0% found this document useful (0 votes)

74 views

TRLOG

The document is a log from a scan by Trojan Remover Ver 6.6.8.2519 that checked the system for malware. The scan found no issues and checked various areas of the system including registry keys, services, and files. All files and registry entries checked appeared normal with no signs of malware detected.

Uploaded by

Slendy Rg

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

0% found this document useful (0 votes)

74 views

TRLOG

Uploaded by

Slendy Rg

Available Formats

Download as TXT, PDF, TXT or read online on Scribd

You are on page 1/ 44

* NORMAL SCAN FOR ACTIVE MALWARE *

Trojan Remover Ver 6.6.8.2519. For information, email [email protected]

[Unregistered version]
Scan started at: 8/25/2012 6:58:41 PM
Using Database v6945
Operating System:
[ (Build 7600)]
File System:
NTFS
User Account Control is DISABLED.
Data directory:
C:\Users\Usuario\AppData\Roaming\Simply Super Software\Trojan
Remover\
Logfile directory: C:\Users\Usuario\Documents\Simply Super Software\Trojan Remov
er Logfiles\
Program directory: C:\Program Files\Trojan Remover\
Running with Administrator privileges
**************************************************
**************************************************
6:58:41 PM: Scanning ----------WIN.INI----------WIN.INI found in C:\Windows
**************************************************
6:58:41 PM: Scanning --------SYSTEM.INI--------SYSTEM.INI found in C:\Windows
**************************************************
6:58:41 PM: ----- SCANNING FOR ROOTKIT SERVICES ----No hidden Services were detected.
**************************************************
6:58:42 PM: Scanning -----WINDOWS REGISTRY-----------------------Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
-------------------Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
This key's "Shell" value calls the following program(s):
File: explorer.exe
C:\Windows\explorer.exe
2613248 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------This key's "Userinit" value calls the following program(s):
File: C:\Windows\system32\userinit.exe
C:\Windows\system32\userinit.exe
26112 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
----------------------------Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
-------------------Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
Value Name: load
-------------------Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value Name: SunJavaUpdateSched

Value Data: "C:\Program Files\Java\jre6\bin\jusched.exe"

C:\Program Files\Java\jre6\bin\jusched.exe
149280 bytes
Created: 8/25/2012
Modified: 8/25/2012
Company: Sun Microsystems, Inc.
-------------------Value Name: egui
Value Data: "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitserv
ice
C:\Program Files\ESET\ESET Smart Security\egui.exe
2054360 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
-------------------Value Name: TrojanScanner
Value Data: C:\Program Files\Trojan Remover\Trjscan.exe
C:\Program Files\Trojan Remover\Trjscan.exe
868432 bytes
Created: 8/25/2012
Modified: 3/2/2008
Company: Simply Super Software
--------------------------------------Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty
-------------------Checking HKCU\Software\Microsoft\Windows\CurrentVersion\Run
This Registry Key appears to be empty
-------------------Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty
**************************************************
6:58:43 PM: Scanning -----SHELLEXECUTEHOOKS----ShellExecuteHooks key is empty
**************************************************
6:58:43 PM: Scanning -----HIDDEN REGISTRY ENTRIES----Taskdir check completed
---------No Hidden File-loading Registry Entries found
---------**************************************************
6:58:43 PM: Scanning -----ACTIVE SCREENSAVER----No active ScreenSaver found to scan.
**************************************************
6:58:43 PM: Scanning ----- REGISTRY ACTIVE SETUP KEYS ----Key: >{26923b43-4d38-484f-9b9e-de460746276c}
Path: C:\Windows\System32\ie4uinit.exe
C:\Windows\System32\ie4uinit.exe
176128 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: {89820200-ECBD-11cf-8B85-00AA005B4383}

Path: C:\Windows\System32\ie4uinit.exe
C:\Windows\System32\ie4uinit.exe
176128 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------**************************************************
6:58:44 PM: Scanning ----- SERVICEDLL REGISTRY KEYS ----Key: AppIDSvc
Path: %SystemRoot%\System32\appidsvc.dll
C:\Windows\System32\appidsvc.dll
27648 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: AxInstSV
Path: %SystemRoot%\System32\AxInstSV.dll
C:\Windows\System32\AxInstSV.dll
88064 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: BDESVC
Path: %SystemRoot%\System32\bdesvc.dll
C:\Windows\System32\bdesvc.dll
76800 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: bthserv
Path: %SystemRoot%\system32\bthserv.dll
C:\Windows\system32\bthserv.dll
64512 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: defragsvc
Path: %Systemroot%\System32\defragsvc.dll
C:\Windows\System32\defragsvc.dll
218624 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: Dhcp
Path: %SystemRoot%\system32\dhcpcore.dll
C:\Windows\system32\dhcpcore.dll
253440 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: FontCache
Path: %SystemRoot%\system32\FntCache.dll

C:\Windows\system32\FntCache.dll
797696 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: HomeGroupListener
Path: %SystemRoot%\system32\ListSvc.dll
C:\Windows\system32\ListSvc.dll
194560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: HomeGroupProvider
Path: %SystemRoot%\system32\provsvc.dll
C:\Windows\system32\provsvc.dll
165376 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: p2pimsvc
Path: %SystemRoot%\system32\pnrpsvc.dll
C:\Windows\system32\pnrpsvc.dll
269824 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: PeerDistSvc
Path: %SystemRoot%\system32\peerdistsvc.dll
C:\Windows\system32\peerdistsvc.dll
1004544 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: PNRPAutoReg
Path: %SystemRoot%\system32\pnrpauto.dll
C:\Windows\system32\pnrpauto.dll
20480 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: PNRPsvc
Path: %SystemRoot%\system32\pnrpsvc.dll
C:\Windows\system32\pnrpsvc.dll
269824 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: Power
Path: %SystemRoot%\system32\umpo.dll
C:\Windows\system32\umpo.dll
119808 bytes
Created: 7/13/2009
Modified: 7/13/2009

Company: Microsoft Corporation

-------------------Key: RpcEptMapper
Path: %SystemRoot%\System32\RpcEpMap.dll
C:\Windows\System32\RpcEpMap.dll
43520 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: SensrSvc
Path: %SystemRoot%\system32\sensrsvc.dll
C:\Windows\system32\sensrsvc.dll
25088 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: sppuinotify
Path: %SystemRoot%\system32\sppuinotify.dll
C:\Windows\system32\sppuinotify.dll
53760 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: SstpSvc
Path: %SystemRoot%\system32\sstpsvc.dll
C:\Windows\system32\sstpsvc.dll
90112 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: Themes
Path: %SystemRoot%\system32\themeservice.dll
C:\Windows\system32\themeservice.dll
37376 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: WbioSrvc
Path: %SystemRoot%\System32\wbiosrvc.dll
C:\Windows\System32\wbiosrvc.dll
151552 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: WwanSvc
Path: %SystemRoot%\System32\wwansvc.dll
C:\Windows\System32\wwansvc.dll
185856 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------**************************************************

6:58:45 PM: Scanning ----- SERVICES REGISTRY KEYS ----Key:

1394ohci
ImagePath: system32\DRIVERS\1394ohci.sys
C:\Windows\system32\DRIVERS\1394ohci.sys
163328 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
AcpiPmi
ImagePath: \SystemRoot\system32\DRIVERS\acpipmi.sys
C:\Windows\system32\DRIVERS\acpipmi.sys
9728 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
agp440
ImagePath: \SystemRoot\system32\DRIVERS\agp440.sys
C:\Windows\system32\DRIVERS\agp440.sys
53312 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
AmdPPM
ImagePath: \SystemRoot\system32\DRIVERS\amdppm.sys
C:\Windows\system32\DRIVERS\amdppm.sys
52736 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
amdsata
ImagePath: \SystemRoot\system32\DRIVERS\amdsata.sys
C:\Windows\system32\DRIVERS\amdsata.sys
79952 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: Advanced Micro Devices
---------Key:
amdsbs
ImagePath: \SystemRoot\system32\DRIVERS\amdsbs.sys
C:\Windows\system32\DRIVERS\amdsbs.sys
159312 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: AMD Technologies Inc.
---------Key:
amdxata
ImagePath: system32\DRIVERS\amdxata.sys
C:\Windows\system32\DRIVERS\amdxata.sys
23616 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Advanced Micro Devices
---------Key:
AppID
ImagePath: \SystemRoot\system32\drivers\appid.sys
C:\Windows\system32\drivers\appid.sys

