Results 1 to 10 of 10
  1. #1
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default Very slow laptop

    Goodmorning everyone from the United kingdom

    I am running an acer aspire laptop 5720 on windows 7 OS service pack 1, Intel (R) Core (TM)2 duo CPU T7300 @2.00GHz with 2GB ram and a 32 bit system.

    My laptop has now slowed up quite considerably during start up, general usage and shutdown and cannot find anything that slows up my laptop. When I start my laptop each time its ok but then suddenly things start to slow up, for example both IE and Safari take too long to load webpages

    I wondered if anyone can check out my logs I have created as per the instructions in the help section of this forum before posting, I have attached the malware, antispyware and the hijack this logs.

    In running the Hijack this log I encountered the following message, with a warning sign...

    For some reason your system denied access to the hosts file. If any hijacked domains are in this file, hijack this may Not be able to fix this.

    I assume this is because I use a dongle for my internet access from 3 mobile but I always have the full 5 bars on the internet signal

    I am already using the avast anti virus system which I have always used.
    Thanking you in anticipation of your help and advice
    Kind Regards
    Tony

    SUPERAntiSpyware Scan Log
    SUPERAntiSpyware.com | Remove Malware | Remove Spyware - AntiMalware, AntiSpyware, AntiAdware!

    Generated 12/03/2011 at 01:23 AM

    Application Version : 5.0.1136

    Core Rules Database Version : 8001
    Trace Rules Database Version: 5813

    Scan type : Complete Scan
    Total Scan Time : 00:35:17

    Operating System Information
    Windows 7 Home Premium 32-bit, Service Pack 1 (Build 6.01.7601)
    UAC On - Limited User

    Memory items scanned : 671
    Memory threats detected : 0
    Registry items scanned : 37392
    Registry threats detected : 0
    File items scanned : 33633
    File threats detected : 8

    Adware.Tracking Cookie
    C:\USERS\TONY AND KIM\AppData\Roaming\Microsoft\Windows\Cookies\Low\EBYSAC0Y.txt [ Cookie:tony and kim@ads2.zeusclicks.com/ ]
    C:\USERS\TONY AND KIM\AppData\Roaming\Microsoft\Windows\Cookies\Low\PJXP6U8D.txt [ Cookie:tony and kim@adxpansion.com/ ]
    C:\USERS\TONY AND KIM\AppData\Roaming\Microsoft\Windows\Cookies\Low\2F6QX9PW.txt [ Cookie:tony and kim@ads.ventivmedia.com/ ]
    C:\USERS\TONY AND KIM\AppData\Roaming\Microsoft\Windows\Cookies\Low\TLUP1N4Q.txt [ Cookie:tony and kim@exoclick.com/ ]
    C:\USERS\TONY AND KIM\AppData\Roaming\Microsoft\Windows\Cookies\Low\4H2LHYU7.txt [ Cookie:tony and kim@ads.crakmedia.com/ ]
    C:\USERS\TONY AND KIM\AppData\Roaming\Microsoft\Windows\Cookies\Low\8TII8CJS.txt [ Cookie:tony and kim@invitemedia.com/ ]
    C:\USERS\TONY AND KIM\AppData\Roaming\Microsoft\Windows\Cookies\Low\J3C879TL.txt [ Cookie:tony and kim@stat.easydate.biz/ ]
    C:\USERS\TONY AND KIM\AppData\Roaming\Microsoft\Windows\Cookies\Low\A52KGZFQ.txt [ Cookie:tony and kim@mediaplex.com/ ]

    Malwarebytes' Anti-Malware 1.51.2.1300
    Malwarebytes : Free anti-malware, anti-virus and spyware removal download

    Database version: 8293

    Windows 6.1.7601 Service Pack 1
    Internet Explorer 9.0.8112.16421

    03/12/2011 02:37:40
    mbam-log-2011-12-03 (02-37-40).txt

    Scan type: Full scan (C:\|D:\|)
    Objects scanned: 245235
    Time elapsed: 54 minute(s), 29 second(s)

    Memory Processes Infected: 0
    Memory Modules Infected: 0
    Registry Keys Infected: 0
    Registry Values Infected: 0
    Registry Data Items Infected: 0
    Folders Infected: 0
    Files Infected: 0

    Memory Processes Infected:
    (No malicious items detected)

    Memory Modules Infected:
    (No malicious items detected)

    Registry Keys Infected:
    (No malicious items detected)

    Registry Values Infected:
    (No malicious items detected)

    Registry Data Items Infected:
    (No malicious items detected)

    Folders Infected:
    (No malicious items detected)

    Files Infected:
    (No malicious items detected)

    Logfile of Trend Micro HijackThis v2.0.4
    Scan saved at 07:30:03, on 03/12/2011
    Platform: Windows 7 SP1 (WinNT 6.00.3505)
    MSIE: Internet Explorer v9.00 (9.00.8112.16421)
    Boot mode: Normal

    Running processes:
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\taskhost.exe
    C:\Windows\System32\igfxtray.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Program Files\PDF24\pdf24.exe
    C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe
    C:\Program Files\Lexmark 3500-4500 Series\lxdiamon.exe
    C:\Program Files\DRPU PC Management - Basic\Basic Manage.exe
    C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
    C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
    C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
    C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
    C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
    C:\Program Files\Trend Micro\HiJackThis\HiJackThis.exe

    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = Preserve
    R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = MSN.com
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = Bing
    R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = Bing
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = MSN.com
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch =
    R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page =
    R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName =
    O2 - BHO: &Yahoo! Toolbar Helper - {02478D38-C3F9-4efb-9B51-7695ECA05670} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
    O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
    O2 - BHO: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O2 - BHO: Windows Live ID Sign-in Helper - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
    O2 - BHO: Windows Live Messenger Companion Helper - {9FDDE16B-836F-4806-AB1F-1455CBEFF289} - C:\Program Files\Windows Live\Companion\companioncore.dll
    O2 - BHO: SingleInstance Class - {FDAD4DA1-61A2-4FD8-9C17-86F7AC245081} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\YTSingleInstance.dll
    O3 - Toolbar: avast! WebRep - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll
    O3 - Toolbar: Yahoo! Toolbar - {EF99BD32-C1FB-11D2-892F-0090271D4F88} - C:\PROGRA~1\Yahoo!\Companion\Installs\cpn0\yt.dll
    O4 - HKLM\..\Run: [IgfxTray] C:\Windows\system32\igfxtray.exe
    O4 - HKLM\..\Run: [HotKeysCmds] C:\Windows\system32\hkcmd.exe
    O4 - HKLM\..\Run: [Persistence] C:\Windows\system32\igfxpers.exe
    O4 - HKLM\..\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui
    O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
    O4 - HKLM\..\Run: [PDFPrint] C:\Program Files\PDF24\pdf24.exe
    O4 - HKLM\..\Run: [lxdimon.exe] "C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe"
    O4 - HKLM\..\Run: [lxdiamon] "C:\Program Files\Lexmark 3500-4500 Series\lxdiamon.exe"
    O4 - HKLM\..\Run: [Malwarebytes' Anti-Malware (reboot)] "C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe" /runcleanupscript
    O4 - HKLM\..\Run: [DRPU PC Management - Basic] "C:\Program Files\DRPU PC Management - Basic\Basic Manage.exe" "hd"
    O4 - HKLM\..\Run: [APSDaemon] "C:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe"
    O4 - HKLM\..\Run: [SpeetItUpFree] "C:\Program Files\SpeedItup Free\speeditupfree.exe"
    O4 - HKCU\..\Run: [Messenger (Yahoo!)] "C:\Program Files\Yahoo!\Messenger\YahooMessenger.exe" -quiet
    O4 - HKCU\..\Run: [KiesHelper] C:\Program Files\Samsung\Kies\KiesHelper.exe /s
    O4 - HKCU\..\Run: [KiesTrayAgent] C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
    O4 - HKCU\..\Run: [KiesPDLR] C:\Program Files\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe
    O4 - HKCU\..\Run: [SUPERAntiSpyware] C:\Program Files\SUPERAntiSpyware\SUPERAntiSpyware.exe
    O4 - HKCU\..\Run: [Advanced SystemCare 4] C:\Program Files\IObit\Advanced SystemCare 4\ASCTray.exe
    O4 - HKCU\..\Run: [msnmsgr] "C:\Program Files\Windows Live\Messenger\msnmsgr.exe" /background
    O4 - Startup: OneNote 2007 Screen Clipper and Launcher.lnk = C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    O9 - Extra button: @C:\Program Files\Windows Live\Companion\companionlang.dll,-600 - {0000036B-C524-4050-81A0-243669A86B9F} - C:\Program Files\Windows Live\Companion\companioncore.dll
    O9 - Extra button: Send to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra 'Tools' menuitem: S&end to OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~2\Office12\ONBttnIE.dll
    O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~2\Office12\REFIEBAR.DLL
    O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
    O10 - Unknown file in Winsock LSP: c:\program files\common files\microsoft shared\windows live\wlidnsp.dll
    O11 - Options group: [ACCELERATED_GRAPHICS] Accelerated graphics
    O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
    O18 - Protocol: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
    O23 - Service: SAS Core Service (!SASCORE) - SUPERAntiSpyware.com - C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
    O23 - Service: Advanced SystemCare Service (AdvancedSystemCareService) - IObit - C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
    O23 - Service: avast! Antivirus - AVAST Software - C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    O23 - Service: BecHelperService - Unknown owner - C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe
    O23 - Service: FsUsbExService - Teruten - C:\Windows\system32\FsUsbExService.Exe
    O23 - Service: lxdiCATSCustConnectService - Lexmark International, Inc. - C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdiserv.exe
    O23 - Service: lxdi_device - - C:\Windows\system32\lxdicoms.exe
    O23 - Service: ServiceLayer - Nokia. - C:\Program Files\PC Connectivity Solution\ServiceLayer.exe
    O23 - Service: Yahoo! Updater (YahooAUService) - Yahoo! Inc. - C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe

    --
    End of file - 7148 bytes

  2. #2
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default

    Hello

    My personal belief is that IE 9 is not working properly because each time I try to log on for example help2go when on IE 9 it wont let me log in and I go to my
    Safari browser to log in
    Thank you
    Tony

  3. #3
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    Hello and welcome to Help2Go

    We apologize for the delay in responding to your request for help. Here at Help2Go we get overwhelmed at times, and we are trying our best to keep up. Please note that your topic was not intentionally overlooked. Our mission is to help everyone in need, but sometimes it takes just a little longer to get to every request for help. No one is ignored here.

    Please take note:

    1. If you have since resolved the original problem you were having, we would appreciate you letting us know.
    2. If you are unable to create a log because your computer cannot start up successfully please provide detailed information about your installed Windows Operating System including the Version, Edition and if it is a 32bit or a 64bit system.
      • If you are unsure about any of these characteristics just post what you can and we will guide you.
    3. Please tell us if you have your original Windows CD/DVD available.
    4. If you are unable to perform the steps we have recommended please try one more time and if unsuccessful alert us of such and we will design an alternate means of obtaining the necessary information.
    5. If you have not done so, include a clear description of the problems you're having, along with any steps you may have performed so far.
    6. Upon completing the steps below another staff member will review your topic an do their best to resolve your issues.
    7. If you have already posted a DDS log, please do so again, as your situation may have changed.
    8. Use the 'Add Reply' and add the new log to this thread.


    We need to see some information about what is happening in your machine. Please perform the following scan again:

    • Download DDS by sUBs from one of the following links if you no longer have it available. Save it to your desktop.
    • Double click on the DDS icon, allow it to run.
    • A small box will open, with an explanation about the tool. No input is needed, the scan is running.
    • Notepad will open with the results.
    • Follow the instructions that pop up for posting the results.
    • Close the program window, and delete the program from your desktop.
    Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

    Information on A/V control HERE


    We also need a new log from the GMER anti-rootkit Scanner.

    Please note that if you are running a 64-bit version of Windows you will not be able to run GMER and you may skip this step. Then proceed to run aswMbr.exe as noted below.

    Please first disable any CD emulation programs using the steps found in this topic:

    Then create another GMER log and post it as an attachment to the reply where you post your new DDS log. Instructions on how to properly create a GMER log can be found here:


    Note:
    If you are unable to run a Gmer scan due the fact you are running a 64bit machine please run the following tool and post its log.

    Please download aswMBR ( 511KB ) to your desktop.
    • Double click the aswMBR.exe icon to run it
    • Click the Scan button to start the scan
    • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.




    Thanks and again sorry for the delay.
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-




  4. #4
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default

    Hi fireman4it
    I Hope I have completed the instructions you sent me and that they are correct. I only had time to do them this morning.

