Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Infected Computer Help


  • This topic is locked This topic is locked
12 replies to this topic

#1 jg49

jg49

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 11 November 2011 - 12:56 PM

Hello,

I have a laptop that was infected with the system restore virus. In trying to get rid of the virus I discovered that it also had 2 rootkit viruses. 1 was pmax. TDSS killer took care of 1 and I think Malwarebytes took care of the other as well as the System Restore. Now the computer scans come up clean, although I am unable to update Malwarebytes and the Internet browsers do not work. I can ping an address on the Internet, but IE and Firefox both return a page not found. In addition I can not open the Trend PC-cillin control panel and the icon in the system tray disappears when I hover the mouse over it. Also, a lot of programs that are installed show up as empty when I try access them through the Start menu. I am guessing there is still some bad stuff on this laptop and I'm hoping for some help.

Thanks,
Jay

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:46 PM

Posted 11 November 2011 - 03:47 PM

Hello,
I'd like us to scan your machine with ESET OnlineScan
  • Hold down Control and click on the following link to open ESET OnlineScan in a new window.
    ESET OnlineScan
  • Click the Posted Image button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on Posted Image to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the Posted Image icon on your desktop.
  • Check Posted Image
  • Click the Posted Image button.
  • Accept any security warnings from your browser.
  • Under scan settings, check Posted Image and check Remove found threats
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, push Posted Image
  • Push Posted Image, and save the file to your desktop using a unique name, such as ESETScan. Include the contents of this report in your next reply.
  • Push the Posted Image button.
  • Push Posted Image


[color="#8B0000"]NOTE: In some instances if no malware is found there will be no log produced.[/colo


Rerun TDSS killer and post that log.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 jg49

jg49
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 13 November 2011 - 11:49 AM

ESET will not install. I am getting a meassage that says, "Can not get update. Is proxy configured?"

Thanks for the help.

TDSS logs below:

