30-Nov-2017 00:47 talambuhay ni dating pangulong fidel v ramos  

Free live 1 on 1 sex cams
serena and coach dating



EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device

:\[binary data] %System Drive% = C: | %System Root% = C:\Windows | %Program Files% = C:\Program Files (x86)Drive C: | 684.15 Gb Total Space | 590.33 Gb Free Space | 86.29% Space Free | Partition Type: NTFS Computer Name: PJ | User Name: Pam | Logged in as Administrator. dll MOD - [2013/07/10 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

fe104e6fe551fea4435d29d219f19a7\dll MOD - [2013/07/10 | 011,500,032 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\mscorlib\d1ce70bf6cbab6ab838cbd8b50e902c1\dll MOD - [2013/02/21 | 000,557,368 | ---- | M] () -- C:\Program Data\Trusteer\Rapport\store\exts\Rapport MS\baseline\Rapport MOD - [2012/12/20 | 000,479,752 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\MOD - [2012/12/20 | 000,093,192 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\MOD - [2012/12/09 | 000,972,664 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Microsoft. \Software Update\Yahoo -- (Yahoo AUService) DRV:64bit: - [2013/07/15 | 000,619,616 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\Sys Native\Drivers\-- (KLIF)DRV:64bit: - [2013/07/15 | 000,178,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\Sys Native\Drivers\-- (kneps)DRV:64bit: - [2013/07/15 | 000,050,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\Sys Native\Drivers\-- (klwfp)DRV:64bit: - [2013/06/04 | 000,103,448 | ---- | M] (DEVGURU Co., LTD.( [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\-- (dg_ssudbus)DRV:64bit: - [2013/06/01 | 000,194,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\-- (sdbus)DRV:64bit: - [2013/06/01 | 000,337,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\USBXHCI.Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days PRC - [2013/07/22 | 000,602,112 | ---- | M] (Old Timer Tools) -- C:\Users\Pam\Downloads\PRC - [2013/07/15 | 007,506,752 | ---- | M] (Kaspersky Lab) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\PRC - [2013/07/15 | 000,129,216 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\PRC - [2013/07/12 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

.3.21.153\Google Crash PRC - [2013/07/12 | 000,846,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\PRC - [2013/07/12 | 003,289,472 | ---- | M] (Skype Technologies S. SYS -- (USBXHCI)DRV:64bit: - [2013/06/01 | 000,213,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\UCX01000.A.) -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_PRC - [2013/06/27 | 002,249,352 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing PRC - [2013/06/27 | 000,349,832 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDRuntime PRC - [2013/06/27 | 000,206,984 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDExt PRC - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop PRC - [2013/06/27 | 000,153,224 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDApp PRC - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

.0\PRC - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/04/04 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/02/13 | 002,115,416 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport PRC - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt PRC - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects PRC - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\PRC - [2012/09/20 | 000,333,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\Sys WOW64\PRC - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor PRC - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule PRC - [2012/08/23 | 000,533,568 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\Backup Manager PRC - [2012/08/22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\Instant Update\iu Email Outlook PRC - [2012/08/22 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\Instant Update\iu Browser PRC - [2012/08/21 | 000,473,712 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32PRC - [2012/08/21 | 001,176,176 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\PRC - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\PRC - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\PRC - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\PRC - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_PRC - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup PRC - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo! \Software Update\Yahoo MOD - [2013/07/12 | 000,396,240 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\MOD - [2013/07/12 | 013,599,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\Pepper Flash\MOD - [2013/07/12 | 004,052,944 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\MOD - [2013/07/12 | 000,601,552 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\libglesv2MOD - [2013/07/12 | 000,123,344 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\MOD - [2013/07/12 | 001,597,392 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\MOD - [2013/07/11 | 000,220,672 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\Custom Marshalers\aa8342f91aba9ea9e511e9954307ab45\Custom dll MOD - [2013/07/11 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. SYS -- (UCX01000)DRV:64bit: - [2013/05/31 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\Bth Avrcp -- (Bth Avrcp Tg)DRV:64bit: - [2013/05/04 | 000,446,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\USBHUB3.I get the feeling whatever is trying to access it is a remnant of the malware. Here's my Hijack This logfile: Logfile of Trend Micro Hijack This v2.0.2 Scan saved at AM, on 9/7/2008 Platform: Windows XP SP2 (Win NT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\System32\C:\WINDOWS\system32\C:\WINDOWS\Explorer.EXE C:\App Serv\Apache2.2\bin\C:\Program Files\Common Files\Apple\Mobile Device Support\bin\Apple Mobile Device C:\Program Files\Bonjour\m C:\WINDOWS\e Home\eh C:\WINDOWS\e Home\eh C:\Program Files\Intel\Intel Matrix Storage Manager\C:\App Serv\Apache2.2\bin\C:\WINDOWS\system32\C:\App Serv\My SQL\bin\C:\WINDOWS\system32\nvsvc32C:\WINDOWS\system32\C:\WINDOWS\system32\C:\Program Files\Viewpoint\Common\Viewpoint C:\Program Files\Canon\CAL\C:\WINDOWS\system32\C:\Program Files\Viewpoint\Viewpoint Manager\View C:\WINDOWS\system32\C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSys C:\WINDOWS\system32\Rundll32C:\WINDOWS\system32\spool\drivers\w32x86\hpztsb09C:\Program Files\Common Files\Real\Update_OB\C:\WINDOWS\system32\Rundll32C:\Program Files\Messenger\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Update\Google C:\Documents and Settings\Bisterd\Local Settings\Application Data\You Tube\Uploader\C:\WINDOWS\System32\C:\WINDOWS\system32\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Program Files\Spybot - Search & Destroy\Spybot C:\DOCUME~1\Bisterd\LOCALS~1\Temp\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Program Files\Trend Micro\Hijack This\Hijack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Search Page =

