API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jun 25th, 2017
90
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 23.59 KB | None | 0 0
raw download clone embed print report
  1. RkU Version: 3.8.388.590, Type LE (SR2)
  2. ==============================================
  3. OS Name: Windows XP
  4. Version 5.1.2600 (Service Pack 3)
  5. Number of processors #2
  6. ==============================================
  7. >SSDT State
  8. ==============================================
  9. ntkrnlpa.exe-->NtTerminateProcess, Type: Address change 0x805D29AC-->F3D3A620 [C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS]
  10. ==============================================
  11. >Shadow
  12. ==============================================
  13. ==============================================
  14. >Processes
  15. ==============================================
  16. 0x871C47C0 [4] System
  17. 0x86FE4C10 [200] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  18. 0x860BE4A0 [236] C:\Program Files\iPod\bin\iPodService.exe (Apple Inc., iPodService Module (32-bit))
  19. 0x860AF798 [644] C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe (Hewlett-Packard Co., HP CUE Status Root)
  20. 0x864A0560 [748] C:\WINDOWS\explorer.exe (Microsoft Corporation, Windows Explorer)
  21. 0x864EE020 [764] C:\WINDOWS\system32\smss.exe (Microsoft Corporation, Windows NT Session Manager)
  22. 0x864A36E8 [820] C:\WINDOWS\system32\csrss.exe (Microsoft Corporation, Client Server Runtime Process)
  23. 0x864D9020 [844] C:\WINDOWS\system32\winlogon.exe (Microsoft Corporation, Windows NT Logon Application)
  24. 0x8648E458 [888] C:\WINDOWS\system32\services.exe (Microsoft Corporation, Services and Controller app)
  25. 0x8652E568 [900] C:\WINDOWS\system32\lsass.exe (Microsoft Corporation, LSA Shell (Export Version))
  26. 0x866CE7D0 [1080] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  27. 0x8646A660 [1148] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  28. 0x86E3EDA0 [1184] C:\WINDOWS\system32\nvsvc32.exe (NVIDIA Corporation, NVIDIA Driver Helper Service, Version 81.98)
  29. 0x8609F020 [1200] C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe (Hewlett-Packard Co., HP CUE Alert Popup Window Objects)
  30. 0x86E3E460 [1216] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  31. 0x86E74CD0 [1244] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  32. 0x86493020 [1284] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  33. 0x870959A0 [1292] C:\Program Files\Retrospect\Retrospect 7.5\retrorun.exe (EMC Corporation, Retrospect)
  34. 0x87020DA0 [1336] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  35. 0x860B0770 [1360] C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe (Hewlett-Packard, GPCore COM object)
  36. 0x864C1D68 [1480] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  37. 0x864C4C10 [1604] C:\WINDOWS\system32\spoolsv.exe (Microsoft Corporation, Spooler SubSystem App)
  38. 0x8626B8B0 [1708] C:\WINDOWS\system32\MsPMSPSv.exe (Microsoft Corporation, WMDM PMSP Service)
  39. 0x86FE0DA0 [1780] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  40. 0x86468220 [1812] C:\Program Files\Adobe\Photoshop Elements 6.0\PhotoshopElementsFileAgent.exe
  41. 0x86E46950 [1844] C:\Program Files\Common Files\Apple\Mobile Device Support\bin\AppleMobileDeviceService.exe (Apple Inc., Apple Mobile Device Service)
