Hello! I'm home from vacation so I'll be quick to reply now.
For what it's worth, my computer already seems better since tdsskiller.exe!! No sign of the nasty svchost.exe and no browser tabs opening randomly.
Still standing by, thanks!
1. Removed Spyware Doctor
2. Malwarebytes' Anti-Malware (MBAM) Most recent log
10:23:04 Cmack MESSAGE Protection started successfully
10:23:08 Cmack MESSAGE IP Protection started successfully
10:24:36 Cmack IP-BLOCK 195.3.145.105 (Type: outgoing, Port: 49296, Process: firefox.exe)
10:25:32 Cmack IP-BLOCK 195.3.145.184 (Type: outgoing, Port: 49339, Process: firefox.exe)
10:30:39 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 49839, Process: svchost.exe)
10:30:39 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 49840, Process: svchost.exe)
10:54:33 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 53156, Process: svchost.exe)
10:54:49 Cmack IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 53191, Process: svchost.exe)
10:55:37 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 53406, Process: svchost.exe)
11:15:14 Cmack IP-BLOCK 69.6.27.100 (Type: outgoing, Port: 54760, Process: svchost.exe)
11:15:54 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 54876, Process: svchost.exe)
11:16:18 Cmack IP-BLOCK 188.229.90.64 (Type: outgoing, Port: 55030, Process: svchost.exe)
12:04:50 Cmack IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 59021, Process: svchost.exe)
12:07:22 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 59463, Process: svchost.exe)
12:07:22 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 59464, Process: svchost.exe)
12:07:46 Cmack IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 59508, Process: svchost.exe)
13:57:36 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55158, Process: svchost.exe)
13:57:36 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55159, Process: svchost.exe)
14:04:40 Cmack IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 55736, Process: svchost.exe)
14:05:05 Cmack IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 55767, Process: svchost.exe)
14:13:53 Cmack IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 56334, Process: svchost.exe)
14:20:42 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 57279, Process: svchost.exe)
14:20:42 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 57280, Process: svchost.exe)
14:26:51 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 58021, Process: svchost.exe)
14:26:51 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 58022, Process: svchost.exe)
15:56:33 Cmack MESSAGE Protection started successfully
15:56:37 Cmack MESSAGE IP Protection started successfully
17:11:39 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 53780, Process: svchost.exe)
17:19:08 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 54162, Process: svchost.exe)
17:27:00 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 54661, Process: svchost.exe)
17:27:00 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 54665, Process: svchost.exe)
17:41:25 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 54881, Process: svchost.exe)
17:44:13 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55355, Process: svchost.exe)
17:44:13 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 55356, Process: svchost.exe)
17:52:14 Cmack IP-BLOCK 193.105.154.238 (Type: outgoing, Port: 56118, Process: svchost.exe)
17:52:14 Cmack IP-BLOCK 193.105.154.238 (Type: outgoing, Port: 56119, Process: svchost.exe)
17:56:23 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 56717, Process: svchost.exe)
17:58:48 Cmack IP-BLOCK 195.3.145.105 (Type: outgoing, Port: 56816, Process: firefox.exe)
18:06:40 Cmack IP-BLOCK 91.213.29.63 (Type: outgoing, Port: 57131, Process: firefox.exe)
18:10:24 Cmack IP-BLOCK 195.3.145.105 (Type: outgoing, Port: 57141, Process: firefox.exe)
18:16:33 Cmack IP-BLOCK 188.95.52.161 (Type: outgoing, Port: 58315, Process: firefox.exe)
18:16:33 Cmack IP-BLOCK 91.213.29.63 (Type: outgoing, Port: 58316, Process: firefox.exe)
18:19:45 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 58664, Process: svchost.exe)
18:19:45 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 58665, Process: svchost.exe)
18:26:33 Cmack IP-BLOCK 188.95.52.162 (Type: outgoing, Port: 59259, Process: firefox.exe)
