Здравствуйте!
Помимо темы сообщения вирус умудрился снести MSEssentials. Regedit только в безопасном режиме.
Спасибо!
Здравствуйте!
Помимо темы сообщения вирус умудрился снести MSEssentials. Regedit только в безопасном режиме.
Спасибо!
Уважаемый(ая) Кирилл Косинский, спасибо за обращение на наш форум!
Удаление вирусов - абсолютно бесплатная услуга на VirusInfo.Info. Хелперы в самое ближайшее время ответят на Ваш запрос. Для оказания помощи необходимо предоставить логи сканирования утилитами АВЗ и HiJackThis, подробнее можно прочитать в правилах оформления запроса о помощи.
Если наш сайт окажется полезен Вам и у Вас будет такая возможность - пожалуйста поддержите проект.
Внимание! Рекомендации написаны специально для этого пользователя. Если рекомендации написаны не для вас, не используйте их - это может повредить вашей системе.
Если у вас похожая проблема - создайте тему в разделе Лечение компьютерных вирусов и выполните Правила оформления запроса о помощи.
Здравствуйте!
Закройте все программы, временно выгрузите антивирус, файрволл и прочее защитное ПО.
Важно! на Windows Vista/7/8 AVZ запускайте через контекстное меню проводника от имени Администратора. Выполните скрипт в АВЗ (Файл - Выполнить скрипт):
Внимание! Будет выполнена перезагрузка компьютера. После перезагрузки компьютера выполните скрипт в АВЗ:Код:begin ShowMessage('Внимание! Перед выполнением скрипта AVZ автоматически закроет все сетевые подключения.'+#13#10+'После перезагрузки компьютера подключения к сети будут восстановлены в автоматическом режиме.'); ExecuteFile('net.exe', 'stop tcpip /y', 0, 15000, true); if not IsWOW64 then begin SearchRootkit(true, true); SetAVZGuardStatus(true); end; ClearQuarantine; QuarantineFile('C:\WINDOWS\Temp:1:$DATA',''); QuarantineFile('C:\Documents and Settings\Admin\Application Data\taskhost.exe',''); DeleteFile('C:\Documents and Settings\Admin\Application Data\taskhost.exe','32'); DeleteFile('C:\WINDOWS\Temp:1:$DATA','32'); RegKeyDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\Taskhost'); RegKeyDel('HKEY_LOCAL_MACHINE','SOFTWARE\Microsoft\Shared Tools\MSConfig\startupreg\mobilegeni daemon'); BC_ImportAll; ExecuteSysClean; BC_Activate; ExecuteRepair(13); RebootWindows(false); end.
Пришлите карантин согласно Приложения 2 правил по красной ссылке Прислать запрошенный карантин вверху темыКод:begin CreateQurantineArchive(GetAVZDirectory+'quarantine.zip'); end.
Сделайте повторные логи по правилам п.2 и 3 раздела Диагностика.(virusinfo_syscheck.zip;hijackthis.log)
Скачайте Farbar Recovery Scan Tool и сохраните на Рабочем столе.
Примечание: необходимо выбрать версию, совместимую с Вашей операционной системой. Если Вы не уверены, какая версия подойдет для Вашей системы, скачайте обе и попробуйте запустить. Только одна из них запустится на Вашей системе.
- Запустите программу двойным щелчком. Когда программа запустится, нажмите Yes для соглашения с предупреждением.
- Убедитесь, что под окном Optional Scan отмечены "List BCD", "Driver MD5" и "90 Days Files".
- Нажмите кнопку Scan.
- После окончания сканирования будет создан отчет (FRST.txt) в той же папке, откуда была запущена программа. Пожалуйста, прикрепите отчет в следующем сообщении.
- Если программа была запущена в первый раз, будет создан отчет (Addition.txt). Пожалуйста, прикрепите его в следующем сообщении.
Инструкции выполняются в том порядке, в котором они вам даны.
А вы совершаете эти 4 ошибки на форумах? Оставить отзыв Обучение на VirusInfo
Защита от неизвестных троянцев-шифровальщиков => FixSecurity, Kaspersky Anti-Ransomware Tool
Интересный блог Андрея Иванова по шифровальщикам
Антивирус на 30 дней => https://clck.ru/FKsBt
Пожалуйста.
Сайт фарбара до выполнения скрипта тоже был заблокирован, теперь выполняется.
- Скопируйте приведенный ниже текст в Блокнот и сохраните файл как fixlist.txt в ту же папку откуда была запущена утилита Farbar Recovery Scan Tool:
Код:CreateRestorePoint: CloseProcesses: IFEO\Adaware_Installer.exe: [Debugger] msiexec.exe IFEO\autoruns.exe: [Debugger] msiexec.exe IFEO\autorunsc.exe: [Debugger] msiexec.exe IFEO\avast_free_antivirus_setup_online.exe: [Debugger] msiexec.exe IFEO\avast_internet_security_setup.exe: [Debugger] msiexec.exe IFEO\avast_internet_security_setup_online.exe: [Debugger] msiexec.exe IFEO\avast_premier_antivirus_setup_online.exe: [Debugger] msiexec.exe IFEO\avira_family_protection_suite_ru.exe: [Debugger] msiexec.exe IFEO\avira_ultimate_protection_suite_ru.exe: [Debugger] msiexec.exe IFEO\BavPro_Setup_Mini_GL.exe: [Debugger] msiexec.exe IFEO\bitdefender_tsecurity.exe: [Debugger] msiexec.exe IFEO\BullGuardDownloaderBPP.exe: [Debugger] msiexec.exe IFEO\cispremium_installer.exe: [Debugger] msiexec.exe IFEO\ClamAVSetup.exe: [Debugger] msiexec.exe IFEO\cureit.exe: [Debugger] msiexec.exe IFEO\drweb-900-win-space.exe: [Debugger] msiexec.exe IFEO\drweb-900-win.exe: [Debugger] msiexec.exe IFEO\EmsisoftEmergencyKit.exe: [Debugger] msiexec.exe IFEO\EmsisoftInternetSecuritySetup.exe: [Debugger] msiexec.exe IFEO\ess_trial32_rus.exe: [Debugger] msiexec.exe IFEO\F-SecureNetworkInstallerUpg.exe: [Debugger] msiexec.exe IFEO\F-SecureNetworkInstaller_IS-ESTORE-TRIAL-GLOBAL_.exe: [Debugger] msiexec.exe IFEO\HijackThis.exe: [Debugger] msiexec.exe IFEO\HousecallLauncher.exe: [Debugger] msiexec.exe IFEO\K7UltimateSecurity_installer.exe: [Debugger] msiexec.exe IFEO\McAfeeSetup.exe: [Debugger] msiexec.exe IFEO\md_setup_en.exe: [Debugger] msiexec.exe IFEO\OnlineArmorSetup.exe: [Debugger] msiexec.exe IFEO\OutpostSecuritySuiteProInstall.exe: [Debugger] msiexec.exe IFEO\OutpostSecuritySuiteProInstall_x64.exe: [Debugger] msiexec.exe IFEO\PadvishAntivirusFree.exe: [Debugger] msiexec.exe IFEO\PandaCloudAntivirus.exe: [Debugger] msiexec.exe IFEO\ProcessHacker.exe: [Debugger] msiexec.exe IFEO\procexp.exe: [Debugger] msiexec.exe IFEO\PSafeAntivirusSetup.exe: [Debugger] msiexec.exe IFEO\registry-life-setup.exe: [Debugger] msiexec.exe IFEO\SandboxieInstall.exe: [Debugger] msiexec.exe IFEO\SecurityScan_Release.exe: [Debugger] msiexec.exe IFEO\setup-vipre-internet-security-en-us-trial.exe: [Debugger] msiexec.exe IFEO\SoftonicDownloader_for_panda-antivirus-pro.exe: [Debugger] msiexec.exe IFEO\SpyShelter.exe: [Debugger] msiexec.exe IFEO\stop-sign_install.exe: [Debugger] msiexec.exe IFEO\TrojanHunterSetup.exe: [Debugger] msiexec.exe IFEO\UnThreatProSetup.exe: [Debugger] msiexec.exe IFEO\Vba32.Vista.exe: [Debugger] msiexec.exe IFEO\Wireshark.exe: [Debugger] msiexec.exe BootExecute: autocheck autochk * C:\WINDOWS\Temp:1 Toolbar: HKU\S-1-5-21-448539723-854245398-682003330-500 -> No Name - {09900DE8-1DCA-443F-9243-26FF581438AF} - No File CHR HKLM\...\Chrome\Extension: [cegdomhocaeoedbdpfolmgjkjaijfomo] - https://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [clpdgmdkdnijjbgmnajolnbnjejoeogm] - https://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [hcncjpganfocbfoenaemagjjopkkindp] - No Path Or update_url value CHR HKLM\...\Chrome\Extension: [jedelkhanefmcnpappfhachbpnlhomai] - https://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [jggbjbmnfmipgcanidamjfpechdeekoi] - https://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [nkcpopggjcjkiicpenikeogioednjeac] - C:\Documents and Settings\Admin\Local Settings\Temp\nkcpopggjcjkiicpenikeogioednjeac.crx [Not Found] U5 360AntiHacker; C:\Windows\System32\Drivers\360AntiHacker.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 360AvFlt; C:\Windows\System32\Drivers\360AvFlt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 360Box; C:\Windows\System32\Drivers\360Box.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 360Box64; C:\Windows\System32\Drivers\360Box64.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 360Camera; C:\Windows\System32\Drivers\360Camera.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 360fsflt; C:\Windows\System32\Drivers\360fsflt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 360SelfProtection; C:\Windows\System32\Drivers\360SelfProtection.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 ABndis; C:\Windows\System32\Drivers\ABndis.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 AFW; C:\Windows\System32\Drivers\AFW.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 afwcore; C:\Windows\System32\Drivers\afwcore.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 AhnFlt2K; C:\Windows\System32\Drivers\AhnFlt2K.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 AhnRec2K; C:\Windows\System32\Drivers\AhnRec2K.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 AhnRghNt; C:\Windows\System32\Drivers\AhnRghNt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 AhnSZE; C:\Windows\System32\Drivers\AhnSZE.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 ALE_NF; C:\Windows\System32\Drivers\ALE_NF.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 AMonLWLH; C:\Windows\System32\Drivers\AMonLWLH.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 AMonTDLH; C:\Windows\System32\Drivers\AMonTDLH.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 APPFLT; C:\Windows\System32\Drivers\APPFLT.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 arcawfp; C:\Windows\System32\Drivers\arcawfp.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswHwid; C:\Windows\System32\Drivers\aswHwid.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswMonFlt; C:\Windows\System32\Drivers\aswMonFlt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswNdis; C:\Windows\System32\Drivers\aswNdis.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswNdis2; C:\Windows\System32\Drivers\aswNdis2.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswNdisFlt; C:\Windows\System32\Drivers\aswNdisFlt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswRvrt; C:\Windows\System32\Drivers\aswRvrt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswSP; C:\Windows\System32\Drivers\aswSP.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswStm; C:\Windows\System32\Drivers\aswStm.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 aswVmm; C:\Windows\System32\Drivers\aswVmm.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 avasdmft; C:\Windows\System32\Drivers\avasdmft.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 avc3; C:\Windows\System32\Drivers\avc3.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 avchv; C:\Windows\System32\Drivers\avchv.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 avckf; C:\Windows\System32\Drivers\avckf.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgboota; C:\Windows\System32\Drivers\Avgboota.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgbootx; C:\Windows\System32\Drivers\Avgbootx.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgdiska; C:\Windows\System32\Drivers\Avgdiska.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgdiskx; C:\Windows\System32\Drivers\Avgdiskx.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgfwdx; C:\Windows\System32\Drivers\Avgfwdx.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 AVGIDSHA; C:\Windows\System32\Drivers\AVGIDSHA.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 AVGIDSHX; C:\Windows\System32\Drivers\AVGIDSHX.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgldx64; C:\Windows\System32\Drivers\Avgldx64.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgldx86; C:\Windows\System32\Drivers\Avgldx86.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgloga; C:\Windows\System32\Drivers\Avgloga.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avglogx; C:\Windows\System32\Drivers\Avglogx.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgmfx64; C:\Windows\System32\Drivers\Avgmfx64.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgmfx86; C:\Windows\System32\Drivers\Avgmfx86.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 avgntflt; C:\Windows\System32\Drivers\avgntflt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgrkx64; C:\Windows\System32\Drivers\Avgrkx64.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgrkx86; C:\Windows\System32\Drivers\Avgrkx86.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgtdia; C:\Windows\System32\Drivers\Avgtdia.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgtdix; C:\Windows\System32\Drivers\Avgtdix.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgwfpa; C:\Windows\System32\Drivers\Avgwfpa.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Avgwfpx; C:\Windows\System32\Drivers\Avgwfpx.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 avipbb; C:\Windows\System32\Drivers\avipbb.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 avkmgr; C:\Windows\System32\Drivers\avkmgr.