  42. 0x86E46DA0 [1860] C:\Program Files\Bonjour\mDNSResponder.exe (Apple Inc., Bonjour Service)
  43. 0x864A5228 [1948] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  44. 0x86FE3228 [2028] C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE (Microsoft Corporation, Machine Debug Manager)
  45. 0x8624C648 [2096] C:\WINDOWS\system32\wuauclt.exe (Microsoft Corporation, Windows Update)
  46. 0x862731B0 [2496] C:\WINDOWS\system32\alg.exe (Microsoft Corporation, Application Layer Gateway Service)
  47. 0x8622C020 [2700] C:\WINDOWS\system32\wbem\wmiprvse.exe (Microsoft Corporation, WMI)
  48. 0x86226020 [2768] C:\WINDOWS\system32\wscntfy.exe (Microsoft Corporation, Windows Security Center Notification App)
  49. 0x8621FDA0 [2780] C:\WINDOWS\system32\ctfmon.exe (Microsoft Corporation, CTF Loader)
  50. 0x86441820 [2916] C:\WINDOWS\system32\WDBtnMgr.exe (Western Digital Technologies, Inc., WD Button Manager)
  51. 0x860AA020 [2976] C:\Documents and Settings\Marilyn\Desktop\RKunhooker\RKUnhookerLE.EXE (UG North, RKULE, SR2 Normandy)
  52. 0x861D7DA0 [3024] C:\Program Files\Adobe\Photoshop Elements 6.0\apdproxy.exe (Adobe Systems Incorporated, Adobe Photo Downloader 4.0 component)
  53. 0x8628C020 [3136] C:\Program Files\Roxio\Easy CD Creator 6\DragToDisc\DrgToDsc.exe (Roxio, Drag To Disc Application)
  54. 0x8628CDA0 [3192] C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\RxMon.exe (Roxio, Inc., Roxio AudioCentral Media Manager Tray App)
  55. 0x86209A00 [3204] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  56. 0x861D6020 [3288] C:\Program Files\iTunes\iTunesHelper.exe (Apple Inc., iTunesHelper Module)
  57. 0x86204020 [3336] C:\Program Files\HP\HP Software Update\hpwuschd2.exe (Hewlett-Packard, hpwuSchd Application)
  58. 0x861D5638 [3348] C:\WINDOWS\system32\svchost.exe (Microsoft Corporation, Generic Host Process for Win32 Services)
  59. 0x8628EB48 [3368] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc., GoogleToolbarNotifier)
  60. 0x86256020 [3612] C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co., HP Digital Imaging Monitor)
  61. 0x86130DA0 [3644] C:\Program Files\Roxio\Easy CD Creator 6\AudioCentral\Playlist.exe (Roxio, Inc., Roxio AudioCentral Media Manager Playlist)
  62. ==============================================
  63. >Drivers
  64. ==============================================
  65. 0xBF9D6000 C:\WINDOWS\System32\nv4_disp.dll 3956736 bytes (NVIDIA Corporation, NVIDIA Compatible Windows 2000 Display driver, Version 81.98 )
  66. 0xF65B3000 C:\WINDOWS\system32\DRIVERS\nv4_mini.sys 3538944 bytes (NVIDIA Corporation, NVIDIA Compatible Windows 2000 Miniport Driver, Version 81.98 )
  67. 0x804D7000 C:\WINDOWS\system32\ntkrnlpa.exe 2150400 bytes (Microsoft Corporation, NT Kernel & System)
  68. 0x804D7000 PnpManager 2150400 bytes
  69. 0x804D7000 RAW 2150400 bytes
  70. 0x804D7000 WMIxWDM 2150400 bytes
  71. 0xBF800000 Win32k 1851392 bytes
  72. 0xBF800000 C:\WINDOWS\System32\win32k.sys 1851392 bytes (Microsoft Corporation, Multi-User Win32 Driver)
  73. 0xF40DF000 C:\WINDOWS\system32\drivers\ha10kx2k.sys 905216 bytes (Creative Technology Ltd, Creative EMU10KX HAL (WDM))
  74. 0xF73D6000 iaStor.sys 749568 bytes (Intel Corporation, Intel Matrix Storage Manager driver)
  75. 0xF3FFF000 C:\WINDOWS\system32\drivers\ctac32k.sys 647168 bytes (Creative Technology Ltd, Creative AC3 SW Decoder Device Driver (WDM))