18:32:26 Cmack IP-BLOCK 195.3.145.105 (Type: outgoing, Port: 59396, Process: firefox.exe)
18:36:34 Cmack IP-BLOCK 193.218.156.42 (Type: outgoing, Port: 59627, Process: firefox.exe)
18:36:34 Cmack IP-BLOCK 188.229.90.136 (Type: outgoing, Port: 59628, Process: firefox.exe)
18:36:42 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 59641, Process: svchost.exe)
18:36:42 Cmack IP-BLOCK 208.87.32.75 (Type: outgoing, Port: 59642, Process: svchost.exe)
18:44:26 Cmack IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 60229, Process: svchost.exe)
18:46:35 Cmack IP-BLOCK 193.218.156.42 (Type: outgoing, Port: 60510, Process: firefox.exe)
18:46:35 Cmack IP-BLOCK 188.229.90.137 (Type: outgoing, Port: 60511, Process: firefox.exe)
18:50:52 Cmack IP-BLOCK 195.3.145.105 (Type: outgoing, Port: 60809, Process: firefox.exe)
20:03:01 Cmack MESSAGE Protection started successfully
20:03:05 Cmack MESSAGE IP Protection started successfully
20:06:25 Cmack IP-BLOCK 195.3.145.105 (Type: outgoing, Port: 49255, Process: firefox.exe)
20:07:29 Cmack IP-BLOCK 195.3.145.184 (Type: outgoing, Port: 49264, Process: firefox.exe)
20:07:53 Cmack IP-BLOCK 195.3.145.184 (Type: outgoing, Port: 49268, Process: firefox.exe)
20:08:17 Cmack IP-BLOCK 195.3.145.184 (Type: outgoing, Port: 49273, Process: firefox.exe)
20:11:06 Cmack IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 49390, Process: svchost.exe)
20:12:02 Cmack IP-BLOCK 67.29.139.153 (Type: outgoing, Port: 49522, Process: svchost.exe)
20:12:18 Cmack IP-BLOCK 208.73.210.29 (Type: outgoing, Port: 49527, Process: svchost.exe)
20:13:22 Cmack IP-BLOCK 91.213.29.63 (Type: outgoing, Port: 49576, Process: svchost.exe)
20:23:23 Cmack IP-BLOCK 188.95.52.161 (Type: outgoing, Port: 50274, Process: svchost.exe)
20:23:23 Cmack IP-BLOCK 91.213.29.63 (Type: outgoing, Port: 50275, Process: svchost.exe)
3. Ran tdsskiller.exe
2011/06/17 20:40:06.0817 2320 TDSS rootkit removing tool 2.5.5.0 Jun 16 2011 15:25:15
2011/06/17 20:40:06.0879 2320 ================================================================================
2011/06/17 20:40:06.0879 2320 SystemInfo:
2011/06/17 20:40:06.0879 2320
2011/06/17 20:40:06.0879 2320 OS Version: 6.0.6001 ServicePack: 1.0
2011/06/17 20:40:06.0879 2320 Product type: Workstation
2011/06/17 20:40:06.0879 2320 ComputerName: LAPPY-L
2011/06/17 20:40:06.0879 2320 UserName: Cmack
2011/06/17 20:40:06.0879 2320 Windows directory: C:\Windows
2011/06/17 20:40:06.0879 2320 System windows directory: C:\Windows
2011/06/17 20:40:06.0879 2320 Processor architecture: Intel x86
2011/06/17 20:40:06.0879 2320 Number of processors: 2
2011/06/17 20:40:06.0879 2320 Page size: 0x1000
2011/06/17 20:40:06.0879 2320 Boot type: Normal boot
2011/06/17 20:40:06.0879 2320 ================================================================================
2011/06/17 20:40:07.0566 2320 Initialize success
2011/06/17 20:40:20.0295 5700 ================================================================================
2011/06/17 20:40:20.0295 5700 Scan started
2011/06/17 20:40:20.0295 5700 Mode: Manual;
2011/06/17 20:40:20.0295 5700 ================================================================================
2011/06/17 20:40:20.0872 5700 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
2011/06/17 20:40:21.0028 5700 ACPIVPC (3af8037a2922e5f4be02d8078fee0055) C:\Windows\system32\DRIVERS\AcpiVpc.sys
2011/06/17 20:40:21.0153 5700 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
2011/06/17 20:40:21.0200 5700 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
2011/06/17 20:40:21.0247 5700 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
2011/06/17 20:40:21.0278 5700 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
2011/06/17 20:40:21.0340 5700 AFD (763e172a55177e478cb419f88fd0ba03) C:\Windows\system32\drivers\afd.sys
2011/06/17 20:40:21.0387 5700 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
2011/06/17 20:40:21.0434 5700 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
2011/06/17 20:40:21.0465 5700 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
2011/06/17 20:40:21.0496 5700 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
2011/06/17 20:40:21.0543 5700 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
2011/06/17 20:40:21.0621 5700 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
