Author Topic: [Resolved] Unable to remove old and install new Internet Security suites. (Read 3025 times)

dastal · « **on:** March 04, 2012, 05:47:14 AM »

I have recently purchased Kaspersky Pure Internet Security. I cannot install the product. I have downloaded several versions and been in contact with Kaspersky who have sent different download links but same result. When I press run to install I get a dialogue box warning me that the version is either incomplete or corrupted. I have tried to remove the previous version with their removal toll and it doesn't work. My operating system is MS Vista. Hopefully you guys can help.

Hoov · « **Reply #1 on:** March 04, 2012, 07:35:41 AM »

As you have been helped here before, I am going to skip the preliminaries. I am Hoov and I will be helping you with your problems.

First, We need to see some information about what is happening in your machine. Please perform the following scan:

Download DDS by sUBs from one of the following links. Save it to your desktop.
- DDS.scr
Double click on the DDS icon, allow it to run.
A small box will open, with an explaination about the tool. No input is needed, the scan is running.
Notepad will open with the results.
Please copy and paste both logs into your next response. You may need more than one response.
Close the program window, and delete the program from your desktop.

Please note: You may have to disable any script protection running if the scan fails to run. After downloading the tool, disconnect from the internet and disable all antivirus protection. Run the scan, enable your A/V and reconnect to the internet.

Information on A/V control HERE

Please download Malwarebytes Anti-Malware and save it to your desktop.
alternate download link 1
alternate download link 2

MBAM may "make changes to your registry" as part of its disinfection routine. If using other security programs that detect registry changes (ie Spybot''s Teatimer), they may interfere or alert you. Temporarily disable such programs or permit them to allow the changes.

Make sure you are connected to the Internet.
Double-click on mbam-setup.exe to install the application.
When the installation begins, follow the prompts and do not make any changes to default settings.
When installation has finished, make sure you leave both of these checked:
Update Malwarebytes'' Anti-Malware
Launch Malwarebytes'' Anti-Malware

Then click Finish.

MBAM will automatically start and you will be asked to update the program before performing a scan.

If an update is found, the program will automatically update itself. Press the OK button to close that box and continue.
If you encounter any problems while downloading the definition updates, manually download them from here and just double-click on mbam-rules.exe to install.

On the Scanner tab:

Make sure the "Perform Quick Scan" option is selected.
Then click on the Scan button.
If asked to select the drives to scan, leave all the drives selected and click on the Start Scan button.
The scan will begin and "Scan in progress" will show at the top. It may take some time to complete so please be patient.
When the scan is finished, a message box will say "The scan completed successfully. Click ''Show Results'' to display all objects found".
Click OK to close the message box and continue with the removal process.

Back at the main Scanner screen:

Click on the Show Results button to see a list of any malware that was found.
Make sure that everything is checked, and click Remove Selected.
When removal is completed, a log report will open in Notepad.
The log is automatically saved and can be viewed by clicking the Logs tab in MBAM.
Copy and paste the contents of that report in your next reply. Be sure to post the complete log to include the top portion which shows MBAM''s database version and your operating system.
Exit MBAM when done.

Note: If MBAM encounters a file that is difficult to remove, you will be asked to reboot your computer so MBAM can proceed with the disinfection process. If asked to restart the computer, please do so immediately. Failure to reboot normally (not into safe mode) will prevent MBAM from removing all the malware.

dastal · « **Reply #2 on:** March 04, 2012, 03:02:39 PM »

Hi Hoov, First problem is I can't download DDS via the link. Second I already have MBAM running on my machine. Third I've gone to the windows Security Centre and tried to switch off any A/V. It indicates Kaspersky Internet Security 2010 is switched on and A/V working but its expired!!! I can't switch it off either. Can I try and download DDS from the internet?

Hoov · « **Reply #3 on:** March 04, 2012, 03:45:17 PM »

The link I gave you takes you to the only trustworthy place to get it.

Try this,

I need you to reboot windows cleanly. To do that please go to the run command and type in msconfig . Once that starts, select selective startup, and then uncheck the load startup items. Now click on the services tab, and down near the bottom of the window, check the box that says Hide all Microsoft Services now go up and uncheck all the services still listed, make sure you scroll down the list if need to unselect all the non Microsoft services. Now click apply, then click OK and reboot the computer.

See if you can download and run DDS now.

dastal · « **Reply #4 on:** March 04, 2012, 04:16:03 PM »

Tried that, I can pull the DDS Icon onto the desktop and I've tried the link againas well as by right clicking on the icon and then on 'open' but both open to an untitled tab and in the address bar it has the words "about blank". I have other security devices running like MBAM but A/V now disabled

Hoov · « **Reply #5 on:** March 04, 2012, 04:28:18 PM »

Can you download anything? Try following the instructions below and downloading TDSSKiller, if you can download it, then go ahead and run it.

Please read carefully and follow these steps.

Download TDSSKiller and save it to your Desktop.
Extract its contents to your desktop.
Once extracted, open the TDSSKiller folder and doubleclick on TDSSKiller.exe to run the application, then on Start Scan.
If an infected file is detected, the default action will be Cure, click on Continue.
If a suspicious file is detected, the default action will be Skip, click on Continue.
It may ask you to reboot the computer to complete the process. Click on Reboot Now.
If no reboot is require, click on Report. A log file should appear. Please copy and paste the contents of that file here.
If a reboot is required, the report can also be found in your root directory, (usually C:\ folder) in the form of "TDSSKiller.[Version]_[Date]_[Time]_log.txt". Please copy and paste the contents of that file here.

dastal · « **Reply #6 on:** March 04, 2012, 04:50:17 PM »