  76. 0xF72A7000 Ntfs.sys 577536 bytes (Microsoft Corporation, NT File System Driver)
  77. 0xF3C95000 C:\WINDOWS\system32\DRIVERS\mrxsmb.sys 458752 bytes (Microsoft Corporation, Windows NT SMB Minirdr)
  78. 0xF63BA000 C:\WINDOWS\system32\DRIVERS\update.sys 385024 bytes (Microsoft Corporation, Update Driver)
  79. 0xF6500000 C:\WINDOWS\system32\drivers\ctaud2k.sys 368640 bytes (Creative Technology Ltd, Creative WDM Audio Device Driver)
  80. 0xF3DEA000 C:\WINDOWS\system32\DRIVERS\tcpip.sys 364544 bytes (Microsoft Corporation, TCP/IP Protocol Driver)
  81. 0xB9810000 C:\WINDOWS\system32\DRIVERS\srv.sys 356352 bytes (Microsoft Corporation, Server driver)
  82. 0xBFFA0000 C:\WINDOWS\System32\ATMFD.DLL 286720 bytes (Adobe Systems Incorporated, Windows NT OpenType/Type 1 Font Driver)
  83. 0xB8F98000 C:\WINDOWS\System32\Drivers\HTTP.sys 266240 bytes (Microsoft Corporation, HTTP Protocol Stack)
  84. 0xF3F0D000 C:\WINDOWS\System32\Drivers\cdudf_xp.SYS 262144 bytes (Roxio, CD-UDF NT Filesystem Driver)
  85. 0xF3E68000 C:\WINDOWS\System32\Drivers\UdfReadr_xp.SYS 217088 bytes (Roxio, CD-UDF NT Filesystem Reader Driver)
  86. 0xF6418000 C:\WINDOWS\system32\DRIVERS\rdpdr.sys 196608 bytes (Microsoft Corporation, Microsoft RDP Device redirector)
  87. 0xF74E3000 ACPI.sys 188416 bytes (Microsoft Corporation, ACPI Driver for NT)
  88. 0xB997F000 C:\WINDOWS\system32\DRIVERS\mrxdav.sys 184320 bytes (Microsoft Corporation, Windows NT WebDav Minirdr)
  89. 0xF727A000 NDIS.sys 184320 bytes (Microsoft Corporation, NDIS 5.1 wrapper driver)
  90. 0xF648D000 C:\WINDOWS\system32\drivers\ctoss2k.sys 180224 bytes (Creative Technology Ltd., Creative OS Services Driver (WDM))
  91. 0xB78D7000 C:\WINDOWS\system32\drivers\kmixer.sys 176128 bytes (Microsoft Corporation, Kernel Mode Audio Mixer)
  92. 0xF3D05000 C:\WINDOWS\system32\DRIVERS\rdbss.sys 176128 bytes (Microsoft Corporation, Redirected Drive Buffering SubSystem Driver)
  93. 0xF3D74000 C:\WINDOWS\system32\DRIVERS\netbt.sys 163840 bytes (Microsoft Corporation, MBT Transport driver)
  94. 0xF748D000 dmio.sys 155648 bytes (Microsoft Corp., Veritas Software, NT Disk Manager I/O Driver)
  95. 0xF3D9C000 C:\WINDOWS\system32\DRIVERS\ipnat.sys 155648 bytes (Microsoft Corporation, IP Network Address Translator)
  96. 0xF3ED7000 C:\WINDOWS\System32\Drivers\DVDVRRdr_xp.SYS 147456 bytes (Roxio, DVDVR XP Filesystem Reader Driver)
  97. 0xB91E1000 C:\WINDOWS\System32\Drivers\Fastfat.SYS 147456 bytes (Microsoft Corporation, Fast FAT File System Driver)
  98. 0xF64DC000 C:\WINDOWS\system32\drivers\portcls.sys 147456 bytes (Microsoft Corporation, Port Class (Class Driver for Port/Miniport Devices))
  99. 0xF655A000 C:\WINDOWS\system32\DRIVERS\USBPORT.SYS 147456 bytes (Microsoft Corporation, USB 1.1 & 2.0 Port Driver)
  100. 0xF64B9000 C:\WINDOWS\system32\drivers\ks.sys 143360 bytes (Microsoft Corporation, Kernel CSA Library)
  101. 0xF3D52000 C:\WINDOWS\System32\drivers\afd.sys 139264 bytes (Microsoft Corporation, Ancillary Function Driver for WinSock)
  102. 0xF40BD000 C:\WINDOWS\system32\drivers\emupia2k.sys 139264 bytes (Creative Technology Ltd, E-mu Plug-in Architecture Driver (WDM))
  103. 0xF3D30000 C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS 139264 bytes (SUPERAdBlocker.com and SUPERAntiSpyware.com, SASKUTIL.SYS)
  104. 0xF657E000 C:\WINDOWS\system32\DRIVERS\b57xp32.sys 135168 bytes (Broadcom Corporation, Broadcom NetXtreme Gigabit Ethernet NDIS5.1 Driver.)
