Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

java/cve-2011-3544.n showed up just now


  • Please log in to reply
15 replies to this topic

#1 vcalemine

vcalemine

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 21 January 2012 - 07:45 PM

hello there

i had a dream last night that viruses were running rampant on my computer which made me paranoid so i ran an eset scan this morning. three things showed up. two of them are benign but the third thing was C:\Users\Toshiba\AppData\Local\Temp\jar_cache4861063978592610488.tmp Java/TrojanDownloader.Agent.NDJ trojan

after the scan ran, i deleted it. however, at the same time i was running eset and eset found the virus, microsoft security essentials kicked in and also said it had found something but i can't remember if it was the same name as the java/trojandownloader or the java/cve and like an idiot i cleared my history in essentials.

so my computer has been acting weird but i am mostly on facebook and pictures weren't loading properly and the zynga games i play (yes i am one of them) were always loading incorrectly and i keep getting errors when loading pages that The server at (wherever) can't be found, because the DNS lookup failed. DNS is the network service that translates a website's name to its Internet address. This error is most often caused by having no connection to the Internet or a misconfigured network. It can also be caused by an unresponsive DNS server or a firewall preventing Google Chrome from accessing the network.

i also get these same type of errors on firefox. anyway, i attributed the errors being the whole facebook timeline change and zynga having too many games.

now that i think about it, the DNS thing pops up more than just with facebook or zynga stuff. eventually i can get pages to load i just have to refresh a few times.

enough babbling, my computer was still doing these things so i decided to run malwarebytes. in the middle of that run, microsoft essentials kicked in again and that is when the java/cve-2011-3544.n showed up. nothing showed up in malwarebytes at the same time. essentials said it had removed it but i am not sure i am trusting it since two things happened today like 8 hours apart.

by the way, both times that essential found these things, i had not asked it to run a scan nor was it doing a scheduled scan. it was weird like it wanted to steal eset and malwarebytes' thunder.

thanks so much in advance and let me know if there is any other information that you may need

BC AdBot (Login to Remove)

 


#2 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 21 January 2012 - 08:13 PM

Hello. depending on the location of where it is seeing it,it may be.

Please download MiniToolBox, save it to your desktop and run it.

Checkmark the following checkboxes:
  • Flush DNS
  • Report IE Proxy Settings
  • Reset IE Proxy Settings
  • Report FF Proxy Settings
  • Reset FF Proxy Settings
  • List content of Hosts
  • List IP configuration
  • List Winsock Entries
  • List last 10 Event Viewer log
  • List Installed Programs
  • List Devices
  • List Users, Partitions and Memory size.
  • List Minidump Files
Click Go and post the result (Result.txt). A copy of Result.txt will be saved in the same directory the tool is run.

Note: When using "Reset FF Proxy Settings" option Firefox should be closed.


Run TFC by OT (Temp File Cleaner)
Please download TFC by Old Timer and save it to your desktop.
alternate download link

Save any unsaved work. TFC will close ALL open programs including your browser!
Double-click on TFC.exe to run it. If you are using Vista, right-click on the file and choose Run As Administrator.
Click the Start button to begin the cleaning process and let it run uninterrupted to completion.
Important! If TFC prompts you to reboot, please do so immediately. If not prompted, manually reboot the machine anyway to ensure a complete clean.

Rerun MBAM (MalwareBytes) like this:

Open MBAM in normal/regular mode and click Update tab, select Check for Updates,when done
click Scanner tab,select Quick scan and scan (normal mode).
After scan click Remove Selected, Post new scan log and Reboot into normal mode.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#3 vcalemine

vcalemine
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 21 January 2012 - 08:51 PM

I wasn't sure if you needed the temp cleaner log but i saved it just in case


MiniToolBox by Farbar Version: 18-01-2012
Ran by Toshiba (administrator) on 21-01-2012 at 20:15:55
Microsoft® Windows Vista™ Home Premium Service Pack 2 (X86)
Boot Mode: Normal
***************************************************************************

========================= Flush DNS: ===================================

Windows IP Configuration

Successfully flushed the DNS Resolver Cache.

========================= IE Proxy Settings: ==============================

Proxy is not enabled.
No Proxy Server is set.

"Reset IE Proxy Settings": IE Proxy Settings were reset.

========================= FF Proxy Settings: ==============================


"Reset FF Proxy Settings": Firefox Proxy settings were reset.

========================= Hosts content: =================================

::1 localhost

127.0.0.1 localhost

========================= IP Configuration: ================================

Atheros AR5007EG Wireless Network Adapter = Wireless Network Connection (Connected)
Realtek PCIe FE Family Controller = Local Area Connection (Media disconnected)
PdaNet Broadband Adapter = PdaNet Broadband Connection (Media disconnected)


# ----------------------------------
# IPv4 Configuration
# ----------------------------------
pushd interface ipv4

reset
set global icmpredirects=enabled
add route prefix=169.254.0.0/16 interface="iftype0_0" nexthop=192.168.1.39 metric=1


popd
# End of IPv4 configuration



Windows IP Configuration

Host Name . . . . . . . . . . . . : Toshiba-PC
Primary Dns Suffix . . . . . . . :
Node Type . . . . . . . . . . . . : Peer-Peer
IP Routing Enabled. . . . . . . . : No
WINS Proxy Enabled. . . . . . . . : No

Ethernet adapter Local Area Connection 2:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : PdaNet Broadband Adapter
Physical Address. . . . . . . . . : 00-26-37-BD-39-42
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Wireless LAN adapter Wireless Network Connection:

Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Atheros AR5007EG Wireless Network Adapter
Physical Address. . . . . . . . . : 00-21-63-B5-D8-58
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes
Link-local IPv6 Address . . . . . : fe80::e973:87af:44db:969a%11(Preferred)
IPv4 Address. . . . . . . . . . . : 192.168.0.11(Preferred)
Subnet Mask . . . . . . . . . . . : 255.255.255.0
Lease Obtained. . . . . . . . . . : Thursday, January 19, 2012 8:04:05 PM
Lease Expires . . . . . . . . . . : Saturday, January 21, 2012 9:06:48 PM
Default Gateway . . . . . . . . . : 192.168.0.1
DHCP Server . . . . . . . . . . . : 192.168.0.1
DHCPv6 IAID . . . . . . . . . . . : 268444003
DHCPv6 Client DUID. . . . . . . . : 00-01-00-01-12-8A-52-61-00-1E-33-88-43-29
DNS Servers . . . . . . . . . . . : 209.18.47.61
209.18.47.62
NetBIOS over Tcpip. . . . . . . . : Enabled

Ethernet adapter Local Area Connection:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Realtek PCIe FE Family Controller
Physical Address. . . . . . . . . : 00-1E-33-88-43-29
DHCP Enabled. . . . . . . . . . . : Yes
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 6:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{BD700D70-4407-43E8-AA8B-DDA1E4D7C854}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 7:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{48681A48-525C-4DA5-9B3F-BC63481AEEC7}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 11:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Teredo Tunneling Pseudo-Interface
Physical Address. . . . . . . . . : 02-00-54-55-4E-01
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 12:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : isatap.{48681A48-525C-4DA5-9B3F-BC63481AEEC7}
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes

Tunnel adapter Local Area Connection* 13:

Media State . . . . . . . . . . . : Media disconnected
Connection-specific DNS Suffix . :
Description . . . . . . . . . . . : Microsoft ISATAP Adapter #4
Physical Address. . . . . . . . . : 00-00-00-00-00-00-00-E0
DHCP Enabled. . . . . . . . . . . : No
Autoconfiguration Enabled . . . . : Yes
Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: google.com
Addresses: 74.125.157.99
74.125.157.104
74.125.157.147



Pinging google.com [74.125.65.106] with 32 bytes of data:

Reply from 74.125.65.106: bytes=32 time=29ms TTL=55

Reply from 74.125.65.106: bytes=32 time=28ms TTL=55



Ping statistics for 74.125.65.106:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 28ms, Maximum = 29ms, Average = 28ms

Server: dns-cac-lb-01.rr.com
Address: 209.18.47.61

Name: yahoo.com
Addresses: 98.139.180.149
209.191.122.70
72.30.2.43
98.137.149.56



Pinging yahoo.com [209.191.122.70] with 32 bytes of data:

Reply from 209.191.122.70: bytes=32 time=41ms TTL=54

Reply from 209.191.122.70: bytes=32 time=41ms TTL=54



Ping statistics for 209.191.122.70:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 41ms, Maximum = 41ms, Average = 41ms

DNS request timed out.
timeout was 2 seconds.
Server: UnKnown
Address: 209.18.47.61

Name: bleepingcomputer.com
Address: 208.43.87.2



Pinging bleepingcomputer.com [208.43.87.2] with 32 bytes of data:

Reply from 208.43.87.2: Destination host unreachable.

Reply from 208.43.87.2: Destination host unreachable.



Ping statistics for 208.43.87.2:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),



Pinging 127.0.0.1 with 32 bytes of data:

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128

Reply from 127.0.0.1: bytes=32 time<1ms TTL=128



Ping statistics for 127.0.0.1:

Packets: Sent = 2, Received = 2, Lost = 0 (0% loss),

Approximate round trip times in milli-seconds:

Minimum = 0ms, Maximum = 0ms, Average = 0ms

===========================================================================
Interface List
24 ...00 26 37 bd 39 42 ...... PdaNet Broadband Adapter
11 ...00 21 63 b5 d8 58 ...... Atheros AR5007EG Wireless Network Adapter
10 ...00 1e 33 88 43 29 ...... Realtek PCIe FE Family Controller
1 ........................... Software Loopback Interface 1
13 ...00 00 00 00 00 00 00 e0 isatap.{BD700D70-4407-43E8-AA8B-DDA1E4D7C854}
14 ...00 00 00 00 00 00 00 e0 isatap.{48681A48-525C-4DA5-9B3F-BC63481AEEC7}
12 ...02 00 54 55 4e 01 ...... Teredo Tunneling Pseudo-Interface
15 ...00 00 00 00 00 00 00 e0 isatap.{48681A48-525C-4DA5-9B3F-BC63481AEEC7}
27 ...00 00 00 00 00 00 00 e0 Microsoft ISATAP Adapter #4
===========================================================================

IPv4 Route Table
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 192.168.0.1 192.168.0.11 25
127.0.0.0 255.0.0.0 On-link 127.0.0.1 306
127.0.0.1 255.255.255.255 On-link 127.0.0.1 306
127.255.255.255 255.255.255.255 On-link 127.0.0.1 306
169.254.0.0 255.255.0.0 On-link 192.168.0.11 306
169.254.255.255 255.255.255.255 On-link 192.168.0.11 281
192.168.0.0 255.255.255.0 On-link 192.168.0.11 281
192.168.0.11 255.255.255.255 On-link 192.168.0.11 281
192.168.0.255 255.255.255.255 On-link 192.168.0.11 281
224.0.0.0 240.0.0.0 On-link 127.0.0.1 306
224.0.0.0 240.0.0.0 On-link 192.168.0.11 281
255.255.255.255 255.255.255.255 On-link 127.0.0.1 306
255.255.255.255 255.255.255.255 On-link 192.168.0.11 281
===========================================================================
Persistent Routes:
Network Address Netmask Gateway Address Metric
169.254.0.0 255.255.0.0 192.168.1.39 1
===========================================================================

IPv6 Route Table
===========================================================================
Active Routes:
If Metric Network Destination Gateway
1 306 ::1/128 On-link
11 281 fe80::/64 On-link
11 281 fe80::e973:87af:44db:969a/128
On-link
1 306 ff00::/8 On-link
11 281 ff00::/8 On-link
===========================================================================
Persistent Routes:
None
========================= Winsock entries =====================================