Done that, phew

22:40:24.0746 0956   TDSS rootkit removing tool 2.7.18.0 Mar 2 2012 09:40:07
22:40:24.0996 0956   ============================================================
22:40:24.0996 0956   Current date / time: 2012/03/04 22:40:24.0996
22:40:24.0996 0956   SystemInfo:
22:40:24.0996 0956
22:40:24.0996 0956   OS Version: 6.0.6002 ServicePack: 2.0
22:40:24.0996 0956   Product type: Workstation
22:40:24.0996 0956   ComputerName: DAVE-PC
22:40:24.0996 0956   UserName: Dave
22:40:24.0996 0956   Windows directory: C:\Windows
22:40:24.0996 0956   System windows directory: C:\Windows
22:40:24.0996 0956   Processor architecture: Intel x86
22:40:24.0996 0956   Number of processors: 2
22:40:24.0996 0956   Page size: 0x1000
22:40:24.0996 0956   Boot type: Normal boot
22:40:24.0996 0956   ============================================================
22:40:26.0166 0956   Drive \Device\Harddisk0\DR0 - Size: 0x4A85D56000 (298.09 Gb), SectorSize: 0x200, Cylinders: 0x9801, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
22:40:26.0275 0956   \Device\Harddisk0\DR0:
22:40:26.0275 0956   MBR used
22:40:26.0275 0956   \Device\Harddisk0\DR0\Partition0: MBR, Type 0x7, StartLBA 0x800, BlocksNum 0x2542D800
22:40:26.0322 0956   Initialize success
22:40:26.0322 0956   ============================================================
22:40:28.0849 3676   ============================================================
22:40:28.0849 3676   Scan started
22:40:28.0849 3676   Mode: Manual;
22:40:28.0849 3676   ============================================================
22:40:30.0253 3676   ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
22:40:30.0269 3676   ACPI - ok
22:40:30.0331 3676   adp94xx (2edc5bbac6c651ece337bde8ed97c9fb) C:\Windows\system32\drivers\adp94xx.sys
22:40:30.0347 3676   adp94xx - ok
22:40:30.0378 3676   adpahci (b84088ca3cdca97da44a984c6ce1ccad) C:\Windows\system32\drivers\adpahci.sys
22:40:30.0394 3676   adpahci - ok
22:40:30.0409 3676   adpu160m (7880c67bccc27c86fd05aa2afb5ea469) C:\Windows\system32\drivers\adpu160m.sys
22:40:30.0409 3676   adpu160m - ok
22:40:30.0440 3676   adpu320 (9ae713f8e30efc2abccd84904333df4d) C:\Windows\system32\drivers\adpu320.sys
22:40:30.0440 3676   adpu320 - ok
22:40:30.0534 3676   AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
22:40:30.0550 3676   AFD - ok
22:40:30.0581 3676   agp440 (ef23439cdd587f64c2c1b8825cead7d8) C:\Windows\system32\drivers\agp440.sys
22:40:30.0581 3676   agp440 - ok
22:40:30.0612 3676   aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
22:40:30.0612 3676   aic78xx - ok
22:40:30.0628 3676   aliide (3a99cb23a2d326fd532618705d6e3048) C:\Windows\system32\drivers\aliide.sys
22:40:30.0628 3676   aliide - ok
22:40:30.0643 3676   amdagp (2b13e304c9dfdfa5eb582f6a149fa2c7) C:\Windows\system32\drivers\amdagp.sys
22:40:30.0659 3676   amdagp - ok
22:40:30.0674 3676   amdide (4333c133dbd71c7d7fe4fb1b83f9ee3e) C:\Windows\system32\drivers\amdide.sys
22:40:30.0674 3676   amdide - ok
22:40:30.0690 3676   AmdK7 (dc487885bcef9f28eece6fac0e5ddfc5) C:\Windows\system32\drivers\amdk7.sys
22:40:30.0690 3676   AmdK7 - ok
22:40:30.0706 3676   AmdK8 (0ca0071da4315b00fc1328ca86b425da) C:\Windows\system32\drivers\amdk8.sys
22:40:30.0706 3676   AmdK8 - ok
22:40:30.0737 3676   arc (5f673180268bb1fdb69c99b6619fe379) C:\Windows\system32\drivers\arc.sys
22:40:30.0752 3676   arc - ok
22:40:30.0768 3676   arcsas (957f7540b5e7f602e44648c7de5a1c05) C:\Windows\system32\drivers\arcsas.sys
22:40:30.0768 3676   arcsas - ok
22:40:30.0799 3676   AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
22:40:30.0799 3676   AsyncMac - ok
22:40:30.0830 3676   atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
22:40:30.0830 3676   atapi - ok
22:40:30.0877 3676   Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
22:40:30.0877 3676   Beep - ok
22:40:30.0908 3676   blbdrive - ok
22:40:30.0971 3676   bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
22:40:30.0971 3676   bowser - ok
22:40:31.0002 3676   BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
22:40:31.0002 3676   BrFiltLo - ok
22:40:31.0018 3676   BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
22:40:31.0018 3676   BrFiltUp - ok
22:40:31.0049 3676   Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
22:40:31.0049 3676   Brserid - ok
22:40:31.0080 3676   BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
22:40:31.0080 3676   BrSerWdm - ok
22:40:31.0111 3676   BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
22:40:31.0111 3676   BrUsbMdm - ok
22:40:31.0127 3676   BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
22:40:31.0127 3676   BrUsbSer - ok
22:40:31.0142 3676   BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
22:40:31.0142 3676   BTHMODEM - ok
22:40:31.0174 3676   cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
22:40:31.0174 3676   cdfs - ok
22:40:31.0205 3676   cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
22:40:31.0205 3676   cdrom - ok
22:40:31.0220 3676   circlass (da8e0afc7baa226c538ef53ac2f90897) C:\Windows\system32\drivers\circlass.sys
22:40:31.0220 3676   circlass - ok
22:40:31.0252 3676   CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
22:40:31.0267 3676   CLFS - ok
22:40:31.0314 3676   cmdide (dfb94a6fc3a26972b0461ab5f1d8272b) C:\Windows\system32\drivers\cmdide.sys
22:40:31.0314 3676   cmdide - ok
22:40:31.0330 3676   Compbatt (82b8c91d327cfecf76cb58716f7d4997) C:\Windows\system32\drivers\compbatt.sys
22:40:31.0330 3676   Compbatt - ok
22:40:31.0330 3676   crcdisk (2a213ae086bbec5e937553c7d9a2b22c) C:\Windows\system32\drivers\crcdisk.sys
22:40:31.0345 3676   crcdisk - ok
22:40:31.0361 3676   Crusoe (22a7f883508176489f559ee745b5bf5d) C:\Windows\system32\drivers\crusoe.sys
22:40:31.0361 3676   Crusoe - ok
22:40:31.0392 3676   DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
22:40:31.0408 3676   DfsC - ok
22:40:31.0454 3676   disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
22:40:31.0454 3676   disk - ok
22:40:31.0501 3676   Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
22:40:31.0501 3676   Dot4 - ok
22:40:31.0532 3676   Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
22:40:31.0532 3676   Dot4Print - ok
22:40:31.0564 3676   dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
22:40:31.0564 3676   dot4usb - ok
22:40:31.0626 3676   drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
