A6F1570A61E251561 ] VgaSave C:\Windows\System32\drivers\vga.sys
02:13:35.0585 2056 VgaSave - ok
02:13:35.0601 2056 [ 5461686CCA2FDA57B024547733AB42E3 ] vhdmp C:\Windows\system32\drivers\vhdmp.sys
02:13:35.0632 2056 vhdmp - ok
02:13:35.0679 2056 [ C829317A37B4BEA8F39735D4B076E923 ] viaagp C:\Windows\system32\drivers\viaagp.sys
02:13:35.0710 2056 viaagp - ok
02:13:35.0741 2056 [ E02F079A6AA107F06B16549C6E5C7B74 ] ViaC7 C:\Windows\system32\drivers\viac7.sys
02:13:35.0772 2056 ViaC7 - ok
02:13:35.0804 2056 [ E43574F6A56A0EE11809B48C09E4FD3C ] viaide C:\Windows\system32\drivers\viaide.sys
02:13:35.0835 2056 viaide - ok
02:13:35.0866 2056 [ 4C63E00F2F4B5F86AB48A58CD990F212 ] volmgr C:\Windows\system32\drivers\volmgr.sys
02:13:35.0897 2056 volmgr - ok
02:13:35.0928 2056 [ B5BB72067DDDDBBFB04B2F89FF8C3C87 ] volmgrx C:\Windows\system32\drivers\volmgrx.sys
02:13:35.0960 2056 volmgrx - ok
02:13:35.0975 2056 [ F497F67932C6FA693D7DE2780631CFE7 ] volsnap C:\Windows\system32\drivers\volsnap.sys
02:13:36.0022 2056 volsnap - ok
02:13:36.0053 2056 [ 9DFA0CC2F8855A04816729651175B631 ] vsmraid C:\Windows\system32\drivers\vsmraid.sys
02:13:36.0084 2056 vsmraid - ok
02:13:36.0147 2056 [ 209A3B1901B83AEB8527ED211CCE9E4C ] VSS C:\Windows\system32\vssvc.exe
02:13:36.0240 2056 VSS - ok
02:13:36.0256 2056 [ 90567B1E658001E79D7C8BBD3DDE5AA6 ] vwifibus C:\Windows\system32\DRIVERS\vwifibus.sys
02:13:36.0303 2056 vwifibus - ok
02:13:36.0318 2056 [ 7090D3436EEB4E7DA3373090A23448F7 ] vwififlt C:\Windows\system32\DRIVERS\vwififlt.sys
02:13:36.0365 2056 vwififlt - ok
02:13:36.0381 2056 [ 55187FD710E27D5095D10A472C8BAF1C ] W32Time C:\Windows\system32\w32time.dll
02:13:36.0459 2056 W32Time - ok
02:13:36.0490 2056 [ DE3721E89C653AA281428C8A69745D90 ] WacomPen C:\Windows\system32\drivers\wacompen.sys
02:13:36.0521 2056 WacomPen - ok
02:13:36.0568 2056 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] WANARP C:\Windows\system32\DRIVERS\wanarp.sys
02:13:36.0630 2056 WANARP - ok
02:13:36.0630 2056 [ 3C3C78515F5AB448B022BDF5B8FFDD2E ] Wanarpv6 C:\Windows\system32\DRIVERS\wanarp.sys
02:13:36.0708 2056 Wanarpv6 - ok
02:13:36.0755 2056 [ 691E3285E53DCA558E1A84667F13E15A ] wbengine C:\Windows\system32\wbengine.exe
02:13:36.0833 2056 wbengine - ok
02:13:36.0849 2056 [ 9614B5D29DC76AC3C29F6D2D3AA70E67 ] WbioSrvc C:\Windows\System32\wbiosrvc.dll
02:13:36.0896 2056 WbioSrvc - ok
02:13:36.0927 2056 [ 34EEE0DFAADB4F691D6D5308A51315DC ] wcncsvc C:\Windows\System32\wcncsvc.dll
02:13:36.0974 2056 wcncsvc - ok
02:13:36.0989 2056 [ 5D930B6357A6D2AF4D7653BDABBF352F ] WcsPlugInService C:\Windows\System32\WcsPlugInService.dll
02:13:37.0036 2056 WcsPlugInService - ok
02:13:37.0052 2056 [ 1112A9BADACB47B7C0BB0392E3158DFF ] Wd C:\Windows\system32\drivers\wd.sys
02:13:37.0083 2056 Wd - ok
02:13:37.0114 2056 [ 9950E3D0F08141C7E89E64456AE7DC73 ] Wdf01000 C:\Windows\system32\drivers\Wdf01000.sys
02:13:37.0161 2056 Wdf01000 - ok
02:13:37.0176 2056 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiServiceHost C:\Windows\system32\wdi.dll
02:13:37.0239 2056 WdiServiceHost - ok
02:13:37.0254 2056 [ 46EF9DC96265FD0B423DB72E7C38C2A5 ] WdiSystemHost C:\Windows\system32\wdi.dll
02:13:37.0286 2056 WdiSystemHost - ok
02:13:37.0317 2056 [ A9D880F97530D5B8FEE278923349929D ] WebClient C:\Windows\System32\webclnt.dll
02:13:37.0379 2056 WebClient - ok
02:13:37.0395 2056 [ 760F0AFE937A77CFF27153206534F275 ] Wecsvc C:\Windows\system32\wecsvc.dll
02:13:37.0473 2056 Wecsvc - ok
02:13:37.0504 2056 [ AC804569BB2364FB6017370258A4091B ] wercplsupport C:\Windows\System32\wercplsupport.dll
02:13:37.0566 2056 wercplsupport - ok
02:13:37.0598 2056 [ 08E420D873E4FD85241EE2421B02C4A4 ] WerSvc C:\Windows\System32\WerSvc.dll
02:13:37.0676 2056 WerSvc - ok
02:13:37.0722 2056 [ 8B9A943F3B53861F2BFAF6C186168F79 ] WfpLwf C:\Windows\system32\DRIVERS\wfplwf.sys
02:13:37.0785 2056 WfpLwf - ok
02:13:37.0816 2056 [ 5CF95B35E59E2A38023836FFF31BE64C ] WIMMount C:\Windows\system32\drivers\wimmount.sys
02:13:37.0847 2056 WIMMount - ok
02:13:37.0910 2056 [ 3FAE8F94296001C32EAB62CD7D82E0FD ] WinDefend C:\Program Files\Windows Defender\mpsvc.dll
02:13:37.0972 2056 WinDefend - ok
02:13:37.0988 2056 WinHttpAutoProxySvc - ok
02:13:38.0050 2056 [ F62E510B6AD4C21EB9FE8668ED251826 ] Winmgmt C:\Windows\system32\wbem\WMIsvc.dll
02:13:38.0128 2056 Winmgmt - ok
02:13:38.0175 2056 [ 1B91CD34EA3A90AB6A4EF0550174F4CC ] WinRM C:\Windows\system32\WsmSvc.dll
02:13:38.0284 2056 WinRM - ok
02:13:38.0362 2056 [ 16935C98FF639D185086A3529B1F2067 ] Wlansvc C:\Windows\System32\wlansvc.dll
02:13:38.0424 2056 Wlansvc - ok
02:13:38.0440 2056 [ 0217679B8FCA58714C3BF2726D2CA84E ] WmiAcpi C:\Windows\system32\drivers\wmiacpi.sys
02:13:38.0471 2056 WmiAcpi - ok
02:13:38.0518 2056 [ 6EB6B66517B048D87DC1856DDF1F4C3F ] wmiApSrv C:\Windows\system32\wbem\WmiApSrv.exe
02:13:38.0549 2056 wmiApSrv - ok
02:13:38.0643 2056 [ 3B40D3A61AA8C21B88AE57C58AB3122E ] WMPNetworkSvc C:\Program Files\Windows Media Player\wmpnetwk.exe
02:13:38.0705 2056 WMPNetworkSvc - ok
02:13:38.0737 2056 [ A2F0EC770A92F2B3F9DE6D518E11409C ] WPCSvc C:\Windows\System32\wpcsvc.dll
02:13:38.0783 2056 WPCSvc - ok
02:13:38.0799 2056 [ AA53356D60AF47EACC85BC617A4F3F66 ] WPDBusEnum C:\Windows\system32\wpdbusenum.dll
02:13:38.0846 2056 WPDBusEnum - ok
02:13:38.0877 2056 [ 6DB3276587B853BF886B69528FDB048C ] ws2ifsl C:\Windows\system32\drivers\ws2ifsl.sys
02:13:38.0939 2056 ws2ifsl - ok
02:13:38.0971 2056 [ 6F5D49EFE0E7164E03AE773A3FE25340 ] wscsvc C:\Windows\System32\wscsvc.dll
02:13:39.0017 2056 wscsvc - ok
02:13:39.0017 2056 WSearch - ok
02:13:39.0111 2056 [ FC3EC24FCE372C89423E015A2AC1A31E ] wuauserv C:\Windows\system32\wuaueng.dll
02:13:39.0220 2056 wuauserv - ok
02:13:39.0251 2056 [ E714A1C0354636837E20CCBF00888EE7 ] WudfPf C:\Windows\system32\drivers\WudfPf.sys
02:13:39.0314 2056 WudfPf - ok
02:13:39.0345 2056 [ 1023EE888C9B47178C5293ED5336AB69 ] WUDFRd C:\Windows\system32\DRIVERS\WUDFRd.sys
02:13:39.0407 2056 WUDFRd - ok
02:13:39.0423 2056 [ 8D1E1E529A2C9E9B6A85B55A345F7629 ] wudfsvc C:\Windows\System32\WUDFSvc.dll
02:13:39.0501 2056 wudfsvc - ok
02:13:39.0532 2056 [ FF2D745B560F7C71B31F30F4D49F73D2 ] WwanSvc C:\Windows\System32\wwansvc.dll
02:13:39.0579 2056 WwanSvc - ok
02:13:39.0610 2056 ================ Scan global ===============================
02:13:39.0657 2056 [ DAB748AE0439955ED2FA22357533DDDB ] C:\Windows\system32\basesrv.dll
02:13:39.0688 2056 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
02:13:39.0719 2056 [ 183B4188D5D91B271613EC3EFD1B3CEF ] C:\Windows\system32\winsrv.dll
02:13:39.0751 2056 [ 364455805E64882844EE9ACB72522830 ] C:\Windows\system32\sxssrv.dll
02:13:39.0797 2056 [ 5F1B6A9C35D3D5CA72D6D6FDEF9747D6 ] C:\Windows\system32\services.exe
02:13:39.0797 2056 [Global] - ok
02:13:39.0797 2056 ================ Scan MBR ==================================
02:13:39.0813 2056 [ A36C5E4F47E84449FF07ED3517B43A31 ] \Device\Harddisk0\DR0
02:13:40.0406 2056 \Device\Harddisk0\DR0 - ok
02:13:40.0406 2056 ================ Scan VBR ==================================
02:13:40.0437 2056 [ 925F4EF671C90961A05F3997FEB02ECA ] \Device\Harddisk0\DR0\Partition1
02:13:40.0437 2056 \Device\Harddisk0\DR0\Partition1 - ok
02:13:40.0453 2056 [ 9FDF3F42AE56D092FB3EFF3044F6B9FD ] \Device\Harddisk0\DR0\Partition2
02:13:40.0453 2056 \Device\Harddisk0\DR0\Partition2 - ok
02:13:40.0468 2056 [ A49ED01F76F9B44B5FF11045E181B3E1 ] \Device\Harddisk0\DR0\Partition3
02:13:40.0468 2056 \Device\Harddisk0\DR0\Partition3 - ok
02:13:40.0499 2056 [ 3C30236B625D72AF44325E9A5E2430FC ] \Device\Harddisk0\DR0\Partition4
02:13:40.0499 2056 \Device\Harddisk0\DR0\Partition4 - ok
02:13:40.0531 2056 [ DAD1A42213EF227B8249E506F6FC6323 ] \Device\Harddisk0\DR0\Partition5
02:13:40.0531 2056 \Device\Harddisk0\DR0\Partition5 - ok
02:13:40.0546 2056 ============================================================
02:13:40.0546 2056 Scan finished
02:13:40.0546 2056 ============================================================
02:13:40.0577 3124 Detected object count: 1
02:13:40.0577 3124 Actual detected object count: 1
02:13:47.0816 3124 IconMan_R ( UnsignedFile.Multi.Generic ) - skipped by user
02:13:47.0816 3124 IconMan_R ( UnsignedFile.Multi.Generic ) - User select action: Skip

#5
kingfisher3210

Posted 23 September 2012 - 02:46 PM

Member

Topic Starter
Member
42 posts

Thanks a lot Essexboy for your expertise.