Catalog5 01 C:\Windows\system32\NLAapi.dll [48128] (Microsoft Corporation)
Catalog5 02 C:\Windows\system32\napinsp.dll [50176] (Microsoft Corporation)
Catalog5 03 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 04 C:\Windows\system32\pnrpnsp.dll [62464] (Microsoft Corporation)
Catalog5 05 C:\Windows\System32\mswsock.dll [223232] (Microsoft Corporation)
Catalog5 06 C:\Windows\System32\winrnr.dll [19968] (Microsoft Corporation)
Catalog5 07 C:\Program Files\Bonjour\mdnsNSP.dll [152864] (Apple Inc.)
Catalog9 01 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 02 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 03 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 04 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 05 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 06 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 07 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 08 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 09 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 10 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 11 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 12 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 13 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 14 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 15 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 16 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 17 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 18 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 19 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 20 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 21 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 22 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 23 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 24 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 25 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 26 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 27 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 28 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 29 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)
Catalog9 30 C:\Windows\system32\mswsock.dll [223232] (Microsoft Corporation)

========================= Event log errors: ===============================

Application errors:
==================
Error: (01/21/2012 07:05:42 PM) (Source: Application Hang) (User: )
Description: The program mbam.exe version 1.60.0.59 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 16fc
Start Time: 01ccd8923a7431a0
Termination Time: 12

Error: (01/21/2012 06:24:03 PM) (Source: Application Hang) (User: )
Description: The program WINWORD.EXE version 12.0.6545.5000 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 97c
Start Time: 01ccd893a916fd30
Termination Time: 16

Error: (01/21/2012 06:23:03 PM) (Source: Application Hang) (User: )
Description: The program WINWORD.EXE version 12.0.6545.5000 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1168
Start Time: 01ccd893526366e0
Termination Time: 12

Error: (01/21/2012 07:23:12 AM) (Source: Application Hang) (User: )
Description: The program firefox.exe version 1.9.2.3743 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Problem Reports and Solutions control panel.
Process ID: 1548
Start Time: 01ccd7dcdd58c2dc
Termination Time: 47

Error: (01/19/2012 08:07:37 PM) (Source: Application Error) (User: )
Description: Faulting application NDSTray.exe, version 7.0.1.11, time stamp 0x4784554e, faulting module MSVCR80.dll, version 8.0.50727.6195, time stamp 0x4dcddbf3, exception code 0xc0000005, fault offset 0x0001500a,
process id 0x328, application start time 0xNDSTray.exe0.

Error: (01/19/2012 08:05:16 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/19/2012 08:01:23 PM) (Source: EventSystem) (User: )
Description: 80070005EventSystem.EventSubscription{CEB8B221-89C5-41A8-98CE-79B413BF150B}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}

Error: (01/18/2012 10:39:54 PM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/18/2012 01:19:55 AM) (Source: WinMgmt) (User: )
Description: //./root/CIMV2SELECT * FROM __InstanceModificationEvent WITHIN 60 WHERE TargetInstance ISA "Win32_Processor" AND TargetInstance.LoadPercentage > 990x80041003

Error: (01/17/2012 01:47:36 AM) (Source: Windows Search Service) (User: )
Description: The entry <C:\PROGRAMDATA\MICROSOFT\WINDOWS\START MENU\PROGRAMS\SPEEDBIT VIDEO DOWNLOADER\SPEEDBIT VIDEO DOWNLOADER.LNK> in the hash map cannot be updated.

Context: Application, SystemIndex Catalog

Details:
A device attached to the system is not functioning. (0x8007001f)


System errors:
=============
Error: (01/19/2012 08:05:17 PM) (Source: Service Control Manager) (User: )
Description: SeaPort%%3

Error: (01/19/2012 08:05:17 PM) (Source: Service Control Manager) (User: )
Description: lxeaCATSCustConnectService%%1053

Error: (01/19/2012 08:05:17 PM) (Source: Service Control Manager) (User: )
Description: 30000lxeaCATSCustConnectService

Error: (01/19/2012 08:01:39 PM) (Source: DCOM) (User: )
Description: {D085A4AB-CAB1-4729-9DF8-FCEEDDBD19E4}

Error: (01/19/2012 08:01:20 PM) (Source: DCOM) (User: )
Description: {E10F6C3A-F1AE-4ADC-AA9D-2FE65525666E}

Error: (01/18/2012 10:39:54 PM) (Source: Service Control Manager) (User: )
Description: SeaPort%%3

Error: (01/18/2012 10:39:54 PM) (Source: Service Control Manager) (User: )
Description: lxeaCATSCustConnectService%%1053

Error: (01/18/2012 10:39:54 PM) (Source: Service Control Manager) (User: )
Description: 30000lxeaCATSCustConnectService

Error: (01/18/2012 01:20:24 AM) (Source: Service Control Manager) (User: )
Description: SeaPort%%3

Error: (01/18/2012 01:20:24 AM) (Source: Service Control Manager) (User: )
Description: lxeaCATSCustConnectService%%1053


Microsoft Office Sessions:
=========================
Error: (07/17/2011 02:09:48 AM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.6545.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 128183 seconds with 2820 seconds of active time. This session ended with a crash.

Error: (01/31/2010 09:44:22 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6501.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 14 seconds with 0 seconds of active time. This session ended with a crash.

Error: (01/31/2010 09:43:56 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.6501.5000, Microsoft Office Version: 12.0.6425.1000. This session lasted 31 seconds with 0 seconds of active time. This session ended with a crash.

Error: (01/09/2010 09:46:46 PM) (Source: Microsoft Office 12 Sessions)(User: )
Description: ID: 8, Application Name: Microsoft Office Publisher, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 16 seconds with 0 seconds of active time. This session ended with a crash.