22:40:31.0626 3676   drmkaud - ok
22:40:31.0673 3676   DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
22:40:31.0688 3676   DXGKrnl - ok
22:40:31.0720 3676   E1G60 (f88fb26547fd2ce6d0a5af2985892c48) C:\Windows\system32\DRIVERS\E1G60I32.sys
22:40:31.0720 3676   E1G60 - ok
22:40:31.0766 3676   Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
22:40:31.0782 3676   Ecache - ok
22:40:31.0813 3676   elxstor (e8f3f21a71720c84bcf423b80028359f) C:\Windows\system32\drivers\elxstor.sys
22:40:31.0813 3676   elxstor - ok
22:40:31.0891 3676   exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
22:40:31.0891 3676   exfat - ok
22:40:31.0954 3676   fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
22:40:31.0954 3676   fastfat - ok
22:40:31.0969 3676   fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
22:40:31.0969 3676   fdc - ok
22:40:32.0032 3676   FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
22:40:32.0032 3676   FileInfo - ok
22:40:32.0047 3676   Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
22:40:32.0063 3676   Filetrace - ok
22:40:32.0078 3676   flpydisk (6603957eff5ec62d25075ea8ac27de68) C:\Windows\system32\DRIVERS\flpydisk.sys
22:40:32.0078 3676   flpydisk - ok
22:40:32.0110 3676   FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
22:40:32.0110 3676   FltMgr - ok
22:40:32.0156 3676   fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
22:40:32.0156 3676   fssfltr - ok
22:40:32.0172 3676   Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
22:40:32.0188 3676   Fs_Rec - ok
22:40:32.0203 3676   gagp30kx (4e1cd0a45c50a8882616cae5bf82f3c5) C:\Windows\system32\drivers\gagp30kx.sys
22:40:32.0203 3676   gagp30kx - ok
22:40:32.0234 3676   GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
22:40:32.0234 3676   GEARAspiWDM - ok
22:40:32.0312 3676   ggflt (007aea2e06e7cef7372e40c277163959) C:\Windows\system32\DRIVERS\ggflt.sys
22:40:32.0312 3676   ggflt - ok
22:40:32.0344 3676   ggsemc (c73de35960ca75c5ab4ae636b127c64e) C:\Windows\system32\DRIVERS\ggsemc.sys
22:40:32.0344 3676   ggsemc - ok
22:40:32.0422 3676   HdAudAddService (3f90e001369a07243763bd5a523d8722) C:\Windows\system32\drivers\HdAudio.sys
22:40:32.0422 3676   HdAudAddService - ok
22:40:32.0468 3676   HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
22:40:32.0484 3676   HDAudBus - ok
22:40:32.0515 3676   HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
22:40:32.0515 3676   HidBth - ok
22:40:32.0515 3676   HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
22:40:32.0515 3676   HidIr - ok
22:40:32.0562 3676   HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
22:40:32.0562 3676   HidUsb - ok
22:40:32.0593 3676   HpCISSs (df353b401001246853763c4b7aaa6f50) C:\Windows\system32\drivers\hpcisss.sys
22:40:32.0593 3676   HpCISSs - ok
22:40:32.0749 3676   HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
22:40:32.0765 3676   HTTP - ok
22:40:32.0780 3676   i2omp (324c2152ff2c61abae92d09f3cca4d63) C:\Windows\system32\drivers\i2omp.sys
22:40:32.0780 3676   i2omp - ok
22:40:32.0843 3676   i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
22:40:32.0843 3676   i8042prt - ok
22:40:32.0890 3676   iaStorV (c957bf4b5d80b46c5017bf0101e6c906) C:\Windows\system32\drivers\iastorv.sys
22:40:32.0890 3676   iaStorV - ok
22:40:33.0077 3676   igfx (9378d57e2b96c0a185d844770ad49948) C:\Windows\system32\DRIVERS\igdkmd32.sys
22:40:33.0139 3676   igfx - ok
22:40:33.0155 3676   iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
22:40:33.0155 3676   iirsp - ok
22:40:33.0264 3676   IntcAzAudAddService (f8f53c5449f15b23d4c61d51d2701da8) C:\Windows\system32\drivers\RTKVHDA.sys
22:40:33.0311 3676   IntcAzAudAddService - ok
22:40:33.0342 3676   intelide (1c60617d54bc9f035671a44b75d9f7cc) C:\Windows\system32\drivers\intelide.sys
22:40:33.0342 3676   intelide - ok
22:40:33.0358 3676   intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
22:40:33.0358 3676   intelppm - ok
22:40:33.0404 3676   IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
22:40:33.0404 3676   IpFilterDriver - ok
22:40:33.0420 3676   IpInIp - ok
22:40:33.0436 3676   IPMIDRV (40f34f8aba2a015d780e4b09138b6c17) C:\Windows\system32\drivers\ipmidrv.sys
22:40:33.0436 3676   IPMIDRV - ok
22:40:33.0467 3676   IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
22:40:33.0482 3676   IPNAT - ok
22:40:33.0498 3676   IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
22:40:33.0514 3676   IRENUM - ok
22:40:33.0529 3676   isapnp (350fca7e73cf65bcef43fae1e4e91293) C:\Windows\system32\drivers\isapnp.sys
22:40:33.0529 3676   isapnp - ok
22:40:33.0560 3676   iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
22:40:33.0560 3676   iScsiPrt - ok
22:40:33.0576 3676   iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
22:40:33.0576 3676   iteatapi - ok
22:40:33.0592 3676   iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
22:40:33.0592 3676   iteraid - ok
22:40:33.0623 3676   kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
22:40:33.0623 3676   kbdclass - ok
22:40:33.0654 3676   kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
22:40:33.0654 3676   kbdhid - ok
22:40:33.0685 3676   kl1 (514e8fcc961241c6cf002f3a1e05de94) C:\Windows\system32\DRIVERS\kl1.sys
22:40:33.0685 3676   kl1 - ok
22:40:33.0701 3676   klbg (f9089982ed97340984e3dd60edd75490) C:\Windows\system32\drivers\klbg.sys
22:40:33.0701 3676   klbg - ok
22:40:33.0732 3676   KLIF (2a98658edc36c35de263d00ccbc80f2d) C:\Windows\system32\DRIVERS\klif.sys
22:40:33.0748 3676   KLIF - ok
22:40:33.0763 3676   KLIM6 (672b4ab554f63738b97f11299012c12e) C:\Windows\system32\DRIVERS\klim6.sys
22:40:33.0763 3676   KLIM6 - ok
22:40:33.0810 3676   klmouflt (0c147d68ca28618477bd6cd094e0bc39) C:\Windows\system32\DRIVERS\klmouflt.sys
22:40:33.0810 3676   klmouflt - ok
22:40:33.0841 3676   KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
22:40:33.0857 3676   KSecDD - ok
22:40:33.0919 3676   lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
22:40:33.0919 3676   lltdio - ok
22:40:33.0966 3676   LSI_FC (a2262fb9f28935e862b4db46438c80d2) C:\Windows\system32\drivers\lsi_fc.sys
22:40:33.0966 3676   LSI_FC - ok
22:40:33.0982 3676   LSI_SAS (30d73327d390f72a62f32c103daf1d6d) C:\Windows\system32\drivers\lsi_sas.sys
22:40:33.0982 3676   LSI_SAS - ok
22:40:33.0997 3676   LSI_SCSI (e1e36fefd45849a95f1ab81de0159fe3) C:\Windows\system32\drivers\lsi_scsi.sys
