Google Redirect to SuperSearches Malware

[cridgit001]

Hello,

I keep getting a redirect to something called supersearches.net or something like it off and on when I search through google or bing. Since I've noticed it, I've run Malwarebytes, AVG 2012, Spy-bot S&D, CCleaner, and a thing by Symnatec that I thought would remove this virus called Backdoor.Tidserv Removal Tool. Any help would be appreciated.

Thank you
.
DDS (Ver_2011-08-26.01) - NTFSAMD64
Internet Explorer: 9.0.8112.16421 BrowserJavaVersion: 1.6.0_29
Run by Administrator at 18:14:03 on 2011-12-30
Microsoft Windows 7 Ultimate 6.1.7601.1.1252.1.1033.18.4095.2362 [GMT -6:00]
.
AV: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {5A2746B1-DEE9-F85A-FBCD-ADB11639C5F0}
SP: AVG Anti-Virus Free Edition 2012 *Enabled/Updated* {E146A755-F8D3-F7D4-C17D-96C36DBE8F4D}
SP: Windows Defender *Disabled/Outdated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\PROGRA~2\AVG\AVG2012\avgrsa.exe
C:\Program Files (x86)\AVG\AVG2012\avgcsrva.exe
C:\Windows\system32\wininit.exe
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Program Files (x86)\Fingerprint Sensor\AtService.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Program Files\NVIDIA Corporation\Display\nvxdsync.exe
C:\Windows\system32\nvvsvc.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
C:\Windows\SysWOW64\authServer.exe
C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe
C:\Program Files\Bonjour\mDNSResponder.exe
C:\Program Files (x86)\Cisco Systems\VPN Client\cvpnd.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe
C:\Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files (x86)\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
C:\Windows\system32\taskhost.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Program Files (x86)\AVG\AVG2012\avgnsa.exe
C:\Windows\system32\STacSV64.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe
C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSvcM.exe
C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
C:\Program Files\Microsoft Xbox 360 Accessories\XBoxStat.exe
C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
C:\Users\Administrator\AppData\Roaming\Dropbox\bin\Dropbox.exe
C:\Program Files (x86)\HP\QuickPlay\QPService.exe
C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe
C:\Program Files (x86)\HP\HP Software Update\hpwuschd2.exe
C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe
C:\Program Files (x86)\CyberLink\Shared files\brs.exe
C:\Program Files (x86)\HP\QuickPlay\Kernel\TV\QPSched.exe
C:\Windows\system32\SearchIndexer.exe
C:\Windows\system32\svchost.exe -k bthsvcs
C:\Program Files\Synaptics\SynTP\SynTPHelper.exe
C:\Program Files (x86)\AVG\AVG2012\avgtray.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QLBCtrl.exe
C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe
C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files (x86)\iTunes\iTunesHelper.exe
C:\Program Files (x86)\CE\CovenantEyes.exe
C:\Program Files\iPod\bin\iPodService.exe
C:\Program Files (x86)\Hewlett-Packard\Shared\hpqWmiEx.exe
C:\Program Files (x86)\CE\CovenantEyesHelper.exe
C:\Windows\system32\wbem\wmiprvse.exe
C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
C:\Windows\Microsoft.Net\Framework64\v3.0\WPF\PresentationFontCache.exe
C:\Users\ADMINI~1\AppData\Local\Temp\_is9C.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Windows\system32\SearchProtocolHost.exe
C:\Windows\system32\SearchFilterHost.exe
C:\Users\Administrator\Downloads\erunt-setup.exe
C:\Users\ADMINI~1\AppData\Local\Temp\is-9BBE7.tmp\is-CD3F7.tmp
C:\Users\Administrator\AppData\Local\Google\Chrome\Application\chrome.exe
C:\Program Files (x86)\Orbitdownloader\orbitdm.exe
C:\Program Files (x86)\Orbitdownloader\orbitnet.exe
C:\Windows\system32\DllHost.exe
C:\Windows\SysWOW64\cmd.exe
C:\Windows\system32\conhost.exe
C:\Windows\SysWOW64\cscript.exe
C:\Windows\system32\wbem\wmiprvse.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://search.entru.com/?s=21983
mStart Page = hxxp://search.entru.com/?s=21983
uInternet Settings,ProxyOverride = *.local
BHO: Octh Class: {000123b4-9b42-4900-b3f7-f4b073efc214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll
BHO: Adobe PDF Link Helper: {18df081c-e8ad-4283-a596-fa578c2ebdc3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: AVG Safe Search: {3ca2f312-6f6e-4b53-a66e-4e65e497c8c0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
BHO: Windows Live ID Sign-in Helper: {9030d464-4c02-4abf-8ecc-5164760863c6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {dbc80044-a445-435b-bc74-9c25c1c588a9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
uRun: [TomTomHOME.exe] "C:\Program Files (x86)\TomTom HOME 2\TomTomHOMERunner.exe"
uRun: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun
uRun: [Google Update] "C:\Users\Administrator\AppData\Local\Google\Update\GoogleUpdate.exe" /c
uRun: [ApplePhotoStreams] C:\Program Files (x86)\Common Files\Apple\Internet Services\ApplePhotoStreams.exe
mRun: [QPService] "C:\Program Files (x86)\HP\QuickPlay\QPService.exe"
mRun: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun: [<NO NAME>]
mRun: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
mRun: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
mRun: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
mRun: [HFALoader] C:\Program Files (x86)\Hamster Soft\Free ZIP Archiver\Hamster.Archiver.UI.exe -loader
mRun: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun: [NMSVC] C:\Program Files (x86)\CE\CovenantEyes.exe
StartupFolder: C:\Users\ADMINI~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\Dropbox.lnk - C:\Users\Administrator\AppData\Roaming\Dropbox\bin\Dropbox.exe
StartupFolder: C:\Users\ADMINI~1\AppData\Roaming\MICROS~1\Windows\STARTM~1\Programs\Startup\ERUNTA~1.LNK - C:\Program Files (x86)\ERUNT\AUTOBACK.EXE
StartupFolder: C:\PROGRA~3\MICROS~1\Windows\STARTM~1\Programs\Startup\VPNGUI~1.LNK - C:\Windows\Installer\{467D5E81-8349-4892-9E81-C3674ED8E451}\Icon09DB8A851.exe
mPolicies-explorer: NoActiveDesktop = 1 (0x1)
mPolicies-explorer: NoActiveDesktopChanges = 1 (0x1)
mPolicies-system: ConsentPromptBehaviorAdmin = 5 (0x5)
mPolicies-system: ConsentPromptBehaviorUser = 3 (0x3)
mPolicies-system: EnableUIADesktopToggle = 0 (0x0)