11:41:39.0578 2272 TDSS rootkit removing tool 2.6.16.0 Nov 7 2011 16:26:51
11:41:39.0593 2272 ============================================================
11:41:39.0593 2272 Current date / time: 2011/11/13 11:41:39.0593
11:41:39.0593 2272 SystemInfo:
11:41:39.0593 2272
11:41:39.0593 2272 OS Version: 5.1.2600 ServicePack: 2.0
11:41:39.0593 2272 Product type: Workstation
11:41:39.0593 2272 ComputerName: ANITA
11:41:39.0593 2272 UserName: Anita Santilli 1128
11:41:39.0593 2272 Windows directory: C:\WINDOWS
11:41:39.0593 2272 System windows directory: C:\WINDOWS
11:41:39.0593 2272 Processor architecture: Intel x86
11:41:39.0593 2272 Number of processors: 2
11:41:39.0593 2272 Page size: 0x1000
11:41:39.0593 2272 Boot type: Normal boot
11:41:39.0593 2272 ============================================================
11:41:42.0375 2272 Initialize success
11:42:36.0062 2988 ============================================================
11:42:36.0062 2988 Scan started
11:42:36.0062 2988 Mode: Manual;
11:42:36.0062 2988 ============================================================
11:42:37.0890 2988 73917782 - ok
11:42:38.0796 2988 Abiosdsk - ok
11:42:39.0734 2988 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
11:42:39.0750 2988 abp480n5 - ok
11:42:40.0859 2988 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
11:42:40.0968 2988 ACPI - ok
11:42:41.0921 2988 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
11:42:41.0937 2988 ACPIEC - ok
11:42:43.0015 2988 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
11:42:43.0093 2988 adpu160m - ok
11:42:44.0265 2988 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
11:42:44.0296 2988 aec - ok
11:42:45.0343 2988 AFD (5ac495f4cb807b2b98ad2ad591e6d92e) C:\WINDOWS\System32\drivers\afd.sys
11:42:45.0375 2988 AFD - ok
11:42:46.0546 2988 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
11:42:46.0562 2988 agp440 - ok
11:42:47.0562 2988 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
11:42:47.0578 2988 agpCPQ - ok
11:42:48.0625 2988 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
11:42:48.0625 2988 Aha154x - ok
11:42:49.0625 2988 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
11:42:49.0656 2988 aic78u2 - ok
11:42:50.0765 2988 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
11:42:50.0796 2988 aic78xx - ok
11:42:51.0781 2988 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
11:42:51.0781 2988 AliIde - ok
11:42:52.0828 2988 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
11:42:52.0859 2988 alim1541 - ok
11:42:54.0031 2988 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
11:42:54.0046 2988 amdagp - ok
11:42:55.0250 2988 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
11:42:55.0265 2988 amsint - ok
11:42:56.0546 2988 APPDRV (ec94e05b76d033b74394e7b2175103cf) C:\WINDOWS\SYSTEM32\DRIVERS\APPDRV.SYS
11:42:56.0562 2988 APPDRV - ok
11:42:57.0750 2988 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
11:42:57.0781 2988 Arp1394 - ok
11:42:58.0843 2988 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
11:42:58.0859 2988 asc - ok
11:42:59.0921 2988 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
11:42:59.0937 2988 asc3350p - ok
11:43:00.0843 2988 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
11:43:00.0859 2988 asc3550 - ok
11:43:01.0968 2988 ASCTRM (d880831279ed91f9a4190a2db9539ea9) C:\WINDOWS\system32\drivers\ASCTRM.sys
11:43:01.0968 2988 ASCTRM - ok
11:43:03.0140 2988 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
11:43:03.0156 2988 AsyncMac - ok
11:43:04.0375 2988 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
11:43:04.0390 2988 atapi - ok
11:43:05.0390 2988 Atdisk - ok
11:43:07.0312 2988 ati2mtag (2573c08729dd52b7b4f18df1592e0b37) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
11:43:08.0171 2988 ati2mtag - ok
11:43:09.0343 2988 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
11:43:09.0390 2988 Atmarpc - ok
11:43:10.0484 2988 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
11:43:10.0500 2988 audstub - ok
11:43:12.0171 2988 BCM43XX (b89bcf0a25aeb3b47030ac83287f894a) C:\WINDOWS\system32\DRIVERS\bcmwl5.sys
11:43:12.0593 2988 BCM43XX - ok
11:43:13.0765 2988 bcm4sbxp (cd4646067cc7dcba1907fa0acf7e3966) C:\WINDOWS\system32\DRIVERS\bcm4sbxp.sys
11:43:13.0781 2988 bcm4sbxp - ok
11:43:14.0843 2988 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
11:43:14.0843 2988 Beep - ok
11:43:15.0984 2988 btaudio (8893ae0b6b9b60e0521a60e8b2160216) C:\WINDOWS\system32\drivers\btaudio.sys
11:43:16.0156 2988 btaudio - ok
11:43:17.0187 2988 BTDriver (fde318e3569f57264af74b7e431f60ae) C:\WINDOWS\system32\DRIVERS\btport.sys
11:43:17.0203 2988 BTDriver - ok
11:43:18.0640 2988 BTKRNL (9c3c8b9e2eda516eb44b51dab81dbd68) C:\WINDOWS\system32\DRIVERS\btkrnl.sys
11:43:19.0125 2988 BTKRNL - ok
11:43:20.0187 2988 BTSERIAL (089f7526ff41c17b0a43896d0553d5a2) C:\WINDOWS\system32\drivers\btserial.sys
11:43:20.0203 2988 BTSERIAL - ok
11:43:21.0281 2988 BTWDNDIS (28531ab3183f498e58d93d585e6a6b70) C:\WINDOWS\system32\DRIVERS\btwdndis.sys
11:43:21.0359 2988 BTWDNDIS - ok
11:43:22.0484 2988 btwhid (c5c0e21c67089f053b964e0a8b8adbac) C:\WINDOWS\system32\DRIVERS\btwhid.sys
11:43:22.0500 2988 btwhid - ok
11:43:23.0453 2988 btwmodem (7d295223c172ab4d61dc256721b2f09e) C:\WINDOWS\system32\DRIVERS\btwmodem.sys
11:43:23.0484 2988 btwmodem - ok
11:43:24.0546 2988 BTWUSB (56c701580f2891952761362ba7594b3d) C:\WINDOWS\system32\Drivers\btwusb.sys
11:43:24.0578 2988 BTWUSB - ok
11:43:24.0703 2988 catchme - ok