22:40:33.0997 3676   LSI_SCSI - ok
22:40:34.0153 3676   luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
22:40:34.0153 3676   luafv - ok
22:40:34.0216 3676   LVPr2Mon (1a7db7a00a4b0d8da24cd691a4547291) C:\Windows\system32\DRIVERS\LVPr2Mon.sys
22:40:34.0216 3676   LVPr2Mon - ok
22:40:34.0262 3676   LVUSBSta (23f8ef78bb9553e465a476f3cee5ca18) C:\Windows\system32\drivers\LVUSBSta.sys
22:40:34.0262 3676   LVUSBSta - ok
22:40:35.0027 3676   LVUVC (a240e42a7402e927a71b6e8aa4629b13) C:\Windows\system32\DRIVERS\lvuvc.sys
22:40:35.0198 3676   LVUVC - ok
22:40:35.0386 3676   MBAMProtector (67b48a903430c6d4fb58cbaca1866601) C:\Windows\system32\drivers\mbam.sys
22:40:35.0401 3676   MBAMProtector - ok
22:40:35.0464 3676   megasas (d153b14fc6598eae8422a2037553adce) C:\Windows\system32\drivers\megasas.sys
22:40:35.0495 3676   megasas - ok
22:40:35.0542 3676   Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
22:40:35.0542 3676   Modem - ok
22:40:35.0588 3676   monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
22:40:35.0588 3676   monitor - ok
22:40:35.0620 3676   mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
22:40:35.0620 3676   mouclass - ok
22:40:35.0635 3676   mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
22:40:35.0635 3676   mouhid - ok
22:40:35.0666 3676   MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
22:40:35.0666 3676   MountMgr - ok
22:40:35.0682 3676   mpio (583a41f26278d9e0ea548163d6139397) C:\Windows\system32\drivers\mpio.sys
22:40:35.0682 3676   mpio - ok
22:40:35.0698 3676   mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
22:40:35.0698 3676   mpsdrv - ok
22:40:35.0713 3676   Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
22:40:35.0713 3676   Mraid35x - ok
22:40:35.0744 3676   MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
22:40:35.0744 3676   MRxDAV - ok
22:40:35.0791 3676   mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
22:40:35.0791 3676   mrxsmb - ok
22:40:35.0822 3676   mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
22:40:35.0822 3676   mrxsmb10 - ok
22:40:35.0838 3676   mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
22:40:35.0854 3676   mrxsmb20 - ok
22:40:35.0869 3676   msahci (f0ec3a4e0693a34b148723b4da31668c) C:\Windows\system32\drivers\msahci.sys
22:40:35.0869 3676   msahci - ok
22:40:35.0885 3676   msdsm (3fc82a2ae4cc149165a94699183d3028) C:\Windows\system32\drivers\msdsm.sys
22:40:35.0885 3676   msdsm - ok
22:40:35.0932 3676   Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
22:40:35.0947 3676   Msfs - ok
22:40:36.0010 3676   msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
22:40:36.0010 3676   msisadrv - ok
22:40:36.0103 3676   MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
22:40:36.0103 3676   MSKSSRV - ok
22:40:36.0134 3676   MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
22:40:36.0134 3676   MSPCLOCK - ok
22:40:36.0150 3676   MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
22:40:36.0150 3676   MSPQM - ok
22:40:36.0181 3676   MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
22:40:36.0181 3676   MsRPC - ok
22:40:36.0212 3676   mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
22:40:36.0212 3676   mssmbios - ok
22:40:36.0228 3676   MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
22:40:36.0259 3676   MSTEE - ok
22:40:36.0259 3676   Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
22:40:36.0275 3676   Mup - ok
22:40:36.0322 3676   NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
22:40:36.0322 3676   NativeWifiP - ok
22:40:36.0368 3676   NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
22:40:36.0384 3676   NDIS - ok
22:40:36.0415 3676   NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
22:40:36.0415 3676   NdisTapi - ok
22:40:36.0446 3676   Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
22:40:36.0462 3676   Ndisuio - ok
22:40:36.0478 3676   NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
22:40:36.0478 3676   NdisWan - ok
22:40:36.0509 3676   NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
22:40:36.0509 3676   NDProxy - ok
22:40:36.0540 3676   NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
22:40:36.0540 3676   NetBIOS - ok
22:40:36.0571 3676   netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
22:40:36.0587 3676   netbt - ok
22:40:36.0618 3676   nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
22:40:36.0618 3676   nfrd960 - ok
22:40:36.0649 3676   Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
22:40:36.0649 3676   Npfs - ok
22:40:36.0680 3676   nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
22:40:36.0696 3676   nsiproxy - ok
22:40:37.0008 3676   Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
22:40:37.0024 3676   Ntfs - ok
22:40:37.0070 3676   ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
22:40:37.0086 3676   ntrigdigi - ok
22:40:37.0148 3676   Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
22:40:37.0148 3676   Null - ok
22:40:37.0180 3676   nvraid (6f785db62a6d8f3fafd3e5695277e849) C:\Windows\system32\drivers\nvraid.sys
22:40:37.0180 3676   nvraid - ok
22:40:37.0195 3676   nvstor (4a5fcab82d9bf6af8a023a66802fe9e9) C:\Windows\system32\drivers\nvstor.sys
22:40:37.0195 3676   nvstor - ok
22:40:37.0226 3676   nv_agp (07c186427eb8fcc3d8d7927187f260f7) C:\Windows\system32\drivers\nv_agp.sys
22:40:37.0226 3676   nv_agp - ok
22:40:37.0242 3676   NwlnkFlt - ok
22:40:37.0242 3676   NwlnkFwd - ok
22:40:37.0289 3676   ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
22:40:37.0289 3676   ohci1394 - ok
22:40:37.0304 3676   Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
22:40:37.0320 3676   Parport - ok
22:40:37.0351 3676   partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
22:40:37.0367 3676   partmgr - ok
22:40:37.0398 3676   Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
22:40:37.0398 3676   Parvdm - ok
22:40:37.0429 3676   pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
22:40:37.0429 3676   pci - ok
22:40:37.0445 3676   pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
22:40:37.0445 3676   pciide - ok
22:40:37.0460 3676   pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
22:40:37.0460 3676   pcmcia - ok
22:40:37.0507 3676   PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
22:40:37.0523 3676   PEAUTH - ok
22:40:37.0663 3676   PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