000046 Device \Driver\PCI_PNP9196 \Device

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device

:\[binary data] %System Drive% = C: | %System Root% = C:\Windows | %Program Files% = C:\Program Files (x86)Drive C: | 684.15 Gb Total Space | 590.33 Gb Free Space | 86.29% Space Free | Partition Type: NTFS Computer Name: PJ | User Name: Pam | Logged in as Administrator. dll MOD - [2013/07/10 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

fe104e6fe551fea4435d29d219f19a7\dll MOD - [2013/07/10 | 011,500,032 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\mscorlib\d1ce70bf6cbab6ab838cbd8b50e902c1\dll MOD - [2013/02/21 | 000,557,368 | ---- | M] () -- C:\Program Data\Trusteer\Rapport\store\exts\Rapport MS\baseline\Rapport MOD - [2012/12/20 | 000,479,752 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\MOD - [2012/12/20 | 000,093,192 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\MOD - [2012/12/09 | 000,972,664 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Microsoft. \Software Update\Yahoo -- (Yahoo AUService) DRV:64bit: - [2013/07/15 | 000,619,616 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\Sys Native\Drivers\-- (KLIF)DRV:64bit: - [2013/07/15 | 000,178,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\Sys Native\Drivers\-- (kneps)DRV:64bit: - [2013/07/15 | 000,050,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\Sys Native\Drivers\-- (klwfp)DRV:64bit: - [2013/06/04 | 000,103,448 | ---- | M] (DEVGURU Co., LTD.( [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\-- (dg_ssudbus)DRV:64bit: - [2013/06/01 | 000,194,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\-- (sdbus)DRV:64bit: - [2013/06/01 | 000,337,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\USBXHCI.Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days PRC - [2013/07/22 | 000,602,112 | ---- | M] (Old Timer Tools) -- C:\Users\Pam\Downloads\PRC - [2013/07/15 | 007,506,752 | ---- | M] (Kaspersky Lab) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\PRC - [2013/07/15 | 000,129,216 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\PRC - [2013/07/12 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

.3.21.153\Google Crash PRC - [2013/07/12 | 000,846,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\PRC - [2013/07/12 | 003,289,472 | ---- | M] (Skype Technologies S. SYS -- (USBXHCI)DRV:64bit: - [2013/06/01 | 000,213,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\UCX01000.A.) -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_PRC - [2013/06/27 | 002,249,352 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing PRC - [2013/06/27 | 000,349,832 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDRuntime PRC - [2013/06/27 | 000,206,984 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDExt PRC - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop PRC - [2013/06/27 | 000,153,224 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDApp PRC - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