11:43:25.0828 2988 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
11:43:25.0859 2988 cbidf - ok
11:43:26.0968 2988 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
11:43:26.0968 2988 cbidf2k - ok
11:43:28.0078 2988 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
11:43:28.0109 2988 cd20xrnt - ok
11:43:29.0171 2988 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
11:43:29.0187 2988 Cdaudio - ok
11:43:30.0203 2988 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
11:43:30.0234 2988 Cdfs - ok
11:43:31.0312 2988 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
11:43:31.0343 2988 Cdrom - ok
11:43:32.0375 2988 Changer - ok
11:43:33.0343 2988 CmBatt (4266be808f85826aedf3c64c1e240203) C:\WINDOWS\system32\DRIVERS\CmBatt.sys
11:43:33.0359 2988 CmBatt - ok
11:43:34.0421 2988 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
11:43:34.0437 2988 CmdIde - ok
11:43:35.0484 2988 Compbatt (df1b1a24bf52d0ebc01ed4ece8979f50) C:\WINDOWS\system32\DRIVERS\compbatt.sys
11:43:35.0484 2988 Compbatt - ok
11:43:36.0515 2988 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
11:43:36.0531 2988 Cpqarray - ok
11:43:37.0953 2988 CSS DVP (10d08460d2415b38d4179d91a6ae3a25) C:\WINDOWS\system32\DRIVERS\css-dvp.sys
11:43:38.0390 2988 CSS DVP - ok
11:43:39.0546 2988 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
11:43:39.0640 2988 dac2w2k - ok
11:43:40.0625 2988 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
11:43:40.0625 2988 dac960nt - ok
11:43:41.0687 2988 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
11:43:41.0718 2988 Disk - ok
11:43:43.0156 2988 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
11:43:43.0593 2988 dmboot - ok
11:43:44.0734 2988 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
11:43:44.0843 2988 dmio - ok
11:43:45.0890 2988 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
11:43:45.0890 2988 dmload - ok
11:43:46.0875 2988 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
11:43:46.0906 2988 DMusic - ok
11:43:48.0093 2988 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
11:43:48.0109 2988 dpti2o - ok
11:43:49.0078 2988 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
11:43:49.0078 2988 drmkaud - ok
11:43:50.0171 2988 drvmcdb (e814854e6b246ccf498874839ab64d77) C:\WINDOWS\system32\drivers\drvmcdb.sys
11:43:50.0218 2988 drvmcdb - ok
11:43:51.0187 2988 drvnddm (ee83a4ebae70bc93cf14879d062f548b) C:\WINDOWS\system32\drivers\drvnddm.sys
11:43:51.0203 2988 drvnddm - ok
11:43:51.0375 2988 DSproct (2ac2372ffad9adc85672cc8e8ae14be9) C:\Program Files\Dell Support\GTAction\triggers\DSproct.sys
11:43:51.0390 2988 DSproct - ok
11:43:52.0515 2988 E100B (3fca03cbca11269f973b70fa483c88ef) C:\WINDOWS\system32\DRIVERS\e100b325.sys
11:43:52.0593 2988 E100B - ok
11:43:53.0890 2988 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
11:43:53.0968 2988 Fastfat - ok
11:43:55.0265 2988 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
11:43:55.0281 2988 Fdc - ok
11:43:56.0265 2988 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
11:43:56.0281 2988 Fips - ok
11:43:57.0328 2988 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
11:43:57.0343 2988 Flpydisk - ok
11:43:58.0406 2988 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
11:43:58.0437 2988 FltMgr - ok
11:43:59.0531 2988 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
11:43:59.0531 2988 Fs_Rec - ok
11:44:00.0687 2988 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
11:44:00.0750 2988 Ftdisk - ok
11:44:01.0750 2988 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\Drivers\GEARAspiWDM.sys
11:44:01.0765 2988 GEARAspiWDM - ok
11:44:02.0765 2988 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
11:44:02.0781 2988 Gpc - ok
11:44:03.0921 2988 hamachi_oem (c25c70fd4d49391091d9eb8c747f19e6) C:\WINDOWS\system32\DRIVERS\gan_adapter.sys
11:44:03.0921 2988 hamachi_oem - ok
11:44:04.0984 2988 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
11:44:05.0062 2988 HDAudBus - ok
11:44:06.0109 2988 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
11:44:06.0125 2988 HidUsb - ok
11:44:07.0140 2988 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
11:44:07.0156 2988 hpn - ok
11:44:08.0734 2988 HSF_DPV (e8ec1767ea315a39a0dd8989952ca0e9) C:\WINDOWS\system32\DRIVERS\HSX_DPV.sys
11:44:09.0250 2988 HSF_DPV - ok
11:44:10.0421 2988 HSXHWAZL (61478fa42ee04562e7f11f4dca87e9c8) C:\WINDOWS\system32\DRIVERS\HSXHWAZL.sys
11:44:10.0531 2988 HSXHWAZL - ok
11:44:11.0890 2988 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
11:44:12.0015 2988 HTTP - ok
11:44:13.0281 2988 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
11:44:13.0296 2988 i2omgmt - ok
11:44:14.0406 2988 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
11:44:14.0421 2988 i2omp - ok
11:44:15.0875 2988 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
11:44:15.0906 2988 i8042prt - ok
11:44:17.0046 2988 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
11:44:17.0078 2988 Imapi - ok
11:44:18.0109 2988 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
11:44:18.0125 2988 ini910u - ok
11:44:19.0093 2988 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
11:44:19.0093 2988 IntelIde - ok
11:44:20.0218 2988 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
11:44:20.0234 2988 intelppm - ok
11:44:21.0250 2988 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\drivers\ip6fw.sys
11:44:21.0265 2988 Ip6Fw - ok
11:44:22.0453 2988 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
11:44:22.0468 2988 IpFilterDriver - ok