2011/06/17 20:40:21.0684 5700 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\drivers\amdk8.sys
2011/06/17 20:40:21.0715 5700 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
2011/06/17 20:40:21.0762 5700 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
2011/06/17 20:40:21.0808 5700 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
2011/06/17 20:40:21.0855 5700 atapi (9c0e70031905adbf94edb9ea14af943b) C:\Windows\system32\drivers\atapi.sys
2011/06/17 20:40:22.0011 5700 AVGIDSDriver (97824e8c95d9717777abd46a7b632310) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
2011/06/17 20:40:22.0074 5700 AVGIDSEH (c59c9bc3f0612bd207ccdc5d8cb9ce39) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
2011/06/17 20:40:22.0120 5700 AVGIDSFilter (c5559de2ec66cede15a1664f6d183d8e) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
2011/06/17 20:40:22.0167 5700 AVGIDSShim (ae5e9667fa40206796d1bd5bd0427a8a) C:\Windows\system32\DRIVERS\AVGIDSShim.Sys
2011/06/17 20:40:22.0245 5700 Avgldx86 (4e796d3d2c3182b13b3e3b5a2ad4ef0a) C:\Windows\system32\DRIVERS\avgldx86.sys
2011/06/17 20:40:22.0339 5700 Avgmfx86 (5639de66b37d02bd22df4cf3155fba60) C:\Windows\system32\DRIVERS\avgmfx86.sys
2011/06/17 20:40:22.0386 5700 Avgrkx86 (d1baf652eda0ae70896276a1fb32c2d4) C:\Windows\system32\DRIVERS\avgrkx86.sys
2011/06/17 20:40:22.0448 5700 Avgtdix (aaf0ebcad95f2164cffb544e00392498) C:\Windows\system32\DRIVERS\avgtdix.sys
2011/06/17 20:40:22.0573 5700 b57nd60x (502f1c30bd50b32d00ce4dcaecc3d3c7) C:\Windows\system32\DRIVERS\b57nd60x.sys
2011/06/17 20:40:22.0760 5700 BazisVirtualCDBus (33ac10402622b7e92ca44075f1bec94b) C:\Windows\system32\DRIVERS\BazisVirtualCDBus.sys
2011/06/17 20:40:22.0963 5700 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
2011/06/17 20:40:23.0088 5700 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
2011/06/17 20:40:23.0166 5700 bowser (74b442b2be1260b7588c136177ceac66) C:\Windows\system32\DRIVERS\bowser.sys
2011/06/17 20:40:23.0197 5700 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
2011/06/17 20:40:23.0228 5700 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
2011/06/17 20:40:23.0275 5700 Bridge (72df06d26ae4ced2e08f428b96302b0e) C:\Windows\system32\DRIVERS\bridge.sys
2011/06/17 20:40:23.0306 5700 BridgeMP (72df06d26ae4ced2e08f428b96302b0e) C:\Windows\system32\DRIVERS\bridge.sys
2011/06/17 20:40:23.0353 5700 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
2011/06/17 20:40:23.0400 5700 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
2011/06/17 20:40:23.0462 5700 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
2011/06/17 20:40:23.0493 5700 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
2011/06/17 20:40:23.0587 5700 BthEnum (cce53afc28347cc18ea139972e5b5e5a) C:\Windows\system32\DRIVERS\BthEnum.sys
2011/06/17 20:40:23.0649 5700 BTHMODEM (5ffa6988ff9597986ff2ada736cc90c0) C:\Windows\system32\DRIVERS\bthmodem.sys
2011/06/17 20:40:23.0758 5700 BthPan (5904efa25f829bf84ea6fb045134a1d8) C:\Windows\system32\DRIVERS\bthpan.sys
2011/06/17 20:40:23.0821 5700 BTHPORT (ac8a1689d5efc4d214201155a78d8f4b) C:\Windows\system32\Drivers\BTHport.sys
2011/06/17 20:40:23.0868 5700 BTHUSB (288c1f74e3e2eed6c7b54eb3aac70856) C:\Windows\system32\Drivers\BTHUSB.sys
2011/06/17 20:40:23.0977 5700 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
2011/06/17 20:40:24.0008 5700 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
2011/06/17 20:40:24.0055 5700 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
2011/06/17 20:40:24.0133 5700 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
2011/06/17 20:40:24.0258 5700 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
2011/06/17 20:40:24.0289 5700 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
2011/06/17 20:40:24.0336 5700 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
2011/06/17 20:40:24.0351 5700 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
2011/06/17 20:40:24.0414 5700 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
2011/06/17 20:40:24.0507 5700 DfsC (9e635ae5e8ad93e2b5989e2e23679f97) C:\Windows\system32\Drivers\dfsc.sys
2011/06/17 20:40:24.0570 5700 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
2011/06/17 20:40:24.0648 5700 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