    Please do let me know they are correct
    Thank you
    Tony

    .
    DDS (Ver_2011-08-26.01) - NTFSx86
    Internet Explorer: 8.0.7601.17514
    Run by Tony and Kim at 7:46:11 on 2011-12-10
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.2038.1262 [GMT 0:00]
    .
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    ============== Running Processes ===============
    .
    C:\Windows\system32\wininit.exe
    C:\Windows\system32\lsm.exe
    C:\Windows\system32\svchost.exe -k DcomLaunch
    C:\Windows\system32\svchost.exe -k RPCSS
    C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
    C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
    C:\Windows\system32\svchost.exe -k netsvcs
    C:\Windows\system32\svchost.exe -k LocalService
    C:\Windows\system32\svchost.exe -k NetworkService
    C:\Program Files\AVAST Software\Avast\AvastSvc.exe
    C:\Windows\System32\spoolsv.exe
    C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
    C:\Program Files\SUPERAntiSpyware\SASCORE.EXE
    C:\Program Files\IObit\Advanced SystemCare 4\ASCService.exe
    C:\Program Files\3 Mobile Broadband\3Connect\BecHelperService.exe
    C:\Windows\system32\taskhost.exe
    C:\Windows\system32\taskeng.exe
    C:\Windows\system32\Dwm.exe
    C:\Windows\Explorer.EXE
    C:\Windows\system32\dgdersvc.exe
    C:\Program Files\IObit\Advanced SystemCare 4\PMonitor.exe
    C:\Windows\system32\FsUsbExService.Exe
    C:\Windows\system32\lxdicoms.exe
    C:\Windows\system32\svchost.exe -k imgsvc
    C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
    C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
    C:\Program Files\Yahoo!\SoftwareUpdate\YahooAUService.exe
    C:\Windows\System32\igfxtray.exe
    C:\Windows\System32\hkcmd.exe
    C:\Windows\System32\igfxpers.exe
    C:\Program Files\AVAST Software\Avast\AvastUI.exe
    C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
    C:\Windows\system32\igfxsrvc.exe
    C:\Program Files\PDF24\pdf24.exe
    C:\Program Files\Lexmark 3500-4500 Series\lxdimon.exe
    C:\Program Files\Lexmark 3500-4500 Series\lxdiamon.exe
    C:\Program Files\DRPU PC Management - Basic\Basic Manage.exe
    C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesApp32.exe
    C:\Program Files\SUPERAntiSpyware\SUPERANTISPYWARE.EXE
    C:\Program Files\Windows Live\Messenger\msnmsgr.exe
    C:\Users\Tony and Kim\AppData\Roaming\Dropbox\bin\Dropbox.exe
    C:\Program Files\Microsoft Office\Office12\ONENOTEM.EXE
    C:\Windows\system32\SearchIndexer.exe
    C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
    C:\Program Files\Yahoo!\Messenger\ymsgr_tray.exe
    C:\Windows\system32\WUDFHost.exe
    C:\Program Files\3 Mobile Broadband\3Connect\Wilog.exe
    C:\Windows\System32\svchost.exe -k secsvcs
    C:\Program Files\Windows Media Player\wmpnetwk.exe
    C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
    C:\Windows\system32\Macromed\Flash\FlashUtil11e_ActiveX.exe
    C:\Windows\system32\wuauclt.exe
    C:\Windows\system32\RunDll32.exe
    C:\Windows\system32\ctfmon.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\DllHost.exe
    C:\Windows\system32\conhost.exe
    C:\Windows\system32\wbem\wmiprvse.exe
    .
    ============== Pseudo HJT Report ===============
    .
    uSearch Bar = Preserve
    BHO: &Yahoo! Toolbar Helper: {02478d38-c3f9-4efb-9b51-7695eca05670} - c:\progra~1\yahoo!\companion\installs\cpn0\yt.dll
    BHO: Groove GFS Browser Helper: {72853161-30c5-4d22-b7f9-0bbc1d38a37e} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
    BHO: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
    BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - c:\program files\common files\microsoft shared\windows live\WindowsLiveLogin.dll
    BHO: Windows Live Messenger Companion Helper: {9fdde16b-836f-4806-ab1f-1455cbeff289} - c:\program files\windows live\companion\companioncore.dll
    BHO: SingleInstance Class: {fdad4da1-61a2-4fd8-9c17-86f7ac245081} - c:\progra~1\yahoo!\companion\installs\cpn0\YTSingleInstance.dll
    TB: avast! WebRep: {8e5e2654-ad2d-48bf-ac2d-d17f00898d06} - c:\program files\avast software\avast\aswWebRepIE.dll
    TB: Yahoo! Toolbar: {ef99bd32-c1fb-11d2-892f-0090271d4f88} - c:\progra~1\yahoo!\companion\installs\cpn0\yt.dll
    uRun: [Messenger (Yahoo!)] "c:\program files\yahoo!\messenger\YahooMessenger.exe" -quiet
    uRun: [SUPERAntiSpyware] c:\program files\superantispyware\SUPERAntiSpyware.exe
    uRun: [msnmsgr] "c:\program files\windows live\messenger\msnmsgr.exe" /background
    uRun: [KiesTrayAgent] c:\program files\samsung\kies\KiesTrayAgent.exe
    mRun: [IgfxTray] c:\windows\system32\igfxtray.exe
    mRun: [HotKeysCmds] c:\windows\system32\hkcmd.exe
    mRun: [Persistence] c:\windows\system32\igfxpers.exe
    mRun: [avast] "c:\program files\avast software\avast\avastUI.exe" /nogui
    mRun: [GrooveMonitor] "c:\program files\microsoft office\office12\GrooveMonitor.exe"
    mRun: [PDFPrint] c:\program files\pdf24\pdf24.exe
    mRun: [lxdimon.exe] "c:\program files\lexmark 3500-4500 series\lxdimon.exe"
    mRun: [lxdiamon] "c:\program files\lexmark 3500-4500 series\lxdiamon.exe"
    mRun: [Malwarebytes' Anti-Malware (reboot)] "c:\program files\malwarebytes' anti-malware\mbam.exe" /runcleanupscript
    mRun: [DRPU PC Management - Basic] "c:\program files\drpu pc management - basic\Basic Manage.exe" "hd"
    mRun: [APSDaemon] "c:\program files\common files\apple\apple application support\APSDaemon.exe"
    mRun: [SpeetItUpFree] "c:\program files\speeditup free\speeditupfree.exe"
    StartupFolder: c:\users\tonyan~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\dropbox.lnk - c:\users\tony and kim\appdata\roaming\dropbox\bin\Dropbox.exe
    StartupFolder: c:\users\tonyan~1\appdata\roaming\micros~1\windows\startm~1\programs\startup\onenot~1.lnk - c:\program files\microsoft office\office12\ONENOTEM.EXE
    mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
    mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
    mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
    IE: {0000036B-C524-4050-81A0-243669A86B9F} - {B63DBA5F-523F-4B9C-A43D-65DF1977EAD3} - c:\program files\windows live\companion\companioncore.dll
    IE: {2670000A-7350-4f3c-8081-5663EE0C6C49} - {48E73304-E1D6-4330-914C-F5F514E3486C} - c:\progra~1\micros~2\office12\ONBttnIE.dll
    IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - c:\progra~1\micros~2\office12\REFIEBAR.DLL
    DPF: {02BCC737-B171-4746-94C9-0D8A0B2C0089} - hxxp://office.microsoft.com/sites/production/ieawsdc32.cab
    TCP: Interfaces\{4CFF958E-740E-439C-97A7-B07DBFB8BEAA} : DhcpNameServer = 192.168.2.1
    TCP: Interfaces\{4CFF958E-740E-439C-97A7-B07DBFB8BEAA}\244564F4E4 : DhcpNameServer = 192.168.22.22 192.168.22.23
    TCP: Interfaces\{4CFF958E-740E-439C-97A7-B07DBFB8BEAA}\745756374737 : DhcpNameServer = 192.168.2.1
    TCP: Interfaces\{4CFF958E-740E-439C-97A7-B07DBFB8BEAA}\86F6374756C66373F5548545 : DhcpNameServer = 192.168.1.254
    TCP: Interfaces\{4CFF958E-740E-439C-97A7-B07DBFB8BEAA}\E4457425F5132686275603962656 : DhcpNameServer = 192.168.0.1
    Handler: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - c:\program files\microsoft office\office12\GrooveSystemServices.dll
    Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - c:\program files\windows live\photo gallery\AlbumDownloadProtocolHandler.dll
    Notify: igfxcui - igfxdev.dll
    SEH: Groove GFS Stub Execution Hook: {b5a7f190-dda6-4420-b3ba-52453494e6cd} - c:\program files\microsoft office\office12\GrooveShellExtensions.dll
    .
    ============= SERVICES / DRIVERS ===============
    .
    R1 aswSnx;aswSnx;c:\windows\system32\drivers\aswSnx.sys [2011-8-30 435032]
    R1 aswSP;aswSP;c:\windows\system32\drivers\aswSP.sys [2011-8-30 314456]
    R1 SASDIFSV;SASDIFSV;c:\program files\superantispyware\sasdifsv.sys [2011-7-22 12880]
    R1 SASKUTIL;SASKUTIL;c:\program files\superantispyware\SASKUTIL.SYS [2011-7-12 67664]
    R2 !SASCORE;SAS Core Service;c:\program files\superantispyware\SASCore.exe [2011-8-11 116608]
    R2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files\iobit\advanced systemcare 4\ASCService.exe [2011-10-15 328536]
    R2 aswFsBlk;aswFsBlk;c:\windows\system32\drivers\aswFsBlk.sys [2011-8-30 20568]
    R2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-8-30 55128]
    R2 avast! Antivirus;avast! Antivirus;c:\program files\avast software\avast\AvastSvc.exe [2011-11-30 44768]
    R2 BecHelperService;BecHelperService;c:\program files\3 mobile broadband\3connect\BecHelperService.exe [2011-8-27 1737464]
    R2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2011-1-20 95568]
    R2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2011-10-11 217088]
    R2 lxdi_device;lxdi_device;c:\windows\system32\lxdicoms.exe -service --> c:\windows\system32\lxdicoms.exe -service [?]
    R2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\tuneup utilities 2012\TuneUpUtilitiesService32.exe [2011-11-30 1514304]
    R3 b57nd60x;Broadcom NetXtreme Gigabit Ethernet - NDIS 6.0;c:\windows\system32\drivers\b57nd60x.sys [2009-7-13 229888]
    R3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2011-1-20 18120]
    R3 enecir;ENE CIR Receiver;c:\windows\system32\drivers\enecir.sys [2007-4-25 32256]
    R3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.Sys [2011-10-11 36640]
    R3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\drivers\netw5v32.sys [2009-6-10 4231168]
    R3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\drivers\VSTAZL3.SYS [2009-7-13 207360]
    R3 SrvHsfV92;SrvHsfV92;c:\windows\system32\drivers\VSTDPV3.SYS [2009-7-13 980992]
    R3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\drivers\VSTCNXT3.SYS [2009-7-13 661504]
    R3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\tuneup utilities 2012\TuneUpUtilitiesDriver32.sys [2011-10-19 10064]
    S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\microsoft.net\framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
    S2 lxdiCATSCustConnectService;lxdiCATSCustConnectService;c:\windows\system32\spool\drivers\w32x86\3\lxdiserv.exe [2007-6-11 99248]
    S3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\drivers\ssudbus.sys [2011-9-21 77624]
    S3 ExpressAccountsService;Express Accounts;c:\program files\nch software\expressaccounts\expressaccounts.exe [2011-12-8 2960900]
    S3 ExpressInvoiceService;Express Invoice;c:\program files\nch software\expressinvoice\expressinvoice.exe [2011-12-8 1938948]
    S3 InventoriaService;Inventoria Stock Manager;c:\program files\nch software\inventoria\inventoria.exe [2011-12-8 1511428]
    S3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2011-8-27 9216]
    S3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\drivers\ssudmdm.sys [2011-10-18 181432]
    S3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\TsUsbFlt.sys [2011-8-30 52224]
    S3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\wat\WatAdminSvc.exe [2011-8-30 1343400]
    .
    =============== Created Last 30 ================
    .
    2011-12-09 23:06:24 -------- d-----w- c:\users\tony and kim\appdata\local\{A3197085-41F7-462A-BDD5-B9C62D2A6295}
    2011-12-09 23:06:18 -------- d-----w- c:\users\tony and kim\appdata\local\{C62CF158-54D5-49E7-A430-B9D81A47C07E}
    2011-12-09 22:32:11 28992 ----a-w- c:\windows\system32\uxtuneup.dll
    2011-12-09 22:29:16 31552 ----a-w- c:\windows\system32\TURegOpt.exe
    2011-12-09 22:29:14 21312 ----a-w- c:\windows\system32\authuitu.dll
    2011-12-09 22:28:46 -------- d-----w- c:\users\tony and kim\appdata\roaming\TuneUp Software
    2011-12-09 22:28:35 -------- d-----w- c:\program files\TuneUp Utilities 2012
    2011-12-09 22:27:56 -------- d-----w- c:\programdata\TuneUp Software
    2011-12-09 22:27:18 -------- d-sh--w- c:\programdata\{32364CEA-7855-4A3C-B674-53D8E9B97936}
    2011-12-09 11:05:52 -------- d-----w- c:\users\tony and kim\appdata\local\{F9FAA5FC-1F75-476D-824E-D5E438468A84}
    2011-12-09 11:04:49 -------- d-----w- c:\users\tony and kim\appdata\local\{48E53E71-E436-428E-8155-30886F894775}
    2011-12-08 20:10:06 -------- d-----w- c:\users\tony and kim\appdata\local\{B1C3F839-1C8C-4BDA-A63B-490F6CA85F91}
    2011-12-08 20:09:58 -------- d-----w- c:\users\tony and kim\appdata\local\{033DB330-6070-4C10-A1D5-E9696D84C5C9}
    2011-12-08 08:09:39 -------- d-----w- c:\users\tony and kim\appdata\local\{8C4C7E02-AE13-49B5-ABE0-E0DA8C0F730D}
    2011-12-08 08:07:03 -------- d-----w- c:\users\tony and kim\appdata\local\{B2706E05-4AB4-4105-A244-89228DC1287A}
    2011-12-07 20:45:16 -------- d-----w- c:\users\tony and kim\appdata\local\Sage
    2011-12-07 20:41:36 -------- d-----w- c:\programdata\InstallEngine
    2011-12-07 20:36:15 -------- d-----w- c:\program files\common files\Sage Shared
    2011-12-07 20:36:14 -------- d-----w- c:\programdata\Sage
    2011-12-07 20:36:14 -------- d-----w- c:\program files\Sage
    2011-12-07 20:36:14 -------- d-----w- c:\program files\common files\Sage SBD
    2011-12-07 20:36:14 -------- d-----w- c:\program files\common files\Sage Report Designer 2007
    2011-12-07 18:43:10 -------- d-----w- c:\users\tony and kim\appdata\local\{4C7A32D9-7B4D-4B9F-B19D-37F986C05E74}
    2011-12-07 18:43:07 -------- d-----w- c:\users\tony and kim\appdata\local\{7341F960-D2A0-4F77-B2B0-70255F05FE81}
    2011-12-07 18:22:33 -------- d-----w- c:\users\tony and kim\appdata\local\{F6B3D1D3-A21A-48FD-AC9C-869A6CECD248}
    2011-12-06 19:28:46 -------- d-----w- c:\users\tony and kim\appdata\local\{4A239F3C-ABC8-4EDA-A749-9E09007C48E9}
    2011-12-06 19:26:41 -------- d-----w- c:\users\tony and kim\appdata\local\{1835115D-D8BB-43FE-B257-9C4CDBABBD08}
    2011-12-05 23:13:13 -------- d-----w- c:\users\tony and kim\appdata\local\{914E6C05-F338-4679-AB05-3F810896977C}
    2011-12-05 23:13:10 -------- d-----w- c:\users\tony and kim\appdata\local\{ABC49870-1483-48E6-B1CD-BAB928D7CC6C}
    2011-12-05 20:29:22 -------- d-----w- c:\users\tony and kim\appdata\local\{A5839320-45F6-48F9-A37D-620936EFCC95}
    2011-12-05 12:36:37 -------- d-----w- c:\programdata\Samsung
    2011-12-05 11:12:32 -------- d-----w- c:\users\tony and kim\appdata\local\{7F98BC7D-A91D-4D6A-BEC7-1CF1C1F34AB5}
    2011-12-05 11:12:19 -------- d-----w- c:\users\tony and kim\appdata\local\{E16499BC-2A35-4860-B2AB-2E6553917CBB}
    2011-12-04 21:17:02 -------- d-----w- c:\users\tony and kim\appdata\local\{E90F4341-D532-4F93-B35F-E8E88D3B59A4}
    2011-12-04 21:16:56 -------- d-----w- c:\users\tony and kim\appdata\local\{9D5DEC94-52EA-4913-9BB5-67D4388635CC}
    2011-12-04 13:53:50 -------- d-----w- c:\program files\MSECache
    2011-12-04 13:45:31 14744 ----a-w- c:\users\tony and kim\appdata\roaming\microsoft\identitycrl\production\ppcrlconfig.dll
    2011-12-04 09:16:26 -------- d-----w- c:\users\tony and kim\appdata\local\{E86497C7-4BD8-4AC5-8A90-9C1F2DFCE021}
    2011-12-04 09:14:14 -------- d-----w- c:\users\tony and kim\appdata\local\{62110ED7-3401-4B24-AD0F-C735C5922CA5}
    2011-12-04 00:08:56 -------- d-----w- c:\users\tony and kim\appdata\roaming\BitZipper
    2011-12-04 00:08:53 -------- d-----w- c:\program files\BitZipper
    2011-12-03 21:47:35 -------- d-----w- c:\users\tony and kim\appdata\local\SpreadsheetTools
    2011-12-03 21:13:52 -------- d-----w- c:\users\tony and kim\appdata\local\{2927C70B-C984-4F05-854A-7BF07065C3EB}
    2011-12-03 21:10:39 -------- d-----w- c:\users\tony and kim\appdata\local\{30D3503D-3CDB-47C7-9626-F3615D7C236D}
    2011-12-03 09:06:36 -------- d-----w- c:\users\tony and kim\appdata\local\{C8D967B7-9D8C-453B-AFFB-87CD72CC3673}
    2011-12-03 09:04:32 -------- d-----w- c:\users\tony and kim\appdata\local\{238D8039-A616-4CA9-B960-86D69A14A989}
    2011-12-03 08:28:01 -------- d-----r- c:\users\tony and kim\Dropbox
    2011-12-03 08:25:22 -------- d-----w- c:\users\tony and kim\appdata\roaming\Dropbox
    2011-12-02 23:28:35 -------- d-----w- c:\program files\CCleaner
    2011-12-02 20:03:36 -------- d-----w- c:\program files\SpeedItup Free
    2011-12-02 19:05:41 -------- d-----w- c:\users\tony and kim\appdata\local\{E31C72EF-AAF5-4B62-9966-C0E525C31E85}
    2011-12-02 19:05:03 -------- d-----w- c:\users\tony and kim\appdata\local\{00ED1727-18C1-4A0D-8B27-125FC81B56E9}
    2011-12-02 17:51:39 -------- d-----w- c:\users\tony and kim\appdata\local\{6F6EB0C1-640F-414B-931E-AB363D6C8949}
    2011-12-01 21:36:43 -------- d-----w- c:\users\tony and kim\appdata\local\{0F63AFC6-7875-4A81-914F-55DE049A774F}
    2011-12-01 21:34:08 -------- d-----w- c:\users\tony and kim\appdata\local\{123B6CE8-DACC-4EC5-B7DE-5FB085690592}
    2011-11-30 23:51:00 -------- d-----w- c:\users\tony and kim\appdata\local\{69425E30-BA8A-4127-8F41-18EC2AA71EC7}
    2011-11-30 23:50:25 -------- d-----w- c:\users\tony and kim\appdata\local\{3C9BA729-07CB-4166-B020-474524A7EEE1}
    2011-11-30 21:44:31 388096 ----a-r- c:\users\tony and kim\appdata\roaming\microsoft\installer\{45a66726-69bc-466b-a7a4-12fcba4883d7}\HiJackThis.exe
    2011-11-30 21:44:31 -------- d-----w- c:\program files\Trend Micro
    2011-11-30 19:57:41 -------- d-----w- c:\users\tony and kim\appdata\local\{3A9C36A1-3B23-48F0-BA92-2F36B34CF586}
    2011-11-30 07:25:58 -------- d-----w- c:\program files\VS Revo Group
    2011-11-30 07:15:28 -------- d-----w- c:\users\tony and kim\appdata\local\{DAAB8A9C-01C4-48D9-8E5B-41340F25D34D}
    2011-11-30 07:13:54 -------- d-----w- c:\users\tony and kim\appdata\local\{68586440-A06A-4EA4-9548-126431CD4C63}
    2011-11-29 19:00:06 -------- d-----w- c:\users\tony and kim\appdata\local\{9D66A5BB-9538-4D47-9B11-04D68832C654}
    2011-11-29 18:58:30 -------- d-----w- c:\users\tony and kim\appdata\local\{7DADF73E-DAF0-4BB3-B898-AB7BC511B300}
    2011-11-29 01:00:49 -------- d-----w- c:\users\tony and kim\appdata\local\{EB241AA8-72E0-4615-877F-09464842435C}
    2011-11-29 00:59:46 -------- d-----w- c:\users\tony and kim\appdata\local\{C854B4B1-C630-4529-97BB-C15CC84D8F76}
    2011-11-28 23:47:35 -------- d-----w- c:\users\tony and kim\appdata\local\{62B51041-15E7-437C-8A31-1FDF34A28584}
    2011-11-28 23:44:00 -------- d-----w- c:\users\tony and kim\appdata\local\{4E3EAE48-7F9A-44A2-BAF1-0D64B3CF52D7}
    2011-11-28 23:01:49 -------- d-----w- c:\users\tony and kim\appdata\local\{5D768526-1A91-431F-939E-D96C449ABFD7}
    2011-11-28 22:59:14 -------- d-----w- c:\users\tony and kim\appdata\local\{865F6903-20B9-424E-B7B0-1D5EB5A3BD58}
    2011-11-28 21:38:21 -------- d-----w- c:\users\tony and kim\appdata\local\{3572733F-3A5F-4FD8-884A-B4F060CD566C}
    2011-11-27 22:32:18 -------- d-----w- c:\users\tony and kim\appdata\roaming\GirlsDateChat
    2011-11-27 22:32:13 -------- d-----w- c:\users\tony and kim\appdata\roaming\vcards
    2011-11-27 22:32:03 -------- d-----w- c:\program files\GirlsDateChat
    2011-11-27 22:13:23 -------- d-----w- c:\users\tony and kim\appdata\local\{4A2A9055-394D-421B-8B69-56447891A304}
    2011-11-27 22:13:18 -------- d-----w- c:\users\tony and kim\appdata\local\{C8692A57-5DFC-43D0-A846-0B2642CB445C}
    2011-11-27 10:12:58 -------- d-----w- c:\users\tony and kim\appdata\local\{DC745491-0028-439E-B140-EC46825909DA}
    2011-11-27 10:12:55 -------- d-----w- c:\users\tony and kim\appdata\local\{A3C3414C-78A2-44EF-BC07-965B9A8E632F}
    2011-11-26 23:29:18 -------- d-----w- c:\program files\NCH Software
    2011-11-26 22:12:36 -------- d-----w- c:\users\tony and kim\appdata\local\{85FFF663-A940-44FF-A085-A636D9940A35}
    2011-11-26 22:12:32 -------- d-----w- c:\users\tony and kim\appdata\local\{E543ECF0-0785-42D6-81F6-221643EA04EB}
    2011-11-26 20:53:12 -------- d-----w- c:\windows\$regcmp$
    2011-11-26 17:33:40 -------- d-----w- c:\users\tony and kim\appdata\roaming\RegistryKeys
    2011-11-26 09:38:01 -------- d-----w- c:\users\tony and kim\appdata\local\{083C1F94-17C1-45EB-B3FF-B20C79ECC7E5}
    2011-11-26 09:35:28 -------- d-----w- c:\users\tony and kim\appdata\local\{3FCD7085-8A97-44F5-885E-7C4FAE4A504E}
    2011-11-26 02:35:02 -------- d-----w- c:\users\tony and kim\appdata\local\Apple Computer
    2011-11-26 02:33:24 -------- d-----w- c:\users\tony and kim\appdata\local\Apple
    2011-11-25 21:35:09 -------- d-----w- c:\users\tony and kim\appdata\local\{8A6CA211-F948-45F8-8E7F-BF29664103BB}
    2011-11-25 21:34:33 -------- d-----w- c:\users\tony and kim\appdata\local\{F66167C4-B145-4B00-8C8B-E234FA028476}
    2011-11-24 23:46:27 -------- d-----w- c:\program files\File Type Assistant
    2011-11-24 21:54:38 -------- d-----w- c:\users\tony and kim\appdata\local\{A2EBC5D0-5260-44EF-AFA7-B26045E3CA97}
    2011-11-24 21:54:00 -------- d-----w- c:\users\tony and kim\appdata\local\{9DB8014F-B113-4376-986E-75885964761B}
    2011-11-24 09:38:34 -------- d-----w- c:\users\tony and kim\appdata\local\{18E7A70C-98B8-4A1E-B6A3-2C129E63E8D8}
    2011-11-24 09:38:31 -------- d-----w- c:\users\tony and kim\appdata\local\{3CBD9407-67B9-4F53-9828-92019119B231}
    2011-11-23 21:38:12 -------- d-----w- c:\users\tony and kim\appdata\local\{64DC56C7-9A85-4A45-BB31-E1791CC5F2BC}
    2011-11-23 21:37:08 -------- d-----w- c:\users\tony and kim\appdata\local\{7BB49759-D239-436B-9AA7-AFA1B0941A0F}
    2011-11-22 18:56:58 -------- d-----w- c:\users\tony and kim\appdata\local\{EDEB6AF3-9C6C-4D45-A5D8-CD1F4E780BE0}
    2011-11-22 18:55:24 -------- d-----w- c:\users\tony and kim\appdata\local\{7938E9FD-E63A-4AC2-BD88-0A7A6F06412C}
    2011-11-22 16:17:20 -------- d-----w- c:\users\tony and kim\appdata\local\{2676A860-AA0E-47E9-9EBF-D6D56B263D8F}
    2011-11-21 22:54:55 -------- d-----w- c:\users\tony and kim\appdata\local\{022ADD3F-9B3E-48F0-ACD1-D93A9E4B6AFD}
    2011-11-20 21:57:31 -------- d-----w- c:\users\tony and kim\appdata\local\{40EDEE5F-77CC-4B2F-8316-01EAB4C42EC4}
    2011-11-20 21:57:26 -------- d-----w- c:\users\tony and kim\appdata\local\{E2F2FFA6-352D-496A-96AA-46BBF4C55B16}
    2011-11-20 09:57:01 -------- d-----w- c:\users\tony and kim\appdata\local\{4A777F79-259D-45AD-8648-9675EDE17649}
    2011-11-20 09:55:23 -------- d-----w- c:\users\tony and kim\appdata\local\{C68D7B34-AE15-4B66-8F05-20C88191A37D}
    2011-11-19 20:58:29 -------- d-----w- c:\users\tony and kim\appdata\local\{D27F9F7A-E48E-4FDF-8487-0869B9E7C024}
    2011-11-19 08:56:32 -------- d-----w- c:\users\tony and kim\appdata\local\{8A6D2D58-D51D-49FA-8965-2AFDFF74B94B}
    2011-11-19 08:52:58 -------- d-----w- c:\users\tony and kim\appdata\local\{52D438C4-F612-4122-BFD8-38DBD82C16EE}
    2011-11-18 14:49:38 -------- d-----w- c:\users\tony and kim\appdata\local\{64320AEC-BEFA-4BF1-8461-F05324D9566B}
    2011-11-18 14:48:04 -------- d-----w- c:\users\tony and kim\appdata\local\{85662F52-0F77-40C7-B41B-CAB5EF9886D4}
    2011-11-18 02:03:46 -------- d-----w- c:\program files\MSXML 4.0
    2011-11-18 00:44:26 -------- d-----w- c:\users\tony and kim\appdata\local\{B2D3A4F8-7B2D-4A45-BB69-AD8B4563350A}
    2011-11-18 00:43:19 -------- d-----w- c:\users\tony and kim\appdata\local\{41E6FE51-B346-4D2E-8CC6-ADE197AD76E2}
    2011-11-17 09:09:19 -------- d-----w- c:\users\tony and kim\appdata\local\{7B9B38E2-3DC5-4A69-AE6B-3645B865D4B8}
    2011-11-17 09:09:16 -------- d-----w- c:\users\tony and kim\appdata\local\{999BC4CC-EC72-41CA-8E50-C220DEB9DE84}
    2011-11-16 21:08:53 -------- d-----w- c:\users\tony and kim\appdata\local\{5ABB6342-EE05-4B51-935C-13C41FCEA48C}
    2011-11-16 21:07:49 -------- d-----w- c:\users\tony and kim\appdata\local\{64B9E8BA-E74A-4E39-9F51-9824DAD14E70}
    2011-11-16 19:20:44 -------- d-----w- c:\users\tony and kim\appdata\roaming\Serif
    2011-11-16 19:19:01 -------- d-----w- c:\program files\common files\MSSoap
    2011-11-16 19:14:38 -------- d-----w- c:\program files\Serif
    2011-11-16 18:44:55 -------- d-----w- c:\users\tony and kim\appdata\local\{7E9DDB8A-B45E-488B-B0B7-8E85F405DB8C}
    2011-11-16 17:27:37 -------- d-----w- c:\users\tony and kim\appdata\local\{9F7642D8-E155-4AB9-9D41-6F7735FA2F42}
    2011-11-15 18:14:27 -------- d-----w- c:\users\tony and kim\appdata\local\{238A483F-761B-4723-9E66-74598545A574}
    2011-11-15 18:11:53 -------- d-----w- c:\users\tony and kim\appdata\local\{03C54231-2F6C-40C0-AC17-576C81A3B891}
    2011-11-15 10:55:17 -------- d-----w- c:\users\tony and kim\appdata\local\{907D1887-2B6D-42C8-B9FF-6D632CF050DD}
    2011-11-15 08:56:28 -------- d-----w- c:\users\tony and kim\appdata\local\{09623039-6677-4D16-90BB-415F6D88F3F9}
    2011-11-14 20:56:04 -------- d-----w- c:\users\tony and kim\appdata\local\{3D570CAF-F46A-4CAA-8E77-508BBB4057C4}
    2011-11-14 20:55:29 -------- d-----w- c:\users\tony and kim\appdata\local\{BC09AE06-3390-416C-A845-B72ECB8E69EE}
    2011-11-14 07:51:51 -------- d-----w- c:\users\tony and kim\appdata\local\{BDAB582D-13C8-4283-9436-A3D4449D81EA}
    2011-11-14 07:51:18 -------- d-----w- c:\users\tony and kim\appdata\local\{DB7BFC1A-26E6-4BB6-A005-BB755710AB69}
    2011-11-13 21:11:36 -------- d-----w- c:\users\tony and kim\appdata\roaming\MAGIX
    2011-11-13 17:24:42 -------- d-----w- c:\users\tony and kim\appdata\local\{28989311-E467-4E6F-8C21-72EAA86A0141}
    2011-11-13 09:02:15 -------- d-----w- c:\users\tony and kim\appdata\local\{30324FFB-FEA3-4747-AF3C-2C2AE81C347C}
    2011-11-12 21:10:08 -------- d-----w- c:\users\tony and kim\appdata\local\{798E1B0F-6E79-4DF2-A164-5346A80537BF}
    2011-11-12 17:49:09 -------- d-----w- c:\users\tony and kim\appdata\roaming\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1
    2011-11-12 17:35:54 -------- d-----w- c:\users\tony and kim\appdata\local\Adobe
    2011-11-12 14:59:40 -------- d-----w- c:\users\tony and kim\appdata\local\{E26D3960-8FC9-4B72-B904-DD6062DCDD17}
    2011-11-12 08:43:12 -------- d-----w- c:\users\tony and kim\appdata\local\{648DD40B-D56B-4454-8D74-8BC8203E0218}
    2011-11-12 02:50:07 -------- d-----w- c:\users\tony and kim\appdata\local\{9B844911-C94A-4BC0-B940-A559B5F40728}
    2011-11-11 14:49:43 -------- d-----w- c:\users\tony and kim\appdata\local\{83E1A617-9557-4A42-AEFA-14878E95F03E}
    2011-11-11 14:48:38 -------- d-----w- c:\users\tony and kim\appdata\local\{D280D997-5A6B-4CF2-ABE7-37637410C7A6}
    2011-11-10 20:30:29 -------- d-----w- c:\users\tony and kim\appdata\local\{DA0829E5-01C6-497F-8761-C947673AE735}
    2011-11-10 20:28:47 -------- d-----w- c:\users\tony and kim\appdata\local\{85E77E5B-C3E0-4C88-B970-8F41DFA1DAA6}
    .
    ==================== Find3M ====================
    .
    2011-11-29 08:42:55 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2011-11-28 18:01:25 41184 ----a-w- c:\windows\avastSS.scr
    2011-11-28 17:53:53 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2011-11-28 17:52:07 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2011-10-18 02:43:42 181432 ----a-w- c:\windows\system32\drivers\ssudmdm.sys
    2011-10-01 08:27:01 152576 ----a-w- c:\windows\system32\msclmd.dll
    2011-10-01 02:42:56 1638912 ----a-w- c:\windows\system32\mshtml.tlb
    2011-09-29 16:03:04 1290608 ----a-w- c:\windows\system32\drivers\tcpip.sys
    2011-09-29 03:37:56 2341888 ----a-w- c:\windows\system32\win32k.sys
    2011-09-21 08:23:10 77624 ----a-w- c:\windows\system32\drivers\ssudbus.sys
    .
    ============= FINISH: 7:46:58.88 ===============
    Attached Files