IE: &Download by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/201
IE: &Grab video by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/204
IE: Do&wnload selected by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/203
IE: Down&load all by Orbit - C:\Program Files (x86)\Orbitdownloader\orbitmxt.dll/202
IE: E&xport to Microsoft Excel - C:\PROGRA~2\MICROS~3\OFFICE11\EXCEL.EXE/3000
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503} - C:\PROGRA~2\MICROS~3\OFFICE11\REFIEBAR.DLL
LSP: CESpy.dll
Trusted Zone: clonewarsadventures.com
Trusted Zone: freerealms.com
Trusted Zone: soe.com
Trusted Zone: sony.com
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - hxxp://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
TCP: DhcpNameServer = 192.168.1.1
TCP: Interfaces\{C26CCF83-C6E7-4146-8CDD-296A3AA46453} : DhcpNameServer = 192.168.1.1
TCP: Interfaces\{C26CCF83-C6E7-4146-8CDD-296A3AA46453}\2375942554436393 : DhcpNameServer = 192.168.1.254
TCP: Interfaces\{C26CCF83-C6E7-4146-8CDD-296A3AA46453}\47F6269702E602465776 : DhcpNameServer = 192.168.0.1
Handler: linkscanner - {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files (x86)\AVG\AVG2012\avgpp.dll
BHO-X64: Octh Class: {000123B4-9B42-4900-B3F7-F4B073EFC214} - C:\Program Files (x86)\Orbitdownloader\orbitcth.dll
BHO-X64: btorbit.com - No File
BHO-X64: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO-X64: AcroIEHelperStub - No File
BHO-X64: AVG Safe Search: {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files (x86)\AVG\AVG2012\avgssie.dll
BHO-X64: WormRadar.com IESiteBlocker.NavFilter - No File
BHO-X64: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
BHO-X64: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll
TB-X64: {C55BBCD6-41AD-48AD-9953-3609C48EACC7} - No File
mRun-x64: [QPService] "C:\Program Files (x86)\HP\QuickPlay\QPService.exe"
mRun-x64: [HP Software Update] C:\Program Files (x86)\Hp\HP Software Update\HPWuSchd2.exe
mRun-x64: [(Default)]
mRun-x64: [amd_dc_opt] C:\Program Files (x86)\AMD\Dual-Core Optimizer\amd_dc_opt.exe
mRun-x64: [RemoteControl10] "C:\Program Files (x86)\CyberLink\PowerDVD10\PDVD10Serv.exe"
mRun-x64: [BDRegion] C:\Program Files (x86)\Cyberlink\Shared files\brs.exe
mRun-x64: [AVG_TRAY] "C:\Program Files (x86)\AVG\AVG2012\avgtray.exe"
mRun-x64: [HFALoader] C:\Program Files (x86)\Hamster Soft\Free ZIP Archiver\Hamster.Archiver.UI.exe -loader
mRun-x64: [QlbCtrl.exe] C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\QlbCtrl.exe /Start
mRun-x64: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe"
mRun-x64: [DivXUpdate] "C:\Program Files (x86)\DivX\DivX Update\DivXUpdate.exe" /CHECKNOW
mRun-x64: [SunJavaUpdateSched] "C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe"
mRun-x64: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime
mRun-x64: [Adobe ARM] "C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
mRun-x64: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe"
mRun-x64: [NMSVC] C:\Program Files (x86)\CE\CovenantEyes.exe
Hosts: 127.0.0.1 www.spywareinfo.com
Hosts: 94.63.240.145 www.google.com
Hosts: 94.63.240.146 www.bing.com
.
================= FIREFOX ===================
.
FF - ProfilePath - C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\kqwet3v1.default\
FF - prefs.js: browser.startup.homepage - hxxp://search.entru.com/?s=21983
FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?pc=Z016&form=ZGAADF&q=
FF - component: C:\Program Files (x86)\AVG\AVG10\Firefox\components\avgssff.dll
FF - component: C:\Program Files (x86)\Orbitdownloader\addons\OneClickYouTubeDownloader\components\GrabXpcom.dll
FF - component: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\kqwet3v1.default\extensions\firetorrent@radicalsoft.com\components\firetorrent.dll
FF - component: C:\Users\Administrator\AppData\Roaming\Mozilla\Firefox\Profiles\kqwet3v1.default\extensions\support@lastpass.com\platform\WINNT_x86-msvc\components\lpxpcom.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX OVS Helper\npovshelper.dll
FF - plugin: C:\Program Files (x86)\DivX\DivX Plus Web Player\npdivx32.dll
FF - plugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.69\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Program Files (x86)\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\Program Files (x86)\Microsoft Silverlight\4.0.60831.0\npctrlui.dll
FF - plugin: C:\Program Files (x86)\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: C:\Users\Administrator\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll
FF - plugin: C:\Windows\system32\Wat\npWatWeb.dll
FF - plugin: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32.dll
.
============= SERVICES / DRIVERS ===============
.
R0 AVGIDSEH;AVGIDSEH;C:\Windows\system32\DRIVERS\AVGIDSEH.Sys --> C:\Windows\system32\DRIVERS\AVGIDSEH.Sys [?]
R0 Avgrkx64;AVG Anti-Rootkit Driver;C:\Windows\system32\DRIVERS\avgrkx64.sys --> C:\Windows\system32\DRIVERS\avgrkx64.sys [?]
R0 Si3531;SiI-3531 SATA Controller;C:\Windows\system32\DRIVERS\Si3531.sys --> C:\Windows\system32\DRIVERS\Si3531.sys [?]
R1 Avgldx64;AVG AVI Loader Driver;C:\Windows\system32\DRIVERS\avgldx64.sys --> C:\Windows\system32\DRIVERS\avgldx64.sys [?]
R1 Avgmfx64;AVG Mini-Filter Resident Anti-Virus Shield;C:\Windows\system32\DRIVERS\avgmfx64.sys --> C:\Windows\system32\DRIVERS\avgmfx64.sys [?]
R1 Avgtdia;AVG TDI Driver;C:\Windows\system32\DRIVERS\avgtdia.sys --> C:\Windows\system32\DRIVERS\avgtdia.sys [?]
R2 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC};Power Control [2010/08/25 23:27:31];C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl [2011-9-22 146928]
R2 {22D78859-9CE9-4B77-BF18-AC83E81A9263};{22D78859-9CE9-4B77-BF18-AC83E81A9263};C:\Program Files (x86)\HP\QuickPlay\000.fcl [2010-4-2 32240]
R2 AdobeARMservice;Adobe Acrobat Update Service;C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe [2011-6-6 64952]
R2 ATService;AuthenTec Fingerprint Service;C:\Program Files (x86)\Fingerprint Sensor\AtService.exe [2009-9-11 1811704]
R2 Auth Service;Auth Service;C:\Windows\System32\authServer.exe [2011-12-19 2219520]
R2 AVGIDSAgent;AVGIDSAgent;C:\Program Files (x86)\AVG\AVG2012\AVGIDSAgent.exe [2011-10-12 4433248]
R2 avgwd;AVG WatchDog;C:\Program Files (x86)\AVG\AVG2012\avgwdsvc.exe [2011-8-2 192776]
