Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

internet connection problem


  • Please log in to reply
5 replies to this topic

#1 washerman

washerman

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:04:20 PM

Posted 06 August 2013 - 03:50 AM

I have problems connecting this PC to the internet (ipad works fine - no problem with Broadband connection).

 

Problem started after I tried to download software to find an alternative landline number for 0845 premium telephone numbers that banks use. I stopped the intallation half way through - and my problems started afterwards. I am currently online, but after a couple of hours I will lose connection. I can get back online by performing a system restore to an earlier date.

 

I have run CCleaner and Spybot - Spybot identified the following:

- ask.myglobalsearch

- myPCBackup

 

Can you help please?

 

Thanks

Dave

 



BC AdBot (Login to Remove)

 


#2 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:20 PM

Posted 06 August 2013 - 04:03 AM

:welcome:  Dave

 

Let's look for malware...

 

:step1:  Install and run MBAM

:step2:    Running TDSSKiller to obtain log

 

Note: Don't cure or delete a threat, but choose skip for all instead.

  • Please download TDSSKiller from here and save it to your Desktop
  • Doubleclick on TDSSKiller.exe to run the application, then click on Change parameters

tds2.jpg

  • In the Additional options: Check Detect TDLFS file system
  • Click Start Scan and allow the scan process to run

tds4-1.jpg

  • Choose for all threats to Skip for all of them.
  • Click Continue
  • Please post the TDSSKiller.[Version]_[Date]_[Time]_log.txt found in your root directory (typically c:\)

===================================================

 

:step2:  ESET Online Scanner

==================

Note: If your AV is blocking Eset online scanner, please temporarily disable your AV.

 

I'd like us to scan your machine with ESET OnlineScan This process may may take several hours, that is normal.

  • Hold down Control and click on this link to open ESET OnlineScan in a new window.
  • Click the esetonlinebtn.png button.
  • For alternate browsers only: (Microsoft Internet Explorer users can skip these steps)
    • Click on esetsmartinstaller_enu.exe to download the ESET Smart Installer. Save it to your desktop.
    • Double click on the icon on your desktop.
  • Check "YES, I accept the Terms of Use."
  • Click the Start button.
  • Accept any security warnings from your browser.
  • Under scan settings, check "Scan Archives" and » UNCHECK "Remove found threats" <== Important
  • Click Advanced settings and select the following:
    • Scan potentially unwanted applications
    • Scan for potentially unsafe applications
    • Enable Anti-Stealth technology
  • ESET will then download updates for itself, install itself, and begin scanning your computer. Please be patient as this can take some time.
  • When the scan completes, click List Threats
  • Copy and paste the information in your next reply. (If no malware was found you will not be presented with a log).
  • Click the Back button.
  • Click the Finish button.

===================================================


If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#3 washerman

washerman
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:04:20 PM

Posted 06 August 2013 - 01:55 PM

Hi  there

 

I have followed the insteuctions above and posted the logs below. Unfortunately I had no luck at all using ESET online scanner - my PC just froze everytime I tried to accept the security warnings.

 

Thanks

 

Malwarebytes Anti-Malware 1.75.0.1300

www.malwarebytes.org

 

Database version: v2013.08.06.01

 

Windows XP Service Pack 3 x86 NTFS

Internet Explorer 8.0.6001.18702

Dave Harriss :: PCDAVEHARRISS [administrator]

 

06/08/2013 10:42:48

mbam-log-2013-08-06 (10-42-48).txt

 

Scan type: Full scan (C:\|D:\|E:\|G:\|H:\|)

Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM

Scan options disabled: P2P

Objects scanned: 385285

Time elapsed: 1 hour(s), 47 minute(s), 48 second(s)

 

Memory Processes Detected: 0

(No malicious items detected)

 

Memory Modules Detected: 0

(No malicious items detected)

 

Registry Keys Detected: 0

(No malicious items detected)

 

Registry Values Detected: 0

(No malicious items detected)

 

Registry Data Items Detected: 0

(No malicious items detected)

 

Folders Detected: 0

(No malicious items detected)

 

Files Detected: 0

(No malicious items detected)

 

(end)

 

 

 

TDSSKiller

 

13:06:54.0047 3032  TDSS rootkit removing tool 2.8.16.0 Feb 11 2013 18:50:42

13:06:54.0375 3032  ============================================================

13:06:54.0375 3032  Current date / time: 2013/08/06 13:06:54.0375

13:06:54.0375 3032  SystemInfo:

13:06:54.0375 3032 

13:06:54.0375 3032  OS Version: 5.1.2600 ServicePack: 3.0

13:06:54.0375 3032  Product type: Workstation

13:06:54.0375 3032  ComputerName: PCDAVEHARRISS

13:06:54.0375 3032  UserName: Dave Harriss

13:06:54.0375 3032  Windows directory: C:\WINDOWS

13:06:54.0375 3032  System windows directory: C:\WINDOWS

13:06:54.0375 3032  Processor architecture: Intel x86

13:06:54.0375 3032  Number of processors: 1

13:06:54.0375 3032  Page size: 0x1000

13:06:54.0375 3032  Boot type: Normal boot

13:06:54.0375 3032  ============================================================

13:06:56.0640 3032  Drive \Device\Harddisk0\DR0 - Size: 0x262AE80000 (152.67 Gb), SectorSize: 0x200, Cylinders: 0x4DD9, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000054

13:06:56.0734 3032  Drive \Device\Harddisk5\DR7 - Size: 0x1BF2976000 (111.79 Gb), SectorSize: 0x200, Cylinders: 0x3901, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'

13:06:56.0734 3032  ============================================================

13:06:56.0734 3032  \Device\Harddisk0\DR0:

13:06:56.0734 3032  MBR partitions:

13:06:56.0734 3032  \Device\Harddisk0\DR0\Partition1: MBR, Type 0x7, StartLBA 0x620D90, BlocksNum 0x12B33109

13:06:56.0734 3032  \Device\Harddisk5\DR7:

13:06:56.0734 3032  MBR partitions:

13:06:56.0734 3032  \Device\Harddisk5\DR7\Partition1: MBR, Type 0x6, StartLBA 0x3F, BlocksNum 0xDF93782

13:06:56.0734 3032  ============================================================

13:06:56.0765 3032  C: <-> \Device\Harddisk0\DR0\Partition1

13:06:56.0765 3032  I: <-> \Device\Harddisk5\DR7\Partition1

13:06:56.0765 3032  ============================================================

13:06:56.0765 3032  Initialize success

13:06:56.0765 3032  ============================================================

13:07:52.0203 6116  ============================================================

13:07:52.0203 6116  Scan started

13:07:52.0203 6116  Mode: Manual; TDLFS;

13:07:52.0203 6116  ============================================================

13:07:54.0547 6116  ================ Scan system memory ========================

13:07:54.0562 6116  System memory - ok

13:07:54.0562 6116  ================ Scan services =============================

13:07:54.0734 6116  [ 160270FB6706B45392B3C20753BEF1A9 ] a2free          C:\Program Files\a-squared Free\a2service.exe

13:07:54.0812 6116  a2free - ok

13:07:55.0468 6116  Abiosdsk - ok

13:07:55.0500 6116  abp480n5 - ok

13:07:55.0625 6116  [ 8FD99680A539792A30E97944FDAECF17 ] ACPI            C:\WINDOWS\system32\DRIVERS\ACPI.sys

13:07:55.0672 6116  ACPI - ok

13:07:55.0812 6116  [ 9859C0F6936E723E4892D7141B1327D5 ] ACPIEC          C:\WINDOWS\system32\drivers\ACPIEC.sys

13:07:55.0828 6116  ACPIEC - ok

13:07:56.0000 6116  [ 9915504F602D277EE47FD843A677FD15 ] AdobeFlashPlayerUpdateSvc C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe

13:07:56.0031 6116  AdobeFlashPlayerUpdateSvc - ok

13:07:56.0047 6116  adpu160m - ok

13:07:56.0078 6116  [ 8BED39E3C35D6A489438B8141717A557 ] aec             C:\WINDOWS\system32\drivers\aec.sys

13:07:56.0078 6116  aec - ok

13:07:56.0125 6116  [ 1E44BC1E83D8FD2305F8D452DB109CF9 ] AFD             C:\WINDOWS\System32\drivers\afd.sys

13:07:56.0140 6116  AFD - ok

13:07:56.0156 6116  Aha154x - ok

13:07:56.0156 6116  aic78u2 - ok

13:07:56.0172 6116  aic78xx - ok

13:07:56.0250 6116  [ FBBCB95F677CBAA924140B6EA2D9A97B ] ALCXSENS        C:\WINDOWS\system32\drivers\ALCXSENS.SYS

13:07:56.0312 6116  ALCXSENS - ok

13:07:56.0422 6116  [ 4DD2C10FC6434FEDCB7C71FBDC1F107A ] ALCXWDM         C:\WINDOWS\system32\drivers\ALCXWDM.SYS

13:07:56.0500 6116  ALCXWDM - ok

13:07:56.0531 6116  [ A9A3DAA780CA6C9671A19D52456705B4 ] Alerter         C:\WINDOWS\system32\alrsvc.dll

13:07:56.0531 6116  Alerter - ok

13:07:56.0562 6116  [ 8C515081584A38AA007909CD02020B3D ] ALG             C:\WINDOWS\System32\alg.exe

13:07:56.0562 6116  ALG - ok

13:07:56.0562 6116  AliIde - ok

13:07:56.0578 6116  amsint - ok

13:07:56.0703 6116  [ A5299D04ED225D64CF07A568A3E1BF8C ] Apple Mobile Device C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe

13:07:56.0718 6116  Apple Mobile Device - ok

13:07:56.0765 6116  [ 3CB8E72B7C9887B42B90000E8CB1E7BE ] AR5211          C:\WINDOWS\system32\DRIVERS\ar5211.sys

13:07:56.0781 6116  AR5211 - ok

13:07:56.0828 6116  [ B5B8A80875C1DEDEDA8B02765642C32F ] Arp1394         C:\WINDOWS\system32\DRIVERS\arp1394.sys