.0\PRC - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/04/04 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/02/13 | 002,115,416 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport PRC - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt PRC - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects PRC - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\PRC - [2012/09/20 | 000,333,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\Sys WOW64\PRC - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor PRC - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule PRC - [2012/08/23 | 000,533,568 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\Backup Manager PRC - [2012/08/22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\Instant Update\iu Email Outlook PRC - [2012/08/22 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\Instant Update\iu Browser PRC - [2012/08/21 | 000,473,712 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32PRC - [2012/08/21 | 001,176,176 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\PRC - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\PRC - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\PRC - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\PRC - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_PRC - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup PRC - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo! \Software Update\Yahoo MOD - [2013/07/12 | 000,396,240 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\MOD - [2013/07/12 | 013,599,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\Pepper Flash\MOD - [2013/07/12 | 004,052,944 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\MOD - [2013/07/12 | 000,601,552 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\libglesv2MOD - [2013/07/12 | 000,123,344 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\MOD - [2013/07/12 | 001,597,392 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application.0.1500.72\MOD - [2013/07/11 | 000,220,672 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\Custom Marshalers\aa8342f91aba9ea9e511e9954307ab45\Custom dll MOD - [2013/07/11 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. SYS -- (UCX01000)DRV:64bit: - [2013/05/31 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\Bth Avrcp -- (Bth Avrcp Tg)DRV:64bit: - [2013/05/04 | 000,446,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\USBHUB3.I get the feeling whatever is trying to access it is a remnant of the malware. Here's my Hijack This logfile: Logfile of Trend Micro Hijack This v2.0.2 Scan saved at AM, on 9/7/2008 Platform: Windows XP SP2 (Win NT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\System32\C:\WINDOWS\system32\C:\WINDOWS\Explorer.EXE C:\App Serv\Apache2.2\bin\C:\Program Files\Common Files\Apple\Mobile Device Support\bin\Apple Mobile Device C:\Program Files\Bonjour\m C:\WINDOWS\e Home\eh C:\WINDOWS\e Home\eh C:\Program Files\Intel\Intel Matrix Storage Manager\C:\App Serv\Apache2.2\bin\C:\WINDOWS\system32\C:\App Serv\My SQL\bin\C:\WINDOWS\system32\nvsvc32C:\WINDOWS\system32\C:\WINDOWS\system32\C:\Program Files\Viewpoint\Common\Viewpoint C:\Program Files\Canon\CAL\C:\WINDOWS\system32\C:\Program Files\Viewpoint\Viewpoint Manager\View C:\WINDOWS\system32\C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSys C:\WINDOWS\system32\Rundll32C:\WINDOWS\system32\spool\drivers\w32x86\hpztsb09C:\Program Files\Common Files\Real\Update_OB\C:\WINDOWS\system32\Rundll32C:\Program Files\Messenger\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Update\Google C:\Documents and Settings\Bisterd\Local Settings\Application Data\You Tube\Uploader\C:\WINDOWS\System32\C:\WINDOWS\system32\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Program Files\Spybot - Search & Destroy\Spybot C:\DOCUME~1\Bisterd\LOCALS~1\Temp\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Program Files\Trend Micro\Hijack This\Hijack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Search Page =

000046 Device \Driver\PCI_PNP9196 \Device[[

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

]]000046 Device \Driver\sptd \Device62285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4[[

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

]]000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4[[

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

]][email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

000046 Device \Driver\PCI_PNP9196 \Device[[

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

]]000046 Device \Driver\sptd \Device62285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4[[

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

]]000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4[[

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

]][email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

000046 Device \Driver\PCI_PNP9196 \Device[[

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

]]000046 Device \Driver\sptd \Device62285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 0x DD 0x DE 0x BD 0x87 ...

000046 Device \Driver\sptd \Device62285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4[[

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

]]000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg659239224E364682FA4BAF72C53EA4[[

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

]][email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

||

EXE C:\Program Files\Analog Devices\Sound MAX\C:\PROGRA~1\AVG\AVG8\C:\Program Files\i Tunes\i Tunes C:\Program Files\Microsoft Xbox 360 Accessories\Xbox C:\WINDOWS\system32\RUNDLL32. EXE C:\WINDOWS\system32\C:\Program Files\Windows Live\Messenger\Msn Msgr. Exe C:\Program Files\Vtune\C:\Program Files\DNA\C:\Program Files\DAEMON Tools Lite\C:\Program Files\i Pod\bin\i Pod C:\Program Files\RALINK\Common\Ra C:\Program Files\Mozilla Firefox\C:\Program Files\Windows Live\Messenger\C:\Documents and Settings\Administrator\Desktop\Hi Jack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = Wmi Complete Request] 0CB389F2 ---- Devices - GMER 1.0.14 ---- Device \File System\Ntfs \Ntfs 89BB81F8 Device \Driver\Tcpip \Device\Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBPDO-0 89A8F1F8 Device \Driver\dmio \Device\Dm Control\Dm Io Daemon 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Config 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Pn P 89BBB1F8 Device \Driver\dmio \Device\Dm Control\Dm Info 89BBB1F8 Device \Driver\usbuhci \Device\USBPDO-1 89A8F1F8 Device \Driver\usbuhci \Device\USBPDO-2 89A8F1F8 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\PCI_PNP9196 \Device\00000046 Device \Driver\sptd \Device\1062285446 Device \Driver\usbuhci \Device\USBPDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBPDO-4 89A5B500 Device \Driver\Tcpip \Device\Tcp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Ftdisk \Device\Harddisk Volume1 89BBC1F8 Device \Driver\Cdrom \Device\Cd Rom0 89A49500 Device \Driver\Cdrom \Device\Cd Rom1 89A49500 Device \Driver\atapi \Device\Ide\Ide Device P0T0L0-3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port0 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port1 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port2 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Port3 89BBA1F8 Device \Driver\atapi \Device\Ide\Ide Device P2T0L0-e 89BBA1F8 Device \Driver\Net BT \Device\Net BT_Tcpip_ 89824500 Device \Driver\Net BT \Device\Net Bt_Wins_Export 89824500 Device \Driver\Net BT \Device\Netbios Smb 89824500 Device \Driver\Tcpip \Device\Udp (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\Tcpip \Device\Raw Ip (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-0 89A8F1F8 Device \Driver\usbuhci \Device\USBFDO-1 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Datagram Receiver 8970A1F8 Device \Driver\Tcpip \Device\IPMULTICAST (AVG Network connection watcher/AVG Technologies CZ, s.r.o.) Device \Driver\usbuhci \Device\USBFDO-2 89A8F1F8 Device \File System\MRx Smb \Device\Lanman Redirector 8970A1F8 Device \Driver\usbuhci \Device\USBFDO-3 89A8F1F8 Device \Driver\usbehci \Device\USBFDO-4 89A5B500 Device \Driver\Ftdisk \Device\Ft Control 89BBC1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671Port4Path0Target0Lun0 89A3C1F8 Device \Driver\az1ovc67 \Device\Scsi\az1ovc671 89A3C1F8 Device \File System\Cdfs \Cdfs 89737500 ---- Registry - GMER 1.0.14 ---- Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 771343423 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 285507792 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\[email protected] 1 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] C:\Program Files\DAEMON Tools Lite\ Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\[email protected] 0x DD 0x DE 0x BD 0x87 ...

