Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

IPCONFIG Problem Following Virus Removal


  • Please log in to reply
18 replies to this topic

#1 VA_Tim

VA_Tim

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:55 AM

Posted 16 January 2012 - 02:39 PM

Recently removed several viruses from a Dell Dimension 5150/E510 desktop computer running Windows XP Media Center edition (SP2). The computer is wired to a LinkSys WAP. The computer has the latest version of Norton Security Suite running and periodically has scans using Malwarebytes, however neither would run given the viruses on the computer. The problems started when the user opened one of the ".zip" attachments in the phishing emails (like the UPS delivery notification ones).

The final removal step performed was using a McAfee tool called "Stinger". Stinger found found and removed the W32/Autorun.worm.bev virus and the FakeAlert-Rena.p trojan. After it did, subsequent scans with both Norton and McAfee showed the computer was clean, however the computer would no longer connect to the network. Troubleshooting revealed that IPCONFIG would not run. It returned "An internal error occurred. The request is not supported." I tried removing and reinstalling the driver for the network adapter, resetting TCPIP and WINSOCK, manually starting the networking services, but nothing worked.

Running Farbar Service Scanner yields the results listed below. Any help or ideas would be truly appreciated. I thought I was fairly computer/network savvy until this!

*************
FSS.txt log
*************
Farbar Service Scanner
Ran by XXX (administrator) on 16-01-2012 at 13:51:28
Microsoft Windows XP Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============
Dnscache Service is not running. Checking service configuration:
The start type of Dnscache service is OK.
The ImagePath of Dnscache service is OK.
The ServiceDll of Dnscache service is OK.

Dhcp Service is not running. Checking service configuration:
The start type of Dhcp service is OK.
The ImagePath of Dhcp service is OK.
The ServiceDll of Dhcp service is OK.

Tcpip Service is not running. Checking service configuration:
The start type of Tcpip service is OK.
The ImagePath of Tcpip service is OK.


Connection Status:
==============
Localhost is blocked.
LAN connected.
Attempt to access Google IP returned error: Other errors
Attempt to access Yahoo IP returend error: Other errors


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll
[2005-08-16 05:18] - [2006-05-19 07:59] - 0111616 ____A (Microsoft Corporation) EF545E1A4B043DA4C84E230DD471C55F

C:\WINDOWS\system32\Drivers\afd.sys
[2008-07-08 18:35] - [2008-08-14 04:51] - 0138368 ____A (Microsoft Corporation) 55E6E1C51B6D30E54335750955453702

C:\WINDOWS\system32\Drivers\netbt.sys
[2005-08-16 05:18] - [2004-08-10 06:00] - 0162816 ____A (Microsoft Corporation) 0C80E410CD2F47134407EE7DD19CC86B

C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys
[2005-08-16 05:18] - [2004-08-10 06:00] - 0074752 ____A () A158F04E4606F6D157561DCD1E46C0DF

C:\WINDOWS\system32\dnsrslvr.dll
[2005-08-16 05:18] - [2008-02-20 00:32] - 0045568 ____A (Microsoft Corporation) AAC8FFBFD61E784FA3BAC851D4A0BD5F

C:\WINDOWS\system32\svchost.exe
[2005-08-16 05:18] - [2004-08-10 06:00] - 0014336 ____A (Microsoft Corporation) 8F078AE4ED187AAABC0A305146DE6716

C:\WINDOWS\system32\rpcss.dll
[2005-08-16 05:18] - [2009-02-09 05:20] - 0399360 ____A (Microsoft Corporation) 01095FEBF33BEEA00C2A0730B9B3EC28

C:\WINDOWS\system32\services.exe
[2005-08-16 05:18] - [2009-02-06 12:14] - 0110592 ____A (Microsoft Corporation) 37561F8D4160D62DA86D24AE41FAE8DE


Extra List:
=======
fssfltr(16) Gpc(6) IPSec(23) NetBT(24) PSched(25) SYMTDI(17) Tcpip(22)
0x1900000017000000140000000400000001000000020000000300000009000000050000000600000007000000080000000A0000000B0000000C0000000D0000000E0000000F0000001000000012000000130000001500000016000000110000001800000019000000


**** End of log ****

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:55 AM

Posted 16 January 2012 - 02:47 PM

EDIT:Follow steps suggested by cryptodan

Good luck

Edited by narenxp, 16 January 2012 - 03:42 PM.


#3 VA_Tim

VA_Tim
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:55 AM

Posted 16 January 2012 - 02:50 PM

Will do as soon as possible. Away from the computer right now. Thanks for your help.

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:55 AM

Posted 16 January 2012 - 02:52 PM

:thumbup2:

#5 VA_Tim

VA_Tim
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:55 AM

Posted 16 January 2012 - 03:39 PM

cryptodan - just to make sure, you want me to repost this problem to the "Virus, Trojan, Spyware, and Malware Removal Logs" forum (along with DDS and GMER logs) even though the computer appears to be clean and now has a networking issue? I just want to verify I'm not doing or interpreting anything the wrong way. Thanks!

#6 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,592 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:04:55 AM

Posted 18 January 2012 - 02:04 PM

Hi,

I have reopened this topic and moved it into the AII forum. I have also given narenxp permission to work on this one as replacing the ipsec should do the trick, which he can walk you through. I am doing this so you do not have to wait again for help in the malware removal section when this issue may be able to be fixed rather quickly.

I will leave the malware removal topic open in the event that your issues could not be resolved here.

Thanks

#7 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:55 AM

Posted 18 January 2012 - 02:12 PM

Download

TDSSkiller

Launch it,click on SCAN,after scan gets completed

Post the generated log

Launch Farbar service scanner and type

ipsec.sys in the search BOX and click on search files


Post the generated log

Good luck

Edited by narenxp, 18 January 2012 - 02:13 PM.


#8 VA_Tim

VA_Tim
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:55 AM

Posted 18 January 2012 - 02:13 PM

Thanks Grinler. I'll look for narenxp's response and tasks. Appreciate the help.

#9 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:55 AM

Posted 18 January 2012 - 04:06 PM

Hi VA_Tim

Please post the tdsskiller and FSS log suggested in my previous post

Thanks

#10 VA_Tim

VA_Tim
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:55 AM

Posted 18 January 2012 - 04:30 PM

narenxp - apologies for the delay. I'm away from the computer for a bit. I'll post the logs later tonight or early morning latest. Thanks again.

#11 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:55 AM

Posted 18 January 2012 - 04:32 PM

:thumbup2:

#12 VA_Tim

VA_Tim
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:55 AM

Posted 19 January 2012 - 08:00 AM

Here are the logs. BTW, when TDSS ran the first time, it found and fixed two problems, but before the log could be copied, the computer BSOD'd. Here's what it finds in subsequent scans:

23:08:15.0890 2320 TDSS rootkit removing tool 2.7.5.0 Jan 18 2012 09:26:24
23:08:15.0906 2320 ============================================================
23:08:15.0906 2320 Current date / time: 2012/01/18 23:08:15.0906
23:08:15.0906 2320 SystemInfo:
23:08:15.0906 2320
23:08:15.0906 2320 OS Version: 5.1.2600 ServicePack: 2.0
23:08:15.0906 2320 Product type: Workstation
23:08:15.0906 2320 ComputerName: XXXXX
23:08:15.0906 2320 UserName: XXXXX
23:08:15.0906 2320 Windows directory: C:\WINDOWS
23:08:15.0906 2320 System windows directory: C:\WINDOWS
23:08:15.0906 2320 Processor architecture: Intel x86
23:08:15.0906 2320 Number of processors: 2
23:08:15.0906 2320 Page size: 0x1000
23:08:15.0906 2320 Boot type: Normal boot
23:08:15.0906 2320 ============================================================
23:08:19.0546 2320 Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
23:08:19.0562 2320 Drive \Device\Harddisk2\DR6 - Size: 0x3DF80000 (0.97 Gb), SectorSize: 0x200, Cylinders: 0x7E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
23:08:19.0781 2320 Initialize success
23:08:21.0687 3112 ============================================================
23:08:21.0687 3112 Scan started
23:08:21.0687 3112 Mode: Manual;
23:08:21.0687 3112 ============================================================
23:08:23.0265 3112 .afd - ok
23:08:23.0421 3112 Abiosdsk - ok
23:08:23.0640 3112 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
23:08:23.0640 3112 abp480n5 - ok
23:08:23.0906 3112 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
23:08:23.0968 3112 ACPI - ok
23:08:24.0296 3112 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
23:08:24.0312 3112 ACPIEC - ok
23:08:24.0515 3112 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
23:08:24.0531 3112 adpu160m - ok
23:08:24.0781 3112 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
23:08:24.0812 3112 aec - ok
23:08:25.0140 3112 Afc (fe3ea6e9afc1a78e6edca121e006afb7) C:\WINDOWS\system32\drivers\Afc.sys
23:08:25.0140 3112 Afc - ok
23:08:25.0656 3112 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
23:08:25.0718 3112 AFD - ok
23:08:25.0906 3112 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
23:08:25.0906 3112 agp440 - ok
23:08:26.0015 3112 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
23:08:26.0015 3112 agpCPQ - ok
23:08:26.0109 3112 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
23:08:26.0109 3112 Aha154x - ok
23:08:26.0265 3112 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
23:08:26.0281 3112 aic78u2 - ok
23:08:26.0562 3112 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
23:08:26.0562 3112 aic78xx - ok
23:08:26.0796 3112 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
23:08:26.0796 3112 AliIde - ok
23:08:26.0953 3112 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
23:08:26.0953 3112 alim1541 - ok
23:08:27.0109 3112 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
23:08:27.0109 3112 amdagp - ok
23:08:27.0484 3112 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
23:08:27.0484 3112 amsint - ok
23:08:27.0671 3112 APL531 (1fc8a7e5c3aed31f00940c6ab2fd9b49) C:\WINDOWS\system32\Drivers\ov550i.sys
23:08:27.0703 3112 APL531 - ok
23:08:27.0906 3112 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
23:08:27.0906 3112 Arp1394 - ok
23:08:28.0031 3112 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
23:08:28.0031 3112 asc - ok
23:08:28.0406 3112 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
23:08:28.0406 3112 asc3350p - ok
23:08:28.0546 3112 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
23:08:28.0546 3112 asc3550 - ok
23:08:28.0734 3112 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
23:08:28.0734 3112 AsyncMac - ok
23:08:28.0828 3112 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
23:08:28.0843 3112 atapi - ok
23:08:28.0921 3112 Atdisk - ok
23:08:29.0000 3112 ati2mtag (03621f7f968ff63713943405deb777f9) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
23:08:29.0015 3112 ati2mtag - ok
23:08:29.0109 3112 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
23:08:29.0109 3112 Atmarpc - ok
23:08:29.0453 3112 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
23:08:29.0453 3112 audstub - ok
23:08:29.0781 3112 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
23:08:29.0781 3112 Beep - ok
23:08:30.0125 3112 BHDrvx86 (9d14d76e4e7b9b2ead17149011db2b11) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20111221.003\BHDrvx86.sys
23:08:30.0140 3112 BHDrvx86 - ok
23:08:30.0468 3112 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
23:08:30.0468 3112 cbidf - ok
23:08:30.0640 3112 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
23:08:30.0640 3112 cbidf2k - ok
23:08:30.0828 3112 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
23:08:30.0828 3112 CCDECODE - ok
23:08:30.0984 3112 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
23:08:30.0984 3112 cd20xrnt - ok
23:08:31.0265 3112 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
23:08:31.0265 3112 Cdaudio - ok
23:08:31.0468 3112 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
23:08:31.0484 3112 Cdfs - ok
23:08:31.0640 3112 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
23:08:31.0640 3112 Cdrom - ok
23:08:31.0718 3112 Changer - ok
23:08:31.0875 3112 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
23:08:31.0875 3112 CmdIde - ok
23:08:31.0968 3112 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
23:08:31.0968 3112 Cpqarray - ok
23:08:32.0062 3112 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
23:08:32.0125 3112 dac2w2k - ok
23:08:32.0343 3112 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
23:08:32.0343 3112 dac960nt - ok
23:08:32.0593 3112 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
23:08:32.0593 3112 Disk - ok
23:08:32.0859 3112 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
23:08:32.0906 3112 dmboot - ok
23:08:33.0078 3112 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
23:08:33.0093 3112 dmio - ok
23:08:33.0359 3112 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
23:08:33.0359 3112 dmload - ok
23:08:33.0640 3112 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
23:08:33.0640 3112 DMusic - ok
23:08:33.0921 3112 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
23:08:33.0921 3112 dpti2o - ok
23:08:34.0078 3112 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
23:08:34.0078 3112 drmkaud - ok
23:08:34.0359 3112 drvmcdb (96bc8f872f0270c10edc3931f1c03776) C:\WINDOWS\system32\drivers\drvmcdb.sys
23:08:34.0390 3112 drvmcdb - ok
23:08:34.0515 3112 drvnddm (5afbec7a6ac61b211633dfdb1d9e0c89) C:\WINDOWS\system32\drivers\drvnddm.sys
23:08:34.0515 3112 drvnddm - ok
23:08:34.0750 3112 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
23:08:34.0750 3112 DSproct - ok
23:08:34.0984 3112 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
23:08:34.0984 3112 dsunidrv - ok
23:08:35.0265 3112 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
23:08:35.0281 3112 E100B - ok
23:08:35.0453 3112 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
23:08:35.0468 3112 eeCtrl - ok
23:08:35.0484 3112 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
23:08:35.0484 3112 EraserUtilRebootDrv - ok
23:08:35.0750 3112 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
23:08:35.0828 3112 Fastfat - ok
23:08:36.0015 3112 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
23:08:36.0015 3112 Fdc - ok
23:08:36.0421 3112 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
23:08:36.0421 3112 Fips - ok
23:08:36.0734 3112 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
23:08:36.0734 3112 Flpydisk - ok
23:08:36.0953 3112 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
23:08:36.0984 3112 FltMgr - ok
23:08:37.0281 3112 fssfltr (e0087225b137e57239ff40f8ae82059b) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
23:08:37.0281 3112 fssfltr - ok
23:08:37.0671 3112 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
23:08:37.0671 3112 Fs_Rec - ok
23:08:37.0968 3112 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
23:08:37.0984 3112 Ftdisk - ok
23:08:38.0375 3112 GEARAspiWDM (5ae3a887ece5bbb72cfab273c2fd1cfa) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
23:08:38.0375 3112 GEARAspiWDM - ok
23:08:38.0531 3112 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
23:08:38.0531 3112 Gpc - ok
23:08:39.0109 3112 GTNDIS5 (fc80052194d5708254a346568f0e77c0) C:\WINDOWS\system32\GTNDIS5.SYS
23:08:39.0109 3112 GTNDIS5 - ok
23:08:39.0296 3112 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
23:08:39.0296 3112 HDAudBus - ok
23:08:39.0468 3112 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
23:08:39.0468 3112 HidUsb - ok
23:08:39.0796 3112 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
23:08:39.0796 3112 hpn - ok
23:08:40.0156 3112 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
23:08:40.0156 3112 HPZid412 - ok
23:08:40.0187 3112 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
23:08:40.0187 3112 HPZipr12 - ok
23:08:40.0359 3112 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
23:08:40.0359 3112 HPZius12 - ok
23:08:40.0546 3112 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
23:08:40.0562 3112 HTTP - ok
23:08:41.0015 3112 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
23:08:41.0015 3112 i2omgmt - ok
23:08:41.0218 3112 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
23:08:41.0218 3112 i2omp - ok
23:08:41.0328 3112 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
23:08:41.0343 3112 i8042prt - ok
23:08:41.0718 3112 IDSxpx86 (e72d3894d42355e9cd5fd77e1e4fea11) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120106.002\IDSxpx86.sys
23:08:41.0750 3112 IDSxpx86 - ok
23:08:42.0109 3112 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
23:08:42.0109 3112 Imapi - ok
23:08:42.0390 3112 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
23:08:42.0390 3112 ini910u - ok
23:08:42.0578 3112 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
23:08:42.0578 3112 IntelIde - ok
23:08:43.0000 3112 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
23:08:43.0031 3112 intelppm - ok
23:08:43.0125 3112 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
23:08:43.0125 3112 Ip6Fw - ok
23:08:43.0203 3112 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
23:08:43.0234 3112 IpFilterDriver - ok
23:08:43.0359 3112 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
23:08:43.0359 3112 IpInIp - ok
23:08:43.0546 3112 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
23:08:43.0546 3112 IpNat - ok
23:08:44.0296 3112 IPSec (a158f04e4606f6d157561dcd1e46c0df) C:\WINDOWS\system32\DRIVERS\ipsec.sys
23:08:44.0312 3112 IPSec ( Virus.Win32.ZAccess.k ) - infected
23:08:44.0312 3112 IPSec - detected Virus.Win32.ZAccess.k (0)
23:08:44.0500 3112 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
23:08:44.0515 3112 IRENUM - ok
23:08:44.0687 3112 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
23:08:44.0687 3112 isapnp - ok
23:08:45.0000 3112 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
23:08:45.0015 3112 Kbdclass - ok
23:08:45.0375 3112 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
23:08:45.0375 3112 kbdhid - ok
23:08:45.0640 3112 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
23:08:45.0718 3112 kmixer - ok
23:08:45.0984 3112 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
23:08:46.0015 3112 KSecDD - ok
23:08:46.0203 3112 lbrtfdc - ok
23:08:46.0453 3112 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
23:08:46.0453 3112 MHNDRV - ok
23:08:46.0562 3112 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
23:08:46.0562 3112 mnmdd - ok
23:08:46.0859 3112 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
23:08:46.0859 3112 Modem - ok
23:08:47.0046 3112 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
23:08:47.0046 3112 Mouclass - ok
23:08:47.0343 3112 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
23:08:47.0343 3112 mouhid - ok
23:08:47.0796 3112 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
23:08:47.0796 3112 MountMgr - ok
23:08:48.0156 3112 MR97310_USB_DUAL_CAMERA (1aae79a4176a957bf2bb679812f04655) C:\WINDOWS\system32\DRIVERS\mr97310c.sys
23:08:48.0156 3112 MR97310_USB_DUAL_CAMERA - ok
23:08:48.0343 3112 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
23:08:48.0343 3112 mraid35x - ok
23:08:48.0656 3112 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
23:08:48.0703 3112 MRxDAV - ok
23:08:49.0187 3112 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
23:08:49.0265 3112 MRxSmb - ok
23:08:49.0406 3112 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
23:08:49.0406 3112 Msfs - ok
23:08:49.0656 3112 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
23:08:49.0656 3112 MSKSSRV - ok
23:08:50.0062 3112 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
23:08:50.0062 3112 MSPCLOCK - ok
23:08:50.0312 3112 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
23:08:50.0312 3112 MSPQM - ok
23:08:50.0515 3112 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
23:08:50.0515 3112 mssmbios - ok
23:08:50.0625 3112 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
23:08:50.0906 3112 MSTEE - ok
23:08:52.0218 3112 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
23:08:52.0218 3112 Mup - ok
23:08:52.0734 3112 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
23:08:52.0765 3112 NABTSFEC - ok
23:08:53.0046 3112 NAVENG (862f55824ac81295837b0ab63f91071f) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120107.009\NAVENG.SYS
23:08:53.0046 3112 NAVENG - ok