13:07:56.0828 6116  Arp1394 - ok

13:07:56.0875 6116  [ 4F9CBBF95E8F7A0D4C0EDCFE3B78102E ] ASAPIW2K        C:\WINDOWS\system32\Drivers\ASAPIW2K.sys

13:07:56.0875 6116  ASAPIW2K - ok

13:07:56.0890 6116  asc - ok

13:07:56.0890 6116  asc3350p - ok

13:07:56.0906 6116  asc3550 - ok

13:07:57.0031 6116  [ 0E5E4957549056E2BF2C49F4F6B601AD ] aspnet_state    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe

13:07:57.0047 6116  aspnet_state - ok

13:07:57.0047 6116  [ B153AFFAC761E7F5FCFA822B9C4E97BC ] AsyncMac        C:\WINDOWS\system32\DRIVERS\asyncmac.sys

13:07:57.0062 6116  AsyncMac - ok

13:07:57.0093 6116  [ 9F3A2F5AA6875C72BF062C712CFA2674 ] atapi           C:\WINDOWS\system32\DRIVERS\atapi.sys

13:07:57.0093 6116  atapi - ok

13:07:57.0093 6116  Atdisk - ok

13:07:57.0125 6116  [ 9916C1225104BA14794209CFA8012159 ] Atmarpc         C:\WINDOWS\system32\DRIVERS\atmarpc.sys

13:07:57.0140 6116  Atmarpc - ok

13:07:57.0172 6116  [ DEF7A7882BEC100FE0B2CE2549188F9D ] AudioSrv        C:\WINDOWS\System32\audiosrv.dll

13:07:57.0172 6116  AudioSrv - ok

13:07:57.0250 6116  [ D9F724AA26C010A217C97606B160ED68 ] audstub         C:\WINDOWS\system32\DRIVERS\audstub.sys

13:07:57.0250 6116  audstub - ok

13:07:57.0265 6116  [ DA1F27D85E0D1525F6621372E7B685E9 ] Beep            C:\WINDOWS\system32\drivers\Beep.sys

13:07:57.0265 6116  Beep - ok

13:07:57.0312 6116  [ 574738F61FCA2935F5265DC4E5691314 ] BITS            C:\WINDOWS\system32\qmgr.dll

13:07:57.0422 6116  BITS - ok

13:07:57.0500 6116  [ DB5BEA73EDAF19AC68B2C0FAD0F92B1A ] Bonjour Service C:\Program Files\Bonjour\mDNSResponder.exe

13:07:57.0515 6116  Bonjour Service - ok

13:07:57.0562 6116  [ CFD4E51402DA9838B5A04AE680AF54A0 ] Browser         C:\WINDOWS\System32\browser.dll

13:07:57.0562 6116  Browser - ok

13:07:57.0593 6116  [ 90A673FC8E12A79AFBED2576F6A7AAF9 ] cbidf2k         C:\WINDOWS\system32\drivers\cbidf2k.sys

13:07:57.0593 6116  cbidf2k - ok

13:07:57.0640 6116  [ 20F89E232173985A455BC9A5F70D1166 ] CCALib8         C:\Program Files\Canon\CAL\CALMAIN.exe

13:07:57.0640 6116  CCALib8 - ok

13:07:57.0672 6116  [ 0BE5AEF125BE881C4F854C554F2B025C ] CCDECODE        C:\WINDOWS\system32\DRIVERS\CCDECODE.sys

13:07:57.0672 6116  CCDECODE - ok

13:07:57.0672 6116  cd20xrnt - ok

13:07:57.0703 6116  [ C1B486A7658353D33A10CC15211A873B ] Cdaudio         C:\WINDOWS\system32\drivers\Cdaudio.sys

13:07:57.0703 6116  Cdaudio - ok

13:07:57.0718 6116  [ C885B02847F5D2FD45A24E219ED93B32 ] Cdfs            C:\WINDOWS\system32\drivers\Cdfs.sys

13:07:57.0718 6116  Cdfs - ok

13:07:57.0765 6116  [ 0EA3F0CA4CE678233AB4D1BD5A633C8C ] cdrdrv          C:\WINDOWS\system32\Drivers\Cdrdrv.sys

13:07:57.0765 6116  cdrdrv - ok

13:07:57.0812 6116  [ 1F4260CC5B42272D71F79E570A27A4FE ] Cdrom           C:\WINDOWS\system32\DRIVERS\cdrom.sys

13:07:57.0812 6116  Cdrom - ok

13:07:57.0812 6116  Changer - ok

13:07:57.0843 6116  [ 1CFE720EB8D93A7158A4EBC3AB178BDE ] CiSvc           C:\WINDOWS\system32\cisvc.exe

13:07:57.0859 6116  CiSvc - ok

13:07:57.0875 6116  [ 34CBE729F38138217F9C80212A2A0C82 ] ClipSrv         C:\WINDOWS\system32\clipsrv.exe

13:07:57.0875 6116  ClipSrv - ok

13:07:57.0906 6116  [ D87ACAED61E417BBA546CED5E7E36D9C ] clr_optimization_v2.0.50727_32 C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe

13:07:57.0906 6116  clr_optimization_v2.0.50727_32 - ok

13:07:57.0922 6116  CmdIde - ok

13:07:57.0922 6116  COMSysApp - ok

13:07:57.0937 6116  Cpqarray - ok

13:07:57.0984 6116  [ 3D4E199942E29207970E04315D02AD3B ] CryptSvc        C:\WINDOWS\System32\cryptsvc.dll

13:07:57.0984 6116  CryptSvc - ok

13:07:58.0015 6116  [ ECDB9665937F737A7AB26390A6C68573 ] ctxusbm         C:\WINDOWS\system32\DRIVERS\ctxusbm.sys

13:07:58.0015 6116  ctxusbm - ok

13:07:58.0015 6116  dac2w2k - ok

13:07:58.0031 6116  dac960nt - ok

13:07:58.0093 6116  [ 6B27A5C03DFB94B4245739065431322C ] DcomLaunch      C:\WINDOWS\system32\rpcss.dll

13:07:58.0109 6116  DcomLaunch - ok

13:07:58.0172 6116  [ 5E38D7684A49CACFB752B046357E0589 ] Dhcp            C:\WINDOWS\System32\dhcpcsvc.dll

13:07:58.0172 6116  Dhcp - ok

13:07:58.0218 6116  [ 044452051F3E02E7963599FC8F4F3E25 ] Disk            C:\WINDOWS\system32\DRIVERS\disk.sys

13:07:58.0234 6116  Disk - ok

13:07:58.0234 6116  dmadmin - ok

13:07:58.0281 6116  [ D992FE1274BDE0F84AD826ACAE022A41 ] dmboot          C:\WINDOWS\system32\drivers\dmboot.sys

13:07:58.0312 6116  dmboot - ok

13:07:58.0328 6116  [ 7C824CF7BBDE77D95C08005717A95F6F ] dmio            C:\WINDOWS\system32\drivers\dmio.sys

13:07:58.0343 6116  dmio - ok

13:07:58.0375 6116  [ E9317282A63CA4D188C0DF5E09C6AC5F ] dmload          C:\WINDOWS\system32\drivers\dmload.sys

13:07:58.0375 6116  dmload - ok

13:07:58.0406 6116  [ 57EDEC2E5F59F0335E92F35184BC8631 ] dmserver        C:\WINDOWS\System32\dmserver.dll

13:07:58.0406 6116  dmserver - ok

13:07:58.0437 6116  [ 8A208DFCF89792A484E76C40E5F50B45 ] DMusic          C:\WINDOWS\system32\drivers\DMusic.sys

13:07:58.0437 6116  DMusic - ok

13:07:58.0484 6116  [ 5F7E24FA9EAB896051FFB87F840730D2 ] Dnscache        C:\WINDOWS\System32\dnsrslvr.dll

13:07:58.0484 6116  Dnscache - ok

13:07:58.0515 6116  [ 0F0F6E687E5E15579EF4DA8DD6945814 ] Dot3svc         C:\WINDOWS\System32\dot3svc.dll

13:07:58.0531 6116  Dot3svc - ok

13:07:58.0531 6116  dpti2o - ok

13:07:58.0547 6116  [ 8F5FCFF8E8848AFAC920905FBD9D33C8 ] drmkaud         C:\WINDOWS\system32\drivers\drmkaud.sys

13:07:58.0547 6116  drmkaud - ok

13:07:58.0562 6116  [ 2187855A7703ADEF0CEF9EE4285182CC ] EapHost         C:\WINDOWS\System32\eapsvc.dll

13:07:58.0562 6116  EapHost - ok

13:07:58.0593 6116  [ BC93B4A066477954555966D77FEC9ECB ] ERSvc           C:\WINDOWS\System32\ersvc.dll

13:07:58.0593 6116  ERSvc - ok

13:07:58.0640 6116  [ 65DF52F5B8B6E9BBD183505225C37315 ] Eventlog        C:\WINDOWS\system32\services.exe

13:07:58.0640 6116  Eventlog - ok

13:07:58.0687 6116  [ D4991D98F2DB73C60D042F1AEF79EFAE ] EventSystem     C:\WINDOWS\system32\es.dll

13:07:58.0703 6116  EventSystem - ok

13:07:58.0765 6116  [ 38D332A6D56AF32635675F132548343E ] Fastfat         C:\WINDOWS\system32\drivers\Fastfat.sys

13:07:58.0781 6116  Fastfat - ok

13:07:58.0828 6116  [ 99BC0B50F511924348BE19C7C7313BBF ] FastUserSwitchingCompatibility C:\WINDOWS\System32\shsvcs.dll

13:07:58.0875 6116  FastUserSwitchingCompatibility - ok

13:07:58.0890 6116  [ 92CDD60B6730B9F50F6A1A0C1F8CDC81 ] Fdc             C:\WINDOWS\system32\DRIVERS\fdc.sys

13:07:58.0890 6116  Fdc - ok

13:07:58.0906 6116  [ D45926117EB9FA946A6AF572FBE1CAA3 ] Fips            C:\WINDOWS\system32\drivers\Fips.sys