=========================== Installed Programs ============================

2007 Microsoft Office system (Version: 12.0.6425.1000)
32 Bit HP CIO Components Installer (Version: 7.1.8)
4500_G510nz_Help (Version: 000.0.439.000)
4500G510nz (Version: 000.0.439.000)
4500G510nz_Software_Min (Version: 000.0.423.000)
Activation Assistant for the 2007 Microsoft Office suites
Activation Assistant for the 2007 Microsoft Office suites (Version: 1.0)
Adobe AIR (Version: 2.7.0.19530)
Adobe Flash Player 10 ActiveX (Version: 10.3.183.7)
Adobe Flash Player 11 Plugin (Version: 11.1.102.55)
Adobe Reader X (10.1.2) (Version: 10.1.2)
Adobe Shockwave Player 11.6 (Version: 11.6.1.629)
Advanced SystemCare 5 (Version: 5.0.0)
Android SDK Tools (Version: 1.14)
Apple Application Support (Version: 1.5.0)
Apple Mobile Device Support (Version: 3.4.0.25)
Apple Software Update (Version: 2.1.2.120)
Atheros Driver Installation Program (Version: 7.1)
Atheros Wi-Fi Protected Setup Library
ATI Catalyst Install Manager (Version: 3.0.634.0)
Bonjour (Version: 2.0.4.0)
Browser Guard v3.0 (Version: 3.0.0.0)
BufferChm (Version: 130.0.331.000)
C4400 (Version: 100.0.206.000)
C4400_Help (Version: 100.0.206.000)
Canon IJ Network Scan Utility
Canon IJ Network Tool
Canon MX350 series MP Drivers
Cards_Calendar_OrderGift_DoMorePlugout (Version: 1.00.0000)
CASIO USB Driver V1.2.2474.0623 (Version: 1.2.2474.0623)
Catalyst Control Center - Branding (Version: 1.00.0000)
Catalyst Control Center Core Implementation (Version: 2007.0815.2326.40058)
Catalyst Control Center Graphics Full Existing (Version: 2007.0815.2326.40058)
Catalyst Control Center Graphics Full New (Version: 2007.0815.2326.40058)
Catalyst Control Center Graphics Light (Version: 2007.0815.2326.40058)
Catalyst Control Center Graphics Previews Vista (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Chinese Standard (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Chinese Traditional (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Czech (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Danish (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Dutch (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Finnish (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization French (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization German (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Greek (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Hungarian (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Italian (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Japanese (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Korean (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Norwegian (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Polish (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Portuguese (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Russian (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Spanish (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Swedish (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Thai (Version: 2007.0815.2326.40058)
Catalyst Control Center Localization Turkish (Version: 2007.0815.2326.40058)
ccc-core-static (Version: 2007.0815.2326.40058)
ccc-utility (Version: 2007.0815.2326.40058)
CCC Help Chinese Standard (Version: 2007.0815.2325.40058)
CCC Help Chinese Traditional (Version: 2007.0815.2325.40058)
CCC Help Czech (Version: 2007.0815.2325.40058)
CCC Help Danish (Version: 2007.0815.2325.40058)
CCC Help Dutch (Version: 2007.0815.2325.40058)
CCC Help English (Version: 2007.0815.2325.40058)
CCC Help Finnish (Version: 2007.0815.2325.40058)
CCC Help French (Version: 2007.0815.2325.40058)
CCC Help German (Version: 2007.0815.2325.40058)
CCC Help Greek (Version: 2007.0815.2325.40058)
CCC Help Hungarian (Version: 2007.0815.2325.40058)
CCC Help Italian (Version: 2007.0815.2325.40058)
CCC Help Japanese (Version: 2007.0815.2325.40058)
CCC Help Korean (Version: 2007.0815.2325.40058)
CCC Help Norwegian (Version: 2007.0815.2325.40058)
CCC Help Polish (Version: 2007.0815.2325.40058)
CCC Help Portuguese (Version: 2007.0815.2325.40058)
CCC Help Russian (Version: 2007.0815.2325.40058)
CCC Help Spanish (Version: 2007.0815.2325.40058)
CCC Help Swedish (Version: 2007.0815.2325.40058)
CCC Help Thai (Version: 2007.0815.2325.40058)
CCC Help Turkish (Version: 2007.0815.2325.40058)
CD/DVD Drive Acoustic Silencer (Version: 2.02.01)
Citrix online plug-in - web (Version: 12.1.0.30)
Citrix online plug-in (DV) (Version: 12.1.0.30)
Citrix online plug-in (HDX) (Version: 12.1.0.30)
Citrix online plug-in (USB) (Version: 12.1.0.30)
Citrix online plug-in (Web) (Version: 12.1.0.30)
Copy (Version: 100.0.170.000)
Coupon Printer for Windows (Version: 5.0.0.0)
CustomerResearchQFolder (Version: 1.00.0000)
D3DX10 (Version: 15.4.2368.0902)
Destinations (Version: 130.0.0.0)
DeviceDiscovery (Version: 130.0.372.000)
DeviceManagementQFolder (Version: 1.00.0000)
DocMgr (Version: 130.0.000.000)
DocProc (Version: 13.0.0.0)
DocProcQFolder (Version: 1.00.0000)
DVD MovieFactory for TOSHIBA (Version: 5.51)
ESET Online Scanner v3
eSupportQFolder (Version: 1.00.0000)
Fax (Version: 130.0.418.000)
ffdshow [rev 2527] [2008-12-19] (Version: 1.0)
GearDrvs (Version: 1)
Google Chrome (Version: 16.0.912.75)
Google Desktop (Version: 5.9.1005.12335)
Google Earth (Version: 5.2.1.1588)
Google Earth (Version: 6.1.0.5001)
Google Toolbar for Internet Explorer (Version: 1.0.0)
Google Toolbar for Internet Explorer (Version: 7.2.2427.2330)
Google Update Helper (Version: 1.3.21.79)
GoToMeeting 4.8.0.723 (Version: 4.8.0.723)
GPBaseService (Version: 100.0.187.000)
GPBaseService2 (Version: 130.0.371.000)
HP Customer Participation Program 13.0 (Version: 13.0)
HP Document Manager 2.0 (Version: 2.0)
HP Imaging Device Functions 13.0 (Version: 13.0)
HP Officejet 4500 G510n-z (Version: 13.0)
HP Photosmart C4400 All-In-One Driver Software 10.0 Rel .3 (Version: 10.0)
HP Photosmart Essential 2.5 (Version: 1.02.0000)
HP Photosmart Essential 2.5 (Version: 2.5)
HP Smart Web Printing 4.5 (Version: 4.5)
HP Solution Center 13.0 (Version: 13.0)
HP Update (Version: 5.003.001.001)
HPDiagnosticAlert (Version: 1.00.0000)
HPPhotoSmartPhotobookWebPack1 (Version: 1.00.0000)
HPProductAssistant (Version: 130.0.371.000)
HPSSupply (Version: 130.0.371.000)
iTunes (Version: 10.2.1.1)
Java Auto Updater (Version: 2.1.5.3)
Java™ 6 Update 29 (Version: 6.0.290)
Java™ 7 Update 2 (Version: 7.0.20)
Java™ SE Development Kit 7 Update 2 (Version: 1.7.0.20)
Junk Mail filter update (Version: 15.4.3502.0922)
Lexmark S300-S400 Series
LG USB Modem driver (Version: 4.9.4)