  105. 0x806E4000 ACPI_HAL 134400 bytes
  106. 0x806E4000 C:\WINDOWS\system32\hal.dll 134400 bytes (Microsoft Corporation, Hardware Abstraction Layer DLL)
  107. 0xF409D000 C:\WINDOWS\system32\drivers\ctsfm2k.sys 131072 bytes (Creative Technology Ltd, SoundFont(R) Manager (WDM))
  108. 0xF7386000 fltmgr.sys 131072 bytes (Microsoft Corporation, Microsoft Filesystem Filter Manager)
  109. 0xF74B3000 ftdisk.sys 126976 bytes (Microsoft Corporation, FT Disk Driver)
  110. 0xF6470000 C:\WINDOWS\System32\Drivers\pwd_2k.SYS 118784 bytes (Roxio, Win2000 Framework for Packet Write Driver)
  111. 0xF7260000 Mup.sys 106496 bytes (Microsoft Corporation, Multiple UNC Provider driver)
  112. 0xF73BE000 atapi.sys 98304 bytes (Microsoft Corporation, IDE/ATAPI Port Driver)
  113. 0xBAC92000 C:\WINDOWS\System32\DLA\DLAUDFAM.SYS 98304 bytes (Sonic Solutions, Drive Letter Access Component)
  114. 0xF3C7D000 C:\WINDOWS\System32\Drivers\dump_atapi.sys 98304 bytes
  115. 0xF73A6000 C:\WINDOWS\System32\Drivers\SCSIPORT.SYS 98304 bytes (Microsoft Corporation, SCSI Port Driver)
  116. 0xF7347000 KSecDD.sys 94208 bytes (Microsoft Corporation, Kernel Security Support Provider Interface)
  117. 0xF6459000 C:\WINDOWS\system32\DRIVERS\ndiswan.sys 94208 bytes (Microsoft Corporation, MS PPP Framing Driver (Strong Encryption))
  118. 0xBACD2000 C:\WINDOWS\System32\DLA\DLAIFS_M.SYS 90112 bytes (Sonic Solutions, Drive Letter Access Component)
  119. 0xBAC7C000 C:\WINDOWS\System32\DLA\DLAUDF_M.SYS 90112 bytes (Sonic Solutions, Drive Letter Access Component)
  120. 0xF735E000 DRVMCDB.SYS 90112 bytes (Sonic Solutions, Device Driver)
  121. 0xB96E3000 C:\WINDOWS\system32\drivers\wdmaud.sys 86016 bytes (Microsoft Corporation, MMSYSTEM Wave/Midi API mapper)
  122. 0xF3FEB000 C:\WINDOWS\system32\DRIVERS\parport.sys 81920 bytes (Microsoft Corporation, Parallel Port Driver)
  123. 0xF659F000 C:\WINDOWS\system32\DRIVERS\VIDEOPRT.SYS 81920 bytes (Microsoft Corporation, Video Port Driver)
  124. 0xF3E43000 C:\WINDOWS\system32\DRIVERS\ipsec.sys 77824 bytes (Microsoft Corporation, IPSec Driver)
  125. 0xF7334000 WudfPf.sys 77824 bytes (Microsoft Corporation, Windows Driver Foundation - User-mode Driver Framework Platform Driver)
  126. 0xBF9C4000 C:\WINDOWS\System32\drivers\dxg.sys 73728 bytes (Microsoft Corporation, DirectX Graphics Driver)
  127. 0xF7374000 sr.sys 73728 bytes (Microsoft Corporation, System Restore Filesystem Filter Driver)
  128. 0xF74D2000 pci.sys 69632 bytes (Microsoft Corporation, NT Plug and Play PCI Enumerator)
  129. 0xF6448000 C:\WINDOWS\system32\DRIVERS\psched.sys 69632 bytes (Microsoft Corporation, MS QoS Packet Scheduler)
  130. 0xF76C2000 C:\WINDOWS\system32\DRIVERS\cdrom.sys 65536 bytes (Microsoft Corporation, SCSI CD-ROM Driver)
  131. 0xF7882000 C:\WINDOWS\system32\DRIVERS\mf.sys 65536 bytes (Microsoft Corporation, Multifunction Enumerator)
  132. 0xF76A2000 C:\WINDOWS\system32\DRIVERS\nic1394.sys 65536 bytes (Microsoft Corporation, IEEE1394 Ndis Miniport and Call Manager)