13:07:58.0906 6116  Fips - ok

13:07:58.0937 6116  [ 9D27E7B80BFCDF1CDD9B555862D5E7F0 ] Flpydisk        C:\WINDOWS\system32\DRIVERS\flpydisk.sys

13:07:58.0937 6116  Flpydisk - ok

13:07:58.0953 6116  [ B2CF4B0786F8212CB92ED2B50C6DB6B0 ] FltMgr          C:\WINDOWS\system32\drivers\fltmgr.sys

13:07:58.0953 6116  FltMgr - ok

13:07:59.0015 6116  [ 8BA7C024070F2B7FDD98ED8A4BA41789 ] FontCache3.0.0.0 c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe

13:07:59.0015 6116  FontCache3.0.0.0 - ok

13:07:59.0047 6116  [ 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A ] Fs_Rec          C:\WINDOWS\system32\drivers\Fs_Rec.sys

13:07:59.0047 6116  Fs_Rec - ok

13:07:59.0062 6116  [ 6AC26732762483366C3969C9E4D2259D ] Ftdisk          C:\WINDOWS\system32\DRIVERS\ftdisk.sys

13:07:59.0062 6116  Ftdisk - ok

13:07:59.0093 6116  [ 3A74C423CF6BCCA6982715878F450A3B ] gagp30kx        C:\WINDOWS\system32\DRIVERS\gagp30kx.sys

13:07:59.0093 6116  gagp30kx - ok

13:07:59.0125 6116  [ 185ADA973B5020655CEE342059A86CBB ] GEARAspiWDM     C:\WINDOWS\system32\DRIVERS\GEARAspiWDM.sys

13:07:59.0125 6116  GEARAspiWDM - ok

13:07:59.0156 6116  [ 35A1F815962F3552066C6BE4C969D297 ] getPlus® Helper C:\Program Files\NOS\bin\getPlus_HelperSvc.exe

13:07:59.0156 6116  getPlus® Helper - ok

13:07:59.0234 6116  [ 5CC2B1D06AC1962AF5FBBCF88D781DD8 ] GoToAssist      C:\Program Files\Citrix\GoToAssist\570\g2aservice.exe

13:07:59.0250 6116  GoToAssist - ok

13:07:59.0297 6116  [ 0A02C63C8B144BD8C86B103DEE7C86A2 ] Gpc             C:\WINDOWS\system32\DRIVERS\msgpc.sys

13:07:59.0312 6116  Gpc - ok

13:07:59.0422 6116  [ F02A533F517EB38333CB12A9E8963773 ] gupdate         C:\Program Files\Google\Update\GoogleUpdate.exe

13:07:59.0437 6116  gupdate - ok

13:07:59.0453 6116  [ F02A533F517EB38333CB12A9E8963773 ] gupdatem        C:\Program Files\Google\Update\GoogleUpdate.exe

13:07:59.0453 6116  gupdatem - ok

13:07:59.0484 6116  gusvc - ok

13:07:59.0547 6116  [ 4FCCA060DFE0C51A09DD5C3843888BCD ] helpsvc         C:\WINDOWS\PCHealth\HelpCtr\Binaries\pchsvc.dll

13:07:59.0562 6116  helpsvc - ok

13:07:59.0593 6116  [ DEB04DA35CC871B6D309B77E1443C796 ] HidServ         C:\WINDOWS\System32\hidserv.dll

13:07:59.0593 6116  HidServ - ok

13:07:59.0625 6116  [ CCF82C5EC8A7326C3066DE870C06DAF1 ] HidUsb          C:\WINDOWS\system32\DRIVERS\hidusb.sys

13:07:59.0625 6116  HidUsb - ok

13:07:59.0656 6116  [ 8878BD685E490239777BFE51320B88E9 ] hkmsvc          C:\WINDOWS\System32\kmsvc.dll

13:07:59.0672 6116  hkmsvc - ok

13:07:59.0672 6116  hpn - ok

13:07:59.0718 6116  [ F80A415EF82CD06FFAF0D971528EAD38 ] HTTP            C:\WINDOWS\system32\Drivers\HTTP.sys

13:07:59.0734 6116  HTTP - ok

13:07:59.0765 6116  [ 6100A808600F44D999CEBDEF8841C7A3 ] HTTPFilter      C:\WINDOWS\System32\w3ssl.dll

13:07:59.0765 6116  HTTPFilter - ok

13:07:59.0765 6116  i2omgmt - ok

13:07:59.0781 6116  i2omp - ok

13:07:59.0812 6116  [ 4A0B06AA8943C1E332520F7440C0AA30 ] i8042prt        C:\WINDOWS\system32\DRIVERS\i8042prt.sys

13:07:59.0812 6116  i8042prt - ok

13:07:59.0875 6116  [ 1CF03C69B49ACB70C722DF92755C0C8C ] IDriverT        C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe

13:07:59.0875 6116  IDriverT - ok

13:07:59.0922 6116  [ C01AC32DC5C03076CFB852CB5DA5229C ] idsvc           c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe

13:07:59.0968 6116  idsvc - ok

13:08:00.0000 6116  [ 083A052659F5310DD8B6A6CB05EDCF8E ] Imapi           C:\WINDOWS\system32\DRIVERS\imapi.sys

13:08:00.0000 6116  Imapi - ok

13:08:00.0187 6116  [ 30DEAF54A9755BB8546168CFE8A6B5E1 ] ImapiService    C:\WINDOWS\system32\imapi.exe

13:08:00.0203 6116  ImapiService - ok

13:08:00.0234 6116  ini910u - ok

13:08:00.0250 6116  IntelIde - ok

13:08:00.0281 6116  [ 3BB22519A194418D5FEC05D800A19AD0 ] Ip6Fw           C:\WINDOWS\system32\drivers\ip6fw.sys

13:08:00.0281 6116  Ip6Fw - ok

13:08:00.0312 6116  [ 731F22BA402EE4B62748ADAF6363C182 ] IpFilterDriver  C:\WINDOWS\system32\DRIVERS\ipfltdrv.sys

13:08:00.0312 6116  IpFilterDriver - ok

13:08:00.0312 6116  [ B87AB476DCF76E72010632B5550955F5 ] IpInIp          C:\WINDOWS\system32\DRIVERS\ipinip.sys

13:08:00.0312 6116  IpInIp - ok

13:08:00.0359 6116  [ CC748EA12C6EFFDE940EE98098BF96BB ] IpNat           C:\WINDOWS\system32\DRIVERS\ipnat.sys

13:08:00.0375 6116  IpNat - ok

13:08:00.0484 6116  [ E8A39D41474BE42FD8830CED32932D6C ] iPod Service    C:\Program Files\iPod\bin\iPodService.exe

13:08:00.0515 6116  iPod Service - ok

13:08:00.0531 6116  [ 23C74D75E36E7158768DD63D92789A91 ] IPSec           C:\WINDOWS\system32\DRIVERS\ipsec.sys

13:08:00.0531 6116  IPSec - ok

13:08:00.0562 6116  [ C93C9FF7B04D772627A3646D89F7BF89 ] IRENUM          C:\WINDOWS\system32\DRIVERS\irenum.sys

13:08:00.0562 6116  IRENUM - ok

13:08:00.0593 6116  [ 05A299EC56E52649B1CF2FC52D20F2D7 ] isapnp          C:\WINDOWS\system32\DRIVERS\isapnp.sys

13:08:00.0593 6116  isapnp - ok

13:08:00.0687 6116  [ 0A5709543986843D37A92290B7838340 ] JavaQuickStarterService C:\Program Files\Java\jre6\bin\jqs.exe

13:08:00.0718 6116  JavaQuickStarterService - ok

13:08:00.0718 6116  k750bus - ok

13:08:00.0734 6116  k750mdfl - ok

13:08:00.0734 6116  k750mdm - ok

13:08:00.0750 6116  k750mgmt - ok

13:08:00.0750 6116  k750obex - ok

13:08:00.0765 6116  [ 463C1EC80CD17420A542B7F36A36F128 ] Kbdclass        C:\WINDOWS\system32\DRIVERS\kbdclass.sys

13:08:00.0781 6116  Kbdclass - ok

13:08:00.0828 6116  [ 692BCF44383D056AED41B045A323D378 ] kmixer          C:\WINDOWS\system32\drivers\kmixer.sys

13:08:00.0843 6116  kmixer - ok

13:08:00.0875 6116  [ B467646C54CC746128904E1654C750C1 ] KSecDD          C:\WINDOWS\system32\drivers\KSecDD.sys

13:08:00.0875 6116  KSecDD - ok

13:08:00.0890 6116  [ 3A7C3CBE5D96B8AE96CE81F0B22FB527 ] lanmanserver    C:\WINDOWS\System32\srvsvc.dll

13:08:00.0890 6116  lanmanserver - ok

13:08:00.0922 6116  [ A8888A5327621856C0CEC4E385F69309 ] lanmanworkstation C:\WINDOWS\System32\wkssvc.dll

13:08:00.0937 6116  lanmanworkstation - ok

13:08:00.0953 6116  lbrtfdc - ok

13:08:01.0015 6116  [ E7DBA76194F60D3FF8AADAF96AB19AA5 ] LexBceS         C:\WINDOWS\system32\LEXBCES.EXE

13:08:01.0031 6116  LexBceS - ok

13:08:01.0047 6116  [ A7DB739AE99A796D91580147E919CC59 ] LmHosts         C:\WINDOWS\System32\lmhsvc.dll

13:08:01.0047 6116  LmHosts - ok

13:08:01.0078 6116  [ 4C14B1315E7BE1838E11C34D368E94BF ] Macromedia Licensing Service C:\Program Files\Common Files\Macromedia Shared\Service\Macromedia Licensing.exe

13:08:01.0078 6116  Macromedia Licensing Service - ok

13:08:01.0125 6116  [ 1BC1A6B644D4CC1964CD851E92B604F4 ] McAfeeFramework C:\Program Files\Common Framework\FrameworkService.exe

13:08:01.0140 6116  McAfeeFramework - ok

13:08:01.0203 6116  [ 12BEF73E0281AC793865BE1A331C67FC ] McShield        C:\Program Files\McAfee\VirusScan Enterprise\mcshield.exe