2011/06/17 20:40:24.0726 5700 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
2011/06/17 20:40:24.0819 5700 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
2011/06/17 20:40:24.0897 5700 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
2011/06/17 20:40:25.0006 5700 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
2011/06/17 20:40:25.0116 5700 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
2011/06/17 20:40:25.0194 5700 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
2011/06/17 20:40:25.0240 5700 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
2011/06/17 20:40:25.0287 5700 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
2011/06/17 20:40:25.0318 5700 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
2011/06/17 20:40:25.0350 5700 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
2011/06/17 20:40:25.0428 5700 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
2011/06/17 20:40:25.0459 5700 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
2011/06/17 20:40:25.0490 5700 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
2011/06/17 20:40:25.0537 5700 funfrm (f923fdea75675f5c2cc55d01e0fd2891) C:\Windows\system32\drivers\funfrm.sys
2011/06/17 20:40:25.0599 5700 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
2011/06/17 20:40:25.0693 5700 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
2011/06/17 20:40:25.0724 5700 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
2011/06/17 20:40:25.0771 5700 HidBth (2fe6ef94b64d2da60f400eb643086220) C:\Windows\system32\DRIVERS\hidbth.sys
2011/06/17 20:40:25.0802 5700 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
2011/06/17 20:40:25.0849 5700 HidUsb (e2b5bd48afcc0f0974fb44641b223250) C:\Windows\system32\DRIVERS\hidusb.sys
2011/06/17 20:40:25.0880 5700 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
2011/06/17 20:40:26.0005 5700 HTTP (406c027c18e98a396faa1963dad5ff70) C:\Windows\system32\drivers\HTTP.sys
2011/06/17 20:40:26.0098 5700 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
2011/06/17 20:40:26.0145 5700 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
2011/06/17 20:40:26.0208 5700 iaStor (baabb0301949774a66b955c65319635a) C:\Windows\system32\DRIVERS\iaStor.sys
2011/06/17 20:40:26.0379 5700 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
2011/06/17 20:40:26.0582 5700 igfx (0391268713612372e4e0eceaadad41d5) C:\Windows\system32\DRIVERS\igdkmd32.sys
2011/06/17 20:40:26.0816 5700 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
2011/06/17 20:40:26.0941 5700 IntcAzAudAddService (2790cc09422b6bedae9825ae289e9bb7) C:\Windows\system32\drivers\RTKVHDA.sys
2011/06/17 20:40:27.0128 5700 IntcHdmiAddService (092a78e9c6f71bf0e22379503b90e800) C:\Windows\system32\drivers\IntcHdmi.sys
2011/06/17 20:40:27.0190 5700 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
2011/06/17 20:40:27.0222 5700 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
2011/06/17 20:40:27.0253 5700 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
2011/06/17 20:40:27.0378 5700 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
2011/06/17 20:40:27.0409 5700 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
2011/06/17 20:40:27.0440 5700 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
2011/06/17 20:40:27.0471 5700 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
2011/06/17 20:40:27.0502 5700 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
2011/06/17 20:40:27.0518 5700 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
2011/06/17 20:40:27.0549 5700 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
2011/06/17 20:40:27.0580 5700 JMCR (ab772e9cc29c29f59cb4b75f9d6f3f96) C:\Windows\system32\DRIVERS\jmcr.sys
2011/06/17 20:40:27.0643 5700 k57nd60x (e1d7dcbb8811f8be7784046d4dd3a837) C:\Windows\system32\DRIVERS\k57nd60x.sys
2011/06/17 20:40:27.0690 5700 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
2011/06/17 20:40:27.0721 5700 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
2011/06/17 20:40:27.0768 5700 KSecDD (5367dc846cae9639b899bfd13b97a8c9) C:\Windows\system32\Drivers\ksecdd.sys
2011/06/17 20:40:27.0814 5700 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
2011/06/17 20:40:27.0861 5700 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