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 avnetflt; C:\Windows\System32\Drivers\avnetflt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 BAPIDRV; C:\Windows\System32\Drivers\BAPIDRV.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Bcfilter; C:\Windows\System32\Drivers\Bcfilter.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bcfsrm; C:\Windows\System32\Drivers\bcfsrm.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bcftdi; C:\Windows\System32\Drivers\bcftdi.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bc_hash_f; C:\Windows\System32\Drivers\bc_hash_f.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bc_ip_f; C:\Windows\System32\Drivers\bc_ip_f.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bc_ngn; C:\Windows\System32\Drivers\bc_ngn.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bc_pat_f; C:\Windows\System32\Drivers\bc_pat_f.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bc_prt_f; C:\Windows\System32\Drivers\bc_prt_f.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bc_tdi_f; C:\Windows\System32\Drivers\bc_tdi_f.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 BdAgent; C:\Windows\System32\Drivers\BdAgent.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bdelam; C:\Windows\System32\Drivers\bdelam.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Bdfndisf; C:\Windows\System32\Drivers\Bdfndisf.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bdfsfltr; C:\Windows\System32\Drivers\bdfsfltr.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 BdNet; C:\Windows\System32\Drivers\BdNet.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 BDSandBox; C:\Windows\System32\Drivers\BDSandBox.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bdsflt; C:\Windows\System32\Drivers\bdsflt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 bdsnm; C:\Windows\System32\Drivers\bdsnm.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 BdSpy; C:\Windows\System32\Drivers\BdSpy.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 BDVEDISK; C:\Windows\System32\Drivers\BDVEDISK.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Bfilter; C:\Windows\System32\Drivers\Bfilter.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Bfmon; C:\Windows\System32\Drivers\Bfmon.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Bhbase; C:\Windows\System32\Drivers\Bhbase.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Bprotect; C:\Windows\System32\Drivers\Bprotect.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 BprotectEx; C:\Windows\System32\Drivers\BprotectEx.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 catflt; C:\Windows\System32\Drivers\catflt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 CdmDrvNt; C:\Windows\System32\Drivers\CdmDrvNt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 cfwids; C:\Windows\System32\Drivers\cfwids.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 cmderd; C:\Windows\System32\Drivers\cmderd.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 cmdGuard; C:\Windows\System32\Drivers\cmdGuard.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 cmdHlp; C:\Windows\System32\Drivers\cmdHlp.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 ComFiltr; C:\Windows\System32\Drivers\ComFiltr.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 DrWebLwf; C:\Windows\System32\Drivers\DrWebLwf.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 DSAFLT; C:\Windows\System32\Drivers\DSAFLT.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 DwProt; C:\Windows\System32\Drivers\DwProt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 eamon; C:\Windows\System32\Drivers\eamon.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 eamonm; C:\Windows\System32\Drivers\eamonm.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 econceal; C:\Windows\System32\Drivers\econceal.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 edevmon; C:\Windows\System32\Drivers\edevmon.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 EfiMon; C:\Windows\System32\Drivers\EfiMon.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 ehdrv; C:\Windows\System32\Drivers\ehdrv.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 epfw; C:\Windows\System32\Drivers\epfw.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 EpfwLWF; C:\Windows\System32\Drivers\EpfwLWF.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Epfwndis; C:\Windows\System32\Drivers\Epfwndis.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 epfwtdi; C:\Windows\System32\Drivers\epfwtdi.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 epfwwfp; C:\Windows\System32\Drivers\epfwwfp.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 epfwwfpr; C:\Windows\System32\Drivers\epfwwfpr.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 FNETMON; C:\Windows\System32\Drivers\FNETMON.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 FPAV_RTP; C:\Windows\System32\Drivers\FPAV_RTP.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 fsbts; C:\Windows\System32\Drivers\fsbts.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 FWCore; C:\Windows\System32\Drivers\FWCore.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 GDBehave; C:\Windows\System32\Drivers\GDBehave.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 GDNdisIc; C:\Windows\System32\Drivers\GDNdisIc.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 gfiark; C:\Windows\System32\Drivers\gfiark.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 gfiutil; C:\Windows\System32\Drivers\gfiutil.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 ggc; C:\Windows\System32\Drivers\ggc.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 gzflt; C:\Windows\System32\Drivers\gzflt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 HipShieldK; C:\Windows\System32\Drivers\HipShieldK.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 HookCentre; C:\Windows\System32\Drivers\HookCentre.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 HookPort; C:\Windows\System32\Drivers\HookPort.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 hooksys; C:\Windows\System32\Drivers\hooksys.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 HookTdi; C:\Windows\System32\Drivers\HookTdi.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 IDSFLT; C:\Windows\System32\Drivers\IDSFLT.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 inspect; C:\Windows\System32\Drivers\inspect.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 K7FWFilt; C:\Windows\System32\Drivers\K7FWFilt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 K7FWHlpr; C:\Windows\System32\Drivers\K7FWHlpr.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 K7Sentry; C:\Windows\System32\Drivers\K7Sentry.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 K7TdiHlp; C:\Windows\System32\Drivers\K7TdiHlp.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 kl1; C:\Windows\System32\Drivers\kl1.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 kldisk; C:\Windows\System32\Drivers\kldisk.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 klelam; C:\Windows\System32\Drivers\klelam.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 klflt; C:\Windows\System32\Drivers\klflt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 klhk; C:\Windows\System32\Drivers\klhk.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KLIF; C:\Windows\System32\Drivers\KLIF.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KLIM6; C:\Windows\System32\Drivers\KLIM6.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 klpd; C:\Windows\System32\Drivers\klpd.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 kltdi; C:\Windows\System32\Drivers\kltdi.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 klwfp; C:\Windows\System32\Drivers\klwfp.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 klwtp; C:\Windows\System32\Drivers\klwtp.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KmxAgent; C:\Windows\System32\Drivers\KmxAgent.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KmxAMRT; C:\Windows\System32\Drivers\KmxAMRT.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KmxCF; C:\Windows\System32\Drivers\KmxCF.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KmxCfg; C:\Windows\System32\Drivers\KmxCfg.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KmxFile; C:\Windows\System32\Drivers\KmxFile.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KmxFilter; C:\Windows\System32\Drivers\KmxFilter.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KmxFw; C:\Windows\System32\Drivers\KmxFw.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KmxSbx; C:\Windows\System32\Drivers\KmxSbx.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 KmxStart; C:\Windows\System32\Drivers\KmxStart.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 kneps; C:\Windows\System32\Drivers\kneps.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 kvnet; C:\Windows\System32\Drivers\kvnet.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 kwflower; C:\Windows\System32\Drivers\kwflower.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 kwfupper; C:\Windows\System32\Drivers\kwfupper.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 llio; C:\Windows\System32\Drivers\llio.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 McPvDrv; C:\Windows\System32\Drivers\McPvDrv.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 mfeapfk; C:\Windows\System32\Drivers\mfeapfk.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 mfeavfk; C:\Windows\System32\Drivers\mfeavfk.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 mfebopk; C:\Windows\System32\Drivers\mfebopk.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 mfeelamk; C:\Windows\System32\Drivers\mfeelamk.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 mfefirek; C:\Windows\System32\Drivers\mfefirek.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 mfehidk; C:\Windows\System32\Drivers\mfehidk.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 mfencbdc; C:\Windows\System32\Drivers\mfencbdc.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 mfencrk; C:\Windows\System32\Drivers\mfencrk.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 mfewfpk; C:\Windows\System32\Drivers\mfewfpk.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 MpFilter; C:\Windows\System32\Drivers\MpFilter.sys [165648 2011-04-18] (Microsoft Corporation) U5 mscank; C:\Windows\System32\Drivers\mscank.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 netfilter; C:\Windows\System32\Drivers\netfilter.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NETFLTDI; C:\Windows\System32\Drivers\NETFLTDI.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 nnetsec; C:\Windows\System32\Drivers\nnetsec.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSALPC; C:\Windows\System32\Drivers\NNSALPC.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSHTTP; C:\Windows\System32\Drivers\NNSHTTP.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSHTTPS; C:\Windows\System32\Drivers\NNSHTTPS.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSIDS; C:\Windows\System32\Drivers\NNSIDS.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSNAHS; C:\Windows\System32\Drivers\NNSNAHS.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSNAHSL; C:\Windows\System32\Drivers\NNSNAHSL.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSPICC; C:\Windows\System32\Drivers\NNSPICC.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSPIHS; C:\Windows\System32\Drivers\NNSPIHS.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSPIHSW; C:\Windows\System32\Drivers\NNSPIHSW.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSPOP3; C:\Windows\System32\Drivers\NNSPOP3.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSPROT; C:\Windows\System32\Drivers\NNSPROT.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSPRV; C:\Windows\System32\Drivers\NNSPRV.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSSMTP; C:\Windows\System32\Drivers\NNSSMTP.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSSTRM; C:\Windows\System32\Drivers\NNSSTRM.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 NNSTLSC; C:\Windows\System32\Drivers\NNSTLSC.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 OAmon; C:\Windows\System32\Drivers\OAmon.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 OAnet; C:\Windows\System32\Drivers\OAnet.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 pavboot; C:\Windows\System32\Drivers\pavboot.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 PavProc; C:\Windows\System32\Drivers\PavProc.