Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

win32 sirefef.o


  • This topic is locked This topic is locked
56 replies to this topic

#1 miri.um

miri.um

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:45 AM

Posted 31 October 2011 - 09:16 PM

I've tried running many different programs to get rid of this but none of them work. In the welcome guide they said to run D.D.S. but it's not working for me. This Trojan doesn't let me access my spyware protection and it redirects me to different sites. Since I can't run D.D.S i ran tdsskiller but I skipped the threats detected, I don't know if this helps but this is the log it gives me.

21:13:40.0321 5136 TDSS rootkit removing tool 2.6.14.0 Oct 28 2011 11:11:01
21:13:40.0567 5136 ============================================================
21:13:40.0567 5136 Current date / time: 2011/10/31 21:13:40.0567
21:13:40.0567 5136 SystemInfo:
21:13:40.0567 5136
21:13:40.0567 5136 OS Version: 6.0.6001 ServicePack: 1.0
21:13:40.0567 5136 Product type: Workstation
21:13:40.0568 5136 ComputerName: ZACK
21:13:40.0568 5136 UserName: Miriam
21:13:40.0568 5136 Windows directory: C:\Windows
21:13:40.0568 5136 System windows directory: C:\Windows
21:13:40.0568 5136 Processor architecture: Intel x86
21:13:40.0568 5136 Number of processors: 2
21:13:40.0569 5136 Page size: 0x1000
21:13:40.0569 5136 Boot type: Normal boot
21:13:40.0569 5136 ============================================================
21:13:42.0390 5136 Initialize success
21:13:48.0767 5452 ============================================================
21:13:48.0767 5452 Scan started
21:13:48.0767 5452 Mode: Manual;
21:13:48.0767 5452 ============================================================
21:13:50.0564 5452 1cf6efbe (8f2bb1827cac01aee6a16e30a1260199) C:\Windows\3203397148:3809022017.exe
21:13:50.0565 5452 Suspicious file (Hidden): C:\Windows\3203397148:3809022017.exe. md5: 8f2bb1827cac01aee6a16e30a1260199
21:13:50.0566 5452 1cf6efbe ( Rootkit.Win32.PMax.gen ) - infected
21:13:50.0567 5452 1cf6efbe - detected Rootkit.Win32.PMax.gen (0)
21:13:50.0655 5452 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
21:13:50.0661 5452 ACPI - ok
21:13:50.0806 5452 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
21:13:50.0829 5452 adp94xx - ok
21:13:50.0920 5452 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
21:13:50.0928 5452 adpahci - ok
21:13:51.0035 5452 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
21:13:51.0038 5452 adpu160m - ok
21:13:51.0112 5452 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
21:13:51.0117 5452 adpu320 - ok
21:13:51.0515 5452 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
21:13:51.0521 5452 AFD - ok
21:13:51.0624 5452 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
21:13:51.0627 5452 agp440 - ok
21:13:51.0722 5452 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
21:13:51.0729 5452 aic78xx - ok
21:13:51.0802 5452 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
21:13:51.0806 5452 aliide - ok
21:13:51.0897 5452 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
21:13:51.0900 5452 amdagp - ok
21:13:51.0947 5452 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
21:13:51.0948 5452 amdide - ok
21:13:52.0021 5452 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
21:13:52.0024 5452 AmdK7 - ok
21:13:52.0177 5452 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
21:13:52.0179 5452 AmdK8 - ok
21:13:52.0351 5452 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
21:13:52.0354 5452 arc - ok
21:13:52.0451 5452 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
21:13:52.0456 5452 arcsas - ok
21:13:52.0570 5452 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
21:13:52.0571 5452 AsyncMac - ok
21:13:52.0627 5452 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
21:13:52.0629 5452 atapi - ok
21:13:52.0938 5452 athr (fa4e39b289d3a9606f03c90a933b2b1f) C:\Windows\system32\DRIVERS\athr.sys
21:13:52.0954 5452 athr - ok
21:13:53.0288 5452 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
21:13:53.0303 5452 BCM43XV - ok
21:13:53.0435 5452 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
21:13:53.0436 5452 Beep - ok
21:13:53.0573 5452 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
21:13:53.0576 5452 blbdrive - ok
21:13:53.0719 5452 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
21:13:53.0722 5452 bowser - ok
21:13:53.0842 5452 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
21:13:53.0844 5452 BrFiltLo - ok
21:13:53.0881 5452 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
21:13:53.0882 5452 BrFiltUp - ok
21:13:53.0983 5452 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
21:13:53.0986 5452 Brserid - ok
21:13:54.0049 5452 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
21:13:54.0051 5452 BrSerWdm - ok
21:13:54.0113 5452 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
21:13:54.0118 5452 BrUsbMdm - ok
21:13:54.0168 5452 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
21:13:54.0169 5452 BrUsbSer - ok
21:13:54.0240 5452 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
21:13:54.0242 5452 BTHMODEM - ok
21:13:54.0374 5452 catchme - ok
21:13:54.0548 5452 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
21:13:54.0551 5452 cdfs - ok
21:13:54.0662 5452 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
21:13:54.0665 5452 cdrom - ok
21:13:54.0716 5452 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
21:13:54.0719 5452 circlass - ok
21:13:54.0767 5452 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
21:13:54.0774 5452 CLFS - ok
21:13:54.0897 5452 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
21:13:54.0900 5452 CmBatt - ok
21:13:54.0963 5452 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
21:13:54.0965 5452 cmdide - ok
21:13:55.0062 5452 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
21:13:55.0064 5452 COH_Mon - ok
21:13:55.0212 5452 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
21:13:55.0214 5452 Compbatt - ok
21:13:55.0292 5452 CO_Mon (73f5d6835bfa66019c03e316d99649da) C:\Windows\system32\drivers\CO_Mon.sys
21:13:55.0295 5452 CO_Mon - ok
21:13:55.0431 5452 cpuz134 - ok
21:13:55.0510 5452 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
21:13:55.0512 5452 crcdisk - ok
21:13:55.0559 5452 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
21:13:55.0561 5452 Crusoe - ok
21:13:55.0671 5452 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
21:13:55.0673 5452 CVirtA - ok
21:13:55.0783 5452 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
21:13:55.0788 5452 DfsC - ok
21:13:55.0972 5452 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
21:13:55.0978 5452 disk - ok
21:13:56.0135 5452 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
21:13:56.0145 5452 Dot4 - ok
21:13:56.0229 5452 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:13:56.0235 5452 Dot4Print - ok
21:13:56.0313 5452 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
21:13:56.0315 5452 dot4usb - ok
21:13:56.0440 5452 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
21:13:56.0441 5452 drmkaud - ok
21:13:56.0545 5452 dsiarhwprog (f35b5d0cc142b87e687fc504baa69d82) C:\Windows\system32\Drivers\dsiarhwprog.sys
21:13:56.0547 5452 dsiarhwprog - ok
21:13:56.0686 5452 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
21:13:56.0700 5452 DXGKrnl - ok
21:13:56.0853 5452 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
21:13:56.0858 5452 E1G60 - ok
21:13:56.0998 5452 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
21:13:57.0009 5452 Ecache - ok
21:13:57.0176 5452 eeCtrl (8f7dbc4be48f5388a6fe1f285e7948ef) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
21:13:57.0185 5452 eeCtrl - ok
21:13:57.0362 5452 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
21:13:57.0377 5452 elxstor - ok
21:13:57.0505 5452 EraserUtilDrvI10 - ok
21:13:57.0604 5452 EraserUtilRebootDrv (3ee14d400e0fdd0d214275a4a20b7022) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
21:13:57.0609 5452 EraserUtilRebootDrv - ok
21:13:57.0743 5452 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
21:13:57.0746 5452 ErrDev - ok
21:13:57.0914 5452 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
21:13:57.0918 5452 exfat - ok
21:13:57.0976 5452 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
21:13:57.0980 5452 fastfat - ok
21:13:58.0065 5452 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
21:13:58.0067 5452 fdc - ok
21:13:58.0252 5452 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
21:13:58.0254 5452 FileInfo - ok
21:13:58.0356 5452 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
21:13:58.0363 5452 Filetrace - ok
21:13:58.0525 5452 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
21:13:58.0527 5452 flpydisk - ok
21:13:58.0615 5452 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
21:13:58.0620 5452 FltMgr - ok
21:13:58.0682 5452 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
21:13:58.0684 5452 Fs_Rec - ok
21:13:58.0732 5452 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
21:13:58.0734 5452 gagp30kx - ok
21:13:58.0842 5452 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
21:13:58.0845 5452 GEARAspiWDM - ok
21:13:59.0023 5452 HdAudAddService (7be40bb4cd16d8760e18ea981ff452ec) C:\Windows\system32\drivers\CHDART.sys
21:13:59.0029 5452 HdAudAddService - ok
21:13:59.0103 5452 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:13:59.0108 5452 HDAudBus - ok
21:13:59.0156 5452 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
21:13:59.0158 5452 HidBth - ok
21:13:59.0221 5452 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
21:13:59.0223 5452 HidIr - ok
21:13:59.0326 5452 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
21:13:59.0328 5452 HidUsb - ok
21:13:59.0449 5452 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
21:13:59.0451 5452 HpCISSs - ok
21:13:59.0603 5452 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
21:13:59.0605 5452 HpqKbFiltr - ok
21:13:59.0662 5452 HpqRemHid (115c0933b3ed51dfbec4449348c8065b) C:\Windows\system32\DRIVERS\HpqRemHid.sys
21:13:59.0664 5452 HpqRemHid - ok
21:13:59.0807 5452 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
21:13:59.0813 5452 HSFHWAZL - ok
21:13:59.0926 5452 HSF_DPV (1882827f41dee51c70e24c567c35bfb5) C:\Windows\system32\DRIVERS\HSX_DPV.sys
21:13:59.0945 5452 HSF_DPV - ok
21:14:00.0021 5452 HSXHWAZL (a44ddf3ba83e4664bf4de9220097578c) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
21:14:00.0026 5452 HSXHWAZL - ok
21:14:00.0097 5452 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
21:14:00.0108 5452 HTTP - ok
21:14:00.0186 5452 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
21:14:00.0188 5452 i2omp - ok
21:14:00.0282 5452 i8042prt (5be9ddf0920cb991d827c6044e63b3ec) C:\Windows\system32\DRIVERS\i8042prt.sys
21:14:00.0284 5452 Suspicious file (Forged): C:\Windows\system32\DRIVERS\i8042prt.sys. Real md5: 5be9ddf0920cb991d827c6044e63b3ec, Fake md5: 22d56c8184586b7a1f6fa60be5f5a2bd
21:14:00.0286 5452 i8042prt ( Rootkit.Win32.ZAccess.e ) - infected
21:14:00.0286 5452 i8042prt - detected Rootkit.Win32.ZAccess.e (0)
21:14:00.0340 5452 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
21:14:00.0347 5452 iaStorV - ok
21:14:00.0487 5452 IDSvix86 (ce5d5aaba62949b9bfa44d0eaf2d93e5) C:\PROGRA~2\Symantec\DEFINI~1\SymcData\ipsdefs\20081014.001\IDSvix86.sys
21:14:00.0496 5452 IDSvix86 - ok
21:14:00.0590 5452 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
21:14:00.0593 5452 iirsp - ok
21:14:00.0711 5452 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
21:14:00.0713 5452 intelide - ok
21:14:00.0771 5452 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
21:14:00.0774 5452 intelppm - ok
21:14:00.0861 5452 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:14:00.0863 5452 IpFilterDriver - ok
21:14:00.0925 5452 IpInIp - ok
21:14:01.0001 5452 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
21:14:01.0003 5452 IPMIDRV - ok
21:14:01.0080 5452 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
21:14:01.0084 5452 IPNAT - ok
21:14:01.0218 5452 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
21:14:01.0220 5452 IRENUM - ok
21:14:01.0286 5452 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
21:14:01.0289 5452 isapnp - ok
21:14:01.0342 5452 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
21:14:01.0347 5452 iScsiPrt - ok
21:14:01.0446 5452 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
21:14:01.0450 5452 iteatapi - ok
21:14:01.0647 5452 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
21:14:01.0649 5452 iteraid - ok
21:14:01.0747 5452 kbdclass (b076b2ab806b3f696dab21375389101c) C:\Windows\system32\DRIVERS\kbdclass.sys
21:14:01.0750 5452 kbdclass - ok
21:14:01.0801 5452 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
21:14:01.0804 5452 kbdhid - ok
21:14:01.0904 5452 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
21:14:01.0916 5452 KSecDD - ok
21:14:02.0147 5452 Lavasoft Kernexplorer (6c4a3804510ad8e0f0c07b5be3d44ddb) C:\Program Files\Lavasoft\Ad-Aware\KernExplorer.sys
21:14:02.0149 5452 Lavasoft Kernexplorer - ok
21:14:02.0253 5452 Lbd (336abe8721cbc3110f1c6426da633417) C:\Windows\system32\DRIVERS\Lbd.sys
21:14:02.0256 5452 Lbd - ok
21:14:02.0466 5452 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
21:14:02.0469 5452 lltdio - ok
21:14:02.0532 5452 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
21:14:02.0536 5452 LSI_FC - ok
21:14:02.0608 5452 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
21:14:02.0611 5452 LSI_SAS - ok
21:14:02.0694 5452 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
21:14:02.0698 5452 LSI_SCSI - ok
21:14:02.0772 5452 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
21:14:02.0775 5452 luafv - ok
21:14:03.0037 5452 MDC8021X (d7010580bf4e45d5e793a1fe75758c69) C:\Windows\system32\DRIVERS\mdc8021x.sys
21:14:03.0039 5452 MDC8021X - ok
21:14:03.0081 5452 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
21:14:03.0084 5452 mdmxsdk - ok
21:14:03.0135 5452 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
21:14:03.0138 5452 megasas - ok
21:14:03.0227 5452 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
21:14:03.0237 5452 MegaSR - ok
21:14:03.0366 5452 mfeapfk (d0813cf480e3d38a265f3be86522bf3b) C:\Windows\system32\drivers\mfeapfk.sys
21:14:03.0368 5452 mfeapfk - ok
21:14:03.0428 5452 mfeavfk (04440cc0f5f89933babd585cc5f2f70e) C:\Windows\system32\drivers\mfeavfk.sys
21:14:03.0431 5452 mfeavfk - ok
21:14:03.0476 5452 mfebopk (f6e257c31e0c354a2ed22bf5026c2466) C:\Windows\system32\drivers\mfebopk.sys
21:14:03.0479 5452 mfebopk - ok
21:14:03.0551 5452 mfehidk (79fae8ce9a478f79b74873a810c8227e) C:\Windows\system32\drivers\mfehidk.sys
21:14:03.0562 5452 mfehidk - ok
21:14:03.0630 5452 mferkdet (f21bf10a3784e52eec925bb5f7d3fffa) C:\Windows\system32\drivers\mferkdet.sys
21:14:03.0633 5452 mferkdet - ok
21:14:03.0687 5452 mferkdk - ok
21:14:03.0789 5452 mfetdik (f2d4d0f8e230257a0be36df803b549d1) C:\Windows\system32\drivers\mfetdik.sys
21:14:03.0792 5452 mfetdik - ok
21:14:03.0908 5452 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
21:14:03.0911 5452 Modem - ok
21:14:03.0980 5452 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
21:14:03.0983 5452 monitor - ok
21:14:04.0009 5452 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
21:14:04.0013 5452 mouclass - ok
21:14:04.0044 5452 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
21:14:04.0046 5452 mouhid - ok
21:14:04.0073 5452 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
21:14:04.0076 5452 MountMgr - ok
21:14:04.0141 5452 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
21:14:04.0144 5452 mpio - ok
21:14:04.0197 5452 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
21:14:04.0200 5452 mpsdrv - ok
21:14:04.0251 5452 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
21:14:04.0254 5452 Mraid35x - ok
21:14:04.0304 5452 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
21:14:04.0309 5452 MRxDAV - ok
21:14:04.0379 5452 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:14:04.0383 5452 mrxsmb - ok
21:14:04.0455 5452 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:14:04.0462 5452 mrxsmb10 - ok
21:14:04.0523 5452 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:14:04.0526 5452 mrxsmb20 - ok
21:14:04.0605 5452 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
21:14:04.0608 5452 msahci - ok
21:14:04.0672 5452 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
21:14:04.0675 5452 msdsm - ok