2011/06/17 20:40:27.0924 5700 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
2011/06/17 20:40:28.0048 5700 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
2011/06/17 20:40:28.0080 5700 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
2011/06/17 20:40:28.0158 5700 MBAMProtector (3d2c13377763eeac0ca6fb46f57217ed) C:\Windows\system32\drivers\mbam.sys
2011/06/17 20:40:28.0189 5700 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
2011/06/17 20:40:28.0236 5700 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
2011/06/17 20:40:28.0298 5700 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
2011/06/17 20:40:28.0329 5700 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
2011/06/17 20:40:28.0485 5700 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
2011/06/17 20:40:28.0516 5700 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
2011/06/17 20:40:28.0548 5700 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
2011/06/17 20:40:28.0594 5700 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
2011/06/17 20:40:28.0626 5700 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
2011/06/17 20:40:28.0657 5700 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
2011/06/17 20:40:28.0688 5700 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
2011/06/17 20:40:28.0735 5700 mrxsmb (c4ad205530888404e2b5fc8d9319b119) C:\Windows\system32\DRIVERS\mrxsmb.sys
2011/06/17 20:40:28.0750 5700 mrxsmb10 (0a986b34f1678a2697574d7b1664e2dd) C:\Windows\system32\DRIVERS\mrxsmb10.sys
2011/06/17 20:40:28.0797 5700 mrxsmb20 (3268b8c3fa92bfc086355c39b45e9cc9) C:\Windows\system32\DRIVERS\mrxsmb20.sys
2011/06/17 20:40:28.0860 5700 msahci (aa305cff241da187bd5077de4a2a043d) C:\Windows\system32\drivers\msahci.sys
2011/06/17 20:40:28.0891 5700 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
2011/06/17 20:40:28.0922 5700 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
2011/06/17 20:40:28.0969 5700 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
2011/06/17 20:40:29.0047 5700 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
2011/06/17 20:40:29.0078 5700 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
2011/06/17 20:40:29.0125 5700 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
2011/06/17 20:40:29.0156 5700 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
2011/06/17 20:40:29.0187 5700 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
2011/06/17 20:40:29.0250 5700 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
2011/06/17 20:40:29.0296 5700 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
2011/06/17 20:40:29.0343 5700 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
2011/06/17 20:40:29.0374 5700 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
2011/06/17 20:40:29.0406 5700 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
2011/06/17 20:40:29.0437 5700 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
2011/06/17 20:40:29.0468 5700 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
2011/06/17 20:40:29.0484 5700 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
2011/06/17 20:40:29.0499 5700 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
2011/06/17 20:40:29.0530 5700 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
2011/06/17 20:40:29.0702 5700 NETw5v32 (ba420e8ebfcad35581fe8e4c64f71469) C:\Windows\system32\DRIVERS\NETw5v32.sys
2011/06/17 20:40:29.0811 5700 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
2011/06/17 20:40:29.0858 5700 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
2011/06/17 20:40:29.0889 5700 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
2011/06/17 20:40:29.0936 5700 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
2011/06/17 20:40:30.0014 5700 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
2011/06/17 20:40:30.0045 5700 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
2011/06/17 20:40:30.0076 5700 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
2011/06/17 20:40:30.0108 5700 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
2011/06/17 20:40:30.0139 5700 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
2011/06/17 20:40:30.0217 5700 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
2011/06/17 20:40:30.0264 5700 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
2011/06/17 20:40:30.0279 5700 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