Link Id=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Search_URL = Wmi System Control] 03D00304 IAT \System Root\System32\Drivers\az1ovc67. Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\00000001 Reg HKLM\SYSTEM\Current Control Set\Services\sptd\Cfg\19659239224E364682FA4BAF72C53EA4\[email protected] 0x20 0x01 0x00 0x00 ...

) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Egis Tec\Services\Egis Ticket -- (Egis Tec Ticket Service)SRV - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_-- (jhi_service)SRV - [2010/10/12 | 000,206,072 | ---- | M] (Wild Tangent, Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Wild Tangent Games\App\Games App -- (Games App Service)SRV - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup -- (Bcm Sql Startup Svc)SRV - [2009/06/16 | 000,020,480 | ---- | M] (Memeo) [Auto | Running] -- C:\Program Files (x86)\Western Digital\WD Smart Ware\Front Parlor\WDSmart Ware Background -- (WDSmart Ware Background Service)SRV - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo!

A.) [Auto | Running] -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_-- (Skype C2C Service)SRV - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) [Auto | Running] -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop -- (Bing Desktop Update)SRV - [2013/06/21 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\-- (Skype Update)SRV - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\3\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

.0\-- (Adobe ARMservice)SRV - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMService)SRV - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\-- (MBAMScheduler)SRV - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) [Auto | Running] -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt -- (Rapport Mgmt Service)SRV - [2013/01/28 | 000,227,456 | ---- | M] (Qualcomm Atheros Commnucations) [Auto | Running] -- C:\Program Files (x86)\Qualcomm Atheros\Bluetooth Suite\Admin -- (Atheros Svc)SRV - [2013/01/07 | 000,277,024 | ---- | M] (Intel Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Intel Cp Heci -- (cphs)SRV - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) [Auto | Running] -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects -- (CSObjects Srv)SRV - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) [Auto | Running] -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\-- (avp)SRV - [2012/11/06 | 002,675,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\system32\spool\DRIVERS\x64\Print -- (Print Notify)SRV - [2012/09/25 | 000,093,296 | ---- | M] (Dritek System INC.) [Auto | Running] -- C:\Windows\Rf Btn Svc64-- (Rf Button Driver Service)SRV - [2012/09/10 | 000,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensing -- (FLEXnet Licensing Service)SRV - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) [Auto | Running] -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor -- (CCDMonitor Service)SRV - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) [Auto | Running] -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule -- (NTI ISchedule Svc)SRV - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) [Auto | Running] -- C:\Program Files (x86)\Launch Manager\-- (Dsi WMIService)SRV - [2012/07/25 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Sys WOW64\Stor -- (Stor Svc)SRV - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\-- (UNS)SRV - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\-- (LMS)SRV - [2012/07/11 | 000,174,160 | ---- | M] (Egis Technology Inc.

malwarebytes program error updating 12016-74malwarebytes program error updating 12016-79malwarebytes program error updating 12016-58
[[

:\[binary data] %System Drive% = C: | %System Root% = C:\Windows | %Program Files% = C:\Program Files (x86)Drive C: | 684.15 Gb Total Space | 590.33 Gb Free Space | 86.29% Space Free | Partition Type: NTFS Computer Name: PJ | User Name: Pam | Logged in as Administrator. dll MOD - [2013/07/10 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System\1fe104e6fe551fea4435d29d219f19a7\dll MOD - [2013/07/10 | 011,500,032 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\mscorlib\d1ce70bf6cbab6ab838cbd8b50e902c1\dll MOD - [2013/02/21 | 000,557,368 | ---- | M] () -- C:\Program Data\Trusteer\Rapport\store\exts\Rapport MS\baseline\Rapport MOD - [2012/12/20 | 000,479,752 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\MOD - [2012/12/20 | 000,093,192 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\MOD - [2012/12/09 | 000,972,664 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Microsoft. \Software Update\Yahoo -- (Yahoo AUService) DRV:64bit: - [2013/07/15 | 000,619,616 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\Sys Native\Drivers\-- (KLIF)DRV:64bit: - [2013/07/15 | 000,178,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\Sys Native\Drivers\-- (kneps)DRV:64bit: - [2013/07/15 | 000,050,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\Sys Native\Drivers\-- (klwfp)DRV:64bit: - [2013/06/04 | 000,103,448 | ---- | M] (DEVGURU Co., LTD.( [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\-- (dg_ssudbus)DRV:64bit: - [2013/06/01 | 000,194,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\-- (sdbus)DRV:64bit: - [2013/06/01 | 000,337,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\USBXHCI.

Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days PRC - [2013/07/22 | 000,602,112 | ---- | M] (Old Timer Tools) -- C:\Users\Pam\Downloads\PRC - [2013/07/15 | 007,506,752 | ---- | M] (Kaspersky Lab) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\PRC - [2013/07/15 | 000,129,216 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\PRC - [2013/07/12 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.153\Google Crash PRC - [2013/07/12 | 000,846,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\PRC - [2013/07/12 | 003,289,472 | ---- | M] (Skype Technologies S. SYS -- (USBXHCI)DRV:64bit: - [2013/06/01 | 000,213,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\UCX01000.

A.) -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_PRC - [2013/06/27 | 002,249,352 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing PRC - [2013/06/27 | 000,349,832 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDRuntime PRC - [2013/06/27 | 000,206,984 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDExt PRC - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop PRC - [2013/06/27 | 000,153,224 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDApp PRC - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\PRC - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/04/04 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/02/13 | 002,115,416 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport PRC - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt PRC - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects PRC - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\PRC - [2012/09/20 | 000,333,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\Sys WOW64\PRC - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor PRC - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule PRC - [2012/08/23 | 000,533,568 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\Backup Manager PRC - [2012/08/22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\Instant Update\iu Email Outlook PRC - [2012/08/22 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\Instant Update\iu Browser PRC - [2012/08/21 | 000,473,712 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32PRC - [2012/08/21 | 001,176,176 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\PRC - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\PRC - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\PRC - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\PRC - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_PRC - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup PRC - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo! \Software Update\Yahoo MOD - [2013/07/12 | 000,396,240 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\MOD - [2013/07/12 | 013,599,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\Pepper Flash\MOD - [2013/07/12 | 004,052,944 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\MOD - [2013/07/12 | 000,601,552 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\libglesv2MOD - [2013/07/12 | 000,123,344 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\MOD - [2013/07/12 | 001,597,392 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\MOD - [2013/07/11 | 000,220,672 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\Custom Marshalers\aa8342f91aba9ea9e511e9954307ab45\Custom dll MOD - [2013/07/11 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. SYS -- (UCX01000)DRV:64bit: - [2013/05/31 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\Bth Avrcp -- (Bth Avrcp Tg)DRV:64bit: - [2013/05/04 | 000,446,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\USBHUB3.

I get the feeling whatever is trying to access it is a remnant of the malware. Here's my Hijack This logfile: Logfile of Trend Micro Hijack This v2.0.2 Scan saved at AM, on 9/7/2008 Platform: Windows XP SP2 (Win NT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\System32\C:\WINDOWS\system32\C:\WINDOWS\Explorer.

EXE C:\App Serv\Apache2.2\bin\C:\Program Files\Common Files\Apple\Mobile Device Support\bin\Apple Mobile Device C:\Program Files\Bonjour\m C:\WINDOWS\e Home\eh C:\WINDOWS\e Home\eh C:\Program Files\Intel\Intel Matrix Storage Manager\C:\App Serv\Apache2.2\bin\C:\WINDOWS\system32\C:\App Serv\My SQL\bin\C:\WINDOWS\system32\nvsvc32C:\WINDOWS\system32\C:\WINDOWS\system32\C:\Program Files\Viewpoint\Common\Viewpoint C:\Program Files\Canon\CAL\C:\WINDOWS\system32\C:\Program Files\Viewpoint\Viewpoint Manager\View C:\WINDOWS\system32\C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSys C:\WINDOWS\system32\Rundll32C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09C:\Program Files\Common Files\Real\Update_OB\C:\WINDOWS\system32\Rundll32C:\Program Files\Messenger\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Update\Google C:\Documents and Settings\Bisterd\Local Settings\Application Data\You Tube\Uploader\C:\WINDOWS\System32\C:\WINDOWS\system32\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Program Files\Spybot - Search & Destroy\Spybot C:\DOCUME~1\Bisterd\LOCALS~1\Temp\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Program Files\Trend Micro\Hijack This\Hijack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Search Page =