21:14:04.0782 5452 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
21:14:04.0786 5452 Msfs - ok
21:14:04.0858 5452 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
21:14:04.0860 5452 msisadrv - ok
21:14:04.0979 5452 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
21:14:04.0981 5452 MSKSSRV - ok
21:14:05.0068 5452 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
21:14:05.0069 5452 MSPCLOCK - ok
21:14:05.0120 5452 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
21:14:05.0123 5452 MSPQM - ok
21:14:05.0177 5452 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
21:14:05.0182 5452 MsRPC - ok
21:14:05.0227 5452 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
21:14:05.0229 5452 mssmbios - ok
21:14:05.0259 5452 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
21:14:05.0261 5452 MSTEE - ok
21:14:05.0316 5452 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
21:14:05.0320 5452 Mup - ok
21:14:05.0401 5452 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
21:14:05.0405 5452 NativeWifiP - ok
21:14:05.0444 5452 NAVENG - ok
21:14:05.0470 5452 NAVEX15 - ok
21:14:05.0610 5452 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
21:14:05.0621 5452 NDIS - ok
21:14:05.0692 5452 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
21:14:05.0695 5452 NdisTapi - ok
21:14:05.0719 5452 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
21:14:05.0722 5452 Ndisuio - ok
21:14:05.0822 5452 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
21:14:05.0829 5452 NdisWan - ok
21:14:05.0870 5452 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
21:14:05.0873 5452 NDProxy - ok
21:14:05.0975 5452 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
21:14:05.0978 5452 NetBIOS - ok
21:14:06.0039 5452 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
21:14:06.0051 5452 netbt - ok
21:14:06.0181 5452 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
21:14:06.0184 5452 nfrd960 - ok
21:14:06.0248 5452 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
21:14:06.0251 5452 Npfs - ok
21:14:06.0305 5452 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
21:14:06.0307 5452 nsiproxy - ok
21:14:06.0412 5452 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
21:14:06.0457 5452 Ntfs - ok
21:14:06.0508 5452 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
21:14:06.0510 5452 ntrigdigi - ok
21:14:06.0559 5452 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
21:14:06.0561 5452 Null - ok
21:14:06.0670 5452 NVENETFD (a1108084b0d2fc43dcc401735770e2a3) C:\Windows\system32\DRIVERS\nvmfdx32.sys
21:14:06.0691 5452 NVENETFD - ok
21:14:07.0228 5452 nvlddmkm (b36c3b866b0d47e2e2856ec8fd746e39) C:\Windows\system32\DRIVERS\nvlddmkm.sys
21:14:07.0378 5452 nvlddmkm - ok
21:14:07.0494 5452 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
21:14:07.0497 5452 nvraid - ok
21:14:07.0585 5452 nvsmu (9aebc32f9d6e02ebee0369ab296fe7c8) C:\Windows\system32\DRIVERS\nvsmu.sys
21:14:07.0587 5452 nvsmu - ok
21:14:07.0634 5452 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
21:14:07.0636 5452 nvstor - ok
21:14:07.0733 5452 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
21:14:07.0737 5452 nv_agp - ok
21:14:07.0779 5452 NwlnkFlt - ok
21:14:07.0808 5452 NwlnkFwd - ok
21:14:07.0877 5452 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
21:14:07.0881 5452 ohci1394 - ok
21:14:08.0005 5452 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
21:14:08.0008 5452 Parport - ok
21:14:08.0050 5452 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
21:14:08.0054 5452 partmgr - ok
21:14:08.0098 5452 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
21:14:08.0100 5452 Parvdm - ok
21:14:08.0174 5452 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
21:14:08.0178 5452 pci - ok
21:14:08.0226 5452 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
21:14:08.0228 5452 pciide - ok
21:14:08.0292 5452 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
21:14:08.0297 5452 pcmcia - ok
21:14:08.0440 5452 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
21:14:08.0463 5452 PEAUTH - ok
21:14:08.0691 5452 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
21:14:08.0695 5452 PptpMiniport - ok
21:14:08.0743 5452 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
21:14:08.0746 5452 Processor - ok
21:14:08.0827 5452 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
21:14:08.0830 5452 PSched - ok
21:14:08.0864 5452 pywdewao - ok
21:14:09.0005 5452 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
21:14:09.0027 5452 ql2300 - ok
21:14:09.0147 5452 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
21:14:09.0151 5452 ql40xx - ok
21:14:09.0228 5452 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
21:14:09.0231 5452 QWAVEdrv - ok
21:14:09.0269 5452 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
21:14:09.0272 5452 RasAcd - ok
21:14:09.0337 5452 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:14:09.0342 5452 Rasl2tp - ok
21:14:09.0438 5452 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
21:14:09.0450 5452 RasPppoe - ok
21:14:09.0493 5452 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
21:14:09.0496 5452 RasSstp - ok
21:14:09.0565 5452 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
21:14:09.0571 5452 rdbss - ok
21:14:09.0638 5452 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:14:09.0640 5452 RDPCDD - ok
21:14:09.0719 5452 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
21:14:09.0726 5452 rdpdr - ok
21:14:09.0770 5452 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
21:14:09.0772 5452 RDPENCDD - ok
21:14:09.0853 5452 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
21:14:09.0858 5452 RDPWD - ok
21:14:09.0877 5452 RegKernelHelp - ok
21:14:10.0032 5452 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
21:14:10.0035 5452 rimmptsk - ok
21:14:10.0074 5452 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
21:14:10.0078 5452 rimsptsk - ok
21:14:10.0142 5452 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
21:14:10.0147 5452 rismxdp - ok
21:14:10.0268 5452 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
21:14:10.0272 5452 rspndr - ok
21:14:10.0335 5452 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
21:14:10.0339 5452 sbp2port - ok
21:14:10.0483 5452 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
21:14:10.0486 5452 sdbus - ok
21:14:10.0546 5452 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
21:14:10.0549 5452 secdrv - ok
21:14:10.0618 5452 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
21:14:10.0620 5452 Serenum - ok
21:14:10.0652 5452 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
21:14:10.0657 5452 Serial - ok
21:14:10.0723 5452 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
21:14:10.0725 5452 sermouse - ok
21:14:10.0832 5452 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\DRIVERS\sffdisk.sys
21:14:10.0835 5452 sffdisk - ok
21:14:10.0903 5452 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
21:14:10.0905 5452 sffp_mmc - ok
21:14:10.0958 5452 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\DRIVERS\sffp_sd.sys
21:14:10.0961 5452 sffp_sd - ok
21:14:11.0025 5452 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
21:14:11.0028 5452 sfloppy - ok
21:14:11.0106 5452 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
21:14:11.0110 5452 sisagp - ok
21:14:11.0176 5452 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
21:14:11.0181 5452 SiSRaid2 - ok
21:14:11.0239 5452 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
21:14:11.0243 5452 SiSRaid4 - ok
21:14:11.0325 5452 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
21:14:11.0328 5452 Smb - ok
21:14:11.0462 5452 SPBBCDrv (dc4dc886d3779c446f9b0e9d6b006e72) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
21:14:11.0473 5452 SPBBCDrv - ok
21:14:11.0544 5452 SpiderG3 - ok
21:14:11.0613 5452 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
21:14:11.0615 5452 spldr - ok
21:14:11.0757 5452 SRTSP (655773f2f1a3730c6cf20280a49f4ee1) C:\Windows\system32\Drivers\SRTSP.SYS
21:14:11.0769 5452 SRTSP - ok
21:14:11.0830 5452 SRTSPL (2a0aaf370d4c6574a34ae2f4a0709cae) C:\Windows\system32\Drivers\SRTSPL.SYS
21:14:11.0838 5452 SRTSPL - ok
21:14:11.0904 5452 SRTSPX (3104bdceace2d5710776dd05e6a286c1) C:\Windows\system32\Drivers\SRTSPX.SYS
21:14:11.0908 5452 SRTSPX - ok
21:14:12.0150 5452 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
21:14:12.0163 5452 srv - ok
21:14:12.0251 5452 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
21:14:12.0255 5452 srv2 - ok
21:14:12.0293 5452 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
21:14:12.0298 5452 srvnet - ok
21:14:12.0463 5452 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
21:14:12.0465 5452 swenum - ok
21:14:12.0590 5452 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
21:14:12.0592 5452 Symc8xx - ok
21:14:12.0676 5452 SYMDNS (fe9f8b3a8bc22d85332b42e92308ddf9) C:\Windows\System32\Drivers\SYMDNS.SYS
21:14:12.0679 5452 SYMDNS - ok
21:14:12.0752 5452 SymEvent (06b95820df51502099a8a15c93e87986) C:\Windows\system32\Drivers\SYMEVENT.SYS
21:14:12.0756 5452 SymEvent - ok
21:14:12.0877 5452 SYMFW (a0ea9d273889e53cfaabf2444692ccbf) C:\Windows\System32\Drivers\SYMFW.SYS
21:14:12.0881 5452 SYMFW - ok
21:14:12.0969 5452 SymIM (8eab28dd6cd25355b951ae460fa86b48) C:\Windows\system32\DRIVERS\SymIMv.sys
21:14:12.0972 5452 SymIM - ok
21:14:13.0001 5452 SymIMMP - ok
21:14:13.0060 5452 SYMNDISV (c94eaca4b522012ee0691f1e79c42a7d) C:\Windows\System32\Drivers\SYMNDISV.SYS
21:14:13.0063 5452 SYMNDISV - ok
21:14:13.0129 5452 SYMREDRV (7c6505ea598e58099d3b7e1f70426864) C:\Windows\System32\Drivers\SYMREDRV.SYS
21:14:13.0131 5452 SYMREDRV - ok
21:14:13.0199 5452 SYMTDI (e6ff7ace71d07ca90119f2c6ab592ba4) C:\Windows\System32\Drivers\SYMTDI.SYS
21:14:13.0205 5452 SYMTDI - ok
21:14:13.0279 5452 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
21:14:13.0281 5452 Sym_hi - ok
21:14:13.0329 5452 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
21:14:13.0332 5452 Sym_u3 - ok
21:14:13.0390 5452 SynTP (bf7aa84d5af0faa0978c840e63b17dbf) C:\Windows\system32\DRIVERS\SynTP.sys
21:14:13.0395 5452 SynTP - ok
21:14:13.0655 5452 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
21:14:13.0673 5452 Tcpip - ok
21:14:13.0754 5452 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
21:14:13.0771 5452 Tcpip6 - ok
21:14:13.0851 5452 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
21:14:13.0853 5452 tcpipreg - ok
21:14:13.0922 5452 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
21:14:13.0924 5452 TDPIPE - ok
21:14:13.0978 5452 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
21:14:13.0981 5452 TDTCP - ok
21:14:14.0042 5452 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
21:14:14.0045 5452 tdx - ok
21:14:14.0085 5452 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
21:14:14.0088 5452 TermDD - ok
21:14:14.0249 5452 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:14:14.0253 5452 tssecsrv - ok
21:14:14.0369 5452 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
21:14:14.0372 5452 tunmp - ok
21:14:14.0438 5452 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
21:14:14.0442 5452 tunnel - ok
21:14:14.0490 5452 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
21:14:14.0494 5452 uagp35 - ok
21:14:14.0554 5452 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
21:14:14.0561 5452 udfs - ok
21:14:14.0673 5452 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
21:14:14.0676 5452 uliagpkx - ok
21:14:14.0763 5452 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
21:14:14.0770 5452 uliahci - ok
21:14:14.0823 5452 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
21:14:14.0828 5452 UlSata - ok
21:14:14.0919 5452 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
21:14:14.0923 5452 ulsata2 - ok
21:14:14.0984 5452 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
21:14:14.0987 5452 umbus - ok
21:14:15.0110 5452 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\Windows\system32\Drivers\usbaapl.sys
21:14:15.0113 5452 USBAAPL - ok
21:14:15.0163 5452 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
21:14:15.0167 5452 usbccgp - ok
21:14:15.0254 5452 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
21:14:15.0259 5452 usbcir - ok
21:14:15.0352 5452 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
21:14:15.0355 5452 usbehci - ok
21:14:15.0410 5452 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
21:14:15.0416 5452 usbhub - ok
21:14:15.0481 5452 usbohci (7bdb7b0e7d45ac0402d78b90789ef47c) C:\Windows\system32\DRIVERS\usbohci.sys
21:14:15.0484 5452 usbohci - ok
21:14:15.0558 5452 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
21:14:15.0560 5452 usbprint - ok
21:14:15.0644 5452 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
21:14:15.0647 5452 usbscan - ok
21:14:15.0718 5452 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:14:15.0721 5452 USBSTOR - ok
21:14:15.0776 5452 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
21:14:15.0779 5452 usbuhci - ok
21:14:15.0889 5452 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
21:14:15.0895 5452 usbvideo - ok
21:14:16.0020 5452 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
21:14:16.0024 5452 vga - ok
21:14:16.0068 5452 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
21:14:16.0072 5452 VgaSave - ok
21:14:16.0130 5452 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
21:14:16.0134 5452 viaagp - ok
21:14:16.0218 5452 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
21:14:16.0222 5452 ViaC7 - ok
21:14:16.0297 5452 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
21:14:16.0299 5452 viaide - ok
21:14:16.0335 5452 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
21:14:16.0338 5452 volmgr - ok
21:14:16.0410 5452 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
21:14:16.0420 5452 volmgrx - ok
21:14:16.0456 5452 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
21:14:16.0467 5452 volsnap - ok
21:14:16.0550 5452 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
21:14:16.0554 5452 vsmraid - ok
21:14:16.0676 5452 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
21:14:16.0679 5452 WacomPen - ok
21:14:16.0722 5452 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:14:16.0727 5452 Wanarp - ok
21:14:16.0766 5452 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:14:16.0769 5452 Wanarpv6 - ok
21:14:16.0849 5452 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
21:14:16.0856 5452 Wd - ok
21:14:16.0929 5452 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
21:14:16.0948 5452 Wdf01000 - ok
21:14:17.0179 5452 winachsf (e096ffb754f1e45ae1bddac1275ae2c5) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
21:14:17.0193 5452 winachsf - ok
21:14:17.0449 5452 WlanUIG (01a3d371863250118591fb829eec91ac) C:\Windows\system32\DRIVERS\WlanUIG.sys
21:14:17.0460 5452 WlanUIG - ok
21:14:17.0519 5452 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
21:14:17.0525 5452 WmiAcpi - ok
21:14:17.0699 5452 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
21:14:17.0701 5452 WpdUsb - ok
21:14:17.0771 5452 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
21:14:17.0777 5452 ws2ifsl - ok
21:14:17.0952 5452 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:14:17.0958 5452 WUDFRd - ok
21:14:18.0054 5452 XAudio (19e7c173b6242ad7521e537ae54768bf) C:\Windows\system32\DRIVERS\xaudio.sys
21:14:18.0056 5452 XAudio - ok
21:14:18.0178 5452 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
21:14:18.0209 5452 \Device\Harddisk0\DR0 - ok
21:14:18.0255 5452 Boot (0x1200) (0d58f86005da2213beab1543be5ed097) \Device\Harddisk0\DR0\Partition0
21:14:18.0257 5452 \Device\Harddisk0\DR0\Partition0 - ok
21:14:18.0273 5452 Boot (0x1200) (7f28142866938740324274d1260a6a2c) \Device\Harddisk0\DR0\Partition1
21:14:18.0274 5452 \Device\Harddisk0\DR0\Partition1 - ok
21:14:18.0295 5452 ============================================================
21:14:18.0295 5452 Scan finished
21:14:18.0295 5452 ============================================================
21:14:18.0352 5432 Detected object count: 2
21:14:18.0352 5432 Actual detected object count: 2
21:15:04.0715 5432 1cf6efbe ( Rootkit.Win32.PMax.gen ) - skipped by user
21:15:04.0716 5432 1cf6efbe ( Rootkit.Win32.PMax.gen ) - User select action: Skip
21:15:04.0726 5432 i8042prt ( Rootkit.Win32.ZAccess.e ) - skipped by user
21:15:04.0726 5432 i8042prt ( Rootkit.Win32.ZAccess.e ) - User select action: Skip