R2 HPDrvMntSvc.exe;HP Quick Synchronization Service;C:\Program Files (x86)\Hewlett-Packard\Shared\HPDrvMntSvc.exe [2011-3-17 92216]
R2 nvUpdatusService;NVIDIA Update Service Daemon;C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-9-3 2255464]
R2 TomTomHOMEService;TomTomHOMEService;C:\Program Files (x86)\TomTom HOME 2\TomTomHOMEService.exe [2010-5-7 92008]
R3 ATSwpWDF;AuthenTec TruePrint USB WBF WDF Driver;C:\Windows\system32\Drivers\ATSwpWDF.sys --> C:\Windows\system32\Drivers\ATSwpWDF.sys [?]
R3 AVerHybrid;AVerMedia Hybrid Tuner (NTSC/PAL/SECAM/ATSC/FM);C:\Windows\system32\drivers\averhbtv.sys --> C:\Windows\system32\drivers\averhbtv.sys [?]
R3 AVGIDSDriver;AVGIDSDriver;C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys --> C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys [?]
R3 AVGIDSFilter;AVGIDSFilter;C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys --> C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys [?]
R3 btusbflt;Bluetooth USB Filter;C:\Windows\system32\drivers\btusbflt.sys --> C:\Windows\system32\drivers\btusbflt.sys [?]
R3 Com4QLBEx;Com4QLBEx;C:\Program Files (x86)\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe [2011-8-11 227896]
R3 itecir;ITECIR Infrared Receiver;C:\Windows\system32\DRIVERS\itecir.sys --> C:\Windows\system32\DRIVERS\itecir.sys [?]
R3 ITECIRfilter;ITECIR Filter Driver;C:\Windows\system32\DRIVERS\ITECIRfilter.sys --> C:\Windows\system32\DRIVERS\ITECIRfilter.sys [?]
R3 netw5v64;Intel(R) Wireless WiFi Link 5000 Series Adapter Driver for Windows Vista 64 Bit;C:\Windows\system32\DRIVERS\netw5v64.sys --> C:\Windows\system32\DRIVERS\netw5v64.sys [?]
R3 yukonw7;NDIS6.2 Miniport Driver for Marvell Yukon Ethernet Controller;C:\Windows\system32\DRIVERS\yk62x64.sys --> C:\Windows\system32\DRIVERS\yk62x64.sys [?]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 gupdate;Google Update Service (gupdate);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-5-14 136176]
S3 gupdatem;Google Update Service (gupdatem);C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [2010-5-14 136176]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\system32\drivers\rdpvideominiport.sys --> C:\Windows\system32\drivers\rdpvideominiport.sys [?]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\system32\drivers\tsusbflt.sys --> C:\Windows\system32\drivers\tsusbflt.sys [?]
S3 USBAAPL64;Apple Mobile USB Driver;C:\Windows\system32\Drivers\usbaapl64.sys --> C:\Windows\system32\Drivers\usbaapl64.sys [?]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\system32\Wat\WatAdminSvc.exe --> C:\Windows\system32\Wat\WatAdminSvc.exe [?]
.
=============== Created Last 30 ================
.
2011-12-21 16:31:30 12872 ----a-w- C:\Windows\System32\bootdelete.exe
2011-12-21 16:25:58 25160 ----a-w- C:\Windows\System32\drivers\hitmanpro35.sys
2011-12-21 16:25:32 -------- d-----w- C:\ProgramData\Hitman Pro
2011-12-21 01:46:23 -------- d-----w- C:\Users\Administrator\AppData\Roaming\Xfire
2011-12-21 01:46:20 -------- d-----w- C:\ProgramData\Xfire
2011-12-21 01:46:20 -------- d-----w- C:\Program Files (x86)\Xfire
2011-12-20 17:26:23 626688 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcr80.dll
2011-12-20 17:26:23 548864 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcp80.dll
2011-12-20 17:26:23 479232 ----a-w- C:\Program Files (x86)\Mozilla Firefox\msvcm80.dll
2011-12-20 17:26:23 43992 ----a-w- C:\Program Files (x86)\Mozilla Firefox\mozutils.dll
2011-12-19 14:33:11 2203648 ----a-w- C:\Windows\System32\nmNsp.dll
2011-12-19 14:33:11 177912 ----a-w- C:\Windows\SysWow64\CESpy.dll
2011-12-19 14:33:11 1623288 ----a-w- C:\Windows\SysWow64\nmNsp.dll
2011-12-19 14:33:10 -------- d-----w- C:\Program Files\CE
2011-12-19 14:33:10 -------- d-----w- C:\Program Files (x86)\CE
2011-12-19 14:33:06 2219520 ----a-w- C:\Windows\SysWow64\authServer.exe
2011-12-15 04:41:14 42392 ----a-w- C:\Windows\SysWow64\xfcodec.dll
2011-12-15 04:41:14 28056 ----a-w- C:\Windows\System32\xfcodec64.dll
2011-12-13 18:28:45 34152 ----a-w- C:\Windows\System32\drivers\GEARAspiWDM.sys
2011-12-13 18:28:45 126312 ----a-w- C:\Windows\System32\GEARAspi64.dll
2011-12-13 18:28:45 107368 ----a-w- C:\Windows\SysWow64\GEARAspi.dll
2011-12-13 18:27:58 -------- d-----w- C:\Program Files\iTunes
2011-12-13 18:27:58 -------- d-----w- C:\Program Files\iPod
2011-12-13 18:27:58 -------- d-----w- C:\Program Files (x86)\iTunes
2011-12-13 18:24:34 43520 ----a-w- C:\Windows\System32\csrsrv.dll
2011-12-13 18:24:28 2048 ----a-w- C:\Windows\SysWow64\tzres.dll
2011-12-13 18:24:28 2048 ----a-w- C:\Windows\System32\tzres.dll
2011-12-13 18:24:10 723456 ----a-w- C:\Windows\System32\EncDec.dll
2011-12-13 18:24:09 534528 ----a-w- C:\Windows\SysWow64\EncDec.dll
2011-12-13 18:24:07 3145216 ----a-w- C:\Windows\System32\win32k.sys
2011-12-11 03:05:21 -------- d-----w- C:\Program Files\Microsoft Xbox 360 Accessories
.
==================== Find3M ====================
.
2011-11-28 20:37:14 206848 ----a-w- C:\Windows\System32\CESpy.dll
2011-11-28 20:33:50 2219520 ----a-w- C:\Windows\System32\authServer.exe
2011-11-06 13:55:05 404640 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2011-11-04 01:53:39 2309120 ----a-w- C:\Windows\System32\jscript9.dll
2011-11-04 01:44:47 1390080 ----a-w- C:\Windows\System32\wininet.dll
2011-11-04 01:44:21 1493504 ----a-w- C:\Windows\System32\inetcpl.cpl
2011-11-04 01:34:43 2382848 ----a-w- C:\Windows\System32\mshtml.tlb
2011-11-03 22:47:42 1798144 ----a-w- C:\Windows\SysWow64\jscript9.dll
2011-11-03 22:40:21 1427456 ----a-w- C:\Windows\SysWow64\inetcpl.cpl
2011-11-03 22:39:47 1127424 ----a-w- C:\Windows\SysWow64\wininet.dll
2011-11-03 22:31:57 2382848 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2011-10-31 00:08:33 499712 ----a-w- C:\Windows\SysWow64\msvcp71.dll
2011-10-31 00:08:33 348160 ----a-w- C:\Windows\SysWow64\msvcr71.dll
2011-10-31 00:08:33 29480 ----a-w- C:\Windows\SysWow64\msxml3a.dll
2011-10-24 20:29:02 94208 ----a-w- C:\Windows\SysWow64\QuickTimeVR.qtx
2011-10-24 20:29:02 69632 ----a-w- C:\Windows\SysWow64\QuickTime.qts
2011-10-07 11:23:46 283728 ----a-w- C:\Windows\System32\drivers\avgldx64.sys
2011-10-03 10:06:03 472808 ----a-w- C:\Windows\SysWow64\deployJava1.dll
.
============= FINISH: 18:16:02.76 ===============