||

:\[binary data] %System Drive% = C: | %System Root% = C:\Windows | %Program Files% = C:\Program Files (x86)Drive C: | 684.15 Gb Total Space | 590.33 Gb Free Space | 86.29% Space Free | Partition Type: NTFS Computer Name: PJ | User Name: Pam | Logged in as Administrator. dll MOD - [2013/07/10 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 007,988,736 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System\1fe104e6fe551fea4435d29d219f19a7\dll MOD - [2013/07/10 | 011,500,032 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\mscorlib\d1ce70bf6cbab6ab838cbd8b50e902c1\dll MOD - [2013/02/21 | 000,557,368 | ---- | M] () -- C:\Program Data\Trusteer\Rapport\store\exts\Rapport MS\baseline\Rapport MOD - [2012/12/20 | 000,479,752 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\MOD - [2012/12/20 | 000,093,192 | ---- | M] () -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\MOD - [2012/12/09 | 000,972,664 | ---- | M] () -- C:\Windows\assembly\GAC_MSIL\Microsoft. \Software Update\Yahoo -- (Yahoo AUService) DRV:64bit: - [2013/07/15 | 000,619,616 | ---- | M] (Kaspersky Lab ZAO) [File_System | System | Running] -- C:\Windows\Sys Native\Drivers\-- (KLIF)DRV:64bit: - [2013/07/15 | 000,178,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\Sys Native\Drivers\-- (kneps)DRV:64bit: - [2013/07/15 | 000,050,448 | ---- | M] (Kaspersky Lab ZAO) [Kernel | System | Running] -- C:\Windows\Sys Native\Drivers\-- (klwfp)DRV:64bit: - [2013/06/04 | 000,103,448 | ---- | M] (DEVGURU Co., LTD.( [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\-- (dg_ssudbus)DRV:64bit: - [2013/06/01 | 000,194,816 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\-- (sdbus)DRV:64bit: - [2013/06/01 | 000,337,152 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\USBXHCI.Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days PRC - [2013/07/22 | 000,602,112 | ---- | M] (Old Timer Tools) -- C:\Users\Pam\Downloads\PRC - [2013/07/15 | 007,506,752 | ---- | M] (Kaspersky Lab) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\Kaspersky Password Manager\PRC - [2013/07/15 | 000,129,216 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\PRC - [2013/07/12 | 000,217,992 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Update\1.3.21.153\Google Crash PRC - [2013/07/12 | 000,846,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\PRC - [2013/07/12 | 003,289,472 | ---- | M] (Skype Technologies S. SYS -- (USBXHCI)DRV:64bit: - [2013/06/01 | 000,213,248 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\UCX01000.A.) -- C:\Program Data\Skype\Toolbars\Skype C2C Service\c2c_PRC - [2013/06/27 | 002,249,352 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing PRC - [2013/06/27 | 000,349,832 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDRuntime PRC - [2013/06/27 | 000,206,984 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDExt PRC - [2013/06/27 | 000,173,192 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\Bing Desktop PRC - [2013/06/27 | 000,153,224 | ---- | M] (Microsoft Corp.) -- C:\Program Files (x86)\Microsoft\Bing Desktop\BDApp PRC - [2013/05/11 | 000,065,640 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\PRC - [2013/04/04 | 000,701,512 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/04/04 | 000,532,040 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/04/04 | 000,418,376 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\PRC - [2013/02/13 | 002,115,416 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport PRC - [2013/02/13 | 001,124,184 | ---- | M] (Trusteer Ltd.) -- C:\Program Files (x86)\Trusteer\Rapport\bin\Rapport Mgmt PRC - [2012/12/21 | 000,819,040 | ---- | M] (Infowatch) -- C:\Program Files (x86)\Common Files\Info Watch\Crypto Storage\Protected Objects PRC - [2012/12/20 | 000,356,968 | ---- | M] (Kaspersky Lab ZAO) -- C:\Program Files (x86)\Kaspersky Lab\Kaspersky PURE 3.0\PRC - [2012/09/20 | 000,333,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\Sys WOW64\PRC - [2012/08/24 | 002,435,728 | ---- | M] (Acer Incorporated) -- C:\Program Files (x86)\Acer\Acer Cloud\CCDMonitor PRC - [2012/08/23 | 000,259,136 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\ISchedule PRC - [2012/08/23 | 000,533,568 | ---- | M] (NTI Corporation) -- C:\Program Files (x86)\NTI\Acer Backup Manager\Backup Manager PRC - [2012/08/22 | 000,025,232 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\Instant Update\iu Email Outlook PRC - [2012/08/22 | 000,044,176 | ---- | M] () -- C:\Program Files\Acer\Acer Instant Service\Instant Update\iu Browser PRC - [2012/08/21 | 000,473,712 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\LMutilps32PRC - [2012/08/21 | 001,176,176 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\PRC - [2012/08/21 | 000,348,784 | ---- | M] (Dritek System Inc.) -- C:\Program Files (x86)\Launch Manager\PRC - [2012/07/17 | 000,365,376 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\PRC - [2012/07/17 | 000,277,824 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\PRC - [2012/06/25 | 000,166,720 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_PRC - [2010/03/25 | 000,031,144 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Small Business\Business Contact Manager\Bcm Sql Startup PRC - [2008/11/09 | 000,602,392 | ---- | M] (Yahoo! \Software Update\Yahoo MOD - [2013/07/12 | 000,396,240 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\MOD - [2013/07/12 | 013,599,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\Pepper Flash\MOD - [2013/07/12 | 004,052,944 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\MOD - [2013/07/12 | 000,601,552 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\libglesv2MOD - [2013/07/12 | 000,123,344 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\MOD - [2013/07/12 | 001,597,392 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.72\MOD - [2013/07/11 | 000,220,672 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\Custom Marshalers\aa8342f91aba9ea9e511e9954307ab45\Custom dll MOD - [2013/07/11 | 002,297,856 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. dll MOD - [2013/07/10 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\Native Images_v2.0.50727_32\System. SYS -- (UCX01000)DRV:64bit: - [2013/05/31 | 000,037,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\Sys Native\Drivers\Bth Avrcp -- (Bth Avrcp Tg)DRV:64bit: - [2013/05/04 | 000,446,720 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\Sys Native\Drivers\USBHUB3.I get the feeling whatever is trying to access it is a remnant of the malware. Here's my Hijack This logfile: Logfile of Trend Micro Hijack This v2.0.2 Scan saved at AM, on 9/7/2008 Platform: Windows XP SP2 (Win NT 5.01.2600) MSIE: Internet Explorer v7.00 (7.00.5730.0013) Boot mode: Normal Running processes: C:\WINDOWS\System32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\system32\C:\WINDOWS\System32\C:\WINDOWS\system32\C:\WINDOWS\Explorer.EXE C:\App Serv\Apache2.2\bin\C:\Program Files\Common Files\Apple\Mobile Device Support\bin\Apple Mobile Device C:\Program Files\Bonjour\m C:\WINDOWS\e Home\eh C:\WINDOWS\e Home\eh C:\Program Files\Intel\Intel Matrix Storage Manager\C:\App Serv\Apache2.2\bin\C:\WINDOWS\system32\C:\App Serv\My SQL\bin\C:\WINDOWS\system32\nvsvc32C:\WINDOWS\system32\C:\WINDOWS\system32\C:\Program Files\Viewpoint\Common\Viewpoint C:\Program Files\Canon\CAL\C:\WINDOWS\system32\C:\Program Files\Viewpoint\Viewpoint Manager\View C:\WINDOWS\system32\C:\Program Files\Creative\SBAudigy\Surround Mixer\CTSys C:\WINDOWS\system32\Rundll32C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09C:\Program Files\Common Files\Real\Update_OB\C:\WINDOWS\system32\Rundll32C:\Program Files\Messenger\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Update\Google C:\Documents and Settings\Bisterd\Local Settings\Application Data\You Tube\Uploader\C:\WINDOWS\System32\C:\WINDOWS\system32\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Program Files\Spybot - Search & Destroy\Spybot C:\DOCUME~1\Bisterd\LOCALS~1\Temp\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Documents and Settings\Bisterd\Local Settings\Application Data\Google\Chrome\Application\C:\Program Files\Trend Micro\Hijack This\Hijack R0 - HKCU\Software\Microsoft\Internet Explorer\Main, Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Default_Page_URL = R1 - HKLM\Software\Microsoft\Internet Explorer\Main, Search Page =