13:08:01.0234 6116  McShield - ok

13:08:01.0234 6116  [ DD61B815E2CBA6CCA6B7ED607F466652 ] McTaskManager   C:\Program Files\McAfee\VirusScan Enterprise\vstskmgr.exe

13:08:01.0234 6116  McTaskManager - ok

13:08:01.0265 6116  [ 986B1FF5814366D71E0AC5755C88F2D3 ] Messenger       C:\WINDOWS\System32\msgsvc.dll

13:08:01.0265 6116  Messenger - ok

13:08:01.0312 6116  [ 1F334EB2A13816DF45671EBB98896DA7 ] mfeapfk         C:\WINDOWS\system32\drivers\mfeapfk.sys

13:08:01.0312 6116  mfeapfk - ok

13:08:01.0312 6116  [ 8A1DEDBBDAD33587F6FAD780CE4B34B5 ] mfeavfk         C:\WINDOWS\system32\drivers\mfeavfk.sys

13:08:01.0328 6116  mfeavfk - ok

13:08:01.0343 6116  [ D800E31A019A6979698EEF0507BAA746 ] mfebopk         C:\WINDOWS\system32\drivers\mfebopk.sys

13:08:01.0343 6116  mfebopk - ok

13:08:01.0359 6116  [ 0AE14FAB8E25C258C6EBF3827C649273 ] mfehidk         C:\WINDOWS\system32\drivers\mfehidk.sys

13:08:01.0375 6116  mfehidk - ok

13:08:01.0422 6116  [ E72AFC5056F6804C616E7DC32A38945F ] mferkdk         C:\Program Files\McAfee\VirusScan Enterprise\mferkdk.sys

13:08:01.0422 6116  mferkdk - ok

13:08:01.0437 6116  [ A47F0F63E92730DE15D41624AB998C5C ] mfetdik         C:\WINDOWS\system32\drivers\mfetdik.sys

13:08:01.0453 6116  mfetdik - ok

13:08:01.0500 6116  [ 4AE068242760A1FB6E1A44BF4E16AFA6 ] mnmdd           C:\WINDOWS\system32\drivers\mnmdd.sys

13:08:01.0500 6116  mnmdd - ok

13:08:01.0531 6116  [ D18F1F0C101D06A1C1ADF26EED16FCDD ] mnmsrvc         C:\WINDOWS\system32\mnmsrvc.exe

13:08:01.0531 6116  mnmsrvc - ok

13:08:01.0578 6116  [ DFCBAD3CEC1C5F964962AE10E0BCC8E1 ] Modem           C:\WINDOWS\system32\drivers\Modem.sys

13:08:01.0578 6116  Modem - ok

13:08:01.0578 6116  [ 1992E0D143B09653AB0F9C5E04B0FD65 ] MODEMCSA        C:\WINDOWS\system32\drivers\MODEMCSA.sys

13:08:01.0578 6116  MODEMCSA - ok

13:08:01.0593 6116  [ 35C9E97194C8CFB8430125F8DBC34D04 ] Mouclass        C:\WINDOWS\system32\DRIVERS\mouclass.sys

13:08:01.0593 6116  Mouclass - ok

13:08:01.0609 6116  [ A80B9A0BAD1B73637DBCBBA7DF72D3FD ] MountMgr        C:\WINDOWS\system32\drivers\MountMgr.sys

13:08:01.0609 6116  MountMgr - ok

13:08:01.0625 6116  mraid35x - ok

13:08:01.0703 6116  [ 9BD4DCB5412921864A7AACDEDFBD1923 ] MREMP50         C:\PROGRA~1\COMMON~1\Motive\MREMP50.SYS

13:08:01.0703 6116  MREMP50 - ok

13:08:01.0734 6116  [ 2BC9E43F55DE8C30FC817ED56D0EE907 ] MREMPR5         C:\PROGRA~1\COMMON~1\Motive\MREMPR5.SYS

13:08:01.0734 6116  MREMPR5 - ok

13:08:01.0765 6116  [ 594B9D8194E3F4ECBF0325BD10BBEB05 ] MRENDIS5        C:\PROGRA~1\COMMON~1\Motive\MRENDIS5.SYS

13:08:01.0765 6116  MRENDIS5 - ok

13:08:01.0781 6116  [ 07C02C892E8E1A72D6BF35004F0E9C5E ] MRESP50         C:\PROGRA~1\COMMON~1\Motive\MRESP50.SYS

13:08:01.0781 6116  MRESP50 - ok

13:08:01.0781 6116  [ 11D42BB6206F33FBB3BA0288D3EF81BD ] MRxDAV          C:\WINDOWS\system32\DRIVERS\mrxdav.sys

13:08:01.0797 6116  MRxDAV - ok

13:08:01.0843 6116  [ 7D304A5EB4344EBEEAB53A2FE3FFB9F0 ] MRxSmb          C:\WINDOWS\system32\DRIVERS\mrxsmb.sys

13:08:01.0859 6116  MRxSmb - ok

13:08:01.0875 6116  [ A137F1470499A205ABBB9AAFB3B6F2B1 ] MSDTC           C:\WINDOWS\system32\msdtc.exe

13:08:01.0875 6116  MSDTC - ok

13:08:01.0890 6116  [ C941EA2454BA8350021D774DAF0F1027 ] Msfs            C:\WINDOWS\system32\drivers\Msfs.sys

13:08:01.0890 6116  Msfs - ok

13:08:01.0906 6116  MSIServer - ok

13:08:01.0922 6116  [ D1575E71568F4D9E14CA56B7B0453BF1 ] MSKSSRV         C:\WINDOWS\system32\drivers\MSKSSRV.sys

13:08:01.0922 6116  MSKSSRV - ok

13:08:01.0937 6116  [ 325BB26842FC7CCC1FCCE2C457317F3E ] MSPCLOCK        C:\WINDOWS\system32\drivers\MSPCLOCK.sys

13:08:01.0937 6116  MSPCLOCK - ok

13:08:01.0968 6116  [ BAD59648BA099DA4A17680B39730CB3D ] MSPQM           C:\WINDOWS\system32\drivers\MSPQM.sys

13:08:01.0968 6116  MSPQM - ok

13:08:01.0984 6116  [ AF5F4F3F14A8EA2C26DE30F7A1E17136 ] mssmbios        C:\WINDOWS\system32\DRIVERS\mssmbios.sys

13:08:01.0984 6116  mssmbios - ok

13:08:02.0031 6116  [ E53736A9E30C45FA9E7B5EAC55056D1D ] MSTEE           C:\WINDOWS\system32\drivers\MSTEE.sys

13:08:02.0031 6116  MSTEE - ok

13:08:02.0062 6116  [ 6433EC4BCE450447C7947F6181A9E268 ] Mtlmnt5         C:\WINDOWS\system32\DRIVERS\Mtlmnt5.sys

13:08:02.0078 6116  Mtlmnt5 - ok

13:08:02.0140 6116  [ 30B87862B93574A20D78E1FF63C88694 ] Mtlstrm         C:\WINDOWS\system32\DRIVERS\Mtlstrm.sys

13:08:02.0234 6116  Mtlstrm - ok

13:08:02.0265 6116  [ DE6A75F5C270E756C5508D94B6CF68F5 ] Mup             C:\WINDOWS\system32\drivers\Mup.sys

13:08:02.0265 6116  Mup - ok

13:08:02.0297 6116  [ 5B50F1B2A2ED47D560577B221DA734DB ] NABTSFEC        C:\WINDOWS\system32\DRIVERS\NABTSFEC.sys

13:08:02.0297 6116  NABTSFEC - ok

13:08:02.0343 6116  [ 0102140028FAD045756796E1C685D695 ] napagent        C:\WINDOWS\System32\qagentrt.dll

13:08:02.0359 6116  napagent - ok

13:08:02.0390 6116  [ 1DF7F42665C94B825322FAE71721130D ] NDIS            C:\WINDOWS\system32\drivers\NDIS.sys

13:08:02.0406 6116  NDIS - ok

13:08:02.0437 6116  [ 7FF1F1FD8609C149AA432F95A8163D97 ] NdisIP          C:\WINDOWS\system32\DRIVERS\NdisIP.sys

13:08:02.0437 6116  NdisIP - ok

13:08:02.0468 6116  [ 0109C4F3850DFBAB279542515386AE22 ] NdisTapi        C:\WINDOWS\system32\DRIVERS\ndistapi.sys

13:08:02.0468 6116  NdisTapi - ok

13:08:02.0515 6116  [ F927A4434C5028758A842943EF1A3849 ] Ndisuio         C:\WINDOWS\system32\DRIVERS\ndisuio.sys

13:08:02.0515 6116  Ndisuio - ok

13:08:02.0531 6116  [ EDC1531A49C80614B2CFDA43CA8659AB ] NdisWan         C:\WINDOWS\system32\DRIVERS\ndiswan.sys

13:08:02.0531 6116  NdisWan - ok

13:08:02.0578 6116  [ 9282BD12DFB069D3889EB3FCC1000A9B ] NDProxy         C:\WINDOWS\system32\drivers\NDProxy.sys

13:08:02.0578 6116  NDProxy - ok

13:08:02.0593 6116  [ 5D81CF9A2F1A3A756B66CF684911CDF0 ] NetBIOS         C:\WINDOWS\system32\DRIVERS\netbios.sys

13:08:02.0593 6116  NetBIOS - ok

13:08:02.0609 6116  [ 74B2B2F5BEA5E9A3DC021D685551BD3D ] NetBT           C:\WINDOWS\system32\DRIVERS\netbt.sys

13:08:02.0625 6116  NetBT - ok

13:08:02.0656 6116  [ B857BA82860D7FF85AE29B095645563B ] NetDDE          C:\WINDOWS\system32\netdde.exe

13:08:02.0672 6116  NetDDE - ok

13:08:02.0672 6116  [ B857BA82860D7FF85AE29B095645563B ] NetDDEdsdm      C:\WINDOWS\system32\netdde.exe

13:08:02.0687 6116  NetDDEdsdm - ok

13:08:02.0718 6116  [ BF2466B3E18E970D8A976FB95FC1CA85 ] Netlogon        C:\WINDOWS\system32\lsass.exe