22:40:37.0663 3676   PptpMiniport - ok
22:40:37.0694 3676   PRISM_A02 (ba3ffbd0abdf45c9160e66cb27f8f8ab) C:\Windows\system32\DRIVERS\PRISMA02.sys
22:40:37.0694 3676   PRISM_A02 - ok
22:40:37.0726 3676   Processor (0e3cef5d28b40cf273281d620c50700a) C:\Windows\system32\drivers\processr.sys
22:40:37.0726 3676   Processor - ok
22:40:37.0788 3676   PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
22:40:37.0788 3676   PSched - ok
22:40:37.0819 3676   PSI (365622e1f0b6d5f9871d76e89bf0501a) C:\Windows\system32\DRIVERS\psi_mf.sys
22:40:37.0819 3676   PSI - ok
22:40:37.0866 3676   ql2300 (ccdac889326317792480c0a67156a1ec) C:\Windows\system32\drivers\ql2300.sys
22:40:37.0882 3676   ql2300 - ok
22:40:37.0897 3676   ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
22:40:37.0913 3676   ql40xx - ok
22:40:37.0944 3676   QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
22:40:37.0944 3676   QWAVEdrv - ok
22:40:37.0975 3676   RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
22:40:37.0975 3676   RasAcd - ok
22:40:38.0006 3676   Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
22:40:38.0022 3676   Rasl2tp - ok
22:40:38.0069 3676   RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
22:40:38.0069 3676   RasPppoe - ok
22:40:38.0100 3676   RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
22:40:38.0100 3676   RasSstp - ok
22:40:38.0194 3676   rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
22:40:38.0225 3676   rdbss - ok
22:40:38.0272 3676   RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
22:40:38.0272 3676   RDPCDD - ok
22:40:38.0303 3676   rdpdr (e8bd98d46f2ed77132ba927fccb47d8b) C:\Windows\system32\drivers\rdpdr.sys
22:40:38.0303 3676   rdpdr - ok
22:40:38.0318 3676   RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
22:40:38.0318 3676   RDPENCDD - ok
22:40:38.0350 3676   RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
22:40:38.0350 3676   RDPWD - ok
22:40:38.0396 3676   rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
22:40:38.0396 3676   rspndr - ok
22:40:38.0428 3676   RT73 (cb20f16afdba63707fb971e0922edec1) C:\Windows\system32\DRIVERS\Dr71WU.sys
22:40:38.0443 3676   RT73 - ok
22:40:38.0474 3676   s0016bus (59509ad6cbc28f2c73056268985b3e48) C:\Windows\system32\DRIVERS\s0016bus.sys
22:40:38.0474 3676   s0016bus - ok
22:40:38.0521 3676   s0016mdfl (b98c3a6f91f4fba285af9606a240c6b4) C:\Windows\system32\DRIVERS\s0016mdfl.sys
22:40:38.0521 3676   s0016mdfl - ok
22:40:38.0552 3676   s0016mdm (8a83426f4fb7b5212825d9de76368b1a) C:\Windows\system32\DRIVERS\s0016mdm.sys
22:40:38.0552 3676   s0016mdm - ok
22:40:38.0568 3676   s0016mgmt (7a78bba97feb5e6d24c49e93a3bf7287) C:\Windows\system32\DRIVERS\s0016mgmt.sys
22:40:38.0568 3676   s0016mgmt - ok
22:40:38.0584 3676   s0016nd5 (34ef7b5f611957b73e7219dd5a222ad1) C:\Windows\system32\DRIVERS\s0016nd5.sys
22:40:38.0584 3676   s0016nd5 - ok
22:40:38.0615 3676   s0016obex (36792935847143e4a3cda0dc87248487) C:\Windows\system32\DRIVERS\s0016obex.sys
22:40:38.0615 3676   s0016obex - ok
22:40:38.0630 3676   s0016unic (927208754fb27fc3e7a659e77500c5d1) C:\Windows\system32\DRIVERS\s0016unic.sys
22:40:38.0630 3676   s0016unic - ok
22:40:38.0693 3676   s1039bus (d0eedc88876b20d42157cdcca3e647f3) C:\Windows\system32\DRIVERS\s1039bus.sys
22:40:38.0708 3676   s1039bus - ok
22:40:38.0755 3676   s1039mdfl (58780c6c3ad51da84b57d6ae42dc49ca) C:\Windows\system32\DRIVERS\s1039mdfl.sys
22:40:38.0755 3676   s1039mdfl - ok
22:40:38.0771 3676   s1039mdm (1ff8b42d1346133a945b52876376ed40) C:\Windows\system32\DRIVERS\s1039mdm.sys
22:40:38.0771 3676   s1039mdm - ok
22:40:38.0802 3676   s1039mgmt (2649ca09585a7531126dcc116ad1f88c) C:\Windows\system32\DRIVERS\s1039mgmt.sys
22:40:38.0802 3676   s1039mgmt - ok
22:40:38.0849 3676   s1039nd5 (6d3f549efd6daedd7d12f3de2175053f) C:\Windows\system32\DRIVERS\s1039nd5.sys
22:40:38.0849 3676   s1039nd5 - ok
22:40:38.0880 3676   s1039obex (305e3e3aca0037af2e2c1b50a383c91b) C:\Windows\system32\DRIVERS\s1039obex.sys
22:40:38.0880 3676   s1039obex - ok
22:40:38.0911 3676   s1039unic (7dd02a58277c84c043442561589914f4) C:\Windows\system32\DRIVERS\s1039unic.sys
22:40:38.0911 3676   s1039unic - ok
22:40:38.0942 3676   sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
22:40:38.0942 3676   sbp2port - ok
22:40:39.0020 3676   SDManager - ok
22:40:39.0052 3676   secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
22:40:39.0052 3676   secdrv - ok
22:40:39.0098 3676   Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
22:40:39.0098 3676   Serenum - ok
22:40:39.0145 3676   Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
22:40:39.0426 3676   Serial - ok
22:40:39.0816 3676   sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
22:40:39.0832 3676   sermouse - ok
22:40:39.0863 3676   sffdisk (103b79418da647736ee95645f305f68a) C:\Windows\system32\drivers\sffdisk.sys
22:40:39.0863 3676   sffdisk - ok
22:40:39.0878 3676   sffp_mmc (8fd08a310645fe872eeec6e08c6bf3ee) C:\Windows\system32\drivers\sffp_mmc.sys
22:40:39.0878 3676   sffp_mmc - ok
22:40:39.0894 3676   sffp_sd (9cfa05fcfcb7124e69cfc812b72f9614) C:\Windows\system32\drivers\sffp_sd.sys
22:40:39.0894 3676   sffp_sd - ok
22:40:39.0925 3676   sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
22:40:39.0925 3676   sfloppy - ok
22:40:39.0956 3676   sisagp (d2a595d6eebeeaf4334f8e50efbc9931) C:\Windows\system32\drivers\sisagp.sys
22:40:39.0956 3676   sisagp - ok
22:40:39.0988 3676   SiSRaid2 (cedd6f4e7d84e9f98b34b3fe988373aa) C:\Windows\system32\drivers\sisraid2.sys
22:40:39.0988 3676   SiSRaid2 - ok
22:40:40.0003 3676   SiSRaid4 (df843c528c4f69d12ce41ce462e973a7) C:\Windows\system32\drivers\sisraid4.sys
22:40:40.0003 3676   SiSRaid4 - ok
22:40:40.0081 3676   Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
22:40:40.0081 3676   Smb - ok
22:40:40.0206 3676   spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
22:40:40.0206 3676   spldr - ok
22:40:40.0253 3676   srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
22:40:40.0253 3676   srv - ok
22:40:40.0284 3676   srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
22:40:40.0300 3676   srv2 - ok
22:40:40.0315 3676   srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
22:40:40.0331 3676   srvnet - ok
22:40:40.0378 3676   swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
22:40:40.0378 3676   swenum - ok