]]


01-Feb-2018 20:20 kelly trudy dating service  

speed dating east bay california
barranquilla dating colombia



TAGINE 221 WEST 38 ST(7/8AVES)GARMN TDISTTONITE ---"TRANSGIRLS WEDNESDAYS" New Location @TAGINE 221 West 38st(7/8aves)Gar ment Dist- "11PM-4AM TONITE TRANSIRLS WEDNEDSAY RESUME---NEW MIDTOWN GARMENT DISTRICT LOCATION 4 BLOCKS...


15-Nov-2017 06:55 sex dating in teton idaho  

Masterbate video
Mpprn



@font-face{font-family:'q-icons';src:url(//quoracdn.net/-fonts.q-icons.q-icons.eoteaabd749c1c44922.eot);src:url(//quoracdn.net/-fonts.q-icons.q-icons.woff2101cc98410fd63e6.woff2) format('woff2'),url(//quoracdn.net/-fonts.q-icons.q-icons.woffb4d3c3ece4532bec.woff) format('woff'),url(//quoracdn.net/-fonts.q-icons.q-icons.ttf377170866a906859.ttf) format('truetype'),url(//quoracdn.net/-fonts.q-icons.q-icons.svg3014a7e5d1294672.svg) format('svg');font-weight:normal;font-style:[email protected]{font-family:'q_serif';src:url(//quoracdn.net/-fonts.q_serif.q_serif_regular.eot724740ce9faa6d02.eot);src:url('/static/fonts/q_serif/q_serif_regular.eot? #iefix') format('embedded-opentype'),url(//quoracdn.net/-fonts.q_serif.q_serif_regular.woff2b660b09e916538fa.woff2) format('woff2'),url(//quoracdn.net/-fonts.q_serif.q_serif_regular.wofff5de2fe1e48d7cb1.woff) format('woff'),url(//quoracdn.net/-fonts.q_serif.q_serif_regular.ttfde71fa0eaacf4d6e.ttf) format('truetype');font-weight:400;font-style:[email protected]{font-family:'q_serif';src:url(//quoracdn.net/-fonts.q_serif.q_serif_regular_italic.eot0e70722bfd809f9d.eot);src:url('/static/fonts/q_serif/q_serif_regular_italic.eot? #iefix') format('embedded-opentype'),url(//quoracdn.net/-fonts.q_serif.q_serif_regular_italic.woff29d63924c2b6a1fd2.woff2) format('woff2'),url(//quoracdn.net/-fonts.q_serif.q_serif_regular_italic.woffe50f53817c85b798.woff) format('woff'),url(//quoracdn.net/-fonts.q_serif.q_serif_regular_italic.ttf445671494147f641.ttf) format('truetype');font-weight:400;font-style:[email protected]{font-family:'q_serif';src:url(//quoracdn.net/-fonts.q_serif.q_serif_semibold.eota20bcd991fb37590.eot);src:url('/static/fonts/q_serif/q_serif_semibold.eot? #iefix') format('embedded-opentype'),url(//quoracdn.net/-fonts.q_serif.q_serif_semibold.woff263b31550416a2510.woff2) format('woff2'),url(//quoracdn.net/-fonts.q_serif.q_serif_semibold.woff9c8b77aa17742fc1.woff) format('woff'),url(//quoracdn.net/-fonts.q_serif.q_serif_semibold.ttfe3295a33efa03b40.ttf) format('truetype');font-weight:bold;font-style:[email protected]{font-family:'q_serif';src:url(//quoracdn.net/-fonts.q_serif.q_serif_semibold_italic.eotb4747289576685fb.eot);src:url('/static/fonts/q_serif/q_serif_semibold_italic.eot? #iefix') format('embedded-opentype'),url(//quoracdn.net/-fonts.q_serif.q_serif_semibold_italic.woff2f553fc885641825f.woff2) format('woff2'),url(//quoracdn.net/-fonts.q_serif.q_serif_semibold_italic.woffceaf44b10a2d416a.woff) format('woff'),url(//quoracdn.net/-fonts.q_serif.q_serif_semibold_italic.ttfd15567dd8175ed85.ttf) format('truetype');font-weight:bold;font-style:[email protected]{font-family:'q_sans';src:url(//quoracdn.net/-fonts.q_sans.q_sans_regular.eotc0c3eea9179978ff.eot);src:url('/static/fonts/q_sans/q_sans_regular.eot? #iefix') format('embedded-opentype'),url(//quoracdn.net/-fonts.q_sans.q_sans_regular.woff2052ea1356ccae2f0.woff2) format('woff2'),url(//quoracdn.net/-fonts.q_sans.q_sans_regular.woff5cc5776a8852cb2c.woff) format('woff'),url(//quoracdn.net/-fonts.q_sans.q_sans_regular.ttf7214d245aa610eb3.ttf) format('truetype');font-weight:400;font-style:[email protected]{font-family:'q_sans';src:url(//quoracdn.net/-fonts.q_sans.q_sans_medium.eotd5a95b804e3ee936.eot);src:url('/static/fonts/q_sans/q_sans_medium.eot? Meeting women without registering in Los Angeles, Meeting women for a serious relationship in Los Angeles, Meeting women for travel in Los Angeles, Meeting women for online chat in Los Angeles, Meeting women for dating and sex in Los Angeles.


13-Dec-2017 07:22 Malay cybersex chat  

Free chat naughty free
Tideli sex movie videio



Our webcam models love to get naked for you and follow your every command.


04-Jan-2018 01:15 Crazy Povirtim com sex webcam roulette  

dating hina dolls
validating asp net server controls



Adult and teen users of any race, gender, lifestyle or sex are welcome to participate.


23-Jul-2017 06:20 Adult dating barcelo  

eddie murphy and johnny gill dating
danish dating sites



Real amateur ear fetish porn videos with girls on fire willing to do anything for pleasure.


24-Oct-2017 22:11 Chat free on porn facebook no sing up  

Free no registation porn chat
Paris adult vedio chat rooms



But the question remains, why weren’t this hackers happy with the console, and what’s so good about flashing a PS3?


04-Nov-2017 04:57 manson milton dating  

Sex online chat free with a man
Adult chat webspawner



So I logged off of Bumble, Hinge, Happn, JSwipe and Tinder, and I haven't touched them since.