23:08:53.0484 3112 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120107.009\NAVEX15.SYS
23:08:53.0500 3112 NAVEX15 - ok
23:08:53.0968 3112 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
23:08:54.0015 3112 NDIS - ok
23:08:54.0265 3112 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
23:08:54.0265 3112 NdisIP - ok
23:08:54.0375 3112 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
23:08:54.0375 3112 NdisTapi - ok
23:08:54.0500 3112 Ndisuio (eefa1ce63805d2145978621be5c6d955) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
23:08:54.0500 3112 Ndisuio - ok
23:08:54.0687 3112 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
23:08:54.0718 3112 NdisWan - ok
23:08:54.0937 3112 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
23:08:54.0953 3112 NDProxy - ok
23:08:55.0140 3112 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
23:08:55.0140 3112 NetBIOS - ok
23:08:55.0343 3112 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
23:08:55.0343 3112 NetBT - ok
23:08:55.0703 3112 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
23:08:55.0703 3112 NIC1394 - ok
23:08:55.0875 3112 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
23:08:55.0875 3112 Npfs - ok
23:08:55.0984 3112 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
23:08:56.0093 3112 Ntfs - ok
23:08:56.0234 3112 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
23:08:56.0234 3112 Null - ok
23:08:56.0656 3112 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
23:08:56.0843 3112 nv - ok
23:08:57.0203 3112 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
23:08:57.0203 3112 NwlnkFlt - ok
23:08:57.0390 3112 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
23:08:57.0390 3112 NwlnkFwd - ok
23:08:57.0703 3112 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
23:08:57.0734 3112 ohci1394 - ok
23:08:57.0906 3112 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
23:08:57.0921 3112 Parport - ok
23:08:58.0140 3112 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
23:08:58.0140 3112 PartMgr - ok
23:08:58.0296 3112 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
23:08:58.0296 3112 ParVdm - ok
23:08:58.0562 3112 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
23:08:58.0562 3112 PCI - ok
23:08:58.0859 3112 PCIDump - ok
23:08:59.0187 3112 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
23:08:59.0187 3112 PCIIde - ok
23:08:59.0296 3112 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
23:08:59.0296 3112 Pcmcia - ok
23:08:59.0343 3112 PDCOMP - ok
23:08:59.0437 3112 PDFRAME - ok
23:08:59.0625 3112 PDRELI - ok
23:08:59.0921 3112 PDRFRAME - ok
23:09:00.0343 3112 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
23:09:00.0343 3112 perc2 - ok
23:09:00.0656 3112 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
23:09:00.0656 3112 perc2hib - ok
23:09:01.0125 3112 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
23:09:01.0125 3112 PptpMiniport - ok
23:09:01.0312 3112 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
23:09:01.0312 3112 PSched - ok
23:09:01.0484 3112 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
23:09:01.0484 3112 Ptilink - ok
23:09:01.0703 3112 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
23:09:01.0703 3112 PxHelp20 - ok
23:09:02.0046 3112 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
23:09:02.0046 3112 ql1080 - ok
23:09:02.0250 3112 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
23:09:02.0250 3112 Ql10wnt - ok
23:09:02.0531 3112 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
23:09:02.0531 3112 ql12160 - ok
23:09:02.0843 3112 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
23:09:02.0859 3112 ql1240 - ok
23:09:03.0062 3112 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
23:09:03.0062 3112 ql1280 - ok
23:09:03.0296 3112 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
23:09:03.0296 3112 RasAcd - ok
23:09:03.0437 3112 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
23:09:03.0437 3112 Rasl2tp - ok
23:09:03.0656 3112 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
23:09:03.0656 3112 RasPppoe - ok
23:09:03.0843 3112 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
23:09:03.0843 3112 Raspti - ok
23:09:04.0125 3112 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
23:09:04.0156 3112 Rdbss - ok
23:09:04.0328 3112 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
23:09:04.0328 3112 RDPCDD - ok
23:09:04.0484 3112 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
23:09:04.0531 3112 rdpdr - ok
23:09:04.0703 3112 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
23:09:04.0734 3112 RDPWD - ok
23:09:05.0031 3112 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
23:09:05.0031 3112 redbook - ok
23:09:05.0187 3112 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
23:09:05.0187 3112 RimVSerPort - ok
23:09:05.0281 3112 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
23:09:05.0281 3112 ROOTMODEM - ok
23:09:05.0531 3112 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
23:09:05.0546 3112 Secdrv - ok
23:09:05.0718 3112 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
23:09:05.0812 3112 serenum - ok
23:09:06.0078 3112 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
23:09:06.0078 3112 Serial - ok
23:09:06.0343 3112 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
23:09:06.0343 3112 Sfloppy - ok
23:09:06.0562 3112 Simbad - ok
23:09:06.0906 3112 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
23:09:06.0906 3112 sisagp - ok
23:09:07.0218 3112 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
23:09:07.0250 3112 SLIP - ok
23:09:07.0437 3112 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
23:09:07.0437 3112 Sparrow - ok
23:09:07.0562 3112 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
23:09:07.0562 3112 splitter - ok
23:09:07.0953 3112 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
23:09:07.0968 3112 sr - ok
23:09:08.0343 3112 SRTSP (83726cf02eced69138948083e06b6eac) C:\WINDOWS\System32\Drivers\N360\0501000.01D\SRTSP.SYS
23:09:08.0343 3112 SRTSP - ok
23:09:08.0687 3112 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) C:\WINDOWS\system32\drivers\N360\0501000.01D\SRTSPX.SYS
23:09:08.0687 3112 SRTSPX - ok
23:09:09.0265 3112 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
23:09:09.0484 3112 Srv - ok
23:09:09.0953 3112 sscdbhk5 (98625722ad52b40305e74aaa83c93086) C:\WINDOWS\system32\drivers\sscdbhk5.sys
23:09:09.0953 3112 sscdbhk5 - ok
23:09:10.0093 3112 ssrtln (d79412e3942c8a257253487536d5a994) C:\WINDOWS\system32\drivers\ssrtln.sys
23:09:10.0093 3112 ssrtln - ok
23:09:10.0375 3112 STHDA (352b663a81402be7cd7bd4ea27c9998c) C:\WINDOWS\system32\drivers\sthda.sys
23:09:10.0406 3112 STHDA - ok
23:09:10.0671 3112 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
23:09:10.0671 3112 StillCam - ok
23:09:10.0968 3112 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
23:09:10.0968 3112 streamip - ok
23:09:11.0343 3112 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
23:09:11.0343 3112 swenum - ok
23:09:11.0625 3112 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
23:09:11.0625 3112 swmidi - ok
23:09:12.0062 3112 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
23:09:12.0062 3112 symc810 - ok
23:09:12.0296 3112 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
23:09:12.0296 3112 symc8xx - ok
23:09:12.0578 3112 SymDS (9bbeb8c6258e72d62e7560e6667aad39) C:\WINDOWS\system32\drivers\N360\0501000.01D\SYMDS.SYS
23:09:12.0609 3112 SymDS - ok
23:09:13.0031 3112 SymEFA (d5c02629c02a820a7e71bca3d44294a3) C:\WINDOWS\system32\drivers\N360\0501000.01D\SYMEFA.SYS
23:09:13.0171 3112 SymEFA - ok
23:09:13.0406 3112 SymEvent (ab33c3b196197ca467cbdda717860dba) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
23:09:13.0421 3112 SymEvent - ok
23:09:13.0718 3112 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\WINDOWS\system32\drivers\N360\0501000.01D\Ironx86.SYS
23:09:13.0718 3112 SymIRON - ok
23:09:14.0093 3112 SYMTDI (dec35ccaf7a222df918306cd2fdfbd39) C:\WINDOWS\System32\Drivers\N360\0501000.01D\SYMTDI.SYS
23:09:14.0093 3112 SYMTDI - ok
23:09:14.0359 3112 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
23:09:14.0359 3112 sym_hi - ok
23:09:14.0437 3112 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
23:09:14.0437 3112 sym_u3 - ok
23:09:14.0718 3112 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
23:09:14.0718 3112 sysaudio - ok
23:09:15.0234 3112 Tcpip (ad978a1b783b5719720cff204b666c8e) C:\WINDOWS\system32\DRIVERS\tcpip.sys
23:09:15.0375 3112 Tcpip - ok
23:09:15.0453 3112 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
23:09:15.0453 3112 TDPIPE - ok
23:09:15.0609 3112 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
23:09:15.0609 3112 TDTCP - ok
23:09:15.0906 3112 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
23:09:15.0906 3112 TermDD - ok
23:09:16.0062 3112 tfsnboio (d0177776e11b0b3f272eebd262a69661) C:\WINDOWS\system32\dla\tfsnboio.sys
23:09:16.0062 3112 tfsnboio - ok
23:09:16.0234 3112 tfsncofs (599804bc938b8305a5422319774da871) C:\WINDOWS\system32\dla\tfsncofs.sys
23:09:16.0234 3112 tfsncofs - ok
23:09:16.0406 3112 tfsndrct (a1902c00adc11c4d83f8e3ed947a6a32) C:\WINDOWS\system32\dla\tfsndrct.sys
23:09:16.0406 3112 tfsndrct - ok
23:09:16.0531 3112 tfsndres (d8ddb3f2b1bef15cff6728d89c042c61) C:\WINDOWS\system32\dla\tfsndres.sys
23:09:16.0531 3112 tfsndres - ok
23:09:17.0062 3112 tfsnifs (c4f2dea75300971cdaee311007de138d) C:\WINDOWS\system32\dla\tfsnifs.sys
23:09:17.0093 3112 tfsnifs - ok
23:09:17.0406 3112 tfsnopio (272925be0ea919f08286d2ee6f102b0f) C:\WINDOWS\system32\dla\tfsnopio.sys
23:09:17.0421 3112 tfsnopio - ok
23:09:17.0703 3112 tfsnpool (7b7d955e5cebc2fb88b03ef875d52a2f) C:\WINDOWS\system32\dla\tfsnpool.sys
23:09:17.0703 3112 tfsnpool - ok
23:09:18.0031 3112 tfsnudf (e3d01263109d800c1967c12c10a0b018) C:\WINDOWS\system32\dla\tfsnudf.sys
23:09:18.0046 3112 tfsnudf - ok
23:09:18.0250 3112 tfsnudfa (b9e9c377906e3a65bc74598fff7f7458) C:\WINDOWS\system32\dla\tfsnudfa.sys
23:09:18.0250 3112 tfsnudfa - ok
23:09:18.0546 3112 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
23:09:18.0546 3112 TosIde - ok
23:09:18.0859 3112 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
23:09:18.0859 3112 Udfs - ok
23:09:19.0125 3112 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
23:09:19.0125 3112 ultra - ok
23:09:19.0453 3112 Update (ced744117e91bdc0beb810f7d8608183) C:\WINDOWS\system32\DRIVERS\update.sys
23:09:19.0515 3112 Update - ok
23:09:19.0890 3112 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
23:09:19.0890 3112 usbccgp - ok
23:09:20.0203 3112 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
23:09:20.0203 3112 usbehci - ok
23:09:20.0375 3112 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
23:09:20.0375 3112 usbhub - ok
23:09:20.0609 3112 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
23:09:20.0609 3112 usbprint - ok
23:09:21.0000 3112 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
23:09:21.0000 3112 usbscan - ok
23:09:21.0125 3112 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
23:09:21.0125 3112 USBSTOR - ok
23:09:21.0156 3112 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
23:09:21.0156 3112 usbuhci - ok
23:09:21.0187 3112 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
23:09:21.0187 3112 VgaSave - ok
23:09:21.0328 3112 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
23:09:21.0328 3112 viaagp - ok
23:09:21.0468 3112 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
23:09:21.0468 3112 ViaIde - ok
23:09:21.0531 3112 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
23:09:21.0531 3112 VolSnap - ok
23:09:21.0671 3112 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
23:09:21.0703 3112 Wanarp - ok
23:09:21.0953 3112 wanatw - ok
23:09:22.0078 3112 WDICA - ok
23:09:22.0156 3112 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
23:09:22.0156 3112 wdmaud - ok
23:09:22.0312 3112 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
23:09:22.0312 3112 WSTCODEC - ok
23:09:22.0468 3112 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
23:09:22.0484 3112 WudfPf - ok
23:09:22.0687 3112 WUSB54GPV4SRV (790d0a1eff8ca30776051445d0487cdb) C:\WINDOWS\system32\DRIVERS\rt2500usb.sys
23:09:22.0703 3112 WUSB54GPV4SRV - ok
23:09:22.0828 3112 MBR (0x1B8) (5cb90281d1a59b251f6603134774eec3) \Device\Harddisk0\DR0
23:09:22.0921 3112 \Device\Harddisk0\DR0 - ok
23:09:22.0921 3112 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR6
23:09:22.0937 3112 \Device\Harddisk2\DR6 - ok
23:09:22.0953 3112 Boot (0x1200) (0e42d9a18ac7c0f21aeca554447423fc) \Device\Harddisk0\DR0\Partition0
23:09:22.0953 3112 \Device\Harddisk0\DR0\Partition0 - ok
23:09:22.0953 3112 Boot (0x1200) (ed2296cafee5d52ea8f746981f5192a3) \Device\Harddisk2\DR6\Partition0
23:09:22.0953 3112 \Device\Harddisk2\DR6\Partition0 - ok
23:09:22.0953 3112 ============================================================
23:09:22.0953 3112 Scan finished
23:09:22.0953 3112 ============================================================
23:09:22.0968 3340 Detected object count: 1
23:09:22.0968 3340 Actual detected object count: 1
23:09:30.0203 3340 VerifyFileNameVersionInfo: GetFileVersionInfoSizeW(C:\WINDOWS\system32\drivers\ipsec.sys) error 1813
23:09:31.0468 3340 Backup copy not found, trying to cure infected file..
23:09:31.0468 3340 C:\WINDOWS\system32\DRIVERS\ipsec.sys - Cure failed (FFFFFFFF)
23:09:31.0468 3340 C:\WINDOWS\system32\DRIVERS\ipsec.sys - processing error
23:09:43.0609 3340 IPSec ( Virus.Win32.ZAccess.k ) - User select action: Cure