13:08:02.0718 6116  Netlogon - ok

13:08:02.0734 6116  [ 13E67B55B3ABD7BF3FE7AAE5A0F9A9DE ] Netman          C:\WINDOWS\System32\netman.dll

13:08:02.0750 6116  Netman - ok

13:08:02.0797 6116  [ D34612C5D02D026535B3095D620626AE ] NetTcpPortSharing c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe

13:08:02.0812 6116  NetTcpPortSharing - ok

13:08:02.0828 6116  [ E9E47CFB2D461FA0FC75B7A74C6383EA ] NIC1394         C:\WINDOWS\system32\DRIVERS\nic1394.sys

13:08:02.0828 6116  NIC1394 - ok

13:08:02.0875 6116  [ 943337D786A56729263071623BBB9DE5 ] Nla             C:\WINDOWS\System32\mswsock.dll

13:08:02.0890 6116  Nla - ok

13:08:02.0937 6116  [ C3963D85B721A7F80D8A55F4E2867A3A ] nmwcd           C:\WINDOWS\system32\drivers\ccdcmb.sys

13:08:02.0937 6116  nmwcd - ok

13:08:02.0953 6116  [ 3859C69A77793180548802DAC9F34A38 ] nmwcdc          C:\WINDOWS\system32\drivers\ccdcmbo.sys

13:08:02.0953 6116  nmwcdc - ok

13:08:03.0000 6116  [ 3182D64AE053D6FB034F44B6DEF8034A ] Npfs            C:\WINDOWS\system32\drivers\Npfs.sys

13:08:03.0000 6116  Npfs - ok

13:08:03.0015 6116  [ 78A08DD6A8D65E697C18E1DB01C5CDCA ] Ntfs            C:\WINDOWS\system32\drivers\Ntfs.sys

13:08:03.0031 6116  Ntfs - ok

13:08:03.0047 6116  [ BF2466B3E18E970D8A976FB95FC1CA85 ] NtLmSsp         C:\WINDOWS\system32\lsass.exe

13:08:03.0047 6116  NtLmSsp - ok

13:08:03.0093 6116  [ 156F64A3345BD23C600655FB4D10BC08 ] NtmsSvc         C:\WINDOWS\system32\ntmssvc.dll

13:08:03.0109 6116  NtmsSvc - ok

13:08:03.0140 6116  [ 73C1E1F395918BC2C6DD67AF7591A3AD ] Null            C:\WINDOWS\system32\drivers\Null.sys

13:08:03.0140 6116  Null - ok

13:08:03.0187 6116  [ B305F3FAD35083837EF46A0BBCE2FC57 ] NwlnkFlt        C:\WINDOWS\system32\DRIVERS\nwlnkflt.sys

13:08:03.0203 6116  NwlnkFlt - ok

13:08:03.0203 6116  [ C99B3415198D1AAB7227F2C88FD664B9 ] NwlnkFwd        C:\WINDOWS\system32\DRIVERS\nwlnkfwd.sys

13:08:03.0203 6116  NwlnkFwd - ok

13:08:03.0328 6116  [ 785F487A64950F3CB8E9F16253BA3B7B ] odserv          C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE

13:08:03.0343 6116  odserv - ok

13:08:03.0359 6116  [ CA33832DF41AFB202EE7AEB05145922F ] ohci1394        C:\WINDOWS\system32\DRIVERS\ohci1394.sys

13:08:03.0359 6116  ohci1394 - ok

13:08:03.0406 6116  [ 5A432A042DAE460ABE7199B758E8606C ] ose             C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE

13:08:03.0406 6116  ose - ok

13:08:03.0453 6116  [ 5575FAF8F97CE5E713D108C2A58D7C7C ] Parport         C:\WINDOWS\system32\DRIVERS\parport.sys

13:08:03.0468 6116  Parport - ok

13:08:03.0484 6116  [ BEB3BA25197665D82EC7065B724171C6 ] PartMgr         C:\WINDOWS\system32\drivers\PartMgr.sys

13:08:03.0484 6116  PartMgr - ok

13:08:03.0515 6116  [ 70E98B3FD8E963A6A46A2E6247E0BEA1 ] ParVdm          C:\WINDOWS\system32\drivers\ParVdm.sys

13:08:03.0515 6116  ParVdm - ok

13:08:03.0531 6116  PCAMPR5 - ok

13:08:03.0562 6116  [ 2F9806B52CB3748B1E49222744B28E3C ] PCANDIS5        C:\WINDOWS\system32\PCANDIS5.SYS

13:08:03.0578 6116  PCANDIS5 - ok

13:08:03.0625 6116  [ C3939493F09A9CD4814B9DE6215312F0 ] pcCMService     C:\Program Files\Common Files\Motive\pcCMService.exe

13:08:03.0640 6116  pcCMService - ok

13:08:03.0687 6116  [ FD2041E9BA03DB7764B2248F02475079 ] pccsmcfd        C:\WINDOWS\system32\DRIVERS\pccsmcfd.sys

13:08:03.0687 6116  pccsmcfd - ok

13:08:03.0687 6116  [ A219903CCF74233761D92BEF471A07B1 ] PCI             C:\WINDOWS\system32\DRIVERS\pci.sys

13:08:03.0687 6116  PCI - ok

13:08:03.0703 6116  PCIDump - ok

13:08:03.0703 6116  [ CCF5F451BB1A5A2A522A76E670000FF0 ] PCIIde          C:\WINDOWS\system32\DRIVERS\pciide.sys

13:08:03.0703 6116  PCIIde - ok

13:08:03.0734 6116  [ 9E89EF60E9EE05E3F2EEF2DA7397F1C1 ] Pcmcia          C:\WINDOWS\system32\drivers\Pcmcia.sys

13:08:03.0734 6116  Pcmcia - ok

13:08:03.0750 6116  PDCOMP - ok

13:08:03.0750 6116  PDFRAME - ok

13:08:03.0765 6116  PDRELI - ok

13:08:03.0765 6116  PDRFRAME - ok

13:08:03.0781 6116  perc2 - ok

13:08:03.0797 6116  perc2hib - ok

13:08:03.0843 6116  [ 65DF52F5B8B6E9BBD183505225C37315 ] PlugPlay        C:\WINDOWS\system32\services.exe

13:08:03.0843 6116  PlugPlay - ok

13:08:03.0843 6116  [ BF2466B3E18E970D8A976FB95FC1CA85 ] PolicyAgent     C:\WINDOWS\system32\lsass.exe

13:08:03.0843 6116  PolicyAgent - ok

13:08:03.0890 6116  [ EFEEC01B1D3CF84F16DDD24D9D9D8F99 ] PptpMiniport    C:\WINDOWS\system32\DRIVERS\raspptp.sys

13:08:03.0890 6116  PptpMiniport - ok

13:08:03.0906 6116  [ A32BEBAF723557681BFC6BD93E98BD26 ] Processor       C:\WINDOWS\system32\DRIVERS\processr.sys

13:08:03.0906 6116  Processor - ok

13:08:03.0922 6116  [ BF2466B3E18E970D8A976FB95FC1CA85 ] ProtectedStorage C:\WINDOWS\system32\lsass.exe

13:08:03.0922 6116  ProtectedStorage - ok

13:08:03.0922 6116  [ 09298EC810B07E5D582CB3A3F9255424 ] PSched          C:\WINDOWS\system32\DRIVERS\psched.sys

13:08:03.0922 6116  PSched - ok

13:08:03.0953 6116  [ 80D317BD1C3DBC5D4FE7B1678C60CADD ] Ptilink         C:\WINDOWS\system32\DRIVERS\ptilink.sys

13:08:03.0953 6116  Ptilink - ok

13:08:03.0984 6116  [ 1962166E0CEB740704F30FA55AD3D509 ] PxHelp20        C:\WINDOWS\system32\Drivers\PxHelp20.sys

13:08:03.0984 6116  PxHelp20 - ok

13:08:04.0000 6116  ql1080 - ok

13:08:04.0015 6116  Ql10wnt - ok

13:08:04.0015 6116  ql12160 - ok

13:08:04.0031 6116  ql1240 - ok

13:08:04.0031 6116  ql1280 - ok

13:08:04.0093 6116  [ E2AA111B00F5205FFD52A57F48B4F642 ] RapportBuka     C:\WINDOWS\system32\drivers\RapportBuka.sys

13:08:04.0125 6116  RapportBuka - ok

13:08:04.0375 6116  [ CD55DB50735961FF8046AD3160E900A6 ] RapportCerberus_50414 C:\Documents and Settings\All Users\Application Data\Trusteer\Rapport\store\exts\RapportCerberus\baseline\RapportCerberus32_50414.sys

13:08:04.0422 6116  RapportCerberus_50414 - ok

13:08:04.0500 6116  [ 8D0A8AF4AD6BE98D2C807BF7B643B8BC ] RapportEI       C:\Program Files\Trusteer\Rapport\bin\RapportEI.sys

13:08:04.0500 6116  RapportEI - ok

13:08:04.0531 6116  [ 2DA510F53AA703D68D95E8AF82F5F2B4 ] RapportKELL     C:\WINDOWS\system32\Drivers\RapportKELL.sys

13:08:04.0531 6116  RapportKELL - ok

13:08:04.0578 6116  [ 9B0E9AF5C264521C635A3C3CB966AF85 ] RapportMgmtService C:\Program Files\Trusteer\Rapport\bin\RapportMgmtService.exe

13:08:04.0625 6116  RapportMgmtService - ok

13:08:04.0640 6116  [ 11C5C0FDB224E88AAD8B6B712D1FE7DF ] RapportPG       C:\Program Files\Trusteer\Rapport\bin\RapportPG.sys

13:08:04.0656 6116  RapportPG - ok

13:08:04.0672 6116  [ FE0D99D6F31E4FAD8159F690D68DED9C ] RasAcd          C:\WINDOWS\system32\DRIVERS\rasacd.sys