#6
Essexboy

Posted 23 September 2012 - 02:48 PM

GeekU Moderator

Retired Staff
69,964 posts

Not a problem, OK that confirmed that area was clear ... Now lets go for the big one

Download and Install Combofix

Download ComboFix from one of the following locations:
Link 1
Link 2

VERY IMPORTANT !!! Save ComboFix.exe to your Desktop

* IMPORTANT - Disable your AntiVirus and AntiSpyware applications, usually via a right click on the System Tray icon. They may otherwise interfere with our tools. If you have difficulty properly disabling your protective programs, refer to this link here

Double click on ComboFix.exe & follow the prompts.
Accept the disclaimer and allow to update if it asks
When finished, it shall produce a log for you.
Please include the C:\ComboFix.txt in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.

Please make sure you include the combo fix log in your next reply as well as describe how your computer is running now

#7
kingfisher3210

Posted 24 September 2012 - 01:26 PM

Member

Topic Starter
Member
42 posts

ComboFix 12-09-24.02 - Akhil Baveja 25-09-2012 0:29.1.4 - x86
Microsoft Windows 7 Starter 6.1.7601.1.1252.91.1033.18.1012.473 [GMT 5.5:30]
Running from: c:\users\Akhil Baveja\Downloads\ComboFix.exe
AV: Microsoft Security Essentials *Enabled/Updated* {9765EA51-0D3C-7DFB-6091-10E4E1F341F6}
SP: Microsoft Security Essentials *Enabled/Updated* {2C040BB5-2B06-7275-5A21-2B969A740B4B}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
* Created a new restore point
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\programdata\FullRemove.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-08-24 to 2012-09-24 )))))))))))))))))))))))))))))))
.
.
2012-09-24 19:12 . 2012-09-24 19:12 -------- d-----w- c:\users\Default\AppData\Local\temp
2012-09-23 20:04 . 2012-09-23 20:04 -------- d-----w- C:\_OTL
2012-09-22 15:51 . 2012-09-22 15:51 388096 ----a-r- c:\users\Akhil Baveja\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2012-09-22 15:51 . 2012-09-22 15:51 -------- d-----w- c:\program files\Trend Micro
2012-09-21 19:22 . 2012-09-21 19:22 126976 --sha-r- c:\windows\system32\difxapid.dll
2012-09-21 12:54 . 2012-08-30 08:17 6980552 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A081110C-4E7D-419C-81F9-A0F03411E468}\mpengine.dll
2012-09-20 09:20 . 2012-08-30 08:17 6980552 ----a-w- c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\Backup\mpengine.dll
2012-09-12 16:15 . 2012-08-22 17:16 712048 ----a-w- c:\windows\system32\drivers\ndis.sys
2012-09-12 16:15 . 2012-07-04 19:45 33280 ----a-w- c:\windows\system32\drivers\RNDISMP.sys
2012-09-12 16:15 . 2012-08-22 17:16 1292144 ----a-w- c:\windows\system32\drivers\tcpip.sys
2012-09-12 16:15 . 2012-08-22 17:16 240496 ----a-w- c:\windows\system32\drivers\netio.sys
2012-09-12 16:15 . 2012-08-22 17:16 187760 ----a-w- c:\windows\system32\drivers\FWPKCLNT.SYS
2012-09-12 16:14 . 2012-08-02 16:57 490496 ----a-w- c:\windows\system32\d3d10level9.dll
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-07-18 17:47 . 2012-08-16 07:33 2345984 ----a-w- c:\windows\system32\win32k.sys
2012-07-06 19:23 . 2012-08-16 21:34 393728 ----a-w- c:\windows\system32\drivers\bthport.sys
2012-07-04 21:14 . 2012-08-16 07:32 41984 ----a-w- c:\windows\system32\browcli.dll
2012-07-04 21:14 . 2012-08-16 07:32 102912 ----a-w- c:\windows\system32\browser.dll
2012-04-05 10:49 . 2011-12-23 09:33 97208 ----a-w- c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Wisdom-soft ScreenHunter 5.1 Plus"="0" [X]
"Messenger (Yahoo!)"="e:\\Messenger\YahooMessenger.exe" [2011-06-16 6276408]
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"IAStorIcon"="c:\program files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe" [2010-11-06 283160]
"RtHDVCpl"="c:\program files\Realtek\Audio\HDA\RtHDVCpl.exe" [2011-02-11 10025576]
"SuiteTray"="c:\program files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe" [2010-09-28 340336]
"EgisTecPMMUpdate"="c:\program files\EgisTec IPS\PmmUpdate.exe" [2010-09-17 407920]
"EgisUpdate"="c:\program files\EgisTec IPS\EgisUpdate.exe" [2010-09-17 201584]
"IgfxTray"="c:\windows\system32\igfxtray.exe" [2011-01-11 141848]
"HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2011-01-11 173592]
"Persistence"="c:\windows\system32\igfxpers.exe" [2011-01-11 150552]
"LManager"="c:\program files\Launch Manager\LManager.exe" [2011-03-14 1081424]
"SynTPEnh"="c:\program files\Synaptics\SynTP\SynTPEnh.exe" [2010-10-08 1934632]
"Power Management"="c:\program files\Acer\Acer ePower Management\ePowerTray.exe" [2011-02-23 715368]
"iSyncData"="c:\program files\Acer\Android Manager\iSync.exe" [2011-05-10 408128]
"AndroidManager"="c:\program files\Acer\Android Manager\AML.exe" [2011-05-10 508992]
"iPatchData"="c:\program files\Acer\Updater\iUpdate.exe" [2011-05-10 492096]
"Adobe ARM"="c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [2012-07-27 919008]
"MSC"="c:\program files\Microsoft Security Client\msseces.exe" [2012-03-26 931200]
.
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce]
"IsMyWinLockerReboot"="msiexec.exe" [2010-11-20 73216]
.
c:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\
Acer VCM.lnk - c:\program files\Acer\Acer VCM\AcerVCM.exe [2011-5-12 704104]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin"= 0 (0x0)
"ConsentPromptBehaviorUser"= 3 (0x3)
"EnableLUA"= 0 (0x0)
"EnableUIADesktopToggle"= 0 (0x0)
"PromptOnSecureDesktop"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MCODS]
@=""
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\MsMpSvc]
@="Service"
.
R1 MpKsl00cf017c;MpKsl00cf017c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{592C9A2B-F81E-4140-8296-5836472582C4}\MpKsl00cf017c.sys [x]
R1 MpKsl016e5b84;MpKsl016e5b84;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7A811974-143C-4192-810F-E526ED6E58C9}\MpKsl016e5b84.sys [x]
R1 MpKsl02dbef18;MpKsl02dbef18;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E6731360-4E36-484C-AE4A-C964F375BDE1}\MpKsl02dbef18.sys [x]
R1 MpKsl030b0605;MpKsl030b0605;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl030b0605.sys [x]
R1 MpKsl04819391;MpKsl04819391;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{0C8F2FC8-5167-435F-8DBD-2605F723E28B}\MpKsl04819391.sys [x]
R1 MpKsl0641446a;MpKsl0641446a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2435138B-C207-4436-9C21-7BCBD68F10CE}\MpKsl0641446a.sys [x]
R1 MpKsl065c61dd;MpKsl065c61dd;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{817BB6C2-512A-4B9F-9E65-F1D79D1BDD5A}\MpKsl065c61dd.sys [x]
R1 MpKsl06ad743b;MpKsl06ad743b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{763AB2EA-F204-4FCB-8628-DF53D9D5B85C}\MpKsl06ad743b.sys [x]
R1 MpKsl0800b086;MpKsl0800b086;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4AAF7265-7C68-4649-97CD-87153FA28C59}\MpKsl0800b086.sys [x]
R1 MpKsl084932dc;MpKsl084932dc;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKsl084932dc.sys [x]
R1 MpKsl0afc50cc;MpKsl0afc50cc;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C9200220-4401-46EB-9B7B-0D7578DFE4CA}\MpKsl0afc50cc.sys [x]
R1 MpKsl0d77b33e;MpKsl0d77b33e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A4F46F46-F4EA-46AA-8BF0-91F8C42026D2}\MpKsl0d77b33e.sys [x]
R1 MpKsl0db3a256;MpKsl0db3a256;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{686F8D9F-7DFB-4123-962E-D524A41B8F07}\MpKsl0db3a256.sys [x]
R1 MpKsl0e82d3ac;MpKsl0e82d3ac;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F1DAEE56-5BF9-4C3A-9888-2BF33891348E}\MpKsl0e82d3ac.sys [x]
R1 MpKsl1010d031;MpKsl1010d031;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C693B576-85EA-4AF2-9527-B45F01B372F1}\MpKsl1010d031.sys [x]
R1 MpKsl10d13f7d;MpKsl10d13f7d;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E67270D3-2F8E-4AD2-9928-B3FBCE43821E}\MpKsl10d13f7d.sys [x]
R1 MpKsl1543184b;MpKsl1543184b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{35C15002-65A0-4EB0-8392-17CCE6A9CD82}\MpKsl1543184b.sys [x]
R1 MpKsl16c6f296;MpKsl16c6f296;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C93BCF6E-CBF5-4FF2-ADCF-1128BDE2E0C5}\MpKsl16c6f296.sys [x]
R1 MpKsl175c11c3;MpKsl175c11c3;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6801923D-6C98-4F19-9935-1AF0D75C79CC}\MpKsl175c11c3.sys [x]
R1 MpKsl175dbe8b;MpKsl175dbe8b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4AAF7265-7C68-4649-97CD-87153FA28C59}\MpKsl175dbe8b.sys [x]
R1 MpKsl1a1cb220;MpKsl1a1cb220;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{75F901F6-310E-453C-8A7B-15403DEE0D7A}\MpKsl1a1cb220.sys [x]
R1 MpKsl1a8bab1e;MpKsl1a8bab1e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKsl1a8bab1e.sys [x]
R1 MpKsl1b0a817c;MpKsl1b0a817c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKsl1b0a817c.sys [x]
R1 MpKsl1bc93270;MpKsl1bc93270;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKsl1bc93270.sys [x]
R1 MpKsl1c8a8c50;MpKsl1c8a8c50;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{BA7CDA28-6FE4-41D5-ABC9-428C8B897FE7}\MpKsl1c8a8c50.sys [x]
R1 MpKsl1ff5b50f;MpKsl1ff5b50f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKsl1ff5b50f.sys [x]
R1 MpKsl215a7d0e;MpKsl215a7d0e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D7775643-145D-4848-B4BC-51957DD2C503}\MpKsl215a7d0e.sys [x]
R1 MpKsl22b466c0;MpKsl22b466c0;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{639B94F3-05D4-4638-84E3-96A97557F47B}\MpKsl22b466c0.sys [x]
R1 MpKsl23511d90;MpKsl23511d90;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DDA39423-3BEE-4887-ADB5-C7B142041B80}\MpKsl23511d90.sys [x]
R1 MpKsl247b440a;MpKsl247b440a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{77AC7797-FA37-4A49-BF05-9B96F1429127}\MpKsl247b440a.sys [x]
R1 MpKsl25974fdd;MpKsl25974fdd;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsl25974fdd.sys [x]
R1 MpKsl26fd884d;MpKsl26fd884d;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl26fd884d.sys [x]
R1 MpKsl2951948a;MpKsl2951948a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{96C20DD7-AFBB-4FD0-9D47-84D326542D45}\MpKsl2951948a.sys [x]
R1 MpKsl299db2bf;MpKsl299db2bf;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{89129128-A246-425E-9064-A163F30156C3}\MpKsl299db2bf.sys [x]
R1 MpKsl2c092542;MpKsl2c092542;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9F723B4E-1363-43E7-93FB-F7DBD1A734D0}\MpKsl2c092542.sys [x]
R1 MpKsl321d210f;MpKsl321d210f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{61EAD053-A5E4-4463-BBE2-D1FDF9DF45D4}\MpKsl321d210f.sys [x]
R1 MpKsl3552e5d9;MpKsl3552e5d9;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4F555093-FEEC-4BA3-8179-821EBDF1E619}\MpKsl3552e5d9.sys [x]
R1 MpKsl37aaca1d;MpKsl37aaca1d;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{503E92E6-27C7-403C-9BA6-301930245543}\MpKsl37aaca1d.sys [x]
R1 MpKsl3822fce0;MpKsl3822fce0;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl3822fce0.sys [x]
R1 MpKsl388a373f;MpKsl388a373f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AE0F988F-6461-4644-926A-826A7993D796}\MpKsl388a373f.sys [x]
R1 MpKsl3a89a42b;MpKsl3a89a42b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl3a89a42b.sys [x]
R1 MpKsl3e1e6704;MpKsl3e1e6704;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{A60C0A22-96CB-4543-B8F1-E5F76A9EA7BD}\MpKsl3e1e6704.sys [x]
R1 MpKsl4395796c;MpKsl4395796c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2E9FB65E-1258-4CBD-AC75-F7769C4DE9E1}\MpKsl4395796c.sys [x]
R1 MpKsl45b6953f;MpKsl45b6953f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKsl45b6953f.sys [x]
R1 MpKsl45db01c1;MpKsl45db01c1;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{40A9D23C-78A1-49C6-8C8E-8996360F1093}\MpKsl45db01c1.sys [x]
R1 MpKsl466e1bef;MpKsl466e1bef;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{62CAF5F3-0C4F-4CBB-B696-519E85DF46CA}\MpKsl466e1bef.sys [x]
R1 MpKsl47853568;MpKsl47853568;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsl47853568.sys [x]
R1 MpKsl4a2ec07c;MpKsl4a2ec07c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{457223A7-0ED2-4E74-961A-A5C3BF5C1654}\MpKsl4a2ec07c.sys [x]
R1 MpKsl4a4e1391;MpKsl4a4e1391;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl4a4e1391.sys [x]
R1 MpKsl4c5c63dd;MpKsl4c5c63dd;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4EF603EF-F10D-45C9-9968-0DFBC777A294}\MpKsl4c5c63dd.sys [x]
R1 MpKsl4d30669b;MpKsl4d30669b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C9200220-4401-46EB-9B7B-0D7578DFE4CA}\MpKsl4d30669b.sys [x]
R1 MpKsl4d4d2db8;MpKsl4d4d2db8;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{30054914-C736-47C1-BBE4-951997B4221D}\MpKsl4d4d2db8.sys [x]
R1 MpKsl4e13e741;MpKsl4e13e741;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AE09BD0F-6E5C-40AF-B220-7086D4CC6570}\MpKsl4e13e741.sys [x]
R1 MpKsl4ec6c2a0;MpKsl4ec6c2a0;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{10A420C9-DAD7-4A60-A46C-ABEE2355C0B4}\MpKsl4ec6c2a0.sys [x]
R1 MpKsl5022c774;MpKsl5022c774;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7A510B5A-7392-4414-9931-2D017F817EB2}\MpKsl5022c774.sys [x]
R1 MpKsl52616f74;MpKsl52616f74;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6801923D-6C98-4F19-9935-1AF0D75C79CC}\MpKsl52616f74.sys [x]
R1 MpKsl52944419;MpKsl52944419;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AC3374BA-9E78-4EC4-83D3-7AB6B6B04046}\MpKsl52944419.sys [x]
R1 MpKsl550588d0;MpKsl550588d0;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl550588d0.sys [x]
R1 MpKsl55b1c7dc;MpKsl55b1c7dc;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2435138B-C207-4436-9C21-7BCBD68F10CE}\MpKsl55b1c7dc.sys [x]
R1 MpKsl56dcf45a;MpKsl56dcf45a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FEAD3384-A148-4DAE-B8B7-4C5A0E2ECF20}\MpKsl56dcf45a.sys [x]
R1 MpKsl588727c3;MpKsl588727c3;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{96C05351-F320-4153-909F-9E0650990025}\MpKsl588727c3.sys [x]
