Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

uninstall xp security 2012


  • Please log in to reply
6 replies to this topic

#1 tmart518

tmart518

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:39 AM

Posted 14 December 2011 - 03:23 PM

First of all forgive me in advance. I'm not so good with computers so I will try and explain my computer issue the best I can. A few days ago i had a pop up for xp security 2012 stating I had viruses and malware. After doing some research i found out that it is some type of scam. I tried to download your rkill program by typing it into notepad and copy paste it to the browser. I then clicked save. Basically it failed. I tried all versions but they all wont download correctly. So i skipped this step and went straight to downloading malwarebytes anti-malware software and it was successful. I did a quick scan and it showed me all the files that it found and I removed them. I can now access the internet however I am nervous that my computer is still not safe. I keep getting pop ups fromo malwarbytes stating they successfully blocked access to a potentially malicious website. My question is : 1)Do you believe my computer is protected and i can do online shopping and things of that nature? 2)Should I continue to try and download rkill program and run it? I should mention that I use mozilla firefox as my internet browser. Do you suggest I change to internet explorer or some other type?

Thanks for your time concerning this matter. Hope I don't sound to ignorant and my post isn't too confusing.

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:39 AM

Posted 14 December 2011 - 04:25 PM

Hello, lets try this way.. If Rkill still fails move on.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.
<><><><><><><><

Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.


~~~~~~~~~~~~~~~~~~~~~~~~~~~
Reboot into Safe Mode with Networking
How to start Windows 7 in Safe Mode

<<><<><><><><><><><><><><><><><><><><><><><>
Reboot into Safe Mode with Networking
How to enter safe mode(XP/Vista)
Using the F8 Method
Restart your computer.
When the machine first starts again it will generally list some equipment that is installed in your machine, amount of memory, hard drives installed etc. At this point you should gently tap the F8 key repeatedly until you are presented with a Windows XP Advanced Options menu.
Select the option for Safe Mode with Networking using the arrow keys.
Then press enter on your keyboard to boot into Safe Mode
.


\
Run RKill....


Download and Run RKill
  • Please download RKill by Grinler from one of the 4 links below and save it to your desktop.

    Link 1
    Link 2
    Link 3
    Link 4

  • Before we begin, you should disable your anti-malware softwares you have installed so they do not interfere RKill running as some anti-malware softwares detect RKill as malicious. Please refer to this page if you are not sure how.
  • Double-click on Rkill on your desktop to run it. (If you are using Windows Vista, please right-click on it and select Run As Administrator)
  • A black screen will appear and then disappear. Please do not worry, that is normal. This means that the tool has been successfully executed.
  • If nothing happens or if the tool does not run, please let me know in your next reply

Do not reboot your computer after running rkill as the malware programs will start again. Or if rebooting is required run it again.


If you continue having problems running rkill.com, you can download iExplore.exe or eXplorer.exe, which are renamed copies of rkill.com, and try them instead.



Next run Superantisypware (SAS):

Download and scan with SUPERAntiSpyware Free for Home Users
  • Double-click SUPERAntiSpyware.exe and use the default settings for installation.
  • An icon will be created on your desktop. Double-click that icon to launch the program.
  • If asked to update the program definitions, click "Yes". If not, update the definitions before scanning by selecting "Check for Updates". (If you encounter any problems while downloading the updates, manually download them from here. Double-click on the hyperlink for Download Installer and save SASDEFINITIONS.EXE to your desktop. Then double-click on SASDEFINITIONS.EXE to install the definitions.)
  • In the Main Menu, click the Preferences... button.
  • Click the Scanning Control tab.
  • Under Scanner Options make sure the following are checked (leave all others unchecked):
    • Close browsers before scanning.
    • Scan for tracking cookies.
    • Terminate memory threats before quarantining.
  • Click the "Close" button to leave the control center screen.
  • Back on the main screen, under "Scan for Harmful Software" click Scan your computer.
  • On the left, make sure you check C:\Fixed Drive.
  • On the right, under "Complete Scan", choose Perform Complete Scan.
  • Click "Next" to start the scan. Please be patient while it scans your computer.
  • After the scan is complete, a Scan Summary box will appear with potentially harmful items that were detected. Click "OK".
  • Make sure everything has a checkmark next to it and click "Next".
  • A notification will appear that "Quarantine and Removal is Complete". Click "OK" and then click the "Finish" button to return to the main menu.
  • If asked if you want to reboot, click "Yes".
  • To retrieve the removal information after reboot, launch SUPERAntispyware again.
    • Click Preferences, then click the Statistics/Logs tab.
    • Under Scanner Logs, double-click SUPERAntiSpyware Scan Log.
    • If there are several logs, click the current dated log and press View log. A text file will open in your default text editor.