Malwarebytes Anti-Malware version 1.60.0.1800 (Version: 1.60.0.1800)
MarketResearch (Version: 130.0.374.000)
McAfee Security Scan Plus (Version: 2.0.181.2)
Memeo AutoBackup (Version: 3.00.3023)
Mesh Runtime (Version: 15.4.5722.2)
Messenger Companion (Version: 15.4.3502.0922)
Microsoft .NET Framework 3.5 SP1
Microsoft .NET Framework 3.5 SP1 (Version: 3.5.30729)
Microsoft .NET Framework 4 Client Profile (Version: 4.0.30319)
Microsoft Antimalware (Version: 3.0.8402.2)
Microsoft Application Error Reporting (Version: 12.0.6012.5000)
Microsoft Office 2007 Service Pack 2 (SP2)
Microsoft Office Access MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Access Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Enterprise 2007 (Version: 12.0.6425.1000)
Microsoft Office Excel MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office File Validation Add-In (Version: 14.0.5130.5003)
Microsoft Office Groove MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Groove Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office InfoPath MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office OneNote MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Outlook Connector (Version: 14.0.5118.5000)
Microsoft Office Outlook MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office PowerPoint MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Professional Hybrid 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (French) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proof (Spanish) 2007 (Version: 12.0.6425.1000)
Microsoft Office Proofing (English) 2007 (Version: 12.0.4518.1014)
Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2)
Microsoft Office Publisher MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Shared Setup Metadata MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Office Word MUI (English) 2007 (Version: 12.0.6425.1000)
Microsoft Security Client (Version: 2.1.1116.0)
Microsoft Security Essentials (Version: 2.1.1116.0)
Microsoft Silverlight (Version: 4.0.60831.0)
Microsoft SQL Server 2005 Compact Edition [ENU] (Version: 3.1.0000)
Microsoft Visual C++ 2005 Redistributable (Version: 8.0.61001)
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 (Version: 9.0.30729.4148)
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570 (Version: 9.0.30729.5570)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 (Version: 9.0.21022)
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 (Version: 9.0.30729.6161)
Microsoft XML Parser (Version: 8.20.8730.4)
MobileMe Control Panel (Version: 3.1.5.0)
Motorola Driver Installation 3.9.0 (Version: 3.9.0)
Mozilla Firefox (3.6.3) (Version: 3.6.3 (en-US))
MSVCRT (Version: 15.4.2862.0708)
MSXML 4.0 SP2 (KB941833) (Version: 4.20.9849.0)
MSXML 4.0 SP2 (KB954430) (Version: 4.20.9870.0)
MSXML 4.0 SP2 (KB973688) (Version: 4.20.9876.0)
MyPhoneExplorer (Version: 1.8.2)
Napster (Version: 3.8.1.4)
Napster Burn Engine (Version: 3.5.0000)
Network (Version: 130.0.374.000)
Norton 360 (Version: 1.2.0.10)
OCR Software by I.R.I.S. 13.0 (Version: 13.0)
OGA Notifier 2.0.0048.0 (Version: 2.0.0048.0)
PanoStandAlone (Version: 100.0.170.000)
Pantech Handset Driver (Version: 2.0.14)
PdaNet for Android 3.02
Pharos
Picasa 2 (Version: 2.0)
PS_AIO_03_C4400_ProductContext (Version: 100.0.215.000)
PS_AIO_03_C4400_Software (Version: 100.0.206.000)
PS_AIO_03_C4400_Software_Min (Version: 100.0.213.000)
PSSWCORE (Version: 2.02.0000)
QuickBooks Financial Center (Version: 1.00.0000)
QuickTime (Version: 7.69.80.9)
Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista (Version: 1.00.0000)
Realtek High Definition Audio Driver (Version: 6.0.1.5559)
Realtek USB 2.0 Card Reader (Version: )
SAMSUNG Mobile USB DRIVER(4.40.7.0) v1.6 (Version: 4.47)
Scan (Version: 13.0.0.0)
Security Task Manager 1.8d (Version: 1.8d)
Segoe UI (Version: 15.4.2271.0615)
Shop for HP Supplies (Version: 13.0)
Skins (Version: 2007.0815.2326.40058)
SmartWebPrinting (Version: 130.0.373.000)
SolutionCenter (Version: 130.0.373.000)
SpeedBit Video Downloader (Version: 1154(build_477))
Status (Version: 130.0.373.000)
swMSM (Version: 12.0.0.1)
Synaptics Pointing Device Driver (Version: 11.2.4.0)
Toolbox (Version: 130.0.648.000)
TOSHIBA Assist (Version: 2.01.05)
TOSHIBA ConfigFree (Version: 7.1.27)
TOSHIBA Disc Creator (Version: 2.0.1.1a)
TOSHIBA DVD PLAYER (Version: 1.20.10)
TOSHIBA Extended Tiles for Windows Mobility Center (Version: 1.01.00)
TOSHIBA Games (Version: 1.0.0.43)
TOSHIBA Hardware Setup (Version: 2.00.06)
Toshiba Registration (Version: 1.00.0000)
TOSHIBA Software Modem (Version: 2.1.77 (SM2177ALD04))
TOSHIBA Software Upgrades (Version: 4.3)
TOSHIBA Speech System Applications
TOSHIBA Speech System SR Engine(U.S.) Version1.0
TOSHIBA Speech System TTS Engine(U.S.) Version1.0
TOSHIBA Supervisor Password (Version: 2.00.03)
TOSHIBA Value Added Package (Version: 1.1.14)
TrayApp (Version: 130.0.376.000)
UnloadSupport (Version: 10.0.0)
Verizon V CAST Media Manager
VideoToolkit01 (Version: 100.0.128.000)
VZAccess Manager (Version: 7.2.11.1)
WebReg (Version: 130.0.132.017)
Windows Live Communications Platform (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3502.0922)
Windows Live Essentials (Version: 15.4.3508.1109)
Windows Live Family Safety (Version: 15.4.3502.0922)
Windows Live ID Sign-in Assistant (Version: 7.250.4225.0)
Windows Live Installer (Version: 15.4.3502.0922)
Windows Live Mail (Version: 15.4.3502.0922)
Windows Live Mesh (Version: 15.4.3502.0922)
Windows Live Mesh ActiveX Control for Remote Connections (Version: 15.4.5722.2)
Windows Live Messenger (Version: 15.4.3502.0922)
Windows Live Messenger Companion Core (Version: 15.4.3502.0922)
Windows Live MIME IFilter (Version: 15.4.3502.0922)
Windows Live Movie Maker (Version: 15.4.3502.0922)
Windows Live Photo Common (Version: 15.4.3502.0922)
Windows Live Photo Gallery (Version: 15.4.3502.0922)
Windows Live PIMT Platform (Version: 15.4.3508.1109)
Windows Live Remote Client (Version: 15.4.5722.2)
Windows Live Remote Client Resources (Version: 15.4.5722.2)
Windows Live Remote Service (Version: 15.4.5722.2)
Windows Live Remote Service Resources (Version: 15.4.5722.2)
Windows Live SOXE (Version: 15.4.3502.0922)
Windows Live SOXE Definitions (Version: 15.4.3502.0922)
Windows Live UX Platform (Version: 15.4.3502.0922)
Windows Live UX Platform Language Pack (Version: 15.4.3508.1109)
Windows Live Writer (Version: 15.4.3502.0922)
Windows Live Writer Resources (Version: 15.4.3502.0922)
Windows Media Encoder 9 Series
Windows Media Encoder 9 Series (Version: 9.00.3374)
WModem Driver Installer (Version: 2.0.6.7)
Yahoo! Messenger
Yahoo! Software Update
Yahoo! Toolbar