BC AdBot (Login to Remove)

 


#2 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:03:45 PM

Posted 05 November 2011 - 07:04 AM

Hi,

Welcome to Bleeping Computer. My name is m0le and I will be helping you with your log.
  • Please subscribe to this topic, if you haven't already. Click the Watch This Topic button at the top on the right.

  • Please avoid installing/uninstalling or updating any programs and attempting any unsupervised fixes or scans. This can make helping you impossible.

  • Please reply to this post so I know you are there.
The forum is busy and we need to have replies as soon as possible. If I haven't had a reply after 3 days I will bump the topic and if you do not reply by the following day after that then I will close the topic.

Once I receive a reply then I will return with your first instructions.

Thanks :thumbup2:
Posted Image
m0le is a proud member of UNITE

#3 miri.um

miri.um
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:45 AM

Posted 05 November 2011 - 06:46 PM

Thanks for replying, I checked my computer today and the trojan doesn't show up but I've had this happen before so I really want to make sure its gone. I'll be waiting for your reply and thanks again. :)

#4 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:03:45 PM

Posted 05 November 2011 - 06:52 PM

Rerun the TDSSKiller program and this time ensure Cure is selected then click Continue > Reboot now.

Copy and paste the log in your next reply.
Posted Image
m0le is a proud member of UNITE

#5 miri.um

miri.um
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:45 AM

Posted 05 November 2011 - 07:01 PM

It didn't find any threats. I'm not sure what I did but it must have been (accidentally) right.