  133. 0xF7622000 ohci1394.sys 65536 bytes (Microsoft Corporation, 1394 OpenHCI Port Driver)
  134. 0xF7782000 C:\WINDOWS\system32\DRIVERS\arp1394.sys 61440 bytes (Microsoft Corporation, IP/1394 Arp Client)
  135. 0xF7872000 C:\WINDOWS\system32\drivers\drmk.sys 61440 bytes (Microsoft Corporation, Microsoft Kernel DRM Descrambler Filter)
  136. 0xB98B7000 C:\WINDOWS\system32\drivers\sysaudio.sys 61440 bytes (Microsoft Corporation, System Audio WDM Filter)
  137. 0xF7742000 C:\WINDOWS\system32\DRIVERS\usbhub.sys 61440 bytes (Microsoft Corporation, Default Hub Driver for USB)
  138. 0xF7632000 C:\WINDOWS\system32\DRIVERS\1394BUS.SYS 57344 bytes (Microsoft Corporation, 1394 Bus Device Driver)
  139. 0xF7672000 C:\WINDOWS\system32\DRIVERS\CLASSPNP.SYS 53248 bytes (Microsoft Corporation, SCSI Class System Dll)
  140. 0xF76B2000 C:\WINDOWS\system32\DRIVERS\i8042prt.sys 53248 bytes (Microsoft Corporation, i8042 Port Driver)
  141. 0xF76D2000 C:\WINDOWS\system32\DRIVERS\rasl2tp.sys 53248 bytes (Microsoft Corporation, RAS L2TP mini-port/call-manager driver)
  142. 0xF7652000 VolSnap.sys 53248 bytes (Microsoft Corporation, Volume Shadow Copy Driver)
  143. 0xF76F2000 C:\WINDOWS\system32\DRIVERS\raspptp.sys 49152 bytes (Microsoft Corporation, Peer-to-Peer Tunneling Protocol)
  144. 0xF77B2000 C:\WINDOWS\System32\Drivers\Fips.SYS 45056 bytes (Microsoft Corporation, FIPS Crypto Driver)
  145. 0xF7642000 MountMgr.sys 45056 bytes (Microsoft Corporation, Mount Manager)
  146. 0xF76E2000 C:\WINDOWS\system32\DRIVERS\raspppoe.sys 45056 bytes (Microsoft Corporation, RAS PPPoE mini-port/call-manager driver)
  147. 0xF633A000 C:\WINDOWS\System32\Drivers\DRVNDDM.SYS 40960 bytes (Sonic Solutions, Device Driver Manager)
  148. 0xF7612000 isapnp.sys 40960 bytes (Microsoft Corporation, PNP ISA Bus Driver)
  149. 0xF7722000 C:\WINDOWS\System32\Drivers\NDProxy.SYS 40960 bytes (Microsoft Corporation, NDIS Proxy)
  150. 0xF7712000 C:\WINDOWS\system32\DRIVERS\termdd.sys 40960 bytes (Microsoft Corporation, Terminal Server Driver)
  151. 0xF7662000 disk.sys 36864 bytes (Microsoft Corporation, PnP Disk Driver)
  152. 0xF77E2000 C:\WINDOWS\system32\DRIVERS\intelppm.sys 36864 bytes (Microsoft Corporation, Processor Device Driver)
  153. 0xF7702000 C:\WINDOWS\system32\DRIVERS\msgpc.sys 36864 bytes (Microsoft Corporation, MS General Packet Classifier)
  154. 0xF7772000 C:\WINDOWS\system32\DRIVERS\netbios.sys 36864 bytes (Microsoft Corporation, NetBIOS interface driver)
  155. 0xB946D000 C:\WINDOWS\System32\Drivers\Normandy.SYS 36864 bytes (RKU Driver)
  156. 0xF7682000 PxHelp20.sys 36864 bytes (Sonic Solutions, Px Engine Device Driver for Windows 2000/XP)
  157. 0xF7762000 C:\WINDOWS\system32\DRIVERS\wanarp.sys 36864 bytes (Microsoft Corporation, MS Remote Access and Routing ARP Driver)
  158. 0xF78A2000 cercsr6.sys 32768 bytes (Adaptec, Inc., DELL CERC SATA1.5/6ch Miniport Driver)
  159. 0xF7932000 C:\WINDOWS\System32\Drivers\Npfs.SYS 32768 bytes (Microsoft Corporation, NPFS Driver)
  160. 0xF798A000 C:\WINDOWS\system32\DRIVERS\usbehci.sys 32768 bytes (Microsoft Corporation, EHCI eUSB Miniport Driver)