    • Please copy and paste the Scan Log results in your next reply.
  • Click Close to exit the program.
If you have a problem downloading, installing or getting SAS to run, try downloading and using the SUPERAntiSpyware Portable Scanner instead. Save the randomly named file (i.e. SAS_1710895.COM) to a usb drive or CD and transfer to the infected computer. Then double-click on it to launch and scan. The file is randomly named to help keep malware from blocking the scanner.


Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.

Please ask any needed questions,post TDSS,SAS and MBAM logs and Let us know how the PC is running now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 tmart518

tmart518
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:39 AM

Posted 14 December 2011 - 04:45 PM

quick question. how do i post the results of mini toolbox? I tried to copy and paste it here but it wont let me.

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:39 AM

Posted 14 December 2011 - 04:50 PM

BC won't let it paste or you cannnot copy the log.. either way this is a strange one.

Edited by boopme, 14 December 2011 - 04:51 PM.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 tmart518

tmart518
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:39 AM

Posted 14 December 2011 - 04:54 PM

ok. i can past it, but when i click post it states: The connection was reset

#6 tmart518

tmart518
  • Topic Starter

  • Members
  • 4 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:07:39 AM

Posted 14 December 2011 - 04:56 PM

16:42:07.0266 3888 TDSS rootkit removing tool 2.6.23.0 Dec 13 2011 10:39:31
16:42:09.0261 3888 ============================================================
16:42:09.0261 3888 Current date / time: 2011/12/14 16:42:09.0261
16:42:09.0261 3888 SystemInfo:
16:42:09.0261 3888
16:42:09.0261 3888 OS Version: 5.1.2600 ServicePack: 3.0
16:42:09.0261 3888 Product type: Workstation
16:42:09.0261 3888 ComputerName: M-4CC7653594A64
16:42:09.0261 3888 UserName: M.T
16:42:09.0261 3888 Windows directory: C:\WINDOWS
16:42:09.0261 3888 System windows directory: C:\WINDOWS
16:42:09.0261 3888 Processor architecture: Intel x86
16:42:09.0261 3888 Number of processors: 2
16:42:09.0261 3888 Page size: 0x1000
16:42:09.0261 3888 Boot type: Normal boot
16:42:09.0261 3888 ============================================================
16:42:09.0962 3888 Initialize success
16:42:11.0287 1512 ============================================================
16:42:11.0287 1512 Scan started
16:42:11.0287 1512 Mode: Manual;
16:42:11.0287 1512 ============================================================
16:42:12.0019 1512 Abiosdsk - ok
16:42:12.0066 1512 abp480n5 - ok
16:42:12.0175 1512 ACPI (8fd99680a539792a30e97944fdaecf17) C:\WINDOWS\system32\DRIVERS\ACPI.sys
16:42:12.0175 1512 ACPI - ok
16:42:12.0222 1512 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
16:42:12.0222 1512 ACPIEC - ok
16:42:12.0222 1512 adpu160m - ok
16:42:12.0253 1512 aec (8bed39e3c35d6a489438b8141717a557) C:\WINDOWS\system32\drivers\aec.sys
16:42:12.0269 1512 aec - ok
16:42:12.0315 1512 AegisP (2c5c22990156a1063e19ad162191dc1d) C:\WINDOWS\system32\DRIVERS\AegisP.sys
16:42:12.0315 1512 AegisP - ok
16:42:12.0378 1512 Afc (fe3ea6e9afc1a78e6edca121e006afb7) C:\WINDOWS\system32\drivers\Afc.sys
16:42:12.0378 1512 Afc - ok
16:42:12.0425 1512 AFD (1e44bc1e83d8fd2305f8d452db109cf9) C:\WINDOWS\System32\drivers\afd.sys