11:44:23.0562 2988 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
11:44:23.0578 2988 IpInIp - ok
11:44:24.0890 2988 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
11:44:24.0968 2988 IpNat - ok
11:44:26.0234 2988 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
11:44:26.0281 2988 IPSec - ok
11:44:27.0281 2988 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
11:44:27.0281 2988 IRENUM - ok
11:44:28.0296 2988 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
11:44:28.0312 2988 isapnp - ok
11:44:29.0359 2988 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
11:44:29.0375 2988 Kbdclass - ok
11:44:30.0515 2988 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
11:44:30.0531 2988 kbdhid - ok
11:44:31.0781 2988 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
11:44:31.0875 2988 kmixer - ok
11:44:33.0093 2988 KSecDD (1be7cc2535d760ae4d481576eb789f24) C:\WINDOWS\system32\drivers\KSecDD.sys
11:44:33.0125 2988 KSecDD - ok
11:44:34.0359 2988 lbrtfdc - ok
11:44:35.0953 2988 mdmxsdk (e246a32c445056996074a397da56e815) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
11:44:35.0953 2988 mdmxsdk - ok
11:44:37.0250 2988 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
11:44:37.0265 2988 MHNDRV - ok
11:44:38.0281 2988 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
11:44:38.0281 2988 mnmdd - ok
11:44:39.0484 2988 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
11:44:39.0484 2988 Modem - ok
11:44:41.0109 2988 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
11:44:41.0125 2988 Mouclass - ok
11:44:42.0703 2988 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
11:44:42.0750 2988 mouhid - ok
11:44:43.0968 2988 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
11:44:43.0984 2988 MountMgr - ok
11:44:45.0031 2988 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
11:44:45.0046 2988 mraid35x - ok
11:44:45.0265 2988 MREMPR5 (2bc9e43f55de8c30fc817ed56d0ee907) C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS
11:44:45.0312 2988 MREMPR5 - ok
11:44:45.0390 2988 MRENDIS5 (594b9d8194e3f4ecbf0325bd10bbeb05) C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS
11:44:45.0390 2988 MRENDIS5 - ok
11:44:46.0593 2988 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
11:44:46.0656 2988 MRxDAV - ok
11:44:47.0984 2988 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
11:44:48.0218 2988 MRxSmb - ok
11:44:49.0250 2988 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
11:44:49.0250 2988 Msfs - ok
11:44:50.0234 2988 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
11:44:50.0234 2988 MSKSSRV - ok
11:44:51.0187 2988 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
11:44:51.0203 2988 MSPCLOCK - ok
11:44:52.0265 2988 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
11:44:52.0281 2988 MSPQM - ok
11:44:53.0312 2988 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
11:44:53.0343 2988 mssmbios - ok
11:44:54.0875 2988 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
11:44:54.0953 2988 Mup - ok
11:44:56.0734 2988 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
11:44:56.0859 2988 NDIS - ok
11:44:58.0046 2988 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
11:44:58.0046 2988 NdisTapi - ok
11:44:59.0125 2988 Ndisuio (eefa1ce63805d2145978621be5c6d955) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
11:44:59.0140 2988 Ndisuio - ok
11:45:00.0562 2988 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
11:45:00.0625 2988 NdisWan - ok
11:45:01.0859 2988 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
11:45:01.0875 2988 NDProxy - ok
11:45:02.0843 2988 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
11:45:02.0859 2988 NetBIOS - ok
11:45:03.0984 2988 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
11:45:04.0078 2988 NetBT - ok
11:45:05.0125 2988 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
11:45:05.0156 2988 NIC1394 - ok
11:45:06.0218 2988 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
11:45:06.0250 2988 Npfs - ok
11:45:07.0593 2988 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
11:45:07.0875 2988 Ntfs - ok
11:45:09.0109 2988 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
11:45:09.0109 2988 Null - ok
11:45:11.0390 2988 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
11:45:12.0609 2988 nv - ok
11:45:13.0765 2988 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
11:45:13.0765 2988 NwlnkFlt - ok
11:45:14.0906 2988 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
11:45:14.0921 2988 NwlnkFwd - ok
11:45:15.0937 2988 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
11:45:15.0968 2988 ohci1394 - ok
11:45:17.0062 2988 omci (b17228142cec9b3c222239fd935a37ca) C:\WINDOWS\system32\DRIVERS\omci.sys
11:45:17.0062 2988 omci - ok
11:45:18.0109 2988 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
11:45:18.0156 2988 Parport - ok
11:45:19.0531 2988 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
11:45:19.0546 2988 PartMgr - ok
11:45:20.0546 2988 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
11:45:20.0546 2988 ParVdm - ok
11:45:21.0562 2988 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
11:45:21.0593 2988 PCI - ok
11:45:22.0546 2988 PCIDump - ok
11:45:23.0484 2988 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
11:45:23.0484 2988 PCIIde - ok
11:45:24.0562 2988 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
11:45:24.0640 2988 Pcmcia - ok
11:45:25.0640 2988 PDCOMP - ok
11:45:26.0625 2988 PDFRAME - ok
11:45:27.0546 2988 PDRELI - ok
11:45:28.0468 2988 PDRFRAME - ok