========================= Devices: ================================

Name: Officejet 4500 G510n-z
Description: Officejet 4500 G510n-z
Class Guid: {4d36e971-e325-11ce-bfc1-08002be10318}
Manufacturer: HP
Service:
Problem: : This device is disabled. (Code 22)
Resolution: In Device Manager, click "Action", and then click "Enable Device". This starts the Enable Device wizard. Follow the instructions.


========================= Memory info: ===================================

Percentage of memory in use: 63%
Total physical RAM: 2940.89 MB
Available physical RAM: 1076.09 MB
Total Pagefile: 6122.29 MB
Available Pagefile: 3238.55 MB
Total Virtual: 2047.88 MB
Available Virtual: 1946.2 MB

========================= Partitions: =====================================

1 Drive c: (SQ004668V05) (Fixed) (Total:231.42 GB) (Free:155.53 GB) NTFS

========================= Users: ========================================

User accounts for \\TOSHIBA-PC

Administrator Guest Toshiba

========================= Minidump Files ==================================

No minidump file found

**** End of log ****


Getting user folders.

Stopping running processes.

Emptying Temp folders.


User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

User: Toshiba
->Temp folder emptied: 37779654 bytes
->Temporary Internet Files folder emptied: 3292066 bytes
->Java cache emptied: 10410704 bytes
->FireFox cache emptied: 119409335 bytes
->Google Chrome cache emptied: 413982833 bytes
->Flash cache emptied: 73826 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 12586622 bytes
%systemroot%\system32\config\systemprofile\Local Settings\Temporary Internet Files folder emptied: 0 bytes
%systemroot%\system32\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 583364 bytes
%systemroot%\system32\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 741 bytes

Emptying RecycleBin. Do not interrupt.

RecycleBin emptied: 58658312 bytes
Process complete!

Total Files Cleaned = 626.00 mb


Malwarebytes Anti-Malware 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.22.01

Windows Vista Service Pack 2 x86 NTFS
Internet Explorer 9.0.8112.16421
Toshiba :: TOSHIBA-PC [administrator]

1/21/2012 8:37:25 PM
mbam-log-2012-01-21 (20-37-25).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 184068
Time elapsed: 11 minute(s), 45 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#4 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 21 January 2012 - 09:13 PM

OK, remove this in Control Panel.. Java™ 6 Update 29 (Version: 6.0.290)
,reboot and scan again with ESET.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#5 vcalemine

vcalemine
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 21 January 2012 - 10:39 PM

the scan is running. last time it took 3 hours.