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 PSINAflt; C:\Windows\System32\Drivers\PSINAflt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 PSINFile; C:\Windows\System32\Drivers\PSINFile.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 PSINKNC; C:\Windows\System32\Drivers\PSINKNC.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 PSINProc; C:\Windows\System32\Drivers\PSINProc.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 PSINProt; C:\Windows\System32\Drivers\PSINProt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 PSINReg; C:\Windows\System32\Drivers\PSINReg.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 PSKMAD; C:\Windows\System32\Drivers\PSKMAD.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 qutmipc; C:\Windows\System32\Drivers\qutmipc.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SandBox; C:\Windows\System32\Drivers\SandBox.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SAVOnAccess; C:\Windows\System32\Drivers\SAVOnAccess.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SAVOnAccessControl; C:\Windows\System32\Drivers\SAVOnAccessControl.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SAVOnAccessFilter; C:\Windows\System32\Drivers\SAVOnAccessFilter.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 sbaphd; C:\Windows\System32\Drivers\sbaphd.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 sbapifs; C:\Windows\System32\Drivers\sbapifs.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SbFw; C:\Windows\System32\Drivers\SbFw.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 sbhips; C:\Windows\System32\Drivers\sbhips.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 sbtis; C:\Windows\System32\Drivers\sbtis.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 sbwtis; C:\Windows\System32\Drivers\sbwtis.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 scfdriver; C:\Windows\System32\Drivers\scfdriver.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 scfndis; C:\Windows\System32\Drivers\scfndis.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 ShldFlt; C:\Windows\System32\Drivers\ShldFlt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SKMScan; C:\Windows\System32\Drivers\SKMScan.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SophosBootDriver; C:\Windows\System32\Drivers\SophosBootDriver.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SpiderG3; C:\Windows\System32\Drivers\SpiderG3.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 ssmdrv; C:\Windows\System32\Drivers\ssmdrv.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SymEvent; C:\Windows\System32\Drivers\SymEvent.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 SysPlant; C:\Windows\System32\Drivers\SysPlant.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tdifw; C:\Windows\System32\Drivers\tdifw.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tdi_nf; C:\Windows\System32\Drivers\tdi_nf.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tmactmon; C:\Windows\System32\Drivers\tmactmon.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tmcomm; C:\Windows\System32\Drivers\tmcomm.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tmeevw; C:\Windows\System32\Drivers\tmeevw.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tmevtmgr; C:\Windows\System32\Drivers\tmevtmgr.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tmnciesc; C:\Windows\System32\Drivers\tmnciesc.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tmusa; C:\Windows\System32\Drivers\tmusa.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tpdevflt; C:\Windows\System32\Drivers\tpdevflt.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 tpsec; C:\Windows\System32\Drivers\tpsec.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 trufos; C:\Windows\System32\Drivers\trufos.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 TS4NT; C:\Windows\System32\Drivers\TS4NT.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 v3engine; C:\Windows\System32\Drivers\v3engine.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 VBEngNT; C:\Windows\System32\Drivers\VBEngNT.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 Vsdatant; C:\Windows\System32\Drivers\Vsdatant.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 webssx; C:\Windows\System32\Drivers\webssx.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 WNMFLT; C:\Windows\System32\Drivers\WNMFLT.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 WRkrn; C:\Windows\System32\Drivers\WRkrn.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 wsnf; C:\Windows\System32\Drivers\wsnf.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) U5 wstif; C:\Windows\System32\Drivers\wstif.sys [0 2015-03-19] () <==== ATTENTION (zero size file/folder) Folder: C:\Documents and Settings\Admin\Application Data\BxP1cwb6o5Y 2015-03-19 14:48 - 2015-03-19 14:48 - 00427480 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\ynycrzxx.sys 2015-03-19 14:00 - 2015-03-19 14:00 - 00000000 __SHD () C:\Documents and Settings\Admin\Application Data\BxP1cwb6o5Y 2015-03-19 13:40 - 2015-03-19 13:40 - 00427480 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\jceaplue.sys 2015-03-19 13:17 - 2015-03-19 13:17 - 00427480 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\pdtunqor.sys 2015-03-19 13:17 - 2015-03-19 13:17 - 00427480 _____ (Avast Software s.r.o.) C:\WINDOWS\system32\Drivers\bjuomxho.sys 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Zillya Internet Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Zillya Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\xCore Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\WRData 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\WinRoute Pro 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\WinPcap 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Windows Defender 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Winalysis 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Webroot 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\VIPRE 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Vba32 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\UnThreat AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\UnThreat 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\TrustPort 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\TrojanHunter 5.5 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\TrojanHunter 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Trojan Remover 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Trend Micro 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\TotalDefense 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Total Defense 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Symantec AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\SUPERAntiSpyware 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\STOPzilla! 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\STOPzilla Optimizer 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\StopSign 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\SpyShelter Premium 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\SpyShelter 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Spybot - Search & Destroy 2 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Spybot - Search & Destroy 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Sophos 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Rising 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Quick Heal 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\PSafe 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Proland Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Proland 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\PC Tools Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\pandasecuritytb 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Panda Security URL Filtering 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Panda Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Padvish Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\OnlineArmor 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Online Armor 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Norton Internet Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Norton AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Norton Anti-Theft 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Norton 360 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Norman 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\nanolsp 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\nanoav 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\NANO Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Moon Secure Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\mks_vir_9 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\MicroWorld 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Microsoft Security Client 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\McAfeeMOBK 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\McAfee.com 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\McAfee Security Scan 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\McAfee 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Malwarebytes' Anti-Malware 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Malwarebytes Anti-Malware 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Malwarebytes 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Malware Defender 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Lavasoft 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Kerio 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Kaspersky Lab 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\K7 Computing 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Jetico 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\IObit 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\IKARUS 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\GFI 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\G DATA Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\G Data 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\F-Secure 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\FRISK Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Fortego Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Filseclab 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\ESET 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\eScan 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Emsisoft Anti-Malware 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\eAcceleration 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\DrWeb Enterprise Suite 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\DrWeb 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Doctor Web 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Comodo Downloader 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\COMODO 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\TrustPort 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\Panda Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\MicroWorld 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\McAfee 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\InfoWatch 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\G Data 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\eAcceleration 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\Doctor Web 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\COMODO 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\BullGuard Ltd 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\Bitdefender 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\Baidu 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Common Files\AVG Secure Search 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\ClamWin 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\CheckPoint 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\CA 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\BullGuard Ltd 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\BullGuard 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\BitGuard 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Bitdefender 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Baidu Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Avira 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\AVG Nation toolbar 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\AVG 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\AVAST Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Avanquest 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Arcabit 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Alwil Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\AhnLab 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Agnitum 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\Acceleration Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\360SD 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\360 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Program Files\.clamwin 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Zillya Internet Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Zillya Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\xCore Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\WRData 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\WinRoute Pro 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\WinPcap 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Windows Defender 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Winalysis 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Webroot 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Vba32 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\UnThreat AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\UnThreat 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\TrustPort 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\TrojanHunter 5.5 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\TrojanHunter 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Trojan Remover 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\TotalDefense 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Total Defense 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Symantec AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\SUPERAntiSpyware 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\STOPzilla! 