R1 MpKsl595fe79e;MpKsl595fe79e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9AFD9547-F4A9-4980-92C4-EA0B73808D85}\MpKsl595fe79e.sys [x]
R1 MpKsl5adf0c5d;MpKsl5adf0c5d;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl5adf0c5d.sys [x]
R1 MpKsl5b5b0756;MpKsl5b5b0756;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{92BE8BFD-CEC6-4D87-BA39-8C0C01536B81}\MpKsl5b5b0756.sys [x]
R1 MpKsl62f71e41;MpKsl62f71e41;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D1DC07D7-3A2F-46CC-8B94-AD3DB9E07DB7}\MpKsl62f71e41.sys [x]
R1 MpKsl6307e0b6;MpKsl6307e0b6;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{428C7610-9B6E-4BF7-9CE5-8F4C76F45B14}\MpKsl6307e0b6.sys [x]
R1 MpKsl63b7466e;MpKsl63b7466e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3A3D9F2A-43D0-4FF4-85D4-FF36F131DDD8}\MpKsl63b7466e.sys [x]
R1 MpKsl65626759;MpKsl65626759;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKsl65626759.sys [x]
R1 MpKsl667b9d9a;MpKsl667b9d9a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{04D1AB29-B55C-4DC2-9DCF-AFCCBB897CCB}\MpKsl667b9d9a.sys [x]
R1 MpKsl6a4aee20;MpKsl6a4aee20;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6D871E12-EE11-4FA3-ADAC-8DDDDC61D211}\MpKsl6a4aee20.sys [x]
R1 MpKsl6cdb11b2;MpKsl6cdb11b2;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4A50C759-D9DA-4F91-9134-E796341ECA56}\MpKsl6cdb11b2.sys [x]
R1 MpKsl6e254e07;MpKsl6e254e07;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D1DC07D7-3A2F-46CC-8B94-AD3DB9E07DB7}\MpKsl6e254e07.sys [x]
R1 MpKsl6fbd6c71;MpKsl6fbd6c71;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7382277E-3EF8-415E-B60F-3B294925D32B}\MpKsl6fbd6c71.sys [x]
R1 MpKsl7107e1bb;MpKsl7107e1bb;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2E9FB65E-1258-4CBD-AC75-F7769C4DE9E1}\MpKsl7107e1bb.sys [x]
R1 MpKsl74b68d33;MpKsl74b68d33;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKsl74b68d33.sys [x]
R1 MpKsl74cea91a;MpKsl74cea91a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9F723B4E-1363-43E7-93FB-F7DBD1A734D0}\MpKsl74cea91a.sys [x]
R1 MpKsl76c4500e;MpKsl76c4500e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{04D1AB29-B55C-4DC2-9DCF-AFCCBB897CCB}\MpKsl76c4500e.sys [x]
R1 MpKsl78bb618c;MpKsl78bb618c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1772E180-8748-4D3E-B24C-D6D2C5F9B5A3}\MpKsl78bb618c.sys [x]
R1 MpKsl79139c6f;MpKsl79139c6f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F1DAEE56-5BF9-4C3A-9888-2BF33891348E}\MpKsl79139c6f.sys [x]
R1 MpKsl79dcca5b;MpKsl79dcca5b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{686F8D9F-7DFB-4123-962E-D524A41B8F07}\MpKsl79dcca5b.sys [x]
R1 MpKsl80047a56;MpKsl80047a56;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AC4E357E-FE72-4CD2-931B-9BE8F61F92C1}\MpKsl80047a56.sys [x]
R1 MpKsl808cdd75;MpKsl808cdd75;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl808cdd75.sys [x]
R1 MpKsl810da3ce;MpKsl810da3ce;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C06F1EB1-24A6-4A04-A4A5-CF2133B9D20A}\MpKsl810da3ce.sys [x]
R1 MpKsl825d4dcd;MpKsl825d4dcd;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{F8348DFA-B2EC-4D0C-8183-8A7F1A26DBBD}\MpKsl825d4dcd.sys [x]
R1 MpKsl849ddc69;MpKsl849ddc69;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl849ddc69.sys [x]
R1 MpKsl8887dd69;MpKsl8887dd69;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKsl8887dd69.sys [x]
R1 MpKsl8a94550b;MpKsl8a94550b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{39B354B6-CF95-4B9D-AC21-05762961ACB2}\MpKsl8a94550b.sys [x]
R1 MpKsl8bbf55ef;MpKsl8bbf55ef;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKsl8bbf55ef.sys [x]
R1 MpKsl8d0e4e03;MpKsl8d0e4e03;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D9A9D432-6DAD-4751-9B4C-D0746373D450}\MpKsl8d0e4e03.sys [x]
R1 MpKsl8f45d270;MpKsl8f45d270;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{8F48956F-658D-4E0B-9C3D-08A5FA7313F3}\MpKsl8f45d270.sys [x]
R1 MpKsl8f785007;MpKsl8f785007;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{29744E99-DB21-4352-8935-079363060011}\MpKsl8f785007.sys [x]
R1 MpKsl9134de0b;MpKsl9134de0b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{89129128-A246-425E-9064-A163F30156C3}\MpKsl9134de0b.sys [x]
R1 MpKsl93e06edd;MpKsl93e06edd;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{238ABD0D-BB80-41D1-816D-101CD48DB40A}\MpKsl93e06edd.sys [x]
R1 MpKsl950dae20;MpKsl950dae20;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{08E1CB06-2276-4365-9E98-33429F68E66B}\MpKsl950dae20.sys [x]
R1 MpKsl985b3f8e;MpKsl985b3f8e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1772E180-8748-4D3E-B24C-D6D2C5F9B5A3}\MpKsl985b3f8e.sys [x]
R1 MpKsla3b74131;MpKsla3b74131;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{40A9D23C-78A1-49C6-8C8E-8996360F1093}\MpKsla3b74131.sys [x]
R1 MpKsla47860c6;MpKsla47860c6;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{5FA0C4E3-B949-4E03-83D4-BF8433BA43D6}\MpKsla47860c6.sys [x]
R1 MpKsla536fda6;MpKsla536fda6;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsla536fda6.sys [x]
R1 MpKsla5f4e6a8;MpKsla5f4e6a8;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AE09BD0F-6E5C-40AF-B220-7086D4CC6570}\MpKsla5f4e6a8.sys [x]
R1 MpKsla75d66af;MpKsla75d66af;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7C59764B-24A9-4C19-B28F-957B83FD0ECB}\MpKsla75d66af.sys [x]
R1 MpKsla7a69055;MpKsla7a69055;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{C93BCF6E-CBF5-4FF2-ADCF-1128BDE2E0C5}\MpKsla7a69055.sys [x]
R1 MpKslac0a44e8;MpKslac0a44e8;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslac0a44e8.sys [x]
R1 MpKslae6ebf88;MpKslae6ebf88;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKslae6ebf88.sys [x]
R1 MpKslaf88753f;MpKslaf88753f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKslaf88753f.sys [x]
R1 MpKslafdd0155;MpKslafdd0155;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{EB476B9C-7D7B-44E0-AFE8-8D0EA879A0E7}\MpKslafdd0155.sys [x]
R1 MpKslb3776706;MpKslb3776706;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1E8E37DD-94FA-43F2-9DBC-A3863D8E5DC7}\MpKslb3776706.sys [x]
R1 MpKslb5d67722;MpKslb5d67722;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKslb5d67722.sys [x]
R1 MpKslbb9cb6cd;MpKslbb9cb6cd;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{0C8F2FC8-5167-435F-8DBD-2605F723E28B}\MpKslbb9cb6cd.sys [x]
R1 MpKslbc59489c;MpKslbc59489c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKslbc59489c.sys [x]
R1 MpKslbcf74d57;MpKslbcf74d57;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKslbcf74d57.sys [x]
R1 MpKslc39453af;MpKslc39453af;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{8F48956F-658D-4E0B-9C3D-08A5FA7313F3}\MpKslc39453af.sys [x]
R1 MpKslca589ceb;MpKslca589ceb;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{BA7CDA28-6FE4-41D5-ABC9-428C8B897FE7}\MpKslca589ceb.sys [x]
R1 MpKslce9d0181;MpKslce9d0181;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{9E27DE14-7F7B-426E-810F-DEEBD5315B15}\MpKslce9d0181.sys [x]
R1 MpKsld58d6931;MpKsld58d6931;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{5285C302-45B0-4D11-A56C-63291B5ECF2F}\MpKsld58d6931.sys [x]
R1 MpKsld747c86f;MpKsld747c86f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{77AC7797-FA37-4A49-BF05-9B96F1429127}\MpKsld747c86f.sys [x]
R1 MpKsld7e586c6;MpKsld7e586c6;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4A50C759-D9DA-4F91-9134-E796341ECA56}\MpKsld7e586c6.sys [x]
R1 MpKslda6e4aea;MpKslda6e4aea;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{1E8E37DD-94FA-43F2-9DBC-A3863D8E5DC7}\MpKslda6e4aea.sys [x]
R1 MpKsldd51ab34;MpKsldd51ab34;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{DD038CBD-6BC7-4FA0-B48C-2000FCCEBFEF}\MpKsldd51ab34.sys [x]
R1 MpKslde1c7de5;MpKslde1c7de5;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKslde1c7de5.sys [x]
R1 MpKslde60af67;MpKslde60af67;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{2EA92FCE-24B9-4DA5-9300-FA693A1B29C9}\MpKslde60af67.sys [x]
R1 MpKsle1761ce5;MpKsle1761ce5;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{78A3BB43-3DFD-4D78-B724-8EF2653FBF4A}\MpKsle1761ce5.sys [x]
R1 MpKsle56f7b4f;MpKsle56f7b4f;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{FB37A0B6-824F-49B5-A446-F75B2D66AE11}\MpKsle56f7b4f.sys [x]
R1 MpKsle572f6ba;MpKsle572f6ba;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AC4E357E-FE72-4CD2-931B-9BE8F61F92C1}\MpKsle572f6ba.sys [x]
R1 MpKsle6ae4d60;MpKsle6ae4d60;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{CA5A3ABB-2E07-4C39-8276-A7501DF24765}\MpKsle6ae4d60.sys [x]
R1 MpKsle729d806;MpKsle729d806;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{75F901F6-310E-453C-8A7B-15403DEE0D7A}\MpKsle729d806.sys [x]
R1 MpKsle910a5f5;MpKsle910a5f5;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{63C8D80E-9686-4207-A43F-A347CA09CE39}\MpKsle910a5f5.sys [x]
R1 MpKsle923b9a6;MpKsle923b9a6;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKsle923b9a6.sys [x]
R1 MpKslea8ca7cb;MpKslea8ca7cb;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{AC3374BA-9E78-4EC4-83D3-7AB6B6B04046}\MpKslea8ca7cb.sys [x]
R1 MpKslecb2691b;MpKslecb2691b;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{D7775643-145D-4848-B4BC-51957DD2C503}\MpKslecb2691b.sys [x]
R1 MpKslecd217de;MpKslecd217de;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7A811974-143C-4192-810F-E526ED6E58C9}\MpKslecd217de.sys [x]
R1 MpKsledb5f72c;MpKsledb5f72c;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{4EF603EF-F10D-45C9-9968-0DFBC777A294}\MpKsledb5f72c.sys [x]
R1 MpKslee01476d;MpKslee01476d;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{125A2177-586F-4CBC-A2A1-E4CDC3131FF5}\MpKslee01476d.sys [x]
R1 MpKslf006b12e;MpKslf006b12e;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{7C59764B-24A9-4C19-B28F-957B83FD0ECB}\MpKslf006b12e.sys [x]
R1 MpKslf1433579;MpKslf1433579;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{3382A8A9-8112-4889-841B-36C4CCE7D63D}\MpKslf1433579.sys [x]
R1 MpKslf48e10b4;MpKslf48e10b4;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslf48e10b4.sys [x]
R1 MpKslf6b04e98;MpKslf6b04e98;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{E67270D3-2F8E-4AD2-9928-B3FBCE43821E}\MpKslf6b04e98.sys [x]
R1 MpKslf8244d8a;MpKslf8244d8a;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKslf8244d8a.sys [x]
R1 MpKslfbd2caf1;MpKslfbd2caf1;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslfbd2caf1.sys [x]
R1 MpKslfdbce2ee;MpKslfdbce2ee;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKslfdbce2ee.sys [x]
R1 MpKslff8899ad;MpKslff8899ad;c:\programdata\Microsoft\Microsoft Antimalware\Definition Updates\{92BE8BFD-CEC6-4D87-BA39-8C0C01536B81}\MpKslff8899ad.sys [x]
R3 btwl2cap;Bluetooth L2CAP Service;c:\windows\system32\DRIVERS\btwl2cap.sys [x]
R3 EgisTec Ticket Service;EgisTec Ticket Service;c:\program files\Common Files\EgisTec\Services\EgisTicketService.exe [x]
R3 NisDrv;Microsoft Network Inspection System;c:\windows\system32\DRIVERS\NisDrvWFP.sys [x]
R3 NisSrv;Microsoft Network Inspection;c:\program files\Microsoft Security Client\NisSrv.exe [x]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [x]
R3 TsUsbGD;Remote Desktop Generic USB Device;c:\windows\system32\drivers\TsUsbGD.sys [x]
S1 mwlPSDFilter;mwlPSDFilter;c:\windows\system32\DRIVERS\mwlPSDFilter.sys [x]
S1 mwlPSDNServ;mwlPSDNServ;c:\windows\system32\DRIVERS\mwlPSDNServ.sys [x]
S1 mwlPSDVDisk;mwlPSDVDisk;c:\windows\system32\DRIVERS\mwlPSDVDisk.sys [x]
S1 vwififlt;Virtual WiFi Filter Driver;c:\windows\system32\DRIVERS\vwififlt.sys [x]
S2 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [x]
S2 DsiWMIService;Dritek WMI Service;c:\program files\Launch Manager\dsiwmis.exe [x]
S2 ePowerSvc;Acer ePower Service;c:\program files\Acer\Acer ePower Management\ePowerSvc.exe [x]
S2 IAStorDataMgrSvc;Intel® Rapid Storage Technology;c:\program files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe [x]
S2 IconMan_R;IconMan_R;c:\program files\Realtek\Realtek PCIE Card Reader\RIconMan.exe [x]
S2 Live Updater Service;Live Updater Service;c:\program files\Acer\Acer Updater\UpdaterService.exe [x]
S2 RS_Service;Raw Socket Service;c:\program files\Acer\Acer VCM\RS_Service.exe [x]
S3 RSPCIESTOR;Realtek PCIE CardReader Driver;c:\windows\system32\DRIVERS\RtsPStor.sys [x]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt86win7.sys [x]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation REG_MULTI_SZ SSDPSRV upnphost SCardSvr TBS FontCache fdrespub AppIDSvc QWAVE wcncsvc
.
Contents of the 'Scheduled Tasks' folder
.
2012-09-20 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3807445768-3563054489-1376992915-1000Core.job
- c:\users\Akhil Baveja\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-27 08:08]
.
2012-09-24 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3807445768-3563054489-1376992915-1000UA.job
- c:\users\Akhil Baveja\AppData\Local\Google\Update\GoogleUpdate.exe [2011-11-27 08:08]
.
2012-09-24 c:\windows\Tasks\wkqvwvtid.job
- c:\windows\system32\difxapid.dll [2012-09-21 19:22]
.
.
------- Supplementary Scan -------
.
uStart Page = about:blank
mStart Page = hxxp://acer.msn.com
IE: E&xport to Microsoft Excel - e:\office\OFFICE11\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.1.1
FF - ProfilePath - c:\users\Akhil Baveja\AppData\Roaming\Mozilla\Firefox\Profiles\ayqgim5j.default\
.
- - - - ORPHANS REMOVED - - - -
.
URLSearchHooks-{88c7f2aa-f93f-432c-8f0e-b7d85967a527} - (no file)
Toolbar-Locked - (no file)
WebBrowser-{88C7F2AA-F93F-432C-8F0E-B7D85967A527} - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2012-09-25 00:52:45
ComboFix-quarantined-files.txt 2012-09-24 19:22
.
Pre-Run: 74,174,615,552 bytes free
Post-Run: 74,663,231,488 bytes free
.
- - End Of File - - 5B6A7D6CDC915F5395A7156377216669