************************************************

Farbar Service Scanner
Ran by XXXX (administrator) on 18-01-2012 at 18:57:03
Microsoft Windows XP Service Pack 2 (X86)

************************************************
================== Search: "ipsec.sys" ===================

C:\WINDOWS\system32\drivers\ipsec.sys
[2005-08-16 05:18] - [2004-08-10 06:00] - 0074752 ____A () A158F04E4606F6D157561DCD1E46C0DF

C:\WINDOWS\SoftwareDistribution\Download\cf8ec753e88561d2ddb53e183dc05c3e\ipsec.sys
[2008-08-27 02:08] - [2008-04-13 14:19] - 0075264 ____A (Microsoft Corporation) 23C74D75E36E7158768DD63D92789A91

C:\i386\ipsec.sys
[2006-01-02 18:06] - [2004-08-10 06:00] - 0074752 ____A (Microsoft Corporation) 64537AA5C003A6AFEEE1DF819062D0D1

====== End Of Search ======

#13 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:55 AM

Posted 19 January 2012 - 10:56 AM

Please open a notepad,copy the following


@ECHO OFF
COPY /Y C:\i386\ipsec.sys C:\WINDOWS\system32\drivers\ipsec.sys
DEL %0

Click on File>Save as

filename:ipsec.bat
save as type:All types

Run the BAT file,reboot the PC,check your browser and post the new FSS log

Also run TDSSkiller once and post the log

Good luck

#14 VA_Tim

VA_Tim
  • Topic Starter

  • Members
  • 11 posts
  • OFFLINE
  •  
  • Local time:03:55 AM

Posted 19 January 2012 - 06:57 PM

narenxp - new FSS and TDSSkiller logs posted below. I didn't even think about ipsec.sys being the problem (looked a bunch of other things, but not this!) The browser works now, as does ipconfig from a command prompt. The only anomaly was the first time the browser (IE) opened, the window appeared for a few seconds then closed by itself. Launching it again yielded normal behavior, and it seems fine otherwise since then.

Farbar Service Scanner
Ran by XXXX (administrator) on 19-01-2012 at 18:00:28
Microsoft Windows XP Professional Service Pack 2 (X86)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Yahoo IP is accessible.


File Check:
========
C:\WINDOWS\system32\dhcpcsvc.dll
[2005-08-16 05:18] - [2006-05-19 07:59] - 0111616 ____A (Microsoft Corporation) EF545E1A4B043DA4C84E230DD471C55F

C:\WINDOWS\system32\Drivers\afd.sys
[2008-07-08 18:35] - [2008-08-14 04:51] - 0138368 ____A (Microsoft Corporation) 55E6E1C51B6D30E54335750955453702

C:\WINDOWS\system32\Drivers\netbt.sys
[2005-08-16 05:18] - [2004-08-10 06:00] - 0162816 ____A (Microsoft Corporation) 0C80E410CD2F47134407EE7DD19CC86B

C:\WINDOWS\system32\Drivers\tcpip.sys => MD5 is legit
C:\WINDOWS\system32\Drivers\ipsec.sys
[2005-08-16 05:18] - [2004-08-10 06:00] - 0074752 ____A (Microsoft Corporation) 64537AA5C003A6AFEEE1DF819062D0D1

C:\WINDOWS\system32\dnsrslvr.dll
[2005-08-16 05:18] - [2008-02-20 00:32] - 0045568 ____A (Microsoft Corporation) AAC8FFBFD61E784FA3BAC851D4A0BD5F

C:\WINDOWS\system32\svchost.exe
[2005-08-16 05:18] - [2004-08-10 06:00] - 0014336 ____A (Microsoft Corporation) 8F078AE4ED187AAABC0A305146DE6716

C:\WINDOWS\system32\rpcss.dll
[2005-08-16 05:18] - [2009-02-09 05:20] - 0399360 ____A (Microsoft Corporation) 01095FEBF33BEEA00C2A0730B9B3EC28

C:\WINDOWS\system32\services.exe
[2005-08-16 05:18] - [2009-02-06 12:14] - 0110592 ____A (Microsoft Corporation) 37561F8D4160D62DA86D24AE41FAE8DE


Extra List:
=======
fssfltr(16) Gpc(6) IPSec(23) NetBT(24) PSched(25) SYMTDI(17) Tcpip(22)
0x1900000017000000140000000400000001000000020000000300000009000000050000000600000007000000080000000A0000000B0000000C0000000D0000000E0000000F0000001000000012000000130000001500000016000000110000001800000019000000