18:58:45.0621 5424 TDSS rootkit removing tool 2.6.14.0 Oct 28 2011 11:11:01
18:58:45.0915 5424 ============================================================
18:58:45.0915 5424 Current date / time: 2011/11/05 18:58:45.0915
18:58:45.0915 5424 SystemInfo:
18:58:45.0916 5424
18:58:45.0916 5424 OS Version: 6.0.6001 ServicePack: 1.0
18:58:45.0916 5424 Product type: Workstation
18:58:45.0916 5424 ComputerName: ZACK
18:58:45.0917 5424 UserName: Miriam
18:58:45.0917 5424 Windows directory: C:\Windows
18:58:45.0917 5424 System windows directory: C:\Windows
18:58:45.0917 5424 Processor architecture: Intel x86
18:58:45.0917 5424 Number of processors: 2
18:58:45.0917 5424 Page size: 0x1000
18:58:45.0917 5424 Boot type: Normal boot
18:58:45.0918 5424 ============================================================
18:58:47.0995 5424 Initialize success
18:58:49.0528 2132 ============================================================
18:58:49.0528 2132 Scan started
18:58:49.0528 2132 Mode: Manual;
18:58:49.0528 2132 ============================================================
18:58:52.0191 2132 ACPI (fcb8c7210f0135e24c6580f7f649c73c) C:\Windows\system32\drivers\acpi.sys
18:58:52.0202 2132 ACPI - ok
18:58:52.0312 2132 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
18:58:52.0343 2132 adp94xx - ok
18:58:52.0409 2132 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
18:58:52.0432 2132 adpahci - ok
18:58:52.0495 2132 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
18:58:52.0502 2132 adpu160m - ok
18:58:52.0583 2132 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
18:58:52.0590 2132 adpu320 - ok
18:58:52.0742 2132 AFD (48eb99503533c27ac6135648e5474457) C:\Windows\system32\drivers\afd.sys
18:58:52.0763 2132 AFD - ok
18:58:52.0894 2132 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
18:58:52.0898 2132 agp440 - ok
18:58:52.0950 2132 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
18:58:52.0955 2132 aic78xx - ok
18:58:53.0027 2132 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
18:58:53.0030 2132 aliide - ok
18:58:53.0123 2132 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
18:58:53.0126 2132 amdagp - ok
18:58:53.0182 2132 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
18:58:53.0185 2132 amdide - ok
18:58:53.0256 2132 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
18:58:53.0260 2132 AmdK7 - ok
18:58:53.0304 2132 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
18:58:53.0308 2132 AmdK8 - ok
18:58:53.0462 2132 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
18:58:53.0466 2132 arc - ok
18:58:53.0545 2132 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
18:58:53.0550 2132 arcsas - ok
18:58:53.0630 2132 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
18:58:53.0633 2132 AsyncMac - ok
18:58:53.0677 2132 atapi (2d9c903dc76a66813d350a562de40ed9) C:\Windows\system32\drivers\atapi.sys
18:58:53.0679 2132 atapi - ok
18:58:53.0799 2132 athr (fa4e39b289d3a9606f03c90a933b2b1f) C:\Windows\system32\DRIVERS\athr.sys
18:58:53.0835 2132 athr - ok
18:58:54.0015 2132 BCM43XV (cf6a67c90951e3e763d2135dede44b85) C:\Windows\system32\DRIVERS\bcmwl6.sys
18:58:54.0039 2132 BCM43XV - ok
18:58:54.0127 2132 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
18:58:54.0129 2132 Beep - ok
18:58:54.0243 2132 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
18:58:54.0247 2132 blbdrive - ok
18:58:54.0375 2132 bowser (8153396d5551276227fa146900f734e6) C:\Windows\system32\DRIVERS\bowser.sys
18:58:54.0379 2132 bowser - ok
18:58:54.0478 2132 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
18:58:54.0481 2132 BrFiltLo - ok
18:58:54.0553 2132 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
18:58:54.0557 2132 BrFiltUp - ok
18:58:54.0678 2132 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
18:58:54.0687 2132 Brserid - ok
18:58:54.0744 2132 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
18:58:54.0748 2132 BrSerWdm - ok
18:58:54.0819 2132 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
18:58:54.0821 2132 BrUsbMdm - ok
18:58:54.0874 2132 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
18:58:54.0876 2132 BrUsbSer - ok
18:58:54.0956 2132 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
18:58:54.0963 2132 BTHMODEM - ok
18:58:55.0134 2132 catchme - ok
18:58:55.0331 2132 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
18:58:55.0334 2132 cdfs - ok
18:58:55.0401 2132 cdrom (1ec25cea0de6ac4718bf89f9e1778b57) C:\Windows\system32\DRIVERS\cdrom.sys
18:58:55.0406 2132 cdrom - ok
18:58:55.0444 2132 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
18:58:55.0449 2132 circlass - ok
18:58:55.0505 2132 CLFS (465745561c832b29f7c48b488aab3842) C:\Windows\system32\CLFS.sys
18:58:55.0517 2132 CLFS - ok
18:58:55.0672 2132 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
18:58:55.0675 2132 CmBatt - ok
18:58:55.0725 2132 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
18:58:55.0728 2132 cmdide - ok
18:58:55.0834 2132 COH_Mon (6186b6b953bdc884f0f379b84b3e3a98) C:\Windows\system32\Drivers\COH_Mon.sys
18:58:55.0837 2132 COH_Mon - ok
18:58:55.0961 2132 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
18:58:55.0964 2132 Compbatt - ok
18:58:56.0051 2132 CO_Mon (73f5d6835bfa66019c03e316d99649da) C:\Windows\system32\drivers\CO_Mon.sys
18:58:56.0054 2132 CO_Mon - ok
18:58:56.0176 2132 cpuz134 - ok
18:58:56.0316 2132 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
18:58:56.0319 2132 crcdisk - ok
18:58:56.0365 2132 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
18:58:56.0368 2132 Crusoe - ok
18:58:56.0488 2132 CVirtA (b5ecadf7708960f1818c7fa015f4c239) C:\Windows\system32\DRIVERS\CVirtA.sys
18:58:56.0491 2132 CVirtA - ok
18:58:56.0628 2132 DfsC (a3e9fa213f443ac77c7746119d13feec) C:\Windows\system32\Drivers\dfsc.sys
18:58:56.0633 2132 DfsC - ok
18:58:56.0799 2132 disk (64109e623abd6955c8fb110b592e68b7) C:\Windows\system32\drivers\disk.sys
18:58:56.0804 2132 disk - ok
18:58:56.0982 2132 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
18:58:56.0988 2132 Dot4 - ok
18:58:57.0090 2132 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
18:58:57.0093 2132 Dot4Print - ok
18:58:57.0141 2132 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
18:58:57.0146 2132 dot4usb - ok
18:58:57.0356 2132 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
18:58:57.0359 2132 drmkaud - ok
18:58:57.0495 2132 dsiarhwprog (f35b5d0cc142b87e687fc504baa69d82) C:\Windows\system32\Drivers\dsiarhwprog.sys
18:58:57.0498 2132 dsiarhwprog - ok
18:58:57.0618 2132 DXGKrnl (85f33880b8cfb554bd3d9ccdb486845a) C:\Windows\System32\drivers\dxgkrnl.sys
18:58:57.0657 2132 DXGKrnl - ok
18:58:57.0781 2132 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
18:58:57.0788 2132 E1G60 - ok
18:58:57.0993 2132 Ecache (dd2cd259d83d8b72c02c5f2331ff9d68) C:\Windows\system32\drivers\ecache.sys
18:58:57.0999 2132 Ecache - ok
18:58:58.0117 2132 eeCtrl (8f7dbc4be48f5388a6fe1f285e7948ef) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
18:58:58.0132 2132 eeCtrl - ok
18:58:58.0316 2132 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
18:58:58.0341 2132 elxstor - ok
18:58:58.0455 2132 EraserUtilDrvI10 - ok
18:58:58.0542 2132 EraserUtilRebootDrv (3ee14d400e0fdd0d214275a4a20b7022) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:58:58.0549 2132 EraserUtilRebootDrv - ok
18:58:58.0682 2132 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
18:58:58.0686 2132 ErrDev - ok
18:58:58.0863 2132 exfat (0d858eb20589a34efb25695acaa6aa2d) C:\Windows\system32\drivers\exfat.sys
18:58:58.0869 2132 exfat - ok
18:58:58.0936 2132 fastfat (3c489390c2e2064563727752af8eab9e) C:\Windows\system32\drivers\fastfat.sys
18:58:58.0944 2132 fastfat - ok
18:58:59.0037 2132 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
18:58:59.0040 2132 fdc - ok
18:58:59.0168 2132 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
18:58:59.0172 2132 FileInfo - ok
18:58:59.0227 2132 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
18:58:59.0230 2132 Filetrace - ok
18:58:59.0287 2132 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
18:58:59.0290 2132 flpydisk - ok
18:58:59.0352 2132 FltMgr (05ea53afe985443011e36dab07343b46) C:\Windows\system32\drivers\fltmgr.sys
18:58:59.0360 2132 FltMgr - ok
18:58:59.0443 2132 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
18:58:59.0446 2132 Fs_Rec - ok
18:58:59.0515 2132 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
18:58:59.0520 2132 gagp30kx - ok
18:58:59.0637 2132 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
18:58:59.0640 2132 GEARAspiWDM - ok
18:58:59.0839 2132 HdAudAddService (7be40bb4cd16d8760e18ea981ff452ec) C:\Windows\system32\drivers\CHDART.sys
18:58:59.0846 2132 HdAudAddService - ok
18:58:59.0920 2132 HDAudBus (c87b1ee051c0464491c1a7b03fa0bc99) C:\Windows\system32\DRIVERS\HDAudBus.sys
18:58:59.0923 2132 HDAudBus - ok
18:58:59.0983 2132 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
18:58:59.0987 2132 HidBth - ok
18:59:00.0093 2132 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
18:59:00.0096 2132 HidIr - ok
18:59:00.0232 2132 HidUsb (854ca287ab7faf949617a788306d967e) C:\Windows\system32\DRIVERS\hidusb.sys
18:59:00.0238 2132 HidUsb - ok
18:59:00.0507 2132 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
18:59:00.0511 2132 HpCISSs - ok
18:59:00.0664 2132 HpqKbFiltr (35956140e686d53bf676cf0c778880fc) C:\Windows\system32\DRIVERS\HpqKbFiltr.sys
18:59:00.0670 2132 HpqKbFiltr - ok
18:59:00.0722 2132 HpqRemHid (115c0933b3ed51dfbec4449348c8065b) C:\Windows\system32\DRIVERS\HpqRemHid.sys
18:59:00.0726 2132 HpqRemHid - ok
18:59:00.0856 2132 HSFHWAZL (46d67209550973257601a533e2ac5785) C:\Windows\system32\DRIVERS\VSTAZL3.SYS
18:59:00.0865 2132 HSFHWAZL - ok
18:59:00.0964 2132 HSF_DPV (1882827f41dee51c70e24c567c35bfb5) C:\Windows\system32\DRIVERS\HSX_DPV.sys
18:59:01.0014 2132 HSF_DPV - ok
18:59:01.0071 2132 HSXHWAZL (a44ddf3ba83e4664bf4de9220097578c) C:\Windows\system32\DRIVERS\HSXHWAZL.sys
18:59:01.0079 2132 HSXHWAZL - ok
18:59:01.0148 2132 HTTP (96e241624c71211a79c84f50a8e71cab) C:\Windows\system32\drivers\HTTP.sys
18:59:01.0172 2132 HTTP - ok
18:59:01.0257 2132 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
18:59:01.0260 2132 i2omp - ok
18:59:01.0354 2132 i8042prt (1060f1377f395a242e27719440ece602) C:\Windows\system32\DRIVERS\i8042prt.sys
18:59:01.0358 2132 i8042prt - ok
18:59:01.0423 2132 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
18:59:01.0433 2132 iaStorV - ok
18:59:01.0589 2132 IDSvix86 (ce5d5aaba62949b9bfa44d0eaf2d93e5) C:\PROGRA~2\Symantec\DEFINI~1\SymcData\ipsdefs\20081014.001\IDSvix86.sys
18:59:01.0615 2132 IDSvix86 - ok
18:59:01.0706 2132 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
18:59:01.0710 2132 iirsp - ok
18:59:01.0816 2132 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
18:59:01.0819 2132 intelide - ok
18:59:01.0909 2132 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
18:59:01.0913 2132 intelppm - ok
18:59:02.0040 2132 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
18:59:02.0044 2132 IpFilterDriver - ok
18:59:02.0127 2132 IpInIp - ok
18:59:02.0205 2132 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
18:59:02.0209 2132 IPMIDRV - ok
18:59:02.0274 2132 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
18:59:02.0279 2132 IPNAT - ok
18:59:02.0411 2132 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
18:59:02.0414 2132 IRENUM - ok
18:59:02.0469 2132 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
18:59:02.0473 2132 isapnp - ok
18:59:02.0536 2132 iScsiPrt (f247eec28317f6c739c16de420097301) C:\Windows\system32\DRIVERS\msiscsi.sys
18:59:02.0546 2132 iScsiPrt - ok
18:59:02.0637 2132 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
18:59:02.0641 2132 iteatapi - ok
18:59:02.0707 2132 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
18:59:02.0710 2132 iteraid - ok
18:59:02.0785 2132 kbdclass (b076b2ab806b3f696dab21375389101c) C:\Windows\system32\DRIVERS\kbdclass.sys
18:59:02.0790 2132 kbdclass - ok
18:59:02.0862 2132 kbdhid (18247836959ba67e3511b62846b9c2e0) C:\Windows\system32\DRIVERS\kbdhid.sys
18:59:02.0865 2132 kbdhid - ok
18:59:02.0966 2132 KSecDD (7a0cf7908b6824d6a2a1d313e5ae3dca) C:\Windows\system32\Drivers\ksecdd.sys
18:59:02.0989 2132 KSecDD - ok
18:59:03.0142 2132 Lavasoft Kernexplorer - ok
18:59:03.0256 2132 Lbd - ok
18:59:03.0471 2132 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
18:59:03.0475 2132 lltdio - ok
18:59:03.0582 2132 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
18:59:03.0587 2132 LSI_FC - ok
18:59:03.0669 2132 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
18:59:03.0674 2132 LSI_SAS - ok
18:59:03.0765 2132 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
18:59:03.0770 2132 LSI_SCSI - ok
18:59:03.0821 2132 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
18:59:03.0827 2132 luafv - ok
18:59:03.0994 2132 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\Windows\system32\drivers\mbam.sys
18:59:03.0996 2132 MBAMProtector - ok
18:59:04.0198 2132 MDC8021X (d7010580bf4e45d5e793a1fe75758c69) C:\Windows\system32\DRIVERS\mdc8021x.sys
18:59:04.0201 2132 MDC8021X - ok
18:59:04.0230 2132 mdmxsdk (0cea2d0d3fa284b85ed5b68365114f76) C:\Windows\system32\DRIVERS\mdmxsdk.sys
18:59:04.0234 2132 mdmxsdk - ok
18:59:04.0307 2132 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
18:59:04.0310 2132 megasas - ok
18:59:04.0433 2132 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
18:59:04.0458 2132 MegaSR - ok
18:59:04.0570 2132 mfeapfk (d0813cf480e3d38a265f3be86522bf3b) C:\Windows\system32\drivers\mfeapfk.sys
18:59:04.0574 2132 mfeapfk - ok
18:59:04.0632 2132 mfeavfk (04440cc0f5f89933babd585cc5f2f70e) C:\Windows\system32\drivers\mfeavfk.sys
18:59:04.0639 2132 mfeavfk - ok
18:59:04.0704 2132 mfebopk (f6e257c31e0c354a2ed22bf5026c2466) C:\Windows\system32\drivers\mfebopk.sys
18:59:04.0709 2132 mfebopk - ok
18:59:04.0789 2132 mfehidk (79fae8ce9a478f79b74873a810c8227e) C:\Windows\system32\drivers\mfehidk.sys
18:59:04.0813 2132 mfehidk - ok
18:59:04.0879 2132 mferkdet (f21bf10a3784e52eec925bb5f7d3fffa) C:\Windows\system32\drivers\mferkdet.sys
18:59:04.0886 2132 mferkdet - ok
18:59:04.0936 2132 mferkdk - ok
18:59:05.0027 2132 mfetdik (f2d4d0f8e230257a0be36df803b549d1) C:\Windows\system32\drivers\mfetdik.sys
18:59:05.0031 2132 mfetdik - ok
18:59:05.0202 2132 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
18:59:05.0206 2132 Modem - ok
18:59:05.0318 2132 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
18:59:05.0321 2132 monitor - ok
18:59:05.0380 2132 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
18:59:05.0393 2132 mouclass - ok
18:59:05.0460 2132 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
18:59:05.0463 2132 mouhid - ok
18:59:05.0593 2132 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
18:59:05.0622 2132 MountMgr - ok
18:59:05.0712 2132 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
18:59:05.0717 2132 mpio - ok
18:59:05.0801 2132 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
18:59:05.0805 2132 mpsdrv - ok
18:59:05.0866 2132 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
18:59:05.0870 2132 Mraid35x - ok
18:59:05.0931 2132 MRxDAV (ae3de84536b6799d2267443cec8edbb9) C:\Windows\system32\drivers\mrxdav.sys
18:59:05.0938 2132 MRxDAV - ok
18:59:06.0139 2132 mrxsmb (5734a0f2be7e495f7d3ed6efd4b9f5a1) C:\Windows\system32\DRIVERS\mrxsmb.sys
18:59:06.0162 2132 mrxsmb - ok
18:59:06.0271 2132 mrxsmb10 (6b5fa5adfacac9dbbe0991f4566d7d55) C:\Windows\system32\DRIVERS\mrxsmb10.sys
18:59:06.0289 2132 mrxsmb10 - ok
18:59:06.0404 2132 mrxsmb20 (5c80d8159181c7abf1b14ba703b01e0b) C:\Windows\system32\DRIVERS\mrxsmb20.sys
18:59:06.0422 2132 mrxsmb20 - ok
18:59:06.0631 2132 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
18:59:06.0635 2132 msahci - ok
18:59:06.0719 2132 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
18:59:06.0724 2132 msdsm - ok
18:59:06.0852 2132 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
18:59:06.0855 2132 Msfs - ok
18:59:06.0961 2132 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
18:59:06.0976 2132 msisadrv - ok
18:59:07.0093 2132 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
18:59:07.0096 2132 MSKSSRV - ok
18:59:07.0159 2132 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
18:59:07.0162 2132 MSPCLOCK - ok
18:59:07.0201 2132 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
18:59:07.0205 2132 MSPQM - ok
18:59:07.0293 2132 MsRPC (b5614aecb05a9340aa0fb55bf561cc63) C:\Windows\system32\drivers\MsRPC.sys
18:59:07.0301 2132 MsRPC - ok