#8
Essexboy

Posted 24 September 2012 - 01:29 PM

GeekU Moderator

Retired Staff
69,964 posts

They can run but they can't hide :cool:

Let me know how the computer is behaving on completion

1. Close any open browsers.
2. Close/disable all anti virus and anti malware programs so they do not interfere with the running of ComboFix.
3. Open notepad and copy/paste the text in the quotebox below into it:

File::
c:\windows\system32\difxapid.dll
c:\windows\Tasks\wkqvwvtid.job

Save this as CFScript.txt, in the same location as ComboFix.exe
Posted Image

Refering to the picture above, drag CFScript into ComboFix.exeWhen finished, it shall produce a log for you at C:\ComboFix.txt which I will require in your next reply.

Notes:
1. Do not mouse-click Combofix's window while it is running. That may cause it to stall.
2. Do not "re-run" Combofix. If you have a problem, reply back for further instructions.
3. If after the reboot you get errors about programmes being marked for deletion then reboot, that will cure it.

#9
kingfisher3210

Posted 24 September 2012 - 01:51 PM

Member

Topic Starter
Member
42 posts

Thanks a lot Essexboy...PC is running well now...Please advice if anything further has to be done.

#10
Essexboy

Posted 24 September 2012 - 03:15 PM

GeekU Moderator

Retired Staff
69,964 posts

We will do a final sweep for orphans and if all is good I will remove my tools

Please download Malwarebytes' Anti-Malware

Double Click mbam-setup.exe to install the application.

Make sure a checkmark is placed next to Update Malwarebytes' Anti-Malware and Launch Malwarebytes' Anti-Malware, then click Finish.
If an update is found, it will download and install the latest version.
Once the program has loaded, select "Perform Quick Scan", then click Scan.
The scan may take some time to finish, so please be patient.
When the scan is complete, click OK, then Show Results to view the results.
Make sure that everything is checked, and click Remove Selected.
When disinfection is completed, a log will open in Notepad and you may be prompted to Restart.(See Extra Note)
The log is automatically saved by MBAM and can be viewed by clicking the Logs tab in MBAM.
Copy&Paste the entire report in your next reply.

Extra Note:
If MBAM encounters a file that is difficult to remove, you will be presented with 1 of 2 prompts, click OK to either and let MBAM proceed with the disinfection process, if asked to restart the computer, please do so immediately.

#11
kingfisher3210

Posted 24 September 2012 - 11:54 PM

Member

Topic Starter
Member
42 posts

I just woke up and turned on PC after 8 hours. The problem is back. When ever i open any site in IE, search engines websites are opening.

After combo fix everything was working right but now it looks the problem is back.

#12
kingfisher3210

Posted 25 September 2012 - 12:21 AM

Member

Topic Starter
Member
42 posts

Malwarebytes Anti-Malware (Trial) 1.65.0.1400
www.malwarebytes.org

Database version: v2012.09.25.04

Windows 7 Service Pack 1 x86 NTFS
Internet Explorer 9.0.8112.16421
Akhil Baveja :: AKHILBAVEJA-PC [administrator]

Protection: Enabled

25-09-2012 11:41:30
mbam-log-2012-09-25 (11-41-30).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 186449
Time elapsed: 6 minute(s), 37 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#13
Essexboy

Posted 25 September 2012 - 07:14 AM

GeekU Moderator

Retired Staff
69,964 posts

Could you run a fresh OTL scan with these parameters and I will see if I can locate where it is hiding

Double click on the icon to run it. Make sure all other windows are closed and to let it run uninterrupted.
Select All Users
Under the Custom Scan box paste this in
netsvcs
BASESERVICES
%SYSTEMDRIVE%\*.exe
/md5start
services.*
explorer.exe
winlogon.exe
Userinit.exe
svchost.exe
qmgr.dll
/md5stop
CREATERESTOREPOINT
Click the Quick Scan button. Do not change any settings unless otherwise told to do so. The scan wont take long.
When the scan completes, it will open two notepad windows. OTL.Txt and Extras.Txt. These are saved in the same location as OTL.
Post both logs

#14
kingfisher3210

Posted 25 September 2012 - 01:42 PM

Member

Topic Starter
Member
42 posts

OTL logfile created on: 9/26/2012 12:58:08 AM - Run 3
OTL by OldTimer - Version 3.2.66.0 Folder = C:\Users\Akhil Baveja\Downloads
Starter Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000409 | Country: India | Language: ENN | Date Format: dd-MM-yyyy