11:45:29.0406 2988 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
11:45:29.0421 2988 perc2 - ok
11:45:30.0421 2988 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
11:45:30.0421 2988 perc2hib - ok
11:45:31.0640 2988 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
11:45:31.0671 2988 PptpMiniport - ok
11:45:32.0968 2988 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
11:45:33.0000 2988 PSched - ok
11:45:34.0093 2988 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
11:45:34.0109 2988 Ptilink - ok
11:45:35.0078 2988 PxHelp20 (81088114178112618b1c414a65e50f7c) C:\WINDOWS\system32\Drivers\PxHelp20.sys
11:45:35.0093 2988 PxHelp20 - ok
11:45:36.0218 2988 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
11:45:36.0234 2988 ql1080 - ok
11:45:37.0265 2988 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
11:45:37.0296 2988 Ql10wnt - ok
11:45:38.0359 2988 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
11:45:38.0375 2988 ql12160 - ok
11:45:39.0390 2988 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
11:45:39.0421 2988 ql1240 - ok
11:45:40.0906 2988 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
11:45:40.0937 2988 ql1280 - ok
11:45:42.0000 2988 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
11:45:42.0015 2988 RasAcd - ok
11:45:43.0015 2988 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
11:45:43.0046 2988 Rasl2tp - ok
11:45:44.0062 2988 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
11:45:44.0093 2988 RasPppoe - ok
11:45:45.0046 2988 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
11:45:45.0046 2988 Raspti - ok
11:45:46.0109 2988 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
11:45:46.0171 2988 Rdbss - ok
11:45:47.0156 2988 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
11:45:47.0156 2988 RDPCDD - ok
11:45:48.0281 2988 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
11:45:48.0390 2988 rdpdr - ok
11:45:49.0500 2988 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
11:45:49.0531 2988 RDPWD - ok
11:45:50.0593 2988 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
11:45:50.0625 2988 redbook - ok
11:45:51.0703 2988 rimmptsk (24ed7af20651f9fa1f249482e7c1f165) C:\WINDOWS\system32\DRIVERS\rimmptsk.sys
11:45:51.0718 2988 rimmptsk - ok
11:45:52.0750 2988 rimsptsk (1bdba2d2d402415a78a4ba766dfe0f7b) C:\WINDOWS\system32\DRIVERS\rimsptsk.sys
11:45:52.0781 2988 rimsptsk - ok
11:45:53.0890 2988 rismxdp (f774ecd11a064f0debb2d4395418153c) C:\WINDOWS\system32\DRIVERS\rixdptsk.sys
11:45:54.0062 2988 rismxdp - ok
11:45:54.0218 2988 SASDIFSV (39763504067962108505bff25f024345) C:\Program Files\SUPERAntiSpyware\SASDIFSV.SYS
11:45:54.0234 2988 SASDIFSV - ok
11:45:54.0312 2988 SASKUTIL (77b9fc20084b48408ad3e87570eb4a85) C:\Program Files\SUPERAntiSpyware\SASKUTIL.SYS
11:45:54.0343 2988 SASKUTIL - ok
11:45:55.0500 2988 sdbus (02fc71b020ec8700ee8a46c58bc6f276) C:\WINDOWS\system32\DRIVERS\sdbus.sys
11:45:55.0531 2988 sdbus - ok
11:45:56.0562 2988 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
11:45:56.0562 2988 Secdrv - ok
11:45:57.0656 2988 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
11:45:57.0671 2988 serenum - ok
11:45:58.0718 2988 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
11:45:58.0750 2988 Serial - ok
11:45:59.0953 2988 sffdisk (1d9f1bec651815741f088a8fb88e17ee) C:\WINDOWS\system32\DRIVERS\sffdisk.sys
11:45:59.0968 2988 sffdisk - ok
11:46:01.0078 2988 sffp_sd (586499fd312ffd7f78553f408e71682e) C:\WINDOWS\system32\DRIVERS\sffp_sd.sys
11:46:01.0093 2988 sffp_sd - ok
11:46:02.0078 2988 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
11:46:02.0093 2988 Sfloppy - ok
11:46:03.0109 2988 Simbad - ok
11:46:04.0125 2988 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
11:46:04.0140 2988 sisagp - ok
11:46:05.0140 2988 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
11:46:05.0156 2988 Sparrow - ok
11:46:06.0250 2988 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
11:46:06.0250 2988 splitter - ok
11:46:07.0328 2988 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
11:46:07.0359 2988 sr - ok
11:46:08.0562 2988 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
11:46:08.0703 2988 Srv - ok
11:46:09.0718 2988 sscdbhk5 (d7968049be0adbb6a57cee3960320911) C:\WINDOWS\system32\drivers\sscdbhk5.sys
11:46:09.0734 2988 sscdbhk5 - ok
11:46:10.0703 2988 ssrtln (c3ffd65abfb6441e7606cf74f1155273) C:\WINDOWS\system32\drivers\ssrtln.sys
11:46:10.0750 2988 ssrtln - ok
11:46:12.0468 2988 STHDA (3ad78e22210d3fbd9f76de84a8df19b5) C:\WINDOWS\system32\drivers\sthda.sys
11:46:13.0140 2988 STHDA - ok
11:46:14.0453 2988 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
11:46:14.0468 2988 swenum - ok
11:46:15.0625 2988 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
11:46:15.0656 2988 swmidi - ok
11:46:17.0031 2988 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
11:46:17.0062 2988 symc810 - ok
11:46:18.0296 2988 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
11:46:18.0312 2988 symc8xx - ok
11:46:19.0593 2988 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
11:46:19.0609 2988 sym_hi - ok
11:46:20.0968 2988 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
11:46:20.0984 2988 sym_u3 - ok
11:46:22.0375 2988 SynTP (fa2daa32bed908023272a0f77d625dae) C:\WINDOWS\system32\DRIVERS\SynTP.sys
11:46:22.0484 2988 SynTP - ok
11:46:23.0828 2988 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
11:46:24.0000 2988 sysaudio - ok
11:46:25.0593 2988 Tcpip (2a5554fc5b1e04e131230e3ce035c3f9) C:\WINDOWS\system32\DRIVERS\tcpip.sys