13:08:04.0672 6116  RasAcd - ok

13:08:04.0703 6116  [ AD188BE7BDF94E8DF4CA0A55C00A5073 ] RasAuto         C:\WINDOWS\System32\rasauto.dll

13:08:04.0703 6116  RasAuto - ok

13:08:04.0734 6116  [ 11B4A627BC9614B885C4969BFA5FF8A6 ] Rasl2tp         C:\WINDOWS\system32\DRIVERS\rasl2tp.sys

13:08:04.0734 6116  Rasl2tp - ok

13:08:04.0797 6116  [ 76A9A3CBEADD68CC57CDA5E1D7448235 ] RasMan          C:\WINDOWS\System32\rasmans.dll

13:08:04.0812 6116  RasMan - ok

13:08:04.0828 6116  [ 5BC962F2654137C9909C3D4603587DEE ] RasPppoe        C:\WINDOWS\system32\DRIVERS\raspppoe.sys

13:08:04.0828 6116  RasPppoe - ok

13:08:04.0843 6116  [ FDBB1D60066FCFBB7452FD8F9829B242 ] Raspti          C:\WINDOWS\system32\DRIVERS\raspti.sys

13:08:04.0843 6116  Raspti - ok

13:08:04.0890 6116  [ 7AD224AD1A1437FE28D89CF22B17780A ] Rdbss           C:\WINDOWS\system32\DRIVERS\rdbss.sys

13:08:04.0906 6116  Rdbss - ok

13:08:04.0906 6116  [ 4912D5B403614CE99C28420F75353332 ] RDPCDD          C:\WINDOWS\system32\DRIVERS\RDPCDD.sys

13:08:04.0906 6116  RDPCDD - ok

13:08:04.0968 6116  [ 43AF5212BD8FB5BA6EED9754358BD8F7 ] RDPWD           C:\WINDOWS\system32\drivers\RDPWD.sys

13:08:04.0968 6116  RDPWD - ok

13:08:05.0000 6116  [ 3C37BF86641BDA977C3BF8A840F3B7FA ] RDSessMgr       C:\WINDOWS\system32\sessmgr.exe

13:08:05.0000 6116  RDSessMgr - ok

13:08:05.0031 6116  [ 41315D97BB319BD5B5E1B367570E7B3C ] RecAgent        C:\WINDOWS\system32\DRIVERS\RecAgent.sys

13:08:05.0031 6116  RecAgent - ok

13:08:05.0047 6116  [ F828DD7E1419B6653894A8F97A0094C5 ] redbook         C:\WINDOWS\system32\DRIVERS\redbook.sys

13:08:05.0047 6116  redbook - ok

13:08:05.0078 6116  [ 7E699FF5F59B5D9DE5390E3C34C67CF5 ] RemoteAccess    C:\WINDOWS\System32\mprdim.dll

13:08:05.0093 6116  RemoteAccess - ok

13:08:05.0109 6116  [ D8B0B4ADE32574B2D9C5CC34DC0DBBE7 ] ROOTMODEM       C:\WINDOWS\system32\Drivers\RootMdm.sys

13:08:05.0109 6116  ROOTMODEM - ok

13:08:05.0140 6116  [ AAED593F84AFA419BBAE8572AF87CF6A ] RpcLocator      C:\WINDOWS\system32\locator.exe

13:08:05.0140 6116  RpcLocator - ok

13:08:05.0234 6116  [ 6B27A5C03DFB94B4245739065431322C ] RpcSs           C:\WINDOWS\system32\rpcss.dll

13:08:05.0234 6116  RpcSs - ok

13:08:05.0265 6116  [ 471B3F9741D762ABE75E9DEEA4787E47 ] RSVP            C:\WINDOWS\system32\rsvp.exe

13:08:05.0281 6116  RSVP - ok

13:08:05.0297 6116  [ 31C3EBB3A71FE56B8109BFB4ED20AE69 ] RTL8023         C:\WINDOWS\system32\DRIVERS\Rtlnic51.sys

13:08:05.0297 6116  RTL8023 - ok

13:08:05.0328 6116  [ D507C1400284176573224903819FFDA3 ] rtl8139         C:\WINDOWS\system32\DRIVERS\RTL8139.SYS

13:08:05.0328 6116  rtl8139 - ok

13:08:05.0375 6116  [ FE999B16E967C84790BE6DC1B4E78F2D ] RTL8187B        C:\WINDOWS\system32\DRIVERS\RTL8187B.sys

13:08:05.0406 6116  RTL8187B - ok

13:08:05.0468 6116  [ BF2466B3E18E970D8A976FB95FC1CA85 ] SamSs           C:\WINDOWS\system32\lsass.exe

13:08:05.0468 6116  SamSs - ok

13:08:05.0515 6116  [ 86D007E7A654B9A71D1D7D856B104353 ] SCardSvr        C:\WINDOWS\System32\SCardSvr.exe

13:08:05.0515 6116  SCardSvr - ok

13:08:05.0562 6116  [ 0A9A7365A1CA4319AA7C1D6CD8E4EAFA ] Schedule        C:\WINDOWS\system32\schedsvc.dll

13:08:05.0578 6116  Schedule - ok

13:08:05.0625 6116  [ 90A3935D05B494A5A39D37E71F09A677 ] Secdrv          C:\WINDOWS\system32\DRIVERS\secdrv.sys

13:08:05.0625 6116  Secdrv - ok

13:08:05.0640 6116  [ CBE612E2BB6A10E3563336191EDA1250 ] seclogon        C:\WINDOWS\System32\seclogon.dll

13:08:05.0656 6116  seclogon - ok

13:08:05.0656 6116  [ 7FDD5D0684ECA8C1F68B4D99D124DCD0 ] SENS            C:\WINDOWS\system32\sens.dll

13:08:05.0656 6116  SENS - ok

13:08:05.0687 6116  [ 0F29512CCD6BEAD730039FB4BD2C85CE ] serenum         C:\WINDOWS\system32\DRIVERS\serenum.sys

13:08:05.0687 6116  serenum - ok

13:08:05.0703 6116  [ CCA207A8896D4C6A0C9CE29A4AE411A7 ] Serial          C:\WINDOWS\system32\DRIVERS\serial.sys

13:08:05.0703 6116  Serial - ok

13:08:05.0750 6116  [ 2D841B7B7F6DEC32162EDFCC69D61F42 ] ServiceLayer    C:\Program Files\PC Connectivity Solution\ServiceLayer.exe

13:08:05.0781 6116  ServiceLayer - ok

13:08:05.0812 6116  [ 8E6B8C671615D126FDC553D1E2DE5562 ] Sfloppy         C:\WINDOWS\system32\drivers\Sfloppy.sys

13:08:05.0812 6116  Sfloppy - ok

13:08:05.0875 6116  [ 83F41D0D89645D7235C051AB1D9523AC ] SharedAccess    C:\WINDOWS\System32\ipnathlp.dll

13:08:05.0890 6116  SharedAccess - ok

13:08:05.0906 6116  [ 99BC0B50F511924348BE19C7C7313BBF ] ShellHWDetection C:\WINDOWS\System32\shsvcs.dll

13:08:05.0906 6116  ShellHWDetection - ok

13:08:05.0922 6116  Simbad - ok

13:08:05.0937 6116  [ 322315F6A8C1F21575CBE92DD473DA16 ] SiS315          C:\WINDOWS\system32\DRIVERS\sisgrp.sys

13:08:05.0953 6116  SiS315 - ok

13:08:05.0968 6116  [ 61CA562DEF09A782D26B3E7EDEC5369A ] SISAGP          C:\WINDOWS\system32\DRIVERS\SISAGPX.sys

13:08:05.0984 6116  SISAGP - ok

13:08:06.0015 6116  [ 88F7D6DB34FF421F8AE07AE16E6659AC ] SiSkp           C:\WINDOWS\system32\DRIVERS\srvkp.sys

13:08:06.0015 6116  SiSkp - ok

13:08:06.0062 6116  [ 866D538EBE33709A5C9F5C62B73B7D14 ] SLIP            C:\WINDOWS\system32\DRIVERS\SLIP.sys

13:08:06.0062 6116  SLIP - ok

13:08:06.0109 6116  [ 3AF1D1CF5053EE50FC675E4036929D18 ] Slntamr         C:\WINDOWS\system32\DRIVERS\slntamr.sys

13:08:06.0140 6116  Slntamr - ok

13:08:06.0172 6116  [ F06507086FF9BFDBCF3C5098A4848B5D ] SlNtHal         C:\WINDOWS\system32\DRIVERS\Slnthal.sys

13:08:06.0172 6116  SlNtHal - ok

13:08:06.0172 6116  SLService - ok

13:08:06.0187 6116  [ CD4F4CEE4481E11BDA806A9366785A1D ] SlWdmSup        C:\WINDOWS\system32\DRIVERS\SlWdmSup.sys

13:08:06.0187 6116  SlWdmSup - ok

13:08:06.0203 6116  Sparrow - ok

13:08:06.0265 6116  [ AB8B92451ECB048A4D1DE7C3FFCB4A9F ] splitter        C:\WINDOWS\system32\drivers\splitter.sys

13:08:06.0265 6116  splitter - ok

13:08:06.0297 6116  [ 60784F891563FB1B767F70117FC2428F ] Spooler         C:\WINDOWS\system32\spoolsv.exe

13:08:06.0312 6116  Spooler - ok

13:08:06.0343 6116  [ 76BB022C2FB6902FD5BDD4F78FC13A5D ] sr              C:\WINDOWS\system32\DRIVERS\sr.sys

13:08:06.0375 6116  sr - ok

13:08:06.0562 6116  [ 3805DF0AC4296A34BA4BF93B346CC378 ] srservice       C:\WINDOWS\system32\srsvc.dll

13:08:06.0609 6116  srservice - ok

13:08:06.0656 6116  [ 47DDFC2F003F7F9F0592C6874962A2E7 ] Srv             C:\WINDOWS\system32\DRIVERS\srv.sys

13:08:06.0672 6116  Srv - ok

13:08:06.0687 6116  [ 0A5679B3714EDAB99E357057EE88FCA6 ] SSDPSRV         C:\WINDOWS\System32\ssdpsrv.dll