[shelf life]

hi cridgit001,

Your post is a few days old. If you still need help simply reply back.

[cridgit001]

Hello,

Yes, I'm still getting a redirect on search engines. If you wouldn't mind, I'd greatly appreciate it.

Thank you

[shelf life]

Sorry I missed your post. We will get a download to start with:

Please download TDSS Killer.exe and save it to your desktop
Double click to launch the utility. After it initializes click the start scan button.

Once the scan completes you can click the continue button.

"The utility will automatically select an action (Cure or Delete) for known malcious objects. A suspicious object will be skipped by default."

"After clicking Next, the utility applies selected actions and outputs the result."

"A reboot might require after disinfection."

A report will be found in your Root drive Local Disk (C) as TDSSKiller.2.4.2.1_09.08.2010_17.32.21_log.txt (name, version, date, time)
Please post the log report

[cridgit001]

15:24:47.0014 3952 TDSS rootkit removing tool 2.7.0.0 Jan 10 2012 09:14:26
15:24:49.0016 3952 ============================================================
15:24:49.0016 3952 Current date / time: 2012/01/12 15:24:49.0016
15:24:49.0016 3952 SystemInfo:
15:24:49.0016 3952
15:24:49.0016 3952 OS Version: 6.1.7601 ServicePack: 1.0
15:24:49.0016 3952 Product type: Workstation
15:24:49.0016 3952 ComputerName: DRAGON
15:24:49.0017 3952 UserName: Administrator
15:24:49.0017 3952 Windows directory: C:\Windows
15:24:49.0017 3952 System windows directory: C:\Windows
15:24:49.0017 3952 Running under WOW64
15:24:49.0017 3952 Processor architecture: Intel x64
15:24:49.0017 3952 Number of processors: 2
15:24:49.0017 3952 Page size: 0x1000
15:24:49.0017 3952 Boot type: Normal boot
15:24:49.0017 3952 ============================================================
15:24:51.0140 3952 Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000, SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K', Flags 0x00000040
15:24:51.0196 3952 Initialize success
15:24:52.0996 2892 ============================================================
15:24:52.0996 2892 Scan started
15:24:52.0996 2892 Mode: Manual;
15:24:52.0996 2892 ============================================================
15:24:54.0282 2892 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
15:24:54.0286 2892 1394ohci - ok
15:24:54.0408 2892 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
15:24:54.0413 2892 ACPI - ok
15:24:54.0576 2892 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
15:24:54.0621 2892 AcpiPmi - ok
15:24:54.0771 2892 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
15:24:54.0778 2892 adp94xx - ok
15:24:54.0821 2892 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
15:24:54.0850 2892 adpahci - ok
15:24:55.0029 2892 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
15:24:55.0064 2892 adpu320 - ok
15:24:55.0654 2892 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
15:24:55.0667 2892 AFD - ok
15:24:55.0787 2892 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
15:24:55.0789 2892 agp440 - ok
15:24:55.0863 2892 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
15:24:55.0864 2892 aliide - ok
15:24:55.0935 2892 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
15:24:55.0937 2892 amdide - ok
15:24:55.0977 2892 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
15:24:56.0054 2892 AmdK8 - ok
15:24:56.0142 2892 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
15:24:56.0203 2892 AmdPPM - ok
15:24:56.0323 2892 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
15:24:56.0348 2892 amdsata - ok
15:24:56.0408 2892 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
15:24:56.0411 2892 amdsbs - ok
15:24:56.0511 2892 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
15:24:56.0526 2892 amdxata - ok
15:24:56.0671 2892 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
15:24:56.0753 2892 AppID - ok
15:24:56.0897 2892 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
15:24:56.0899 2892 arc - ok
15:24:56.0920 2892 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
15:24:56.0923 2892 arcsas - ok
15:24:56.0954 2892 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
15:24:56.0956 2892 AsyncMac - ok
15:24:57.0004 2892 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
15:24:57.0005 2892 atapi - ok
15:24:57.0124 2892 ATSwpWDF (ea512f43f4a28d18b52cafe8c93984fb) C:\Windows\system32\Drivers\ATSwpWDF.sys
15:24:57.0133 2892 ATSwpWDF - ok
15:24:57.0666 2892 AVerHybrid (d8948938f5400949f308a0533032078e) C:\Windows\system32\drivers\averhbtv.sys
15:24:57.0810 2892 AVerHybrid - ok
15:24:57.0945 2892 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
15:24:57.0957 2892 AVGIDSDriver - ok
15:24:58.0012 2892 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
15:24:58.0014 2892 AVGIDSEH - ok
15:24:58.0097 2892 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
15:24:58.0099 2892 AVGIDSFilter - ok
15:24:58.0210 2892 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\Windows\system32\DRIVERS\avgldx64.sys
15:24:58.0215 2892 Avgldx64 - ok
15:24:58.0322 2892 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\Windows\system32\DRIVERS\avgmfx64.sys
15:24:58.0324 2892 Avgmfx64 - ok
15:24:58.0431 2892 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\Windows\system32\DRIVERS\avgrkx64.sys
15:24:58.0433 2892 Avgrkx64 - ok
15:24:58.0533 2892 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\Windows\system32\DRIVERS\avgtdia.sys
15:24:58.0538 2892 Avgtdia - ok
15:24:58.0620 2892 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
15:24:58.0725 2892 b06bdrv - ok
15:24:58.0835 2892 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
15:24:58.0875 2892 b57nd60a - ok
15:24:58.0924 2892 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
15:24:58.0981 2892 Beep - ok
15:24:59.0101 2892 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
15:24:59.0161 2892 blbdrive - ok
15:24:59.0354 2892 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
15:24:59.0356 2892 bowser - ok
15:24:59.0396 2892 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
15:24:59.0489 2892 BrFiltLo - ok
15:24:59.0591 2892 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
15:24:59.0650 2892 BrFiltUp - ok
15:24:59.0786 2892 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
15:24:59.0791 2892 Brserid - ok
15:24:59.0816 2892 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
15:24:59.0850 2892 BrSerWdm - ok
15:24:59.0961 2892 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
15:24:59.0962 2892 BrUsbMdm - ok
15:24:59.0971 2892 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
15:25:00.0026 2892 BrUsbSer - ok
15:25:00.0108 2892 BthEnum (cf98190a94f62e405c8cb255018b2315) C:\Windows\system32\drivers\BthEnum.sys
15:25:00.0110 2892 BthEnum - ok
15:25:00.0180 2892 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
15:25:00.0183 2892 BTHMODEM - ok