16:42:12.0425 1512 AFD - ok
16:42:12.0425 1512 Aha154x - ok
16:42:12.0440 1512 aic78u2 - ok
16:42:12.0456 1512 aic78xx - ok
16:42:12.0471 1512 AliIde - ok
16:42:12.0487 1512 amsint - ok
16:42:12.0549 1512 AR5523 (92637b97f57c1669d521a54482c4579c) C:\WINDOWS\system32\DRIVERS\WG11TND5.sys
16:42:12.0549 1512 AR5523 - ok
16:42:12.0580 1512 ArcCD (a82f1a1b09593c73efd02a59dc94920c) C:\WINDOWS\system32\drivers\ArcCD.sys
16:42:12.0580 1512 ArcCD - ok
16:42:12.0612 1512 ArcRec (1af9061b61741a912368ab4dc309d25e) C:\WINDOWS\system32\drivers\ArcRec.sys
16:42:12.0612 1512 ArcRec - ok
16:42:12.0643 1512 ArcUdfs (3ee9e41102a2c6b8f7dbad5d44abda05) C:\WINDOWS\system32\drivers\ArcUdfs.sys
16:42:12.0643 1512 ArcUdfs - ok
16:42:12.0643 1512 asc - ok
16:42:12.0658 1512 asc3350p - ok
16:42:12.0674 1512 asc3550 - ok
16:42:12.0752 1512 AsyncMac (b153affac761e7f5fcfa822b9c4e97bc) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
16:42:12.0752 1512 AsyncMac - ok
16:42:12.0799 1512 atapi (9f3a2f5aa6875c72bf062c712cfa2674) C:\WINDOWS\system32\DRIVERS\atapi.sys
16:42:12.0799 1512 atapi - ok
16:42:12.0814 1512 Atdisk - ok
16:42:12.0876 1512 ati2mtag (a7dd7088e2c987dbcb3f4d6d56f723bd) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
16:42:12.0954 1512 ati2mtag - ok
16:42:12.0986 1512 Atmarpc (9916c1225104ba14794209cfa8012159) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
16:42:12.0986 1512 Atmarpc - ok
16:42:13.0048 1512 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
16:42:13.0048 1512 audstub - ok
16:42:13.0095 1512 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
16:42:13.0095 1512 Beep - ok
16:42:13.0126 1512 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
16:42:13.0126 1512 cbidf2k - ok
16:42:13.0141 1512 cd20xrnt - ok
16:42:13.0173 1512 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
16:42:13.0173 1512 Cdaudio - ok
16:42:13.0235 1512 Cdfs (c885b02847f5d2fd45a24e219ed93b32) C:\WINDOWS\system32\drivers\Cdfs.sys
16:42:13.0235 1512 Cdfs - ok
16:42:13.0251 1512 Cdrom (1f4260cc5b42272d71f79e570a27a4fe) C:\WINDOWS\system32\DRIVERS\cdrom.sys
16:42:13.0251 1512 Cdrom - ok
16:42:13.0297 1512 cercsr6 (84853b3fd012251690570e9e7e43343f) C:\WINDOWS\system32\drivers\cercsr6.sys
16:42:13.0297 1512 cercsr6 - ok
16:42:13.0360 1512 cfwids (1dcb5209601a70e36c70fe8d197d62cb) C:\WINDOWS\system32\drivers\cfwids.sys
16:42:13.0360 1512 cfwids - ok
16:42:13.0391 1512 Changer - ok
16:42:13.0422 1512 CmdIde - ok
16:42:13.0469 1512 Cpqarray - ok
16:42:13.0484 1512 dac2w2k - ok
16:42:13.0547 1512 dac960nt - ok
16:42:13.0656 1512 Disk (044452051f3e02e7963599fc8f4f3e25) C:\WINDOWS\system32\DRIVERS\disk.sys
16:42:13.0656 1512 Disk - ok
16:42:13.0703 1512 dmboot (d992fe1274bde0f84ad826acae022a41) C:\WINDOWS\system32\drivers\dmboot.sys
16:42:13.0749 1512 dmboot - ok
16:42:13.0749 1512 dmio (7c824cf7bbde77d95c08005717a95f6f) C:\WINDOWS\system32\drivers\dmio.sys
16:42:13.0765 1512 dmio - ok
16:42:13.0765 1512 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
16:42:13.0765 1512 dmload - ok
16:42:13.0812 1512 DMusic (8a208dfcf89792a484e76c40e5f50b45) C:\WINDOWS\system32\drivers\DMusic.sys
16:42:13.0812 1512 DMusic - ok
16:42:13.0858 1512 DNINDIS5 (d2ee54cdbced01d48f2b18642be79a98) C:\WINDOWS\system32\DNINDIS5.SYS
16:42:13.0858 1512 DNINDIS5 - ok
16:42:13.0874 1512 dpti2o - ok
16:42:13.0890 1512 drmkaud (8f5fcff8e8848afac920905fbd9d33c8) C:\WINDOWS\system32\drivers\drmkaud.sys