18:59:07.0396 2132 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
18:59:07.0400 2132 mssmbios - ok
18:59:07.0450 2132 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
18:59:07.0454 2132 MSTEE - ok
18:59:07.0497 2132 Mup (6dfd1d322de55b0b7db7d21b90bec49c) C:\Windows\system32\Drivers\mup.sys
18:59:07.0501 2132 Mup - ok
18:59:07.0626 2132 NativeWifiP (3c21ce48ff529bb73dadb98770b54025) C:\Windows\system32\DRIVERS\nwifi.sys
18:59:07.0645 2132 NativeWifiP - ok
18:59:07.0713 2132 NAVENG - ok
18:59:07.0737 2132 NAVEX15 - ok
18:59:08.0001 2132 NDIS (9bdc71790fa08f0a0b5f10462b1bd0b1) C:\Windows\system32\drivers\ndis.sys
18:59:08.0020 2132 NDIS - ok
18:59:08.0117 2132 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
18:59:08.0120 2132 NdisTapi - ok
18:59:08.0182 2132 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
18:59:08.0185 2132 Ndisuio - ok
18:59:08.0268 2132 NdisWan (3d14c3b3496f88890d431e8aa022a411) C:\Windows\system32\DRIVERS\ndiswan.sys
18:59:08.0275 2132 NdisWan - ok
18:59:08.0350 2132 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
18:59:08.0355 2132 NDProxy - ok
18:59:08.0522 2132 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
18:59:08.0541 2132 NetBIOS - ok
18:59:08.0629 2132 netbt (7c5fee5b1c5728507cd96fb4a13e7a02) C:\Windows\system32\DRIVERS\netbt.sys
18:59:08.0665 2132 netbt - ok
18:59:08.0838 2132 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
18:59:08.0842 2132 nfrd960 - ok
18:59:08.0967 2132 Npfs (ecb5003f484f9ed6c608d6d6c7886cbb) C:\Windows\system32\drivers\Npfs.sys
18:59:08.0971 2132 Npfs - ok
18:59:09.0051 2132 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
18:59:09.0054 2132 nsiproxy - ok
18:59:09.0191 2132 Ntfs (b4effe29eb4f15538fd8a9681108492d) C:\Windows\system32\drivers\Ntfs.sys
18:59:09.0237 2132 Ntfs - ok
18:59:09.0299 2132 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
18:59:09.0302 2132 ntrigdigi - ok
18:59:09.0361 2132 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
18:59:09.0363 2132 Null - ok
18:59:09.0551 2132 NVENETFD (a1108084b0d2fc43dcc401735770e2a3) C:\Windows\system32\DRIVERS\nvmfdx32.sys
18:59:09.0606 2132 NVENETFD - ok
18:59:10.0142 2132 nvlddmkm (b36c3b866b0d47e2e2856ec8fd746e39) C:\Windows\system32\DRIVERS\nvlddmkm.sys
18:59:10.0448 2132 nvlddmkm - ok
18:59:10.0573 2132 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
18:59:10.0579 2132 nvraid - ok
18:59:10.0664 2132 nvsmu (9aebc32f9d6e02ebee0369ab296fe7c8) C:\Windows\system32\DRIVERS\nvsmu.sys
18:59:10.0683 2132 nvsmu - ok
18:59:10.0900 2132 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
18:59:10.0904 2132 nvstor - ok
18:59:11.0012 2132 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
18:59:11.0018 2132 nv_agp - ok
18:59:11.0069 2132 NwlnkFlt - ok
18:59:11.0130 2132 NwlnkFwd - ok
18:59:11.0244 2132 ohci1394 (790e27c3db53410b40ff9ef2fd10a1d9) C:\Windows\system32\DRIVERS\ohci1394.sys
18:59:11.0249 2132 ohci1394 - ok
18:59:11.0494 2132 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
18:59:11.0512 2132 Parport - ok
18:59:11.0684 2132 partmgr (3b38467e7c3daed009dfe359e17f139f) C:\Windows\system32\drivers\partmgr.sys
18:59:11.0701 2132 partmgr - ok
18:59:11.0775 2132 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
18:59:11.0778 2132 Parvdm - ok
18:59:11.0873 2132 pci (01b94418deb235dff777cc80076354b4) C:\Windows\system32\drivers\pci.sys
18:59:11.0908 2132 pci - ok
18:59:11.0939 2132 pciide (fc175f5ddab666d7f4d17449a547626f) C:\Windows\system32\drivers\pciide.sys
18:59:11.0943 2132 pciide - ok
18:59:12.0025 2132 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
18:59:12.0033 2132 pcmcia - ok
18:59:12.0141 2132 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
18:59:12.0197 2132 PEAUTH - ok
18:59:12.0468 2132 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
18:59:12.0472 2132 PptpMiniport - ok
18:59:12.0531 2132 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
18:59:12.0535 2132 Processor - ok
18:59:12.0637 2132 PSched (bfef604508a0ed1eae2a73e872555ffb) C:\Windows\system32\DRIVERS\pacer.sys
18:59:12.0642 2132 PSched - ok
18:59:12.0677 2132 pywdewao - ok
18:59:12.0971 2132 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
18:59:13.0026 2132 ql2300 - ok
18:59:13.0345 2132 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
18:59:13.0370 2132 ql40xx - ok
18:59:13.0594 2132 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
18:59:13.0600 2132 QWAVEdrv - ok
18:59:13.0657 2132 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
18:59:13.0668 2132 RasAcd - ok
18:59:13.0727 2132 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
18:59:13.0733 2132 Rasl2tp - ok
18:59:13.0814 2132 RasPppoe (3e9d9b048107b40d87b97df2e48e0744) C:\Windows\system32\DRIVERS\raspppoe.sys
18:59:13.0819 2132 RasPppoe - ok
18:59:13.0891 2132 RasSstp (a7d141684e9500ac928a772ed8e6b671) C:\Windows\system32\DRIVERS\rassstp.sys
18:59:13.0896 2132 RasSstp - ok
18:59:13.0964 2132 rdbss (6e1c5d0457622f9ee35f683110e93d14) C:\Windows\system32\DRIVERS\rdbss.sys
18:59:13.0973 2132 rdbss - ok
18:59:14.0034 2132 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
18:59:14.0038 2132 RDPCDD - ok
18:59:14.0106 2132 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
18:59:14.0116 2132 rdpdr - ok
18:59:14.0157 2132 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
18:59:14.0160 2132 RDPENCDD - ok
18:59:14.0240 2132 RDPWD (e1c18f4097a5abcec941dc4b2f99db7e) C:\Windows\system32\drivers\RDPWD.sys
18:59:14.0249 2132 RDPWD - ok
18:59:14.0275 2132 RegKernelHelp - ok
18:59:14.0453 2132 rimmptsk (355aac141b214bef1dbc1483afd9bd50) C:\Windows\system32\DRIVERS\rimmptsk.sys
18:59:14.0465 2132 rimmptsk - ok
18:59:14.0561 2132 rimsptsk (a4216c71dd4f60b26418ccfd99cd0815) C:\Windows\system32\DRIVERS\rimsptsk.sys
18:59:14.0565 2132 rimsptsk - ok
18:59:14.0607 2132 rismxdp (d231b577024aa324af13a42f3a807d10) C:\Windows\system32\DRIVERS\rixdptsk.sys
18:59:14.0612 2132 rismxdp - ok
18:59:14.0710 2132 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
18:59:14.0717 2132 rspndr - ok
18:59:14.0833 2132 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
18:59:14.0838 2132 sbp2port - ok
18:59:14.0992 2132 sdbus (126ea89bcc413ee45e3004fb0764888f) C:\Windows\system32\DRIVERS\sdbus.sys
18:59:14.0998 2132 sdbus - ok
18:59:15.0067 2132 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
18:59:15.0070 2132 secdrv - ok
18:59:15.0161 2132 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
18:59:15.0164 2132 Serenum - ok
18:59:15.0218 2132 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
18:59:15.0226 2132 Serial - ok
18:59:15.0298 2132 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
18:59:15.0301 2132 sermouse - ok
18:59:15.0419 2132 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\DRIVERS\sffdisk.sys
18:59:15.0422 2132 sffdisk - ok
18:59:15.0489 2132 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
18:59:15.0493 2132 sffp_mmc - ok
18:59:15.0544 2132 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\DRIVERS\sffp_sd.sys
18:59:15.0549 2132 sffp_sd - ok
18:59:15.0601 2132 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
18:59:15.0605 2132 sfloppy - ok
18:59:15.0682 2132 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
18:59:15.0687 2132 sisagp - ok
18:59:15.0752 2132 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
18:59:15.0757 2132 SiSRaid2 - ok
18:59:15.0836 2132 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
18:59:15.0841 2132 SiSRaid4 - ok
18:59:15.0989 2132 Smb (031e6bcd53c9b2b9ace111eafec347b6) C:\Windows\system32\DRIVERS\smb.sys
18:59:15.0994 2132 Smb - ok
18:59:16.0170 2132 SPBBCDrv (dc4dc886d3779c446f9b0e9d6b006e72) C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys
18:59:16.0194 2132 SPBBCDrv - ok
18:59:16.0275 2132 SpiderG3 - ok
18:59:16.0377 2132 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
18:59:16.0380 2132 spldr - ok
18:59:16.0488 2132 SRTSP (655773f2f1a3730c6cf20280a49f4ee1) C:\Windows\system32\Drivers\SRTSP.SYS
18:59:16.0500 2132 SRTSP - ok
18:59:16.0595 2132 SRTSPL (2a0aaf370d4c6574a34ae2f4a0709cae) C:\Windows\system32\Drivers\SRTSPL.SYS
18:59:16.0619 2132 SRTSPL - ok
18:59:16.0716 2132 SRTSPX (3104bdceace2d5710776dd05e6a286c1) C:\Windows\system32\Drivers\SRTSPX.SYS
18:59:16.0720 2132 SRTSPX - ok
18:59:16.0805 2132 srv (2252aef839b1093d16761189f45af885) C:\Windows\system32\DRIVERS\srv.sys
18:59:16.0828 2132 srv - ok
18:59:16.0915 2132 srv2 (b7ff59408034119476b00a81bb53d5d1) C:\Windows\system32\DRIVERS\srv2.sys
18:59:16.0922 2132 srv2 - ok
18:59:16.0968 2132 srvnet (2accc9b12af02030f531e6cca6f8b76e) C:\Windows\system32\DRIVERS\srvnet.sys
18:59:16.0975 2132 srvnet - ok
18:59:17.0150 2132 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
18:59:17.0154 2132 swenum - ok
18:59:17.0232 2132 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
18:59:17.0236 2132 Symc8xx - ok
18:59:17.0341 2132 SYMDNS (fe9f8b3a8bc22d85332b42e92308ddf9) C:\Windows\System32\Drivers\SYMDNS.SYS
18:59:17.0344 2132 SYMDNS - ok
18:59:17.0407 2132 SymEvent (06b95820df51502099a8a15c93e87986) C:\Windows\system32\Drivers\SYMEVENT.SYS
18:59:17.0413 2132 SymEvent - ok
18:59:17.0563 2132 SYMFW (a0ea9d273889e53cfaabf2444692ccbf) C:\Windows\System32\Drivers\SYMFW.SYS
18:59:17.0568 2132 SYMFW - ok
18:59:17.0656 2132 SymIM (8eab28dd6cd25355b951ae460fa86b48) C:\Windows\system32\DRIVERS\SymIMv.sys
18:59:17.0659 2132 SymIM - ok
18:59:17.0688 2132 SymIMMP - ok
18:59:17.0780 2132 SYMNDISV (c94eaca4b522012ee0691f1e79c42a7d) C:\Windows\System32\Drivers\SYMNDISV.SYS
18:59:17.0784 2132 SYMNDISV - ok
18:59:17.0882 2132 SYMREDRV (7c6505ea598e58099d3b7e1f70426864) C:\Windows\System32\Drivers\SYMREDRV.SYS
18:59:17.0887 2132 SYMREDRV - ok
18:59:17.0941 2132 SYMTDI (e6ff7ace71d07ca90119f2c6ab592ba4) C:\Windows\System32\Drivers\SYMTDI.SYS
18:59:17.0951 2132 SYMTDI - ok
18:59:18.0013 2132 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
18:59:18.0019 2132 Sym_hi - ok
18:59:18.0071 2132 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
18:59:18.0075 2132 Sym_u3 - ok
18:59:18.0134 2132 SynTP (bf7aa84d5af0faa0978c840e63b17dbf) C:\Windows\system32\DRIVERS\SynTP.sys
18:59:18.0144 2132 SynTP - ok
18:59:18.0321 2132 Tcpip (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\drivers\tcpip.sys
18:59:18.0363 2132 Tcpip - ok
18:59:18.0452 2132 Tcpip6 (782568ab6a43160a159b6215b70bcce9) C:\Windows\system32\DRIVERS\tcpip.sys
18:59:18.0471 2132 Tcpip6 - ok
18:59:18.0566 2132 tcpipreg (d4a2e4a4b011f3a883af77315a5ae76b) C:\Windows\system32\drivers\tcpipreg.sys
18:59:18.0570 2132 tcpipreg - ok
18:59:18.0620 2132 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
18:59:18.0625 2132 TDPIPE - ok
18:59:18.0676 2132 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
18:59:18.0680 2132 TDTCP - ok
18:59:18.0729 2132 tdx (d09276b1fab033ce1d40dcbdf303d10f) C:\Windows\system32\DRIVERS\tdx.sys
18:59:18.0737 2132 tdx - ok
18:59:18.0841 2132 TermDD (a048056f5e1a96a9bf3071b91741a5aa) C:\Windows\system32\DRIVERS\termdd.sys
18:59:18.0855 2132 TermDD - ok
18:59:19.0091 2132 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
18:59:19.0095 2132 tssecsrv - ok
18:59:19.0166 2132 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
18:59:19.0169 2132 tunmp - ok
18:59:19.0225 2132 tunnel (6042505ff6fa9ac1ef7684d0e03b6940) C:\Windows\system32\DRIVERS\tunnel.sys
18:59:19.0228 2132 tunnel - ok
18:59:19.0277 2132 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
18:59:19.0282 2132 uagp35 - ok
18:59:19.0351 2132 udfs (8b5088058fa1d1cd897a2113ccff6c58) C:\Windows\system32\DRIVERS\udfs.sys
18:59:19.0361 2132 udfs - ok
18:59:19.0492 2132 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
18:59:19.0497 2132 uliagpkx - ok
18:59:19.0605 2132 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
18:59:19.0615 2132 uliahci - ok
18:59:19.0692 2132 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
18:59:19.0699 2132 UlSata - ok
18:59:19.0794 2132 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
18:59:19.0800 2132 ulsata2 - ok
18:59:19.0881 2132 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
18:59:19.0884 2132 umbus - ok
18:59:20.0007 2132 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\Windows\system32\Drivers\usbaapl.sys
18:59:20.0012 2132 USBAAPL - ok
18:59:20.0072 2132 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
18:59:20.0080 2132 usbccgp - ok
18:59:20.0151 2132 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
18:59:20.0156 2132 usbcir - ok
18:59:20.0238 2132 usbehci (cebe90821810e76320155beba722fcf9) C:\Windows\system32\DRIVERS\usbehci.sys
18:59:20.0242 2132 usbehci - ok
18:59:20.0317 2132 usbhub (cc6b28e4ce39951357963119ce47b143) C:\Windows\system32\DRIVERS\usbhub.sys
18:59:20.0326 2132 usbhub - ok
18:59:20.0400 2132 usbohci (7bdb7b0e7d45ac0402d78b90789ef47c) C:\Windows\system32\DRIVERS\usbohci.sys
18:59:20.0404 2132 usbohci - ok
18:59:20.0488 2132 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
18:59:20.0491 2132 usbprint - ok
18:59:20.0563 2132 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
18:59:20.0567 2132 usbscan - ok
18:59:20.0626 2132 USBSTOR (87ba6b83c5d19b69160968d07d6e2982) C:\Windows\system32\DRIVERS\USBSTOR.SYS
18:59:20.0631 2132 USBSTOR - ok
18:59:20.0695 2132 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
18:59:20.0699 2132 usbuhci - ok
18:59:20.0774 2132 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
18:59:20.0780 2132 usbvideo - ok
18:59:20.0873 2132 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
18:59:20.0877 2132 vga - ok
18:59:20.0943 2132 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
18:59:20.0947 2132 VgaSave - ok
18:59:21.0005 2132 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
18:59:21.0030 2132 viaagp - ok
18:59:21.0160 2132 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
18:59:21.0165 2132 ViaC7 - ok
18:59:21.0205 2132 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
18:59:21.0208 2132 viaide - ok
18:59:21.0299 2132 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
18:59:21.0304 2132 volmgr - ok
18:59:21.0365 2132 volmgrx (98f5ffe6316bd74e9e2c97206c190196) C:\Windows\system32\drivers\volmgrx.sys
18:59:21.0386 2132 volmgrx - ok
18:59:21.0433 2132 volsnap (d8b4a53dd2769f226b3eb374374987c9) C:\Windows\system32\drivers\volsnap.sys
18:59:21.0446 2132 volsnap - ok
18:59:21.0513 2132 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
18:59:21.0520 2132 vsmraid - ok
18:59:21.0629 2132 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
18:59:21.0632 2132 WacomPen - ok
18:59:21.0675 2132 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:59:21.0679 2132 Wanarp - ok
18:59:21.0708 2132 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
18:59:21.0712 2132 Wanarpv6 - ok
18:59:21.0800 2132 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
18:59:21.0804 2132 Wd - ok
18:59:21.0871 2132 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
18:59:21.0904 2132 Wdf01000 - ok
18:59:22.0075 2132 winachsf (e096ffb754f1e45ae1bddac1275ae2c5) C:\Windows\system32\DRIVERS\HSX_CNXT.sys
18:59:22.0110 2132 winachsf - ok
18:59:22.0345 2132 WlanUIG (01a3d371863250118591fb829eec91ac) C:\Windows\system32\DRIVERS\WlanUIG.sys
18:59:22.0359 2132 WlanUIG - ok
18:59:22.0416 2132 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\DRIVERS\wmiacpi.sys
18:59:22.0419 2132 WmiAcpi - ok
18:59:22.0585 2132 WpdUsb (0cec23084b51b8288099eb710224e955) C:\Windows\system32\DRIVERS\wpdusb.sys
18:59:22.0589 2132 WpdUsb - ok
18:59:22.0702 2132 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
18:59:22.0705 2132 ws2ifsl - ok
18:59:22.0860 2132 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
18:59:22.0866 2132 WUDFRd - ok
18:59:22.0940 2132 XAudio (19e7c173b6242ad7521e537ae54768bf) C:\Windows\system32\DRIVERS\xaudio.sys
18:59:22.0946 2132 XAudio - ok
18:59:23.0075 2132 MBR (0x1B8) (1a1a06f62e891045814007163c1c76c3) \Device\Harddisk0\DR0
18:59:23.0117 2132 \Device\Harddisk0\DR0 - ok
18:59:23.0133 2132 Boot (0x1200) (0d58f86005da2213beab1543be5ed097) \Device\Harddisk0\DR0\Partition0
18:59:23.0135 2132 \Device\Harddisk0\DR0\Partition0 - ok
18:59:23.0157 2132 Boot (0x1200) (7f28142866938740324274d1260a6a2c) \Device\Harddisk0\DR0\Partition1
18:59:23.0159 2132 \Device\Harddisk0\DR0\Partition1 - ok
18:59:23.0170 2132 ============================================================
18:59:23.0171 2132 Scan finished
18:59:23.0171 2132 ============================================================
18:59:23.0219 5164 Detected object count: 0
18:59:23.0219 5164 Actual detected object count: 0