22:40:40.0409 3676   Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
22:40:40.0409 3676   Symc8xx - ok
22:40:40.0424 3676   Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
22:40:40.0424 3676   Sym_hi - ok
22:40:40.0440 3676   Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
22:40:40.0440 3676   Sym_u3 - ok
22:40:40.0674 3676   Tcpip (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\drivers\tcpip.sys
22:40:40.0705 3676   Tcpip - ok
22:40:40.0736 3676   Tcpip6 (814a1c66fbd4e1b310a517221f1456bf) C:\Windows\system32\DRIVERS\tcpip.sys
22:40:40.0736 3676   Tcpip6 - ok
22:40:40.0830 3676   tcpipreg (608c345a255d82a6289c2d468eb41fd7) C:\Windows\system32\drivers\tcpipreg.sys
22:40:40.0861 3676   tcpipreg - ok
22:40:40.0908 3676   TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
22:40:40.0908 3676   TDPIPE - ok
22:40:40.0924 3676   TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
22:40:40.0939 3676   TDTCP - ok
22:40:40.0986 3676   tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
22:40:41.0017 3676   tdx - ok
22:40:41.0080 3676   TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
22:40:41.0095 3676   TermDD - ok
22:40:41.0204 3676   tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
22:40:41.0204 3676   tssecsrv - ok
22:40:41.0251 3676   tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
22:40:41.0267 3676   tunmp - ok
22:40:41.0314 3676   tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
22:40:41.0314 3676   tunnel - ok
22:40:41.0345 3676   uagp35 (c3ade15414120033a36c0f293d4a4121) C:\Windows\system32\drivers\uagp35.sys
22:40:41.0345 3676   uagp35 - ok
22:40:41.0376 3676   udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
22:40:41.0376 3676   udfs - ok
22:40:41.0407 3676   uliagpkx (75e6890ebfce0841d3291b02e7a8bdb0) C:\Windows\system32\drivers\uliagpkx.sys
22:40:41.0407 3676   uliagpkx - ok
22:40:41.0438 3676   uliahci (3cd4ea35a6221b85dcc25daa46313f8d) C:\Windows\system32\drivers\uliahci.sys
22:40:41.0438 3676   uliahci - ok
22:40:41.0470 3676   UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
22:40:41.0470 3676   UlSata - ok
22:40:41.0501 3676   ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
22:40:41.0501 3676   ulsata2 - ok
22:40:41.0548 3676   umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
22:40:41.0563 3676   umbus - ok
22:40:41.0610 3676   USBAAPL (83cafcb53201bbac04d822f32438e244) C:\Windows\system32\Drivers\usbaapl.sys
22:40:41.0626 3676   USBAAPL - ok
22:40:41.0672 3676   usbaudio (32db9517628ff0d070682aab61e688f0) C:\Windows\system32\drivers\usbaudio.sys
22:40:41.0688 3676   usbaudio - ok
22:40:41.0719 3676   usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
22:40:41.0719 3676   usbccgp - ok
22:40:41.0750 3676   usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
22:40:41.0750 3676   usbcir - ok
22:40:41.0797 3676   usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
22:40:41.0797 3676   usbehci - ok
22:40:41.0875 3676   usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
22:40:41.0906 3676   usbhub - ok
22:40:41.0938 3676   usbohci (38dbc7dd6cc5a72011f187425384388b) C:\Windows\system32\drivers\usbohci.sys
22:40:41.0938 3676   usbohci - ok
22:40:41.0969 3676   usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
22:40:41.0969 3676   usbprint - ok
22:40:41.0984 3676   USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
22:40:41.0984 3676   USBSTOR - ok
22:40:42.0031 3676   usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
22:40:42.0031 3676   usbuhci - ok
22:40:42.0062 3676   usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
22:40:42.0062 3676   usbvideo - ok
22:40:42.0125 3676   vga (7d92be0028ecdedec74617009084b5ef) C:\Windows\system32\DRIVERS\vgapnp.sys
22:40:42.0140 3676   vga - ok
22:40:42.0187 3676   VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
22:40:42.0187 3676   VgaSave - ok
22:40:42.0234 3676   viaagp (045d9961e591cf0674a920b6ba3ba5cb) C:\Windows\system32\drivers\viaagp.sys
22:40:42.0250 3676   viaagp - ok
22:40:42.0281 3676   ViaC7 (56a4de5f02f2e88182b0981119b4dd98) C:\Windows\system32\drivers\viac7.sys
22:40:42.0281 3676   ViaC7 - ok
22:40:42.0296 3676   viaide (58c8d5ac5c3eef40e7e704a5ced7987d) C:\Windows\system32\drivers\viaide.sys
22:40:42.0312 3676   viaide - ok
22:40:42.0359 3676   volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
22:40:42.0359 3676   volmgr - ok
22:40:42.0421 3676   volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
22:40:42.0421 3676   volmgrx - ok
22:40:42.0468 3676   volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
22:40:42.0468 3676   volsnap - ok
22:40:42.0515 3676   vsmraid (d984439746d42b30fc65a4c3546c6829) C:\Windows\system32\drivers\vsmraid.sys
22:40:42.0515 3676   vsmraid - ok
22:40:42.0562 3676   WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
22:40:42.0593 3676   WacomPen - ok
22:40:42.0640 3676   Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:40:42.0640 3676   Wanarp - ok
22:40:42.0655 3676   Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
22:40:42.0655 3676   Wanarpv6 - ok
22:40:42.0702 3676   Wd (afc5ad65b991c1e205cf25cfdbf7a6f4) C:\Windows\system32\drivers\wd.sys
22:40:42.0702 3676   Wd - ok
22:40:42.0764 3676   Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
22:40:42.0780 3676   Wdf01000 - ok
22:40:42.0905 3676   WmiAcpi (701a9f884a294327e9141d73746ee279) C:\Windows\system32\drivers\wmiacpi.sys
22:40:42.0905 3676   WmiAcpi - ok
22:40:42.0983 3676   WpdUsb (de9d36f91a4df3d911626643debf11ea) C:\Windows\system32\DRIVERS\wpdusb.sys
22:40:42.0983 3676   WpdUsb - ok
22:40:43.0045 3676   ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
22:40:43.0061 3676   ws2ifsl - ok
22:40:43.0123 3676   WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
22:40:43.0123 3676   WUDFRd - ok
22:40:43.0186 3676   MBR (0x1B8) (5c616939100b85e558da92b899a0fc36) \Device\Harddisk0\DR0
22:40:43.0248 3676   \Device\Harddisk0\DR0 - ok
22:40:43.0264 3676   Boot (0x1200) (d58bd98fe3805e49fe147a05e3dc5f15) \Device\Harddisk0\DR0\Partition0
22:40:43.0279 3676   \Device\Harddisk0\DR0\Partition0 - ok
22:40:43.0279 3676   ============================================================
22:40:43.0279 3676   Scan finished
22:40:43.0279 3676   ============================================================
22:40:43.0295 3684   Detected object count: 0
22:40:43.0295 3684   Actual detected object count: 0