16:42:13.0890 1512 drmkaud - ok
16:42:13.0936 1512 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
16:42:13.0936 1512 E100B - ok
16:42:13.0999 1512 Fastfat (38d332a6d56af32635675f132548343e) C:\WINDOWS\system32\drivers\Fastfat.sys
16:42:13.0999 1512 Fastfat - ok
16:42:14.0030 1512 Fdc (92cdd60b6730b9f50f6a1a0c1f8cdc81) C:\WINDOWS\system32\DRIVERS\fdc.sys
16:42:14.0030 1512 Fdc - ok
16:42:14.0077 1512 Fips (d45926117eb9fa946a6af572fbe1caa3) C:\WINDOWS\system32\drivers\Fips.sys
16:42:14.0077 1512 Fips - ok
16:42:14.0123 1512 Flpydisk (9d27e7b80bfcdf1cdd9b555862d5e7f0) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
16:42:14.0123 1512 Flpydisk - ok
16:42:14.0186 1512 FltMgr (b2cf4b0786f8212cb92ed2b50c6db6b0) C:\WINDOWS\system32\drivers\fltmgr.sys
16:42:14.0186 1512 FltMgr - ok
16:42:14.0232 1512 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
16:42:14.0232 1512 Fs_Rec - ok
16:42:14.0232 1512 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
16:42:14.0248 1512 Ftdisk - ok
16:42:14.0279 1512 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
16:42:14.0279 1512 GEARAspiWDM - ok
16:42:14.0342 1512 Gpc (0a02c63c8b144bd8c86b103dee7c86a2) C:\WINDOWS\system32\DRIVERS\msgpc.sys
16:42:14.0342 1512 Gpc - ok
16:42:14.0404 1512 HDAudBus (573c7d0a32852b48f3058cfd8026f511) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
16:42:14.0420 1512 HDAudBus - ok
16:42:14.0451 1512 hidusb (ccf82c5ec8a7326c3066de870c06daf1) C:\WINDOWS\system32\DRIVERS\hidusb.sys
16:42:14.0451 1512 hidusb - ok
16:42:14.0466 1512 hpn - ok
16:42:14.0513 1512 HSFHWBS2 (77e4ff0b73bc0aeaaf39bf0c8104231f) C:\WINDOWS\system32\DRIVERS\HSFHWBS2.sys
16:42:14.0529 1512 HSFHWBS2 - ok
16:42:14.0591 1512 HSF_DP (60e1604729a15ef4a3b05f298427b3b1) C:\WINDOWS\system32\DRIVERS\HSF_DP.sys
16:42:14.0607 1512 HSF_DP - ok
16:42:14.0653 1512 HTTP (f80a415ef82cd06ffaf0d971528ead38) C:\WINDOWS\system32\Drivers\HTTP.sys
16:42:14.0669 1512 HTTP - ok
16:42:14.0669 1512 i2omgmt - ok
16:42:14.0684 1512 i2omp - ok
16:42:14.0747 1512 i8042prt (4a0b06aa8943c1e332520f7440c0aa30) C:\WINDOWS\system32\drivers\i8042prt.sys
16:42:14.0762 1512 i8042prt - ok
16:42:14.0965 1512 Imapi (083a052659f5310dd8b6a6cb05edcf8e) C:\WINDOWS\system32\DRIVERS\imapi.sys
16:42:14.0981 1512 Imapi - ok
16:42:15.0121 1512 ini910u - ok
16:42:15.0136 1512 IntelIde - ok
16:42:15.0214 1512 intelppm (8c953733d8f36eb2133f5bb58808b66b) C:\WINDOWS\system32\DRIVERS\intelppm.sys
16:42:15.0214 1512 intelppm - ok
16:42:15.0246 1512 Ip6Fw (3bb22519a194418d5fec05d800a19ad0) C:\WINDOWS\system32\drivers\ip6fw.sys
16:42:15.0246 1512 Ip6Fw - ok
16:42:15.0277 1512 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
16:42:15.0277 1512 IpFilterDriver - ok
16:42:15.0324 1512 IpInIp (b87ab476dcf76e72010632b5550955f5) C:\WINDOWS\system32\DRIVERS\ipinip.sys
16:42:15.0324 1512 IpInIp - ok
16:42:15.0355 1512 IpNat (cc748ea12c6effde940ee98098bf96bb) C:\WINDOWS\system32\DRIVERS\ipnat.sys
16:42:15.0370 1512 IpNat - ok
16:42:15.0386 1512 IPSec (23c74d75e36e7158768dd63d92789a91) C:\WINDOWS\system32\DRIVERS\ipsec.sys
16:42:15.0401 1512 IPSec - ok
16:42:15.0464 1512 IRENUM (c93c9ff7b04d772627a3646d89f7bf89) C:\WINDOWS\system32\DRIVERS\irenum.sys
16:42:15.0464 1512 IRENUM - ok
16:42:15.0495 1512 isapnp (05a299ec56e52649b1cf2fc52d20f2d7) C:\WINDOWS\system32\DRIVERS\isapnp.sys
16:42:15.0511 1512 isapnp - ok