**** End of log ****

18:01:44.0525 1392 TDSS rootkit removing tool 2.7.5.0 Jan 18 2012 09:26:24
18:01:46.0619 1392 ============================================================
18:01:46.0619 1392 Current date / time: 2012/01/19 18:01:46.0619
18:01:46.0619 1392 SystemInfo:
18:01:46.0619 1392
18:01:46.0619 1392 OS Version: 5.1.2600 ServicePack: 2.0
18:01:46.0619 1392 Product type: Workstation
18:01:46.0619 1392 ComputerName: XXXX
18:01:46.0619 1392 UserName: XXXXX
18:01:46.0619 1392 Windows directory: C:\WINDOWS
18:01:46.0619 1392 System windows directory: C:\WINDOWS
18:01:46.0619 1392 Processor architecture: Intel x86
18:01:46.0619 1392 Number of processors: 2
18:01:46.0619 1392 Page size: 0x1000
18:01:46.0619 1392 Boot type: Normal boot
18:01:46.0619 1392 ============================================================
18:01:50.0275 1392 Drive \Device\Harddisk0\DR0 - Size: 0x2540BE4000 (149.01 Gb), SectorSize: 0x200, Cylinders: 0x4BFC, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054
18:01:50.0275 1392 Drive \Device\Harddisk2\DR6 - Size: 0x3DF80000 (0.97 Gb), SectorSize: 0x200, Cylinders: 0x7E, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
18:01:50.0385 1392 Initialize success
18:01:53.0728 2516 ============================================================
18:01:53.0728 2516 Scan started
18:01:53.0728 2516 Mode: Manual;
18:01:53.0728 2516 ============================================================
18:01:56.0135 2516 .afd - ok
18:01:56.0525 2516 Abiosdsk - ok
18:01:56.0713 2516 abp480n5 (6abb91494fe6c59089b9336452ab2ea3) C:\WINDOWS\system32\DRIVERS\ABP480N5.SYS
18:01:56.0713 2516 abp480n5 - ok
18:01:57.0213 2516 ACPI (a10c7534f7223f4a73a948967d00e69b) C:\WINDOWS\system32\DRIVERS\ACPI.sys
18:01:57.0275 2516 ACPI - ok
18:01:57.0619 2516 ACPIEC (9859c0f6936e723e4892d7141b1327d5) C:\WINDOWS\system32\drivers\ACPIEC.sys
18:01:57.0650 2516 ACPIEC - ok
18:01:57.0713 2516 adpu160m (9a11864873da202c996558b2106b0bbc) C:\WINDOWS\system32\DRIVERS\adpu160m.sys
18:01:57.0744 2516 adpu160m - ok
18:01:57.0885 2516 aec (1ee7b434ba961ef845de136224c30fec) C:\WINDOWS\system32\drivers\aec.sys
18:01:57.0900 2516 aec - ok
18:01:57.0994 2516 Afc (fe3ea6e9afc1a78e6edca121e006afb7) C:\WINDOWS\system32\drivers\Afc.sys
18:01:57.0994 2516 Afc - ok
18:01:58.0072 2516 AFD (55e6e1c51b6d30e54335750955453702) C:\WINDOWS\System32\drivers\afd.sys
18:01:58.0072 2516 AFD - ok
18:01:58.0182 2516 agp440 (2c428fa0c3e3a01ed93c9b2a27d8d4bb) C:\WINDOWS\system32\DRIVERS\agp440.sys
18:01:58.0182 2516 agp440 - ok
18:01:58.0260 2516 agpCPQ (67288b07d6aba6c1267b626e67bc56fd) C:\WINDOWS\system32\DRIVERS\agpCPQ.sys
18:01:58.0260 2516 agpCPQ - ok
18:01:58.0338 2516 Aha154x (c23ea9b5f46c7f7910db3eab648ff013) C:\WINDOWS\system32\DRIVERS\aha154x.sys
18:01:58.0338 2516 Aha154x - ok
18:01:58.0416 2516 aic78u2 (19dd0fb48b0c18892f70e2e7d61a1529) C:\WINDOWS\system32\DRIVERS\aic78u2.sys
18:01:58.0432 2516 aic78u2 - ok
18:01:58.0572 2516 aic78xx (b7fe594a7468aa0132deb03fb8e34326) C:\WINDOWS\system32\DRIVERS\aic78xx.sys
18:01:58.0572 2516 aic78xx - ok
18:01:58.0650 2516 AliIde (1140ab9938809700b46bb88e46d72a96) C:\WINDOWS\system32\DRIVERS\aliide.sys
18:01:58.0650 2516 AliIde - ok
18:01:58.0728 2516 alim1541 (f312b7cef21eff52fa23056b9d815fad) C:\WINDOWS\system32\DRIVERS\alim1541.sys
18:01:58.0728 2516 alim1541 - ok
18:01:58.0900 2516 amdagp (675c16a3c1f8482f85ee4a97fc0dde3d) C:\WINDOWS\system32\DRIVERS\amdagp.sys
18:01:58.0900 2516 amdagp - ok
18:01:58.0978 2516 amsint (79f5add8d24bd6893f2903a3e2f3fad6) C:\WINDOWS\system32\DRIVERS\amsint.sys
18:01:58.0978 2516 amsint - ok
18:01:59.0088 2516 APL531 (1fc8a7e5c3aed31f00940c6ab2fd9b49) C:\WINDOWS\system32\Drivers\ov550i.sys
18:01:59.0166 2516 APL531 - ok
18:01:59.0228 2516 Arp1394 (f0d692b0bffb46e30eb3cea168bbc49f) C:\WINDOWS\system32\DRIVERS\arp1394.sys
18:01:59.0244 2516 Arp1394 - ok
18:01:59.0307 2516 asc (62d318e9a0c8fc9b780008e724283707) C:\WINDOWS\system32\DRIVERS\asc.sys
18:01:59.0307 2516 asc - ok
18:01:59.0385 2516 asc3350p (69eb0cc7714b32896ccbfd5edcbea447) C:\WINDOWS\system32\DRIVERS\asc3350p.sys
18:01:59.0385 2516 asc3350p - ok
18:01:59.0525 2516 asc3550 (5d8de112aa0254b907861e9e9c31d597) C:\WINDOWS\system32\DRIVERS\asc3550.sys
18:01:59.0525 2516 asc3550 - ok
18:01:59.0619 2516 AsyncMac (02000abf34af4c218c35d257024807d6) C:\WINDOWS\system32\DRIVERS\asyncmac.sys
18:01:59.0635 2516 AsyncMac - ok
18:01:59.0682 2516 atapi (cdfe4411a69c224bd1d11b2da92dac51) C:\WINDOWS\system32\DRIVERS\atapi.sys
18:01:59.0682 2516 atapi - ok
18:01:59.0713 2516 Atdisk - ok
18:01:59.0853 2516 ati2mtag (03621f7f968ff63713943405deb777f9) C:\WINDOWS\system32\DRIVERS\ati2mtag.sys
18:01:59.0853 2516 ati2mtag - ok
18:01:59.0978 2516 Atmarpc (ec88da854ab7d7752ec8be11a741bb7f) C:\WINDOWS\system32\DRIVERS\atmarpc.sys
18:01:59.0978 2516 Atmarpc - ok
18:02:00.0041 2516 audstub (d9f724aa26c010a217c97606b160ed68) C:\WINDOWS\system32\DRIVERS\audstub.sys
18:02:00.0041 2516 audstub - ok
18:02:00.0088 2516 Beep (da1f27d85e0d1525f6621372e7b685e9) C:\WINDOWS\system32\drivers\Beep.sys
18:02:00.0088 2516 Beep - ok
18:02:00.0275 2516 BHDrvx86 (9d14d76e4e7b9b2ead17149011db2b11) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\BASHDefs\20111221.003\BHDrvx86.sys
18:02:00.0291 2516 BHDrvx86 - ok
18:02:00.0400 2516 cbidf (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\DRIVERS\cbidf2k.sys
18:02:00.0400 2516 cbidf - ok
18:02:00.0510 2516 cbidf2k (90a673fc8e12a79afbed2576f6a7aaf9) C:\WINDOWS\system32\drivers\cbidf2k.sys
18:02:00.0510 2516 cbidf2k - ok
18:02:00.0588 2516 CCDECODE (6163ed60b684bab19d3352ab22fc48b2) C:\WINDOWS\system32\DRIVERS\CCDECODE.sys
18:02:00.0619 2516 CCDECODE - ok
18:02:00.0666 2516 cd20xrnt (f3ec03299634490e97bbce94cd2954c7) C:\WINDOWS\system32\DRIVERS\cd20xrnt.sys
18:02:00.0682 2516 cd20xrnt - ok
18:02:00.0728 2516 Cdaudio (c1b486a7658353d33a10cc15211a873b) C:\WINDOWS\system32\drivers\Cdaudio.sys
18:02:00.0744 2516 Cdaudio - ok
18:02:00.0822 2516 Cdfs (cd7d5152df32b47f4e36f710b35aae02) C:\WINDOWS\system32\drivers\Cdfs.sys
18:02:00.0822 2516 Cdfs - ok
18:02:00.0932 2516 Cdrom (af9c19b3100fe010496b1a27181fbf72) C:\WINDOWS\system32\DRIVERS\cdrom.sys
18:02:00.0932 2516 Cdrom - ok
18:02:00.0978 2516 Changer - ok
18:02:01.0072 2516 CmdIde (e5dcb56c533014ecbc556a8357c929d5) C:\WINDOWS\system32\DRIVERS\cmdide.sys
18:02:01.0072 2516 CmdIde - ok
18:02:01.0166 2516 Cpqarray (3ee529119eed34cd212a215e8c40d4b6) C:\WINDOWS\system32\DRIVERS\cpqarray.sys
18:02:01.0166 2516 Cpqarray - ok
18:02:01.0275 2516 dac2w2k (e550e7418984b65a78299d248f0a7f36) C:\WINDOWS\system32\DRIVERS\dac2w2k.sys
18:02:01.0275 2516 dac2w2k - ok
18:02:01.0353 2516 dac960nt (683789caa3864eb46125ae86ff677d34) C:\WINDOWS\system32\DRIVERS\dac960nt.sys
18:02:01.0353 2516 dac960nt - ok
18:02:01.0416 2516 Disk (00ca44e4534865f8a3b64f7c0984bff0) C:\WINDOWS\system32\DRIVERS\disk.sys
18:02:01.0416 2516 Disk - ok
18:02:01.0541 2516 dmboot (c0fbb516e06e243f0cf31f597e7ebf7d) C:\WINDOWS\system32\drivers\dmboot.sys
18:02:01.0572 2516 dmboot - ok
18:02:01.0619 2516 dmio (f5e7b358a732d09f4bcf2824b88b9e28) C:\WINDOWS\system32\drivers\dmio.sys
18:02:01.0635 2516 dmio - ok
18:02:01.0650 2516 dmload (e9317282a63ca4d188c0df5e09c6ac5f) C:\WINDOWS\system32\drivers\dmload.sys
18:02:01.0666 2516 dmload - ok
18:02:01.0744 2516 DMusic (a6f881284ac1150e37d9ae47ff601267) C:\WINDOWS\system32\drivers\DMusic.sys
18:02:01.0760 2516 DMusic - ok
18:02:01.0900 2516 dpti2o (40f3b93b4e5b0126f2f5c0a7a5e22660) C:\WINDOWS\system32\DRIVERS\dpti2o.sys
18:02:01.0900 2516 dpti2o - ok
18:02:01.0947 2516 drmkaud (1ed4dbbae9f5d558dbba4cc450e3eb2e) C:\WINDOWS\system32\drivers\drmkaud.sys
18:02:01.0963 2516 drmkaud - ok
18:02:02.0010 2516 drvmcdb (96bc8f872f0270c10edc3931f1c03776) C:\WINDOWS\system32\drivers\drvmcdb.sys
18:02:02.0041 2516 drvmcdb - ok
18:02:02.0072 2516 drvnddm (5afbec7a6ac61b211633dfdb1d9e0c89) C:\WINDOWS\system32\drivers\drvnddm.sys
18:02:02.0072 2516 drvnddm - ok
18:02:02.0275 2516 DSproct (413f2d5f9d802688242c23b38f767ecb) C:\Program Files\DellSupport\GTAction\triggers\DSproct.sys