15:25:00.0254 2892 BthPan (02dd601b708dd0667e1331fa8518e9ff) C:\Windows\system32\DRIVERS\bthpan.sys
15:25:00.0257 2892 BthPan - ok
15:25:00.0333 2892 BTHPORT (64c198198501f7560ee41d8d1efa7952) C:\Windows\System32\Drivers\BTHport.sys
15:25:00.0354 2892 BTHPORT - ok
15:25:00.0435 2892 BTHUSB (f188b7394d81010767b6df3178519a37) C:\Windows\System32\Drivers\BTHUSB.sys
15:25:00.0447 2892 BTHUSB - ok
15:25:00.0577 2892 btusbflt (2641a3fe3d7b0646308f33b67f3b5300) C:\Windows\system32\drivers\btusbflt.sys
15:25:00.0579 2892 btusbflt - ok
15:25:00.0656 2892 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
15:25:00.0712 2892 cdfs - ok
15:25:00.0855 2892 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\drivers\cdrom.sys
15:25:00.0859 2892 cdrom - ok
15:25:00.0905 2892 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
15:25:00.0975 2892 circlass - ok
15:25:01.0064 2892 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
15:25:01.0069 2892 CLFS - ok
15:25:01.0135 2892 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
15:25:01.0231 2892 CmBatt - ok
15:25:01.0364 2892 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
15:25:01.0365 2892 cmdide - ok
15:25:01.0440 2892 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
15:25:01.0447 2892 CNG - ok
15:25:01.0605 2892 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
15:25:01.0607 2892 Compbatt - ok
15:25:01.0692 2892 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
15:25:01.0756 2892 CompositeBus - ok
15:25:01.0869 2892 cpuz130 - ok
15:25:01.0937 2892 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
15:25:01.0938 2892 crcdisk - ok
15:25:02.0050 2892 CSC (54da3dfd29ed9f1619b6f53f3ce55e49) C:\Windows\system32\drivers\csc.sys
15:25:02.0153 2892 CSC - ok
15:25:02.0265 2892 CVirtA (44bddeb03c84a1c993c992ffb5700357) C:\Windows\system32\DRIVERS\CVirtA64.sys
15:25:02.0400 2892 CVirtA - ok
15:25:02.0814 2892 CVPNDRVA (cc8e52daa9826064ba464dbe531f2bb5) C:\Windows\system32\Drivers\CVPNDRVA.sys
15:25:02.0819 2892 CVPNDRVA - ok
15:25:03.0225 2892 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
15:25:03.0228 2892 DfsC - ok
15:25:03.0398 2892 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
15:25:03.0400 2892 discache - ok
15:25:03.0635 2892 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
15:25:03.0636 2892 Disk - ok
15:25:03.0875 2892 DNE (05cb5910b3ca6019fc3cca815ee06ffb) C:\Windows\system32\DRIVERS\dne64x.sys
15:25:03.0878 2892 DNE - ok
15:25:04.0031 2892 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
15:25:04.0120 2892 drmkaud - ok
15:25:04.0421 2892 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
15:25:04.0434 2892 DXGKrnl - ok
15:25:04.0671 2892 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
15:25:04.0868 2892 ebdrv - ok
15:25:05.0183 2892 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
15:25:05.0190 2892 elxstor - ok
15:25:05.0377 2892 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
15:25:05.0414 2892 ErrDev - ok
15:25:05.0555 2892 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
15:25:05.0671 2892 exfat - ok
15:25:05.0839 2892 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
15:25:05.0931 2892 fastfat - ok
15:25:06.0091 2892 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
15:25:06.0235 2892 fdc - ok
15:25:06.0348 2892 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
15:25:06.0350 2892 FileInfo - ok
15:25:06.0366 2892 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
15:25:06.0368 2892 Filetrace - ok
15:25:06.0401 2892 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
15:25:06.0403 2892 flpydisk - ok
15:25:06.0599 2892 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
15:25:06.0603 2892 FltMgr - ok
15:25:06.0769 2892 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
15:25:06.0771 2892 FsDepends - ok
15:25:06.0817 2892 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
15:25:06.0818 2892 Fs_Rec - ok
15:25:06.0994 2892 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
15:25:06.0998 2892 fvevol - ok
15:25:07.0150 2892 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
15:25:07.0153 2892 gagp30kx - ok
15:25:07.0341 2892 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
15:25:07.0343 2892 GEARAspiWDM - ok
15:25:07.0628 2892 HBtnKey (93c3c66d38b0bc08a04f0b28055bc9ac) C:\Windows\system32\DRIVERS\cpqbttn.sys
15:25:07.0639 2892 HBtnKey - ok
15:25:07.0685 2892 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
15:25:07.0786 2892 hcw85cir - ok
15:25:08.0038 2892 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
15:25:08.0095 2892 HdAudAddService - ok
15:25:08.0366 2892 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
15:25:08.0368 2892 HDAudBus - ok
15:25:08.0496 2892 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
15:25:08.0499 2892 HidBatt - ok
15:25:08.0585 2892 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
15:25:08.0588 2892 HidBth - ok
15:25:08.0722 2892 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
15:25:08.0738 2892 HidIr - ok
15:25:08.0986 2892 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\DRIVERS\hidusb.sys
15:25:08.0988 2892 HidUsb - ok
15:25:09.0303 2892 HpqKbFiltr (9af482d058be59cc28bce52e7c4b747c) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
15:25:10.0323 2892 HpqKbFiltr - ok
15:25:10.0763 2892 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
15:25:10.0819 2892 HpSAMD - ok
15:25:11.0430 2892 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
15:25:11.0439 2892 HTTP - ok
15:25:11.0606 2892 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
15:25:11.0607 2892 hwpolicy - ok
15:25:11.0753 2892 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\DRIVERS\i8042prt.sys
15:25:11.0828 2892 i8042prt - ok
15:25:11.0955 2892 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
15:25:11.0987 2892 iaStorV - ok
15:25:12.0187 2892 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
15:25:12.0188 2892 iirsp - ok
15:25:12.0260 2892 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
15:25:12.0262 2892 intelide - ok
15:25:12.0425 2892 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
15:25:12.0427 2892 intelppm - ok
15:25:12.0508 2892 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
15:25:12.0580 2892 IpFilterDriver - ok
15:25:12.0737 2892 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
15:25:12.0775 2892 IPMIDRV - ok
15:25:12.0843 2892 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
15:25:12.0887 2892 IPNAT - ok
15:25:13.0218 2892 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
15:25:13.0219 2892 IRENUM - ok
15:25:13.0403 2892 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
15:25:13.0404 2892 isapnp - ok
15:25:13.0512 2892 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
15:25:13.0516 2892 iScsiPrt - ok
15:25:13.0663 2892 itecir (8d990a44b4f2b68e2c56a3724ec3eb84) C:\Windows\system32\DRIVERS\itecir.sys