16:42:15.0557 1512 Kbdclass (463c1ec80cd17420a542b7f36a36f128) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
16:42:15.0557 1512 Kbdclass - ok
16:42:15.0588 1512 kbdhid (9ef487a186dea361aa06913a75b3fa99) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
16:42:15.0588 1512 kbdhid - ok
16:42:15.0651 1512 kmixer (692bcf44383d056aed41b045a323d378) C:\WINDOWS\system32\drivers\kmixer.sys
16:42:15.0666 1512 kmixer - ok
16:42:15.0713 1512 KSecDD (b467646c54cc746128904e1654c750c1) C:\WINDOWS\system32\drivers\KSecDD.sys
16:42:15.0713 1512 KSecDD - ok
16:42:15.0729 1512 lbrtfdc - ok
16:42:15.0760 1512 MBAMProtector (69a6268d7f81e53d568ab4e7e991caf3) C:\WINDOWS\system32\drivers\mbam.sys
16:42:15.0760 1512 MBAMProtector - ok
16:42:15.0775 1512 MBAMSwissArmy - ok
16:42:15.0853 1512 mdmxsdk (eeaea6514ba7c9d273b5e87c4e1aab30) C:\WINDOWS\system32\DRIVERS\mdmxsdk.sys
16:42:15.0853 1512 mdmxsdk - ok
16:42:15.0900 1512 mfeapfk (36b47b1e9c537f8f2b4481084b8f7d22) C:\WINDOWS\system32\drivers\mfeapfk.sys
16:42:15.0900 1512 mfeapfk - ok
16:42:15.0931 1512 mfeavfk (cde41293db871a75cd99eb0ce781356b) C:\WINDOWS\system32\drivers\mfeavfk.sys
16:42:15.0931 1512 mfeavfk - ok
16:42:15.0947 1512 mfeavfk01 - ok
16:42:15.0978 1512 mfebopk (e22385f64bdf0ad81157479496e33c4a) C:\WINDOWS\system32\drivers\mfebopk.sys
16:42:15.0978 1512 mfebopk - ok
16:42:16.0009 1512 mfefirek (215666a8a85023ef019b510cbb67f678) C:\WINDOWS\system32\drivers\mfefirek.sys
16:42:16.0025 1512 mfefirek - ok
16:42:16.0087 1512 mfehidk (56d330981866a72f061dd16cc5004513) C:\WINDOWS\system32\drivers\mfehidk.sys
16:42:16.0103 1512 mfehidk - ok
16:42:16.0134 1512 mfendisk (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
16:42:16.0134 1512 mfendisk - ok
16:42:16.0150 1512 mfendiskmp (62acda4e958e2a392557ba3c6c754a58) C:\WINDOWS\system32\DRIVERS\mfendisk.sys
16:42:16.0150 1512 mfendiskmp - ok
16:42:16.0181 1512 mferkdet (89b564d63c53fc0c6782ab07eea63acf) C:\WINDOWS\system32\drivers\mferkdet.sys
16:42:16.0181 1512 mferkdet - ok
16:42:16.0227 1512 mfetdi2k (922e64ca38e38106498fb3435a8e399d) C:\WINDOWS\system32\drivers\mfetdi2k.sys
16:42:16.0227 1512 mfetdi2k - ok
16:42:16.0274 1512 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
16:42:16.0274 1512 MHNDRV - ok
16:42:16.0321 1512 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
16:42:16.0321 1512 mnmdd - ok
16:42:16.0383 1512 Modem (dfcbad3cec1c5f964962ae10e0bcc8e1) C:\WINDOWS\system32\drivers\Modem.sys
16:42:16.0383 1512 Modem - ok
16:42:16.0415 1512 MODEMCSA (1992e0d143b09653ab0f9c5e04b0fd65) C:\WINDOWS\system32\drivers\MODEMCSA.sys
16:42:16.0415 1512 MODEMCSA - ok
16:42:16.0446 1512 Mouclass (35c9e97194c8cfb8430125f8dbc34d04) C:\WINDOWS\system32\DRIVERS\mouclass.sys
16:42:16.0461 1512 Mouclass - ok
16:42:16.0508 1512 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
16:42:16.0508 1512 mouhid - ok
16:42:16.0555 1512 MountMgr (a80b9a0bad1b73637dbcbba7df72d3fd) C:\WINDOWS\system32\drivers\MountMgr.sys
16:42:16.0555 1512 MountMgr - ok
16:42:16.0570 1512 mraid35x - ok
16:42:16.0586 1512 MRxDAV (11d42bb6206f33fbb3ba0288d3ef81bd) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
16:42:16.0586 1512 MRxDAV - ok
16:42:16.0633 1512 MRxSmb (7d304a5eb4344ebeeab53a2fe3ffb9f0) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
16:42:16.0633 1512 MRxSmb - ok
16:42:16.0664 1512 Msfs (c941ea2454ba8350021d774daf0f1027) C:\WINDOWS\system32\drivers\Msfs.sys
16:42:16.0664 1512 Msfs - ok