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\STOPzilla Optimizer 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\StopSign 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\SpyShelter Premium 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Spybot - Search & Destroy 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Sophos 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Rising 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Quick Heal 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\PSafe 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Proland Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Proland 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\PC Tools Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\pandasecuritytb 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Panda Security URL Filtering 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Padvish Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Online Armor 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Norton Internet Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Norton AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Norton Anti-Theft 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Norton 360 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Norman 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\nanolsp 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\NANO Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Moon Secure Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\mks_vir_9 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Microsoft Security Client 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\McAfeeMOBK 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\McAfee.com 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\McAfee Security Scan 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Malwarebytes' Anti-Malware 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Malwarebytes Anti-Malware 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Malware Defender 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Kerio 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Kaspersky Lab 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Jetico 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\IKARUS 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\GFI 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\G DATA Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\G Data 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\F-Secure 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\FRISK Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Fortego Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Filseclab 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\eScan 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Emsisoft Anti-Malware 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\DrWeb Enterprise Suite 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\DrWeb 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Doctor Web 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Comodo Downloader 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\COMODO 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\ClamWin 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\CheckPoint 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\CA 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\BullGuard Ltd 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\BitGuard 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\AVG Nation toolbar 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\AVG 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Arcabit 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Alwil Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\AhnLab 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Agnitum 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Acceleration Software 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\360 2015-03-19 12:10 - 2015-03-19 17:52 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\wstif.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\wsnf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\WRkrn.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\wnmflt64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\wnmflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\WGX64.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\webssx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\vsdatant.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\VBEngNT.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\v3engine.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\TS4nt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\Trufos.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tpsec.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tpdevflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tmusa.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tmnciesc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tmevtmgr.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tmeevw.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\TMEBC64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\TMEBC32.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tmcomm.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tmactmon.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\Teefer.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tdifw.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\tdi_nf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\SysPlant.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\SYMEVENT64x86.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\SYMEVENT.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ssmdrv.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\spiderg3.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\SophosBootDriver.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\skmscan.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ShlDrv51.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ShldFlt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\scfndis.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\scfdriver.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\sbwtis.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\sbtis.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\sbhips.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\SbFwIm.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\SbFw.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\sbapifs.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\sbaphd.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\savonaccessfilter.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\savonaccesscontrol.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\savonaccess.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\SandBox64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\SandBox.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\qutmipc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\qutmdrv.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PSKMAD.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PSINReg.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PSINProt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PSINProc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PSINKNC.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PSINFile.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PSINAflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\protreg.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PROCEXP152.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PktIcpt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\pctwfpfilter64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PCTSD64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\pctplsm64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\pctplsg64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\pctgntdi64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\pctEFA64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\pctDS64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PCTCore64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\pctBTFix64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PCTBD64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\PavProc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\pavboot64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\pavboot.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\OAnet.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\OAmon.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\oahlp32.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\OADriver.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\nvcv64mf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NSNetmon.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NSKernel.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\npf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNStlsc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSStrm.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSSmtp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSPrv.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSProt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSPop3.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSPihsw.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSpihs.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSpicc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSNAHSL.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSNAHS.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSIds.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSHttps.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSHttp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NNSAlpc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\nnetsecl64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\nnetsecl.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\nnetsec.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NETTDI64.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\neti1644.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\NETFLTDI.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\netfilter.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\n64i1644.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mwfsmflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mscank.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\MOBK.