15:25:14.0179 2892 itecir - ok
15:25:14.0338 2892 ITECIRfilter (e5aac07b053d15ba8f67ba7d49c20971) C:\Windows\system32\DRIVERS\ITECIRfilter.sys
15:25:14.0641 2892 ITECIRfilter - ok
15:25:15.0005 2892 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\DRIVERS\kbdclass.sys
15:25:15.0007 2892 kbdclass - ok
15:25:15.0562 2892 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\DRIVERS\kbdhid.sys
15:25:15.0996 2892 kbdhid - ok
15:25:16.0371 2892 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
15:25:16.0373 2892 KSecDD - ok
15:25:16.0593 2892 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
15:25:16.0597 2892 KSecPkg - ok
15:25:16.0739 2892 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
15:25:16.0741 2892 ksthunk - ok
15:25:16.0952 2892 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
15:25:16.0954 2892 lltdio - ok
15:25:17.0013 2892 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
15:25:17.0016 2892 LSI_FC - ok
15:25:17.0458 2892 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
15:25:17.0461 2892 LSI_SAS - ok
15:25:17.0689 2892 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
15:25:17.0692 2892 LSI_SAS2 - ok
15:25:17.0839 2892 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
15:25:17.0842 2892 LSI_SCSI - ok
15:25:17.0862 2892 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
15:25:17.0864 2892 luafv - ok
15:25:17.0937 2892 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
15:25:17.0939 2892 megasas - ok
15:25:18.0267 2892 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
15:25:18.0272 2892 MegaSR - ok
15:25:18.0587 2892 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
15:25:18.0589 2892 Modem - ok
15:25:19.0322 2892 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
15:25:19.0323 2892 monitor - ok
15:25:19.0549 2892 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\DRIVERS\mouclass.sys
15:25:19.0551 2892 mouclass - ok
15:25:19.0751 2892 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
15:25:19.0752 2892 mouhid - ok
15:25:19.0930 2892 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
15:25:19.0932 2892 mountmgr - ok
15:25:20.0305 2892 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
15:25:20.0351 2892 mpio - ok
15:25:20.0547 2892 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
15:25:20.0549 2892 mpsdrv - ok
15:25:20.0677 2892 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
15:25:20.0679 2892 MRxDAV - ok
15:25:20.0784 2892 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
15:25:20.0797 2892 mrxsmb - ok
15:25:20.0979 2892 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
15:25:20.0983 2892 mrxsmb10 - ok
15:25:21.0099 2892 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
15:25:21.0102 2892 mrxsmb20 - ok
15:25:23.0301 2892 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
15:25:23.0304 2892 msahci - ok
15:25:23.0597 2892 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
15:25:23.0601 2892 msdsm - ok
15:25:23.0744 2892 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
15:25:23.0803 2892 Msfs - ok
15:25:24.0042 2892 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
15:25:24.0043 2892 mshidkmdf - ok
15:25:24.0221 2892 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
15:25:24.0222 2892 msisadrv - ok
15:25:24.0357 2892 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
15:25:24.0448 2892 MSKSSRV - ok
15:25:24.0855 2892 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
15:25:24.0938 2892 MSPCLOCK - ok
15:25:25.0067 2892 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
15:25:25.0069 2892 MSPQM - ok
15:25:25.0153 2892 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
15:25:25.0228 2892 MsRPC - ok
15:25:25.0720 2892 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
15:25:25.0721 2892 mssmbios - ok
15:25:26.0097 2892 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
15:25:26.0177 2892 MSTEE - ok
15:25:26.0990 2892 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
15:25:28.0267 2892 MTConfig - ok
15:25:29.0800 2892 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
15:25:30.0305 2892 Mup - ok
15:25:30.0631 2892 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
15:25:30.0639 2892 NativeWifiP - ok
15:25:31.0012 2892 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
15:25:31.0024 2892 NDIS - ok
15:25:31.0382 2892 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
15:25:31.0531 2892 NdisCap - ok
15:25:32.0398 2892 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
15:25:32.0512 2892 NdisTapi - ok
15:25:32.0650 2892 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
15:25:32.0652 2892 Ndisuio - ok
15:25:32.0679 2892 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
15:25:32.0727 2892 NdisWan - ok
15:25:33.0010 2892 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
15:25:33.0014 2892 NDProxy - ok
15:25:33.0150 2892 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
15:25:33.0346 2892 NetBIOS - ok
15:25:33.0544 2892 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
15:25:33.0548 2892 NetBT - ok
15:25:33.0826 2892 netw5v64 (64428dfdaf6e88366cb51f45a79c5f69) C:\Windows\system32\DRIVERS\netw5v64.sys
15:25:33.0940 2892 netw5v64 - ok
15:25:34.0037 2892 NetworkX - ok
15:25:34.0159 2892 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
15:25:34.0161 2892 nfrd960 - ok
15:25:34.0222 2892 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
15:25:34.0245 2892 Npfs - ok
15:25:34.0394 2892 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
15:25:34.0396 2892 nsiproxy - ok
15:25:34.0491 2892 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
15:25:34.0510 2892 Ntfs - ok
15:25:34.0613 2892 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
15:25:34.0680 2892 Null - ok
15:25:36.0614 2892 nvlddmkm (fd39b98ff1bb8ed3848781497e9d02e0) C:\Windows\system32\DRIVERS\nvlddmkm.sys
15:25:36.0898 2892 nvlddmkm - ok
15:25:37.0018 2892 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
15:25:37.0021 2892 nvraid - ok
15:25:37.0055 2892 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
15:25:37.0058 2892 nvstor - ok
15:25:37.0384 2892 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
15:25:37.0415 2892 nv_agp - ok
15:25:37.0474 2892 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
15:25:37.0505 2892 ohci1394 - ok
15:25:37.0684 2892 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
15:25:37.0687 2892 Parport - ok
15:25:37.0771 2892 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
15:25:37.0773 2892 partmgr - ok
15:25:38.0098 2892 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
15:25:38.0102 2892 pci - ok
15:25:38.0411 2892 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
15:25:38.0413 2892 pciide - ok
15:25:38.0519 2892 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
15:25:38.0522 2892 pcmcia - ok
15:25:38.0617 2892 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
15:25:38.0619 2892 pcw - ok