2011/06/17 20:40:30.0310 5700 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
2011/06/17 20:40:30.0342 5700 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
2011/06/17 20:40:30.0373 5700 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
2011/06/17 20:40:30.0420 5700 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
2011/06/17 20:40:30.0482 5700 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
2011/06/17 20:40:30.0669 5700 pneteth (088335b06f75adbcbb81575c7cae6c43) C:\Windows\system32\DRIVERS\pneteth.sys
2011/06/17 20:40:30.0732 5700 pnetmdm (da19e3401f39c10df193be029c7e7bba) C:\Windows\system32\DRIVERS\pnetmdm.sys
2011/06/17 20:40:30.0794 5700 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
2011/06/17 20:40:30.0825 5700 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
2011/06/17 20:40:30.0888 5700 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
2011/06/17 20:40:30.0981 5700 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
2011/06/17 20:40:31.0090 5700 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
2011/06/17 20:40:31.0122 5700 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
2011/06/17 20:40:31.0137 5700 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
2011/06/17 20:40:31.0168 5700 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
2011/06/17 20:40:31.0215 5700 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
2011/06/17 20:40:31.0246 5700 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
2011/06/17 20:40:31.0278 5700 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
2011/06/17 20:40:31.0293 5700 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
2011/06/17 20:40:31.0340 5700 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
2011/06/17 20:40:31.0356 5700 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
2011/06/17 20:40:31.0402 5700 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
2011/06/17 20:40:31.0480 5700 RFCOMM (23f486726da7a9b2f3ec7326421a9c36) C:\Windows\system32\DRIVERS\rfcomm.sys
2011/06/17 20:40:31.0527 5700 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
2011/06/17 20:40:31.0590 5700 RsFx0150 (a95840a95a9ff74b0009e5d848cddb39) C:\Windows\system32\DRIVERS\RsFx0150.sys
2011/06/17 20:40:31.0636 5700 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
2011/06/17 20:40:31.0668 5700 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
2011/06/17 20:40:31.0761 5700 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
2011/06/17 20:40:31.0792 5700 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
2011/06/17 20:40:31.0839 5700 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
2011/06/17 20:40:31.0870 5700 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
2011/06/17 20:40:31.0902 5700 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
2011/06/17 20:40:31.0964 5700 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
2011/06/17 20:40:32.0011 5700 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
2011/06/17 20:40:32.0089 5700 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
2011/06/17 20:40:32.0120 5700 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
2011/06/17 20:40:32.0151 5700 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
2011/06/17 20:40:32.0182 5700 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
2011/06/17 20:40:32.0214 5700 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
2011/06/17 20:40:32.0260 5700 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
2011/06/17 20:40:32.0338 5700 smserial (c8a58fc905c9184fa70e37f71060c64d) C:\Windows\system32\DRIVERS\smserial.sys
2011/06/17 20:40:32.0463 5700 SNP2UVC (72b66a2e3f13cb05383149e50c186857) C:\Windows\system32\DRIVERS\snp2uvc.sys
2011/06/17 20:40:32.0526 5700 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
2011/06/17 20:40:32.0604 5700 srv (ce5e5d07bcda842d3f417a8333f91440) C:\Windows\system32\DRIVERS\srv.sys
2011/06/17 20:40:32.0650 5700 srv2 (805fac010405ad3f82ef8df0bb035d81) C:\Windows\system32\DRIVERS\srv2.sys
2011/06/17 20:40:32.0697 5700 srvnet (f63a0a58aafe34d7a1a0a74abccdd9c0) C:\Windows\system32\DRIVERS\srvnet.sys
2011/06/17 20:40:32.0744 5700 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
2011/06/17 20:40:32.0775 5700 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