#6 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:03:45 PM

Posted 05 November 2011 - 07:18 PM

I'm not sure what I did but it must have been (accidentally) right.


:lol:

Well, whatever did happen the TDSSKiller program did cure your problem. Please run aswMBR so we can check

Please download aswMBR ( 511KB ) to your desktop.
  • Double click the aswMBR.exe icon to run it
  • Click the Scan button to start the scan
  • On completion of the scan, click the save log button, save it to your desktop and post it in your next reply.

Posted Image
m0le is a proud member of UNITE

#7 miri.um

miri.um
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:45 AM

Posted 05 November 2011 - 07:36 PM

aswMBR version 0.9.8.986 Copyright© 2011 AVAST Software
Run date: 2011-11-05 19:28:54
-----------------------------
19:28:54.006 OS Version: Windows 6.0.6001 Service Pack 1
19:28:54.007 Number of processors: 2 586 0x6802
19:28:54.012 ComputerName: ZACK UserName:
19:29:46.877 Initialize success
19:29:47.003 write error "aswCmnB.dll". The process cannot access the file because it is being used by another process.
19:30:35.331 AVAST engine download error: 0
19:30:49.948 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IdeDeviceP2T0L0-3
19:30:49.957 Disk 0 Vendor: ST9200827AS 3.BHA Size: 190782MB BusType: 3
19:30:52.037 Disk 0 MBR read successfully
19:30:52.049 Disk 0 MBR scan
19:30:52.059 Disk 0 unknown MBR code
19:30:52.084 Disk 0 scanning sectors +390716865
19:30:52.149 Disk 0 scanning C:\Windows\system32\drivers
19:30:59.955 Service scanning
19:31:02.203 Modules scanning
19:31:10.427 Disk 0 trace - called modules:
19:31:10.610 ntkrnlpa.exe CLASSPNP.SYS disk.sys acpi.sys hal.dll ataport.SYS pciide.sys ndis.sys nvmfdx32.sys
19:31:10.625 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0x85b64968]
19:31:11.065 3 CLASSPNP.SYS[89f0b745] -> nt!IofCallDriver -> [0x852ed918]
19:31:11.083 5 acpi.sys[806086a0] -> nt!IofCallDriver -> \Device\Ide\IdeDeviceP2T0L0-3[0x852b0ba0]
19:31:11.103 Scan finished successfully
19:32:29.242 Disk 0 MBR has been saved successfully to "C:\Users\Miriam\Desktop\MBR.dat"
19:32:29.534 The log file has been saved successfully to "C:\Users\Miriam\Desktop\aswMBR.txt"

#8 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:03:45 PM

Posted 05 November 2011 - 07:47 PM

Looks good. :thumbup2:

Can you scan with ESET next up

I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • Copy and paste the resulting log in your next reply
If no log is generated that means nothing was found. Please let me know if this happens.
Posted Image
m0le is a proud member of UNITE

#9 miri.um

miri.um
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:45 AM

Posted 05 November 2011 - 08:03 PM

I try running the programs but it stops and says "Can not get update. Is proxy configured?"