16:42:16.0711 1512 MSKSSRV (d1575e71568f4d9e14ca56b7b0453bf1) C:\WINDOWS\system32\drivers\MSKSSRV.sys
16:42:16.0711 1512 MSKSSRV - ok
16:42:16.0757 1512 MSPCLOCK (325bb26842fc7ccc1fcce2c457317f3e) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
16:42:16.0773 1512 MSPCLOCK - ok
16:42:16.0820 1512 MSPQM (bad59648ba099da4a17680b39730cb3d) C:\WINDOWS\system32\drivers\MSPQM.sys
16:42:16.0820 1512 MSPQM - ok
16:42:16.0851 1512 mssmbios (af5f4f3f14a8ea2c26de30f7a1e17136) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
16:42:16.0851 1512 mssmbios - ok
16:42:16.0882 1512 Mup (de6a75f5c270e756c5508d94b6cf68f5) C:\WINDOWS\system32\drivers\Mup.sys
16:42:16.0882 1512 Mup - ok
16:42:16.0913 1512 NDIS (1df7f42665c94b825322fae71721130d) C:\WINDOWS\system32\drivers\NDIS.sys
16:42:16.0913 1512 NDIS - ok
16:42:16.0960 1512 NdisTapi (0109c4f3850dfbab279542515386ae22) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
16:42:16.0960 1512 NdisTapi - ok
16:42:16.0976 1512 Ndisuio (f927a4434c5028758a842943ef1a3849) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
16:42:16.0976 1512 Ndisuio - ok
16:42:16.0991 1512 NdisWan (edc1531a49c80614b2cfda43ca8659ab) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
16:42:16.0991 1512 NdisWan - ok
16:42:17.0038 1512 NDProxy (9282bd12dfb069d3889eb3fcc1000a9b) C:\WINDOWS\system32\drivers\NDProxy.sys
16:42:17.0038 1512 NDProxy - ok
16:42:17.0085 1512 NetBIOS (5d81cf9a2f1a3a756b66cf684911cdf0) C:\WINDOWS\system32\DRIVERS\netbios.sys
16:42:17.0085 1512 NetBIOS - ok
16:42:17.0116 1512 NetBT (74b2b2f5bea5e9a3dc021d685551bd3d) C:\WINDOWS\system32\DRIVERS\netbt.sys
16:42:17.0116 1512 NetBT - ok
16:42:17.0147 1512 Npfs (3182d64ae053d6fb034f44b6def8034a) C:\WINDOWS\system32\drivers\Npfs.sys
16:42:17.0147 1512 Npfs - ok
16:42:17.0194 1512 Ntfs (78a08dd6a8d65e697c18e1db01c5cdca) C:\WINDOWS\system32\drivers\Ntfs.sys
16:42:17.0209 1512 Ntfs - ok
16:42:17.0256 1512 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
16:42:17.0256 1512 Null - ok
16:42:17.0287 1512 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
16:42:17.0287 1512 NwlnkFlt - ok
16:42:17.0303 1512 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
16:42:17.0319 1512 NwlnkFwd - ok
16:42:17.0319 1512 OMCI - ok
16:42:17.0365 1512 Parport (5575faf8f97ce5e713d108c2a58d7c7c) C:\WINDOWS\system32\drivers\Parport.sys
16:42:17.0381 1512 Parport - ok
16:42:17.0396 1512 PartMgr (beb3ba25197665d82ec7065b724171c6) C:\WINDOWS\system32\drivers\PartMgr.sys
16:42:17.0396 1512 PartMgr - ok
16:42:17.0443 1512 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
16:42:17.0443 1512 ParVdm - ok
16:42:17.0506 1512 PCI (a219903ccf74233761d92bef471a07b1) C:\WINDOWS\system32\DRIVERS\pci.sys
16:42:17.0506 1512 PCI - ok
16:42:17.0537 1512 PCIDump - ok
16:42:17.0599 1512 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
16:42:17.0599 1512 PCIIde - ok
16:42:17.0646 1512 Pcmcia (9e89ef60e9ee05e3f2eef2da7397f1c1) C:\WINDOWS\system32\drivers\Pcmcia.sys
16:42:17.0646 1512 Pcmcia - ok
16:42:17.0661 1512 PDCOMP - ok
16:42:17.0677 1512 PDFRAME - ok
16:42:17.0677 1512 PDRELI - ok
16:42:17.0693 1512 PDRFRAME - ok
16:42:17.0724 1512 perc2 - ok
16:42:17.0739 1512 perc2hib - ok
16:42:17.0786 1512 PptpMiniport (efeec01b1d3cf84f16ddd24d9d9d8f99) C:\WINDOWS\system32\DRIVERS\raspptp.sys
16:42:17.0786 1512 PptpMiniport - ok
16:42:17.0848 1512 PSched (09298ec810b07e5d582cb3a3f9255424) C:\WINDOWS\system32\DRIVERS\psched.sys