18:02:02.0275 2516 DSproct - ok
18:02:02.0338 2516 dsunidrv (dfeabb7cfffadea4a912ab95bdc3177a) C:\WINDOWS\system32\DRIVERS\dsunidrv.sys
18:02:02.0338 2516 dsunidrv - ok
18:02:02.0447 2516 E100B (95974e66d3de4951d29e28e8bc0b644c) C:\WINDOWS\system32\DRIVERS\e100b325.sys
18:02:02.0494 2516 E100B - ok
18:02:02.0603 2516 eeCtrl (75e8b69f28c813675b16db357f20720f) C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys
18:02:02.0603 2516 eeCtrl - ok
18:02:02.0697 2516 EraserUtilRebootDrv (720b18d76de9e603b626dfcd6f1fca7c) C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys
18:02:02.0728 2516 EraserUtilRebootDrv - ok
18:02:02.0932 2516 Fastfat (3117f595e9615e04f05a54fc15a03b20) C:\WINDOWS\system32\drivers\Fastfat.sys
18:02:02.0947 2516 Fastfat - ok
18:02:03.0010 2516 Fdc (ced2e8396a8838e59d8fd529c680e02c) C:\WINDOWS\system32\DRIVERS\fdc.sys
18:02:03.0010 2516 Fdc - ok
18:02:03.0072 2516 Fips (e153ab8a11de5452bcf5ac7652dbf3ed) C:\WINDOWS\system32\drivers\Fips.sys
18:02:03.0072 2516 Fips - ok
18:02:03.0135 2516 Flpydisk (0dd1de43115b93f4d85e889d7a86f548) C:\WINDOWS\system32\DRIVERS\flpydisk.sys
18:02:03.0135 2516 Flpydisk - ok
18:02:03.0213 2516 FltMgr (3d234fb6d6ee875eb009864a299bea29) C:\WINDOWS\system32\DRIVERS\fltMgr.sys
18:02:03.0244 2516 FltMgr - ok
18:02:03.0322 2516 fssfltr (e0087225b137e57239ff40f8ae82059b) C:\WINDOWS\system32\DRIVERS\fssfltr_tdi.sys
18:02:03.0322 2516 fssfltr - ok
18:02:03.0432 2516 Fs_Rec (3e1e2bd4f39b0e2b7dc4f4d2bcc2779a) C:\WINDOWS\system32\drivers\Fs_Rec.sys
18:02:03.0432 2516 Fs_Rec - ok
18:02:03.0510 2516 Ftdisk (6ac26732762483366c3969c9e4d2259d) C:\WINDOWS\system32\DRIVERS\ftdisk.sys
18:02:03.0510 2516 Ftdisk - ok
18:02:03.0588 2516 GEARAspiWDM (5ae3a887ece5bbb72cfab273c2fd1cfa) C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys
18:02:03.0588 2516 GEARAspiWDM - ok
18:02:03.0619 2516 Gpc (c0f1d4a21de5a415df8170616703debf) C:\WINDOWS\system32\DRIVERS\msgpc.sys
18:02:03.0619 2516 Gpc - ok
18:02:03.0697 2516 GTNDIS5 (fc80052194d5708254a346568f0e77c0) C:\WINDOWS\system32\GTNDIS5.SYS
18:02:03.0728 2516 GTNDIS5 - ok
18:02:03.0932 2516 HDAudBus (e31363d186b3e1d7c4e9117884a6aee5) C:\WINDOWS\system32\DRIVERS\HDAudBus.sys
18:02:03.0932 2516 HDAudBus - ok
18:02:04.0057 2516 HidUsb (1de6783b918f540149aa69943bdfeba8) C:\WINDOWS\system32\DRIVERS\hidusb.sys
18:02:04.0072 2516 HidUsb - ok
18:02:04.0119 2516 hpn (b028377dea0546a5fcfba928a8aefae0) C:\WINDOWS\system32\DRIVERS\hpn.sys
18:02:04.0119 2516 hpn - ok
18:02:04.0197 2516 HPZid412 (30ca91e657cede2f95359d6ef186f650) C:\WINDOWS\system32\DRIVERS\HPZid412.sys
18:02:04.0228 2516 HPZid412 - ok
18:02:04.0260 2516 HPZipr12 (efd31afa752aa7c7bbb57bcbe2b01c78) C:\WINDOWS\system32\DRIVERS\HPZipr12.sys
18:02:04.0260 2516 HPZipr12 - ok
18:02:04.0291 2516 HPZius12 (7ac43c38ca8fd7ed0b0a4466f753e06e) C:\WINDOWS\system32\DRIVERS\HPZius12.sys
18:02:04.0291 2516 HPZius12 - ok
18:02:04.0385 2516 HTTP (9f8b0f4276f618964fd118be4289b7cd) C:\WINDOWS\system32\Drivers\HTTP.sys
18:02:04.0400 2516 HTTP - ok
18:02:04.0432 2516 i2omgmt (8f09f91b5c91363b77bcd15599570f2c) C:\WINDOWS\system32\drivers\i2omgmt.sys
18:02:04.0494 2516 i2omgmt - ok
18:02:04.0557 2516 i2omp (ed6bf9e441fdea13292a6d30a64a24c3) C:\WINDOWS\system32\DRIVERS\i2omp.sys
18:02:04.0557 2516 i2omp - ok
18:02:04.0603 2516 i8042prt (5502b58eef7486ee6f93f3f164dcb808) C:\WINDOWS\system32\DRIVERS\i8042prt.sys
18:02:04.0603 2516 i8042prt - ok
18:02:04.0994 2516 IDSxpx86 (e72d3894d42355e9cd5fd77e1e4fea11) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\IPSDefs\20120106.002\IDSxpx86.sys
18:02:05.0010 2516 IDSxpx86 - ok
18:02:05.0088 2516 Imapi (f8aa320c6a0409c0380e5d8a99d76ec6) C:\WINDOWS\system32\DRIVERS\imapi.sys
18:02:05.0088 2516 Imapi - ok
18:02:05.0150 2516 ini910u (4a40e045faee58631fd8d91afc620719) C:\WINDOWS\system32\DRIVERS\ini910u.sys
18:02:05.0166 2516 ini910u - ok
18:02:05.0244 2516 IntelIde (2d722b2b54ab55b2fa475eb58d7b2aad) C:\WINDOWS\system32\DRIVERS\intelide.sys
18:02:05.0244 2516 IntelIde - ok
18:02:05.0307 2516 intelppm (279fb78702454dff2bb445f238c048d2) C:\WINDOWS\system32\DRIVERS\intelppm.sys
18:02:05.0307 2516 intelppm - ok
18:02:05.0369 2516 Ip6Fw (4448006b6bc60e6c027932cfc38d6855) C:\WINDOWS\system32\DRIVERS\Ip6Fw.sys
18:02:05.0369 2516 Ip6Fw - ok
18:02:05.0447 2516 IpFilterDriver (731f22ba402ee4b62748adaf6363c182) C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys
18:02:05.0447 2516 IpFilterDriver - ok
18:02:05.0541 2516 IpInIp (e1ec7f5da720b640cd8fb8424f1b14bb) C:\WINDOWS\system32\DRIVERS\ipinip.sys
18:02:05.0541 2516 IpInIp - ok
18:02:05.0635 2516 IpNat (e2168cbc7098ffe963c6f23f472a3593) C:\WINDOWS\system32\DRIVERS\ipnat.sys
18:02:05.0650 2516 IpNat - ok
18:02:05.0728 2516 IPSec (64537aa5c003a6afeee1df819062d0d1) C:\WINDOWS\system32\DRIVERS\ipsec.sys
18:02:05.0728 2516 IPSec - ok
18:02:05.0916 2516 IRENUM (50708daa1b1cbb7d6ac1cf8f56a24410) C:\WINDOWS\system32\DRIVERS\irenum.sys
18:02:05.0916 2516 IRENUM - ok
18:02:05.0978 2516 isapnp (e504f706ccb699c2596e9a3da1596e87) C:\WINDOWS\system32\DRIVERS\isapnp.sys
18:02:05.0978 2516 isapnp - ok
18:02:06.0025 2516 Kbdclass (ebdee8a2ee5393890a1acee971c4c246) C:\WINDOWS\system32\DRIVERS\kbdclass.sys
18:02:06.0025 2516 Kbdclass - ok
18:02:06.0103 2516 kbdhid (e182fa8e49e8ee41b4adc53093f3c7e6) C:\WINDOWS\system32\DRIVERS\kbdhid.sys
18:02:06.0103 2516 kbdhid - ok
18:02:06.0197 2516 kmixer (ba5deda4d934e6288c2f66caf58d2562) C:\WINDOWS\system32\drivers\kmixer.sys
18:02:06.0260 2516 kmixer - ok
18:02:06.0322 2516 KSecDD (674d3e5a593475915dc6643317192403) C:\WINDOWS\system32\drivers\KSecDD.sys
18:02:06.0322 2516 KSecDD - ok
18:02:06.0369 2516 lbrtfdc - ok
18:02:06.0447 2516 MHNDRV (7f2f1d2815a6449d346fcccbc569fbd6) C:\WINDOWS\system32\DRIVERS\mhndrv.sys
18:02:06.0447 2516 MHNDRV - ok
18:02:06.0588 2516 mnmdd (4ae068242760a1fb6e1a44bf4e16afa6) C:\WINDOWS\system32\drivers\mnmdd.sys
18:02:06.0588 2516 mnmdd - ok
18:02:06.0635 2516 Modem (6fc6f9d7acc36dca9b914565a3aeda05) C:\WINDOWS\system32\drivers\Modem.sys
18:02:06.0635 2516 Modem - ok
18:02:06.0682 2516 Mouclass (34e1f0031153e491910e12551400192c) C:\WINDOWS\system32\DRIVERS\mouclass.sys
18:02:06.0682 2516 Mouclass - ok
18:02:06.0775 2516 mouhid (b1c303e17fb9d46e87a98e4ba6769685) C:\WINDOWS\system32\DRIVERS\mouhid.sys
18:02:06.0775 2516 mouhid - ok
18:02:06.0978 2516 MountMgr (65653f3b4477f3c63e68a9659f85ee2e) C:\WINDOWS\system32\drivers\MountMgr.sys
18:02:06.0978 2516 MountMgr - ok
18:02:07.0088 2516 MR97310_USB_DUAL_CAMERA (1aae79a4176a957bf2bb679812f04655) C:\WINDOWS\system32\DRIVERS\mr97310c.sys
18:02:07.0150 2516 MR97310_USB_DUAL_CAMERA - ok
18:02:07.0228 2516 mraid35x (3f4bb95e5a44f3be34824e8e7caf0737) C:\WINDOWS\system32\DRIVERS\mraid35x.sys
18:02:07.0228 2516 mraid35x - ok
18:02:07.0338 2516 MRxDAV (29414447eb5bde2f8397dc965dbb3156) C:\WINDOWS\system32\DRIVERS\mrxdav.sys
18:02:07.0338 2516 MRxDAV - ok
18:02:07.0432 2516 MRxSmb (fb6c89bb3ce282b08bdb1e3c179e1c39) C:\WINDOWS\system32\DRIVERS\mrxsmb.sys
18:02:07.0494 2516 MRxSmb - ok
18:02:07.0588 2516 Msfs (561b3a4333ca2dbdba28b5b956822519) C:\WINDOWS\system32\drivers\Msfs.sys
18:02:07.0588 2516 Msfs - ok
18:02:07.0650 2516 MSKSSRV (ae431a8dd3c1d0d0610cdbac16057ad0) C:\WINDOWS\system32\drivers\MSKSSRV.sys
18:02:07.0666 2516 MSKSSRV - ok
18:02:07.0728 2516 MSPCLOCK (13e75fef9dfeb08eeded9d0246e1f448) C:\WINDOWS\system32\drivers\MSPCLOCK.sys
18:02:07.0744 2516 MSPCLOCK - ok
18:02:07.0900 2516 MSPQM (1988a33ff19242576c3d0ef9ce785da7) C:\WINDOWS\system32\drivers\MSPQM.sys
18:02:07.0900 2516 MSPQM - ok
18:02:07.0947 2516 mssmbios (469541f8bfd2b32659d5d463a6714bce) C:\WINDOWS\system32\DRIVERS\mssmbios.sys
18:02:07.0963 2516 mssmbios - ok
18:02:08.0025 2516 MSTEE (bf13612142995096ab084f2db7f40f77) C:\WINDOWS\system32\drivers\MSTEE.sys
18:02:08.0057 2516 MSTEE - ok
18:02:08.0088 2516 Mup (82035e0f41c2dd05ae41d27fe6cf7de1) C:\WINDOWS\system32\drivers\Mup.sys
18:02:08.0088 2516 Mup - ok
18:02:08.0166 2516 NABTSFEC (5c8dc6429c43dc6177c1fa5b76290d1a) C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys
18:02:08.0166 2516 NABTSFEC - ok
18:02:08.0291 2516 NAVENG (862f55824ac81295837b0ab63f91071f) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120107.009\NAVENG.SYS
18:02:08.0291 2516 NAVENG - ok
18:02:08.0400 2516 NAVEX15 (529d571b551cb9da44237389b936f1ae) C:\Documents and Settings\All Users\Application Data\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\N360_5.0.0.125\Definitions\VirusDefs\20120107.009\NAVEX15.SYS
18:02:08.0416 2516 NAVEX15 - ok
18:02:08.0541 2516 NDIS (558635d3af1c7546d26067d5d9b6959e) C:\WINDOWS\system32\drivers\NDIS.sys
18:02:08.0541 2516 NDIS - ok
18:02:08.0619 2516 NdisIP (520ce427a8b298f54112857bcf6bde15) C:\WINDOWS\system32\DRIVERS\NdisIP.sys
18:02:08.0650 2516 NdisIP - ok
18:02:08.0682 2516 NdisTapi (08d43bbdacdf23f34d79e44ed35c1b4c) C:\WINDOWS\system32\DRIVERS\ndistapi.sys
18:02:08.0682 2516 NdisTapi - ok
18:02:08.0713 2516 Ndisuio (eefa1ce63805d2145978621be5c6d955) C:\WINDOWS\system32\DRIVERS\ndisuio.sys
18:02:08.0713 2516 Ndisuio - ok
18:02:08.0744 2516 NdisWan (0b90e255a9490166ab368cd55a529893) C:\WINDOWS\system32\DRIVERS\ndiswan.sys
18:02:08.0744 2516 NdisWan - ok
18:02:08.0900 2516 NDProxy (59fc3fb44d2669bc144fd87826bb571f) C:\WINDOWS\system32\drivers\NDProxy.sys
18:02:08.0900 2516 NDProxy - ok
18:02:08.0932 2516 NetBIOS (3a2aca8fc1d7786902ca434998d7ceb4) C:\WINDOWS\system32\DRIVERS\netbios.sys
18:02:08.0947 2516 NetBIOS - ok
18:02:08.0978 2516 NetBT (0c80e410cd2f47134407ee7dd19cc86b) C:\WINDOWS\system32\DRIVERS\netbt.sys
18:02:08.0978 2516 NetBT - ok
18:02:09.0041 2516 NIC1394 (5c5c53db4fef16cf87b9911c7e8c6fbc) C:\WINDOWS\system32\DRIVERS\nic1394.sys
18:02:09.0041 2516 NIC1394 - ok
18:02:09.0135 2516 Npfs (4f601bcb8f64ea3ac0994f98fed03f8e) C:\WINDOWS\system32\drivers\Npfs.sys
18:02:09.0135 2516 Npfs - ok
18:02:09.0228 2516 Ntfs (19a811ef5f1ed5c926a028ce107ff1af) C:\WINDOWS\system32\drivers\Ntfs.sys
18:02:09.0260 2516 Ntfs - ok
18:02:09.0307 2516 Null (73c1e1f395918bc2c6dd67af7591a3ad) C:\WINDOWS\system32\drivers\Null.sys
18:02:09.0307 2516 Null - ok
18:02:09.0400 2516 nv (2b298519edbfcf451d43e0f1e8f1006d) C:\WINDOWS\system32\DRIVERS\nv4_mini.sys
18:02:09.0447 2516 nv - ok
18:02:09.0541 2516 NwlnkFlt (b305f3fad35083837ef46a0bbce2fc57) C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys
18:02:09.0541 2516 NwlnkFlt - ok
18:02:09.0635 2516 NwlnkFwd (c99b3415198d1aab7227f2c88fd664b9) C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys
18:02:09.0635 2516 NwlnkFwd - ok
18:02:09.0728 2516 ohci1394 (0951db8e5823ea366b0e408d71e1ba2a) C:\WINDOWS\system32\DRIVERS\ohci1394.sys
18:02:09.0744 2516 ohci1394 - ok
18:02:09.0822 2516 Parport (29744eb4ce659dfe3b4122deb45bc478) C:\WINDOWS\system32\DRIVERS\parport.sys
18:02:09.0822 2516 Parport - ok
18:02:09.0869 2516 PartMgr (3334430c29dc338092f79c38ef7b4cd0) C:\WINDOWS\system32\drivers\PartMgr.sys
18:02:09.0869 2516 PartMgr - ok
18:02:09.0932 2516 ParVdm (70e98b3fd8e963a6a46a2e6247e0bea1) C:\WINDOWS\system32\drivers\ParVdm.sys
18:02:09.0947 2516 ParVdm - ok
18:02:09.0994 2516 PCI (8086d9979234b603ad5bc2f5d890b234) C:\WINDOWS\system32\DRIVERS\pci.sys
18:02:09.0994 2516 PCI - ok
18:02:10.0025 2516 PCIDump - ok
18:02:10.0057 2516 PCIIde (ccf5f451bb1a5a2a522a76e670000ff0) C:\WINDOWS\system32\DRIVERS\pciide.sys
18:02:10.0072 2516 PCIIde - ok
18:02:10.0119 2516 Pcmcia (82a087207decec8456fbe8537947d579) C:\WINDOWS\system32\drivers\Pcmcia.sys
18:02:10.0119 2516 Pcmcia - ok
18:02:10.0166 2516 PDCOMP - ok
18:02:10.0213 2516 PDFRAME - ok
18:02:10.0244 2516 PDRELI - ok
18:02:10.0275 2516 PDRFRAME - ok
18:02:10.0338 2516 perc2 (6c14b9c19ba84f73d3a86dba11133101) C:\WINDOWS\system32\DRIVERS\perc2.sys
18:02:10.0338 2516 perc2 - ok
18:02:10.0416 2516 perc2hib (f50f7c27f131afe7beba13e14a3b9416) C:\WINDOWS\system32\DRIVERS\perc2hib.sys
18:02:10.0416 2516 perc2hib - ok
18:02:10.0572 2516 PptpMiniport (1c5cc65aac0783c344f16353e60b72ac) C:\WINDOWS\system32\DRIVERS\raspptp.sys
18:02:10.0572 2516 PptpMiniport - ok
18:02:10.0603 2516 PSched (48671f327553dcf1d27f6197f622a668) C:\WINDOWS\system32\DRIVERS\psched.sys
18:02:10.0603 2516 PSched - ok
18:02:10.0635 2516 Ptilink (80d317bd1c3dbc5d4fe7b1678c60cadd) C:\WINDOWS\system32\DRIVERS\ptilink.sys
18:02:10.0650 2516 Ptilink - ok
18:02:10.0697 2516 PxHelp20 (d86b4a68565e444d76457f14172c875a) C:\WINDOWS\system32\Drivers\PxHelp20.sys
18:02:10.0697 2516 PxHelp20 - ok
18:02:10.0775 2516 ql1080 (0a63fb54039eb5662433caba3b26dba7) C:\WINDOWS\system32\DRIVERS\ql1080.sys
18:02:10.0775 2516 ql1080 - ok
18:02:10.0932 2516 Ql10wnt (6503449e1d43a0ff0201ad5cb1b8c706) C:\WINDOWS\system32\DRIVERS\ql10wnt.sys
18:02:10.0932 2516 Ql10wnt - ok
18:02:11.0010 2516 ql12160 (156ed0ef20c15114ca097a34a30d8a01) C:\WINDOWS\system32\DRIVERS\ql12160.sys
18:02:11.0010 2516 ql12160 - ok
18:02:11.0072 2516 ql1240 (70f016bebde6d29e864c1230a07cc5e6) C:\WINDOWS\system32\DRIVERS\ql1240.sys
18:02:11.0072 2516 ql1240 - ok
18:02:11.0119 2516 ql1280 (907f0aeea6bc451011611e732bd31fcf) C:\WINDOWS\system32\DRIVERS\ql1280.sys
18:02:11.0135 2516 ql1280 - ok
18:02:11.0260 2516 RasAcd (fe0d99d6f31e4fad8159f690d68ded9c) C:\WINDOWS\system32\DRIVERS\rasacd.sys
18:02:11.0275 2516 RasAcd - ok
18:02:11.0307 2516 Rasl2tp (98faeb4a4dcf812ba1c6fca4aa3e115c) C:\WINDOWS\system32\DRIVERS\rasl2tp.sys
18:02:11.0307 2516 Rasl2tp - ok
18:02:11.0338 2516 RasPppoe (7306eeed8895454cbed4669be9f79faa) C:\WINDOWS\system32\DRIVERS\raspppoe.sys
18:02:11.0338 2516 RasPppoe - ok
18:02:11.0369 2516 Raspti (fdbb1d60066fcfbb7452fd8f9829b242) C:\WINDOWS\system32\DRIVERS\raspti.sys
18:02:11.0369 2516 Raspti - ok
18:02:11.0463 2516 Rdbss (03b965b1ca47f6ef60eb5e51cb50e0af) C:\WINDOWS\system32\DRIVERS\rdbss.sys
18:02:11.0525 2516 Rdbss - ok
18:02:11.0603 2516 RDPCDD (4912d5b403614ce99c28420f75353332) C:\WINDOWS\system32\DRIVERS\RDPCDD.sys
18:02:11.0603 2516 RDPCDD - ok
18:02:11.0650 2516 rdpdr (a2cae2c60bc37e0751ef9dda7ceaf4ad) C:\WINDOWS\system32\DRIVERS\rdpdr.sys
18:02:11.0650 2516 rdpdr - ok
18:02:11.0728 2516 RDPWD (b54cd38a9ebfbf2b3561426e3fe26f62) C:\WINDOWS\system32\drivers\RDPWD.sys
18:02:11.0744 2516 RDPWD - ok
18:02:11.0947 2516 redbook (b31b4588e4086d8d84adbf9845c2402b) C:\WINDOWS\system32\DRIVERS\redbook.sys
18:02:11.0947 2516 redbook - ok
18:02:12.0041 2516 RimVSerPort (d9b34325ee5df78b8f28a3de9f577c7d) C:\WINDOWS\system32\DRIVERS\RimSerial.sys
18:02:12.0041 2516 RimVSerPort - ok
18:02:12.0103 2516 ROOTMODEM (d8b0b4ade32574b2d9c5cc34dc0dbbe7) C:\WINDOWS\system32\Drivers\RootMdm.sys
18:02:12.0103 2516 ROOTMODEM - ok
18:02:12.0213 2516 Secdrv (90a3935d05b494a5a39d37e71f09a677) C:\WINDOWS\system32\DRIVERS\secdrv.sys
18:02:12.0213 2516 Secdrv - ok
18:02:12.0307 2516 serenum (a2d868aeeff612e70e213c451a70cafb) C:\WINDOWS\system32\DRIVERS\serenum.sys
18:02:12.0307 2516 serenum - ok
18:02:12.0369 2516 Serial (cd9404d115a00d249f70a371b46d5a26) C:\WINDOWS\system32\DRIVERS\serial.sys
18:02:12.0369 2516 Serial - ok
18:02:12.0432 2516 Sfloppy (0d13b6df6e9e101013a7afb0ce629fe0) C:\WINDOWS\system32\drivers\Sfloppy.sys
18:02:12.0432 2516 Sfloppy - ok
18:02:12.0557 2516 Simbad - ok
18:02:12.0619 2516 sisagp (732d859b286da692119f286b21a2a114) C:\WINDOWS\system32\DRIVERS\sisagp.sys
18:02:12.0619 2516 sisagp - ok
18:02:12.0728 2516 SLIP (5caeed86821fa2c6139e32e9e05ccdc9) C:\WINDOWS\system32\DRIVERS\SLIP.sys
18:02:12.0728 2516 SLIP - ok
18:02:12.0916 2516 Sparrow (83c0f71f86d3bdaf915685f3d568b20e) C:\WINDOWS\system32\DRIVERS\sparrow.sys
18:02:12.0932 2516 Sparrow - ok
18:02:13.0010 2516 splitter (0ce218578fff5f4f7e4201539c45c78f) C:\WINDOWS\system32\drivers\splitter.sys
18:02:13.0025 2516 splitter - ok
18:02:13.0088 2516 sr (e41b6d037d6cd08461470af04500dc24) C:\WINDOWS\system32\DRIVERS\sr.sys
18:02:13.0088 2516 sr - ok
18:02:13.0228 2516 SRTSP (83726cf02eced69138948083e06b6eac) C:\WINDOWS\System32\Drivers\N360\0501000.01D\SRTSP.SYS
18:02:13.0228 2516 SRTSP - ok
18:02:13.0275 2516 SRTSPX (4e7eab2e5615d39cf1f1df9c71e5e225) C:\WINDOWS\system32\drivers\N360\0501000.01D\SRTSPX.SYS
18:02:13.0275 2516 SRTSPX - ok