50176 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
b06bdrv
ImagePath: \SystemRoot\system32\DRIVERS\bxvbdx.sys
C:\Windows\system32\DRIVERS\bxvbdx.sys
430080 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: Broadcom Corporation
---------Key:
b57nd60x
ImagePath: system32\DRIVERS\b57nd60x.sys
C:\Windows\system32\DRIVERS\b57nd60x.sys
229888 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Broadcom Corporation
---------Key:
blbdrive
ImagePath: system32\DRIVERS\blbdrive.sys
C:\Windows\system32\DRIVERS\blbdrive.sys
35328 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
CNG
ImagePath: System32\Drivers\cng.sys
C:\Windows\System32\Drivers\cng.sys
369568 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
CompositeBus
ImagePath: system32\DRIVERS\CompositeBus.sys
C:\Windows\system32\DRIVERS\CompositeBus.sys
31232 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
crcdisk
ImagePath: \SystemRoot\system32\DRIVERS\crcdisk.sys
C:\Windows\system32\DRIVERS\crcdisk.sys
22096 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
CSC
ImagePath: system32\drivers\csc.sys
C:\Windows\system32\drivers\csc.sys
387584 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation

---------Key:
discache
ImagePath: System32\drivers\discache.sys
C:\Windows\System32\drivers\discache.sys
32256 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
eamon
ImagePath: system32\DRIVERS\eamon.sys
C:\Windows\system32\DRIVERS\eamon.sys
116008 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
ebdrv
ImagePath: \SystemRoot\system32\DRIVERS\evbdx.sys
C:\Windows\system32\DRIVERS\evbdx.sys
3100160 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: Broadcom Corporation
---------Key:
ehdrv
ImagePath: system32\DRIVERS\ehdrv.sys
C:\Windows\system32\DRIVERS\ehdrv.sys
108792 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
EhttpSrv
ImagePath: "C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe"
C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
20680 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
ekrn
ImagePath: "C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
735960 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
epfw
ImagePath: system32\DRIVERS\epfw.sys
C:\Windows\system32\DRIVERS\epfw.sys
135048 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
Epfwndis
ImagePath: system32\DRIVERS\Epfwndis.sys
C:\Windows\system32\DRIVERS\Epfwndis.sys

33096 bytes
Created: 6/19/2009
Modified: 6/19/2009
Company: ESET
---------Key:
epfwwfp
ImagePath: system32\DRIVERS\epfwwfp.sys
C:\Windows\system32\DRIVERS\epfwwfp.sys
38240 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
ErrDev
ImagePath: \SystemRoot\system32\DRIVERS\errdev.sys
C:\Windows\system32\DRIVERS\errdev.sys
7168 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Fax
ImagePath: %systemroot%\system32\fxssvc.exe
C:\Windows\system32\fxssvc.exe
522752 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
fdc
ImagePath: \SystemRoot\system32\DRIVERS\fdc.sys
C:\Windows\system32\DRIVERS\fdc.sys
25088 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
flpydisk
ImagePath: \SystemRoot\system32\DRIVERS\flpydisk.sys
C:\Windows\system32\DRIVERS\flpydisk.sys
19968 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
FsDepends
ImagePath: System32\drivers\FsDepends.sys
C:\Windows\System32\drivers\FsDepends.sys
46160 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
fvevol
ImagePath: System32\DRIVERS\fvevol.sys
C:\Windows\System32\DRIVERS\fvevol.sys
194488 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation

---------Key:
hcw85cir
ImagePath: \SystemRoot\system32\drivers\hcw85cir.sys
C:\Windows\system32\drivers\hcw85cir.sys
26624 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Hauppauge Computer Works, Inc.
---------Key:
HidBatt
ImagePath: \SystemRoot\system32\DRIVERS\HidBatt.sys
C:\Windows\system32\DRIVERS\HidBatt.sys
21504 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
HidUsb
ImagePath: \SystemRoot\system32\DRIVERS\hidusb.sys
C:\Windows\system32\DRIVERS\hidusb.sys
24064 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
HpSAMD
ImagePath: \SystemRoot\system32\DRIVERS\HpSAMD.sys
C:\Windows\system32\DRIVERS\HpSAMD.sys
67152 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Hewlett-Packard Company
---------Key:
hwpolicy
ImagePath: System32\drivers\hwpolicy.sys
C:\Windows\System32\drivers\hwpolicy.sys
13904 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
igfx
ImagePath: system32\DRIVERS\igdkmd32.sys
C:\Windows\system32\DRIVERS\igdkmd32.sys
4756480 bytes
Created: 6/10/2009
Modified: 6/10/2009
Company: Intel Corporation
---------Key:
iScsiPrt
ImagePath: \SystemRoot\system32\DRIVERS\msiscsi.sys
C:\Windows\system32\DRIVERS\msiscsi.sys
186960 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
kbdhid
ImagePath: \SystemRoot\system32\DRIVERS\kbdhid.sys
C:\Windows\system32\DRIVERS\kbdhid.sys

28160 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
KSecPkg
ImagePath: System32\Drivers\ksecpkg.sys
C:\Windows\System32\Drivers\ksecpkg.sys
133200 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
LSI_FC
ImagePath: \SystemRoot\system32\DRIVERS\lsi_fc.sys
C:\Windows\system32\DRIVERS\lsi_fc.sys
95824 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: LSI Corporation
---------Key:
LSI_SAS
ImagePath: \SystemRoot\system32\DRIVERS\lsi_sas.sys
C:\Windows\system32\DRIVERS\lsi_sas.sys
89168 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: LSI Corporation
---------Key:
LSI_SAS2
ImagePath: \SystemRoot\system32\DRIVERS\lsi_sas2.sys
C:\Windows\system32\DRIVERS\lsi_sas2.sys
54864 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: LSI Corporation
---------Key:
LSI_SCSI
ImagePath: \SystemRoot\system32\DRIVERS\lsi_scsi.sys
C:\Windows\system32\DRIVERS\lsi_scsi.sys
96848 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: LSI Corporation
---------Key:
megasas
ImagePath: \SystemRoot\system32\DRIVERS\megasas.sys
C:\Windows\system32\DRIVERS\megasas.sys
30800 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: LSI Corporation
---------Key:
MegaSR
ImagePath: \SystemRoot\system32\DRIVERS\MegaSR.sys
C:\Windows\system32\DRIVERS\MegaSR.sys
235584 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: LSI Corporation, Inc.

---------Key:
mouhid
ImagePath: \SystemRoot\system32\DRIVERS\mouhid.sys
C:\Windows\system32\DRIVERS\mouhid.sys
26112 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
mshidkmdf
ImagePath: \SystemRoot\System32\drivers\mshidkmdf.sys
C:\Windows\System32\drivers\mshidkmdf.sys
4096 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
MTConfig
ImagePath: \SystemRoot\system32\DRIVERS\MTConfig.sys
C:\Windows\system32\DRIVERS\MTConfig.sys
12288 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
NdisCap
ImagePath: system32\DRIVERS\ndiscap.sys
C:\Windows\system32\DRIVERS\ndiscap.sys
27136 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
netw5v32
ImagePath: system32\DRIVERS\netw5v32.sys
C:\Windows\system32\DRIVERS\netw5v32.sys
4231168 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: Intel Corporation
---------Key:
ohci1394
ImagePath: \SystemRoot\system32\DRIVERS\ohci1394.sys
C:\Windows\system32\DRIVERS\ohci1394.sys
62464 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Parport
ImagePath: \SystemRoot\system32\DRIVERS\parport.sys
C:\Windows\system32\DRIVERS\parport.sys
79360 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Parvdm
ImagePath: \SystemRoot\system32\DRIVERS\parvdm.sys
C:\Windows\system32\DRIVERS\parvdm.sys

8704 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
pcw
ImagePath: System32\drivers\pcw.sys
C:\Windows\System32\drivers\pcw.sys
43088 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
ql40xx
ImagePath: \SystemRoot\system32\DRIVERS\ql40xx.sys
C:\Windows\system32\DRIVERS\ql40xx.sys
106064 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: QLogic Corporation
---------Key:
RasAgileVpn
ImagePath: system32\DRIVERS\AgileVpn.sys
C:\Windows\system32\DRIVERS\AgileVpn.sys
49152 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
RasSstp
ImagePath: system32\DRIVERS\rassstp.sys
C:\Windows\system32\DRIVERS\rassstp.sys
75264 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
rdpbus
ImagePath: system32\DRIVERS\rdpbus.sys
C:\Windows\system32\DRIVERS\rdpbus.sys
18944 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
RDPREFMP
ImagePath: system32\drivers\rdprefmp.sys
C:\Windows\system32\drivers\rdprefmp.sys
7168 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
rdyboost
ImagePath: System32\drivers\rdyboost.sys
C:\Windows\System32\drivers\rdyboost.sys
173648 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation

---------Key:
s3cap
ImagePath: \SystemRoot\system32\DRIVERS\vms3cap.sys
C:\Windows\system32\DRIVERS\vms3cap.sys
5632 bytes
Created: 7/14/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
scfilter
ImagePath: System32\DRIVERS\scfilter.sys
C:\Windows\System32\DRIVERS\scfilter.sys
26624 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Serenum
ImagePath: \SystemRoot\system32\DRIVERS\serenum.sys
C:\Windows\system32\DRIVERS\serenum.sys
17920 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Serial
ImagePath: \SystemRoot\system32\DRIVERS\serial.sys
C:\Windows\system32\DRIVERS\serial.sys
83456 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
sisagp
ImagePath: \SystemRoot\system32\DRIVERS\sisagp.sys
C:\Windows\system32\DRIVERS\sisagp.sys
52304 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
sppsvc
ImagePath: %SystemRoot%\system32\sppsvc.exe
C:\Windows\system32\sppsvc.exe
3179520 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
SrvHsfHDA
ImagePath: system32\DRIVERS\VSTAZL3.SYS
C:\Windows\system32\DRIVERS\VSTAZL3.SYS
207360 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Conexant Systems, Inc.
---------Key:
SrvHsfV92
ImagePath: system32\DRIVERS\VSTDPV3.SYS
C:\Windows\system32\DRIVERS\VSTDPV3.SYS

980992 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Conexant Systems, Inc.
---------Key:
SrvHsfWinac
ImagePath: system32\DRIVERS\VSTCNXT3.SYS
C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
661504 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Conexant Systems, Inc.
---------Key:
stexstor
ImagePath: \SystemRoot\system32\DRIVERS\stexstor.sys
C:\Windows\system32\DRIVERS\stexstor.sys
21072 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Promise Technology
---------Key:
storflt
ImagePath: system32\DRIVERS\vmstorfl.sys
C:\Windows\system32\DRIVERS\vmstorfl.sys
40896 bytes
Created: 7/14/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
storvsc
ImagePath: \SystemRoot\system32\DRIVERS\storvsc.sys
C:\Windows\system32\DRIVERS\storvsc.sys
28224 bytes
Created: 7/14/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
uagp35
ImagePath: \SystemRoot\system32\DRIVERS\uagp35.sys
C:\Windows\system32\DRIVERS\uagp35.sys
55888 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
UmPass
ImagePath: \SystemRoot\system32\DRIVERS\umpass.sys
C:\Windows\system32\DRIVERS\umpass.sys
8192 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
usbccgp
ImagePath: \SystemRoot\system32\DRIVERS\usbccgp.sys
C:\Windows\system32\DRIVERS\usbccgp.sys
75264 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation

---------Key:
USBSTOR
ImagePath: \SystemRoot\system32\DRIVERS\USBSTOR.SYS
C:\Windows\system32\DRIVERS\USBSTOR.SYS
74752 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
vdrvroot
ImagePath: system32\DRIVERS\vdrvroot.sys
C:\Windows\system32\DRIVERS\vdrvroot.sys
32832 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
vhdmp
ImagePath: \SystemRoot\system32\DRIVERS\vhdmp.sys
C:\Windows\system32\DRIVERS\vhdmp.sys
159824 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
viaide
ImagePath: \SystemRoot\system32\DRIVERS\viaide.sys
C:\Windows\system32\DRIVERS\viaide.sys
16976 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: VIA Technologies, Inc.
---------Key:
vmbus
ImagePath: \SystemRoot\system32\DRIVERS\vmbus.sys
C:\Windows\system32\DRIVERS\vmbus.sys
175824 bytes
Created: 7/14/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
VMBusHID
ImagePath: \SystemRoot\system32\DRIVERS\VMBusHID.sys
C:\Windows\system32\DRIVERS\VMBusHID.sys
17920 bytes
Created: 7/14/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
vwifibus
ImagePath: \SystemRoot\System32\drivers\vwifibus.sys
C:\Windows\System32\drivers\vwifibus.sys
19968 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
wbengine
ImagePath: "%systemroot%\system32\wbengine.exe"
C:\Windows\system32\wbengine.exe

1202688 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
WfpLwf
ImagePath: system32\DRIVERS\wfplwf.sys
C:\Windows\system32\DRIVERS\wfplwf.sys
9728 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
WIMMount
ImagePath: system32\drivers\wimmount.sys
C:\Windows\system32\drivers\wimmount.sys
19008 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------**************************************************
6:58:55 PM: Scanning -----VXD ENTRIES----**************************************************
6:58:55 PM: Scanning ----- WINLOGON\NOTIFY DLLS ----No WINLOGON\NOTIFY DLLs found to scan
**************************************************
6:58:55 PM: Scanning ----- CONTEXTMENUHANDLERS ----Key: BriefcaseMenu
CLSID: {85BBD920-42A0-1069-A2E4-08002B30309D}
Path: %SystemRoot%\system32\syncui.dll
C:\Windows\system32\syncui.dll
158720 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: ESET Smart Security - Context Menu Shell Extension
CLSID: {B089FE88-FB52-11D3-BDF1-0050DA34150D}
Path: C:\Program Files\ESET\ESET Smart Security\shellExt.dll
C:\Program Files\ESET\ESET Smart Security\shellExt.dll
183880 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key: Open With
CLSID: {09799AFB-AD67-11d1-ABCD-00C04FC30936}
Path: %SystemRoot%\system32\shell32.dll
C:\Windows\system32\shell32.dll
12866560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: Open With EncryptionMenu
CLSID: {A470F8CF-A1E8-4f65-8335-227475AA5C46}

Path: %SystemRoot%\system32\shell32.dll
C:\Windows\system32\shell32.dll
12866560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: Sharing
CLSID: {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}
Path: %SystemRoot%\system32\ntshrui.dll
C:\Windows\system32\ntshrui.dll
442880 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: Trojan Remover
CLSID: {52B87208-9CCF-42C9-B88E-069281105805}
Path: C:\PROGRA~1\TROJAN~1\Trshlex.dll
C:\PROGRA~1\TROJAN~1\Trshlex.dll
467552 bytes
Created: 8/25/2012
Modified: 2/5/2007
Company: Simply Super Software
---------Key: WinRAR
CLSID: {B41DB860-8EE4-11D2-9906-E49FADC173CA}
Path: C:\Program Files\WinRAR\rarext.dll
C:\Program Files\WinRAR\rarext.dll
129024 bytes
Created: 8/25/2012
Modified: 9/21/2007
Company:
---------Key: {90AA3A4E-1CBA-4233-B8BB-535773D48449}
Path: %SystemRoot%\system32\shell32.dll
C:\Windows\system32\shell32.dll
12866560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}
Path: %SystemRoot%\system32\shell32.dll
C:\Windows\system32\shell32.dll
12866560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------**************************************************
6:58:55 PM: Scanning ----- FOLDER\COLUMNHANDLERS ----No Folder\ColumnHandler entries found to scan
**************************************************
6:58:56 PM: Scanning ----- BROWSER HELPER OBJECTS ----Key: {DBC80044-A445-435b-BC74-9C25C1C588A9}
BHO: C:\Program Files\Java\jre6\bin\jp2ssv.dll
C:\Program Files\Java\jre6\bin\jp2ssv.dll

41760 bytes
Created: 8/25/2012
Modified: 8/25/2012
Company: Sun Microsystems, Inc.
---------**************************************************
6:58:56 PM: Scanning ----- SHELLSERVICEOBJECTS ----**************************************************
6:58:56 PM: Scanning ----- SHAREDTASKSCHEDULER ENTRIES ----No SharedTaskScheduler entries found to scan
**************************************************
6:58:56 PM: Scanning ----- IMAGEFILE DEBUGGERS ----No "Debugger" entries found.
**************************************************
6:58:56 PM: Scanning ----- APPINIT_DLLS ----The AppInit_DLLs value is blank
**************************************************
6:58:56 PM: Scanning ----- SECURITY PROVIDER DLLS ----DLL: credssp.dll
C:\Windows\system32\credssp.dll
16896 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------**************************************************
6:58:56 PM: Scanning ------ COMMON STARTUP GROUP -----[C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup]
The Common Startup Group attempts to load the following file(s) at boot time:
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-HS- 174 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company:
-------------------**************************************************
6:58:56 PM: Scanning ----- USER STARTUP GROUPS ----Checking Startup Group for: Usuario
[C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup]
C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\d
esktop.ini
-HS- 174 bytes
Created: 8/25/2012
Modified: 8/25/2012
Company:
----------------------------**************************************************
6:58:56 PM: Scanning ----- SCHEDULED TASKS ----No Scheduled Tasks found to scan
**************************************************