  5. #5
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    1.
    Please download the TDSS Rootkit Removing Tool (TDSSKiller.exe) and save it to your Desktop. <-Important!!!
    • Double-click on TDSSKiller.exe to run the tool for known TDSS variants.
      Vista/Windows 7 users right-click and select Run As Administrator.
    • If TDSSKiller does not run, try renaming it.
    • To do this, right-click on TDSSKiller.exe, select Rename and give it a random name with the .com file extension (i.e. 123abc.com). If you do not see the file extension, please refer to How to change the file extension.
    • Click the Start Scan button.
    • Do not use the computer during the scan
    • If the scan completes with nothing found, click Close to exit.
    • If malicious objects are found, they will show in the Scan results - Select action for found objects and offer three options.
    • Ensure Cure (default) is selected, then click Continue > Reboot now to finish the cleaning process.
      Note: If Cure is not an option, Skip instead, do not choose Delete unless instructed.
    • A log file named TDSSKiller_version_date_time_log.txt (i.e. TDSSKiller.2.4.0.0_27.07.2010_09.o7.26_log.txt) will be created and saved to the root directory (usually Local Disk C.
    • Copy and paste the contents of that file in your next reply.



    2.
    Install Recovery Console and Run ComboFix

    This tool is not a toy. If used the wrong way you could trash your computer. Please use only under direction of a Helper. If you decide to do so anyway, please do not blame me or ComboFix.

    Download Combofix from any of the links below, and save it to your desktop.

    Link 1
    Link 2
    • Close/disable all anti-virus and anti-malware programs so they do not interfere with the running of ComboFix. Refer to this page if you are not sure how.
    • Close any open windows, including this one.
    • Double click on ComboFix.exe & follow the prompts.
    • As part of it's process, ComboFix will check to see if the Microsoft Windows Recovery Console is installed. With malware infections being as they are today, it's strongly recommended to have this pre-installed on your machine before doing any malware removal. It will allow you to boot up into a special recovery/repair mode that will allow us to more easily help you should your computer have a problem after an attempted removal of malware.
    • If you did not have it installed, you will see the prompt below. Choose YES.
    • Follow the prompts to allow ComboFix to download and install the Microsoft Windows Recovery Console, and when prompted, agree to the End-User License Agreement to install the Microsoft Windows Recovery Console.

    **Please note: If the Microsoft Windows Recovery Console is already installed, ComboFix will continue it's malware removal procedures.

    Note:The Windows Recovery Console will allow you to boot up into a special recovery (repair) mode. This allows us to more easily help you
    should your computer have a problem after an attempted removal of malware. It is a simple procedure that will only take a few moments of your time.