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\MiniIcpt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfewfpk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfencrk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfencbdc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfehidk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfefirek.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfeelamk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfeclnrk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfebopk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfeavfk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mfeapfk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\McPvDrv.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\mbam.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\llio.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\kwfupper.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\kwflower.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\kvnet.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\kneps.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\KmxStart.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\KmxSbx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\KmxFw.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\KmxFilter.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\KmxFile.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\KmxCfg.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\KmxCF.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\KmxAMRT.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\KmxAgent.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\klwtp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\klwfp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\kltdi.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\klpd.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\klim6.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\klim5.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\klif.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\klhk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\klflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\klelam.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\kldisk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\kl2.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\kl1.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\K7TdiHlp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\K7Sentry.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\K7FWHlpr.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\K7FWFilt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\inspect.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\idsflt64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\idsflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\hvm.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\HookTdi.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\Hooksys.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\hookport.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\HookHelp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\HookCentre.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\HipShieldK.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\gzflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ggc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\gfiutil.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\gfiark.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\gdwfpcd64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\gdwfpcd32.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\GDTdiIcpt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\GDNdisIc.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\gddcv64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\gddcd64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\GDBehave.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\fwcore.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\fsbts.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\FPAV_RTP.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\fnetmon.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\fnetm64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\epfwwfpr.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\epfwwfp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\epfwtdi.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\epfwndis.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\EpfwLWF.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\epfw.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\EMLTDI.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ehdrv.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\efimon.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\edevmon.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\econceal.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\eamonm.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\eamon.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\dwprot.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\dw_wfp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\dsaflt64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\dsaflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\DrWebLwf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\COMFiltr.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\cmdhlp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\cmdguard.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\cmderd.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\cfwids.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\CdmDrvNt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\catflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\BprotectEx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\Bprotect.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bndef64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bnbasex64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\Bhbase.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\Bfmon.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\Bfilter.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bdvedisk.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\BdSpy.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bdsnm.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bdsflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bdsandbox.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\BdNet.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bdfsfltr.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\BdfNdisf6.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bdfndisf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bdelam.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\BdAgent.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bcftdi.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bcfsrm.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bcfilter.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bc_tdi_f.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bc_prt_f.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bc_pat_f.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bc_ngn.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bc_ip_f.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\bc_hash_f.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\BAPIDRV64.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\BAPIDRV.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avnetflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avkmgr.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avipbb.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgwfpx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgwfpa.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgtdix.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgtdia.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgrkx86.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgrkx64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgntflt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgmfx86.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgmfx64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avglogx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgloga.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgldx86.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgldx64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgidsshimx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgidsshimw8x.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgidshx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgidsha.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgidsdriverx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgidsdriverlx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgidsdrivera.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgfwdx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgfwd6x.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgfwd6a.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgdiskx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgdiska.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgbootx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avgboota.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avckf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avchv.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avc3.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\avasdmft.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswVmm.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswTdi.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswStm.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswSP.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswSnx.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswRvrt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswRdr2.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswRdr.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswNdisFlt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswNdis2.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswNdis.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswMon2.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\aswHwid.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\arcawfp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\apsp.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\APPFLT.SYS 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\apkhelper.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\AMonTDNt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\AMonTDLH.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\AMonLWLH.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\AMonHKNT.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\amm8660.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\amm8651.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\amm6460.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ale7_nf64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ale7_nf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ale_nf64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ale_nf.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\ahnsze.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\AhnRghNt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\AhnRec2k.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\AhnFlt2k.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\afwcore.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\afw.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\abp470n5.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\abndis.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\Aavmker4.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\360SelfProtection.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\360FsFlt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\360Camera64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\360Camera.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\360Box64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\360Box.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\360AvFlt.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\360AntiHacker64.