#10 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:03:45 PM

Posted 05 November 2011 - 08:04 PM

In Internet Explorer: Tools Menu -> Internet Options -> Connections Tab ->Lan Settings > uncheck "use a proxy server" and check to "Automatically detect settings".

In Firefox you find the Proxy server settings this like this. In Tools Menu -> Options... -> Advanced Tab -> Network Tab -> "Settings" under Connection Select "auto-detect Proxy settings for this network"
Posted Image
m0le is a proud member of UNITE

#11 miri.um

miri.um
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:45 AM

Posted 05 November 2011 - 08:24 PM

I followed the instructions you gave me but it still says "Can not get update. Is proxy configured?"

#12 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:03:45 PM

Posted 05 November 2011 - 08:49 PM

Please run BitDefender instead

Please run a BitDefender QuickScan
  • Click Start Scanner
  • Click Start Scan

    If you are running Firefox you should accept the installation of the Plug-in and restart Firefox
    If you are running Internet Explorer then allow the ActiveX control to install when prompted.


  • Click Start Scan
  • Check the I ACCEPT box on the EULA and click OK
When the scan has finished, it should take about a minute, click View Log and copy and paste the log into your next reply.
Posted Image
m0le is a proud member of UNITE

#13 miri.um

miri.um
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:45 AM

Posted 05 November 2011 - 09:01 PM

QuickScan Beta 32-bit v0.9.9.99
-------------------------------
Scan date: Sat Nov 05 21:00:11 2011
Machine ID: 60A0226C



Found 1 infected file!
----------------------

C:\Windows\system32\c_47915.nl_ --> Gen:Trojan.Heur.Hype.cqW@aCfAJ1b



Processes
---------
(verified) Adobe Reader and Acrobat Manager 3996 C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(verified) DivX Update 3916 C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(verified) Firefox 1980 C:\Program Files\Mozilla Firefox\firefox.exe
(verified) Google Desktop 3768 C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(verified) Google Update 2640 C:\Users\Miriam\AppData\Local\Google\Update\1.3.21.79\GoogleCrashHandler.exe
(verified) GrooveMonitor Utility 4008 C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(verified) HP Wireless Assistant 3664 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(verified) HP Wireless Assistant 3744 C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
(verified) HpqToaster Module 3800 C:\Program Files\Hewlett-Packard\Shared\HpqToaster.exe
(verified) Malwarebytes' Anti-Malware 4044 C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(verified) McAfee Agent 3872 C:\Program Files\McAfee\Common Framework\UdaterUI.exe
(verified) McAfee Common Framework 2380 C:\Program Files\McAfee\Common Framework\McTray.exe
(verified) Microsoft® Windows® Operating System 2240 C:\Program Files\Windows Media Player\wmpnscfg.exe
(verified) Microsoft® Windows® Operating System 3024 C:\Windows\ehome\ehmsas.exe
(verified) Microsoft® Windows® Operating System 4056 C:\Windows\ehome\ehtray.exe
(verified) Microsoft® Windows® Operating System 3348 C:\Windows\explorer.exe
(verified) Microsoft® Windows® Operating System 3292 C:\Windows\System32\dwm.exe
(verified) Microsoft® Windows® Operating System 3388 C:\Windows\System32\taskeng.exe
(verified) Microsoft® Windows® Operating System 1232 C:\Windows\System32\wercon.exe
(verified) Microsoft® Windows® Operating System 3100 C:\Windows\System32\wuauclt.exe
(verified) Synaptics Pointing Device Driver 3604 C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(verified) VirusScan Enterprise 3888 C:\Program Files\McAfee\VirusScan Enterprise\shstat.exe
(verified) Windows Defender 3616 C:\Program Files\Windows Defender\MSASCui.exe


Network activity
----------------
Process firefox.exe (1980) connected on port 80 (HTTP) --> 74.125.227.0
Process firefox.exe (1980) connected on port 80 (HTTP) --> 66.220.145.46
Process firefox.exe (1980) connected on port 80 (HTTP) --> 23.0.225.55
Process firefox.exe (1980) connected on port 443 (HTTP over SSL) --> 72.172.232.84
Process firefox.exe (1980) connected on port 80 (HTTP) --> 128.194.178.208
Process firefox.exe (1980) connected on port 80 (HTTP) --> 74.125.227.59
Process firefox.exe (1980) connected on port 80 (HTTP) --> 128.194.178.225
Process firefox.exe (1980) connected on port 80 (HTTP) --> 98.129.232.76
Process firefox.exe (1980) connected on port 80 (HTTP) --> 74.86.64.162
Process firefox.exe (1980) connected on port 80 (HTTP) --> 69.171.224.40
Process firefox.exe (1980) connected on port 80 (HTTP) --> 69.171.224.40
Process firefox.exe (1980) connected on port 80 (HTTP) --> 69.5.93.23
Process firefox.exe (1980) connected on port 80 (HTTP) --> 74.125.47.96
Process firefox.exe (1980) connected on port 80 (HTTP) --> 74.125.227.57
Process firefox.exe (1980) connected on port 80 (HTTP) --> 66.235.142.2



Autoruns and critical files
---------------------------
Mozilla Firefox C:\Program Files\Mozilla Firefox
(verified) Adobe Acrobat C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe
(verified) Adobe Reader and Acrobat Manager C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(verified) DivX Update C:\Program Files\DivX\DivX Update\DivXUpdate.exe
(verified) Google Desktop C:\Program Files\Google\Google Desktop Search\GoogleDesktop.exe
(verified) Google Desktop C:\Program Files\Google\Google Desktop Search\GoogleDesktopNetwork3.dll
(verified) Google Update C:\Users\Miriam\AppData\Local\Google\Update\GoogleUpdate.exe
(verified) GrooveMonitor Utility C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
(verified) GrooveShellExtensions Module C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
(verified) HP Health Check Scheduler c:\Program Files\Hewlett-Packard\HP Health Check\HPHC_Scheduler.exe
(verified) HP Wireless Assistant C:\Program Files\Hewlett-Packard\HP Wireless Assistant\HPWAMain.exe
(verified) HP Wireless Assistant C:\Program Files\Hewlett-Packard\HP Wireless Assistant\WiFiMsg.exe
(verified) Malwarebytes' Anti-Malware C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe
(verified) McAfee Agent C:\Program Files\McAfee\Common Framework\UdaterUI.exe
(verified) Microsoft® Windows® Operating System C:\Windows\ehome\ehtray.exe
(verified) Microsoft® Windows® Operating System C:\Windows\system32\BROWSEUI.dll
(verified) Microsoft® Windows® Operating System C:\Windows\system32\ssText3d.scr
(verified) Microsoft® Windows® Operating System c:\windows\system32\userinit.exe
(verified) Norton AntiVirus c:\Program Files\Norton Internet Security\Norton AntiVirus\Navw32.exe
(verified) Symantec Security Technologies c:\Program Files\Common Files\Symantec Shared\ccApp.exe
(verified) Synaptics Pointing Device Driver C:\Program Files\Synaptics\SynTP\SynTPEnh.exe
(verified) VirusScan Enterprise C:\Program Files\McAfee\VirusScan Enterprise\shstat.exe
(verified) Windows Defender C:\Program Files\Windows Defender\MSASCui.exe
(verified) Windows® Internet Explorer C:\Windows\system32\msfeedssync.exe
(verified) Windows® Internet Explorer C:\Windows\System32\webcheck.dll


Browser plugins
---------------
(unsigned) frozen.dll C:\Users\Miriam\AppData\Roaming\Mozilla\Firefox\Profiles\mgb83vlh.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
(unsigned) googletoolbar-ff3.dll C:\Users\Miriam\AppData\Roaming\Mozilla\Firefox\Profiles\mgb83vlh.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar-ff3.dll
(unsigned) googletoolbar-ff4.dll C:\Users\Miriam\AppData\Roaming\Mozilla\Firefox\Profiles\mgb83vlh.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff4.dll

(verified) 2007 Microsoft Office system C:\Program Files\Mozilla Firefox\plugins\NPOFF12.DLL
(verified) AcroIEHelperShim Library c:\program files\common files\adobe\acrobat\activex\acroiehelpershim.dll
(verified) Adobe Acrobat C:\Program Files\Internet Explorer\plugins\nppdf32.dll
(verified) Adobe Acrobat C:\Program Files\Mozilla Firefox\plugins\nppdf32.dll
(verified) ArmHelper Control C:\Windows\Downloaded Program Files\armhelper.ocx
(verified) BitDefender QuickScan C:\Users\Miriam\AppData\Roaming\Mozilla\Firefox\Profiles\mgb83vlh.default\extensions\{e001c731-5e37-4538-a5cb-8168736a2360}\plugins\npqscan.dll
(verified) Bonjour C:\Program Files\Bonjour\mdnsNSP.dll
(verified) BrowserPlus (from Yahoo!) v2.9.8 C:\Users\Miriam\AppData\Local\Yahoo!\BrowserPlus\2.9.8\Plugins\npybrowserplus_2.9.8.dll
(verified) DivX Web Player C:\Program Files\DivX\DivX Web Player\npdivx32.dll
(verified) DivX Web Player C:\Program Files\Mozilla Firefox\plugins\npdivx32.dll
(verified) Google Toolbar for IE c:\program files\google\googletoolbar1.dll
(verified) Google Update C:\Users\Miriam\AppData\Local\Google\Update\1.3.21.79\npGoogleUpdate3.dll
(verified) GoogleToolbarNotifier c:\program files\google\googletoolbarnotifier\5.2.4204.1700\swg.dll
(verified) GrooveShellExtensions Module C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
(verified) HP Smart Web Printing c:\program files\hp\digital imaging\smart web printing\hpswp_bho.dll
(verified) Java Deployment Toolkit 6.0.170.4 C:\Program Files\Mozilla Firefox\plugins\npdeploytk.dll
(verified) Java™ Platform SE 6 U17 c:\program files\java\jre6\bin\jp2ssv.dll
(verified) MetaStream 3 Plugin C:\Program Files\Viewpoint\Viewpoint Experience Technology\npViewpoint.dll
(verified) Microsoft® Windows Media Player Firefox C:\Program Files\Mozilla Firefox\plugins\np-mswmp.dll
(verified) Microsoft® Windows® Operating System C:\Windows\system32\mswsock.dll
(verified) Microsoft® Windows® Operating System C:\Windows\system32\napinsp.dll
(verified) Microsoft® Windows® Operating System C:\Windows\system32\pnrpnsp.dll
(verified) Microsoft® Windows® Operating System C:\Windows\System32\winrnr.dll
(verified) Move Media Player 7 C:\Users\Miriam\AppData\Roaming\Move Networks\plugins\071803000001\npqmp071803000001.dll
(verified) Mozilla Default Plug-in C:\Program Files\Mozilla Firefox\plugins\npnul32.dll
(verified) Norton Confidential c:\program files\common files\symantec shared\coshared\browser\2.0\coieplg.dll
(verified) npitunes.dll C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll
(verified) NPSWF32.dll C:\Windows\system32\Macromed\Flash\NPSWF32.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin2.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin3.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin4.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin5.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin6.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Internet Explorer\plugins\npqtplugin7.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Mozilla Firefox\plugins\npqtplugin.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Mozilla Firefox\plugins\npqtplugin2.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Mozilla Firefox\plugins\npqtplugin3.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Mozilla Firefox\plugins\npqtplugin4.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Mozilla Firefox\plugins\npqtplugin5.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Mozilla Firefox\plugins\npqtplugin6.dll
(verified) QuickTime Plug-in 7.6.6 C:\Program Files\Mozilla Firefox\plugins\npqtplugin7.dll
(verified) RealJukebox NS Plugin C:\Program Files\Mozilla Firefox\plugins\nprjplug.dll
(verified) RealJukebox NS Plugin C:\Program Files\Real\RealPlayer\Netscape6\nprjplug.dll
(verified) RealPlayer Download and Record Plugin c:\program files\real\realplayer\rpbrowserrecordplugin.dll
(verified) RealPlayer Version Plugin C:\Program Files\Mozilla Firefox\plugins\nprpjplug.dll
(verified) RealPlayer Version Plugin C:\Program Files\Real\RealPlayer\Netscape6\nprpjplug.dll
(verified) RealPlayer™ G2 LiveConnect-Enabled P C:\Program Files\Mozilla Firefox\plugins\nppl3260.dll
(verified) RealPlayer™ G2 LiveConnect-Enabled P C:\Program Files\Real\RealPlayer\Netscape6\nppl3260.dll
(verified) Shockwave for Director C:\Windows\system32\Adobe\Director\np32dsw.dll
(verified) Silverlight Plug-In c:\Program Files\Microsoft Silverlight\4.0.60831.0\npctrl.dll
(verified) Skype Toolbars c:\program files\skype\toolbars\internet explorer\skypeieplugin.dll
(verified) Symantec Intrusion Detection c:\program files\common files\symantec shared\ids\ipsbho.dll
(verified) The OpenSSL Toolkit C:\Program Files\Mozilla Firefox\plugins\libdivx.dll
(verified) The OpenSSL Toolkit C:\Program Files\Mozilla Firefox\plugins\ssldivx.dll
(verified) TODO: <Product name> C:\Users\Miriam\AppData\Roaming\Mozilla\Firefox\Profiles\mgb83vlh.default\extensions\{635abd67-4fe9-1b23-4f01-e679fa7484c1}\components\XPATLCOM.dll
(verified) unagiuninst.exe C:\Windows\Downloaded Program Files\unagiuninst.exe
(verified) VSCORE.14.1.0.447.x86 C:\Program Files\McAfee\VirusScan Enterprise\scriptsn.dll
(verified) Windows Presentation Foundation c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
(verified) Windows® Internet Explorer C:\Windows\system32\ieframe.dll
(verified) Yahoo Application State Plugin C:\Program Files\Yahoo!\Shared\npYState.dll
(verified) Yahoo! IE Services c:\program files\yahoo!\common\yiesrvc.dll
(verified) Yahoo! Single Instance for Mail c:\program files\yahoo!\companion\installs\cpn1\ytsingleinstance.dll
(verified) Yahoo! Toolbar c:\program files\yahoo!\companion\installs\cpn1\yt.dll