15:25:38.0922 2892 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
15:25:38.0951 2892 PEAUTH - ok
15:25:39.0438 2892 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
15:25:39.0441 2892 PptpMiniport - ok
15:25:39.0721 2892 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
15:25:39.0769 2892 Processor - ok
15:25:40.0027 2892 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
15:25:40.0030 2892 Psched - ok
15:25:40.0506 2892 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
15:25:40.0543 2892 ql2300 - ok
15:25:40.0710 2892 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
15:25:40.0712 2892 ql40xx - ok
15:25:40.0775 2892 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
15:25:40.0777 2892 QWAVEdrv - ok
15:25:40.0985 2892 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
15:25:41.0038 2892 RasAcd - ok
15:25:42.0669 2892 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
15:25:42.0671 2892 RasAgileVpn - ok
15:25:43.0377 2892 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
15:25:43.0441 2892 Rasl2tp - ok
15:25:43.0564 2892 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
15:25:43.0615 2892 RasPppoe - ok
15:25:43.0793 2892 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
15:25:43.0834 2892 RasSstp - ok
15:25:43.0953 2892 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
15:25:43.0996 2892 rdbss - ok
15:25:44.0063 2892 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
15:25:44.0087 2892 rdpbus - ok
15:25:44.0168 2892 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
15:25:44.0170 2892 RDPCDD - ok
15:25:44.0230 2892 RDPDR (1b6163c503398b23ff8b939c67747683) C:\Windows\system32\drivers\rdpdr.sys
15:25:44.0233 2892 RDPDR - ok
15:25:44.0283 2892 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
15:25:44.0285 2892 RDPENCDD - ok
15:25:44.0336 2892 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
15:25:44.0338 2892 RDPREFMP - ok
15:25:44.0480 2892 RdpVideoMiniport (70cba1a0c98600a2aa1863479b35cb90) C:\Windows\system32\drivers\rdpvideominiport.sys
15:25:44.0482 2892 RdpVideoMiniport - ok
15:25:44.0569 2892 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
15:25:44.0574 2892 RDPWD - ok
15:25:44.0667 2892 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
15:25:44.0671 2892 rdyboost - ok
15:25:44.0751 2892 RFCOMM (3dd798846e2c28102b922c56e71b7932) C:\Windows\system32\DRIVERS\rfcomm.sys
15:25:44.0754 2892 RFCOMM - ok
15:25:45.0488 2892 rismxdp (2a43f9e6dbde12bc0c104785c3b3f5df) C:\Windows\system32\DRIVERS\rixdpx64.sys
15:25:45.0522 2892 rismxdp - ok
15:25:46.0246 2892 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
15:25:46.0248 2892 rspndr - ok
15:25:46.0470 2892 s3cap (e60c0a09f997826c7627b244195ab581) C:\Windows\system32\drivers\vms3cap.sys
15:25:46.0488 2892 s3cap - ok
15:25:46.0730 2892 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
15:25:46.0733 2892 sbp2port - ok
15:25:47.0023 2892 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
15:25:47.0024 2892 scfilter - ok
15:25:47.0629 2892 sdbus (111e0ebc0ad79cb0fa014b907b231cf0) C:\Windows\system32\drivers\sdbus.sys
15:25:47.0632 2892 sdbus - ok
15:25:47.0758 2892 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
15:25:47.0760 2892 secdrv - ok
15:25:47.0796 2892 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
15:25:47.0798 2892 Serenum - ok
15:25:47.0830 2892 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
15:25:47.0833 2892 Serial - ok
15:25:47.0900 2892 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
15:25:47.0902 2892 sermouse - ok
15:25:48.0033 2892 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
15:25:48.0102 2892 sffdisk - ok
15:25:48.0262 2892 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
15:25:48.0324 2892 sffp_mmc - ok
15:25:48.0808 2892 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
15:25:48.0809 2892 sffp_sd - ok
15:25:48.0953 2892 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
15:25:48.0955 2892 sfloppy - ok
15:25:49.0040 2892 Si3531 (1b731ae02fc0c1ccdc4b7d32fcc95660) C:\Windows\system32\DRIVERS\Si3531.sys
15:25:49.0044 2892 Si3531 - ok
15:25:49.0111 2892 SiFilter (8574809375c8147cc9b6a62822018fd6) C:\Windows\system32\DRIVERS\SiWinAcc.sys
15:25:49.0113 2892 SiFilter - ok
15:25:49.0175 2892 SiRemFil (e7b586131c8c417691e303c511c3563b) C:\Windows\system32\DRIVERS\SiRemFil.sys
15:25:49.0206 2892 SiRemFil - ok
15:25:49.0263 2892 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
15:25:49.0266 2892 SiSRaid2 - ok
15:25:49.0367 2892 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
15:25:49.0369 2892 SiSRaid4 - ok
15:25:49.0408 2892 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
15:25:49.0411 2892 Smb - ok
15:25:49.0455 2892 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
15:25:49.0457 2892 spldr - ok
15:25:49.0623 2892 sptd (602884696850c86434530790b110e8eb) C:\Windows\system32\Drivers\sptd.sys
15:25:49.0624 2892 Suspicious file (NoAccess): C:\Windows\system32\Drivers\sptd.sys. md5: 602884696850c86434530790b110e8eb
15:25:49.0638 2892 sptd ( LockedFile.Multi.Generic ) - warning
15:25:49.0638 2892 sptd - detected LockedFile.Multi.Generic (1)
15:25:49.0706 2892 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
15:25:49.0713 2892 srv - ok
15:25:49.0823 2892 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
15:25:49.0832 2892 srv2 - ok
15:25:49.0896 2892 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
15:25:49.0899 2892 srvnet - ok
15:25:50.0023 2892 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
15:25:50.0025 2892 stexstor - ok
15:25:50.0061 2892 STHDA (7ed1012b59acacfcfb1af56345f9cd0f) C:\Windows\system32\drivers\stwrt64.sys
15:25:50.0111 2892 STHDA - ok
15:25:50.0258 2892 storflt (7785dc213270d2fc066538daf94087e7) C:\Windows\system32\drivers\vmstorfl.sys
15:25:50.0260 2892 storflt - ok
15:25:50.0323 2892 storvsc (d34e4943d5ac096c8edeebfd80d76e23) C:\Windows\system32\drivers\storvsc.sys
15:25:50.0325 2892 storvsc - ok
15:25:50.0382 2892 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
15:25:50.0384 2892 swenum - ok
15:25:50.0529 2892 Synth3dVsc - ok
15:25:50.0620 2892 SynTP (3a706a967295e16511e40842b1a2761d) C:\Windows\system32\DRIVERS\SynTP.sys
15:25:50.0626 2892 SynTP - ok
15:25:50.0806 2892 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
15:25:50.0831 2892 Tcpip - ok
15:25:51.0038 2892 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
15:25:51.0055 2892 TCPIP6 - ok
15:25:51.0165 2892 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
15:25:51.0167 2892 tcpipreg - ok
15:25:51.0244 2892 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
15:25:51.0275 2892 TDPIPE - ok
15:25:51.0366 2892 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
15:25:51.0367 2892 TDTCP - ok
15:25:51.0432 2892 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
15:25:51.0435 2892 tdx - ok
15:25:51.0499 2892 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