2011/06/17 20:40:32.0806 5700 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
2011/06/17 20:40:32.0822 5700 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
2011/06/17 20:40:32.0869 5700 SynTP (a4ee086cb6c3c56e1d95863979a35bb0) C:\Windows\system32\DRIVERS\SynTP.sys
2011/06/17 20:40:32.0978 5700 Tcpip (82e266bee5f0167e41c6ecfdd2a79c02) C:\Windows\system32\drivers\tcpip.sys
2011/06/17 20:40:33.0103 5700 Tcpip6 (82e266bee5f0167e41c6ecfdd2a79c02) C:\Windows\system32\DRIVERS\tcpip.sys
2011/06/17 20:40:33.0150 5700 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
2011/06/17 20:40:33.0181 5700 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
2011/06/17 20:40:33.0196 5700 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
2011/06/17 20:40:33.0228 5700 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
2011/06/17 20:40:33.0243 5700 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
2011/06/17 20:40:33.0306 5700 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
2011/06/17 20:40:33.0352 5700 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
2011/06/17 20:40:33.0384 5700 tunnel (119b8184e106baedc83fce5ddf3950da) C:\Windows\system32\DRIVERS\tunnel.sys
2011/06/17 20:40:33.0430 5700 tvtumon (3385d48304443d0ee42af5dbf89634b6) C:\Windows\system32\DRIVERS\tvtumon.sys
2011/06/17 20:40:33.0462 5700 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
2011/06/17 20:40:33.0493 5700 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
2011/06/17 20:40:33.0540 5700 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
2011/06/17 20:40:33.0571 5700 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
2011/06/17 20:40:33.0618 5700 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
2011/06/17 20:40:33.0633 5700 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
2011/06/17 20:40:33.0664 5700 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
2011/06/17 20:40:33.0711 5700 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
2011/06/17 20:40:33.0742 5700 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
2011/06/17 20:40:33.0789 5700 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
2011/06/17 20:40:33.0820 5700 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
2011/06/17 20:40:33.0867 5700 usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
2011/06/17 20:40:33.0914 5700 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
2011/06/17 20:40:33.0976 5700 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
2011/06/17 20:40:34.0023 5700 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
2011/06/17 20:40:34.0132 5700 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
2011/06/17 20:40:34.0195 5700 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
2011/06/17 20:40:34.0210 5700 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
2011/06/17 20:40:34.0257 5700 vhidmini (8e969805420e8a28822d539327ce8fff) C:\Windows\system32\DRIVERS\ITEhidCIR.sys
2011/06/17 20:40:34.0288 5700 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
2011/06/17 20:40:34.0320 5700 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
2011/06/17 20:40:34.0351 5700 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
2011/06/17 20:40:34.0382 5700 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
2011/06/17 20:40:34.0413 5700 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
2011/06/17 20:40:34.0444 5700 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
2011/06/17 20:40:34.0476 5700 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
2011/06/17 20:40:34.0522 5700 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
2011/06/17 20:40:34.0554 5700 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/06/17 20:40:34.0569 5700 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
2011/06/17 20:40:34.0616 5700 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
2011/06/17 20:40:34.0678 5700 WDC_SAM (d6efaf429fd30c5df613d220e344cce7) C:\Windows\system32\DRIVERS\wdcsam.sys
2011/06/17 20:40:34.0710 5700 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
2011/06/17 20:40:34.0788 5700 Wdkbdmou (36f2beda08b629cd3a1f7805d1f90378) C:\Windows\system32\DRIVERS\Wdkbdmou.sys
2011/06/17 20:40:34.0819 5700 wdmirror (c1043a2336625dff9f48b9953a2f7291) C:\Windows\system32\DRIVERS\WDMirror.sys