Missing files
-------------
File not found: c:\program files\fast browser search\ie\fbstoolbar.dll
--> HKLM\Software\Classes\CLSID\{1BB22D38-A411-4B13-A746-C2A4F4EC7344}\InprocServer32\"(default)"

File not found: c:\program files\sgpsa\mtwb3sh.dll
--> HKLM\Software\Classes\CLSID\{91C18ED5-5E1C-4AE5-A148-A861DE8C8E16}\InprocServer32\"(default)"


Scan
----
MD5: 3816347bc988dbfd8530b540e6e7dfd2 C:\Program Files\Bonjour\mDNSResponder.exe
MD5: 4bcb7fd347cf65a77c5c7b58ba2af8a5 C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe
MD5: 7a52e1618d9d549f018f5fb75fdcaea8 C:\Program Files\Common Files\LightScribe\LSSrvc.exe
MD5: ecfa272b8bc446ddebc75d8681663c4a C:\Program Files\CyberLink\Shared Files\RichVideo.exe
MD5: 59dac066b544f434f3ef8fbe52bcf6cf C:\Program Files\Google\Google Desktop Search\GoogleServices.DLL
MD5: bdae15341804a778ff73c172b4e5e066 c:\Program Files\Hewlett-Packard\HP Health Check\hphc_service.exe
MD5: 71fd36a7a5df2e2636a74345becffbbd C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe
MD5: 64240ed239e862460ea1e2a1c1f8ba83 C:\Program Files\HP\QuickPlay\Kernel\TV\QPCapSvc.exe
MD5: fe4500f45300c7b5a399e654dc6322f3 C:\Program Files\HP\QuickPlay\Kernel\TV\QPSched.exe
MD5: 8ff1c8b9028996a350eabf591fc2fafc C:\Program Files\iPod\bin\iPodService.exe
MD5: cd09c31868e6bad6d8be39bf27fdd433 C:\Program Files\McAfee\Common Framework\FrameworkService.exe
MD5: 388f1d1315f245ece0f66c6e1924ca51 C:\Program Files\McAfee\VirusScan Enterprise\EngineServer.exe
MD5: 2b12302f4584c7d961f532917c609d9f C:\Program Files\McAfee\VirusScan Enterprise\VsTskMgr.exe
MD5: 387b4d860bd0ea6a10ce6bb4376ffe25 c:\Program Files\Symantec\LiveUpdate\AluSchedulerSvc.exe
MD5: d3ede5f41ab9cd5d98fe64e75f46c497 c:\Program Files\Symantec\LiveUpdate\LuComServer_3_4.EXE
MD5: 296043801a69a0ed8e80f18777f40d5e C:\PROGRA~1\COMMON~1\SYMANT~1\CCPD-LC\symlcsvc.exe
MD5: 8c3de46457b62e82035bfb1cba29fd7d C:\Users\Miriam\AppData\Roaming\Mozilla\Firefox\Profiles\mgb83vlh.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\frozen.dll
MD5: 182bc06b8cddb225f1d9444e0af88003 C:\Users\Miriam\AppData\Roaming\Mozilla\Firefox\Profiles\mgb83vlh.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\components\googletoolbar-ff3.dll
MD5: eb28fe2670c1670cd077c3976f6a68f7 C:\Users\Miriam\AppData\Roaming\Mozilla\Firefox\Profiles\mgb83vlh.default\extensions\{3112ca9c-de6d-4884-a869-9855de68056c}\libraries\googletoolbar-ff4.dll
MD5: 543ab789792624d338d809d350602a67 C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe
MD5: acb952081671a77105da291f6db2a9ef C:\Windows\system32\c_47915.nl_
MD5: 5ff0beac0fc83e4e546d82bd829b5ed8 C:\Windows\system32\DRIVERS\xaudio.exe
MD5: b2f6d3f162d1ac6ce0b11c8bbb5d2125 C:\Windows\system32\lxdicoms.exe
MD5: c6d4b32840db538a16385053de59e6e2 C:\Windows\system32\mfevtps.exe
MD5: f77b66a1c3895b3aede6b4751f8655ee C:\Windows\system32\nvvsvc.exe
MD5: 7266c8dc81c44a802b122439c434bd5e C:\Windows\system32\spool\DRIVERS\W32X86\3\\lxdiserv.exe
MD5: d5e459bed3db9cf7fc6cc1455f177d2d C:\Windows\WinSxS\x86_microsoft.vc80.atl_1fc8b3b9a1e18e3b_8.0.50727.6195_none_d1cb102c435421de\ATL80.DLL


No file uploaded.

Scan finished - communication took 1 sec
Total traffic - 0.00 MB sent, 0.14 KB recvd
Scanned 764 files and modules - 6 seconds

==============================================================================

#14 m0le

m0le

    Can U Dig It?


  • Malware Response Team
  • 34,527 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:London, UK
  • Local time:03:45 PM

Posted 05 November 2011 - 09:08 PM

One infected file but the detection may be false.

Please make sure that you can view all hidden files. Instructions on how to do this can be found here:

How to see hidden files in Windows

Go to Jotti

When the jotti page has finished loading, click the Browse button and navigate to the following file and click Submit.

C:\Windows\system32\c_47915.nl_

Please post back the results of the scan in your next post.

If Jotti is busy, try the same at VirusTotal
Posted Image
m0le is a proud member of UNITE

#15 miri.um

miri.um
  • Topic Starter

  • Members
  • 28 posts
  • OFFLINE
  •  
  • Local time:10:45 AM

Posted 05 November 2011 - 09:46 PM

ile name:
c_47915.nl_
Submission date:
2011-11-06 02:29:08 (UTC)
Current status:
queued queued analysing finished
Result:
30/ 43 (69.8%)


Antivirus Version Last update Result
AhnLab-V3 2011.11.05.01 2011.11.05 Trojan/Win32.ZAccess
AntiVir 7.11.17.18 2011.11.04 TR/ATRAPS.Gen2
Antiy-AVL 2.0.3.7 2011.11.06 -
Avast 6.0.1289.0 2011.11.05 Win32:Alureon-AJI [Rtk]
AVG 10.0.0.1190 2011.11.05 Dropper.Agent.ARQJ
BitDefender 7.2 2011.11.06 Gen:Trojan.Heur.Hype.cqW@aCfAJ1b
ByteHero 1.0.0.1 2011.11.04 Trojan.Win32.Heur.Gen
CAT-QuickHeal 11.00 2011.11.05 -
ClamAV 0.97.3.0 2011.11.06 Trojan.Rootkit-3105
Commtouch 5.3.2.6 2011.11.05 W32/Smadow.A.gen!Eldorado
Comodo 10680 2011.11.06 UnclassifiedMalware
DrWeb 5.0.2.03300 2011.11.06 Trojan.Inject.53003
Emsisoft 5.1.0.11 2011.11.06 Backdoor.Win32.Smadow!IK
eSafe 7.0.17.0 2011.11.02 -
eTrust-Vet 36.1.8657 2011.11.05 Win32/Smadow.P
F-Prot 4.6.5.141 2011.11.05 W32/Smadow.A.gen!Eldorado
F-Secure 9.0.16440.0 2011.11.06 Gen:Variant.Sirefef.7
Fortinet 4.3.370.0 2011.11.06 W32/ZAccess.E!tr.bdr
GData 22 2011.11.06 Gen:Trojan.Heur.Hype.cqW@aCfAJ1b
Ikarus T3.1.1.107.0 2011.11.05 Backdoor.Win32.Smadow
Jiangmin 13.0.900 2011.11.05 Rootkit.ZAccess.cj
K7AntiVirus 9.117.5398 2011.11.05 Backdoor
Kaspersky 9.0.0.837 2011.11.06 Backdoor.Win32.ZAccess.aqo
McAfee 5.400.0.1158 2011.11.06 -
McAfee-GW-Edition 2010.1D 2011.11.05 Heuristic.BehavesLike.Win32.Suspicious.A
Microsoft 1.7801 2011.11.05 Backdoor:Win32/Smadow.gen!B
NOD32 6604 2011.11.06 a variant of Win32/Sirefef.CR
Norman 6.07.13 2011.11.05 W32/ZAccess.G
nProtect 2011-11-05.01 2011.11.05 -
Panda 10.0.3.5 2011.11.05 Generic Trojan
PCTools 8.0.0.5 2011.11.06 -
Prevx 3.0 2011.11.06 -
Rising 23.82.02.02 2011.11.02 -
Sophos 4.71.0 2011.11.06 Troj/Luiha-T
SUPERAntiSpyware 4.40.0.1006 2011.11.05 Trojan.Agent/Gen-Medder
Symantec 20111.2.0.82 2011.11.06 -
TheHacker 6.7.0.1.338 2011.11.04 Trojan/Sirefef.cr
TrendMicro 9.500.0.1008 2011.11.05 -
TrendMicro-HouseCall 9.500.0.1008 2011.11.06 -
VBA32 3.12.16.4 2011.11.04 Rootkit.ZAccess.e
VIPRE 10976 2011.11.06 Trojan.Win32.Sirefef.cr (v)
ViRobot 2011.11.5.4757 2011.11.05 -
VirusBuster 14.1.48.0 2011.11.05 -
MD5: acb952081671a77105da291f6db2a9ef
SHA1: 9beca0964e73e753f826f665995420e531b984bf
SHA256: 31f51ac8f5fdb92ab10a070f42ee0c86d4298f4dac3c5dd5eb81a1191fbe2c1e
File size: 48016 bytes
Scan date: 2011-11-06 02:29:08 (UTC)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users