16:42:17.0848 1512 PSched - ok
16:42:17.0895 1512 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
16:42:17.0895 1512 Ptilink - ok
16:42:17.0926 1512 PxHelp20 (617accada2e0a0f43ec6030bbac49513) C:\WINDOWS\system32\Drivers\PxHelp20.sys
16:42:17.0942 1512 PxHelp20 - ok
16:42:17.0942 1512 ql1080 - ok
16:42:17.0958 1512 Ql10wnt - ok
16:42:17.0973 1512 ql12160 - ok
16:42:17.0973 1512 ql1240 - ok
16:42:17.0989 1512 ql1280 - ok
16:42:18.0004 1512 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
16:42:18.0004 1512 RasAcd - ok
16:42:18.0051 1512 Rasl2tp (11b4a627bc9614b885c4969bfa5ff8a6) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
16:42:18.0067 1512 Rasl2tp - ok
16:42:18.0113 1512 RasPppoe (5bc962f2654137c9909c3d4603587dee) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
16:42:18.0129 1512 RasPppoe - ok
16:42:18.0145 1512 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
16:42:18.0145 1512 Raspti - ok
16:42:18.0160 1512 Rdbss (7ad224ad1a1437fe28d89cf22b17780a) C:\WINDOWS\system32\DRIVERS\rdbss.sys
16:42:18.0160 1512 Rdbss - ok
16:42:18.0176 1512 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
16:42:18.0176 1512 RDPCDD - ok
16:42:18.0238 1512 rdpdr (15cabd0f7c00c47c70124907916af3f1) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
16:42:18.0238 1512 rdpdr - ok
16:42:18.0285 1512 RDPWD (fc105dd312ed64eb66bff111e8ec6eac) C:\WINDOWS\system32\drivers\RDPWD.sys
16:42:18.0285 1512 RDPWD - ok
16:42:18.0316 1512 redbook (d0d2595304c1ab1e62ede359fd507e05) C:\WINDOWS\system32\DRIVERS\redbook.sys
16:42:18.0316 1512 redbook - ok
16:42:18.0378 1512 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
16:42:18.0378 1512 Secdrv - ok
16:42:18.0410 1512 Serial (cca207a8896d4c6a0c9ce29a4ae411a7) C:\WINDOWS\system32\drivers\Serial.sys
16:42:18.0410 1512 Serial - ok
16:42:18.0472 1512 Sfloppy (8e6b8c671615d126fdc553d1e2de5562) C:\WINDOWS\system32\drivers\Sfloppy.sys
16:42:18.0472 1512 Sfloppy - ok
16:42:18.0503 1512 Simbad - ok
16:42:18.0519 1512 Sparrow - ok
16:42:18.0519 1512 splitter (ab8b92451ecb048a4d1de7c3ffcb4a9f) C:\WINDOWS\system32\drivers\splitter.sys
16:42:18.0519 1512 splitter - ok
16:42:18.0565 1512 sr (76bb022c2fb6902fd5bdd4f78fc13a5d) C:\WINDOWS\system32\DRIVERS\sr.sys
16:42:18.0565 1512 sr - ok
16:42:18.0628 1512 Srv (47ddfc2f003f7f9f0592c6874962a2e7) C:\WINDOWS\system32\DRIVERS\srv.sys
16:42:18.0643 1512 Srv - ok
16:42:18.0706 1512 STHDA (8990440e4b2a7ca5a56a1833b03741fd) C:\WINDOWS\system32\drivers\sthda.sys
16:42:18.0752 1512 STHDA - ok
16:42:18.0784 1512 swenum (3941d127aef12e93addf6fe6ee027e0f) C:\WINDOWS\system32\DRIVERS\swenum.sys
16:42:18.0784 1512 swenum - ok
16:42:18.0815 1512 swmidi (8ce882bcc6cf8a62f2b2323d95cb3d01) C:\WINDOWS\system32\drivers\swmidi.sys
16:42:18.0815 1512 swmidi - ok
16:42:18.0830 1512 symc810 - ok
16:42:18.0846 1512 symc8xx - ok
16:42:18.0862 1512 sym_hi - ok
16:42:18.0862 1512 sym_u3 - ok
16:42:18.0893 1512 sysaudio (8b83f3ed0f1688b4958f77cd6d2bf290) C:\WINDOWS\system32\drivers\sysaudio.sys
16:42:18.0893 1512 sysaudio - ok
16:42:18.0939 1512 Tcpip (9aefa14bd6b182d61e3119fa5f436d3d) C:\WINDOWS\system32\DRIVERS\tcpip.sys
16:42:18.0955 1512 Tcpip - ok
16:42:18.0971 1512 TDPIPE (6471a66807f5e104e4885f5b67349397) C:\WINDOWS\system32\drivers\TDPIPE.sys
16:42:18.0971 1512 TDPIPE - ok
16:42:19.0033 1512 TDTCP (c56b6d0402371cf3700eb322ef3aaf61) C:\WINDOWS\system32\drivers\TDTCP.sys