1011.87 Mb Total Physical Memory | 348.29 Mb Available Physical Memory | 34.42% Memory free
1.99 Gb Paging File | 0.85 Gb Available in Paging File | 42.84% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 87.53 Gb Total Space | 69.56 Gb Free Space | 79.46% Space Free | Partition Type: NTFS
Drive D: | 4.10 Gb Total Space | 2.56 Gb Free Space | 62.45% Space Free | Partition Type: FAT32
Drive E: | 94.73 Gb Total Space | 93.55 Gb Free Space | 98.76% Space Free | Partition Type: NTFS
Drive F: | 98.63 Gb Total Space | 98.42 Gb Free Space | 99.79% Space Free | Partition Type: NTFS

Computer Name: AKHILBAVEJA-PC | User Name: Akhil Baveja | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2012/09/23 19:29:53 | 000,601,600 | ---- | M] (OldTimer Tools) -- C:\Users\Akhil Baveja\Downloads\OTL.exe
PRC - [2012/09/07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe
PRC - [2012/09/07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/09/07 17:04:44 | 000,766,536 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
PRC - [2012/07/28 02:21:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2011/06/24 09:52:20 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe
PRC - [2011/05/10 10:31:33 | 000,492,096 | ---- | M] (Insyde Software Corp.) -- C:\Program Files\Acer\Updater\iUpdate.exe
PRC - [2011/05/10 10:31:32 | 000,408,128 | ---- | M] (Insyde Software Corp.) -- C:\Program Files\Acer\Android Manager\iSync.exe
PRC - [2011/03/14 17:14:38 | 000,414,800 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LMutilps32.exe
PRC - [2011/03/14 17:14:38 | 000,334,416 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LMworker.exe
PRC - [2011/03/14 17:14:36 | 001,081,424 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\LManager.exe
PRC - [2011/03/14 17:14:36 | 000,352,336 | ---- | M] (Dritek System Inc.) -- C:\Program Files\Launch Manager\dsiwmis.exe
PRC - [2011/03/07 14:15:22 | 001,755,136 | ---- | M] (Realsil Microelectronics Inc.) -- C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe
PRC - [2011/02/25 11:00:54 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2011/02/23 09:31:10 | 000,715,368 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe
PRC - [2011/02/23 09:31:08 | 000,739,944 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe
PRC - [2011/02/23 09:31:02 | 000,469,608 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer ePower Management\ePowerEvent.exe
PRC - [2011/02/01 02:25:14 | 000,244,624 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe
PRC - [2010/11/21 02:59:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2010/11/06 12:24:22 | 000,013,336 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2010/11/06 12:24:20 | 000,283,160 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2010/10/06 03:16:10 | 000,704,104 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\AcerVCM.exe
PRC - [2010/09/28 07:30:56 | 000,340,336 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe
PRC - [2010/09/18 04:40:16 | 000,407,920 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec IPS\PmmUpdate.exe
PRC - [2010/09/18 04:40:02 | 000,201,584 | ---- | M] (Egis Technology Inc.) -- C:\Program Files\EgisTec IPS\EgisUpdate.exe
PRC - [2010/01/30 05:22:58 | 000,260,640 | ---- | M] (Acer Incorporated) -- C:\Program Files\Acer\Acer VCM\RS_Service.exe

========== Modules (No Company Name) ==========

MOD - [2012/08/30 08:28:45 | 000,442,392 | ---- | M] () -- C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\ppgooglenaclpluginchrome.dll
MOD - [2012/08/30 08:28:44 | 012,237,336 | ---- | M] () -- C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\PepperFlash\pepflashplayer.dll
MOD - [2012/08/30 08:28:42 | 003,997,720 | ---- | M] () -- C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\pdf.dll
MOD - [2012/08/30 08:27:27 | 000,526,872 | ---- | M] () -- C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\libglesv2.dll
MOD - [2012/08/30 08:27:26 | 000,104,984 | ---- | M] () -- C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\libegl.dll
MOD - [2012/08/30 08:27:15 | 000,144,424 | ---- | M] () -- C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\avutil-51.dll
MOD - [2012/08/30 08:27:13 | 000,266,792 | ---- | M] () -- C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\avformat-54.dll
MOD - [2012/08/30 08:27:12 | 002,480,680 | ---- | M] () -- C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\avcodec-54.dll
MOD - [2012/06/14 20:36:37 | 000,475,648 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\3ac345f23c9bf10342c5c12f2d2c5728\IAStorUtil.ni.dll
MOD - [2012/06/14 18:01:35 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\828e99a57411166ccc26d24be089ba44\System.Windows.Forms.ni.dll
MOD - [2012/06/14 18:01:10 | 001,591,808 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\502adc65e43b9d025cba1fd0bfa964a8\System.Drawing.ni.dll
MOD - [2012/05/12 15:01:55 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\23917a73056cd44ac791a08442c9848a\IAStorCommon.ni.dll
MOD - [2012/05/12 14:27:29 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\12dc22db56f7933e84654ecc590beba5\System.Runtime.Remoting.ni.dll
MOD - [2012/05/12 14:24:32 | 003,347,968 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\5b10c18a074132f1ae4a86d860cf9615\WindowsBase.ni.dll
MOD - [2012/05/12 14:24:14 | 005,452,800 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\cfb0e4de1afd3f2efbbf39a5e39f646a\System.Xml.ni.dll
MOD - [2012/05/12 14:24:03 | 000,971,264 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\2a5cbab122112cd4291b684e67460c16\System.Configuration.ni.dll
MOD - [2012/05/12 14:24:01 | 007,967,232 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\9447bd5b21a91081d4275b4c4401b1f9\System.ni.dll
MOD - [2012/05/12 14:23:42 | 011,493,376 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\2ab531f4915cccb998c4e852fb7efd00\mscorlib.ni.dll

========== Services (SafeList) ==========

SRV - [2012/09/07 17:04:46 | 000,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/09/07 17:04:46 | 000,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/07/28 02:21:26 | 000,063,960 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2011/03/14 17:14:36 | 000,352,336 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files\Launch Manager\dsiwmis.exe -- (DsiWMIService)
SRV - [2011/03/07 14:15:22 | 001,755,136 | ---- | M] (Realsil Microelectronics Inc.) [Auto | Running] -- C:\Program Files\Realtek\Realtek PCIE Card Reader\RIconMan.exe -- (IconMan_R)
SRV - [2011/02/23 09:31:08 | 000,739,944 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer ePower Management\ePowerSvc.exe -- (ePowerSvc)
SRV - [2011/02/01 02:25:14 | 000,244,624 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer Updater\UpdaterService.exe -- (Live Updater Service)
SRV - [2010/11/06 12:24:22 | 000,013,336 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2010/09/28 06:39:54 | 000,172,912 | ---- | M] (Egis Technology Inc. ) [On_Demand | Stopped] -- C:\Program Files\Common Files\EgisTec\Services\EgisTicketService.exe -- (EgisTec Ticket Service)
SRV - [2010/01/30 05:22:58 | 000,260,640 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files\Acer\Acer VCM\RS_Service.exe -- (RS_Service)
SRV - [2009/07/14 06:45:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