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 _RSHD () C:\WINDOWS\system32\Drivers\360AntiHacker.sys 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Comodo 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Local Settings\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Comodo 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\NetworkService\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Comodo 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Local Settings\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Comodo 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LogMeInRemoteUser\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Comodo 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Local Settings\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Comodo 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\LocalService\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\All Users\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Comodo 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Comodo 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 __RSH () C:\Documents and Settings\Admin\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 ___SH () C:\WINDOWS\VZT6nsdX.txt 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 ___SH () C:\WINDOWS\PsfjH4KN.txt 2015-03-19 12:10 - 2015-03-19 12:10 - 00000000 ___SH () C:\WINDOWS\F5Ws94kb.txt 2015-03-19 12:09 - 2015-03-19 12:09 - 00000000 _RSHD () C:\WINDOWS\M-540678896758647364857959796 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\.clamwin 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\360 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\360SD 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Acceleration Software 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Agnitum 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\AhnLab 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Alwil Software 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Arcabit 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Avanquest 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\AVAST Software 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\AVG 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\AVG Nation toolbar 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Avira 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Baidu Security 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Bitdefender 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\BitGuard 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\BullGuard 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\BullGuard Ltd 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\CA 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\CheckPoint 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\ClamWin 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\COMODO 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Comodo Downloader 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Doctor Web 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\DrWeb 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\DrWeb Enterprise Suite 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\eAcceleration 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Emsisoft Anti-Malware 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\eScan 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\ESET 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\F-Secure 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Filseclab 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Fortego Security 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\FRISK Software 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\G Data 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\G DATA Software 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\GFI 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\IKARUS 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\IObit 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Jetico 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\K7 Computing 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Kaspersky Lab 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Kerio 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Lavasoft 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Malware Defender 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Malwarebytes 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Malwarebytes Anti-Malware 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Malwarebytes' Anti-Malware 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\McAfee 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\McAfee Security Scan 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\McAfee.com 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\McAfeeMOBK 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Microsoft Security Client 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\MicroWorld 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\mks_vir_9 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Moon Secure Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\NANO Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\nanoav 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\nanolsp 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Norman 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Norton 360 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Norton Anti-Theft 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Norton AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Norton Internet Security 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\NortonInstaller 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Online Armor 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\OnlineArmor 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Padvish Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Panda Security 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Panda Security URL Filtering 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\pandasecuritytb 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\PC Tools Security 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Proland 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Proland Software 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\PSafe 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Quick Heal 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Rising 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Sophos 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Spybot - Search & Destroy 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Spybot - Search & Destroy 2 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\SpyShelter 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\SpyShelter Premium 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\StopSign 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\STOPzilla Optimizer 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\STOPzilla! 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\SUPERAntiSpyware 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Symantec AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Total Defense 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\TotalDefense 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Trend Micro 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Trend Micro Installer 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Trojan Remover 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\TrojanHunter 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\TrojanHunter 5.5 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\TrustPort 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\UnThreat 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\UnThreat AntiVirus 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Vba32 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\VIPRE 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Webroot 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Winalysis 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Windows Defender 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\WinPcap 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\WinRoute Pro 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\WRData 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\xCore Software 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Zillya Antivirus 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Zillya Internet Security 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\AVG Secure Search 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\Baidu 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\Bitdefender 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\BullGuard Ltd 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\COMODO 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\Doctor Web 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\eAcceleration 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\G Data 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\InfoWatch 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\McAfee 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\MicroWorld 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\Panda Security 2015-03-19 12:10 - 2015-03-19 17:52 - 0000000 __RSH () C:\Program Files\Common Files\TrustPort 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Comodo 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\ESET 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\IObit Apps 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\SpyShelter 2012-07-30 12:08 - 2012-07-30 12:08 - 0000100 ____H () C:\Documents and Settings\Admin\Application Data\System.log 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Application Data\VIPRE 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\.clamwin 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\360safe 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\360SD 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\360WD 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Avanquest 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\AVAST Software 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Avg2014 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Avira 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Baidu Security 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Bitdefender 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\BullGuard 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Comodo 2012-08-31 10:32 - 2012-08-31 10:32 - 0000000 _____ () C:\Documents and Settings\Admin\Local Settings\Application Data\DC.tmp 2011-02-07 11:35 - 2013-07-15 13:09 - 0014848 _____ () C:\Documents and Settings\Admin\Local Settings\Application Data\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\eAcceleration 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\ESET 2011-03-11 17:51 - 2011-03-11 17:51 - 0000161 _____ () C:\Documents and Settings\Admin\Local Settings\Application Data\GLF19.tmp 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\housecall.guid.cache 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\IObit 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\IObit Apps 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\K7 Computing 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Lavasoft 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\LavasoftStatistics 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Malwarebytes 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\McAfee 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\McAfee File Lock 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\MicroWorld 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\nanoav 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\OnlineArmor 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Panda Security 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\panda4_1dn 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\SpyShelter 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\Trend Micro 2015-03-19 12:10 - 2015-03-19 12:10 - 0000000 __RSH () C:\Documents and Settings\Admin\Local Settings\Application Data\VIPRE C:\Windows\System32\Drivers\360AntiHacker.sys C:\Windows\System32\Drivers\360AntiHacker64.sys C:\Windows\System32\Drivers\360AvFlt.sys C:\Windows\System32\Drivers\360Box.sys C:\Windows\System32\Drivers\360Box64.sys C:\Windows\System32\Drivers\360Camera.sys C:\Windows\System32\Drivers\360Camera64.sys