16:42:19.0033 1512 TDTCP - ok
16:42:19.0064 1512 TermDD (88155247177638048422893737429d9e) C:\WINDOWS\system32\DRIVERS\termdd.sys
16:42:19.0080 1512 TermDD - ok
16:42:19.0111 1512 TosIde - ok
16:42:19.0126 1512 Udfs (5787b80c2e3c5e2f56c2a233d91fa2c9) C:\WINDOWS\system32\drivers\Udfs.sys
16:42:19.0142 1512 Udfs - ok
16:42:19.0173 1512 ultra - ok
16:42:19.0236 1512 Update (402ddc88356b1bac0ee3dd1580c76a31) C:\WINDOWS\system32\DRIVERS\update.sys
16:42:19.0251 1512 Update - ok
16:42:19.0298 1512 USBAAPL (83cafcb53201bbac04d822f32438e244) C:\WINDOWS\system32\Drivers\usbaapl.sys
16:42:19.0298 1512 USBAAPL - ok
16:42:19.0360 1512 usbccgp (173f317ce0db8e21322e71b7e60a27e8) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
16:42:19.0360 1512 usbccgp - ok
16:42:19.0391 1512 usbehci (65dcf09d0e37d4c6b11b5b0b76d470a7) C:\WINDOWS\system32\DRIVERS\usbehci.sys
16:42:19.0391 1512 usbehci - ok
16:42:19.0454 1512 usbhub (1ab3cdde553b6e064d2e754efe20285c) C:\WINDOWS\system32\DRIVERS\usbhub.sys
16:42:19.0454 1512 usbhub - ok
16:42:19.0469 1512 usbprint (a717c8721046828520c9edf31288fc00) C:\WINDOWS\system32\DRIVERS\usbprint.sys
16:42:19.0469 1512 usbprint - ok
16:42:19.0501 1512 usbscan (a0b8cf9deb1184fbdd20784a58fa75d4) C:\WINDOWS\system32\DRIVERS\usbscan.sys
16:42:19.0501 1512 usbscan - ok
16:42:19.0532 1512 USBSTOR (a32426d9b14a089eaa1d922e0c5801a9) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
16:42:19.0532 1512 USBSTOR - ok
16:42:19.0563 1512 usbuhci (26496f9dee2d787fc3e61ad54821ffe6) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
16:42:19.0563 1512 usbuhci - ok
16:42:19.0578 1512 VgaSave (0d3a8fafceacd8b7625cd549757a7df1) C:\WINDOWS\System32\drivers\vga.sys
16:42:19.0578 1512 VgaSave - ok
16:42:19.0578 1512 ViaIde - ok
16:42:19.0625 1512 VolSnap (4c8fcb5cc53aab716d810740fe59d025) C:\WINDOWS\system32\drivers\VolSnap.sys
16:42:19.0625 1512 VolSnap - ok
16:42:19.0656 1512 Wanarp (e20b95baedb550f32dd489265c1da1f6) C:\WINDOWS\system32\DRIVERS\wanarp.sys
16:42:19.0656 1512 Wanarp - ok
16:42:19.0672 1512 WDICA - ok
16:42:19.0703 1512 wdmaud (6768acf64b18196494413695f0c3a00f) C:\WINDOWS\system32\drivers\wdmaud.sys
16:42:19.0703 1512 wdmaud - ok
16:42:19.0750 1512 winachsf (f59ed5a43b988a18ef582bb07b2327a7) C:\WINDOWS\system32\DRIVERS\HSF_CNXT.sys
16:42:19.0797 1512 winachsf - ok
16:42:19.0890 1512 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk0\DR0
16:42:20.0062 1512 \Device\Harddisk0\DR0 - ok
16:42:20.0077 1512 Boot (0x1200) (0cc11e9b953b754479ef0ff49505f512) \Device\Harddisk0\DR0\Partition0
16:42:20.0077 1512 \Device\Harddisk0\DR0\Partition0 - ok
16:42:20.0093 1512 Boot (0x1200) (25461b657e5642e2348097718e21686a) \Device\Harddisk0\DR0\Partition1
16:42:20.0093 1512 \Device\Harddisk0\DR0\Partition1 - ok
16:42:20.0093 1512 ============================================================
16:42:20.0093 1512 Scan finished
16:42:20.0093 1512 ============================================================
16:42:20.0108 5752 Detected object count: 0
16:42:20.0108 5752 Actual detected object count: 0

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,331 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:08:39 AM

Posted 14 December 2011 - 08:13 PM

Firefox is the safer browser.
I am unsure if you are protected as I was hoping to get info from Minitoolbox. Try it again after SAS and MBAm.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users