========== Driver Services (SafeList) ==========

DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{92BE8BFD-CEC6-4D87-BA39-8C0C01536B81}\MpKslff8899ad.sys -- (MpKslff8899ad)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKslfdbce2ee.sys -- (MpKslfdbce2ee)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslfbd2caf1.sys -- (MpKslfbd2caf1)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKslf8244d8a.sys -- (MpKslf8244d8a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E67270D3-2F8E-4AD2-9928-B3FBCE43821E}\MpKslf6b04e98.sys -- (MpKslf6b04e98)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslf48e10b4.sys -- (MpKslf48e10b4)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3382A8A9-8112-4889-841B-36C4CCE7D63D}\MpKslf1433579.sys -- (MpKslf1433579)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C59764B-24A9-4C19-B28F-957B83FD0ECB}\MpKslf006b12e.sys -- (MpKslf006b12e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{125A2177-586F-4CBC-A2A1-E4CDC3131FF5}\MpKslee01476d.sys -- (MpKslee01476d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4EF603EF-F10D-45C9-9968-0DFBC777A294}\MpKsledb5f72c.sys -- (MpKsledb5f72c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7A811974-143C-4192-810F-E526ED6E58C9}\MpKslecd217de.sys -- (MpKslecd217de)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7775643-145D-4848-B4BC-51957DD2C503}\MpKslecb2691b.sys -- (MpKslecb2691b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC3374BA-9E78-4EC4-83D3-7AB6B6B04046}\MpKslea8ca7cb.sys -- (MpKslea8ca7cb)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKsle923b9a6.sys -- (MpKsle923b9a6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{63C8D80E-9686-4207-A43F-A347CA09CE39}\MpKsle910a5f5.sys -- (MpKsle910a5f5)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75F901F6-310E-453C-8A7B-15403DEE0D7A}\MpKsle729d806.sys -- (MpKsle729d806)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{CA5A3ABB-2E07-4C39-8276-A7501DF24765}\MpKsle6ae4d60.sys -- (MpKsle6ae4d60)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC4E357E-FE72-4CD2-931B-9BE8F61F92C1}\MpKsle572f6ba.sys -- (MpKsle572f6ba)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FB37A0B6-824F-49B5-A446-F75B2D66AE11}\MpKsle56f7b4f.sys -- (MpKsle56f7b4f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{78A3BB43-3DFD-4D78-B724-8EF2653FBF4A}\MpKsle1761ce5.sys -- (MpKsle1761ce5)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2EA92FCE-24B9-4DA5-9300-FA693A1B29C9}\MpKslde60af67.sys -- (MpKslde60af67)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKslde1c7de5.sys -- (MpKslde1c7de5)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DD038CBD-6BC7-4FA0-B48C-2000FCCEBFEF}\MpKsldd51ab34.sys -- (MpKsldd51ab34)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1E8E37DD-94FA-43F2-9DBC-A3863D8E5DC7}\MpKslda6e4aea.sys -- (MpKslda6e4aea)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4A50C759-D9DA-4F91-9134-E796341ECA56}\MpKsld7e586c6.sys -- (MpKsld7e586c6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{77AC7797-FA37-4A49-BF05-9B96F1429127}\MpKsld747c86f.sys -- (MpKsld747c86f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5285C302-45B0-4D11-A56C-63291B5ECF2F}\MpKsld58d6931.sys -- (MpKsld58d6931)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9E27DE14-7F7B-426E-810F-DEEBD5315B15}\MpKslce9d0181.sys -- (MpKslce9d0181)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BA7CDA28-6FE4-41D5-ABC9-428C8B897FE7}\MpKslca589ceb.sys -- (MpKslca589ceb)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8F48956F-658D-4E0B-9C3D-08A5FA7313F3}\MpKslc39453af.sys -- (MpKslc39453af)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKslbcf74d57.sys -- (MpKslbcf74d57)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKslbc59489c.sys -- (MpKslbc59489c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0C8F2FC8-5167-435F-8DBD-2605F723E28B}\MpKslbb9cb6cd.sys -- (MpKslbb9cb6cd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKslb5d67722.sys -- (MpKslb5d67722)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1E8E37DD-94FA-43F2-9DBC-A3863D8E5DC7}\MpKslb3776706.sys -- (MpKslb3776706)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{EB476B9C-7D7B-44E0-AFE8-8D0EA879A0E7}\MpKslafdd0155.sys -- (MpKslafdd0155)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKslaf88753f.sys -- (MpKslaf88753f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKslae6ebf88.sys -- (MpKslae6ebf88)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BEDDC0FA-9198-4CB7-86F7-BFAA2C60D67D}\MpKslac0a44e8.sys -- (MpKslac0a44e8)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C93BCF6E-CBF5-4FF2-ADCF-1128BDE2E0C5}\MpKsla7a69055.sys -- (MpKsla7a69055)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7C59764B-24A9-4C19-B28F-957B83FD0ECB}\MpKsla75d66af.sys -- (MpKsla75d66af)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AE09BD0F-6E5C-40AF-B220-7086D4CC6570}\MpKsla5f4e6a8.sys -- (MpKsla5f4e6a8)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsla536fda6.sys -- (MpKsla536fda6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{5FA0C4E3-B949-4E03-83D4-BF8433BA43D6}\MpKsla47860c6.sys -- (MpKsla47860c6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{40A9D23C-78A1-49C6-8C8E-8996360F1093}\MpKsla3b74131.sys -- (MpKsla3b74131)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1772E180-8748-4D3E-B24C-D6D2C5F9B5A3}\MpKsl985b3f8e.sys -- (MpKsl985b3f8e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{08E1CB06-2276-4365-9E98-33429F68E66B}\MpKsl950dae20.sys -- (MpKsl950dae20)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{238ABD0D-BB80-41D1-816D-101CD48DB40A}\MpKsl93e06edd.sys -- (MpKsl93e06edd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{89129128-A246-425E-9064-A163F30156C3}\MpKsl9134de0b.sys -- (MpKsl9134de0b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{29744E99-DB21-4352-8935-079363060011}\MpKsl8f785007.sys -- (MpKsl8f785007)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{8F48956F-658D-4E0B-9C3D-08A5FA7313F3}\MpKsl8f45d270.sys -- (MpKsl8f45d270)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D9A9D432-6DAD-4751-9B4C-D0746373D450}\MpKsl8d0e4e03.sys -- (MpKsl8d0e4e03)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKsl8bbf55ef.sys -- (MpKsl8bbf55ef)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39B354B6-CF95-4B9D-AC21-05762961ACB2}\MpKsl8a94550b.sys -- (MpKsl8a94550b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKsl8887dd69.sys -- (MpKsl8887dd69)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl849ddc69.sys -- (MpKsl849ddc69)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F8348DFA-B2EC-4D0C-8183-8A7F1A26DBBD}\MpKsl825d4dcd.sys -- (MpKsl825d4dcd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C06F1EB1-24A6-4A04-A4A5-CF2133B9D20A}\MpKsl810da3ce.sys -- (MpKsl810da3ce)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl808cdd75.sys -- (MpKsl808cdd75)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC4E357E-FE72-4CD2-931B-9BE8F61F92C1}\MpKsl80047a56.sys -- (MpKsl80047a56)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{686F8D9F-7DFB-4123-962E-D524A41B8F07}\MpKsl79dcca5b.sys -- (MpKsl79dcca5b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F1DAEE56-5BF9-4C3A-9888-2BF33891348E}\MpKsl79139c6f.sys -- (MpKsl79139c6f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{1772E180-8748-4D3E-B24C-D6D2C5F9B5A3}\MpKsl78bb618c.sys -- (MpKsl78bb618c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{04D1AB29-B55C-4DC2-9DCF-AFCCBB897CCB}\MpKsl76c4500e.sys -- (MpKsl76c4500e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9F723B4E-1363-43E7-93FB-F7DBD1A734D0}\MpKsl74cea91a.sys -- (MpKsl74cea91a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKsl74b68d33.sys -- (MpKsl74b68d33)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E9FB65E-1258-4CBD-AC75-F7769C4DE9E1}\MpKsl7107e1bb.sys -- (MpKsl7107e1bb)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7382277E-3EF8-415E-B60F-3B294925D32B}\MpKsl6fbd6c71.sys -- (MpKsl6fbd6c71)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D1DC07D7-3A2F-46CC-8B94-AD3DB9E07DB7}\MpKsl6e254e07.sys -- (MpKsl6e254e07)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4A50C759-D9DA-4F91-9134-E796341ECA56}\MpKsl6cdb11b2.sys -- (MpKsl6cdb11b2)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6D871E12-EE11-4FA3-ADAC-8DDDDC61D211}\MpKsl6a4aee20.sys -- (MpKsl6a4aee20)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{04D1AB29-B55C-4DC2-9DCF-AFCCBB897CCB}\MpKsl667b9d9a.sys -- (MpKsl667b9d9a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D0993A11-546E-4055-89F0-CC6306465396}\MpKsl65626759.sys -- (MpKsl65626759)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{3A3D9F2A-43D0-4FF4-85D4-FF36F131DDD8}\MpKsl63b7466e.sys -- (MpKsl63b7466e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{428C7610-9B6E-4BF7-9CE5-8F4C76F45B14}\MpKsl6307e0b6.sys -- (MpKsl6307e0b6)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D1DC07D7-3A2F-46CC-8B94-AD3DB9E07DB7}\MpKsl62f71e41.sys -- (MpKsl62f71e41)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{92BE8BFD-CEC6-4D87-BA39-8C0C01536B81}\MpKsl5b5b0756.sys -- (MpKsl5b5b0756)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl5adf0c5d.sys -- (MpKsl5adf0c5d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9AFD9547-F4A9-4980-92C4-EA0B73808D85}\MpKsl595fe79e.sys -- (MpKsl595fe79e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{96C05351-F320-4153-909F-9E0650990025}\MpKsl588727c3.sys -- (MpKsl588727c3)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{FEAD3384-A148-4DAE-B8B7-4C5A0E2ECF20}\MpKsl56dcf45a.sys -- (MpKsl56dcf45a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2435138B-C207-4436-9C21-7BCBD68F10CE}\MpKsl55b1c7dc.sys -- (MpKsl55b1c7dc)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl550588d0.sys -- (MpKsl550588d0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AC3374BA-9E78-4EC4-83D3-7AB6B6B04046}\MpKsl52944419.sys -- (MpKsl52944419)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6801923D-6C98-4F19-9935-1AF0D75C79CC}\MpKsl52616f74.sys -- (MpKsl52616f74)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7A510B5A-7392-4414-9931-2D017F817EB2}\MpKsl5022c774.sys -- (MpKsl5022c774)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{10A420C9-DAD7-4A60-A46C-ABEE2355C0B4}\MpKsl4ec6c2a0.sys -- (MpKsl4ec6c2a0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AE09BD0F-6E5C-40AF-B220-7086D4CC6570}\MpKsl4e13e741.sys -- (MpKsl4e13e741)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{30054914-C736-47C1-BBE4-951997B4221D}\MpKsl4d4d2db8.sys -- (MpKsl4d4d2db8)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C9200220-4401-46EB-9B7B-0D7578DFE4CA}\MpKsl4d30669b.sys -- (MpKsl4d30669b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4EF603EF-F10D-45C9-9968-0DFBC777A294}\MpKsl4c5c63dd.sys -- (MpKsl4c5c63dd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl4a4e1391.sys -- (MpKsl4a4e1391)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{457223A7-0ED2-4E74-961A-A5C3BF5C1654}\MpKsl4a2ec07c.sys -- (MpKsl4a2ec07c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsl47853568.sys -- (MpKsl47853568)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{62CAF5F3-0C4F-4CBB-B696-519E85DF46CA}\MpKsl466e1bef.sys -- (MpKsl466e1bef)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{40A9D23C-78A1-49C6-8C8E-8996360F1093}\MpKsl45db01c1.sys -- (MpKsl45db01c1)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKsl45b6953f.sys -- (MpKsl45b6953f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2E9FB65E-1258-4CBD-AC75-F7769C4DE9E1}\MpKsl4395796c.sys -- (MpKsl4395796c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A60C0A22-96CB-4543-B8F1-E5F76A9EA7BD}\MpKsl3e1e6704.sys -- (MpKsl3e1e6704)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl3a89a42b.sys -- (MpKsl3a89a42b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{AE0F988F-6461-4644-926A-826A7993D796}\MpKsl388a373f.sys -- (MpKsl388a373f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DA18841B-A5BF-419F-B25E-5A87AE455070}\MpKsl3822fce0.sys -- (MpKsl3822fce0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{503E92E6-27C7-403C-9BA6-301930245543}\MpKsl37aaca1d.sys -- (MpKsl37aaca1d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4F555093-FEEC-4BA3-8179-821EBDF1E619}\MpKsl3552e5d9.sys -- (MpKsl3552e5d9)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61EAD053-A5E4-4463-BBE2-D1FDF9DF45D4}\MpKsl321d210f.sys -- (MpKsl321d210f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{9F723B4E-1363-43E7-93FB-F7DBD1A734D0}\MpKsl2c092542.sys -- (MpKsl2c092542)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{89129128-A246-425E-9064-A163F30156C3}\MpKsl299db2bf.sys -- (MpKsl299db2bf)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{96C20DD7-AFBB-4FD0-9D47-84D326542D45}\MpKsl2951948a.sys -- (MpKsl2951948a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B64014E5-4136-4CD0-8113-847453D219CB}\MpKsl26fd884d.sys -- (MpKsl26fd884d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6F84F3CA-5817-457F-9F30-E2FC39965926}\MpKsl25974fdd.sys -- (MpKsl25974fdd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{77AC7797-FA37-4A49-BF05-9B96F1429127}\MpKsl247b440a.sys -- (MpKsl247b440a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{DDA39423-3BEE-4887-ADB5-C7B142041B80}\MpKsl23511d90.sys -- (MpKsl23511d90)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{639B94F3-05D4-4638-84E3-96A97557F47B}\MpKsl22b466c0.sys -- (MpKsl22b466c0)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D7775643-145D-4848-B4BC-51957DD2C503}\MpKsl215a7d0e.sys -- (MpKsl215a7d0e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{D466E7F0-ABFE-4BF9-AEFF-7A6B470ECE95}\MpKsl1ff5b50f.sys -- (MpKsl1ff5b50f)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{BA7CDA28-6FE4-41D5-ABC9-428C8B897FE7}\MpKsl1c8a8c50.sys -- (MpKsl1c8a8c50)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{61699DE3-FAF0-4100-AD28-E139BBBEA028}\MpKsl1bc93270.sys -- (MpKsl1bc93270)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{39EDEA56-4AF3-4675-952A-85AB8E21BDDD}\MpKsl1b0a817c.sys -- (MpKsl1b0a817c)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{507FFA38-3D20-4DB9-9990-16B8C2986AA9}\MpKsl1a8bab1e.sys -- (MpKsl1a8bab1e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{75F901F6-310E-453C-8A7B-15403DEE0D7A}\MpKsl1a1cb220.sys -- (MpKsl1a1cb220)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4AAF7265-7C68-4649-97CD-87153FA28C59}\MpKsl175dbe8b.sys -- (MpKsl175dbe8b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6801923D-6C98-4F19-9935-1AF0D75C79CC}\MpKsl175c11c3.sys -- (MpKsl175c11c3)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C93BCF6E-CBF5-4FF2-ADCF-1128BDE2E0C5}\MpKsl16c6f296.sys -- (MpKsl16c6f296)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{35C15002-65A0-4EB0-8392-17CCE6A9CD82}\MpKsl1543184b.sys -- (MpKsl1543184b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E67270D3-2F8E-4AD2-9928-B3FBCE43821E}\MpKsl10d13f7d.sys -- (MpKsl10d13f7d)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C693B576-85EA-4AF2-9527-B45F01B372F1}\MpKsl1010d031.sys -- (MpKsl1010d031)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{F1DAEE56-5BF9-4C3A-9888-2BF33891348E}\MpKsl0e82d3ac.sys -- (MpKsl0e82d3ac)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{686F8D9F-7DFB-4123-962E-D524A41B8F07}\MpKsl0db3a256.sys -- (MpKsl0db3a256)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{A4F46F46-F4EA-46AA-8BF0-91F8C42026D2}\MpKsl0d77b33e.sys -- (MpKsl0d77b33e)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{C9200220-4401-46EB-9B7B-0D7578DFE4CA}\MpKsl0afc50cc.sys -- (MpKsl0afc50cc)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{6AA6604E-B3CD-4B84-B64D-743B9BE26E39}\MpKsl084932dc.sys -- (MpKsl084932dc)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{4AAF7265-7C68-4649-97CD-87153FA28C59}\MpKsl0800b086.sys -- (MpKsl0800b086)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{763AB2EA-F204-4FCB-8628-DF53D9D5B85C}\MpKsl06ad743b.sys -- (MpKsl06ad743b)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{817BB6C2-512A-4B9F-9E65-F1D79D1BDD5A}\MpKsl065c61dd.sys -- (MpKsl065c61dd)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{2435138B-C207-4436-9C21-7BCBD68F10CE}\MpKsl0641446a.sys -- (MpKsl0641446a)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{0C8F2FC8-5167-435F-8DBD-2605F723E28B}\MpKsl04819391.sys -- (MpKsl04819391)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{65B39A30-6E27-4BFC-B148-2F8BD88F9875}\MpKsl030b0605.sys -- (MpKsl030b0605)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{E6731360-4E36-484C-AE4A-C964F375BDE1}\MpKsl02dbef18.sys -- (MpKsl02dbef18)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{7A811974-143C-4192-810F-E526ED6E58C9}\MpKsl016e5b84.sys -- (MpKsl016e5b84)
DRV - File not found [Kernel | System | Stopped] -- C:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{592C9A2B-F81E-4140-8296-5836472582C4}\MpKsl00cf017c.sys -- (MpKsl00cf017c)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\Users\AKHILB~1\AppData\Local\Temp\catchme.sys -- (catchme)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwrchid.sys -- (btwrchid)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwl2cap.sys -- (btwl2cap)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\btwavdt.sys -- (btwavdt)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\drivers\btwaudio.sys -- (btwaudio)
DRV - [2012/09/07 17:04:46 | 000,022,856 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\System32\drivers\mbam.sys -- (MBAMProtector)
DRV - [2012/03/20 20:44:12 | 000,074,112 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\NisDrvWFP.sys -- (NisDrv)
DRV - [2011/05/12 16:52:14 | 000,062,048 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDVDisk.sys -- (mwlPSDVDisk)
DRV - [2011/05/12 16:52:14 | 000,019,304 | ---- | M] (Egis Technology Inc.) [File_System | System | Running] -- C:\Windows\System32\drivers\mwlPSDFilter.sys -- (mwlPSDFilter)
DRV - [2011/05/12 16:52:14 | 000,016,744 | ---- | M] (Egis Technology Inc.) [Kernel | System | Running] -- C:\Windows\System32\drivers\mwlPSDNserv.sys -- (mwlPSDNServ)
DRV - [2011/03/07 09:16:26 | 000,252,520 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\RtsPStor.sys -- (RSPCIESTOR)
DRV - [2010/11/21 02:59:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV - [2010/11/21 02:59:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV - [2009/07/14 03:32:46 | 001,096,704 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\athr.sys -- (athr)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://acer.msn.com
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...rc=IE-SearchBox

IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-21-3807445768-3563054489-1376992915-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank
IE - HKU\S-1-5-21-3807445768-3563054489-1376992915-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3807445768-3563054489-1376992915-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@messenger.yahoo.com/YahooMessengerStatePlugin;version=1.0.0.6: C:\Program Files\Yahoo!\Shared\npYState.dll (Yahoo! Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files\Windows Live\Photo Gallery\NPWLPG.dll File not found
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.2: C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Akhil Baveja\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Akhil Baveja\AppData\Local\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012/04/05 16:19:57 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 11.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins

[2011/12/23 15:03:42 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Akhil Baveja\AppData\Roaming\Mozilla\Extensions
[2012/06/24 23:54:33 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Akhil Baveja\AppData\Roaming\Mozilla\Firefox\Profiles\ayqgim5j.default\extensions
[2011/12/23 15:03:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012/04/05 16:19:56 | 000,097,208 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012/04/05 16:19:49 | 000,002,252 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\bing.xml
[2012/04/05 16:19:49 | 000,002,040 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\twitter.xml

========== Chrome ==========

CHR - homepage: http://www.google.com/
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR - homepage: http://www.google.com/
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\Application\21.0.1180.89\gcswf32.dll
CHR - plugin: Shockwave Flash (Disabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\PepperFlash\11.2.31.144\pepflashplayer.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32.dll
CHR - plugin: Adobe Acrobat (Disabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Akhil Baveja\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - Extension: YouTube = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Google Search = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Users\Akhil Baveja\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2012/09/25 00:49:41 | 000,000,027 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [AndroidManager] C:\Program Files\Acer\Android Manager\AML.exe ()
O4 - HKLM..\Run: [EgisTecPMMUpdate] C:\Program Files\EgisTec IPS\PmmUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [EgisUpdate] C:\Program Files\EgisTec IPS\EgisUpdate.exe (Egis Technology Inc.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [iPatchData] C:\Program Files\Acer\Updater\iUpdate.exe (Insyde Software Corp.)
O4 - HKLM..\Run: [iSyncData] C:\Program Files\Acer\Android Manager\iSync.exe (Insyde Software Corp.)
O4 - HKLM..\Run: [LManager] C:\Program Files\Launch Manager\LManager.exe (Dritek System Inc.)
O4 - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4 - HKLM..\Run: [Power Management] C:\Program Files\Acer\Acer ePower Management\ePowerTray.exe (Acer Incorporated)
O4 - HKLM..\Run: [SuiteTray] C:\Program Files\EgisTec MyWinLockerSuite\x86\SuiteTray.exe (Egis Technology Inc.)
O4 - HKU\S-1-5-21-3807445768-3563054489-1376992915-1000..\Run: [Messenger (Yahoo!)] E:\Messenger\YahooMessenger.exe (Yahoo! Inc.)
O4 - HKU\S-1-5-21-3807445768-3563054489-1376992915-1000..\Run: [Wisdom-soft ScreenHunter 5.1 Plus] 0 File not found
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3807445768-3563054489-1376992915-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-3807445768-3563054489-1376992915-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3807445768-3563054489-1376992915-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&xport to Microsoft Excel - E:\office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - C:\Program Files\Java\jre1.5.0\bin\NPJPI150.dll (Sun Microsystems, Inc.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macr...director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://javadl-esd.su...indows-i586.cab (Java Plug-in 1.5.0)
O16 - DPF: {CAFEEFAC-0015-0000-0000-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.5.0)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{5FFBFED2-2E72-4757-9463-108CB0E9F941}: DhcpNameServer = 192.168.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{BC84C8BC-2919-4F99-B293-F3C33B4F2358}: DhcpNameServer = 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Acer\Acer VCM\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009/06/11 03:12:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs: FastUserSwitchingCompatibility - File not found
NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation)
NetSvcs: Nla - File not found
NetSvcs: Ntmssvc - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: SRService - File not found
NetSvcs: WmdmPmSp - File not found
NetSvcs: LogonHours - File not found
NetSvcs: PCAudit - File not found
NetSvcs: helpsvc - File not found
NetSvcs: uploadmgr - File not found

CREATERESTOREPOINT
Restore point Set: OTL Restore Point

========== Files/Folders - Created Within 30 Days ==========

[2012/09/25 11:29:36 | 000,000,000 | ---D | C] -- C:\Users\Akhil Baveja\AppData\Roaming\Malwarebytes
[2012/09/25 11:29:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2012/09/25 11:29:20 | 000,022,856 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[2012/09/25 11:29:20 | 000,000,000 | ---D | C] -- C:\Program Files\Malwarebytes' Anti-Malware
[2012/09/25 00:52:54 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2012/09/24 23:41:07 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2012/09/24 23:41:07 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2012/09/24 23:41:07 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2012/09/24 23:40:24 | 000,000,000 | ---D | C] -- C:\Qoobox
[2012/09/24 23:39:41 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2012/09/24 01:34:39 | 000,000,000 | ---D | C] -- C:\_OTL
[2012/09/22 21:21:25 | 000,000,000 | ---D | C] -- C:\Users\Akhil Baveja\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis
[2012/09/22 21:21:24 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2012/09/26 00:15:45 | 000,000,936 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3807445768-3563054489-1376992915-1000UA.job
[2012/09/26 00:15:35 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012/09/25 20:48:42 | 000,016,160 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012/09/25 20:48:42 | 000,016,160 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012/09/25 20:41:16 | 000,016,384 | ---- | M] () -- C:\Windows\System32\Ikeext.etl
[2012/09/25 20:41:16 | 000,000,318 | ---- | M] () -- C:\Windows\tasks\wkqvwvtid.job
[2012/09/25 20:41:03 | 795,762,688 | -HS- | M] () -- C:\hiberfil.sys
[2012/09/25 11:29:23 | 000,001,075 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/09/25 11:14:00 | 000,000,884 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3807445768-3563054489-1376992915-1000Core.job
[2012/09/25 00:49:41 | 000,000,027 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts
[2012/09/23 15:35:04 | 000,630,560 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2012/09/23 15:35:04 | 000,111,612 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2012/09/22 21:21:25 | 000,002,995 | ---- | M] () -- C:\Users\Akhil Baveja\Desktop\HiJackThis.lnk
[2012/09/22 00:52:29 | 000,126,976 | RHS- | M] () -- C:\Windows\System32\difxapid.dll
[2012/09/07 17:04:46 | 000,022,856 | ---- | M] (Malwarebytes Corporation) -- C:\Windows\System32\drivers\mbam.sys
[3 C:\Windows\System32\*.tmp files -> C:\Windows\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2012/09/25 11:29:23 | 000,001,075 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012/09/24 23:41:07 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2012/09/24 23:41:07 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2012/09/24 23:41:07 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2012/09/24 23:41:07 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2012/09/24 23:41:07 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2012/09/22 21:21:25 | 000,002,995 | ---- | C] () -- C:\Users\Akhil Baveja\Desktop\HiJackThis.lnk
[2012/09/22 00:52:29 | 000,000,318 | ---- | C] () -- C:\Windows\tasks\wkqvwvtid.job
[2012/09/22 00:52:28 | 000,126,976 | RHS- | C] () -- C:\Windows\System32\difxapid.dll
[2012/02/13 22:47:25 | 000,004,037 | ---- | C] () -- C:\Windows\System32\doc-0o-4.com-viewer-securedownload-5sj8mc9cp1vsrvk6n9j6e1hdqqd6fhce-umh5ev1fv5oufk72sfjgcqlasjd3ief4-1329152400000-Z21haWw=-AGZ5hq_U1cWSHHkQejQOuHY9ERti-MTM1NzdiNDZiYjIxZmZkZXwwLjEuMC4xLjAuMQ==.lnk
[2011/08/17 11:59:31 | 000,000,065 | ---- | C] () -- C:\Windows\wininit.ini
[2011/08/01 01:30:43 | 000,000,376 | ---- | C] () -- C:\Windows\ODBC.INI
[2011/05/12 16:04:53 | 000,039,672 | ---- | C] () -- C:\Windows\System32\drivers\RtPCEE3.DAT
[2011/05/12 16:04:53 | 000,029,494 | ---- | C] () -- C:\Windows\System32\drivers\RtPCEE4.DAT
[2011/05/12 16:04:53 | 000,001,448 | ---- | C] () -- C:\Windows\System32\drivers\RtHdatEx.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX3.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX2.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX1.dat
[2011/05/12 16:04:53 | 000,000,520 | ---- | C] () -- C:\Windows\System32\drivers\RTEQEX0.dat
[2011/05/12 16:04:53 | 000,000,176 | ---- | C] () -- C:\Windows\System32\drivers\RTHDAEQ1.dat
[2011/05/12 16:04:53 | 000,000,040 | ---- | C] () -- C:\Windows\System32\drivers\rtkhdaud.dat
[2011/05/12 16:04:52 | 000,247,560 | ---- | C] () -- C:\Windows\System32\drivers\RTConvEQ.dat
[2011/05/12 16:01:42 | 000,080,416 | ---- | C] () -- C:\Windows\System32\RtNicProp32.dll

========== ZeroAccess Check ==========

[2009/07/14 10:12:31 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2012/06/09 10:11:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = %systemroot%\system32\wbem\wbemess.dll -- [2009/07/14 06:46:17 | 000,342,528 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

========== LOP Check ==========

[2012/01/19 13:28:58 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Binreader
[2012/05/08 07:18:12 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\BitTorrent
[2012/01/11 13:06:34 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\FreeCall
[2012/06/07 14:58:11 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Gleim
[2011/12/01 19:51:38 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Mobipocket
[2012/01/10 13:02:50 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Rebtel
[2012/04/24 02:45:26 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\SoftGrid Client
[2011/08/05 12:59:11 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\TP
[2011/08/05 01:34:45 | 000,000,000 | ---D | M] -- C:\Users\Akhil Baveja\AppData\Roaming\Windows Live Writer