    • Once the Microsoft Windows Recovery Console is installed using ComboFix, you should see the following message:

    • Click on Yes, to continue scanning for malware.
    • When finished, it will produce a report for you. Please post the contents of the log (C:\ComboFix.txt).
    Leave your computer alone while ComboFix is running.
    ComboFix will restart your computer if malware is found; allow it to do so.


    Note: Please Do NOT mouseclick combofix's window while its running because it may cause it to stall.


    Things to include in your next reply::
    TdssKiller log
    Combofix.txt
    How is your machine running now?
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-




  6. #6
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default

    Hello fireman4it

    I hope I done the following correctly, there isnt any change with my computer, I will happily run the two programs again if its not right
    Many Thanks
    Tony

    ComboFix 11-12-10.01 - Tony and Kim 10/12/2011 22:31:18.1.2 - x86
    Microsoft Windows 7 Home Premium 6.1.7601.1.1252.44.1033.18.2038.1119 [GMT 0:00]
    Running from: c:\users\Tony and Kim\Desktop\ComboFix.exe
    AV: avast! Antivirus *Disabled/Updated* {2B2D1395-420B-D5C9-657E-930FE358FC3C}
    SP: avast! Antivirus *Disabled/Updated* {904CF271-6431-DA47-5FCE-A87D98DFB681}
    SP: Windows Defender *Enabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
    .
    .
    ((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    c:\windows\security\Database\tmp.edb
    c:\windows\system32\muzapp.exe
    .
    .
    ((((((((((((((((((((((((( Files Created from 2011-11-10 to 2011-12-10 )))))))))))))))))))))))))))))))
    .
    .
    2011-12-10 22:37 . 2011-12-10 22:37 -------- d-----w- c:\users\Tony and Kim\AppData\Local\temp
    2011-12-10 22:37 . 2011-12-10 22:37 -------- d-----w- c:\users\Default\AppData\Local\temp
    2011-12-09 22:32 . 2011-11-30 14:18 28992 ----a-w- c:\windows\system32\uxtuneup.dll
    2011-12-09 22:29 . 2011-11-30 14:19 31552 ----a-w- c:\windows\system32\TURegOpt.exe
    2011-12-09 22:29 . 2011-11-30 14:18 21312 ----a-w- c:\windows\system32\authuitu.dll
    2011-12-09 22:28 . 2011-12-09 22:28 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\TuneUp Software
    2011-12-09 22:28 . 2011-12-09 22:32 -------- d-----w- c:\program files\TuneUp Utilities 2012
    2011-12-09 22:27 . 2011-12-09 22:29 -------- d-----w- c:\programdata\TuneUp Software
    2011-12-09 22:27 . 2011-12-09 22:27 -------- d-sh--w- c:\programdata\{32364CEA-7855-4A3C-B674-53D8E9B97936}
    2011-12-07 20:45 . 2011-12-07 21:51 -------- d-----w- c:\users\Tony and Kim\AppData\Local\Sage
    2011-12-07 20:41 . 2011-12-07 20:45 -------- d-----w- c:\programdata\InstallEngine
    2011-12-07 20:36 . 2011-12-07 20:36 -------- d-----w- c:\program files\Common Files\Sage Shared
    2011-12-07 20:36 . 2011-12-08 08:27 -------- d-----w- c:\programdata\Sage
    2011-12-07 20:36 . 2011-12-07 21:01 -------- d-----w- c:\program files\Common Files\Sage SBD
    2011-12-07 20:36 . 2011-12-07 20:37 -------- d-----w- c:\program files\Common Files\Sage Report Designer 2007
    2011-12-07 20:36 . 2011-12-07 20:37 -------- d-----w- c:\program files\Sage
    2011-12-05 12:36 . 2011-12-05 12:38 -------- d-----w- c:\programdata\Samsung
    2011-12-04 13:53 . 2011-12-10 14:11 -------- d-----w- c:\program files\MSECache
    2011-12-04 00:08 . 2011-12-04 00:08 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\BitZipper
    2011-12-04 00:08 . 2011-12-04 00:08 -------- d-----w- c:\program files\BitZipper
    2011-12-03 21:47 . 2011-12-03 21:53 -------- d-----w- c:\users\Tony and Kim\AppData\Local\SpreadsheetTools
    2011-12-03 08:28 . 2011-12-10 15:03 -------- d-----r- c:\users\Tony and Kim\Dropbox
    2011-12-03 08:25 . 2011-12-10 15:03 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\Dropbox
    2011-12-02 23:28 . 2011-12-02 23:28 -------- d-----w- c:\program files\CCleaner
    2011-12-02 20:03 . 2011-12-02 20:04 -------- d-----w- c:\program files\SpeedItup Free
    2011-11-30 21:44 . 2011-11-30 21:44 388096 ----a-r- c:\users\Tony and Kim\AppData\Roaming\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
    2011-11-30 21:44 . 2011-11-30 21:44 -------- d-----w- c:\program files\Trend Micro
    2011-11-30 07:25 . 2011-11-30 07:25 -------- d-----w- c:\program files\VS Revo Group
    2011-11-30 07:19 . 2011-11-30 07:19 -------- d-----w- c:\program files\Common Files\Adobe AIR
    2011-11-27 22:32 . 2011-11-27 22:32 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\GirlsDateChat
    2011-11-27 22:32 . 2011-11-27 22:32 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\vcards
    2011-11-27 22:32 . 2011-11-28 23:36 -------- d-----w- c:\program files\GirlsDateChat
    2011-11-26 23:29 . 2011-12-10 13:48 -------- d-----w- c:\program files\NCH Software
    2011-11-26 23:29 . 2011-11-26 23:33 -------- d-----w- c:\programdata\NCH Software
    2011-11-26 20:53 . 2011-11-26 20:54 -------- d-----w- c:\windows\$regcmp$
    2011-11-26 17:33 . 2011-11-26 17:33 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\RegistryKeys
    2011-11-26 02:35 . 2011-11-26 16:23 -------- d-----w- c:\users\Tony and Kim\AppData\Local\Apple Computer
    2011-11-26 02:35 . 2011-11-26 09:32 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\Apple Computer
    2011-11-26 02:34 . 2011-11-26 02:34 -------- d-----w- c:\program files\Safari
    2011-11-26 02:34 . 2011-11-26 02:34 -------- d-----w- c:\programdata\Apple Computer
    2011-11-26 02:33 . 2011-11-26 02:33 -------- d-----w- c:\program files\Common Files\Apple
    2011-11-26 02:33 . 2011-11-26 02:33 -------- d-----w- c:\users\Tony and Kim\AppData\Local\Apple
    2011-11-26 02:33 . 2011-11-26 02:33 -------- d-----w- c:\program files\Apple Software Update
    2011-11-26 02:33 . 2011-11-26 02:33 -------- d-----w- c:\programdata\Apple
    2011-11-24 23:46 . 2011-12-04 00:09 -------- d-----w- c:\program files\File Type Assistant
    2011-11-18 02:03 . 2011-11-18 02:03 -------- d-----w- c:\program files\MSXML 4.0
    2011-11-16 19:20 . 2011-11-16 19:26 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\Serif
    2011-11-16 19:14 . 2011-11-16 19:20 -------- d-----w- c:\program files\Serif
    2011-11-13 21:11 . 2011-11-13 21:11 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\MAGIX
    2011-11-12 17:49 . 2011-11-30 07:28 -------- d-----w- c:\users\Tony and Kim\AppData\Roaming\com.zoosk.Desktop.096E6A67431258A508A2446A847B240591D2C99B.1
    2011-11-12 17:35 . 2011-11-12 17:35 -------- d-----w- c:\users\Tony and Kim\AppData\Local\Adobe
    .
    .
    .
    (((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    2011-12-03 17:09 . 2011-10-11 08:00 2301208 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup-2\markup.dll
    2011-12-03 17:09 . 2011-10-11 08:00 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM-2\StartResources.dll
    2011-12-03 17:09 . 2011-10-06 17:57 710976 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight\SpotlightResources.dll
    2011-12-02 20:09 . 2011-10-06 17:58 2301208 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\UpdateableMarkup\markup.dll
    2011-12-02 20:08 . 2011-10-06 17:58 42776 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCEClientUX\dSM\StartResources.dll
    2011-12-01 22:23 . 2011-10-11 08:00 710976 ----a-w- c:\programdata\Microsoft\eHome\Packages\MCESpotlight\MCESpotlight-2\SpotlightResources.dll
    2011-11-29 08:42 . 2011-08-30 08:39 414368 ----a-w- c:\windows\system32\FlashPlayerCPLApp.cpl
    2011-11-28 18:01 . 2011-08-30 08:26 41184 ----a-w- c:\windows\avastSS.scr
    2011-11-28 18:01 . 2011-08-30 08:26 199816 ----a-w- c:\windows\system32\aswBoot.exe
    2011-11-28 17:53 . 2011-08-30 08:28 435032 ----a-w- c:\windows\system32\drivers\aswSnx.sys
    2011-11-28 17:53 . 2011-08-30 08:28 314456 ----a-w- c:\windows\system32\drivers\aswSP.sys
    2011-11-28 17:52 . 2011-08-30 08:28 34392 ----a-w- c:\windows\system32\drivers\aswRdr.sys
    2011-11-28 17:52 . 2011-08-30 08:28 52952 ----a-w- c:\windows\system32\drivers\aswTdi.sys
    2011-11-28 17:52 . 2011-08-30 08:28 55128 ----a-w- c:\windows\system32\drivers\aswMonFlt.sys
    2011-11-28 17:51 . 2011-08-30 08:28 20568 ----a-w- c:\windows\system32\drivers\aswFsBlk.sys
    2011-10-18 02:43 . 2011-10-18 02:43 181432 ----a-w- c:\windows\system32\drivers\ssudmdm.sys
    2011-10-01 08:27 . 2009-07-14 02:05 152576 ----a-w- c:\windows\system32\msclmd.dll
    2011-09-29 16:03 . 2011-11-09 18:50 1290608 ----a-w- c:\windows\system32\drivers\tcpip.sys
    2011-09-29 03:37 . 2011-11-09 18:50 2341888 ----a-w- c:\windows\system32\win32k.sys
    2011-09-21 08:23 . 2011-09-21 08:23 77624 ----a-w- c:\windows\system32\drivers\ssudbus.sys
    .
    .
    ------- Sigcheck -------
    Note: Unsigned files aren't necessarily malware.
    .
    [-] 2011-10-01 . E16F0A71B984E06FE0A90A2E2E227B23 . 5991936 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7601.21830_none_3074c356109ef942\mshtml.dll
    [-] 2011-10-01 . BE58B60C0FFCD769DB77BB072DDBCDA7 . 5990912 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.16891_none_2dc4e860fa8ab162\mshtml.dll
    [-] 2011-10-01 . 146D5F5CEB1A89369B6D559ED5182B07 . 5991936 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.21062_none_2e6fcd5c138f49f2\mshtml.dll
    [-] 2011-10-01 . 009751094A5A9041723D635AF249DC6F . 5990400 . . [8.00.7600.16385] . . c:\windows\System32\mshtml.dll
    [-] 2011-10-01 . 009751094A5A9041723D635AF249DC6F . 5990400 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7601.17699_none_2fb347b6f7a9e806\mshtml.dll
    [7] 2011-07-22 . CF3C3365DC28AB97636BF11E9BB67927 . 5988864 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7601.21776_none_304f837c10ba03e9\mshtml.dll
    [7] 2011-07-22 . A56EBB1297F12728CF8EE028B7964E06 . 5989376 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.16853_none_2df228a4fa68744c\mshtml.dll
    [7] 2011-07-22 . DD64818174A695E8EC766E50297AB854 . 5988864 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7601.17655_none_2fda863ef78d12e6\mshtml.dll
    [7] 2011-07-22 . A3EF4E2490DD7CD6C4601FE3FDE34535 . 5990912 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.21013_none_2ea6dd421365d794\mshtml.dll
    [7] 2010-11-20 . C50799F0D47DFB9774F721521B6C41D5 . 5977600 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7601.17514_none_3004c3bef76d8ca4\mshtml.dll
    [7] 2009-07-14 . 43592D31AFF84DD957199248898D9430 . 5957632 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-ie-htmlrendering_31bf3856ad364e35_8.0.7600.16385_none_2dd3aff6fa7f090a\mshtml.dll
    .
    [-] 2011-08-20 . 7570FA3FC82E08FB637E32D2D95DB41D . 981504 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.21795_none_1edec43b9074b93e\wininet.dll
    [-] 2011-08-20 . 1DBC7303366C0C9B80E51C4B4BECB7ED . 981504 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16869_none_1c933b567a14bf11\wininet.dll
    [-] 2011-08-20 . 79FFA6C81F9F5B2244C5668D08387EA6 . 982016 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.21033_none_1d371e4b931fa640\wininet.dll
    [-] 2011-08-20 . DBF24E87CB605A4F6E7424DD86F7A62C . 981504 . . [8.00.7600.16385] . . c:\windows\System32\wininet.dll
    [-] 2011-08-20 . DBF24E87CB605A4F6E7424DD86F7A62C . 981504 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.17671_none_1e66c620774a7c36\wininet.dll
    [7] 2011-06-21 . D1E7C4FA045B34C32D12BFBB415EBE1B . 981504 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.21754_none_1f0903a190553023\wininet.dll
    [7] 2011-06-21 . EE0D7471EBF9CE40CC4A203B1F90F028 . 981504 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16839_none_1cb3ab1a79fc6b3e\wininet.dll
    [7] 2011-06-21 . 748FD4CAB1AFFD90A9556EB7D5AA1FEB . 981504 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.17638_none_1e9907d67723bdd3\wininet.dll
    [7] 2011-06-21 . 6DC5A5F57FACFF20149F04440BB4523C . 982016 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.20992_none_1cf566579351014d\wininet.dll
    [7] 2010-12-21 . 78B9ADA2BC8946AF7B17678E0D07A773 . 981504 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16723_none_1cb8776479f9ba1c\wininet.dll
    [7] 2010-12-21 . 1B3DD46BC6396143A205EAAF05F38039 . 981504 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.20862_none_1d15d4359338b053\wininet.dll
    [7] 2010-11-20 . 44214C94911C7CFB1D52CB64D5E8368D . 980992 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7601.17514_none_1eaaa4a07717236e\wininet.dll
    [7] 2009-07-14 . 0D874F3BC751CC2198AF2E6783FB8B35 . 977920 . . [8.00.7600.16385] . . c:\windows\winsxs\x86_microsoft-windows-i..tocolimplementation_31bf3856ad364e35_8.0.7600.16385_none_1c7990d87a289fd4\wininet.dll
    .
    ((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
    .
    .
    *Note* empty entries & legit default entries are not shown
    REGEDIT4
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\00avast]
    @="{472083B0-C522-11CF-8763-00608CC02F24}"
    [HKEY_CLASSES_ROOT\CLSID\{472083B0-C522-11CF-8763-00608CC02F24}]
    2011-11-28 18:01 122512 ----a-w- c:\program files\AVAST Software\Avast\ashShell.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt1]
    @="{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314ED9-A251-47B7-93E1-CDD82E34AF8B}]
    2011-10-31 21:02 94208 ----a-w- c:\users\Tony and Kim\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt2]
    @="{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDA-A251-47B7-93E1-CDD82E34AF8B}]
    2011-10-31 21:02 94208 ----a-w- c:\users\Tony and Kim\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\DropboxExt3]
    @="{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}"
    [HKEY_CLASSES_ROOT\CLSID\{FB314EDB-A251-47B7-93E1-CDD82E34AF8B}]
    2011-10-31 21:02 94208 ----a-w- c:\users\Tony and Kim\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
    .
    [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "Messenger (Yahoo!)"="c:\program files\Yahoo!\Messenger\YahooMessenger.exe" [2011-08-22 6276408]
    "SUPERAntiSpyware"="c:\program files\SUPERAntiSpyware\SUPERAntiSpyware.exe" [2011-11-20 4617600]
    "KiesTrayAgent"="c:\program files\Samsung\Kies\KiesTrayAgent.exe" [2011-01-20 3365688]
    .
    [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
    "IgfxTray"="c:\windows\system32\igfxtray.exe" [2009-09-23 141848]
    "HotKeysCmds"="c:\windows\system32\hkcmd.exe" [2009-09-23 173592]
    "Persistence"="c:\windows\system32\igfxpers.exe" [2009-09-23 150552]
    "avast"="c:\program files\AVAST Software\Avast\avastUI.exe" [2011-11-28 3744552]
    "PDFPrint"="c:\program files\PDF24\pdf24.exe" [2011-08-05 220552]
    "lxdimon.exe"="c:\program files\Lexmark 3500-4500 Series\lxdimon.exe" [2009-04-27 434856]
    "lxdiamon"="c:\program files\Lexmark 3500-4500 Series\lxdiamon.exe" [2009-04-27 25256]
    "Malwarebytes' Anti-Malware (reboot)"="c:\program files\Malwarebytes' Anti-Malware\mbam.exe" [2011-08-31 1047208]
    "DRPU PC Management - Basic"="c:\program files\DRPU PC Management - Basic\Basic Manage.exe" [2011-05-06 2738624]
    "APSDaemon"="c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe" [2011-09-27 59240]
    "SpeetItUpFree"="c:\program files\SpeedItup Free\speeditupfree.exe" [2011-08-31 7713368]
    .
    c:\users\Tony and Kim\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
    Dropbox.lnk - c:\users\Tony and Kim\AppData\Roaming\Dropbox\bin\Dropbox.exe [2011-12-5 24242056]
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
    "ConsentPromptBehaviorAdmin"= 5 (0x5)
    "ConsentPromptBehaviorUser"= 3 (0x3)
    "EnableUIADesktopToggle"= 0 (0x0)
    .
    [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
    "aux"=wdmaud.drv
    .
    [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\lsa]
    Security Packages REG_MULTI_SZ kerberos msv1_0 schannel wdigest tspkg pku2u livessp
    .
    [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\!SASCORE]
    @=""
    .
    R2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;c:\windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-03-18 130384]
    R2 lxdiCATSCustConnectService;lxdiCATSCustConnectService;c:\windows\system32\spool\DRIVERS\W32X86\3\\lxdiserv.exe [2007-06-11 99248]
    R3 dg_ssudbus;SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudbus.sys [2011-09-21 77624]
    R3 ExpressAccountsService;Express Accounts;c:\program files\NCH Software\ExpressAccounts\expressaccounts.exe [2011-12-08 2960900]
    R3 ExpressInvoiceService;Express Invoice;c:\program files\NCH Software\ExpressInvoice\expressinvoice.exe [2011-12-09 1938948]
    R3 InventoriaService;Inventoria Stock Manager;c:\program files\NCH Software\Inventoria\inventoria.exe [2011-12-08 1511428]
    R3 massfilter;ZTE Mass Storage Filter Driver;c:\windows\system32\drivers\massfilter.sys [2010-01-19 9216]
    R3 ssudmdm;SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.);c:\windows\system32\DRIVERS\ssudmdm.sys [2011-10-18 181432]
    R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2010-11-20 52224]
    R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2011-08-30 1343400]
    S1 aswSnx;aswSnx; [x]
    S1 aswSP;aswSP; [x]
    S1 SASDIFSV;SASDIFSV;c:\program files\SUPERAntiSpyware\SASDIFSV.SYS [2011-07-22 12880]
    S1 SASKUTIL;SASKUTIL;c:\program files\SUPERAntiSpyware\SASKUTIL.SYS [2011-07-12 67664]
    S2 !SASCORE;SAS Core Service;c:\program files\SUPERAntiSpyware\SASCORE.EXE [2011-08-11 116608]
    S2 AdvancedSystemCareService;Advanced SystemCare Service;c:\program files\IObit\Advanced SystemCare 4\ASCService.exe [2011-08-09 328536]
    S2 aswFsBlk;aswFsBlk; [x]
    S2 aswMonFlt;aswMonFlt;c:\windows\system32\drivers\aswMonFlt.sys [2011-11-28 55128]
    S2 BecHelperService;BecHelperService;c:\program files\3 Mobile Broadband\3Connect\BecHelperService.exe [2010-01-28 1737464]
    S2 dgdersvc;Device Error Recovery Service;c:\windows\system32\dgdersvc.exe [2011-01-20 95568]
    S2 FsUsbExService;FsUsbExService;c:\windows\system32\FsUsbExService.Exe [2009-12-22 217088]
    S2 lxdi_device;lxdi_device;c:\windows\system32\lxdicoms.exe [2007-06-11 517040]
    S2 TuneUp.UtilitiesSvc;TuneUp Utilities Service;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesService32.exe [2011-11-30 1514304]
    S3 dgderdrv;dgderdrv;c:\windows\system32\drivers\dgderdrv.sys [2011-01-20 18120]
    S3 enecir;ENE CIR Receiver;c:\windows\system32\DRIVERS\enecir.sys [2007-04-25 32256]
    S3 FsUsbExDisk;FsUsbExDisk;c:\windows\system32\FsUsbExDisk.SYS [2011-01-20 36640]
    S3 netw5v32;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 32 Bit;c:\windows\system32\DRIVERS\netw5v32.sys [2009-07-13 4231168]
    S3 SrvHsfHDA;SrvHsfHDA;c:\windows\system32\DRIVERS\VSTAZL3.SYS [2009-07-13 207360]
    S3 SrvHsfV92;SrvHsfV92;c:\windows\system32\DRIVERS\VSTDPV3.SYS [2009-07-13 980992]
    S3 SrvHsfWinac;SrvHsfWinac;c:\windows\system32\DRIVERS\VSTCNXT3.SYS [2009-07-13 661504]
    S3 TuneUpUtilitiesDrv;TuneUpUtilitiesDrv;c:\program files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys [2011-10-19 10064]
    .
    .
    --- Other Services/Drivers In Memory ---
    .
    *NewlyCreated* - 67059559
    *Deregistered* - 67059559
    .
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Svchost - NetSvcs
    UxTuneUp
    .
    .
    --------------------- LOCKED REGISTRY KEYS ---------------------
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings]
    @Denied: (A) (Users)
    @Denied: (A) (Everyone)
    @Allowed: (B 1 2 3 4 5) (S-1-5-20)
    "BlindDial"=dword:00000000
    .
    [HKEY_LOCAL_MACHINE\system\ControlSet001\Control\PCW\Security]
    @Denied: (Full) (Everyone)
    .
    Completion time: 2011-12-10 22:40:38
    ComboFix-quarantined-files.txt 2011-12-10 22:40
    .
    Pre-Run: 29,510,406,144 bytes free
    Post-Run: 29,900,886,016 bytes free
    .
    - - End Of File - - CF8ED422D5D4C5AD136C0936057B52AF