  161. 0xF795A000 C:\WINDOWS\System32\DLA\DLABOIOM.SYS 28672 bytes (Sonic Solutions, Drive Letter Access Component)
  162. 0xF79AA000 C:\WINDOWS\system32\DRIVERS\fdc.sys 28672 bytes (Microsoft Corporation, Floppy Disk Controller Driver)
  163. 0xF791A000 C:\WINDOWS\system32\DRIVERS\HIDPARSE.SYS 28672 bytes (Microsoft Corporation, Hid Parsing Library)
  164. 0xF7892000 C:\WINDOWS\system32\DRIVERS\PCIIDEX.SYS 28672 bytes (Microsoft Corporation, PCI IDE Bus Driver Extension)
  165. 0xF78FA000 C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS 28672 bytes (Microsoft Corporation, USB Mass Storage Class Driver)
  166. 0xF7912000 C:\WINDOWS\System32\Drivers\DLARTL_N.SYS 24576 bytes (Sonic Solutions, Shared Driver Component)
  167. 0xF78E2000 C:\WINDOWS\System32\Drivers\dvd_2K.SYS 24576 bytes (Roxio, DVD-RAM AddOn Driver)
  168. 0xF79E2000 C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys 24576 bytes (GEAR Software Inc., CD DVD Filter)
  169. 0xF79BA000 C:\WINDOWS\system32\DRIVERS\kbdclass.sys 24576 bytes (Microsoft Corporation, Keyboard Class Driver)
  170. 0xF79C2000 C:\WINDOWS\system32\DRIVERS\mouclass.sys 24576 bytes (Microsoft Corporation, Mouse Class Driver)
  171. 0xF793A000 C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS 24576 bytes (SUPERAdBlocker.com and SUPERAntiSpyware.com, SASDIFSV.SYS)
  172. 0xF7982000 C:\WINDOWS\system32\DRIVERS\usbuhci.sys 24576 bytes (Microsoft Corporation, UHCI USB Miniport Driver)
  173. 0xF7922000 C:\WINDOWS\System32\drivers\vga.sys 24576 bytes (Microsoft Corporation, VGA/Super VGA Video Driver)
  174. 0xF78EA000 C:\WINDOWS\system32\DRIVERS\flpydisk.sys 20480 bytes (Microsoft Corporation, Floppy Driver)
  175. 0xF792A000 C:\WINDOWS\System32\Drivers\Msfs.SYS 20480 bytes (Microsoft Corporation, Mailslot driver)
  176. 0xF789A000 PartMgr.sys 20480 bytes (Microsoft Corporation, Partition Manager)
  177. 0xF7A12000 C:\WINDOWS\system32\DRIVERS\ptilink.sys 20480 bytes (Parallel Technologies, Inc., Parallel Technologies DirectParallel IO Library)
  178. 0xF78B2000 C:\WINDOWS\system32\DRIVERS\raspti.sys 20480 bytes (Microsoft Corporation, PTI DirectParallel(R) mini-port/call-manager driver)
  179. 0xF7A02000 C:\WINDOWS\system32\DRIVERS\TDI.SYS 20480 bytes (Microsoft Corporation, TDI Wrapper)
  180. 0xF794A000 C:\WINDOWS\System32\watchdog.sys 20480 bytes (Microsoft Corporation, Watchdog Driver)
  181. 0xBAD5C000 C:\WINDOWS\System32\DLA\DLAOPIOM.SYS 16384 bytes (Sonic Solutions, Drive Letter Access Component)
  182. 0xF6933000 C:\WINDOWS\system32\DRIVERS\mssmbios.sys 16384 bytes (Microsoft Corporation, System Management BIOS Driver)
  183. 0xBACEC000 C:\WINDOWS\system32\DRIVERS\ndisuio.sys 16384 bytes (Microsoft Corporation, NDIS User mode I/O Driver)
  184. 0xF7A22000 C:\WINDOWS\system32\BOOTVID.dll 12288 bytes (Microsoft Corporation, VGA Boot Driver)
  185. 0xF3F79000 C:\WINDOWS\System32\drivers\Dxapi.sys 12288 bytes (Microsoft Corporation, DirectX API Driver)