15:25:51.0501 2892 TermDD - ok
15:25:51.0679 2892 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
15:25:51.0681 2892 tssecsrv - ok
15:25:51.0840 2892 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
15:25:51.0843 2892 TsUsbFlt - ok
15:25:51.0919 2892 tsusbhub - ok
15:25:51.0969 2892 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
15:25:51.0971 2892 tunnel - ok
15:25:52.0018 2892 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
15:25:52.0021 2892 uagp35 - ok
15:25:52.0088 2892 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
15:25:52.0094 2892 udfs - ok
15:25:52.0238 2892 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
15:25:52.0241 2892 uliagpkx - ok
15:25:52.0310 2892 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\DRIVERS\umbus.sys
15:25:52.0343 2892 umbus - ok
15:25:52.0976 2892 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
15:25:52.0977 2892 UmPass - ok
15:25:53.0088 2892 USBAAPL64 (aa33fc47ed58c34e6e9261e4f850b7eb) C:\Windows\system32\Drivers\usbaapl64.sys
15:25:53.0090 2892 USBAAPL64 - ok
15:25:53.0127 2892 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
15:25:53.0129 2892 usbccgp - ok
15:25:53.0224 2892 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
15:25:53.0254 2892 usbcir - ok
15:25:53.0372 2892 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
15:25:53.0491 2892 usbehci - ok
15:25:53.0616 2892 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
15:25:53.0758 2892 usbhub - ok
15:25:53.0865 2892 usbohci (58e546bbaf87664fc57e0f6081e4f609) C:\Windows\system32\DRIVERS\usbohci.sys
15:25:53.0867 2892 usbohci - ok
15:25:53.0939 2892 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
15:25:53.0941 2892 usbprint - ok
15:25:53.0994 2892 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
15:25:53.0997 2892 usbscan - ok
15:25:54.0090 2892 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
15:25:54.0234 2892 USBSTOR - ok
15:25:54.0329 2892 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
15:25:54.0486 2892 usbuhci - ok
15:25:54.0624 2892 usbvideo (454800c2bc7f3927ce030141ee4f4c50) C:\Windows\System32\Drivers\usbvideo.sys
15:25:54.0628 2892 usbvideo - ok
15:25:54.0710 2892 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
15:25:54.0712 2892 vdrvroot - ok
15:25:54.0739 2892 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
15:25:54.0741 2892 vga - ok
15:25:54.0812 2892 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
15:25:54.0814 2892 VgaSave - ok
15:25:54.0840 2892 VGPU - ok
15:25:54.0901 2892 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
15:25:54.0905 2892 vhdmp - ok
15:25:54.0963 2892 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
15:25:54.0965 2892 viaide - ok
15:25:55.0081 2892 vmbus (86ea3e79ae350fea5331a1303054005f) C:\Windows\system32\drivers\vmbus.sys
15:25:55.0085 2892 vmbus - ok
15:25:55.0169 2892 VMBusHID (7de90b48f210d29649380545db45a187) C:\Windows\system32\drivers\VMBusHID.sys
15:25:55.0171 2892 VMBusHID - ok
15:25:55.0341 2892 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
15:25:55.0344 2892 volmgr - ok
15:25:55.0416 2892 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
15:25:55.0422 2892 volmgrx - ok
15:25:55.0563 2892 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
15:25:55.0568 2892 volsnap - ok
15:25:55.0653 2892 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
15:25:55.0657 2892 vsmraid - ok
15:25:55.0730 2892 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\System32\drivers\vwifibus.sys
15:25:55.0731 2892 vwifibus - ok
15:25:55.0762 2892 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
15:25:55.0835 2892 WacomPen - ok
15:25:55.0987 2892 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:25:55.0990 2892 WANARP - ok
15:25:55.0995 2892 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
15:25:55.0996 2892 Wanarpv6 - ok
15:25:56.0071 2892 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
15:25:56.0073 2892 Wd - ok
15:25:56.0136 2892 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
15:25:56.0145 2892 Wdf01000 - ok
15:25:56.0280 2892 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
15:25:56.0322 2892 WfpLwf - ok
15:25:56.0363 2892 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
15:25:56.0365 2892 WIMMount - ok
15:25:56.0529 2892 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
15:25:56.0531 2892 WinUsb - ok
15:25:56.0617 2892 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
15:25:56.0618 2892 WmiAcpi - ok
15:25:56.0718 2892 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
15:25:56.0750 2892 ws2ifsl - ok
15:25:56.0804 2892 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
15:25:56.0807 2892 WudfPf - ok
15:25:56.0826 2892 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
15:25:56.0830 2892 WUDFRd - ok
15:25:56.0974 2892 xusb21 (2ee48cfce7ca8e0db4c44c7476c0943b) C:\Windows\system32\DRIVERS\xusb21.sys
15:25:56.0991 2892 xusb21 - ok
15:25:57.0046 2892 yukonw7 (64f88af327aa74e03658ae32b48ccb8b) C:\Windows\system32\DRIVERS\yk62x64.sys
15:25:57.0052 2892 yukonw7 - ok
15:25:57.0204 2892 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} (74983addca2d9618512c088d856d6615) C:\Program Files (x86)\CyberLink\PowerDVD10\NavFilter\000.fcl
15:25:57.0207 2892 {1BA31E5A-C098-42d8-8F88-3C9F78A2FDDC} - ok
15:25:57.0260 2892 {22D78859-9CE9-4B77-BF18-AC83E81A9263} (6839fa0c104dbbdd989e2eac27acb761) C:\Program Files (x86)\HP\QuickPlay\000.fcl
15:25:57.0261 2892 {22D78859-9CE9-4B77-BF18-AC83E81A9263} - ok
15:25:57.0326 2892 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
15:25:57.0386 2892 \Device\Harddisk0\DR0 - ok
15:25:57.0390 2892 Boot (0x1200) (426115a97acbc86dbe7ea60d84440856) \Device\Harddisk0\DR0\Partition0
15:25:57.0391 2892 \Device\Harddisk0\DR0\Partition0 - ok
15:25:57.0392 2892 ============================================================
15:25:57.0392 2892 Scan finished
15:25:57.0392 2892 ============================================================
15:25:57.0406 1552 Detected object count: 1
15:25:57.0406 1552 Actual detected object count: 1
15:26:55.0537 1552 HKLM\SYSTEM\ControlSet001\services\sptd - will be deleted on reboot
15:26:55.0555 1552 HKLM\SYSTEM\ControlSet002\services\sptd - will be deleted on reboot
15:26:55.0570 1552 C:\Windows\system32\Drivers\sptd.sys - will be deleted on reboot
15:26:55.0571 1552 sptd ( LockedFile.Multi.Generic ) - User select action: Delete
17:08:57.0257 1096 Deinitialize success

[shelf life]

You rebooted after you ran Tdsskiller, correct? Please check malwarebytes for updates then do a scan with it since rootkits can also bring other malware. How is the re-direction now?

[cridgit001]

yeah, i rebooted. I'll run Malware Bytes now.

[cridgit001]

Hey, sorry about the delayed reply. I was out of town a few days. I ran malware bytes and im not getting the redirects anymore. Thank you for your help. Much appreciated.