    22:22:35.0838 2616 TDSS rootkit removing tool 2.6.22.0 Dec 7 2011 13:21:06
    22:22:36.0396 2616 ============================================================
    22:22:36.0396 2616 Current date / time: 2011/12/10 22:22:36.0396
    22:22:36.0397 2616 SystemInfo:
    22:22:36.0397 2616
    22:22:36.0397 2616 OS Version: 6.1.7601 ServicePack: 1.0
    22:22:36.0397 2616 Product type: Workstation
    22:22:36.0397 2616 ComputerName: TONYANDKIM-PC
    22:22:36.0397 2616 UserName: Tony and Kim
    22:22:36.0397 2616 Windows directory: C:\Windows
    22:22:36.0397 2616 System windows directory: C:\Windows
    22:22:36.0397 2616 Processor architecture: Intel x86
    22:22:36.0397 2616 Number of processors: 2
    22:22:36.0397 2616 Page size: 0x1000
    22:22:36.0397 2616 Boot type: Normal boot
    22:22:36.0397 2616 ============================================================
    22:22:38.0936 2616 Initialize success
    22:24:11.0029 5804 ============================================================
    22:24:11.0029 5804 Scan started
    22:24:11.0029 5804 Mode: Manual;
    22:24:11.0029 5804 ============================================================
    22:24:13.0866 5804 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
    22:24:13.0873 5804 1394ohci - ok
    22:24:13.0989 5804 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
    22:24:13.0998 5804 ACPI - ok
    22:24:14.0000 5804 Scan interrupted by user!
    22:24:14.0000 5804 Scan interrupted by user!
    22:24:14.0000 5804 Scan interrupted by user!
    22:24:14.0001 5804 ============================================================
    22:24:14.0001 5804 Scan finished
    22:24:14.0001 5804 ============================================================
    22:24:14.0022 5532 Detected object count: 0
    22:24:14.0022 5532 Actual detected object count: 0
    22:24:22.0517 2292 ============================================================
    22:24:22.0517 2292 Scan started
    22:24:22.0517 2292 Mode: Manual;
    22:24:22.0517 2292 ============================================================
    22:24:22.0727 2292 1394ohci (1b133875b8aa8ac48969bd3458afe9f5) C:\Windows\system32\drivers\1394ohci.sys
    22:24:22.0729 2292 1394ohci - ok
    22:24:22.0745 2292 ACPI (cea80c80bed809aa0da6febc04733349) C:\Windows\system32\drivers\ACPI.sys
    22:24:22.0747 2292 ACPI - ok
    22:24:22.0770 2292 AcpiPmi (1efbc664abff416d1d07db115dcb264f) C:\Windows\system32\drivers\acpipmi.sys
    22:24:22.0772 2292 AcpiPmi - ok
    22:24:22.0897 2292 adp94xx (21e785ebd7dc90a06391141aac7892fb) C:\Windows\system32\DRIVERS\adp94xx.sys
    22:24:22.0909 2292 adp94xx - ok
    22:24:22.0933 2292 adpahci (0c676bc278d5b59ff5abd57bbe9123f2) C:\Windows\system32\DRIVERS\adpahci.sys
    22:24:22.0939 2292 adpahci - ok
    22:24:22.0965 2292 adpu320 (7c7b5ee4b7b822ec85321fe23a27db33) C:\Windows\system32\DRIVERS\adpu320.sys
    22:24:22.0968 2292 adpu320 - ok
    22:24:23.0095 2292 AFD (9ebbba55060f786f0fcaa3893bfa2806) C:\Windows\system32\drivers\afd.sys
    22:24:23.0105 2292 AFD - ok
    22:24:23.0151 2292 agp440 (507812c3054c21cef746b6ee3d04dd6e) C:\Windows\system32\drivers\agp440.sys
    22:24:23.0153 2292 agp440 - ok
    22:24:23.0202 2292 aic78xx (8b30250d573a8f6b4bd23195160d8707) C:\Windows\system32\DRIVERS\djsvs.sys
    22:24:23.0205 2292 aic78xx - ok
    22:24:23.0329 2292 aliide (0d40bcf52ea90fc7df2aeab6503dea44) C:\Windows\system32\drivers\aliide.sys
    22:24:23.0331 2292 aliide - ok
    22:24:23.0370 2292 amdagp (3c6600a0696e90a463771c7422e23ab5) C:\Windows\system32\drivers\amdagp.sys
    22:24:23.0373 2292 amdagp - ok
    22:24:23.0409 2292 amdide (cd5914170297126b6266860198d1d4f0) C:\Windows\system32\drivers\amdide.sys
    22:24:23.0411 2292 amdide - ok
    22:24:23.0462 2292 AmdK8 (00dda200d71bac534bf56a9db5dfd666) C:\Windows\system32\DRIVERS\amdk8.sys
    22:24:23.0465 2292 AmdK8 - ok
    22:24:23.0565 2292 AmdPPM (3cbf30f5370fda40dd3e87df38ea53b6) C:\Windows\system32\DRIVERS\amdppm.sys
    22:24:23.0568 2292 AmdPPM - ok
    22:24:23.0617 2292 amdsata (d320bf87125326f996d4904fe24300fc) C:\Windows\system32\drivers\amdsata.sys
    22:24:23.0620 2292 amdsata - ok
    22:24:23.0656 2292 amdsbs (ea43af0c423ff267355f74e7a53bdaba) C:\Windows\system32\DRIVERS\amdsbs.sys
    22:24:23.0661 2292 amdsbs - ok
    22:24:23.0771 2292 amdxata (46387fb17b086d16dea267d5be23a2f2) C:\Windows\system32\drivers\amdxata.sys
    22:24:23.0774 2292 amdxata - ok
    22:24:23.0823 2292 AppID (aea177f783e20150ace5383ee368da19) C:\Windows\system32\drivers\appid.sys
    22:24:23.0826 2292 AppID - ok
    22:24:23.0877 2292 arc (2932004f49677bd84dbc72edb754ffb3) C:\Windows\system32\DRIVERS\arc.sys
    22:24:23.0881 2292 arc - ok
    22:24:23.0991 2292 arcsas (5d6f36c46fd283ae1b57bd2e9feb0bc7) C:\Windows\system32\DRIVERS\arcsas.sys
    22:24:23.0995 2292 arcsas - ok
    22:24:24.0037 2292 aswFsBlk (054df24c92b55427e0757cfff160e4f2) C:\Windows\system32\drivers\aswFsBlk.sys
    22:24:24.0056 2292 aswFsBlk - ok
    22:24:24.0092 2292 aswMonFlt (258143605e77e4008f1758481d6a977d) C:\Windows\system32\drivers\aswMonFlt.sys
    22:24:24.0095 2292 aswMonFlt - ok
    22:24:24.0199 2292 aswRdr (352d5a48ebab35a7693b048679304831) C:\Windows\system32\drivers\aswRdr.sys
    22:24:24.0202 2292 aswRdr - ok
    22:24:24.0263 2292 aswSnx (8d34d2b24297e27d93e847319abfdec4) C:\Windows\system32\drivers\aswSnx.sys
    22:24:24.0276 2292 aswSnx - ok
    22:24:24.0388 2292 aswSP (010012597333da1f46c3243f33f8409e) C:\Windows\system32\drivers\aswSP.sys
    22:24:24.0398 2292 aswSP - ok
    22:24:24.0420 2292 aswTdi (f9f84364416658e9786235904d448d37) C:\Windows\system32\drivers\aswTdi.sys
    22:24:24.0424 2292 aswTdi - ok
    22:24:24.0464 2292 AsyncMac (add2ade1c2b285ab8378d2daaf991481) C:\Windows\system32\DRIVERS\asyncmac.sys
    22:24:24.0466 2292 AsyncMac - ok
    22:24:24.0568 2292 atapi (338c86357871c167a96ab976519bf59e) C:\Windows\system32\drivers\atapi.sys
    22:24:24.0570 2292 atapi - ok
    22:24:24.0648 2292 b06bdrv (1a231abec60fd316ec54c66715543cec) C:\Windows\system32\DRIVERS\bxvbdx.sys
    22:24:24.0663 2292 b06bdrv - ok
    22:24:24.0779 2292 b57nd60x (bd8869eb9cde6bbe4508d869929869ee) C:\Windows\system32\DRIVERS\b57nd60x.sys
    22:24:24.0786 2292 b57nd60x - ok
    22:24:24.0818 2292 Beep (505506526a9d467307b3c393dedaf858) C:\Windows\system32\drivers\Beep.sys
    22:24:24.0819 2292 Beep - ok
    22:24:24.0843 2292 blbdrive (2287078ed48fcfc477b05b20cf38f36f) C:\Windows\system32\DRIVERS\blbdrive.sys
    22:24:24.0845 2292 blbdrive - ok
    22:24:24.0885 2292 bowser (8f2da3028d5fcbd1a060a3de64cd6506) C:\Windows\system32\DRIVERS\bowser.sys
    22:24:24.0888 2292 bowser - ok
    22:24:24.0991 2292 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\DRIVERS\BrFiltLo.sys
    22:24:24.0994 2292 BrFiltLo - ok
    22:24:25.0020 2292 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\DRIVERS\BrFiltUp.sys
    22:24:25.0023 2292 BrFiltUp - ok
    22:24:25.0059 2292 Brserid (845b8ce732e67f3b4133164868c666ea) C:\Windows\System32\Drivers\Brserid.sys
    22:24:25.0065 2292 Brserid - ok
    22:24:25.0085 2292 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\System32\Drivers\BrSerWdm.sys
    22:24:25.0087 2292 BrSerWdm - ok
    22:24:25.0194 2292 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\System32\Drivers\BrUsbMdm.sys
    22:24:25.0199 2292 BrUsbMdm - ok
    22:24:25.0230 2292 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\System32\Drivers\BrUsbSer.sys
    22:24:25.0233 2292 BrUsbSer - ok
    22:24:25.0265 2292 BTHMODEM (ed3df7c56ce0084eb2034432fc56565a) C:\Windows\system32\DRIVERS\bthmodem.sys
    22:24:25.0267 2292 BTHMODEM - ok
    22:24:25.0304 2292 cdfs (77ea11b065e0a8ab902d78145ca51e10) C:\Windows\system32\DRIVERS\cdfs.sys
    22:24:25.0306 2292 cdfs - ok
    22:24:25.0410 2292 cdrom (be167ed0fdb9c1fa1133953c18d5a6c9) C:\Windows\system32\drivers\cdrom.sys
    22:24:25.0414 2292 cdrom - ok
    22:24:25.0482 2292 circlass (3fe3fe94a34df6fb06e6418d0f6a0060) C:\Windows\system32\DRIVERS\circlass.sys
    22:24:25.0485 2292 circlass - ok
    22:24:25.0534 2292 CLFS (635181e0e9bbf16871bf5380d71db02d) C:\Windows\system32\CLFS.sys
    22:24:25.0542 2292 CLFS - ok
    22:24:25.0672 2292 CmBatt (dea805815e587dad1dd2c502220b5616) C:\Windows\system32\DRIVERS\CmBatt.sys
    22:24:25.0675 2292 CmBatt - ok
    22:24:25.0718 2292 cmdide (c537b1db64d495b9b4717b4d6d9edbf2) C:\Windows\system32\drivers\cmdide.sys
    22:24:25.0721 2292 cmdide - ok
    22:24:25.0759 2292 CNG (1b675691ed940766149c93e8f4488d68) C:\Windows\system32\Drivers\cng.sys
    22:24:25.0766 2292 CNG - ok
    22:24:25.0866 2292 Compbatt (a6023d3823c37043986713f118a89bee) C:\Windows\system32\DRIVERS\compbatt.sys
    22:24:25.0869 2292 Compbatt - ok
    22:24:25.0914 2292 CompositeBus (cbe8c58a8579cfe5fccf809e6f114e89) C:\Windows\system32\drivers\CompositeBus.sys
    22:24:25.0916 2292 CompositeBus - ok
    22:24:25.0939 2292 crcdisk (2c4ebcfc84a9b44f209dff6c6e6c61d1) C:\Windows\system32\DRIVERS\crcdisk.sys
    22:24:25.0941 2292 crcdisk - ok
    22:24:26.0069 2292 DfsC (f024449c97ec1e464aaffda18593db88) C:\Windows\system32\Drivers\dfsc.sys
    22:24:26.0072 2292 DfsC - ok
    22:24:26.0118 2292 dgderdrv (3be1651c63954067940e7f473498ad70) C:\Windows\system32\drivers\dgderdrv.sys
    22:24:26.0120 2292 dgderdrv - ok
    22:24:26.0254 2292 dg_ssudbus (50005ccac474d525736d42d2c3435016) C:\Windows\system32\DRIVERS\ssudbus.sys
    22:24:26.0257 2292 dg_ssudbus - ok
    22:24:26.0305 2292 discache (1a050b0274bfb3890703d490f330c0da) C:\Windows\system32\drivers\discache.sys
    22:24:26.0307 2292 discache - ok
    22:24:26.0324 2292 Disk (565003f326f99802e68ca78f2a68e9ff) C:\Windows\system32\DRIVERS\disk.sys
    22:24:26.0326 2292 Disk - ok
    22:24:26.0379 2292 drmkaud (b918e7c5f9bf77202f89e1a9539f2eb4) C:\Windows\system32\drivers\drmkaud.sys
    22:24:26.0380 2292 drmkaud - ok
    22:24:26.0492 2292 DXGKrnl (23f5d28378a160352ba8f817bd8c71cb) C:\Windows\System32\drivers\dxgkrnl.sys
    22:24:26.0504 2292 DXGKrnl - ok
    22:24:26.0715 2292 ebdrv (024e1b5cac09731e4d868e64dbfb4ab0) C:\Windows\system32\DRIVERS\evbdx.sys
    22:24:26.0832 2292 ebdrv - ok
    22:24:26.0970 2292 elxstor (0ed67910c8c326796faa00b2bf6d9d3c) C:\Windows\system32\DRIVERS\elxstor.sys
    22:24:26.0980 2292 elxstor - ok
    22:24:27.0095 2292 enecir (29dcaeb81dde6f154aa4d36b18ecbb1f) C:\Windows\system32\DRIVERS\enecir.sys
    22:24:27.0098 2292 enecir - ok
    22:24:27.0151 2292 ErrDev (8fc3208352dd3912c94367a206ab3f11) C:\Windows\system32\drivers\errdev.sys
    22:24:27.0154 2292 ErrDev - ok
    22:24:27.0292 2292 exfat (2dc9108d74081149cc8b651d3a26207f) C:\Windows\system32\drivers\exfat.sys
    22:24:27.0298 2292 exfat - ok
    22:24:27.0459 2292 fastfat (7e0ab74553476622fb6ae36f73d97d35) C:\Windows\system32\drivers\fastfat.sys
    22:24:27.0465 2292 fastfat - ok
    22:24:27.0509 2292 fdc (e817a017f82df2a1f8cfdbda29388b29) C:\Windows\system32\DRIVERS\fdc.sys
    22:24:27.0511 2292 fdc - ok
    22:24:27.0538 2292 FileInfo (6cf00369c97f3cf563be99be983d13d8) C:\Windows\system32\drivers\fileinfo.sys
    22:24:27.0540 2292 FileInfo - ok
    22:24:27.0554 2292 Filetrace (42c51dc94c91da21cb9196eb64c45db9) C:\Windows\system32\drivers\filetrace.sys
    22:24:27.0556 2292 Filetrace - ok
    22:24:27.0674 2292 flpydisk (87907aa70cb3c56600f1c2fb8841579b) C:\Windows\system32\DRIVERS\flpydisk.sys
    22:24:27.0678 2292 flpydisk - ok
    22:24:27.0714 2292 FltMgr (7520ec808e0c35e0ee6f841294316653) C:\Windows\system32\drivers\fltmgr.sys
    22:24:27.0718 2292 FltMgr - ok
    22:24:27.0747 2292 FsDepends (1a16b57943853e598cff37fe2b8cbf1d) C:\Windows\system32\drivers\FsDepends.sys
    22:24:27.0749 2292 FsDepends - ok
    22:24:27.0859 2292 FsUsbExDisk (b07663a810e861eebfd0eac7e82ca62d) C:\Windows\system32\FsUsbExDisk.SYS
    22:24:27.0866 2292 FsUsbExDisk - ok
    22:24:27.0963 2292 Fs_Rec (a574b4360e438977038aae4bf60d79a2) C:\Windows\system32\drivers\Fs_Rec.sys
    22:24:27.0966 2292 Fs_Rec - ok
    22:24:28.0072 2292 fvevol (8a73e79089b282100b9393b644cb853b) C:\Windows\system32\DRIVERS\fvevol.sys
    22:24:28.0078 2292 fvevol - ok
    22:24:28.0135 2292 gagp30kx (65ee0c7a58b65e74ae05637418153938) C:\Windows\system32\DRIVERS\gagp30kx.sys
    22:24:28.0138 2292 gagp30kx - ok
    22:24:28.0171 2292 hcw85cir (c44e3c2bab6837db337ddee7544736db) C:\Windows\system32\drivers\hcw85cir.sys
    22:24:28.0173 2292 hcw85cir - ok
    22:24:28.0282 2292 HdAudAddService (a5ef29d5315111c80a5c1abad14c8972) C:\Windows\system32\drivers\HdAudio.sys
    22:24:28.0293 2292 HdAudAddService - ok
    22:24:28.0339 2292 HDAudBus (9036377b8a6c15dc2eec53e489d159b5) C:\Windows\system32\drivers\HDAudBus.sys
    22:24:28.0343 2292 HDAudBus - ok
    22:24:28.0392 2292 HidBatt (1d58a7f3e11a9731d0eaaaa8405acc36) C:\Windows\system32\DRIVERS\HidBatt.sys
    22:24:28.0395 2292 HidBatt - ok
    22:24:28.0490 2292 HidBth (89448f40e6df260c206a193a4683ba78) C:\Windows\system32\DRIVERS\hidbth.sys
    22:24:28.0494 2292 HidBth - ok
    22:24:28.0537 2292 HidIr (cf50b4cf4a4f229b9f3c08351f99ca5e) C:\Windows\system32\DRIVERS\hidir.sys
    22:24:28.0540 2292 HidIr - ok
    22:24:28.0596 2292 HidUsb (10c19f8290891af023eaec0832e1eb4d) C:\Windows\system32\DRIVERS\hidusb.sys
    22:24:28.0599 2292 HidUsb - ok