Hoov · « **Reply #7 on:** March 04, 2012, 05:48:44 PM »

* Anyone other than the originator of this thread, you would be best advised to not run combofix without guidance from someone trained in its use. It is a very powerful tool that can cause damage to your computer if used wrong.

Run comboFix.exe. Please visit this webpage for download links, and instructions for running the tool:

http://www.bleepingcomputer.com/combofix/how-to-use-combofix

* Ensure you have disabled all anti virus and anti malware programs so they do not interfere with the running of ComboFix. Also make sure you close all your browsers just before the instructions tell you to start the scanner.

Please include the C:\ComboFix.txt in your next reply for further review.

Note:
Do not mouseclick combofix''s window while it''s running. That may cause it to stall

dastal · « **Reply #8 on:** March 05, 2012, 01:29:20 PM »

Hoov, I have MBAM on my machine that works in the background, sounds like I should disable this first but how do I do that; I've opened it up but can't find a means to temporarily switch it off.

Hoov · « **Reply #9 on:** March 05, 2012, 03:49:54 PM »

Right click on the icon in the system tray and unselect enable protection. Then right click on the icon again and select exit. You will get a popup about leaving protection, just click yes. Malwarebytes' Anti-Malware should be stopped at that point.

dastal · « **Reply #10 on:** March 05, 2012, 05:17:35 PM »

OK here's the log

ComboFix 12-03-04.02 - Dave 05/03/2012 22:54:43.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6002.2.1252.44.1033.18.2036.1159 [GMT 0:00]
Running from: c:\users\Dave\Desktop\ComboFix.exe
AV: Kaspersky Internet Security *Disabled/Outdated* {56547CC9-C9B2-849D-8FEF-A496150D6A06}
FW: Kaspersky Internet Security *Disabled* {6E6FFDEC-83DD-85C5-A4B0-0DA3EBDE2D7D}
SP: Kaspersky Internet Security *Disabled/Updated* {ED359D2D-EF88-8B13-B55F-9FE46E8A20BB}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
c:\users\Emily\Documents\~WRL0005.tmp
c:\windows\is-8MVTU.exe
.
.
((((((((((((((((((((((((( Files Created from 2012-02-05 to 2012-03-05 )))))))))))))))))))))))))))))))
.
.
2012-03-05 23:04 . 2012-03-05 23:04   --------   d-----w-   c:\users\Emily\AppData\Local\temp
2012-03-05 23:04 . 2012-03-05 23:04   --------   d-----w-   c:\users\Default\AppData\Local\temp
2012-03-05 23:04 . 2012-03-05 23:04   --------   d-----w-   c:\users\Alex\AppData\Local\temp
2012-03-05 23:03 . 2012-03-05 23:06   --------   d-----w-   c:\users\Dave\AppData\Local\temp
2012-03-05 23:03 . 2012-03-05 23:03   --------   d-----w-   c:\users\Will\AppData\Local\temp
2012-03-05 23:03 . 2012-03-05 23:03   --------   d-----w-   c:\users\Liz\AppData\Local\temp
2012-03-02 16:39 . 2012-02-08 06:03   6552120   ----a-w-   c:\programdata\Microsoft\Windows Defender\Definition Updates\{F8E3FE36-85CE-4D14-8ACC-D57046C1DAEF}\mpengine.dll
2012-02-16 08:15 . 2012-02-16 08:15   --------   d-----w-   C:\8203aa8d5f3b542e3037b3
2012-02-15 08:31 . 2011-12-14 16:17   680448   ----a-w-   c:\windows\system32\msvcrt.dll
2012-02-15 08:31 . 2012-01-12 19:52   2044416   ----a-w-   c:\windows\system32\win32k.sys
2012-02-15 08:31 . 2011-12-20 10:56   2409784   ----a-w-   c:\program files\Windows Mail\OESpamFilter.dat
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2012-03-04 09:16 . 2010-05-07 10:21   472808   ----a-w-   c:\windows\system32\deployJava1.dll
2012-01-29 05:10 . 2009-10-03 09:28   237072   ------w-   c:\windows\system32\MpSigStub.exe
2012-01-24 06:47 . 2011-06-12 07:13   414368   ----a-w-   c:\windows\system32\FlashPlayerCPLApp.cpl
2008-07-30 15:38 . 2008-07-30 15:07   278528   ----a-w-   c:\program files\Common Files\FDEUnInstaller.exe
2011-11-21 04:04 . 2011-12-07 08:01   134104   ----a-w-   c:\program files\mozilla firefox\components\browsercomps.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"avp"="c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\avp.exe" [2010-08-18 311680]
.
c:\users\Liz\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\
OneNote 2007 Screen Clipper and Launcher.lnk - c:\program files\Microsoft Office\Office12\ONENOTEM.EXE [2009-2-26 97680]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"EnableUIADesktopToggle"= 0 (0x0)
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\windows]
"AppInit_DLLs"=c:\progra~1\KASPER~1\KASPER~2\mzvkbd3.dll
.
[HKLM\~\startupfolder\C:^Users^Dave^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^Nikon Monitor.lnk]
path=c:\users\Dave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Nikon Monitor.lnk
backup=c:\windows\pss\Nikon Monitor.lnk.Startup
backupExtension=.Startup
.
[HKLM\~\startupfolder\C:^Users^Dave^AppData^Roaming^Microsoft^Windows^Start Menu^Programs^Startup^OneNote 2007 Screen Clipper and Launcher.lnk]
path=c:\users\Dave\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\OneNote 2007 Screen Clipper and Launcher.lnk
backup=c:\windows\pss\OneNote 2007 Screen Clipper and Launcher.lnk.Startup
backupExtension=.Startup
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM]
2012-01-03 07:37   843712   ----a-w-   c:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\AppleSyncNotifier]
2011-10-06 00:52   59240   ----a-w-   c:\program files\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\APSDaemon]
2011-11-01 23:25   59240   ----a-w-   c:\program files\Common Files\Apple\Apple Application Support\APSDaemon.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ehTray.exe]
2008-01-19 07:33   125952   ----a-w-   c:\windows\ehome\ehtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
2009-06-30 17:49   133104   ----atw-   c:\users\Dave\AppData\Local\Google\Update\GoogleUpdate.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\HotKeysCmds]
2008-02-11 19:13   166424   ----a-w-   c:\windows\System32\hkcmd.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\IgfxTray]
2008-02-11 19:13   141848   ----a-w-   c:\windows\System32\igfxtray.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\iTunesHelper]
2012-01-16 17:22   421736   ----a-w-   c:\program files\iTunes\iTunesHelper.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Logitech Vid]
2009-07-16 15:35   5458704   ----a-w-   c:\program files\Logitech\Logitech Vid\Vid.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogitechQuickCamRibbon]
2009-10-14 13:36   2793304   ----a-w-   c:\program files\Logitech\Logitech WebCam Software\LWS.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Nikon Message Center 2]
2010-05-25 19:16   619008   ----a-w-   c:\program files\Nikon\Nikon Message Center 2\NkMC2.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Persistence]
2008-02-11 19:13   133656   ----a-w-   c:\windows\System32\igfxpers.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\QuickTime Task]
2011-10-24 14:28   421888   ----a-w-   c:\program files\QuickTime\QTTask.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\RtHDVCpl]
2008-01-17 07:22   4907008   ----a-w-   c:\windows\RtHDVCpl.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sidebar]
2009-04-11 06:28   1233920   ----a-w-   c:\program files\Windows Sidebar\sidebar.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Software Informer]
2009-11-25 18:50   2011205   ----a-w-   c:\program files\Software Informer\softinfo.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SunJavaUpdateSched]
2012-01-18 14:02   254696   ----a-w-   c:\program files\Common Files\Java\Java Update\jusched.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\swg]
2009-01-23 18:40   39408   ----a-w-   c:\program files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WMPNSCFG]
2008-01-19 07:33   202240   ----a-w-   c:\program files\Windows Media Player\wmpnscfg.exe
.
[HKEY_LOCAL_MACHINE\software\microsoft\security center\Monitoring\KasperskyAntiVirus]
"DisableMonitoring"=dword:00000001
.
R4 AdobeARMservice;Adobe Acrobat Update Service;c:\program files\Common Files\Adobe\ARM\1.0\armsvc.exe [2012-01-03 63928]
R4 AERTFilters;Andrea RT Filters Service;c:\windows\system32\AERTSrv.exe [2007-12-05 77824]
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost]
LocalServiceAndNoImpersonation   REG_MULTI_SZ     FontCache
.
Contents of the 'Scheduled Tasks' folder
.
2012-03-05 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-06-17 20:07]
.
2012-03-05 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files\Google\Update\GoogleUpdate.exe [2009-06-17 20:07]
.
2012-03-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3556863093-620926187-3488352444-1000Core.job
- c:\users\Dave\AppData\Local\Google\Update\GoogleUpdate.exe [2009-09-20 17:49]
.
2012-03-05 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-3556863093-620926187-3488352444-1000UA.job
- c:\users\Dave\AppData\Local\Google\Update\GoogleUpdate.exe [2009-09-20 17:49]
.
2012-03-05 c:\windows\Tasks\User_Feed_Synchronization-{31174462-7FC9-472C-8147-34A871CE58CE}.job
- c:\windows\system32\msfeedssync.exe [2011-04-29 09:02]
.
.
------- Supplementary Scan -------
.
uStart Page = hxxp://www.sky.com
uInternet Settings,ProxyOverride = *.local
IE: Add to Anti-Banner - c:\program files\Kaspersky Lab\Kaspersky Internet Security 2010\ie_banner_deny.htm
IE: E&xport to Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
TCP: DhcpNameServer = 192.168.0.1
FF - ProfilePath - c:\users\Dave\AppData\Roaming\Mozilla\Firefox\Profiles\ox7dg6cg.default\
FF - prefs.js: browser.search.defaulturl - hxxp://www.bing.com/search?FORM=IEFM1&q=
FF - prefs.js: browser.startup.homepage - hxxp://en-GB.start3.mozilla.com/firefox?client=firefox-a&rls=org.mozilla:en-GB:official
FF - prefs.js: keyword.URL - hxxp://www.bing.com/search?FORM=IEFM1&q=
FF - user.js: yahoo.homepage.dontask - true
.
- - - - ORPHANS REMOVED - - - -
.
HKCU-Run-fsm - (no file)
MSConfigStartUp-dellsupportcenter - c:\program files\Dell Support Center\bin\sprtcmd.exe
MSConfigStartUp-Malwarebytes' Anti-Malware - c:\program files\Malwarebytes' Anti-Malware\mbamgui.exe
MSConfigStartUp-Sony Ericsson PC Companion - c:\program files\Sony Ericsson\Sony Ericsson PC Companion\PCCompanion.exe
.
.
.
**************************************************************************
.
catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2012-03-05 23:06
Windows 6.0.6002 Service Pack 2 NTFS
.
scanning hidden processes ...
.
scanning hidden autostart entries ...
.
scanning hidden files ...
.
scan completed successfully
hidden files: 0
.
**************************************************************************
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Completion time: 2012-03-05 23:09:34
ComboFix-quarantined-files.txt 2012-03-05 23:09
.
Pre-Run: 216,451,092,480 bytes free
Post-Run: 217,484,914,688 bytes free
.
- - End Of File - - ED7298A1CCAA320AF748F569738A4CAD