6:58:56 PM: ----- ADDITIONAL CHECKS ----Heuristic checks for hidden files/drivers completed
---------Layered Service Provider entries checks completed
--------Windows Explorer Policies checks completed
---------Desktop Wallpaper: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Themes\Tra
nscodedWallpaper.jpg
C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jp
g
642987 bytes
Created: 8/25/2012
Modified: 8/25/2012
Company:
---------Additional file checks completed
--------**************************************************
6:58:56 PM: Scanning ----- RUNNING PROCESSES ----[Only loaded modules not scanned already
during this scan will be scanned here]
C:\Windows\System32\smss.exe
[1 loaded module]
-------------------C:\Windows\system32\csrss.exe
[15 loaded modules in total]
-------------------C:\Windows\system32\wininit.exe
[25 loaded modules in total]
-------------------C:\Windows\system32\csrss.exe
[17 loaded modules in total]
-------------------C:\Windows\system32\winlogon.exe
[30 loaded modules in total]
-------------------C:\Windows\system32\services.exe
[32 loaded modules in total]
-------------------C:\Windows\system32\lsass.exe
[64 loaded modules in total]
-------------------C:\Windows\system32\lsm.exe
[15 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[51 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[33 loaded modules in total]
-------------------C:\Windows\System32\svchost.exe
[85 loaded modules in total]
-------------------C:\Windows\System32\svchost.exe
[123 loaded modules in total]
--------------------

C:\Windows\system32\svchost.exe
[145 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[76 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[70 loaded modules in total]
-------------------C:\Windows\System32\spoolsv.exe
[78 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[61 loaded modules in total]
-------------------C:\Windows\system32\Dwm.exe
[30 loaded modules in total]
-------------------C:\Windows\Explorer.EXE
[151 loaded modules in total]
-------------------C:\Windows\system32\taskhost.exe
[49 loaded modules in total]
-------------------C:\Program Files\ESET\ESET Smart Security\ekrn.exe
[74 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[65 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[36 loaded modules in total]
-------------------C:\Program Files\Java\jre6\bin\jusched.exe
[36 loaded modules in total]
-------------------C:\Program Files\ESET\ESET Smart Security\egui.exe
[53 loaded modules in total]
-------------------C:\Windows\system32\SearchIndexer.exe
[63 loaded modules in total]
-------------------C:\Program Files\Windows Media Player\wmpnetwk.exe
[103 loaded modules in total]
-------------------C:\Windows\System32\svchost.exe
[58 loaded modules in total]
-------------------C:\Windows\system32\wbem\wmiprvse.exe
[31 loaded modules in total]
-------------------C:\Windows\System32\svchost.exe
[53 loaded modules in total]
-------------------C:\Program Files\Java\jre6\bin\jucheck.exe
[59 loaded modules in total]
-------------------C:\Program Files\Trojan Remover\Rmvtrjan.exe
FileSize:
2515520
[This is a Trojan Remover component]

[38 loaded modules in total]

-------------------**************************************************
6:59:27 PM: Checking HOSTS file
No malicious entries were found in the HOSTS file
**************************************************
------ INTERNET EXPLORER HOME/START/SEARCH SETTINGS -----HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Start Page":
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Local Page":
C:\Windows\System32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Search Page":
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Default_Page_URL":
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Default_Search_URL
":
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Start Page":
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Local Page":
C:\Windows\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Search Page":
http://go.microsoft.com/fwlink/?LinkId=54896
**************************************************
=== NO CHANGES HAVE BEEN MADE TO YOUR SYSTEM FILES ===
Scan completed at: 8/25/2012 6:59:27 PM
************************************************************
***** NORMAL SCAN FOR ACTIVE MALWARE *****
Trojan Remover Ver 6.6.8.2519. For information, email [email protected]
[Unregistered version]
Scan started at: 8/25/2012 6:41:10 PM
Using Database v6945
Operating System:
[ (Build 7600)]
File System:
NTFS
User Account Control is DISABLED.
Data directory:
C:\Users\Usuario\AppData\Roaming\Simply Super Software\Trojan
Remover\
Logfile directory: C:\Users\Usuario\Documents\Simply Super Software\Trojan Remov
er Logfiles\
Program directory: C:\Program Files\Trojan Remover\
Running with Administrator privileges
**************************************************
**************************************************
6:41:11 PM: Scanning ----------WIN.INI----------WIN.INI found in C:\Windows
**************************************************
6:41:11 PM: Scanning --------SYSTEM.INI--------SYSTEM.INI found in C:\Windows
**************************************************

6:41:11 PM: ----- SCANNING FOR ROOTKIT SERVICES ----No hidden Services were detected.
**************************************************
6:41:12 PM: Scanning -----WINDOWS REGISTRY-----------------------Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
-------------------Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\WinLogon
This key's "Shell" value calls the following program(s):
File: explorer.exe
C:\Windows\explorer.exe
2613248 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------This key's "Userinit" value calls the following program(s):
File: C:\Windows\system32\userinit.exe
C:\Windows\system32\userinit.exe
26112 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
----------------------------Checking HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
-------------------Checking HKCU\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows
Value Name: load
-------------------Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run
Value Name: SunJavaUpdateSched
Value Data: "C:\Program Files\Java\jre6\bin\jusched.exe"
C:\Program Files\Java\jre6\bin\jusched.exe
149280 bytes
Created: 8/25/2012
Modified: 8/25/2012
Company: Sun Microsystems, Inc.
-------------------Value Name: egui
Value Data: "C:\Program Files\ESET\ESET Smart Security\egui.exe" /hide /waitserv
ice
C:\Program Files\ESET\ESET Smart Security\egui.exe
2054360 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
-------------------Value Name: TrojanScanner
Value Data: C:\Program Files\Trojan Remover\Trjscan.exe
C:\Program Files\Trojan Remover\Trjscan.exe
868432 bytes
Created: 8/25/2012
Modified: 3/2/2008
Company: Simply Super Software
--------------------------------------Checking HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty

-------------------Checking HKCU\Software\Microsoft\Windows\CurrentVersion\Run
This Registry Key appears to be empty
-------------------Checking HKCU\Software\Microsoft\Windows\CurrentVersion\RunOnce
This Registry Key appears to be empty
**************************************************
6:41:13 PM: Scanning -----SHELLEXECUTEHOOKS----ShellExecuteHooks key is empty
**************************************************
6:41:13 PM: Scanning -----HIDDEN REGISTRY ENTRIES----Taskdir check completed
---------No Hidden File-loading Registry Entries found
---------**************************************************
6:41:13 PM: Scanning -----ACTIVE SCREENSAVER----No active ScreenSaver found to scan.
**************************************************
6:41:13 PM: Scanning ----- REGISTRY ACTIVE SETUP KEYS ----Key: >{26923b43-4d38-484f-9b9e-de460746276c}
Path: C:\Windows\System32\ie4uinit.exe
C:\Windows\System32\ie4uinit.exe
176128 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: {89820200-ECBD-11cf-8B85-00AA005B4383}
Path: C:\Windows\System32\ie4uinit.exe
C:\Windows\System32\ie4uinit.exe
176128 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------**************************************************
6:41:14 PM: Scanning ----- SERVICEDLL REGISTRY KEYS ----Key: AppIDSvc
Path: %SystemRoot%\System32\appidsvc.dll
C:\Windows\System32\appidsvc.dll
27648 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: AxInstSV
Path: %SystemRoot%\System32\AxInstSV.dll
C:\Windows\System32\AxInstSV.dll
88064 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: BDESVC

Path: %SystemRoot%\System32\bdesvc.dll
C:\Windows\System32\bdesvc.dll
76800 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: bthserv
Path: %SystemRoot%\system32\bthserv.dll
C:\Windows\system32\bthserv.dll
64512 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: defragsvc
Path: %Systemroot%\System32\defragsvc.dll
C:\Windows\System32\defragsvc.dll
218624 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: Dhcp
Path: %SystemRoot%\system32\dhcpcore.dll
C:\Windows\system32\dhcpcore.dll
253440 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: FontCache
Path: %SystemRoot%\system32\FntCache.dll
C:\Windows\system32\FntCache.dll
797696 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: HomeGroupListener
Path: %SystemRoot%\system32\ListSvc.dll
C:\Windows\system32\ListSvc.dll
194560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: HomeGroupProvider
Path: %SystemRoot%\system32\provsvc.dll
C:\Windows\system32\provsvc.dll
165376 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: p2pimsvc
Path: %SystemRoot%\system32\pnrpsvc.dll
C:\Windows\system32\pnrpsvc.dll
269824 bytes
Created: 7/13/2009

Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: PeerDistSvc
Path: %SystemRoot%\system32\peerdistsvc.dll
C:\Windows\system32\peerdistsvc.dll
1004544 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: PNRPAutoReg
Path: %SystemRoot%\system32\pnrpauto.dll
C:\Windows\system32\pnrpauto.dll
20480 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: PNRPsvc
Path: %SystemRoot%\system32\pnrpsvc.dll
C:\Windows\system32\pnrpsvc.dll
269824 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: Power
Path: %SystemRoot%\system32\umpo.dll
C:\Windows\system32\umpo.dll
119808 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: RpcEptMapper
Path: %SystemRoot%\System32\RpcEpMap.dll
C:\Windows\System32\RpcEpMap.dll
43520 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: SensrSvc
Path: %SystemRoot%\system32\sensrsvc.dll
C:\Windows\system32\sensrsvc.dll
25088 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: sppuinotify
Path: %SystemRoot%\system32\sppuinotify.dll
C:\Windows\system32\sppuinotify.dll
53760 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: SstpSvc

Path: %SystemRoot%\system32\sstpsvc.dll
C:\Windows\system32\sstpsvc.dll
90112 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: Themes
Path: %SystemRoot%\system32\themeservice.dll
C:\Windows\system32\themeservice.dll
37376 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: WbioSrvc
Path: %SystemRoot%\System32\wbiosrvc.dll
C:\Windows\System32\wbiosrvc.dll
151552 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------Key: WwanSvc
Path: %SystemRoot%\System32\wwansvc.dll
C:\Windows\System32\wwansvc.dll
185856 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
-------------------**************************************************
6:41:23 PM: Scanning ----- SERVICES REGISTRY KEYS ----Key:
1394ohci
ImagePath: system32\DRIVERS\1394ohci.sys
C:\Windows\system32\DRIVERS\1394ohci.sys
163328 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
AcpiPmi
ImagePath: \SystemRoot\system32\DRIVERS\acpipmi.sys
C:\Windows\system32\DRIVERS\acpipmi.sys
9728 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
agp440
ImagePath: \SystemRoot\system32\DRIVERS\agp440.sys
C:\Windows\system32\DRIVERS\agp440.sys
53312 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
AmdPPM
ImagePath: \SystemRoot\system32\DRIVERS\amdppm.sys

C:\Windows\system32\DRIVERS\amdppm.sys
52736 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
amdsata
ImagePath: \SystemRoot\system32\DRIVERS\amdsata.sys
C:\Windows\system32\DRIVERS\amdsata.sys
79952 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: Advanced Micro Devices
---------Key:
amdsbs
ImagePath: \SystemRoot\system32\DRIVERS\amdsbs.sys
C:\Windows\system32\DRIVERS\amdsbs.sys
159312 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: AMD Technologies Inc.
---------Key:
amdxata
ImagePath: system32\DRIVERS\amdxata.sys
C:\Windows\system32\DRIVERS\amdxata.sys
23616 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Advanced Micro Devices
---------Key:
AppID
ImagePath: \SystemRoot\system32\drivers\appid.sys
C:\Windows\system32\drivers\appid.sys
50176 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
b06bdrv
ImagePath: \SystemRoot\system32\DRIVERS\bxvbdx.sys
C:\Windows\system32\DRIVERS\bxvbdx.sys
430080 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: Broadcom Corporation
---------Key:
b57nd60x
ImagePath: system32\DRIVERS\b57nd60x.sys
C:\Windows\system32\DRIVERS\b57nd60x.sys
229888 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Broadcom Corporation
---------Key:
blbdrive
ImagePath: system32\DRIVERS\blbdrive.sys
C:\Windows\system32\DRIVERS\blbdrive.sys
35328 bytes
Created: 7/13/2009
Modified: 7/13/2009

Company: Microsoft Corporation

---------Key:
CNG
ImagePath: System32\Drivers\cng.sys
C:\Windows\System32\Drivers\cng.sys
369568 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
CompositeBus
ImagePath: system32\DRIVERS\CompositeBus.sys
C:\Windows\system32\DRIVERS\CompositeBus.sys
31232 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
crcdisk
ImagePath: \SystemRoot\system32\DRIVERS\crcdisk.sys
C:\Windows\system32\DRIVERS\crcdisk.sys
22096 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
CSC
ImagePath: system32\drivers\csc.sys
C:\Windows\system32\drivers\csc.sys
387584 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
discache
ImagePath: System32\drivers\discache.sys
C:\Windows\System32\drivers\discache.sys
32256 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
eamon
ImagePath: system32\DRIVERS\eamon.sys
C:\Windows\system32\DRIVERS\eamon.sys
116008 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
ebdrv
ImagePath: \SystemRoot\system32\DRIVERS\evbdx.sys
C:\Windows\system32\DRIVERS\evbdx.sys
3100160 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: Broadcom Corporation
---------Key:
ehdrv
ImagePath: system32\DRIVERS\ehdrv.sys

C:\Windows\system32\DRIVERS\ehdrv.sys
108792 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
EhttpSrv
ImagePath: "C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe"
C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe
20680 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
ekrn
ImagePath: "C:\Program Files\ESET\ESET Smart Security\ekrn.exe"
C:\Program Files\ESET\ESET Smart Security\ekrn.exe
735960 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
epfw
ImagePath: system32\DRIVERS\epfw.sys
C:\Windows\system32\DRIVERS\epfw.sys
135048 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
Epfwndis
ImagePath: system32\DRIVERS\Epfwndis.sys
C:\Windows\system32\DRIVERS\Epfwndis.sys
33096 bytes
Created: 6/19/2009
Modified: 6/19/2009
Company: ESET
---------Key:
epfwwfp
ImagePath: system32\DRIVERS\epfwwfp.sys
C:\Windows\system32\DRIVERS\epfwwfp.sys
38240 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key:
ErrDev
ImagePath: \SystemRoot\system32\DRIVERS\errdev.sys
C:\Windows\system32\DRIVERS\errdev.sys
7168 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Fax
ImagePath: %systemroot%\system32\fxssvc.exe
C:\Windows\system32\fxssvc.exe
522752 bytes
Created: 7/13/2009
Modified: 7/13/2009

Company: Microsoft Corporation

---------Key:
fdc
ImagePath: \SystemRoot\system32\DRIVERS\fdc.sys
C:\Windows\system32\DRIVERS\fdc.sys
25088 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
flpydisk
ImagePath: \SystemRoot\system32\DRIVERS\flpydisk.sys
C:\Windows\system32\DRIVERS\flpydisk.sys
19968 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
FsDepends
ImagePath: System32\drivers\FsDepends.sys
C:\Windows\System32\drivers\FsDepends.sys
46160 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
fvevol
ImagePath: System32\DRIVERS\fvevol.sys
C:\Windows\System32\DRIVERS\fvevol.sys
194488 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
hcw85cir
ImagePath: \SystemRoot\system32\drivers\hcw85cir.sys
C:\Windows\system32\drivers\hcw85cir.sys
26624 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Hauppauge Computer Works, Inc.
---------Key:
HidBatt
ImagePath: \SystemRoot\system32\DRIVERS\HidBatt.sys
C:\Windows\system32\DRIVERS\HidBatt.sys
21504 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
HidUsb
ImagePath: \SystemRoot\system32\DRIVERS\hidusb.sys
C:\Windows\system32\DRIVERS\hidusb.sys
24064 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
HpSAMD
ImagePath: \SystemRoot\system32\DRIVERS\HpSAMD.sys

C:\Windows\system32\DRIVERS\HpSAMD.sys
67152 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Hewlett-Packard Company
---------Key:
hwpolicy
ImagePath: System32\drivers\hwpolicy.sys
C:\Windows\System32\drivers\hwpolicy.sys
13904 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
igfx
ImagePath: system32\DRIVERS\igdkmd32.sys
C:\Windows\system32\DRIVERS\igdkmd32.sys
4756480 bytes
Created: 6/10/2009
Modified: 6/10/2009
Company: Intel Corporation
---------Key:
iScsiPrt
ImagePath: \SystemRoot\system32\DRIVERS\msiscsi.sys
C:\Windows\system32\DRIVERS\msiscsi.sys
186960 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
kbdhid
ImagePath: \SystemRoot\system32\DRIVERS\kbdhid.sys
C:\Windows\system32\DRIVERS\kbdhid.sys
28160 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
KSecPkg
ImagePath: System32\Drivers\ksecpkg.sys
C:\Windows\System32\Drivers\ksecpkg.sys
133200 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
LSI_FC
ImagePath: \SystemRoot\system32\DRIVERS\lsi_fc.sys
C:\Windows\system32\DRIVERS\lsi_fc.sys
95824 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: LSI Corporation
---------Key:
LSI_SAS
ImagePath: \SystemRoot\system32\DRIVERS\lsi_sas.sys
C:\Windows\system32\DRIVERS\lsi_sas.sys
89168 bytes
Created: 7/13/2009
Modified: 7/13/2009