2011/06/17 20:40:34.0881 5700 WimFltr (f9ad3a5e3fd7e0bdb18b8202b0fdd4e4) C:\Windows\system32\DRIVERS\wimfltr.sys
2011/06/17 20:40:34.0959 5700 WinUSB (f03110711b17ad31271cb2baf0dbb2b1) C:\Windows\system32\DRIVERS\WinUSB.sys
2011/06/17 20:40:35.0022 5700 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
2011/06/17 20:40:35.0115 5700 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
2011/06/17 20:40:35.0146 5700 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
2011/06/17 20:40:35.0209 5700 WSVD (5d0a08ebf9660e07865907fb1ab022b5) C:\Windows\system32\drivers\WSVD.sys
2011/06/17 20:40:35.0240 5700 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
2011/06/17 20:40:35.0302 5700 MBR (0x1B8) (04d4350ae5fb6fc2ad3e7c26b1323c68) \Device\Harddisk0\DR0
2011/06/17 20:40:35.0302 5700 \Device\Harddisk0\DR0 - detected Rootkit.Win32.TDSS.tdl4 (0)
2011/06/17 20:40:35.0318 5700 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR1
2011/06/17 20:40:35.0349 5700 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk2\DR2
2011/06/17 20:40:35.0365 5700 ================================================================================
2011/06/17 20:40:35.0365 5700 Scan finished
2011/06/17 20:40:35.0365 5700 ================================================================================
2011/06/17 20:40:35.0380 6060 Detected object count: 1
2011/06/17 20:40:35.0380 6060 Actual detected object count: 1
2011/06/17 20:40:52.0322 6060 \Device\Harddisk0\DR0 (Rootkit.Win32.TDSS.tdl4) - will be cured after reboot
2011/06/17 20:40:52.0322 6060 \Device\Harddisk0\DR0 - ok
2011/06/17 20:40:52.0322 6060 Rootkit.Win32.TDSS.tdl4(\Device\Harddisk0\DR0) - User select action: Cure
2011/06/17 20:41:06.0939 1424 Deinitialize success
4. Ran GMER
GMER 1.0.15.15640 -
http://www.gmer.netRootkit scan 2011-06-17 21:19:46
Windows 6.0.6001 Service Pack 1 Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1 WDC_WD25 rev.11.0
Running: 28vhkfi0.exe; Driver: C:\Users\Cmack\AppData\Local\Temp\fgldapoc.sys
---- System - GMER 1.0.15 ----
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwOpenProcess [0xACE8C7A0]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwTerminateProcess [0xACE8C848]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwTerminateThread [0xACE8C8E4]
SSDT \SystemRoot\system32\DRIVERS\AVGIDSShim.Sys (IDS Application Activity Monitor Loader Driver./AVG Technologies CZ, s.r.o. ) ZwWriteVirtualMemory [0xACE8C980]
---- Kernel code sections - GMER 1.0.15 ----
.text ntkrnlpa.exe!KeSetTimerEx + 624 826C4BE8 4 Bytes [A0, C7, E8, AC]
.text ntkrnlpa.exe!KeSetTimerEx + 854 826C4E18 8 Bytes [48, C8, E8, AC, E4, C8, E8, ...]
.text ntkrnlpa.exe!KeSetTimerEx + 8B4 826C4E78 4 Bytes [80, C9, E8, AC] {OR CL, 0xe8; LODSB }
---- Devices - GMER 1.0.15 ----
AttachedDevice \FileSystem\Ntfs \Ntfs tvtumon.sys (Windows Update Monitor Driver/Lenovo)
AttachedDevice \FileSystem\Ntfs \Ntfs AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
AttachedDevice \Driver\kbdclass \Device\KeyboardClass0 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)
AttachedDevice \Driver\kbdclass \Device\KeyboardClass1 Wdf01000.sys (WDF Dynamic/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Tcp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
Device \Driver\BTHUSB \Device\00000088 bthport.sys (Bluetooth Bus Driver/Microsoft Corporation)
AttachedDevice \Driver\tdx \Device\Udp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \Driver\tdx \Device\RawIp avgtdix.sys (AVG Network connection watcher/AVG Technologies CZ, s.r.o.)
AttachedDevice \FileSystem\fastfat \Fat fltmgr.sys (Microsoft Filesystem Filter Manager/Microsoft Corporation)
AttachedDevice \FileSystem\fastfat \Fat tvtumon.sys (Windows Update Monitor Driver/Lenovo)
AttachedDevice \FileSystem\fastfat \Fat AVGIDSFilter.Sys (IDS Application Activity Monitor Filter Driver./AVG Technologies CZ, s.r.o. )
---- Registry - GMER 1.0.15 ----
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000272a0ee8b
Reg HKLM\SYSTEM\CurrentControlSet\Services\BTHPORT\Parameters\Keys\000272a0ee8b@c0e422215413 0x8C 0x96 0xD4 0x00 ...
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000272a0ee8b (not active ControlSet)
Reg HKLM\SYSTEM\ControlSet002\Services\BTHPORT\Parameters\Keys\000272a0ee8b@c0e422215413 0x8C 0x96 0xD4 0x00 ...
---- EOF - GMER 1.0.15 ----