Hoov · « **Reply #11 on:** March 05, 2012, 05:42:12 PM »

Try following the instructions here. Then reboot and see if you can reinstall your copy of Kaspersky.

dastal · « **Reply #12 on:** March 06, 2012, 09:05:22 AM »

Yeah done that and it's worked. I've bought Trend Micro Maximum Security and successfully installed. Previous product couldn't provide 24/7 customer support, pity.

Hoov · « **Reply #13 on:** March 06, 2012, 10:00:29 AM »

Combofix did delete 2 files, they may have been malware, or just malware like. The first thing you need to do is to run a full scan with Maximum Security. Make sure to set it not to skip any files. Let me know how that scan goes.

dastal · « **Reply #14 on:** March 06, 2012, 12:34:30 PM »

Done that and completely clean. As a matter of interest can I delete DDS scr and Combo fix through the recycle bin. Earlier you instructed me to select selective startup, uncheck the load startup items, click on the services tab and check the box that says Hide all Microsoft Services and uncheck all the services still listed. I did that but do I have to go back and check the boxes or will it have done it automatically.

News:

Author Topic: [Resolved] Unable to remove old and install new Internet Security suites. (Read 3025 times)

dastal

[Resolved] Unable to remove old and install new Internet Security suites.

Hoov

Re: [In Progress] Unable to remove old and install new Internet Security suites.

dastal

Re: [In Progress] Unable to remove old and install new Internet Security suites.

Hoov

Re: [In Progress] Unable to remove old and install new Internet Security suites.

dastal

Re: [In Progress] Unable to remove old and install new Internet Security suites.

Hoov

Re: [In Progress] Unable to remove old and install new Internet Security suites.

dastal

Re: [In Progress] Unable to remove old and install new Internet Security suites.

Hoov

Re: [In Progress] Unable to remove old and install new Internet Security suites.

dastal

Re: [In Progress] Unable to remove old and install new Internet Security suites.

Hoov

Re: [In Progress] Unable to remove old and install new Internet Security suites.

dastal

Re: [In Progress] Unable to remove old and install new Internet Security suites.

Hoov

Re: [In Progress] Unable to remove old and install new Internet Security suites.

dastal

Re: [In Progress] Unable to remove old and install new Internet Security suites.

Hoov

Re: [In Progress] Unable to remove old and install new Internet Security suites.

dastal

Re: [In Progress] Unable to remove old and install new Internet Security suites.