Company: LSI Corporation

---------Key:
LSI_SAS2
ImagePath: \SystemRoot\system32\DRIVERS\lsi_sas2.sys
C:\Windows\system32\DRIVERS\lsi_sas2.sys
54864 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: LSI Corporation
---------Key:
LSI_SCSI
ImagePath: \SystemRoot\system32\DRIVERS\lsi_scsi.sys
C:\Windows\system32\DRIVERS\lsi_scsi.sys
96848 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: LSI Corporation
---------Key:
megasas
ImagePath: \SystemRoot\system32\DRIVERS\megasas.sys
C:\Windows\system32\DRIVERS\megasas.sys
30800 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: LSI Corporation
---------Key:
MegaSR
ImagePath: \SystemRoot\system32\DRIVERS\MegaSR.sys
C:\Windows\system32\DRIVERS\MegaSR.sys
235584 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: LSI Corporation, Inc.
---------Key:
mouhid
ImagePath: \SystemRoot\system32\DRIVERS\mouhid.sys
C:\Windows\system32\DRIVERS\mouhid.sys
26112 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
mshidkmdf
ImagePath: \SystemRoot\System32\drivers\mshidkmdf.sys
C:\Windows\System32\drivers\mshidkmdf.sys
4096 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
MTConfig
ImagePath: \SystemRoot\system32\DRIVERS\MTConfig.sys
C:\Windows\system32\DRIVERS\MTConfig.sys
12288 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
NdisCap
ImagePath: system32\DRIVERS\ndiscap.sys

C:\Windows\system32\DRIVERS\ndiscap.sys
27136 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
netw5v32
ImagePath: system32\DRIVERS\netw5v32.sys
C:\Windows\system32\DRIVERS\netw5v32.sys
4231168 bytes
Created: 6/10/2009
Modified: 7/13/2009
Company: Intel Corporation
---------Key:
ohci1394
ImagePath: \SystemRoot\system32\DRIVERS\ohci1394.sys
C:\Windows\system32\DRIVERS\ohci1394.sys
62464 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Parport
ImagePath: \SystemRoot\system32\DRIVERS\parport.sys
C:\Windows\system32\DRIVERS\parport.sys
79360 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Parvdm
ImagePath: \SystemRoot\system32\DRIVERS\parvdm.sys
C:\Windows\system32\DRIVERS\parvdm.sys
8704 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
pcw
ImagePath: System32\drivers\pcw.sys
C:\Windows\System32\drivers\pcw.sys
43088 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
ql40xx
ImagePath: \SystemRoot\system32\DRIVERS\ql40xx.sys
C:\Windows\system32\DRIVERS\ql40xx.sys
106064 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: QLogic Corporation
---------Key:
RasAgileVpn
ImagePath: system32\DRIVERS\AgileVpn.sys
C:\Windows\system32\DRIVERS\AgileVpn.sys
49152 bytes
Created: 7/13/2009
Modified: 7/13/2009

Company: Microsoft Corporation

---------Key:
RasSstp
ImagePath: system32\DRIVERS\rassstp.sys
C:\Windows\system32\DRIVERS\rassstp.sys
75264 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
rdpbus
ImagePath: system32\DRIVERS\rdpbus.sys
C:\Windows\system32\DRIVERS\rdpbus.sys
18944 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
RDPREFMP
ImagePath: system32\drivers\rdprefmp.sys
C:\Windows\system32\drivers\rdprefmp.sys
7168 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
rdyboost
ImagePath: System32\drivers\rdyboost.sys
C:\Windows\System32\drivers\rdyboost.sys
173648 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
s3cap
ImagePath: \SystemRoot\system32\DRIVERS\vms3cap.sys
C:\Windows\system32\DRIVERS\vms3cap.sys
5632 bytes
Created: 7/14/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
scfilter
ImagePath: System32\DRIVERS\scfilter.sys
C:\Windows\System32\DRIVERS\scfilter.sys
26624 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Serenum
ImagePath: \SystemRoot\system32\DRIVERS\serenum.sys
C:\Windows\system32\DRIVERS\serenum.sys
17920 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
Serial
ImagePath: \SystemRoot\system32\DRIVERS\serial.sys

C:\Windows\system32\DRIVERS\serial.sys
83456 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
sisagp
ImagePath: \SystemRoot\system32\DRIVERS\sisagp.sys
C:\Windows\system32\DRIVERS\sisagp.sys
52304 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
sppsvc
ImagePath: %SystemRoot%\system32\sppsvc.exe
C:\Windows\system32\sppsvc.exe
3179520 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
SrvHsfHDA
ImagePath: system32\DRIVERS\VSTAZL3.SYS
C:\Windows\system32\DRIVERS\VSTAZL3.SYS
207360 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Conexant Systems, Inc.
---------Key:
SrvHsfV92
ImagePath: system32\DRIVERS\VSTDPV3.SYS
C:\Windows\system32\DRIVERS\VSTDPV3.SYS
980992 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Conexant Systems, Inc.
---------Key:
SrvHsfWinac
ImagePath: system32\DRIVERS\VSTCNXT3.SYS
C:\Windows\system32\DRIVERS\VSTCNXT3.SYS
661504 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Conexant Systems, Inc.
---------Key:
stexstor
ImagePath: \SystemRoot\system32\DRIVERS\stexstor.sys
C:\Windows\system32\DRIVERS\stexstor.sys
21072 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Promise Technology
---------Key:
storflt
ImagePath: system32\DRIVERS\vmstorfl.sys
C:\Windows\system32\DRIVERS\vmstorfl.sys
40896 bytes
Created: 7/14/2009
Modified: 7/13/2009

Company: Microsoft Corporation

---------Key:
storvsc
ImagePath: \SystemRoot\system32\DRIVERS\storvsc.sys
C:\Windows\system32\DRIVERS\storvsc.sys
28224 bytes
Created: 7/14/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
uagp35
ImagePath: \SystemRoot\system32\DRIVERS\uagp35.sys
C:\Windows\system32\DRIVERS\uagp35.sys
55888 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
UmPass
ImagePath: \SystemRoot\system32\DRIVERS\umpass.sys
C:\Windows\system32\DRIVERS\umpass.sys
8192 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
usbccgp
ImagePath: \SystemRoot\system32\DRIVERS\usbccgp.sys
C:\Windows\system32\DRIVERS\usbccgp.sys
75264 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
USBSTOR
ImagePath: \SystemRoot\system32\DRIVERS\USBSTOR.SYS
C:\Windows\system32\DRIVERS\USBSTOR.SYS
74752 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
vdrvroot
ImagePath: system32\DRIVERS\vdrvroot.sys
C:\Windows\system32\DRIVERS\vdrvroot.sys
32832 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
vhdmp
ImagePath: \SystemRoot\system32\DRIVERS\vhdmp.sys
C:\Windows\system32\DRIVERS\vhdmp.sys
159824 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
viaide
ImagePath: \SystemRoot\system32\DRIVERS\viaide.sys

C:\Windows\system32\DRIVERS\viaide.sys
16976 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: VIA Technologies, Inc.
---------Key:
vmbus
ImagePath: \SystemRoot\system32\DRIVERS\vmbus.sys
C:\Windows\system32\DRIVERS\vmbus.sys
175824 bytes
Created: 7/14/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
VMBusHID
ImagePath: \SystemRoot\system32\DRIVERS\VMBusHID.sys
C:\Windows\system32\DRIVERS\VMBusHID.sys
17920 bytes
Created: 7/14/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
vwifibus
ImagePath: \SystemRoot\System32\drivers\vwifibus.sys
C:\Windows\System32\drivers\vwifibus.sys
19968 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
wbengine
ImagePath: "%systemroot%\system32\wbengine.exe"
C:\Windows\system32\wbengine.exe
1202688 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
WfpLwf
ImagePath: system32\DRIVERS\wfplwf.sys
C:\Windows\system32\DRIVERS\wfplwf.sys
9728 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key:
WIMMount
ImagePath: system32\drivers\wimmount.sys
C:\Windows\system32\drivers\wimmount.sys
19008 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------**************************************************
6:41:42 PM: Scanning -----VXD ENTRIES----**************************************************
6:41:42 PM: Scanning ----- WINLOGON\NOTIFY DLLS -----