C:\Windows\System32\Drivers\360FsFlt.sys C:\Windows\System32\Drivers\360SelfProtection.sys C:\Windows\System32\Drivers\Aavmker4.sys C:\Windows\System32\Drivers\abndis.sys C:\Windows\System32\Drivers\abp470n5.sys C:\Windows\System32\Drivers\afw.sys C:\Windows\System32\Drivers\afwcore.sys C:\Windows\System32\Drivers\AhnFlt2k.sys C:\Windows\System32\Drivers\AhnRec2k.sys C:\Windows\System32\Drivers\AhnRghNt.sys C:\Windows\System32\Drivers\ahnsze.sys C:\Windows\System32\Drivers\ale7_nf.sys C:\Windows\System32\Drivers\ale7_nf64.sys C:\Windows\System32\Drivers\ale_nf.sys C:\Windows\System32\Drivers\ale_nf64.sys C:\Windows\System32\Drivers\amm6460.sys C:\Windows\System32\Drivers\amm8651.sys C:\Windows\System32\Drivers\amm8660.sys C:\Windows\System32\Drivers\AMonHKNT.sys C:\Windows\System32\Drivers\AMonLWLH.sys C:\Windows\System32\Drivers\AMonTDLH.sys C:\Windows\System32\Drivers\AMonTDNt.sys C:\Windows\System32\Drivers\apkhelper.sys C:\Windows\System32\Drivers\APPFLT.SYS C:\Windows\System32\Drivers\apsp.sys C:\Windows\System32\Drivers\arcawfp.sys C:\Windows\System32\Drivers\aswHwid.sys C:\Windows\System32\Drivers\aswMon2.sys C:\Windows\System32\Drivers\aswMonFlt.sys C:\Windows\System32\Drivers\aswNdis.sys C:\Windows\System32\Drivers\aswNdis2.sys C:\Windows\System32\Drivers\aswNdisFlt.sys C:\Windows\System32\Drivers\aswRdr.sys C:\Windows\System32\Drivers\aswRdr2.sys C:\Windows\System32\Drivers\aswRvrt.sys C:\Windows\System32\Drivers\aswSnx.sys C:\Windows\System32\Drivers\aswSP.sys C:\Windows\System32\Drivers\aswStm.sys C:\Windows\System32\Drivers\aswTdi.sys C:\Windows\System32\Drivers\aswVmm.sys C:\Windows\System32\Drivers\avasdmft.sys C:\Windows\System32\Drivers\avc3.sys C:\Windows\System32\Drivers\avchv.sys C:\Windows\System32\Drivers\avckf.sys C:\Windows\System32\Drivers\avf.sys C:\Windows\System32\Drivers\avgboota.sys C:\Windows\System32\Drivers\avgbootx.sys C:\Windows\System32\Drivers\avgdiska.sys C:\Windows\System32\Drivers\avgdiskx.sys C:\Windows\System32\Drivers\avgfwd6a.sys C:\Windows\System32\Drivers\avgfwd6x.sys C:\Windows\System32\Drivers\avgfwdx.sys C:\Windows\System32\Drivers\avgidsdrivera.sys C:\Windows\System32\Drivers\avgidsdriverlx.sys C:\Windows\System32\Drivers\avgidsdriverx.sys C:\Windows\System32\Drivers\avgidsha.sys C:\Windows\System32\Drivers\avgidshx.sys C:\Windows\System32\Drivers\avgidsshimw8x.sys C:\Windows\System32\Drivers\avgidsshimx.sys C:\Windows\System32\Drivers\avgldx64.sys C:\Windows\System32\Drivers\avgldx86.sys C:\Windows\System32\Drivers\avgloga.sys C:\Windows\System32\Drivers\avglogx.sys C:\Windows\System32\Drivers\avgmfx64.sys C:\Windows\System32\Drivers\avgmfx86.sys C:\Windows\System32\Drivers\avgntflt.sys C:\Windows\System32\Drivers\avgrkx64.sys C:\Windows\System32\Drivers\avgrkx86.sys C:\Windows\System32\Drivers\avgtdia.sys C:\Windows\System32\Drivers\avgtdix.sys C:\Windows\System32\Drivers\avgwfpa.sys C:\Windows\System32\Drivers\avgwfpx.sys C:\Windows\System32\Drivers\avipbb.sys C:\Windows\System32\Drivers\avkmgr.sys C:\Windows\System32\Drivers\avnetflt.sys C:\Windows\System32\Drivers\BAPIDRV.SYS C:\Windows\System32\Drivers\BAPIDRV64.SYS C:\Windows\System32\Drivers\bcfilter.sys C:\Windows\System32\Drivers\bcfsrm.sys C:\Windows\System32\Drivers\bcftdi.sys C:\Windows\System32\Drivers\bc_hash_f.sys C:\Windows\System32\Drivers\bc_ip_f.sys C:\Windows\System32\Drivers\bc_ngn.sys C:\Windows\System32\Drivers\bc_pat_f.sys C:\Windows\System32\Drivers\bc_prt_f.sys C:\Windows\System32\Drivers\bc_tdi_f.sys C:\Windows\System32\Drivers\BdAgent.sys C:\Windows\System32\Drivers\bdelam.sys C:\Windows\System32\Drivers\bdfndisf.sys C:\Windows\System32\Drivers\BdfNdisf6.sys C:\Windows\System32\Drivers\bdfsfltr.sys C:\Windows\System32\Drivers\BdNet.sys C:\Windows\System32\Drivers\bdsandbox.sys C:\Windows\System32\Drivers\bdsflt.sys C:\Windows\System32\Drivers\bdsnm.sys C:\Windows\System32\Drivers\BdSpy.sys C:\Windows\System32\Drivers\bdvedisk.sys C:\Windows\System32\Drivers\Bfilter.sys C:\Windows\System32\Drivers\Bfmon.sys C:\Windows\System32\Drivers\Bhbase.sys C:\Windows\System32\Drivers\bnbasex64.sys C:\Windows\System32\Drivers\bndef64.sys C:\Windows\System32\Drivers\Bprotect.sys C:\Windows\System32\Drivers\BprotectEx.sys C:\Windows\System32\Drivers\catflt.sys C:\Windows\System32\Drivers\CdmDrvNt.sys C:\Windows\System32\Drivers\cfwids.sys C:\Windows\System32\Drivers\cmderd.sys C:\Windows\System32\Drivers\cmdguard.sys C:\Windows\System32\Drivers\cmdhlp.sys C:\Windows\System32\Drivers\COMFiltr.sys C:\Windows\System32\Drivers\DrWebLwf.sys C:\Windows\System32\Drivers\dsaflt.sys C:\Windows\System32\Drivers\dsaflt64.sys C:\Windows\System32\Drivers\dwprot.sys C:\Windows\System32\Drivers\dw_wfp.sys C:\Windows\System32\Drivers\eamon.sys C:\Windows\System32\Drivers\eamonm.sys C:\Windows\System32\Drivers\econceal.sys C:\Windows\System32\Drivers\edevmon.sys C:\Windows\System32\Drivers\efimon.sys C:\Windows\System32\Drivers\ehdrv.sys C:\Windows\System32\Drivers\EMLTDI.SYS C:\Windows\System32\Drivers\epfw.sys C:\Windows\System32\Drivers\EpfwLWF.sys C:\Windows\System32\Drivers\epfwndis.sys C:\Windows\System32\Drivers\epfwtdi.sys C:\Windows\System32\Drivers\epfwwfp.sys C:\Windows\System32\Drivers\epfwwfpr.sys C:\Windows\System32\Drivers\fnetm64.sys C:\Windows\System32\Drivers\fnetmon.sys C:\Windows\System32\Drivers\FPAV_RTP.sys C:\Windows\System32\Drivers\fsbts.sys C:\Windows\System32\Drivers\fwcore.sys C:\Windows\System32\Drivers\GDBehave.sys C:\Windows\System32\Drivers\gddcd64.sys C:\Windows\System32\Drivers\gddcv64.sys C:\Windows\System32\Drivers\GDNdisIc.sys C:\Windows\System32\Drivers\GDTdiIcpt.sys C:\Windows\System32\Drivers\gdwfpcd32.sys C:\Windows\System32\Drivers\gdwfpcd64.sys C:\Windows\System32\Drivers\gfiark.sys C:\Windows\System32\Drivers\gfiutil.sys C:\Windows\System32\Drivers\ggc.sys C:\Windows\System32\Drivers\gzflt.sys C:\Windows\System32\Drivers\HipShieldK.sys C:\Windows\System32\Drivers\HookCentre.sys C:\Windows\System32\Drivers\HookHelp.sys C:\Windows\System32\Drivers\hookport.sys C:\Windows\System32\Drivers\Hooksys.sys C:\Windows\System32\Drivers\HookTdi.sys C:\Windows\System32\Drivers\hvm.sys C:\Windows\System32\Drivers\idsflt.sys C:\Windows\System32\Drivers\idsflt64.sys C:\Windows\System32\Drivers\inspect.sys C:\Windows\System32\Drivers\K7FWFilt.sys C:\Windows\System32\Drivers\K7FWHlpr.sys C:\Windows\System32\Drivers\K7Sentry.sys C:\Windows\System32\Drivers\K7TdiHlp.sys C:\Windows\System32\Drivers\kl1.sys C:\Windows\System32\Drivers\kl2.sys C:\Windows\System32\Drivers\kldisk.sys C:\Windows\System32\Drivers\klelam.sys C:\Windows\System32\Drivers\klflt.sys C:\Windows\System32\Drivers\klhk.sys C:\Windows\System32\Drivers\klif.sys C:\Windows\System32\Drivers\klim5.sys C:\Windows\System32\Drivers\klim6.sys C:\Windows\System32\Drivers\klpd.sys C:\Windows\System32\Drivers\kltdi.sys C:\Windows\System32\Drivers\klwfp.sys C:\Windows\System32\Drivers\klwtp.sys C:\Windows\System32\Drivers\KmxAgent.sys C:\Windows\System32\Drivers\KmxAMRT.sys C:\Windows\System32\Drivers\KmxCF.sys C:\Windows\System32\Drivers\KmxCfg.sys C:\Windows\System32\Drivers\KmxFile.sys C:\Windows\System32\Drivers\KmxFilter.sys C:\Windows\System32\Drivers\KmxFw.sys C:\Windows\System32\Drivers\KmxSbx.sys C:\Windows\System32\Drivers\KmxStart.sys C:\Windows\System32\Drivers\kneps.sys C:\Windows\System32\Drivers\kvnet.sys C:\Windows\System32\Drivers\kwflower.sys C:\Windows\System32\Drivers\kwfupper.sys C:\Windows\System32\Drivers\llio.sys C:\Windows\System32\Drivers\mbam.sys C:\Windows\System32\Drivers\mbamchameleon.sys C:\Windows\System32\Drivers\MBAMSwissArmy.sys C:\Windows\System32\Drivers\McPvDrv.sys C:\Windows\System32\Drivers\mfeapfk.sys C:\Windows\System32\Drivers\mfeavfk.sys C:\Windows\System32\Drivers\mfebopk.sys C:\Windows\System32\Drivers\mfeclnrk.sys C:\Windows\System32\Drivers\mfeelamk.sys C:\Windows\System32\Drivers\mfefirek.sys C:\Windows\System32\Drivers\mfehidk.sys C:\Windows\System32\Drivers\mfencbdc.sys C:\Windows\System32\Drivers\mfencrk.sys C:\Windows\System32\Drivers\mfewfpk.sys C:\Windows\System32\Drivers\MiniIcpt.sys C:\Windows\System32\Drivers\MOBK.sys C:\Windows\System32\Drivers\mscank.sys C:\Windows\System32\Drivers\mwfsmflt.sys C:\Windows\System32\Drivers\n64i1644.sys C:\Windows\System32\Drivers\netfilter.sys C:\Windows\System32\Drivers\NETFLTDI.SYS C:\Windows\System32\Drivers\neti1644.sys C:\Windows\System32\Drivers\NETTDI64.SYS C:\Windows\System32\Drivers\nnetsec.sys C:\Windows\System32\Drivers\nnetsecl.sys C:\Windows\System32\Drivers\nnetsecl64.sys C:\Windows\System32\Drivers\NNSAlpc.sys C:\Windows\System32\Drivers\NNSHttp.sys C:\Windows\System32\Drivers\NNSHttps.sys C:\Windows\System32\Drivers\NNSIds.sys C:\Windows\System32\Drivers\NNSNAHS.sys C:\Windows\System32\Drivers\NNSNAHSL.sys C:\Windows\System32\Drivers\NNSpicc.sys C:\Windows\System32\Drivers\NNSpihs.sys C:\Windows\System32\Drivers\NNSPihsw.sys C:\Windows\System32\Drivers\NNSPop3.sys C:\Windows\System32\Drivers\NNSProt.sys C:\Windows\System32\Drivers\NNSPrv.sys C:\Windows\System32\Drivers\NNSSmtp.sys C:\Windows\System32\Drivers\NNSStrm.sys C:\Windows\System32\Drivers\NNStlsc.sys C:\Windows\System32\Drivers\npf.sys C:\Windows\System32\Drivers\NSKernel.sys C:\Windows\System32\Drivers\NSNetmon.sys C:\Windows\System32\Drivers\nvcv64mf.sys C:\Windows\System32\Drivers\OADriver.sys C:\Windows\System32\Drivers\oahlp32.sys C:\Windows\System32\Drivers\OAmon.sys C:\Windows\System32\Drivers\OAnet.sys C:\Windows\System32\Drivers\pavboot.sys C:\Windows\System32\Drivers\pavboot64.sys C:\Windows\System32\Drivers\PavProc.sys C:\Windows\System32\Drivers\PCTBD64.sys C:\Windows\System32\Drivers\pctBTFix64.sys C:\Windows\System32\Drivers\PCTCore64.sys C:\Windows\System32\Drivers\pctDS64.sys C:\Windows\System32\Drivers\pctEFA64.sys C:\Windows\System32\Drivers\pctgntdi64.sys C:\Windows\System32\Drivers\pctplsg64.sys C:\Windows\System32\Drivers\pctplsm64.sys C:\Windows\System32\Drivers\PCTSD64.sys C:\Windows\System32\Drivers\pctwfpfilter64.sys C:\Windows\System32\Drivers\PktIcpt.sys C:\Windows\System32\Drivers\PROCEXP152.SYS C:\Windows\System32\Drivers\protreg.sys C:\Windows\System32\Drivers\PSINAflt.sys C:\Windows\System32\Drivers\PSINFile.sys C:\Windows\System32\Drivers\PSINKNC.sys C:\Windows\System32\Drivers\PSINProc.sys C:\Windows\System32\Drivers\PSINProt.sys C:\Windows\System32\Drivers\PSINReg.sys C:\Windows\System32\Drivers\PSKMAD.sys C:\Windows\System32\Drivers\qutmdrv.sys C:\Windows\System32\Drivers\qutmipc.sys C:\Windows\System32\Drivers\SandBox.sys C:\Windows\System32\Drivers\SandBox64.sys C:\Windows\System32\Drivers\savonaccess.sys C:\Windows\System32\Drivers\savonaccesscontrol.sys C:\Windows\System32\Drivers\savonaccessfilter.sys C:\Windows\System32\Drivers\sbaphd.sys C:\Windows\System32\Drivers\sbapifs.sys C:\Windows\System32\Drivers\SbFw.sys C:\Windows\System32\Drivers\SbFwIm.sys C:\Windows\System32\Drivers\sbhips.sys C:\Windows\System32\Drivers\sbtis.sys C:\Windows\System32\Drivers\sbwtis.sys C:\Windows\System32\Drivers\scfdriver.sys C:\Windows\System32\Drivers\scfndis.sys C:\Windows\System32\Drivers\ShldFlt.sys C:\Windows\System32\Drivers\ShlDrv51.sys C:\Windows\System32\Drivers\skmscan.sys C:\Windows\System32\Drivers\SophosBootDriver.sys C:\Windows\System32\Drivers\spiderg3.sys C:\Windows\System32\Drivers\ssmdrv.sys C:\Windows\System32\Drivers\SYMEVENT.SYS C:\Windows\System32\Drivers\SYMEVENT64x86.SYS C:\Windows\System32\Drivers\SysPlant.sys C:\Windows\System32\Drivers\tdifw.sys C:\Windows\System32\Drivers\tdi_nf.sys C:\Windows\System32\Drivers\Teefer.sys C:\Windows\System32\Drivers\tmactmon.sys C:\Windows\System32\Drivers\tmcomm.sys C:\Windows\System32\Drivers\TMEBC32.sys C:\Windows\System32\Drivers\TMEBC64.sys C:\Windows\System32\Drivers\tmeevw.sys C:\Windows\System32\Drivers\tmevtmgr.sys C:\Windows\System32\Drivers\tmnciesc.sys C:\Windows\System32\Drivers\tmusa.sys C:\Windows\System32\Drivers\tpdevflt.sys C:\Windows\System32\Drivers\tpsec.sys C:\Windows\System32\Drivers\Trufos.sys C:\Windows\System32\Drivers\TS4nt.sys C:\Windows\System32\Drivers\v3engine.sys C:\Windows\System32\Drivers\VBEngNT.sys C:\Windows\System32\Drivers\vsdatant.sys C:\Windows\System32\Drivers\webssx.sys C:\Windows\System32\Drivers\WGX64.SYS C:\Windows\System32\Drivers\wnmflt.sys C:\Windows\System32\Drivers\wnmflt64.sys C:\Windows\System32\Drivers\WRkrn.sys C:\Windows\System32\Drivers\wsnf.sys C:\Windows\System32\Drivers\wstif.sys EmptyTemp:- Запустите FRST и нажмите один раз на кнопку Fix и подождите. Программа создаст лог-файл (Fixlog.txt). Пожалуйста, прикрепите его в следующем сообщении!