  186. 0xF7227000 C:\WINDOWS\system32\DRIVERS\gameenum.sys 12288 bytes (Microsoft Corporation, Game Port Enumerator)
  187. 0xF721F000 C:\WINDOWS\system32\DRIVERS\ndistapi.sys 12288 bytes (Microsoft Corporation, NDIS 3.0 connection wrapper driver)
  188. 0xF6316000 C:\WINDOWS\system32\DRIVERS\rasacd.sys 12288 bytes (Microsoft Corporation, RAS Automatic Connection Driver)
  189. 0xF7B56000 C:\WINDOWS\System32\Drivers\Beep.SYS 8192 bytes (Microsoft Corporation, BEEP Driver)
  190. 0xF7B3E000 C:\WINDOWS\system32\drivers\ctprxy2k.sys 8192 bytes (Creative Technology Ltd, Creative Proxy Device Driver (WDM))
  191. 0xF7B52000 C:\WINDOWS\System32\Drivers\DLACDBHM.SYS 8192 bytes (Sonic Solutions, Shared Driver Component)
  192. 0xF7B7A000 C:\WINDOWS\System32\DLA\DLAPoolM.SYS 8192 bytes (Sonic Solutions, Drive Letter Access Component)
  193. 0xF7B16000 dmload.sys 8192 bytes (Microsoft Corp., Veritas Software., NT Disk Manager Startup Driver)
  194. 0xF7B62000 C:\WINDOWS\System32\Drivers\dump_WMILIB.SYS 8192 bytes
  195. 0xF7B54000 C:\WINDOWS\System32\Drivers\Fs_Rec.SYS 8192 bytes (Microsoft Corporation, File System Recognizer Driver)
  196. 0xF7B12000 C:\WINDOWS\system32\KDCOM.DLL 8192 bytes (Microsoft Corporation, Kernel Debugger HW Extension DLL)
  197. 0xF7B58000 C:\WINDOWS\System32\Drivers\mnmdd.SYS 8192 bytes (Microsoft Corporation, Frame buffer simulator)
  198. 0xF7B5A000 C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 8192 bytes (Microsoft Corporation, RDP Miniport)
  199. 0xF7B44000 C:\WINDOWS\system32\DRIVERS\swenum.sys 8192 bytes (Microsoft Corporation, Plug and Play Software Device Enumerator)
  200. 0xF7B4A000 C:\WINDOWS\system32\DRIVERS\USBD.SYS 8192 bytes (Microsoft Corporation, Universal Serial Bus Driver)
  201. 0xF7B14000 C:\WINDOWS\system32\DRIVERS\WMILIB.SYS 8192 bytes (Microsoft Corporation, WMILIB WMI support library Dll)
  202. 0xF7C11000 C:\WINDOWS\system32\DRIVERS\audstub.sys 4096 bytes (Microsoft Corporation, AudStub Driver)
  203. 0xF7CE6000 C:\WINDOWS\System32\Drivers\Cdr4_xp.SYS 4096 bytes (Sonic Solutions, CDR4 CD and DVD Place Holder Driver (see PxHelp))
  204. 0xF7C93000 C:\WINDOWS\System32\DLA\DLADResN.SYS 4096 bytes (Sonic Solutions, Drive Letter Access Component)
  205. 0xF7BEC000 C:\WINDOWS\System32\drivers\dxgthk.sys 4096 bytes (Microsoft Corporation, DirectX Graphics Driver Thunk)
  206. 0xF7CE8000 C:\WINDOWS\System32\Drivers\Null.SYS 4096 bytes (Microsoft Corporation, NULL Driver)
  207. 0xF7BDA000 pciide.sys 4096 bytes (Microsoft Corporation, Generic PCI IDE Bus Driver)
  208. ==============================================
  209. >Stealth
  210. ==============================================
  211. WARNING: Virus alike driver modification [cpqdap01.sys]
  212. WARNING: Virus alike driver modification [nikedrv.sys]
  213. WARNING: Virus alike driver modification [rio8drv.sys]
  214. WARNING: Virus alike driver modification [riodrv.sys]
  215. WARNING: Virus alike driver modification [ws2ifsl.sys]
  216. WARNING: Virus alike driver modification [fsvga.sys]