11:46:25.0781 2988 Tcpip - ok
11:46:27.0140 2988 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
11:46:27.0140 2988 TDPIPE - ok
11:46:28.0093 2988 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
11:46:28.0109 2988 TDTCP - ok
11:46:29.0140 2988 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
11:46:29.0171 2988 TermDD - ok
11:46:30.0125 2988 tfsnboio (30698355067d07da5f9eb81132c9fdd6) C:\WINDOWS\system32\dla\tfsnboio.sys
11:46:30.0140 2988 tfsnboio - ok
11:46:31.0296 2988 tfsncofs (fb9d825bb4a2abdf24600f7505050e2b) C:\WINDOWS\system32\dla\tfsncofs.sys
11:46:31.0312 2988 tfsncofs - ok
11:46:32.0250 2988 tfsndrct (cafd8cca11aa1e8b6d2ea1ba8f70ec33) C:\WINDOWS\system32\dla\tfsndrct.sys
11:46:32.0250 2988 tfsndrct - ok
11:46:33.0250 2988 tfsndres (8db1e78fbf7c426d8ec3d8f1a33d6485) C:\WINDOWS\system32\dla\tfsndres.sys
11:46:33.0250 2988 tfsndres - ok
11:46:34.0265 2988 tfsnifs (b92f67a71cc8176f331b8aa8d9f555ad) C:\WINDOWS\system32\dla\tfsnifs.sys
11:46:34.0312 2988 tfsnifs - ok
11:46:35.0250 2988 tfsnopio (85985faa9a71e2358fcc2edefc2a3c5c) C:\WINDOWS\system32\dla\tfsnopio.sys
11:46:35.0265 2988 tfsnopio - ok
11:46:36.0281 2988 tfsnpool (bba22094f0f7c210567efdaf11f64495) C:\WINDOWS\system32\dla\tfsnpool.sys
11:46:36.0296 2988 tfsnpool - ok
11:46:37.0515 2988 tfsnudf (81340bef80b9811e98ce64611e67e3ff) C:\WINDOWS\system32\dla\tfsnudf.sys
11:46:37.0625 2988 tfsnudf - ok
11:46:38.0921 2988 tfsnudfa (c035fd116224ccc8325f384776b6a8bb) C:\WINDOWS\system32\dla\tfsnudfa.sys
11:46:39.0000 2988 tfsnudfa - ok
11:46:40.0484 2988 tmcfw (3929c6784db38788d76a88d9c4043dee) C:\WINDOWS\system32\DRIVERS\TM_CFW.sys
11:46:40.0640 2988 tmcfw - ok
11:46:41.0718 2988 tmpreflt (0c89809f1df614bd42093a446b222a32) C:\WINDOWS\system32\DRIVERS\tmpreflt.sys
11:46:41.0750 2988 tmpreflt - ok
11:46:42.0765 2988 tmtdi - ok
11:46:43.0843 2988 tmxpflt (3d473e97ff805dab903aa66f08286c90) C:\WINDOWS\system32\drivers\TmXPFlt.sys
11:46:43.0953 2988 tmxpflt - ok
11:46:44.0968 2988 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
11:46:44.0984 2988 TosIde - ok
11:46:46.0046 2988 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
11:46:46.0078 2988 Udfs - ok
11:46:47.0203 2988 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
11:46:47.0265 2988 ultra - ok
11:46:48.0609 2988 Update (ced744117e91bdc0beb810f7d8608183) C:\WINDOWS\system32\DRIVERS\update.sys
11:46:48.0765 2988 Update - ok
11:46:49.0796 2988 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
11:46:49.0812 2988 USBAAPL - ok
11:46:50.0765 2988 usbehci (708579b01fed227aadb393cb0c3b4a2c) C:\WINDOWS\system32\DRIVERS\usbehci.sys
11:46:50.0781 2988 usbehci - ok
11:46:51.0859 2988 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
11:46:51.0890 2988 usbhub - ok
11:46:52.0890 2988 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
11:46:52.0906 2988 usbprint - ok
11:46:54.0078 2988 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
11:46:54.0093 2988 usbscan - ok
11:46:55.0171 2988 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
11:46:55.0171 2988 USBSTOR - ok
11:46:56.0156 2988 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
11:46:56.0171 2988 usbuhci - ok
11:46:57.0156 2988 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
11:46:57.0171 2988 VgaSave - ok
11:46:58.0218 2988 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
11:46:58.0250 2988 viaagp - ok
11:46:59.0296 2988 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
11:46:59.0312 2988 ViaIde - ok
11:47:00.0343 2988 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
11:47:00.0359 2988 VolSnap - ok
11:47:02.0078 2988 vsapint (50e1ea1dd3ea74919d7a1c5d6c9c0b56) C:\WINDOWS\system32\DRIVERS\vsapint.sys
11:47:02.0718 2988 vsapint - ok
11:47:03.0859 2988 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
11:47:03.0875 2988 Wanarp - ok
11:47:04.0906 2988 wanatw (0a716c08cb13c3a8f4f51e882dbf7416) C:\WINDOWS\system32\DRIVERS\wanatw4.sys
11:47:04.0921 2988 wanatw - ok
11:47:05.0906 2988 WDICA - ok
11:47:06.0921 2988 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
11:47:06.0937 2988 wdmaud - ok
11:47:08.0328 2988 winachsf (ba6b6fb242a6ba4068c8b763063beb63) C:\WINDOWS\system32\DRIVERS\HSX_CNXT.sys
11:47:08.0734 2988 winachsf - ok
11:47:09.0812 2988 WmiAcpi (ae2c8544e747c20062db27456ea2d67a) C:\WINDOWS\system32\DRIVERS\wmiacpi.sys
11:47:09.0828 2988 WmiAcpi - ok
11:47:10.0921 2988 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
11:47:10.0968 2988 WudfPf - ok
11:47:12.0062 2988 WudfRd (28b524262bce6de1f7ef9f510ba3985b) C:\WINDOWS\system32\DRIVERS\wudfrd.sys
11:47:12.0109 2988 WudfRd - ok
11:47:12.0171 2988 MBR (0x1B8) (5cb90281d1a59b251f6603134774eec3) \Device\Harddisk0\DR0
11:47:12.0187 2988 \Device\Harddisk0\DR0 - ok
11:47:12.0187 2988 MBR (0x1B8) (5fb38429d5d77768867c76dcbdb35194) \Device\Harddisk1\DR7
11:47:12.0203 2988 \Device\Harddisk1\DR7 - ok
11:47:12.0218 2988 Boot (0x1200) (b40d4db63ba35d13fbfdfde200413796) \Device\Harddisk0\DR0\Partition0
11:47:12.0234 2988 \Device\Harddisk0\DR0\Partition0 - ok
11:47:12.0234 2988 Boot (0x1200) (369555007101fc161035ab7f2a063eb4) \Device\Harddisk1\DR7\Partition0
11:47:12.0234 2988 \Device\Harddisk1\DR7\Partition0 - ok
11:47:12.0234 2988 ============================================================
11:47:12.0234 2988 Scan finished
11:47:12.0234 2988 ============================================================
11:47:12.0250 1032 Detected object count: 0
11:47:12.0250 1032 Actual detected object count: 0