========== Purity Check ==========

========== Custom Scans ==========

========== Base Services ==========
SRV - [2009/07/14 06:44:53 | 000,062,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\aelupsvc.dll -- (AeLookupSvc)
SRV - [2010/11/21 02:59:19 | 000,047,104 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\appinfo.dll -- (Appinfo)
SRV - [2009/07/14 06:44:11 | 000,059,392 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\alg.exe -- (ALG)
SRV - [2010/11/21 02:59:08 | 000,585,728 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\qmgr.dll -- (BITS)
SRV - [2010/11/21 02:59:12 | 000,494,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\BFE.DLL -- (BFE)
SRV - [2011/11/17 10:59:50 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lsass.exe -- (KeyIso)
SRV - [2009/07/14 06:45:19 | 000,271,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\es.dll -- (EventSystem)
SRV - [2012/07/05 02:44:34 | 000,102,912 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\browser.dll -- (Browser)
SRV - [2012/04/24 10:06:42 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\cryptsvc.dll -- (CryptSvc)
SRV - [2010/11/21 02:59:12 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (DcomLaunch)
SRV - [2010/11/21 02:59:12 | 000,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2011/03/03 11:08:01 | 000,132,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\dnsrslvr.dll -- (Dnscache)
SRV - [2009/07/14 06:45:13 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\eapsvc.dll -- (EapHost)
SRV - [2009/07/14 06:45:24 | 000,049,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\hidserv.dll -- (hidserv)
SRV - [2009/07/14 06:45:33 | 000,300,544 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\ipnathlp.dll -- (SharedAccess)
SRV - [2010/11/21 02:59:07 | 000,350,208 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\IPSECSVC.DLL -- (PolicyAgent)
SRV - [2012/03/26 17:03:40 | 000,011,552 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV - [2012/03/26 17:03:40 | 000,214,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV - [2009/07/14 06:46:15 | 000,313,856 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\swprv.dll -- (swprv)
SRV - [2009/07/14 06:45:41 | 000,049,664 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\System32\mmcss.dll -- (MMCSS)
SRV - [2009/07/14 06:46:03 | 000,280,576 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netman.dll -- (Netman)
SRV - [2009/07/14 06:46:03 | 000,360,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\netprofm.dll -- (netprofm)
SRV - [2010/11/21 02:59:11 | 000,242,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nlasvc.dll -- (NlaSvc)
SRV - [2009/07/14 06:46:11 | 000,019,456 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\nsisvc.dll -- (nsi)
SRV - [2011/05/24 16:14:59 | 000,293,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\umpnpmgr.dll -- (PlugPlay)
SRV - [2012/02/11 11:07:49 | 000,317,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\spoolsv.exe -- (Spooler)
SRV - [2011/11/17 10:59:50 | 000,022,528 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\lsass.exe -- (ProtectedStorage)
No service found with a name of EMDMgmt
SRV - [2009/07/14 06:46:12 | 000,090,624 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\rasauto.dll -- (RasAuto)
SRV - [2010/11/21 02:59:24 | 000,286,208 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\rasmans.dll -- (RasMan)
SRV - [2010/11/21 02:59:12 | 000,376,832 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\rpcss.dll -- (RpcSs)
SRV - [2009/07/14 06:46:13 | 000,021,504 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\seclogon.dll -- (seclogon)
SRV - [2011/11/17 10:59:50 | 000,022,528 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\lsass.exe -- (SamSs)
SRV - [2009/07/14 06:46:20 | 000,073,728 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\System32\wscsvc.dll -- (wscsvc)
SRV - [2010/11/21 02:59:07 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\srvsvc.dll -- (LanmanServer)
SRV - [2010/11/21 02:59:12 | 000,328,192 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\shsvcs.dll -- (ShellHWDetection)
No service found with a name of slsvc
SRV - [2010/11/21 02:59:21 | 000,750,592 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\schedsvc.dll -- (Schedule)
SRV - [2010/11/21 02:59:07 | 000,242,176 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\System32\tapisrv.dll -- (TapiSrv)
SRV - [2009/07/14 06:46:16 | 000,037,376 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2012/05/01 10:14:12 | 000,164,352 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\profsvc.dll -- (ProfSvc)
SRV - [2010/11/21 02:59:12 | 001,025,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\VSSVC.exe -- (VSS)
SRV - [2010/11/21 02:59:07 | 000,473,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (Audiosrv)
SRV - [2010/11/21 02:59:07 | 000,473,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\audiosrv.dll -- (AudioEndpointBuilder)
SRV - [2010/11/21 02:59:49 | 000,125,952 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sdrsvc.dll -- (SDRSVC)
SRV - [2009/07/14 06:45:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2010/11/21 02:59:11 | 001,086,976 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wevtsvc.dll -- (eventlog)
SRV - [2010/11/21 02:59:06 | 000,566,272 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\MPSSVC.dll -- (MpsSvc)
SRV - [2010/11/21 02:59:41 | 000,463,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wiaservc.dll -- (StiSvc)
SRV - [2010/11/21 02:59:20 | 000,073,216 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\msiexec.exe -- (msiserver)
SRV - [2009/07/14 06:46:19 | 000,168,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wbem\WMIsvc.dll -- (Winmgmt)
SRV - [2012/06/03 03:49:17 | 001,933,848 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wuaueng.dll -- (wuauserv)
SRV - [2010/11/21 02:59:20 | 000,214,016 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\dot3svc.dll -- (dot3svc)
SRV - [2009/07/14 06:46:19 | 000,829,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wlansvc.dll -- (Wlansvc)
SRV - [2010/11/21 02:59:07 | 000,084,480 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\System32\wkssvc.dll -- (LanmanWorkstation)

< %SYSTEMDRIVE%\*.exe >
[2011/12/23 15:02:44 | 014,761,224 | ---- | M] (Mozilla) -- C:\Firefox Setup 8.0.1.exe

< MD5 for: EXPLORER.EXE >
[2011/02/26 10:49:21 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=0FB9C74046656D1579A64660AD67B746 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.21669_none_54149f9ef14031fc\explorer.exe
[2010/11/21 02:59:20 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=40D777B7A95E00593EB1568C68514493 -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17514_none_53bc10fdd7fe87ca\explorer.exe
[2011/02/25 11:00:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\erdnt\cache\explorer.exe
[2011/02/25 11:00:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\explorer.exe
[2011/02/25 11:00:54 | 002,616,320 | ---- | M] (Microsoft Corporation) MD5=8B88EBBB05A0E56B7DCC708498C02B3E -- C:\Windows\winsxs\x86_microsoft-windows-explorer_31bf3856ad364e35_6.1.7601.17567_none_5389023fd8245f84\explorer.exe

< MD5 for: QMGR.DLL >
[2010/11/21 02:59:08 | 000,585,728 | ---- | M] (Microsoft Corporation) MD5=E585445D5021971FAE10393F0F1C3961 -- C:\Windows\erdnt\cache\qmgr.dll
[2010/11/21 02:59:08 | 000,585,728 | ---- | M] (Microsoft Corporation) MD5=E585445D5021971FAE10393F0F1C3961 -- C:\Windows\System32\qmgr.dll
[2010/11/21 02:59:08 | 000,585,728 | ---- | M] (Microsoft Corporation) MD5=E585445D5021971FAE10393F0F1C3961 -- C:\Windows\winsxs\x86_microsoft-windows-bits-client_31bf3856ad364e35_6.1.7601.17514_none_25982ed857b42497\qmgr.dll

< MD5 for: SERVICES >
[2009/06/11 03:09:37 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\System32\drivers\etc\services
[2009/06/11 03:09:37 | 000,017,463 | ---- | M] () MD5=D9E1A01B480D961B7CF0509D597A92D6 -- C:\Windows\winsxs\x86_microsoft-windows-w..nfrastructure-other_31bf3856ad364e35_6.1.7600.16385_none_045b589158ae90da\services

< MD5 for: SERVICES.CFG >
[2012/07/28 02:21:34 | 000,586,083 | ---- | M] () MD5=6DE4EA437EC1FE6DB27CADB0A7EA8DC2 -- C:\Program Files\Adobe\Reader 10.0\Reader\Services\Services.cfg
[2011/06/06 12:55:30 | 000,584,045 | R--- | M] () MD5=B82DD53FA8C260DDD7FDC42182DB816E -- C:\Windows\Installer\$PatchCache$\Managed\68AB67CA7DA73301B744AA0100000010\10.1.0\services.cfg

< MD5 for: SERVICES.EXE >
[2009/07/14 06:44:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\erdnt\cache\services.exe
[2009/07/14 06:44:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\System32\services.exe
[2009/07/14 06:44:36 | 000,259,072 | ---- | M] (Microsoft Corporation) MD5=5F1B6A9C35D3D5CA72D6D6FDEF9747D6 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.exe

< MD5 for: SERVICES.EXE.MUI >
[2010/11/21 06:08:26 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=0DA5F221169DEB5AC3A22465CD6F0281 -- C:\Windows\System32\en-US\services.exe.mui
[2010/11/21 06:08:26 | 000,017,408 | ---- | M] (Microsoft Corporation) MD5=0DA5F221169DEB5AC3A22465CD6F0281 -- C:\Windows\winsxs\x86_microsoft-windows-s..ontroller.resources_31bf3856ad364e35_6.1.7600.16385_en-us_69d39d3a8748c332\services.exe.mui

< MD5 for: SERVICES.LNK >
[2009/07/14 10:11:45 | 000,001,288 | ---- | M] () MD5=021B1B178776500E54560EDCFFE0EE21 -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk
[2009/07/14 10:11:45 | 000,001,288 | ---- | M] () MD5=021B1B178776500E54560EDCFFE0EE21 -- C:\Users\All Users\Microsoft\Windows\Start Menu\Programs\Administrative Tools\services.lnk

< MD5 for: SERVICES.MOF >
[2009/06/11 02:56:14 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\System32\wbem\services.mof
[2009/06/11 02:56:14 | 000,002,866 | ---- | M] () MD5=26A11C895A7F0B6D32105EBE127D8500 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\services.mof

< MD5 for: SERVICES.MSC >
[2010/11/21 06:08:25 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\en-US\services.msc
[2009/06/11 02:51:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\System32\services.msc
[2010/11/21 06:08:25 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-s..cessnapin.resources_31bf3856ad364e35_6.1.7600.16385_en-us_a4156d265db25d25\services.msc
[2009/06/11 02:51:09 | 000,092,745 | ---- | M] () MD5=7A1D35F59468B8118AF5B8E21DF78AE2 -- C:\Windows\winsxs\x86_microsoft-windows-servicessnapin_31bf3856ad364e35_6.1.7600.16385_none_cf3a38c7a70e7a54\services.msc

< MD5 for: SERVICES.PTXML >
[2009/07/14 01:50:01 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\System32\wdi\perftrack\Services.ptxml
[2009/07/14 01:50:01 | 000,001,061 | ---- | M] () MD5=640D7DD61B1CFA6C96F80F68F78CDFA7 -- C:\Windows\winsxs\x86_microsoft-windows-s..s-servicecontroller_31bf3856ad364e35_6.1.7600.16385_none_cf36168b2e9c967b\Services.ptxml

< MD5 for: SVCHOST.EXE >
[2012/09/07 17:04:42 | 000,218,696 | ---- | M] () MD5=4E0D8C9F83B7FD82393F7D8CCC27E7AE -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\svchost.exe
[2009/07/14 06:44:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\erdnt\cache\svchost.exe
[2009/07/14 06:44:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\System32\svchost.exe
[2009/07/14 06:44:41 | 000,020,992 | ---- | M] (Microsoft Corporation) MD5=54A47F6B5E09A77E61649109C6A08866 -- C:\Windows\winsxs\x86_microsoft-windows-services-svchost_31bf3856ad364e35_6.1.7600.16385_none_b591afc466a15356\svchost.exe

< MD5 for: USERINIT.EXE >
[2010/11/21 02:59:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\erdnt\cache\userinit.exe
[2010/11/21 02:59:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\System32\userinit.exe
[2010/11/21 02:59:06 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=61AC3EFDFACFDD3F0F11DD4FD4044223 -- C:\Windows\winsxs\x86_microsoft-windows-userinit_31bf3856ad364e35_6.1.7601.17514_none_de3024012ff21116\userinit.exe

< MD5 for: WINLOGON.EXE >
[2012/09/07 17:04:42 | 000,218,696 | ---- | M] () MD5=4E0D8C9F83B7FD82393F7D8CCC27E7AE -- C:\Program Files\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2010/11/21 02:59:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\erdnt\cache\winlogon.exe
[2010/11/21 02:59:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\System32\winlogon.exe
[2010/11/21 02:59:06 | 000,286,720 | ---- | M] (Microsoft Corporation) MD5=6D13E1406F50C66E2A95D97F22C47560 -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_71ca6b0233339500\winlogon.exe

========== Alternate Data Streams ==========

@Alternate Data Stream - 129 bytes -> C:\ProgramData\Temp:C46995DA

< End of report >

#15
kingfisher3210

Posted 25 September 2012 - 01:45 PM

Member

Topic Starter
Member
42 posts

Thanks a lot Essexboy for your expertise.

I didn't got an option for include 64 bit scans.

Also i got only OTL.txt and i didnt got extras.txt file after OTL finished the scanning.