#6 vcalemine

vcalemine
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 22 January 2012 - 03:05 AM

C:\Users\Toshiba\Downloads\MyPhoneExplorer_Setup_1.8.2.exe Win32/OpenCandy application


that was one of the two benign things from earlier. the other one didn't show up this time. other than that, it seems to be running better. pages are loading in one try not 5 or 6. is there anything else that i need to do? sorry it took so long to run. i was wrong earlier, the last scan was almost 4 hours and this one was even longer.

thanks vonnie

#7 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 22 January 2012 - 03:44 PM

Note: Win32/OpenCandy is a broad category that can include any potential adware program which may be bundled with certain third-party software installation programs. OpenCandy is a service used by software developers as a way to make money through adverisement. Some versions of this program may send user-specific information to a remote server without obtaining adequate user consent.

OpenCandy provides a plug-in that developers include in their software to earn money by showing recommendations for other software in their installers. Developers use this money to keep their software free and invest in further software development.

The installer uses the OpenCandy plug-in to present a software recommendation (such as the one below) during installation. You have complete control to accept the software recommendation by selecting either the “Install” or “Do not install” options on the software recommendation screen.

What is OpenCandy?

Looks good now.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#8 vcalemine

vcalemine
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 22 January 2012 - 05:09 PM

yeah i had already looked up the opencandy and it was from a thing i needed when i was trying to get the adb driver for my phone. it did ask me if i wanted to install something to which i had said no. :)

#9 vcalemine

vcalemine
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 23 January 2012 - 01:16 PM

it's doing the DNS thing again. i ran eset and it found the candy thing only and i removed it but the DNS thing was happening before i ever downloaded that. i would say it affects zynga pages the most. is it possible something is hiding somewhere?

#10 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 23 January 2012 - 08:57 PM

b]Change your DNS Servers:[/b]
  • Go to Posted Image > Run... and in the open box, type: cmd
  • Press OK or Hit Enter.
  • At the command prompt, type or copy/paste: ipconfig /flushdns
  • Hit Enter.
  • You will get a confirmation that the flush was successful.
  • Close the command box.



Please download TDSSKiller.zip and and extract it.
  • Run TDSSKiller.exe.
  • Click Start scan.
  • When it is finished the utility outputs a list of detected objects with description.
    The utility automatically selects an action (Cure or Delete) for malicious objects.
    The utility prompts the user to select an action to apply to suspicious objects (Skip, by default). Let the options as it is and click Continue
  • Let reboot if needed and tell me if the tool needed a reboot.
  • Click on Report and post the contents of the text file that will open.

    Note: By default, the utility outputs the log into system disk (it is usually the disk with installed operating system, C:\) root folder. The Log have a name like: TDSSKiller.Version_Date_Time_log.txt.

How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#11 vcalemine

vcalemine
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 23 January 2012 - 09:30 PM