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:46 PM

Posted 13 November 2011 - 01:09 PM

For the connection try these...

Please click Start > Run, type inetcpl.cpl in the runbox and press enter.
Click the Connections tab and click the LAN settings option.
Verify if "Use a proxy..." is checked, if so, UNcheck it and click OK/OK to exit.
Now check if the internet is working again.

OR

Go to Start ... Run and type in cmd
A dos Window will appear.
Type in the dos window: netsh winsock reset
Click on the enter key.

Reboot your system to complete the process.

Now try MBAM and ESET again.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 jg49

jg49
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 13 November 2011 - 01:44 PM

Use proxy is unchecked and I tried to reset the winsock already and that didn't work. I can try it again when I am in front of the computer tomorrow.

Thanks

#6 jg49

jg49
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 14 November 2011 - 10:23 AM

Tried to reset the winsock and I'm still not able to connect, run MBAM updates or install Eset.

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:46 PM

Posted 14 November 2011 - 03:16 PM

You can run MBAM off a Flash Drive.


If you cannot use the Internet,you will need access to another computer that has a connection.
From there save mbam-setup.exe to a flash,usb,jump drive or CD. Now transfer it to the infected machine, then install and run the program.
If you cannot transfer to or install on the infected machine, try running the setup (installation) file directly from the flash drive or CD by double-clicking on mbam-setup.exe so it will install on the hard drive.
***
Manually Downloading Updates:
Manually download them from HERE and just double-click on mbam-rules.exe to install. Alternatively, you can update through MBAM's interface from a clean computer, copy the definitions (rules.ref) located in C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware from that system to a usb stick or CD and then copy it to the infected machine..

Note: Mbam-rules.exe is not updated daily. Another way to get the most current database definitions if you're having problems updating through the program's interface or have already manually downloaded the latest definitions (mbam-rules.exe) shown on this page, is to do the following: Install MBAM on a clean computer, launch the program and update through MBAM's interface. Copy the definitions (rules.ref) to a USB stick or CD and transfer that file to the infected machine. Copy rules.ref to the location indicated for your operating system. If you cannot see the folder, then you may have to Reconfigure Windows to show it.
  • XP: C:\Documents and Settings\All Users\Application Data\Malwarebytes\Malwarebytes' Anti-Malware
  • Vista: C:\Documents and Settings\Users\All Users\Malwarebytes\Malwarebytes' Anti-Malware
Also this if you still cannot connect/
Please download Farbar Service Scanner and run it on the computer with the issue.
  • Press "Scan".
  • It will create a log (FSS.txt) in the same directory the tool is run.
  • Please copy and paste the log to your reply.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 jg49

jg49
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 14 November 2011 - 04:09 PM

Here is the FSS log. I am running MBAM with the manual update.