No WINLOGON\NOTIFY DLLs found to scan

**************************************************
6:41:42 PM: Scanning ----- CONTEXTMENUHANDLERS ----Key: BriefcaseMenu
CLSID: {85BBD920-42A0-1069-A2E4-08002B30309D}
Path: %SystemRoot%\system32\syncui.dll
C:\Windows\system32\syncui.dll
158720 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: ESET Smart Security - Context Menu Shell Extension
CLSID: {B089FE88-FB52-11D3-BDF1-0050DA34150D}
Path: C:\Program Files\ESET\ESET Smart Security\shellExt.dll
C:\Program Files\ESET\ESET Smart Security\shellExt.dll
183880 bytes
Created: 9/11/2009
Modified: 9/11/2009
Company: ESET
---------Key: Open With
CLSID: {09799AFB-AD67-11d1-ABCD-00C04FC30936}
Path: %SystemRoot%\system32\shell32.dll
C:\Windows\system32\shell32.dll
12866560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: Open With EncryptionMenu
CLSID: {A470F8CF-A1E8-4f65-8335-227475AA5C46}
Path: %SystemRoot%\system32\shell32.dll
C:\Windows\system32\shell32.dll
12866560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: Sharing
CLSID: {f81e9010-6ea4-11ce-a7ff-00aa003ca9f6}
Path: %SystemRoot%\system32\ntshrui.dll
C:\Windows\system32\ntshrui.dll
442880 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: Trojan Remover
CLSID: {52B87208-9CCF-42C9-B88E-069281105805}
Path: C:\PROGRA~1\TROJAN~1\Trshlex.dll
C:\PROGRA~1\TROJAN~1\Trshlex.dll
467552 bytes
Created: 8/25/2012
Modified: 2/5/2007
Company: Simply Super Software
---------Key: WinRAR
CLSID: {B41DB860-8EE4-11D2-9906-E49FADC173CA}

Path: C:\Program Files\WinRAR\rarext.dll

C:\Program Files\WinRAR\rarext.dll
129024 bytes
Created: 8/25/2012
Modified: 9/21/2007
Company:
---------Key: {90AA3A4E-1CBA-4233-B8BB-535773D48449}
Path: %SystemRoot%\system32\shell32.dll
C:\Windows\system32\shell32.dll
12866560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------Key: {a2a9545d-a0c2-42b4-9708-a0b2badd77c8}
Path: %SystemRoot%\system32\shell32.dll
C:\Windows\system32\shell32.dll
12866560 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company: Microsoft Corporation
---------**************************************************
6:41:43 PM: Scanning ----- FOLDER\COLUMNHANDLERS ----No Folder\ColumnHandler entries found to scan
**************************************************
6:41:43 PM: Scanning ----- BROWSER HELPER OBJECTS ----Key: {DBC80044-A445-435b-BC74-9C25C1C588A9}
BHO: C:\Program Files\Java\jre6\bin\jp2ssv.dll
C:\Program Files\Java\jre6\bin\jp2ssv.dll
41760 bytes
Created: 8/25/2012
Modified: 8/25/2012
Company: Sun Microsystems, Inc.
---------**************************************************
6:41:43 PM: Scanning ----- SHELLSERVICEOBJECTS ----**************************************************
6:41:43 PM: Scanning ----- SHAREDTASKSCHEDULER ENTRIES ----No SharedTaskScheduler entries found to scan
**************************************************
6:41:43 PM: Scanning ----- IMAGEFILE DEBUGGERS ----No "Debugger" entries found.
**************************************************
6:41:43 PM: Scanning ----- APPINIT_DLLS ----The AppInit_DLLs value is blank
**************************************************
6:41:43 PM: Scanning ----- SECURITY PROVIDER DLLS ----DLL: credssp.dll
C:\Windows\system32\credssp.dll
16896 bytes
Created: 7/13/2009

Modified: 7/13/2009
Company: Microsoft Corporation
---------**************************************************
6:41:43 PM: Scanning ------ COMMON STARTUP GROUP -----[C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup]
The Common Startup Group attempts to load the following file(s) at boot time:
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
-HS- 174 bytes
Created: 7/13/2009
Modified: 7/13/2009
Company:
-------------------**************************************************
6:41:43 PM: Scanning ----- USER STARTUP GROUPS ----Checking Startup Group for: Usuario
[C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup]
C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\d
esktop.ini
-HS- 174 bytes
Created: 8/25/2012
Modified: 8/25/2012
Company:
----------------------------**************************************************
6:41:44 PM: Scanning ----- SCHEDULED TASKS ----No Scheduled Tasks found to scan
**************************************************
6:41:44 PM: ----- ADDITIONAL CHECKS ----Heuristic checks for hidden files/drivers completed
---------Layered Service Provider entries checks completed
--------Windows Explorer Policies checks completed
---------Desktop Wallpaper: C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Themes\Tra
nscodedWallpaper.jpg
C:\Users\Usuario\AppData\Roaming\Microsoft\Windows\Themes\TranscodedWallpaper.jp
g
642987 bytes
Created: 8/25/2012
Modified: 8/25/2012
Company:
---------Additional file checks completed
--------**************************************************
6:41:44 PM: Scanning ----- RUNNING PROCESSES ----[Only loaded modules not scanned already
during this scan will be scanned here]
C:\Windows\System32\smss.exe
[1 loaded module]
--------------------

C:\Windows\system32\csrss.exe
[15 loaded modules in total]
-------------------C:\Windows\system32\csrss.exe
[17 loaded modules in total]
-------------------C:\Windows\system32\wininit.exe
[25 loaded modules in total]
-------------------C:\Windows\system32\winlogon.exe
[30 loaded modules in total]
-------------------C:\Windows\system32\services.exe
[32 loaded modules in total]
-------------------C:\Windows\system32\lsass.exe
[64 loaded modules in total]
-------------------C:\Windows\system32\lsm.exe
[15 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[51 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[33 loaded modules in total]
-------------------C:\Windows\System32\svchost.exe
[85 loaded modules in total]
-------------------C:\Windows\System32\svchost.exe
[111 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[156 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[80 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[74 loaded modules in total]
-------------------C:\Windows\System32\spoolsv.exe
C:\Windows\system32\spool\PRTPROCS\W32X86\winprint.dll appears to contain: TROJA
N.SPY.GOLDUN
C:\Windows\system32\spool\PRTPROCS\W32X86\winprint.dll - file renamed to: C:\Win
dows\system32\spool\PRTPROCS\W32X86\winprint.dll.vir
[79 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[60 loaded modules in total]
-------------------C:\Windows\system32\Dwm.exe
[30 loaded modules in total]
-------------------C:\Windows\system32\svchost.exe
[66 loaded modules in total]
-------------------C:\Windows\system32\taskhost.exe
[51 loaded modules in total]

-------------------C:\Windows\Explorer.EXE
[161 loaded modules in total]
-------------------C:\Program Files\Java\jre6\bin\jusched.exe
[36 loaded modules in total]
-------------------C:\Windows\system32\SearchIndexer.exe
[65 loaded modules in total]
-------------------C:\Program Files\Windows Media Player\wmpnetwk.exe
[108 loaded modules in total]
-------------------C:\Windows\System32\svchost.exe
[58 loaded modules in total]
-------------------C:\Windows\System32\svchost.exe
[54 loaded modules in total]
-------------------C:\Program Files\Java\jre6\bin\jucheck.exe
[59 loaded modules in total]
-------------------C:\Windows\system32\DllHost.exe
[59 loaded modules in total]
-------------------C:\Program Files\WinRAR\WinRAR.exe
[83 loaded modules in total]
-------------------C:\Program Files\ESET\ESET Smart Security\ekrn.exe
[86 loaded modules in total]
-------------------C:\Program Files\ESET\ESET Smart Security\egui.exe
[59 loaded modules in total]
-------------------E:\Software\trojan remover\trsetup.exe
[21 loaded modules in total]
-------------------C:\Users\Usuario\AppData\Local\Temp\is-5G71A.tmp\trsetup.tmp
[45 loaded modules in total]
-------------------C:\Program Files\Trojan Remover\trupd.exe
[63 loaded modules in total]
-------------------C:\Program Files\Trojan Remover\Rmvtrjan.exe
FileSize:
2515520
[This is a Trojan Remover component]
[38 loaded modules in total]
-------------------**************************************************
6:46:02 PM: Checking HOSTS file
No malicious entries were found in the HOSTS file
**************************************************
6:46:02 PM: ------ Scan for other files to remove -----No malware-related files found to remove
**************************************************
------ INTERNET EXPLORER HOME/START/SEARCH SETTINGS -----HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Start Page":

http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Local Page":
C:\Windows\System32\blank.htm
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Search Page":
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Default_Page_URL":
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Main\"Default_Search_URL
":
http://go.microsoft.com/fwlink/?LinkId=54896
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Start Page":
http://go.microsoft.com/fwlink/?LinkId=69157
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Local Page":
C:\Windows\system32\blank.htm
HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Main\"Search Page":
http://go.microsoft.com/fwlink/?LinkId=54896
**************************************************
=== ONE OR MORE FILES WERE RENAMED OR REMOVED ===
Scan completed at: 8/25/2012 6:46:02 PM
************************************************************