- Обратите внимание, что компьютер будет перезагружен.
Скачайте ComboFix здесь и сохраните в корень диска С.
1. Внимание! Обязательно закройте все браузеры, временно выключите антивирус, firewall и другое защитное программное обеспечение. Не запускайте других программ во время работы Combofix. Combofix может отключить интернет через некоторое время после запуска, не переподключайте интернет пока Combofix не завершит работу. Если интернет не появился после окончания работы Combofix, перезагрузите компьютер. Во время работы Combofix не нажимайте кнопки мыши, это может стать причиной зависания Combofix.
2. Запустите combofix.exe, когда процесс завершится, скопируйте текст из C:\ComboFix.txt и вставьте в следующее сообщение или запакуйте файл C:\ComboFix.txt и прикрепите к сообщению.
Примечание: В случае, если ComboFix не запускается, переименуйте combofix.exe. Например: temp.exe
Инструкции выполняются в том порядке, в котором они вам даны.
А вы совершаете эти 4 ошибки на форумах? Оставить отзыв Обучение на VirusInfo
Защита от неизвестных троянцев-шифровальщиков => FixSecurity, Kaspersky Anti-Ransomware Tool
Интересный блог Андрея Иванова по шифровальщикам
Антивирус на 30 дней => https://clck.ru/FKsBt
Пожалуйста:
Скопируйте текст ниже в Блокнот и сохраните как файл с названием CFScript.txt в корень диска С.
После сохранения переместите CFScript.txt на пиктограмму ComboFix.exe.Код:KillAll:: File:: c:\windows\system32\drivers\qyjdchhb.sys c:\windows\system32\drivers\lkmnmrej.sys Driver:: Folder:: Registry:: [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "c:\\Program Files\\Mobogenie3\\MoboGenieHelper.exe"=- "c:\\Program Files\\Mobogenie3\\mobogenieP2sp.exe"=- FileLook:: DirLook:: C:\Ttemp Reboot::
Когда сохранится новый отчет ComboFix.txt, прикрепите его к сообщению.
Инструкции выполняются в том порядке, в котором они вам даны.
А вы совершаете эти 4 ошибки на форумах? Оставить отзыв Обучение на VirusInfo
Защита от неизвестных троянцев-шифровальщиков => FixSecurity, Kaspersky Anti-Ransomware Tool
Интересный блог Андрея Иванова по шифровальщикам
Антивирус на 30 дней => https://clck.ru/FKsBt
Пожалуйста:
Удалите вручную:
Сделайте лог TDSSKiller.c:\windows\system32\drivers\lkmnmrej.sys
c:\windows\system32\drivers\qyjdchhb.sys
Инструкции выполняются в том порядке, в котором они вам даны.
А вы совершаете эти 4 ошибки на форумах? Оставить отзыв Обучение на VirusInfo
Защита от неизвестных троянцев-шифровальщиков => FixSecurity, Kaspersky Anti-Ransomware Tool
Интересный блог Андрея Иванова по шифровальщикам
Антивирус на 30 дней => https://clck.ru/FKsBt
Сделано. Лог TDS:
Что с проблемой?
Инструкции выполняются в том порядке, в котором они вам даны.
А вы совершаете эти 4 ошибки на форумах? Оставить отзыв Обучение на VirusInfo
Защита от неизвестных троянцев-шифровальщиков => FixSecurity, Kaspersky Anti-Ransomware Tool
Интересный блог Андрея Иванова по шифровальщикам
Антивирус на 30 дней => https://clck.ru/FKsBt
Насколько я могу видеть, все признаки заражения исчезли.
Огромное спасибо!
/me в восхищении разводит руками
кстати, авст первым делом удалил farbar как зловреда )
Аваст параноик. Утилиту Farbar используют в лечении даже на форуме Аваста.
Деинсталлируйте ComboFix: нажмите Пуск => Выполнить в окне наберите команду Combofix /Uninstall, нажмите кнопку "ОК"
Скачайте OTCleanIt, запустите, нажмите Clean up
- Скачайте DelFix и сохраните утилиту на Рабочем столе
- Запустите DelFix
Обратите внимание, что утилиты необходимо запускать от имени Администратора. По умолчанию в Windows XP так и есть. В Windows Vista и Windows 7 администратор понижен в правах по умолчанию, поэтому, не забудьте нажать правой кнопкой на программу, выбрать Запуск от имени Администратора, при необходимости укажите пароль администратора и нажмите Да- В открывшемся окне программы поставьте галочки напротив пунктов Remove desinfection tools и Create registry backup
- Нажмите на кнопку Run
- После окончания работы программы автоматически откроется блокнот с отчетом delfix.txt
- Прикрепите этот отчет в вашей теме.
- Загрузите SecurityCheck by glax24 отсюда и сохраните утилиту на Рабочем столе
- Запустите двойным щелчком мыши (если Вы используете Windows XP) или из меню по щелчку правой кнопки мыши Запустить от имени администратора (если Вы используете Windows Vista/7)
- Если увидите предупреждение от вашего фаервола относительно программы SecurityCheck, не блокируйте ее работу.
- Дождитесь окончания сканирования, откроется лог в блокноте с именем SecurityCheck.txt;
- Если Вы закрыли Блокнот, то найти этот файл можно в корне системного диска в папке с именем SecurityCheck, например C:\SecurityCheck\SecurityCheck.txt
Инструкции выполняются в том порядке, в котором они вам даны.
А вы совершаете эти 4 ошибки на форумах? Оставить отзыв Обучение на VirusInfo
Защита от неизвестных троянцев-шифровальщиков => FixSecurity, Kaspersky Anti-Ransomware Tool
Интересный блог Андрея Иванова по шифровальщикам
Антивирус на 30 дней => https://clck.ru/FKsBt
При анинсталле Combofix определил, что сканер MSEseentials по прежнему активен в системе. Только к нему теперь авастовский добавился.
Последний раз редактировалось Кирилл Косинский; 21.03.2015 в 10:34.
Обновите:
Java(TM) 6 Update 16 v.6.0.160 Внимание! Скачать обновления
^Удалите старую версию и установите новую (jre-7u76-windows-i586.exe)^
Java 7 Update 7 v.7.0.70 Внимание! Скачать обновления
^Скачайте jre-7u76-windows-i586.exe^
Mozilla Firefox 12.0 (x86 ru) v.12.0 Внимание! Скачать обновления
Советы и рекомендации после лечения компьютера
Инструкции выполняются в том порядке, в котором они вам даны.
А вы совершаете эти 4 ошибки на форумах? Оставить отзыв Обучение на VirusInfo
Защита от неизвестных троянцев-шифровальщиков => FixSecurity, Kaspersky Anti-Ransomware Tool
Интересный блог Андрея Иванова по шифровальщикам
Антивирус на 30 дней => https://clck.ru/FKsBt
Огромное спасибо!
Статистика проведенного лечения:
- Получено карантинов: 1
- Обработано файлов: 5
- В ходе лечения вредоносные программы в карантинах не обнаружены
Уважаемый(ая) Кирилл Косинский, наши специалисты оказали Вам всю возможную помощь по вашему обращению.
В целях поддержания безопасности вашего компьютера настоятельно рекомендуем:
Чтобы всегда быть в курсе актуальных угроз в области информационной безопасности и сохранять свой компьютер защищенным, рекомендуем следить за последними новостями ИТ-сферы портала Anti-Malware.ru:
Надеемся больше никогда не увидеть ваш компьютер зараженным!
Если Вас не затруднит, пополните пожалуйста нашу базу безопасных файлов.