Farbar Service Scanner
Ran by Anita Santilli 1128 (administrator) on 14-11-2011 at 16:07:23
Microsoft Windows XP Service Pack 2 (X86)
********************************************************

Service Check:
==============

File Check:
===========
C:\WINDOWS\system32\svchost.exe
[2005-08-16 05:18] - [2004-08-10 06:00] - 0014336 ____A (Microsoft Corporation) 8F078AE4ED187AAABC0A305146DE6716

C:\WINDOWS\system32\rpcss.dll
[2005-08-16 05:18] - [2009-02-09 05:01] - 0401408 ____A (Microsoft Corporation) 24B5D53B9ACCC1E2EDCF0A878D6659D4

C:\WINDOWS\system32\services.exe
[2011-04-03 09:33] - [2009-02-06 05:22] - 0110592 ____A (Microsoft Corporation) 4712531AB7A01B7EE059853CA17D39BD

C:\WINDOWS\system32\dhcpcsvc.dll
[2011-04-03 09:33] - [2006-05-19 07:59] - 0111616 ____A (Microsoft Corporation) EF545E1A4B043DA4C84E230DD471C55F

C:\WINDOWS\system32\Drivers\afd.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\netbt.sys
[2011-04-03 09:33] - [2004-08-10 06:00] - 0162816 ____A (Microsoft Corporation) 0C80E410CD2F47134407EE7DD19CC86B

C:\WINDOWS\system32\Drivers\tcpip.sys
[2011-04-03 09:33] - [2008-06-20 05:45] - 0360320 ____A (Microsoft Corporation) 2A5554FC5B1E04E131230E3CE035C3F9

C:\WINDOWS\system32\Drivers\ipsec.sys
[2011-04-03 09:33] - [2004-08-10 06:00] - 0074752 ____A (Microsoft Corporation) 64537AA5C003A6AFEEE1DF819062D0D1

C:\WINDOWS\system32\dnsrslvr.dll
[2005-08-16 05:18] - [2008-02-20 00:32] - 0045568 ____A (Microsoft Corporation) AAC8FFBFD61E784FA3BAC851D4A0BD5F


Connection Status:
==================
Localhost is accessible.
LAN connected.
Google site is accessible.
Yahoo site is accessible.

**** End of log ****

#9 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:46 PM

Posted 14 November 2011 - 10:31 PM

It looks connected now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#10 jg49

jg49
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 15 November 2011 - 07:50 AM

I still can't update MBAM, ESET or use any browser. I can still ping an external website, but that is all.

#11 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 72,934 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:07:46 PM

Posted 15 November 2011 - 09:41 PM

Well it appears that to find this we need a deeper look. Please go here....
Preparation Guide ,do steps 6 - 9.

Create a DDS log and post it in the new topic explained in step 9,which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If Gmer won't run,skip it and move on.
Include a link back to this topic.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#12 jg49

jg49
  • Topic Starter

  • Members
  • 34 posts
  • OFFLINE
  •  
  • Local time:06:46 PM

Posted 16 November 2011 - 02:21 PM

I posted that info in the other forum. Thanks for the help.

#13 Orange Blossom

Orange Blossom

    OBleepin Investigator


  • Moderator
  • 36,854 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Location:Bloomington, IN
  • Local time:07:46 PM

Posted 16 November 2011 - 02:26 PM

Hello,

Now that you have posted a log here: http://www.bleepingcomputer.com/forums/topic428146.html you should NOT make further changes to your computer (install/uninstall programs, use special fix tools, delete files, edit the registry, etc) unless advised by a MRT Team member, nor should you ask for help elsewhere. Doing so can result in system changes which may not show in the log you already posted. Further, any modifications you make on your own may cause confusion for the helper assisting you and could complicate the malware removal process which would extend the time it takes to clean your computer.

From this point on the MRT Team should be the only members that you take advice from, until they have verified your log as clean.

Please be patient. It may take a while to get a response because the MRT Team members are EXTREMELY busy working logs posted before yours. They are volunteers who will help you out as soon as possible. Once you have made your post and are waiting, please DO NOT make another reply until it has been responded to by a member of the MRT Team. Generally the staff checks the forum for postings that have 0 replies as this makes it easier for them to identify those who have not been helped. If you post another response there will be 1 reply. A team member, looking for a new log to work may assume another MRT Team member is already assisting you and not open the thread to respond.

Please be patient. It may take several days to get a response but your log will be reviewed and answered as soon as possible. I advise checking your topic once a day for responses as the e-mail notification system is unreliable.

If HelpBot replies to your topic, PLEASE follow Step One so it will report your topic to the team members.

To avoid confusion, I am closing this topic. Good luck with your log.

Orange Blossom :cherry:
Help us help you. If HelpBot replies, you MUST follow step 1 in its reply so we know you need help.

Orange Blossom

An ounce of prevention is worth a pound of cure

SpywareBlaster, WinPatrol Plus, ESET Smart Security, Malwarebytes' Anti-Malware, NoScript Firefox ext., Norton noscript




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users