  217. WARNING: Virus alike driver modification [IntelC51.sys]
  218. WARNING: Virus alike driver modification [smclib.sys]
  219. WARNING: Virus alike driver modification [tsbvcap.sys]
  220. WARNING: Virus alike driver modification [cinemst2.sys]
  221. WARNING: Virus alike driver modification [atmepvc.sys]
  222. WARNING: Virus alike driver modification [rawwan.sys]
  223. WARNING: Virus alike driver modification [atmuni.sys]
  224. WARNING: Virus alike driver modification [mohfilt.sys]
  225. WARNING: Virus alike driver modification [wpdusb.sys]
  226. WARNING: Virus alike driver modification [wmilib.sys]
  227. WARNING: Virus alike driver modification [IntelC53.sys]
  228. WARNING: Virus alike driver modification [tosdvd.sys]
  229. WARNING: Virus alike driver modification [nwlnkspx.sys]
  230. WARNING: Virus alike driver modification [vdmindvd.sys]
  231. WARNING: Virus alike driver modification [rootmdm.sys]
  232. WARNING: Virus alike driver modification [IntelC52.sys]
  233. WARNING: Virus alike driver modification [nwlnknb.sys]
  234. WARNING: Virus alike driver modification [enum1394.sys]
  235. WARNING: Virus alike driver modification [pfmodnt.sys]
  236. WARNING: Virus alike driver modification [mcd.sys]
  237. ==============================================
  238. >Files
  239. ==============================================
  240. !-->[Hidden] C:\Qoobox\BackEnv\AppData.folder.dat
  241. !-->[Hidden] C:\Qoobox\BackEnv\Cache.folder.dat
  242. !-->[Hidden] C:\Qoobox\BackEnv\Cookies.folder.dat
  243. !-->[Hidden] C:\Qoobox\BackEnv\Desktop.folder.dat
  244. !-->[Hidden] C:\Qoobox\BackEnv\Favorites.folder.dat
  245. !-->[Hidden] C:\Qoobox\BackEnv\History.folder.dat
  246. !-->[Hidden] C:\Qoobox\BackEnv\LocalAppData.folder.dat
  247. !-->[Hidden] C:\Qoobox\BackEnv\LocalSettings.folder.dat
  248. !-->[Hidden] C:\Qoobox\BackEnv\Music.folder.dat
  249. !-->[Hidden] C:\Qoobox\BackEnv\NetHood.folder.dat
  250. !-->[Hidden] C:\Qoobox\BackEnv\Personal.folder.dat
  251. !-->[Hidden] C:\Qoobox\BackEnv\Pictures.folder.dat
  252. !-->[Hidden] C:\Qoobox\BackEnv\PrintHood.folder.dat
  253. !-->[Hidden] C:\Qoobox\BackEnv\Profiles.Folder.dat
  254. !-->[Hidden] C:\Qoobox\BackEnv\Profiles.Folder.folder.dat
  255. !-->[Hidden] C:\Qoobox\BackEnv\Programs.folder.dat
  256. !-->[Hidden] C:\Qoobox\BackEnv\Recent.folder.dat
  257. !-->[Hidden] C:\Qoobox\BackEnv\SendTo.folder.dat
  258. !-->[Hidden] C:\Qoobox\BackEnv\SetPath.bat
  259. !-->[Hidden] C:\Qoobox\BackEnv\StartMenu.folder.dat
  260. !-->[Hidden] C:\Qoobox\BackEnv\StartUp.folder.dat
  261. !-->[Hidden] C:\Qoobox\BackEnv\SysPath.dat
  262. !-->[Hidden] C:\Qoobox\BackEnv\Templates.folder.dat
  263. !-->[Hidden] C:\Qoobox\BackEnv\VikPev00
  264. ==============================================
  265. >Hooks
  266. ==============================================
  267. ntkrnlpa.exe+0x0006ECAE, Type: Inline - RelativeJump 0x80545CAE-->80545CB5 [ntkrnlpa.exe]
  268.  
  269.  
  270. !!POSSIBLE ROOTKIT ACTIVITY DETECTED!! =)
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!