    22:24:28.0704 2292 HpSAMD (295fdc419039090eb8b49ffdbb374549) C:\Windows\system32\drivers\HpSAMD.sys
    22:24:28.0707 2292 HpSAMD - ok
    22:24:28.0793 2292 HTTP (871917b07a141bff43d76d8844d48106) C:\Windows\system32\drivers\HTTP.sys
    22:24:28.0805 2292 HTTP - ok
    22:24:28.0909 2292 hwpolicy (0c4e035c7f105f1299258c90886c64c5) C:\Windows\system32\drivers\hwpolicy.sys
    22:24:28.0912 2292 hwpolicy - ok
    22:24:28.0965 2292 i8042prt (f151f0bdc47f4a28b1b20a0818ea36d6) C:\Windows\system32\drivers\i8042prt.sys
    22:24:28.0970 2292 i8042prt - ok
    22:24:29.0013 2292 iaStorV (5cd5f9a5444e6cdcb0ac89bd62d8b76e) C:\Windows\system32\drivers\iaStorV.sys
    22:24:29.0020 2292 iaStorV - ok
    22:24:29.0271 2292 igfx (9467514ea189475a6e7fdc5d7bde9d3f) C:\Windows\system32\DRIVERS\igdkmd32.sys
    22:24:29.0462 2292 igfx - ok
    22:24:29.0591 2292 iirsp (4173ff5708f3236cf25195fecd742915) C:\Windows\system32\DRIVERS\iirsp.sys
    22:24:29.0595 2292 iirsp - ok
    22:24:29.0661 2292 intelide (a0f12f2c9ba6c72f3987ce780e77c130) C:\Windows\system32\drivers\intelide.sys
    22:24:29.0663 2292 intelide - ok
    22:24:29.0683 2292 intelppm (3b514d27bfc4accb4037bc6685f766e0) C:\Windows\system32\DRIVERS\intelppm.sys
    22:24:29.0685 2292 intelppm - ok
    22:24:29.0792 2292 IpFilterDriver (709d1761d3b19a932ff0238ea6d50200) C:\Windows\system32\DRIVERS\ipfltdrv.sys
    22:24:29.0796 2292 IpFilterDriver - ok
    22:24:29.0849 2292 IPMIDRV (4bd7134618c1d2a27466a099062547bf) C:\Windows\system32\drivers\IPMIDrv.sys
    22:24:29.0852 2292 IPMIDRV - ok
    22:24:29.0874 2292 IPNAT (a5fa468d67abcdaa36264e463a7bb0cd) C:\Windows\system32\drivers\ipnat.sys
    22:24:29.0877 2292 IPNAT - ok
    22:24:29.0979 2292 IRENUM (42996cff20a3084a56017b7902307e9f) C:\Windows\system32\drivers\irenum.sys
    22:24:29.0982 2292 IRENUM - ok
    22:24:30.0028 2292 isapnp (1f32bb6b38f62f7df1a7ab7292638a35) C:\Windows\system32\drivers\isapnp.sys
    22:24:30.0032 2292 isapnp - ok
    22:24:30.0073 2292 iScsiPrt (cb7a9abb12b8415bce5d74994c7ba3ae) C:\Windows\system32\drivers\msiscsi.sys
    22:24:30.0081 2292 iScsiPrt - ok
    22:24:30.0190 2292 kbdclass (adef52ca1aeae82b50df86b56413107e) C:\Windows\system32\DRIVERS\kbdclass.sys
    22:24:30.0194 2292 kbdclass - ok
    22:24:30.0248 2292 kbdhid (9e3ced91863e6ee98c24794d05e27a71) C:\Windows\system32\DRIVERS\kbdhid.sys
    22:24:30.0252 2292 kbdhid - ok
    22:24:30.0323 2292 KSecDD (412cea1aa78cc02a447f5c9e62b32ff1) C:\Windows\system32\Drivers\ksecdd.sys
    22:24:30.0327 2292 KSecDD - ok
    22:24:30.0442 2292 KSecPkg (26c046977e85b95036453d7b88ba1820) C:\Windows\system32\Drivers\ksecpkg.sys
    22:24:30.0448 2292 KSecPkg - ok
    22:24:30.0489 2292 lltdio (f7611ec07349979da9b0ae1f18ccc7a6) C:\Windows\system32\DRIVERS\lltdio.sys
    22:24:30.0493 2292 lltdio - ok
    22:24:30.0524 2292 LSI_FC (eb119a53ccf2acc000ac71b065b78fef) C:\Windows\system32\DRIVERS\lsi_fc.sys
    22:24:30.0527 2292 LSI_FC - ok
    22:24:30.0548 2292 LSI_SAS (8ade1c877256a22e49b75d1cc9161f9c) C:\Windows\system32\DRIVERS\lsi_sas.sys
    22:24:30.0550 2292 LSI_SAS - ok
    22:24:30.0563 2292 LSI_SAS2 (dc9dc3d3daa0e276fd2ec262e38b11e9) C:\Windows\system32\DRIVERS\lsi_sas2.sys
    22:24:30.0566 2292 LSI_SAS2 - ok
    22:24:30.0579 2292 LSI_SCSI (0a036c7d7cab643a7f07135ac47e0524) C:\Windows\system32\DRIVERS\lsi_scsi.sys
    22:24:30.0582 2292 LSI_SCSI - ok
    22:24:30.0595 2292 luafv (6703e366cc18d3b6e534f5cf7df39cee) C:\Windows\system32\drivers\luafv.sys
    22:24:30.0597 2292 luafv - ok
    22:24:30.0652 2292 massfilter (59a2783aba6019bed0c843c706e10a6a) C:\Windows\system32\drivers\massfilter.sys
    22:24:30.0655 2292 massfilter - ok
    22:24:30.0774 2292 mdvrmng (4e10e84320a8ec1c12bd0d00973b22ab) C:\Windows\system32\drivers\mdvrmng.sys
    22:24:30.0777 2292 mdvrmng - ok
    22:24:30.0821 2292 megasas (0fff5b045293002ab38eb1fd1fc2fb74) C:\Windows\system32\DRIVERS\megasas.sys
    22:24:30.0823 2292 megasas - ok
    22:24:30.0854 2292 MegaSR (dcbab2920c75f390caf1d29f675d03d6) C:\Windows\system32\DRIVERS\MegaSR.sys
    22:24:30.0859 2292 MegaSR - ok
    22:24:30.0981 2292 Modem (f001861e5700ee84e2d4e52c712f4964) C:\Windows\system32\drivers\modem.sys
    22:24:30.0984 2292 Modem - ok
    22:24:31.0013 2292 monitor (79d10964de86b292320e9dfe02282a23) C:\Windows\system32\DRIVERS\monitor.sys
    22:24:31.0017 2292 monitor - ok
    22:24:31.0057 2292 mouclass (fb18cc1d4c2e716b6b903b0ac0cc0609) C:\Windows\system32\DRIVERS\mouclass.sys
    22:24:31.0060 2292 mouclass - ok
    22:24:31.0091 2292 mouhid (2c388d2cd01c9042596cf3c8f3c7b24d) C:\Windows\system32\DRIVERS\mouhid.sys
    22:24:31.0095 2292 mouhid - ok
    22:24:31.0208 2292 mountmgr (fc8771f45ecccfd89684e38842539b9b) C:\Windows\system32\drivers\mountmgr.sys
    22:24:31.0212 2292 mountmgr - ok
    22:24:31.0255 2292 mpio (2d699fb6e89ce0d8da14ecc03b3edfe0) C:\Windows\system32\drivers\mpio.sys
    22:24:31.0261 2292 mpio - ok
    22:24:31.0300 2292 mpsdrv (ad2723a7b53dd1aacae6ad8c0bfbf4d0) C:\Windows\system32\drivers\mpsdrv.sys
    22:24:31.0305 2292 mpsdrv - ok
    22:24:31.0435 2292 MRxDAV (ceb46ab7c01c9f825f8cc6babc18166a) C:\Windows\system32\drivers\mrxdav.sys
    22:24:31.0440 2292 MRxDAV - ok
    22:24:31.0491 2292 mrxsmb (5d16c921e3671636c0eba3bbaac5fd25) C:\Windows\system32\DRIVERS\mrxsmb.sys
    22:24:31.0496 2292 mrxsmb - ok
    22:24:31.0526 2292 mrxsmb10 (6d17a4791aca19328c685d256349fefc) C:\Windows\system32\DRIVERS\mrxsmb10.sys
    22:24:31.0532 2292 mrxsmb10 - ok
    22:24:31.0631 2292 mrxsmb20 (b81f204d146000be76651a50670a5e9e) C:\Windows\system32\DRIVERS\mrxsmb20.sys
    22:24:31.0636 2292 mrxsmb20 - ok
    22:24:31.0683 2292 msahci (012c5f4e9349e711e11e0f19a8589f0a) C:\Windows\system32\drivers\msahci.sys
    22:24:31.0686 2292 msahci - ok
    22:24:31.0732 2292 msdsm (55055f8ad8be27a64c831322a780a228) C:\Windows\system32\drivers\msdsm.sys
    22:24:31.0736 2292 msdsm - ok
    22:24:31.0847 2292 Msfs (daefb28e3af5a76abcc2c3078c07327f) C:\Windows\system32\drivers\Msfs.sys
    22:24:31.0851 2292 Msfs - ok
    22:24:31.0876 2292 mshidkmdf (3e1e5767043c5af9367f0056295e9f84) C:\Windows\System32\drivers\mshidkmdf.sys
    22:24:31.0878 2292 mshidkmdf - ok
    22:24:31.0919 2292 msisadrv (0a4e5757ae09fa9622e3158cc1aef114) C:\Windows\system32\drivers\msisadrv.sys
    22:24:31.0921 2292 msisadrv - ok
    22:24:31.0949 2292 MSKSSRV (8c0860d6366aaffb6c5bb9df9448e631) C:\Windows\system32\drivers\MSKSSRV.sys
    22:24:31.0951 2292 MSKSSRV - ok
    22:24:32.0062 2292 MSPCLOCK (3ea8b949f963562cedbb549eac0c11ce) C:\Windows\system32\drivers\MSPCLOCK.sys
    22:24:32.0066 2292 MSPCLOCK - ok
    22:24:32.0097 2292 MSPQM (f456e973590d663b1073e9c463b40932) C:\Windows\system32\drivers\MSPQM.sys
    22:24:32.0100 2292 MSPQM - ok
    22:24:32.0137 2292 MsRPC (0e008fc4819d238c51d7c93e7b41e560) C:\Windows\system32\drivers\MsRPC.sys
    22:24:32.0144 2292 MsRPC - ok
    22:24:32.0194 2292 mssmbios (fc6b9ff600cc585ea38b12589bd4e246) C:\Windows\system32\drivers\mssmbios.sys
    22:24:32.0198 2292 mssmbios - ok
    22:24:32.0308 2292 MSTEE (b42c6b921f61a6e55159b8be6cd54a36) C:\Windows\system32\drivers\MSTEE.sys
    22:24:32.0311 2292 MSTEE - ok
    22:24:32.0331 2292 MTConfig (33599130f44e1f34631cea241de8ac84) C:\Windows\system32\DRIVERS\MTConfig.sys
    22:24:32.0333 2292 MTConfig - ok
    22:24:32.0356 2292 Mup (159fad02f64e6381758c990f753bcc80) C:\Windows\system32\Drivers\mup.sys
    22:24:32.0358 2292 Mup - ok
    22:24:32.0389 2292 NativeWifiP (26384429fcd85d83746f63e798ab1480) C:\Windows\system32\DRIVERS\nwifi.sys
    22:24:32.0395 2292 NativeWifiP - ok
    22:24:32.0514 2292 NDIS (e7c54812a2aaf43316eb6930c1ffa108) C:\Windows\system32\drivers\ndis.sys
    22:24:32.0526 2292 NDIS - ok
    22:24:32.0634 2292 NdisCap (0e1787aa6c9191d3d319e8bafe86f80c) C:\Windows\system32\DRIVERS\ndiscap.sys
    22:24:32.0636 2292 NdisCap - ok
    22:24:32.0661 2292 NdisTapi (e4a8aec125a2e43a9e32afeea7c9c888) C:\Windows\system32\DRIVERS\ndistapi.sys
    22:24:32.0663 2292 NdisTapi - ok
    22:24:32.0711 2292 Ndisuio (d8a65dafb3eb41cbb622745676fcd072) C:\Windows\system32\DRIVERS\ndisuio.sys
    22:24:32.0715 2292 Ndisuio - ok
    22:24:32.0762 2292 NdisWan (38fbe267e7e6983311179230facb1017) C:\Windows\system32\DRIVERS\ndiswan.sys
    22:24:32.0768 2292 NdisWan - ok
    22:24:32.0891 2292 NDProxy (a4bdc541e69674fbff1a8ff00be913f2) C:\Windows\system32\drivers\NDProxy.sys
    22:24:32.0895 2292 NDProxy - ok
    22:24:32.0945 2292 NetBIOS (80b275b1ce3b0e79909db7b39af74d51) C:\Windows\system32\DRIVERS\netbios.sys
    22:24:32.0949 2292 NetBIOS - ok
    22:24:33.0007 2292 NetBT (280122ddcf04b378edd1ad54d71c1e54) C:\Windows\system32\DRIVERS\netbt.sys
    22:24:33.0013 2292 NetBT - ok
    22:24:33.0255 2292 netw5v32 (58218ec6b61b1169cf54aab0d00f5fe2) C:\Windows\system32\DRIVERS\netw5v32.sys
    22:24:33.0390 2292 netw5v32 - ok
    22:24:33.0500 2292 nfrd960 (1d85c4b390b0ee09c7a46b91efb2c097) C:\Windows\system32\DRIVERS\nfrd960.sys
    22:24:33.0504 2292 nfrd960 - ok
    22:24:33.0535 2292 Npfs (1db262a9f8c087e8153d89bef3d2235f) C:\Windows\system32\drivers\Npfs.sys
    22:24:33.0537 2292 Npfs - ok
    22:24:33.0566 2292 nsiproxy (e9a0a4d07e53d8fea2bb8387a3293c58) C:\Windows\system32\drivers\nsiproxy.sys
    22:24:33.0568 2292 nsiproxy - ok
    22:24:33.0648 2292 Ntfs (81189c3d7763838e55c397759d49007a) C:\Windows\system32\drivers\Ntfs.sys
    22:24:33.0678 2292 Ntfs - ok
    22:24:33.0780 2292 Null (f9756a98d69098dca8945d62858a812c) C:\Windows\system32\drivers\Null.sys
    22:24:33.0784 2292 Null - ok
    22:24:33.0836 2292 nvraid (b3e25ee28883877076e0e1ff877d02e0) C:\Windows\system32\drivers\nvraid.sys
    22:24:33.0841 2292 nvraid - ok
    22:24:33.0867 2292 nvstor (4380e59a170d88c4f1022eff6719a8a4) C:\Windows\system32\drivers\nvstor.sys
    22:24:33.0871 2292 nvstor - ok
    22:24:33.0890 2292 nv_agp (5a0983915f02bae73267cc2a041f717d) C:\Windows\system32\drivers\nv_agp.sys
    22:24:33.0894 2292 nv_agp - ok
    22:24:33.0994 2292 ohci1394 (08a70a1f2cdde9bb49b885cb817a66eb) C:\Windows\system32\drivers\ohci1394.sys
    22:24:33.0999 2292 ohci1394 - ok
    22:24:34.0074 2292 Parport (2ea877ed5dd9713c5ac74e8ea7348d14) C:\Windows\system32\DRIVERS\parport.sys
    22:24:34.0076 2292 Parport - ok
    22:24:34.0124 2292 partmgr (bf8f6af06da75b336f07e23aef97d93b) C:\Windows\system32\drivers\partmgr.sys
    22:24:34.0128 2292 partmgr - ok
    22:24:34.0228 2292 Parvdm (eb0a59f29c19b86479d36b35983daadc) C:\Windows\system32\DRIVERS\parvdm.sys
    22:24:34.0232 2292 Parvdm - ok
    22:24:34.0285 2292 pccsmcfd (fd2041e9ba03db7764b2248f02475079) C:\Windows\system32\DRIVERS\pccsmcfd.sys
    22:24:34.0304 2292 pccsmcfd - ok
    22:24:34.0354 2292 pci (673e55c3498eb970088e812ea820aa8f) C:\Windows\system32\drivers\pci.sys
    22:24:34.0361 2292 pci - ok
    22:24:34.0480 2292 pciide (afe86f419014db4e5593f69ffe26ce0a) C:\Windows\system32\drivers\pciide.sys
    22:24:34.0484 2292 pciide - ok
    22:24:34.0540 2292 pcmcia (f396431b31693e71e8a80687ef523506) C:\Windows\system32\DRIVERS\pcmcia.sys
    22:24:34.0548 2292 pcmcia - ok
    22:24:34.0581 2292 pcw (250f6b43d2b613172035c6747aeeb19f) C:\Windows\system32\drivers\pcw.sys
    22:24:34.0583 2292 pcw - ok
    22:24:34.0699 2292 PEAUTH (9e0104ba49f4e6973749a02bf41344ed) C:\Windows\system32\drivers\peauth.sys
    22:24:34.0716 2292 PEAUTH - ok
    22:24:34.0863 2292 PptpMiniport (631e3e205ad6d86f2aed6a4a8e69f2db) C:\Windows\system32\DRIVERS\raspptp.sys
    22:24:34.0868 2292 PptpMiniport - ok
    22:24:34.0900 2292 Processor (85b1e3a0c7585bc4aae6899ec6fcf011) C:\Windows\system32\DRIVERS\processr.sys
    22:24:34.0903 2292 Processor - ok
    22:24:34.0946 2292 Psched (6270ccae2a86de6d146529fe55b3246a) C:\Windows\system32\DRIVERS\pacer.sys
    22:24:34.0949 2292 Psched - ok
    22:24:35.0065 2292 PxHelp20 (86724469cd077901706854974cd13c3e) C:\Windows\system32\Drivers\PxHelp20.sys
    22:24:35.0068 2292 PxHelp20 - ok
    22:24:35.0146 2292 ql2300 (ab95ecf1f6659a60ddc166d8315b0751) C:\Windows\system32\DRIVERS\ql2300.sys
    22:24:35.0175 2292 ql2300 - ok
    22:24:35.0296 2292 ql40xx (b4dd51dd25182244b86737dc51af2270) C:\Windows\system32\DRIVERS\ql40xx.sys
    22:24:35.0301 2292 ql40xx - ok
    22:24:35.0338 2292 QWAVEdrv (584078ca1b95ca72df2a27c336f9719d) C:\Windows\system32\drivers\qwavedrv.sys
    22:24:35.0340 2292 QWAVEdrv - ok
    22:24:35.0364 2292 RasAcd (30a81b53c766d0133bb86d234e5556ab) C:\Windows\system32\DRIVERS\rasacd.sys
    22:24:35.0367 2292 RasAcd - ok
    22:24:35.0443 2292 RasAgileVpn (57ec4aef73660166074d8f7f31c0d4fd) C:\Windows\system32\DRIVERS\AgileVpn.sys
    22:24:35.0446 2292 RasAgileVpn - ok
    22:24:35.0537 2292 Rasl2tp (d9f91eafec2815365cbe6d167e4e332a) C:\Windows\system32\DRIVERS\rasl2tp.sys
    22:24:35.0541 2292 Rasl2tp - ok
    22:24:35.0584 2292 RasPppoe (0fe8b15916307a6ac12bfb6a63e45507) C:\Windows\system32\DRIVERS\raspppoe.sys
    22:24:35.0589 2292 RasPppoe - ok
    22:24:35.0605 2292 RasSstp (44101f495a83ea6401d886e7fd70096b) C:\Windows\system32\DRIVERS\rassstp.sys
    22:24:35.0609 2292 RasSstp - ok
    22:24:35.0674 2292 rdbss (d528bc58a489409ba40334ebf96a311b) C:\Windows\system32\DRIVERS\rdbss.sys
    22:24:35.0681 2292 rdbss - ok
    22:24:35.0708 2292 rdpbus (0d8f05481cb76e70e1da06ee9f0da9df) C:\Windows\system32\DRIVERS\rdpbus.sys
    22:24:35.0711 2292 rdpbus - ok