Key Office 2010
No ratings yet
Key Office 2010
8 pages
AdwCleaner (S00)
No ratings yet
AdwCleaner (S00)
2 pages
AdwCleaner (S00)
No ratings yet
AdwCleaner (S00)
2 pages
AdwCleaner (S03)
No ratings yet
AdwCleaner (S03)
3 pages
Ai OLog
No ratings yet
Ai OLog
2 pages
Untitled
No ratings yet
Untitled
3 pages
AdwCleaner[C00]
No ratings yet
AdwCleaner[C00]
3 pages
AdwCleaner (C00)
No ratings yet
AdwCleaner (C00)
3 pages
AdwCleaner (S02)
No ratings yet
AdwCleaner (S02)
2 pages
AdwCleaner[C00]
No ratings yet
AdwCleaner[C00]
3 pages
Zadia
No ratings yet
Zadia
55 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
ZHPDiag
No ratings yet
ZHPDiag
48 pages
ZHP Diag
No ratings yet
ZHP Diag
25 pages
RCD Log
No ratings yet
RCD Log
5 pages
Combo Fix
No ratings yet
Combo Fix
9 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
Disk Defrag Report
No ratings yet
Disk Defrag Report
35 pages
Bootkit Remover Debug Log
No ratings yet
Bootkit Remover Debug Log
24 pages
Belarc Advisor Wulan (140409)
No ratings yet
Belarc Advisor Wulan (140409)
4 pages
Combo Fix
No ratings yet
Combo Fix
751 pages
ZHP Diag
No ratings yet
ZHP Diag
41 pages
Untitled
No ratings yet
Untitled
3 pages
UsbFix-Report-22
No ratings yet
UsbFix-Report-22
3 pages
Combo Fix
No ratings yet
Combo Fix
8 pages
Prev
No ratings yet
Prev
1,047 pages
wow
No ratings yet
wow
29 pages
AdwCleaner (C0)
No ratings yet
AdwCleaner (C0)
5 pages
UsbFix Report
No ratings yet
UsbFix Report
4 pages
Combo Fix
No ratings yet
Combo Fix
11 pages
Fail Old
No ratings yet
Fail Old
18,320 pages
UsbFix Report
No ratings yet
UsbFix Report
4 pages
UsbFix Report
No ratings yet
UsbFix Report
4 pages
Cltest
No ratings yet
Cltest
5 pages
Combo Fix
No ratings yet
Combo Fix
4 pages
2020-09-12 14.28.57 Crash
No ratings yet
2020-09-12 14.28.57 Crash
22 pages
UsbFix Report
No ratings yet
UsbFix Report
2 pages
Installation and Configuratio
No ratings yet
Installation and Configuratio
16 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
Combo Fix
No ratings yet
Combo Fix
5 pages
BURLESQUEcaja 2
No ratings yet
BURLESQUEcaja 2
8 pages
FRST
No ratings yet
FRST
5 pages
Rkill
No ratings yet
Rkill
1 page
Tabprotosrv
No ratings yet
Tabprotosrv
105 pages
AdwCleaner (S0)
No ratings yet
AdwCleaner (S0)
2 pages
AdwCleaner (C00)
No ratings yet
AdwCleaner (C00)
2 pages
CPP4963838700937859 Rbouh Med
No ratings yet
CPP4963838700937859 Rbouh Med
3 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
UsbFix Report
No ratings yet
UsbFix Report
2 pages
Combo Fix
No ratings yet
Combo Fix
12 pages
2020-08-28 21.37.00 Crash
No ratings yet
2020-08-28 21.37.00 Crash
21 pages
WoW Crit Error
No ratings yet
WoW Crit Error
24 pages
test (2)
No ratings yet
test (2)
53 pages
UsbFix Report
No ratings yet
UsbFix Report
3 pages
TRLOG
No ratings yet
TRLOG
1 page
2023-12-24 22.54.55 Crash
No ratings yet
2023-12-24 22.54.55 Crash
14 pages
CPP 4963835035473137
No ratings yet
CPP 4963835035473137
3 pages
Combo Fix
No ratings yet
Combo Fix
11 pages
UsbFix Report
No ratings yet
UsbFix Report
12 pages
SIGVERIF
No ratings yet
SIGVERIF
57 pages
Evaluation of Some Android Emulators and Installation of Android OS on Virtualbox and VMware
From Everand
Evaluation of Some Android Emulators and Installation of Android OS on Virtualbox and VMware
Dr. Hidaia Mahmood Alassouli
No ratings yet
Citrix IMA vs. FMA PDF
No ratings yet
Citrix IMA vs. FMA PDF
4 pages
What Is JBoss Application Server
No ratings yet
What Is JBoss Application Server
6 pages
Core - Java by Venu Kumaar
100% (1)
Core - Java by Venu Kumaar
287 pages
Portable Autocad 2008 Installation Instruction
100% (1)
Portable Autocad 2008 Installation Instruction
2 pages
MDI Form: VB Program For Creating MDI Application
No ratings yet
MDI Form: VB Program For Creating MDI Application
2 pages
How To Install Windows-10
No ratings yet
How To Install Windows-10
7 pages
TRCZ
No ratings yet
TRCZ
4 pages
Learning Edition Via Blue Prism Digital Exchange (DX) Install Blue Prism Install Blue Prism License
No ratings yet
Learning Edition Via Blue Prism Digital Exchange (DX) Install Blue Prism Install Blue Prism License
2 pages
Changes
No ratings yet
Changes
4 pages
Understanding Devops
No ratings yet
Understanding Devops
2 pages
Lab 1 Terraform
No ratings yet
Lab 1 Terraform
7 pages
SSC CGL Tier II - 23
No ratings yet
SSC CGL Tier II - 23
40 pages
Saturday, 16 June 2012: IDM Full Version Without Crack and Patch. Genuine Working 100%
No ratings yet
Saturday, 16 June 2012: IDM Full Version Without Crack and Patch. Genuine Working 100%
3 pages
Output Log
No ratings yet
Output Log
716 pages
TDSSKiller.3.1.0.28 29.09.2022 01.17.22 Log
No ratings yet
TDSSKiller.3.1.0.28 29.09.2022 01.17.22 Log
22 pages
Arabic 101 Labels Guide
No ratings yet
Arabic 101 Labels Guide
7 pages
OTDR Traces Anlysis Software Manual
No ratings yet
OTDR Traces Anlysis Software Manual
3 pages
Disable OneDrive Everywhere in Windows and Apps Completely
No ratings yet
Disable OneDrive Everywhere in Windows and Apps Completely
6 pages
DIFFRAC - EVA Release Notes
No ratings yet
DIFFRAC - EVA Release Notes
2 pages
CIG Tutorial Virtual Machine Student Guide
No ratings yet
CIG Tutorial Virtual Machine Student Guide
3 pages
Ultrasound 21
No ratings yet
Ultrasound 21
4 pages
Server 2008
No ratings yet
Server 2008
2 pages
Client
No ratings yet
Client
1,736 pages
ColorPRINT Read Me
No ratings yet
ColorPRINT Read Me
7 pages
nativeUpdaterLog
No ratings yet
nativeUpdaterLog
13 pages
AN - Install DREAM USB-DBG-IF On Win7 (64-Bit) & Win8
No ratings yet
AN - Install DREAM USB-DBG-IF On Win7 (64-Bit) & Win8
4 pages
Mod Menu Log - Com - Storytaco.p29client
No ratings yet
Mod Menu Log - Com - Storytaco.p29client
41 pages
Screenshot 2024-01-22 at 5.48.52 PM
No ratings yet
Screenshot 2024-01-22 at 5.48.52 PM
1 page
kernel
No ratings yet
kernel
2 pages