13:08:06.0687 6116  SSDPSRV - ok

13:08:06.0750 6116  [ 8BAD69CBAC032D4BBACFCE0306174C30 ] stisvc          C:\WINDOWS\system32\wiaservc.dll

13:08:06.0765 6116  stisvc - ok

13:08:06.0812 6116  [ 77813007BA6265C4B6098187E6ED79D2 ] streamip        C:\WINDOWS\system32\DRIVERS\StreamIP.sys

13:08:06.0812 6116  streamip - ok

13:08:06.0828 6116  SupportSoft RemoteAssist - ok

13:08:06.0859 6116  [ 3941D127AEF12E93ADDF6FE6EE027E0F ] swenum          C:\WINDOWS\system32\DRIVERS\swenum.sys

13:08:06.0859 6116  swenum - ok

13:08:06.0875 6116  [ 8CE882BCC6CF8A62F2B2323D95CB3D01 ] swmidi          C:\WINDOWS\system32\drivers\swmidi.sys

13:08:06.0890 6116  swmidi - ok

13:08:06.0890 6116  SwPrv - ok

13:08:06.0906 6116  symc810 - ok

13:08:06.0906 6116  symc8xx - ok

13:08:06.0922 6116  sym_hi - ok

13:08:06.0937 6116  sym_u3 - ok

13:08:06.0953 6116  [ 8B83F3ED0F1688B4958F77CD6D2BF290 ] sysaudio        C:\WINDOWS\system32\drivers\sysaudio.sys

13:08:06.0953 6116  sysaudio - ok

13:08:06.0984 6116  [ C7ABBC59B43274B1109DF6B24D617051 ] SysmonLog       C:\WINDOWS\system32\smlogsvc.exe

13:08:07.0000 6116  SysmonLog - ok

13:08:07.0031 6116  [ 3CB78C17BB664637787C9A1C98F79C38 ] TapiSrv         C:\WINDOWS\System32\tapisrv.dll

13:08:07.0047 6116  TapiSrv - ok

13:08:07.0109 6116  [ 9AEFA14BD6B182D61E3119FA5F436D3D ] Tcpip           C:\WINDOWS\system32\DRIVERS\tcpip.sys

13:08:07.0125 6116  Tcpip - ok

13:08:07.0156 6116  [ 6471A66807F5E104E4885F5B67349397 ] TDPIPE          C:\WINDOWS\system32\drivers\TDPIPE.sys

13:08:07.0156 6116  TDPIPE - ok

13:08:07.0172 6116  [ C56B6D0402371CF3700EB322EF3AAF61 ] TDTCP           C:\WINDOWS\system32\drivers\TDTCP.sys

13:08:07.0187 6116  TDTCP - ok

13:08:07.0187 6116  [ 88155247177638048422893737429D9E ] TermDD          C:\WINDOWS\system32\DRIVERS\termdd.sys

13:08:07.0187 6116  TermDD - ok

13:08:07.0250 6116  [ FF3477C03BE7201C294C35F684B3479F ] TermService     C:\WINDOWS\System32\termsrv.dll

13:08:07.0265 6116  TermService - ok

13:08:07.0281 6116  [ 99BC0B50F511924348BE19C7C7313BBF ] Themes          C:\WINDOWS\System32\shsvcs.dll

13:08:07.0281 6116  Themes - ok

13:08:07.0281 6116  TosIde - ok

13:08:07.0312 6116  [ 55BCA12F7F523D35CA3CB833C725F54E ] TrkWks          C:\WINDOWS\system32\trkwks.dll

13:08:07.0312 6116  TrkWks - ok

13:08:07.0328 6116  [ 5787B80C2E3C5E2F56C2A233D91FA2C9 ] Udfs            C:\WINDOWS\system32\drivers\Udfs.sys

13:08:07.0328 6116  Udfs - ok

13:08:07.0343 6116  ultra - ok

13:08:07.0406 6116  [ 402DDC88356B1BAC0EE3DD1580C76A31 ] Update          C:\WINDOWS\system32\DRIVERS\update.sys

13:08:07.0422 6116  Update - ok

13:08:07.0468 6116  [ 1EBAFEB9A3FBDC41B8D9C7F0F687AD91 ] upnphost        C:\WINDOWS\System32\upnphost.dll

13:08:07.0484 6116  upnphost - ok

13:08:07.0515 6116  [ 0CCADC7391021376EDBB8AA649D04E68 ] upperdev        C:\WINDOWS\system32\DRIVERS\usbser_lowerflt.sys

13:08:07.0515 6116  upperdev - ok

13:08:07.0531 6116  [ 05365FB38FCA1E98F7A566AAAF5D1815 ] UPS             C:\WINDOWS\System32\ups.exe

13:08:07.0531 6116  UPS - ok

13:08:07.0562 6116  [ 8BF5D980CDCE35FB26F05047144BB57E ] USBAAPL         C:\WINDOWS\system32\Drivers\usbaapl.sys

13:08:07.0562 6116  USBAAPL - ok

13:08:07.0593 6116  [ E919708DB44ED8543A7C017953148330 ] usbaudio        C:\WINDOWS\system32\drivers\usbaudio.sys

13:08:07.0593 6116  usbaudio - ok

13:08:07.0625 6116  [ 173F317CE0DB8E21322E71B7E60A27E8 ] usbccgp         C:\WINDOWS\system32\DRIVERS\usbccgp.sys

13:08:07.0625 6116  usbccgp - ok

13:08:07.0640 6116  [ 65DCF09D0E37D4C6B11B5B0B76D470A7 ] usbehci         C:\WINDOWS\system32\DRIVERS\usbehci.sys

13:08:07.0640 6116  usbehci - ok

13:08:07.0672 6116  [ 1AB3CDDE553B6E064D2E754EFE20285C ] usbhub          C:\WINDOWS\system32\DRIVERS\usbhub.sys

13:08:07.0672 6116  usbhub - ok

13:08:07.0703 6116  [ 0DAECCE65366EA32B162F85F07C6753B ] usbohci         C:\WINDOWS\system32\DRIVERS\usbohci.sys

13:08:07.0718 6116  usbohci - ok

13:08:07.0734 6116  [ A717C8721046828520C9EDF31288FC00 ] usbprint        C:\WINDOWS\system32\DRIVERS\usbprint.sys

13:08:07.0734 6116  usbprint - ok

13:08:07.0750 6116  [ A0B8CF9DEB1184FBDD20784A58FA75D4 ] usbscan         C:\WINDOWS\system32\DRIVERS\usbscan.sys

13:08:07.0750 6116  usbscan - ok

13:08:07.0781 6116  [ 1C888B000C2F9492F4B15B5B6B84873E ] usbser          C:\WINDOWS\system32\drivers\usbser.sys

13:08:07.0781 6116  usbser - ok

13:08:07.0797 6116  [ 68B4F83CCCF70A2FF32EE142C234332A ] UsbserFilt      C:\WINDOWS\system32\DRIVERS\usbser_lowerfltj.sys

13:08:07.0797 6116  UsbserFilt - ok

13:08:07.0828 6116  [ A32426D9B14A089EAA1D922E0C5801A9 ] USBSTOR         C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS

13:08:07.0828 6116  USBSTOR - ok

13:08:07.0859 6116  [ 63BBFCA7F390F4C49ED4B96BFB1633E0 ] usbvideo        C:\WINDOWS\system32\Drivers\usbvideo.sys

13:08:07.0859 6116  usbvideo - ok

13:08:07.0890 6116  [ 2A7A8AD9D39A2FAF9D9293B5DAFF3A4B ] USB_RNDIS       C:\WINDOWS\system32\DRIVERS\usb8023.sys

13:08:07.0890 6116  USB_RNDIS - ok

13:08:07.0922 6116  [ 0D3A8FAFCEACD8B7625CD549757A7DF1 ] VgaSave         C:\WINDOWS\System32\drivers\vga.sys

13:08:07.0922 6116  VgaSave - ok

13:08:07.0937 6116  ViaIde - ok

13:08:07.0953 6116  [ 705C36BC6E13FDB304486898D6D8512B ] vobcom          C:\WINDOWS\system32\drivers\vobcom.sys

13:08:07.0953 6116  vobcom - ok

13:08:07.0984 6116  [ 9695E4A37E61355F2EB9C7EA65502738 ] VOBID           C:\WINDOWS\system32\DRIVERS\vobid.sys

13:08:07.0984 6116  VOBID - ok

13:08:08.0000 6116  [ D7CAEA1F03C1062816A955188D66A07E ] vobiw           C:\WINDOWS\system32\drivers\vobiw.sys

13:08:08.0000 6116  vobiw - ok

13:08:08.0031 6116  [ 4C8FCB5CC53AAB716D810740FE59D025 ] VolSnap         C:\WINDOWS\system32\drivers\VolSnap.sys

13:08:08.0047 6116  VolSnap - ok

13:08:08.0093 6116  [ 7A9DB3A67C333BF0BD42E42B8596854B ] VSS             C:\WINDOWS\System32\vssvc.exe

13:08:08.0109 6116  VSS - ok

13:08:08.0140 6116  [ 54AF4B1D5459500EF0937F6D33B1914F ] w32time         C:\WINDOWS\system32\w32time.dll

13:08:08.0156 6116  w32time - ok

13:08:08.0203 6116  [ E20B95BAEDB550F32DD489265C1DA1F6 ] Wanarp          C:\WINDOWS\system32\DRIVERS\wanarp.sys

13:08:08.0203 6116  Wanarp - ok

13:08:08.0281 6116  [ D918617B46457B9AC28027722E30F647 ] Wdf01000        C:\WINDOWS\system32\DRIVERS\Wdf01000.sys

13:08:08.0297 6116  Wdf01000 - ok

13:08:08.0297 6116  WDICA - ok

13:08:08.0328 6116  [ 6768ACF64B18196494413695F0C3A00F ] wdmaud          C:\WINDOWS\system32\drivers\wdmaud.sys

13:08:08.0328 6116  wdmaud - ok

13:08:08.0359 6116  [ 77A354E28153AD2D5E120A5A8687BC06 ] WebClient       C:\WINDOWS\System32\webclnt.dll