    22:24:35.0817 2292 RDPCDD (23dae03f29d253ae74c44f99e515f9a1) C:\Windows\system32\DRIVERS\RDPCDD.sys
    22:24:35.0821 2292 RDPCDD - ok
    22:24:35.0884 2292 RDPENCDD (5a53ca1598dd4156d44196d200c94b8a) C:\Windows\system32\drivers\rdpencdd.sys
    22:24:35.0888 2292 RDPENCDD - ok
    22:24:35.0918 2292 RDPREFMP (44b0a53cd4f27d50ed461dae0c0b4e1f) C:\Windows\system32\drivers\rdprefmp.sys
    22:24:35.0920 2292 RDPREFMP - ok
    22:24:36.0027 2292 RDPWD (288b06960d78428ff89e811632684e20) C:\Windows\system32\drivers\RDPWD.sys
    22:24:36.0032 2292 RDPWD - ok
    22:24:36.0097 2292 rdyboost (518395321dc96fe2c9f0e96ac743b656) C:\Windows\system32\drivers\rdyboost.sys
    22:24:36.0102 2292 rdyboost - ok
    22:24:36.0212 2292 rimmptsk (243a8c2727c0f85769f697fea100566c) C:\Windows\system32\DRIVERS\rimmptsk.sys
    22:24:36.0216 2292 rimmptsk - ok
    22:24:36.0268 2292 rimsptsk (a1cdcadf19ed45e213c225c15ea93e6b) C:\Windows\system32\DRIVERS\rimsptsk.sys
    22:24:36.0272 2292 rimsptsk - ok
    22:24:36.0301 2292 rismxdp (c72a20c1b40c8c975fc86ca66c8a9882) C:\Windows\system32\DRIVERS\rixdptsk.sys
    22:24:36.0305 2292 rismxdp - ok
    22:24:36.0365 2292 rspndr (032b0d36ad92b582d869879f5af5b928) C:\Windows\system32\DRIVERS\rspndr.sys
    22:24:36.0368 2292 rspndr - ok
    22:24:36.0454 2292 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
    22:24:36.0457 2292 SASDIFSV - ok
    22:24:36.0478 2292 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
    22:24:36.0482 2292 SASKUTIL - ok
    22:24:36.0604 2292 sbp2port (05d860da1040f111503ac416ccef2bca) C:\Windows\system32\drivers\sbp2port.sys
    22:24:36.0609 2292 sbp2port - ok
    22:24:36.0678 2292 scfilter (0693b5ec673e34dc147e195779a4dcf6) C:\Windows\system32\DRIVERS\scfilter.sys
    22:24:36.0681 2292 scfilter - ok
    22:24:36.0727 2292 sdbus (0328be1c7f1cba23848179f8762e391c) C:\Windows\system32\drivers\sdbus.sys
    22:24:36.0730 2292 sdbus - ok
    22:24:36.0825 2292 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
    22:24:36.0829 2292 secdrv - ok
    22:24:36.0877 2292 Serenum (9ad8b8b515e3df6acd4212ef465de2d1) C:\Windows\system32\DRIVERS\serenum.sys
    22:24:36.0880 2292 Serenum - ok
    22:24:36.0910 2292 Serial (5fb7fcea0490d821f26f39cc5ea3d1e2) C:\Windows\system32\DRIVERS\serial.sys
    22:24:36.0913 2292 Serial - ok
    22:24:36.0961 2292 sermouse (79bffb520327ff916a582dfea17aa813) C:\Windows\system32\DRIVERS\sermouse.sys
    22:24:36.0966 2292 sermouse - ok
    22:24:37.0084 2292 sffdisk (9f976e1eb233df46fce808d9dea3eb9c) C:\Windows\system32\DRIVERS\sffdisk.sys
    22:24:37.0087 2292 sffdisk - ok
    22:24:37.0116 2292 sffp_mmc (932a68ee27833cfd57c1639d375f2731) C:\Windows\system32\drivers\sffp_mmc.sys
    22:24:37.0119 2292 sffp_mmc - ok
    22:24:37.0143 2292 sffp_sd (6d4ccaedc018f1cf52866bbbaa235982) C:\Windows\system32\DRIVERS\sffp_sd.sys
    22:24:37.0145 2292 sffp_sd - ok
    22:24:37.0178 2292 sfloppy (db96666cc8312ebc45032f30b007a547) C:\Windows\system32\DRIVERS\sfloppy.sys
    22:24:37.0181 2292 sfloppy - ok
    22:24:37.0313 2292 sisagp (2565cac0dc9fe0371bdce60832582b2e) C:\Windows\system32\drivers\sisagp.sys
    22:24:37.0317 2292 sisagp - ok
    22:24:37.0363 2292 SiSRaid2 (a9f0486851becb6dda1d89d381e71055) C:\Windows\system32\DRIVERS\SiSRaid2.sys
    22:24:37.0367 2292 SiSRaid2 - ok
    22:24:37.0390 2292 SiSRaid4 (3727097b55738e2f554972c3be5bc1aa) C:\Windows\system32\DRIVERS\sisraid4.sys
    22:24:37.0394 2292 SiSRaid4 - ok
    22:24:37.0421 2292 Smb (3e21c083b8a01cb70ba1f09303010fce) C:\Windows\system32\DRIVERS\smb.sys
    22:24:37.0424 2292 Smb - ok
    22:24:37.0458 2292 spldr (95cf1ae7527fb70f7816563cbc09d942) C:\Windows\system32\drivers\spldr.sys
    22:24:37.0460 2292 spldr - ok
    22:24:37.0579 2292 srv (e4c2764065d66ea1d2d3ebc28fe99c46) C:\Windows\system32\DRIVERS\srv.sys
    22:24:37.0585 2292 srv - ok
    22:24:37.0607 2292 srv2 (03f0545bd8d4c77fa0ae1ceedfcc71ab) C:\Windows\system32\DRIVERS\srv2.sys
    22:24:37.0613 2292 srv2 - ok
    22:24:37.0661 2292 SrvHsfHDA (e00fdfaff025e94f9821153750c35a6d) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
    22:24:37.0666 2292 SrvHsfHDA - ok
    22:24:37.0807 2292 SrvHsfV92 (ceb4e3b6890e1e42dca6694d9e59e1a0) C:\Windows\system32\DRIVERS\VSTDPV3.SYS
    22:24:37.0835 2292 SrvHsfV92 - ok
    22:24:37.0977 2292 SrvHsfWinac (bc0c7ea89194c299f051c24119000e17) C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
    22:24:37.0996 2292 SrvHsfWinac - ok
    22:24:38.0106 2292 srvnet (be6bd660caa6f291ae06a718a4fa8abc) C:\Windows\system32\DRIVERS\srvnet.sys
    22:24:38.0112 2292 srvnet - ok
    22:24:38.0159 2292 ssudmdm (1b4052f016ba5e087689aba536a0a927) C:\Windows\system32\DRIVERS\ssudmdm.sys
    22:24:38.0164 2292 ssudmdm - ok
    22:24:38.0208 2292 stexstor (db32d325c192b801df274bfd12a7e72b) C:\Windows\system32\DRIVERS\stexstor.sys
    22:24:38.0210 2292 stexstor - ok
    22:24:38.0317 2292 swenum (e58c78a848add9610a4db6d214af5224) C:\Windows\system32\drivers\swenum.sys
    22:24:38.0320 2292 swenum - ok
    22:24:38.0416 2292 Tcpip (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\drivers\tcpip.sys
    22:24:38.0444 2292 Tcpip - ok
    22:24:38.0653 2292 TCPIP6 (65d10b191c59c5501a1263fc33f6894b) C:\Windows\system32\DRIVERS\tcpip.sys
    22:24:38.0667 2292 TCPIP6 - ok
    22:24:38.0812 2292 tcpipreg (cca24162e055c3714ce5a88b100c64ed) C:\Windows\system32\drivers\tcpipreg.sys
    22:24:38.0816 2292 tcpipreg - ok
    22:24:38.0873 2292 TDPIPE (1cb91b2bd8f6dd367dfc2ef26fd751b2) C:\Windows\system32\drivers\tdpipe.sys
    22:24:38.0875 2292 TDPIPE - ok
    22:24:38.0905 2292 TDTCP (2c10395baa4847f83042813c515cc289) C:\Windows\system32\drivers\tdtcp.sys
    22:24:38.0908 2292 TDTCP - ok
    22:24:38.0957 2292 tdx (b459575348c20e8121d6039da063c704) C:\Windows\system32\DRIVERS\tdx.sys
    22:24:38.0962 2292 tdx - ok
    22:24:39.0067 2292 TermDD (04dbf4b01ea4bf25a9a3e84affac9b20) C:\Windows\system32\drivers\termdd.sys
    22:24:39.0071 2292 TermDD - ok
    22:24:39.0151 2292 tssecsrv (254bb140eee3c59d6114c1a86b636877) C:\Windows\system32\DRIVERS\tssecsrv.sys
    22:24:39.0154 2292 tssecsrv - ok
    22:24:39.0203 2292 TsUsbFlt (fd1d6c73e6333be727cbcc6054247654) C:\Windows\system32\drivers\tsusbflt.sys
    22:24:39.0208 2292 TsUsbFlt - ok
    22:24:39.0381 2292 TuneUpUtilitiesDrv (f2107c9d85ec0df116939ccce06ae697) C:\Program Files\TuneUp Utilities 2012\TuneUpUtilitiesDriver32.sys
    22:24:39.0386 2292 TuneUpUtilitiesDrv - ok
    22:24:39.0503 2292 tunnel (b2fa25d9b17a68bb93d58b0556e8c90d) C:\Windows\system32\DRIVERS\tunnel.sys
    22:24:39.0510 2292 tunnel - ok
    22:24:39.0576 2292 uagp35 (750fbcb269f4d7dd2e420c56b795db6d) C:\Windows\system32\DRIVERS\uagp35.sys
    22:24:39.0581 2292 uagp35 - ok
    22:24:39.0636 2292 udfs (ee43346c7e4b5e63e54f927babbb32ff) C:\Windows\system32\DRIVERS\udfs.sys
    22:24:39.0645 2292 udfs - ok
    22:24:39.0771 2292 uliagpkx (44e8048ace47befbfdc2e9be4cbc8880) C:\Windows\system32\drivers\uliagpkx.sys
    22:24:39.0776 2292 uliagpkx - ok
    22:24:39.0817 2292 umbus (d295bed4b898f0fd999fcfa9b32b071b) C:\Windows\system32\drivers\umbus.sys
    22:24:39.0821 2292 umbus - ok
    22:24:39.0868 2292 UmPass (7550ad0c6998ba1cb4843e920ee0feac) C:\Windows\system32\DRIVERS\umpass.sys
    22:24:39.0872 2292 UmPass - ok
    22:24:39.0911 2292 usbccgp (bd9c55d7023c5de374507acc7a14e2ac) C:\Windows\system32\DRIVERS\usbccgp.sys
    22:24:39.0913 2292 usbccgp - ok
    22:24:40.0024 2292 usbcir (04ec7cec62ec3b6d9354eee93327fc82) C:\Windows\system32\drivers\usbcir.sys
    22:24:40.0030 2292 usbcir - ok
    22:24:40.0095 2292 usbehci (f92de757e4b7ce9c07c5e65423f3ae3b) C:\Windows\system32\DRIVERS\usbehci.sys
    22:24:40.0100 2292 usbehci - ok
    22:24:40.0150 2292 usbhub (8dc94aec6a7e644a06135ae7506dc2e9) C:\Windows\system32\DRIVERS\usbhub.sys
    22:24:40.0156 2292 usbhub - ok
    22:24:40.0273 2292 usbohci (e185d44fac515a18d9deddc23c2cdf44) C:\Windows\system32\drivers\usbohci.sys
    22:24:40.0275 2292 usbohci - ok
    22:24:40.0325 2292 usbprint (797d862fe0875e75c7cc4c1ad7b30252) C:\Windows\system32\DRIVERS\usbprint.sys
    22:24:40.0327 2292 usbprint - ok
    22:24:40.0385 2292 usbscan (576096ccbc07e7c4ea4f5e6686d6888f) C:\Windows\system32\DRIVERS\usbscan.sys
    22:24:40.0388 2292 usbscan - ok
    22:24:40.0491 2292 USBSTOR (f991ab9cc6b908db552166768176896a) C:\Windows\system32\DRIVERS\USBSTOR.SYS
    22:24:40.0494 2292 USBSTOR - ok
    22:24:40.0526 2292 usbuhci (68df884cf41cdada664beb01daf67e3d) C:\Windows\system32\DRIVERS\usbuhci.sys
    22:24:40.0530 2292 usbuhci - ok
    22:24:40.0581 2292 usbvideo (45f4e7bf43db40a6c6b4d92c76cbc3f2) C:\Windows\System32\Drivers\usbvideo.sys
    22:24:40.0585 2292 usbvideo - ok
    22:24:40.0740 2292 vdrvroot (a059c4c3edb09e07d21a8e5c0aabd3cb) C:\Windows\system32\drivers\vdrvroot.sys
    22:24:40.0744 2292 vdrvroot - ok
    22:24:40.0791 2292 vga (17c408214ea61696cec9c66e388b14f3) C:\Windows\system32\DRIVERS\vgapnp.sys
    22:24:40.0795 2292 vga - ok
    22:24:40.0830 2292 VgaSave (8e38096ad5c8570a6f1570a61e251561) C:\Windows\System32\drivers\vga.sys
    22:24:40.0833 2292 VgaSave - ok
    22:24:40.0909 2292 vhdmp (5461686cca2fda57b024547733ab42e3) C:\Windows\system32\drivers\vhdmp.sys
    22:24:40.0917 2292 vhdmp - ok
    22:24:41.0023 2292 viaagp (c829317a37b4bea8f39735d4b076e923) C:\Windows\system32\drivers\viaagp.sys
    22:24:41.0028 2292 viaagp - ok
    22:24:41.0081 2292 ViaC7 (e02f079a6aa107f06b16549c6e5c7b74) C:\Windows\system32\DRIVERS\viac7.sys
    22:24:41.0086 2292 ViaC7 - ok
    22:24:41.0119 2292 viaide (e43574f6a56a0ee11809b48c09e4fd3c) C:\Windows\system32\drivers\viaide.sys
    22:24:41.0121 2292 viaide - ok
    22:24:41.0150 2292 volmgr (4c63e00f2f4b5f86ab48a58cd990f212) C:\Windows\system32\drivers\volmgr.sys
    22:24:41.0153 2292 volmgr - ok
    22:24:41.0254 2292 volmgrx (b5bb72067ddddbbfb04b2f89ff8c3c87) C:\Windows\system32\drivers\volmgrx.sys
    22:24:41.0262 2292 volmgrx - ok
    22:24:41.0341 2292 volsnap (f497f67932c6fa693d7de2780631cfe7) C:\Windows\system32\drivers\volsnap.sys
    22:24:41.0348 2292 volsnap - ok
    22:24:41.0445 2292 vsmraid (9dfa0cc2f8855a04816729651175b631) C:\Windows\system32\DRIVERS\vsmraid.sys
    22:24:41.0452 2292 vsmraid - ok
    22:24:41.0525 2292 vwifibus (90567b1e658001e79d7c8bbd3dde5aa6) C:\Windows\System32\drivers\vwifibus.sys
    22:24:41.0528 2292 vwifibus - ok
    22:24:41.0559 2292 WacomPen (de3721e89c653aa281428c8a69745d90) C:\Windows\system32\DRIVERS\wacompen.sys
    22:24:41.0562 2292 WacomPen - ok
    22:24:41.0614 2292 WANARP (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
    22:24:41.0617 2292 WANARP - ok
    22:24:41.0621 2292 Wanarpv6 (3c3c78515f5ab448b022bdf5b8ffdd2e) C:\Windows\system32\DRIVERS\wanarp.sys
    22:24:41.0623 2292 Wanarpv6 - ok
    22:24:41.0733 2292 Wd (1112a9badacb47b7c0bb0392e3158dff) C:\Windows\system32\DRIVERS\wd.sys
    22:24:41.0737 2292 Wd - ok
    22:24:41.0792 2292 Wdf01000 (9950e3d0f08141c7e89e64456ae7dc73) C:\Windows\system32\drivers\Wdf01000.sys
    22:24:41.0801 2292 Wdf01000 - ok
    22:24:41.0903 2292 WfpLwf (8b9a943f3b53861f2bfaf6c186168f79) C:\Windows\system32\DRIVERS\wfplwf.sys
    22:24:41.0906 2292 WfpLwf - ok
    22:24:41.0953 2292 WIMMount (5cf95b35e59e2a38023836fff31be64c) C:\Windows\system32\drivers\wimmount.sys
    22:24:41.0956 2292 WIMMount - ok
    22:24:42.0027 2292 WinUsb (a67e5f9a400f3bd1be3d80613b45f708) C:\Windows\system32\DRIVERS\WinUsb.sys
    22:24:42.0030 2292 WinUsb - ok
    22:24:42.0154 2292 WmiAcpi (0217679b8fca58714c3bf2726d2ca84e) C:\Windows\system32\drivers\wmiacpi.sys
    22:24:42.0157 2292 WmiAcpi - ok
    22:24:42.0227 2292 ws2ifsl (6db3276587b853bf886b69528fdb048c) C:\Windows\system32\drivers\ws2ifsl.sys
    22:24:42.0230 2292 ws2ifsl - ok
    22:24:42.0291 2292 WudfPf (e714a1c0354636837e20ccbf00888ee7) C:\Windows\system32\drivers\WudfPf.sys
    22:24:42.0294 2292 WudfPf - ok
    22:24:42.0381 2292 WUDFRd (1023ee888c9b47178c5293ed5336ab69) C:\Windows\system32\DRIVERS\WUDFRd.sys
    22:24:42.0383 2292 WUDFRd - ok
    22:24:42.0455 2292 ZTEusbmdm6k (3862318f85be7a91957ada5e814ed58c) C:\Windows\system32\DRIVERS\ZTEusbmdm6k.sys
    22:24:42.0458 2292 ZTEusbmdm6k - ok
    22:24:42.0490 2292 ZTEusbnmea (3862318f85be7a91957ada5e814ed58c) C:\Windows\system32\DRIVERS\ZTEusbnmea.sys
    22:24:42.0493 2292 ZTEusbnmea - ok
    22:24:42.0558 2292 ZTEusbser6k (3862318f85be7a91957ada5e814ed58c) C:\Windows\system32\DRIVERS\ZTEusbser6k.sys
    22:24:42.0559 2292 ZTEusbser6k - ok
    22:24:42.0584 2292 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
    22:24:42.0592 2292 \Device\Harddisk0\DR0 - ok
    22:24:42.0596 2292 Boot (0x1200) (bac13b6ef756c6a93398a13761e2ada9) \Device\Harddisk0\DR0\Partition0
    22:24:42.0597 2292 \Device\Harddisk0\DR0\Partition0 - ok
    22:24:42.0615 2292 Boot (0x1200) (ff73521292068e27cf93d19aa78ae991) \Device\Harddisk0\DR0\Partition1
    22:24:42.0616 2292 \Device\Harddisk0\DR0\Partition1 - ok
    22:24:42.0616 2292 ============================================================
    22:24:42.0616 2292 Scan finished
    22:24:42.0616 2292 ============================================================
    22:24:42.0629 4168 Detected object count: 0
    22:24:42.0629 4168 Actual detected object count: 0
    22:24:53.0431 2684 Deinitialize success