18:02:13.0385 2516 Srv (7a4f147cc6b133f905f6e65e2f8669fb) C:\WINDOWS\system32\DRIVERS\srv.sys
18:02:13.0400 2516 Srv - ok
18:02:13.0463 2516 sscdbhk5 (98625722ad52b40305e74aaa83c93086) C:\WINDOWS\system32\drivers\sscdbhk5.sys
18:02:13.0463 2516 sscdbhk5 - ok
18:02:13.0557 2516 ssrtln (d79412e3942c8a257253487536d5a994) C:\WINDOWS\system32\drivers\ssrtln.sys
18:02:13.0557 2516 ssrtln - ok
18:02:13.0650 2516 STHDA (352b663a81402be7cd7bd4ea27c9998c) C:\WINDOWS\system32\drivers\sthda.sys
18:02:13.0650 2516 STHDA - ok
18:02:13.0728 2516 StillCam (a9573045baa16eab9b1085205b82f1ed) C:\WINDOWS\system32\DRIVERS\serscan.sys
18:02:13.0760 2516 StillCam - ok
18:02:13.0963 2516 streamip (284c57df5dc7abca656bc2b96a667afb) C:\WINDOWS\system32\DRIVERS\StreamIP.sys
18:02:13.0994 2516 streamip - ok
18:02:14.0088 2516 swenum (03c1bae4766e2450219d20b993d6e046) C:\WINDOWS\system32\DRIVERS\swenum.sys
18:02:14.0088 2516 swenum - ok
18:02:14.0182 2516 swmidi (94abc808fc4b6d7d2bbf42b85e25bb4d) C:\WINDOWS\system32\drivers\swmidi.sys
18:02:14.0182 2516 swmidi - ok
18:02:14.0244 2516 symc810 (1ff3217614018630d0a6758630fc698c) C:\WINDOWS\system32\DRIVERS\symc810.sys
18:02:14.0244 2516 symc810 - ok
18:02:14.0307 2516 symc8xx (070e001d95cf725186ef8b20335f933c) C:\WINDOWS\system32\DRIVERS\symc8xx.sys
18:02:14.0307 2516 symc8xx - ok
18:02:14.0416 2516 SymDS (9bbeb8c6258e72d62e7560e6667aad39) C:\WINDOWS\system32\drivers\N360\0501000.01D\SYMDS.SYS
18:02:14.0432 2516 SymDS - ok
18:02:14.0588 2516 SymEFA (d5c02629c02a820a7e71bca3d44294a3) C:\WINDOWS\system32\drivers\N360\0501000.01D\SYMEFA.SYS
18:02:14.0603 2516 SymEFA - ok
18:02:14.0728 2516 SymEvent (ab33c3b196197ca467cbdda717860dba) C:\WINDOWS\system32\Drivers\SYMEVENT.SYS
18:02:14.0728 2516 SymEvent - ok
18:02:14.0869 2516 SymIRON (a73399804d5d4a8b20ba60fcf70c9f1f) C:\WINDOWS\system32\drivers\N360\0501000.01D\Ironx86.SYS
18:02:14.0885 2516 SymIRON - ok
18:02:14.0994 2516 SYMTDI (dec35ccaf7a222df918306cd2fdfbd39) C:\WINDOWS\System32\Drivers\N360\0501000.01D\SYMTDI.SYS
18:02:14.0994 2516 SYMTDI - ok
18:02:15.0057 2516 sym_hi (80ac1c4abbe2df3b738bf15517a51f2c) C:\WINDOWS\system32\DRIVERS\sym_hi.sys
18:02:15.0072 2516 sym_hi - ok
18:02:15.0150 2516 sym_u3 (bf4fab949a382a8e105f46ebb4937058) C:\WINDOWS\system32\DRIVERS\sym_u3.sys
18:02:15.0150 2516 sym_u3 - ok
18:02:15.0307 2516 sysaudio (650ad082d46bac0e64c9c0e0928492fd) C:\WINDOWS\system32\drivers\sysaudio.sys
18:02:15.0307 2516 sysaudio - ok
18:02:15.0416 2516 Tcpip (ad978a1b783b5719720cff204b666c8e) C:\WINDOWS\system32\DRIVERS\tcpip.sys
18:02:15.0416 2516 Tcpip - ok
18:02:15.0494 2516 TDPIPE (38d437cf2d98965f239b0abcd66dcb0f) C:\WINDOWS\system32\drivers\TDPIPE.sys
18:02:15.0494 2516 TDPIPE - ok
18:02:15.0572 2516 TDTCP (ed0580af02502d00ad8c4c066b156be9) C:\WINDOWS\system32\drivers\TDTCP.sys
18:02:15.0572 2516 TDTCP - ok
18:02:15.0635 2516 TermDD (a540a99c281d933f3d69d55e48727f47) C:\WINDOWS\system32\DRIVERS\termdd.sys
18:02:15.0635 2516 TermDD - ok
18:02:15.0713 2516 tfsnboio (d0177776e11b0b3f272eebd262a69661) C:\WINDOWS\system32\dla\tfsnboio.sys
18:02:15.0713 2516 tfsnboio - ok
18:02:15.0744 2516 tfsncofs (599804bc938b8305a5422319774da871) C:\WINDOWS\system32\dla\tfsncofs.sys
18:02:15.0744 2516 tfsncofs - ok
18:02:15.0853 2516 tfsndrct (a1902c00adc11c4d83f8e3ed947a6a32) C:\WINDOWS\system32\dla\tfsndrct.sys
18:02:15.0853 2516 tfsndrct - ok
18:02:16.0338 2516 tfsndres (d8ddb3f2b1bef15cff6728d89c042c61) C:\WINDOWS\system32\dla\tfsndres.sys
18:02:16.0353 2516 tfsndres - ok
18:02:16.0369 2516 tfsnifs (c4f2dea75300971cdaee311007de138d) C:\WINDOWS\system32\dla\tfsnifs.sys
18:02:16.0385 2516 tfsnifs - ok
18:02:16.0400 2516 tfsnopio (272925be0ea919f08286d2ee6f102b0f) C:\WINDOWS\system32\dla\tfsnopio.sys
18:02:16.0416 2516 tfsnopio - ok
18:02:16.0447 2516 tfsnpool (7b7d955e5cebc2fb88b03ef875d52a2f) C:\WINDOWS\system32\dla\tfsnpool.sys
18:02:16.0447 2516 tfsnpool - ok
18:02:16.0541 2516 tfsnudf (e3d01263109d800c1967c12c10a0b018) C:\WINDOWS\system32\dla\tfsnudf.sys
18:02:16.0541 2516 tfsnudf - ok
18:02:16.0572 2516 tfsnudfa (b9e9c377906e3a65bc74598fff7f7458) C:\WINDOWS\system32\dla\tfsnudfa.sys
18:02:16.0572 2516 tfsnudfa - ok
18:02:16.0666 2516 TosIde (f2790f6af01321b172aa62f8e1e187d9) C:\WINDOWS\system32\DRIVERS\toside.sys
18:02:16.0666 2516 TosIde - ok
18:02:16.0744 2516 Udfs (12f70256f140cd7d52c58c7048fde657) C:\WINDOWS\system32\drivers\Udfs.sys
18:02:16.0744 2516 Udfs - ok
18:02:17.0135 2516 ultra (1b698a51cd528d8da4ffaed66dfc51b9) C:\WINDOWS\system32\DRIVERS\ultra.sys
18:02:17.0166 2516 ultra - ok
18:02:17.0463 2516 Update (ced744117e91bdc0beb810f7d8608183) C:\WINDOWS\system32\DRIVERS\update.sys
18:02:17.0525 2516 Update - ok
18:02:17.0588 2516 usbccgp (bffd9f120cc63bcbaa3d840f3eef9f79) C:\WINDOWS\system32\DRIVERS\usbccgp.sys
18:02:17.0619 2516 usbccgp - ok
18:02:17.0650 2516 usbehci (15e993ba2f6946b2bfbbfcd30398621e) C:\WINDOWS\system32\DRIVERS\usbehci.sys
18:02:17.0650 2516 usbehci - ok
18:02:17.0682 2516 usbhub (c72f40947f92cea56a8fb532edf025f1) C:\WINDOWS\system32\DRIVERS\usbhub.sys
18:02:17.0682 2516 usbhub - ok
18:02:17.0744 2516 usbprint (a42369b7cd8886cd7c70f33da6fcbcf5) C:\WINDOWS\system32\DRIVERS\usbprint.sys
18:02:17.0744 2516 usbprint - ok
18:02:17.0947 2516 usbscan (a6bc71402f4f7dd5b77fd7f4a8ddba85) C:\WINDOWS\system32\DRIVERS\usbscan.sys
18:02:17.0978 2516 usbscan - ok
18:02:18.0041 2516 USBSTOR (6cd7b22193718f1d17a47a1cd6d37e75) C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS
18:02:18.0072 2516 USBSTOR - ok
18:02:18.0166 2516 usbuhci (f8fd1400092e23c8f2f31406ef06167b) C:\WINDOWS\system32\DRIVERS\usbuhci.sys
18:02:18.0166 2516 usbuhci - ok
18:02:18.0197 2516 VgaSave (8a60edd72b4ea5aea8202daf0e427925) C:\WINDOWS\System32\drivers\vga.sys
18:02:18.0197 2516 VgaSave - ok
18:02:18.0260 2516 viaagp (d92e7c8a30cfd14d8e15b5f7f032151b) C:\WINDOWS\system32\DRIVERS\viaagp.sys
18:02:18.0260 2516 viaagp - ok
18:02:18.0338 2516 ViaIde (59cb1338ad3654417bea49636457f65d) C:\WINDOWS\system32\DRIVERS\viaide.sys
18:02:18.0338 2516 ViaIde - ok
18:02:18.0416 2516 VolSnap (ee4660083deba849ff6c485d944b379b) C:\WINDOWS\system32\drivers\VolSnap.sys
18:02:18.0416 2516 VolSnap - ok
18:02:18.0541 2516 Wanarp (984ef0b9788abf89974cfed4bfbaacbc) C:\WINDOWS\system32\DRIVERS\wanarp.sys
18:02:18.0541 2516 Wanarp - ok
18:02:18.0635 2516 wanatw - ok
18:02:18.0666 2516 WDICA - ok
18:02:18.0744 2516 wdmaud (efd235ca22b57c81118c1aeb4798f1c1) C:\WINDOWS\system32\drivers\wdmaud.sys
18:02:18.0760 2516 wdmaud - ok
18:02:18.0932 2516 WSTCODEC (d5842484f05e12121c511aa93f6439ec) C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS
18:02:18.0947 2516 WSTCODEC - ok
18:02:19.0025 2516 WudfPf (f15feafffbb3644ccc80c5da584e6311) C:\WINDOWS\system32\DRIVERS\WudfPf.sys
18:02:19.0057 2516 WudfPf - ok
18:02:19.0119 2516 WUSB54GPV4SRV (790d0a1eff8ca30776051445d0487cdb) C:\WINDOWS\system32\DRIVERS\rt2500usb.sys
18:02:19.0182 2516 WUSB54GPV4SRV - ok
18:02:19.0213 2516 MBR (0x1B8) (5cb90281d1a59b251f6603134774eec3) \Device\Harddisk0\DR0
18:02:19.0260 2516 \Device\Harddisk0\DR0 - ok
18:02:19.0260 2516 MBR (0x1B8) (8f558eb6672622401da993e1e865c861) \Device\Harddisk2\DR6
18:02:19.0260 2516 \Device\Harddisk2\DR6 - ok
18:02:19.0307 2516 Boot (0x1200) (0e42d9a18ac7c0f21aeca554447423fc) \Device\Harddisk0\DR0\Partition0
18:02:19.0322 2516 \Device\Harddisk0\DR0\Partition0 - ok
18:02:19.0322 2516 Boot (0x1200) (ed2296cafee5d52ea8f746981f5192a3) \Device\Harddisk2\DR6\Partition0
18:02:19.0322 2516 \Device\Harddisk2\DR6\Partition0 - ok
18:02:19.0322 2516 ============================================================
18:02:19.0322 2516 Scan finished
18:02:19.0322 2516 ============================================================
18:02:19.0338 4088 Detected object count: 0
18:02:19.0338 4088 Actual detected object count: 0

#15 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:55 AM

Posted 19 January 2012 - 10:37 PM

That looks good

Download

ESET online scanner


Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply

Good luck




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users