13:08:08.0359 6116  WebClient - ok

13:08:08.0453 6116  [ F45DD1E1365D857DD08BC23563370D0E ] WinDefend       C:\Program Files\Windows Defender\MsMpEng.exe

13:08:08.0453 6116  WinDefend - ok

13:08:08.0547 6116  [ 2D0E4ED081963804CCC196A0929275B5 ] winmgmt         C:\WINDOWS\system32\wbem\WMIsvc.dll

13:08:08.0562 6116  winmgmt - ok

13:08:08.0625 6116  [ C51B4A5C05A5475708E3C81C7765B71D ] WmdmPmSN        C:\WINDOWS\system32\MsPMSNSv.dll

13:08:08.0625 6116  WmdmPmSN - ok

13:08:08.0656 6116  [ E0673F1106E62A68D2257E376079F821 ] WmiApSrv        C:\WINDOWS\system32\wbem\wmiapsrv.exe

13:08:08.0672 6116  WmiApSrv - ok

13:08:08.0718 6116  [ 7C278E6408D1DCE642230C0585A854D5 ] wscsvc          C:\WINDOWS\system32\wscsvc.dll

13:08:08.0718 6116  wscsvc - ok

13:08:08.0750 6116  [ C98B39829C2BBD34E454150633C62C78 ] WSTCODEC        C:\WINDOWS\system32\DRIVERS\WSTCODEC.SYS

13:08:08.0750 6116  WSTCODEC - ok

13:08:08.0765 6116  [ 35321FB577CDC98CE3EB3A3EB9E4610A ] wuauserv        C:\WINDOWS\system32\wuauserv.dll

13:08:08.0765 6116  wuauserv - ok

13:08:08.0812 6116  [ EAA6324F51214D2F6718977EC9CE0DEF ] WudfPf          C:\WINDOWS\system32\DRIVERS\WudfPf.sys

13:08:08.0812 6116  WudfPf - ok

13:08:08.0843 6116  [ F91FF1E51FCA30B3C3981DB7D5924252 ] WudfRd          C:\WINDOWS\system32\DRIVERS\wudfrd.sys

13:08:08.0875 6116  WudfRd - ok

13:08:08.0906 6116  [ DDEE3682FE97037C45F4D7AB467CB8B6 ] WudfSvc         C:\WINDOWS\System32\WUDFSvc.dll

13:08:08.0906 6116  WudfSvc - ok

13:08:08.0968 6116  [ 81DC3F549F44B1C1FFF022DEC9ECF30B ] WZCSVC          C:\WINDOWS\System32\wzcsvc.dll

13:08:09.0000 6116  WZCSVC - ok

13:08:09.0031 6116  [ 295D21F14C335B53CB8154E5B1F892B9 ] xmlprov         C:\WINDOWS\System32\xmlprov.dll

13:08:09.0031 6116  xmlprov - ok

13:08:09.0078 6116  ================ Scan global ===============================

13:08:09.0125 6116  [ 42F1F4C0AFB08410E5F02D4B13EBB623 ] C:\WINDOWS\system32\basesrv.dll

13:08:09.0156 6116  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll

13:08:09.0234 6116  [ 69AE2B2E6968C316536E5B10B9702E63 ] C:\WINDOWS\system32\winsrv.dll

13:08:09.0250 6116  [ 65DF52F5B8B6E9BBD183505225C37315 ] C:\WINDOWS\system32\services.exe

13:08:09.0250 6116  [Global] - ok

13:08:09.0250 6116  ================ Scan MBR ==================================

13:08:09.0281 6116  [ A89BDDFB69EBB217D8D438F3A9AA5349 ] \Device\Harddisk0\DR0

13:08:10.0093 6116  \Device\Harddisk0\DR0 - ok

13:08:10.0109 6116  [ 8F558EB6672622401DA993E1E865C861 ] \Device\Harddisk5\DR7

13:08:10.0687 6116  \Device\Harddisk5\DR7 - ok

13:08:10.0687 6116  ================ Scan VBR ==================================

13:08:10.0703 6116  [ EF284B8D885D5BBFC8D4198396B38A43 ] \Device\Harddisk0\DR0\Partition1

13:08:10.0703 6116  \Device\Harddisk0\DR0\Partition1 - ok

13:08:10.0703 6116  [ BE9E9D719D883FAE14EE5A4F79F6643A ] \Device\Harddisk5\DR7\Partition1

13:08:10.0703 6116  \Device\Harddisk5\DR7\Partition1 - ok

13:08:10.0703 6116  ============================================================

13:08:10.0703 6116  Scan finished

13:08:10.0703 6116  ============================================================

13:08:10.0750 5176  Detected object count: 0

13:08:10.0750 5176  Actual detected object count: 0



#4 GodfatherKing

GodfatherKing

  • Members
  • 587 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:05:20 PM

Posted 06 August 2013 - 02:14 PM

:step1: Run Rkill http://www.bleepingcomputer.com/forums/t/308364/rkill-what-it-does-and-what-it-doesnt-a-brief-introduction-to-the-program/

 

       Note: Sometimes AV's thinks Rkill is infected, this isn't true, it's just a false-positive. Just let it terminate the malware processes. 

 

:step2: Provide the Rkill log.

 

:step3: Download Emsisoft Emergency Kit

  • Open EmsisoftEmergencyKit by  double-click Start.exe.
  • A new window will open. Under "Run Directly:" click Emergency Kit Scanner.
  • When asked to run an online update, click Yes.
  • When the update is finished, click the Back to Security Status link in the left corner. On the main screen click the Scan Now button.
  • Select the Deep Scan option and click the SCAN button.
  • When the scan is finished click the Quarantine selected objects button. Note, this option is only available if malicious objects were detected during the scan.
  • Click the View Report button and in the Reports window double-click on the most recent log. Note, logs are named as follows: a2scan_<date>-<time>.txt.
  • Copy/paste the report contents in your next reply

If you have received help from me and I don't have respond to you for almost >= 3 days, send me a Private Message.  :hello:


#5 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,439 posts
  • ONLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:11:20 AM

Posted 06 August 2013 - 07:58 PM

May I just ask If SpyBot removed them or not?
 
As this update shows it should

Spybot Search & Destroy Weekly Update - June 19, 2013
2013-06-19

Malware
++ Banyan.iSafe ++ Systweak.RegCleanPro
PUPS
++ Anchor.Hss + Ask.MyGlobalSearch ++ myPCBackup + SweetIM
Spyware
+ IronInstall.Toolbar.Amazon
Trojans
++ Win32.Agent.Boleto ++ Win32.Autorun.nwda ++ Win32.Jorik.tcp
Total: 2589659 fingerprints in 804315 rules for 7013 products.

»www.safer-networking.org/about/updates/

 
 
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#6 washerman

washerman
  • Topic Starter

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:04:20 PM

Posted 07 August 2013 - 03:25 PM

Thanks
 
Reports copied below.
 
Spybot reported that it couldn't delete one of the things that it identified as a threat - but when I run Spybot again it didn't detect anything
 
I had to restore my system again yesterday as I lost internet connection again - but so far today I haven't lost internet connection  - although it has been incredibly slow at times[/sub]
 
Thanks for your continutued help...
 
RKill
 
Rkill 2.5.9 by Lawrence Abrams (Grinler)
http://www.bleepingcomputer.com/
Copyright 2008-2013 BleepingComputer.com
More Information about Rkill can be found at this link:
 http://www.bleepingcomputer.com/forums/topic308364.html
Program started at: 08/07/2013 04:59:10 PM in x86 mode.
Windows Version: Microsoft Windows XP Service Pack 3
Checking for Windows services to stop:
 * No malware services found to stop.
Checking for processes to terminate:
* No malware processes found to kill.
Checking Registry for malware related settings:
 * No issues found in the Registry.
Resetting .EXE, .COM, & .BAT associations in the Windows Registry.
Performing miscellaneous checks:
 * No issues found.[/sub][/sub]
Checking Windows Service Integrity:
 * DNS Client (Dnscache) is not Running.
   Startup Type set to: Manual[/sub][/sub]
 * AppMgmt [Missing ServiceDLL Value]
Searching for Missing Digital Signatures:
 * No issues found.[/sub][/sub]
Checking HOSTS File: [/sub][/sub]
 * Cannot edit the HOSTS file.
 * Permissions Fixed. Administrators can now edit the HOSTS file.[/sub][/sub]
[sub][sub] * HOSTS file entries found:
[sub][sub]  127.0.0.1       localhost
  127.0.0.1 www.007guard.com
  127.0.0.1 007guard.com
  127.0.0.1 008i.com
  127.0.0.1 www.008k.com
  127.0.0.1 008k.com
  127.0.0.1 www.00hq.com
  127.0.0.1 00hq.com
  127.0.0.1 010402.com
  127.0.0.1 www.032439.com
  127.0.0.1 032439.com
  127.0.0.1 www.100888290cs.com
  127.0.0.1 100888290cs.com
  127.0.0.1 www.100sexlinks.com
  127.0.0.1 100sexlinks.com
  127.0.0.1 www.10sek.com
  127.0.0.1 10sek.com
  127.0.0.1 www.123topsearch.com
  127.0.0.1 123topsearch.com
  127.0.0.1 www.132.com
  20 out of 15540 HOSTS entries shown.
  Please review HOSTS file for further entries.
Program finished at: 08/07/2013 05:00:27 PM
Execution time: 0 hours(s), 1 minute(s), and 17 seconds(s)]A2Scan
Emsisoft Emergency Kit - Version 4.0
Last update: 07/08/2013 17:07:31
User account: PCDAVEHARRISS\Dave Harriss
Scan settings:Scan type: Deep Scan
Objects: Rootkits, Memory, Traces, C:\, I:\
]Detect Riskware: Off
Scan archives: On
ADS Scan: On
File extension filter: Off
Advanced caching: On
Direct disk access: Off
Scan start: 07/08/2013 17:08:12Scanned 541303
Found 0]Scan end: 07/08/2013 20:53:41
Scan time: 3:45:29

Edited by boopme, 07 August 2013 - 08:23 PM.





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users