  7. #7
    Member
    Join Date
    Mar 2009
    Location
    Romford Essex United Kingdom
    Posts
    132
    Points
    1

    Default

    I also cannot log into help2go using internet explorer, I wonder if IE might need re installing
    Regards
    Tony

  8. #8
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    Hello,

    Yes, please try re-installing IE9.
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-




  9. #9
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    Hello.

    Are you still there?

    If you are please follow the instructions in my previous post.

    If you still need help, follow the instructions I have given in my response. If you have since had your problem solved, we would appreciate you letting us know so we can close the topic.

    Please reply back telling us so. If you don't reply within 3-5 days the topic will need to be closed.

    Thanks for understanding

    With Regards,
    fireman4it
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-




  10. #10
    Member Spyware Fighter
    Join Date
    Jun 2010
    Location
    Bement,Ill USA
    Posts
    1,340
    Points
    146

    Default

    Hello.

    There had been no reply from the topic starter in 5 days. Due to inactivity, this topic is now closed.
    If you are the topic starter and need this topic reopened, send me a message.

    Everyone else, please begin a new topic.

    With Regards,
    fireman4it
    " Extinguishing Malware from the world"

    The Spware Help forum is very busy. If I'm helping you and I've not posted back within 24 hrs., send a PM with your topic link. Thank you.
    HELP REQUESTS VIA THE PM SYSTEM WILL BE IGNORED. The Forums are there for a reason!
    Thanks-