21:28:06.0132 6120 TDSS rootkit removing tool 2.7.6.0 Jan 19 2012 13:09:04
21:28:06.0516 6120 ============================================================
21:28:06.0516 6120 Current date / time: 2012/01/23 21:28:06.0516
21:28:06.0516 6120 SystemInfo:
21:28:06.0516 6120
21:28:06.0516 6120 OS Version: 6.0.6002 ServicePack: 2.0
21:28:06.0516 6120 Product type: Workstation
21:28:06.0516 6120 ComputerName: TOSHIBA-PC
21:28:06.0516 6120 UserName: Toshiba
21:28:06.0516 6120 Windows directory: C:\Windows
21:28:06.0516 6120 System windows directory: C:\Windows
21:28:06.0516 6120 Processor architecture: Intel x86
21:28:06.0516 6120 Number of processors: 2
21:28:06.0516 6120 Page size: 0x1000
21:28:06.0516 6120 Boot type: Normal boot
21:28:06.0517 6120 ============================================================
21:28:08.0915 6120 Drive \Device\Harddisk0\DR0 - Size: 0x3A38B2E000 (232.89 Gb), SectorSize: 0x200, Cylinders: 0x76C1, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000050
21:28:08.0971 6120 Initialize success
21:28:14.0007 1616 ============================================================
21:28:14.0007 1616 Scan started
21:28:14.0007 1616 Mode: Manual;
21:28:14.0007 1616 ============================================================
21:28:15.0421 1616 ACPI (82b296ae1892fe3dbee00c9cf92f8ac7) C:\Windows\system32\drivers\acpi.sys
21:28:15.0427 1616 ACPI - ok
21:28:15.0572 1616 adp94xx (04f0fcac69c7c71a3ac4eb97fafc8303) C:\Windows\system32\drivers\adp94xx.sys
21:28:15.0581 1616 adp94xx - ok
21:28:15.0656 1616 adpahci (60505e0041f7751bdbb80f88bf45c2ce) C:\Windows\system32\drivers\adpahci.sys
21:28:15.0663 1616 adpahci - ok
21:28:15.0726 1616 adpu160m (8a42779b02aec986eab64ecfc98f8bd7) C:\Windows\system32\drivers\adpu160m.sys
21:28:15.0729 1616 adpu160m - ok
21:28:15.0795 1616 adpu320 (241c9e37f8ce45ef51c3de27515ca4e5) C:\Windows\system32\drivers\adpu320.sys
21:28:15.0799 1616 adpu320 - ok
21:28:15.0868 1616 AFD (3911b972b55fea0478476b2e777b29fa) C:\Windows\system32\drivers\afd.sys
21:28:15.0874 1616 AFD - ok
21:28:15.0986 1616 AgereSoftModem (ce91b158fa490cf4c4d487a4130f4660) C:\Windows\system32\DRIVERS\AGRSM.sys
21:28:16.0048 1616 AgereSoftModem - ok
21:28:16.0090 1616 agp440 (13f9e33747e6b41a3ff305c37db0d360) C:\Windows\system32\drivers\agp440.sys
21:28:16.0092 1616 agp440 - ok
21:28:16.0130 1616 aic78xx (ae1fdf7bf7bb6c6a70f67699d880592a) C:\Windows\system32\drivers\djsvs.sys
21:28:16.0132 1616 aic78xx - ok
21:28:16.0176 1616 aliide (9eaef5fc9b8e351afa7e78a6fae91f91) C:\Windows\system32\drivers\aliide.sys
21:28:16.0179 1616 aliide - ok
21:28:16.0210 1616 amdagp (c47344bc706e5f0b9dce369516661578) C:\Windows\system32\drivers\amdagp.sys
21:28:16.0213 1616 amdagp - ok
21:28:16.0241 1616 amdide (9b78a39a4c173fdbc1321e0dd659b34c) C:\Windows\system32\drivers\amdide.sys
21:28:16.0243 1616 amdide - ok
21:28:16.0272 1616 AmdK7 (18f29b49ad23ecee3d2a826c725c8d48) C:\Windows\system32\drivers\amdk7.sys
21:28:16.0274 1616 AmdK7 - ok
21:28:16.0312 1616 AmdK8 (93ae7f7dd54ab986a6f1a1b37be7442d) C:\Windows\system32\DRIVERS\amdk8.sys
21:28:16.0314 1616 AmdK8 - ok
21:28:16.0362 1616 arc (5d2888182fb46632511acee92fdad522) C:\Windows\system32\drivers\arc.sys
21:28:16.0365 1616 arc - ok
21:28:16.0397 1616 arcsas (5e2a321bd7c8b3624e41fdec3e244945) C:\Windows\system32\drivers\arcsas.sys
21:28:16.0400 1616 arcsas - ok
21:28:16.0435 1616 AsyncMac (53b202abee6455406254444303e87be1) C:\Windows\system32\DRIVERS\asyncmac.sys
21:28:16.0436 1616 AsyncMac - ok
21:28:16.0479 1616 atapi (1f05b78ab91c9075565a9d8a4b880bc4) C:\Windows\system32\drivers\atapi.sys
21:28:16.0480 1616 atapi - ok
21:28:16.0573 1616 athr (8be56f8300e1c37b578da23c71816b7a) C:\Windows\system32\DRIVERS\athr.sys
21:28:16.0601 1616 athr - ok
21:28:16.0780 1616 atikmdag (22d300f835600c9c634860cf2912f9cf) C:\Windows\system32\DRIVERS\atikmdag.sys
21:28:16.0884 1616 atikmdag - ok
21:28:16.0922 1616 AtiPcie (4aa1eb65481c392955939e735d27118b) C:\Windows\system32\DRIVERS\AtiPcie.sys
21:28:16.0924 1616 AtiPcie - ok
21:28:16.0987 1616 Beep (67e506b75bd5326a3ec7b70bd014dfb6) C:\Windows\system32\drivers\Beep.sys
21:28:16.0989 1616 Beep - ok
21:28:17.0031 1616 blbdrive (d4df28447741fd3d953526e33a617397) C:\Windows\system32\drivers\blbdrive.sys
21:28:17.0033 1616 blbdrive - ok
21:28:17.0085 1616 bowser (35f376253f687bde63976ccb3f2108ca) C:\Windows\system32\DRIVERS\bowser.sys
21:28:17.0087 1616 bowser - ok
21:28:17.0108 1616 BrFiltLo (9f9acc7f7ccde8a15c282d3f88b43309) C:\Windows\system32\drivers\brfiltlo.sys
21:28:17.0109 1616 BrFiltLo - ok
21:28:17.0137 1616 BrFiltUp (56801ad62213a41f6497f96dee83755a) C:\Windows\system32\drivers\brfiltup.sys
21:28:17.0138 1616 BrFiltUp - ok
21:28:17.0180 1616 Brserid (b304e75cff293029eddf094246747113) C:\Windows\system32\drivers\brserid.sys
21:28:17.0183 1616 Brserid - ok
21:28:17.0215 1616 BrSerWdm (203f0b1e73adadbbb7b7b1fabd901f6b) C:\Windows\system32\drivers\brserwdm.sys
21:28:17.0217 1616 BrSerWdm - ok
21:28:17.0248 1616 BrUsbMdm (bd456606156ba17e60a04e18016ae54b) C:\Windows\system32\drivers\brusbmdm.sys
21:28:17.0250 1616 BrUsbMdm - ok
21:28:17.0283 1616 BrUsbSer (af72ed54503f717a43268b3cc5faec2e) C:\Windows\system32\drivers\brusbser.sys
21:28:17.0284 1616 BrUsbSer - ok
21:28:17.0319 1616 BTHMODEM (ad07c1ec6665b8b35741ab91200c6b68) C:\Windows\system32\drivers\bthmodem.sys
21:28:17.0321 1616 BTHMODEM - ok
21:28:17.0354 1616 cdfs (7add03e75beb9e6dd102c3081d29840a) C:\Windows\system32\DRIVERS\cdfs.sys
21:28:17.0356 1616 cdfs - ok
21:28:17.0395 1616 Cdr4_xp (bf79e659c506674c0497cc9c61f1a165) C:\Windows\system32\drivers\Cdr4_xp.sys
21:28:17.0397 1616 Cdr4_xp - ok
21:28:17.0410 1616 Cdralw2k (2c41cd49d82d5fd85c72d57b6ca25471) C:\Windows\system32\drivers\Cdralw2k.sys
21:28:17.0411 1616 Cdralw2k - ok
21:28:17.0447 1616 cdrom (6b4bffb9becd728097024276430db314) C:\Windows\system32\DRIVERS\cdrom.sys
21:28:17.0487 1616 cdrom - ok
21:28:17.0539 1616 circlass (e5d4133f37219dbcfe102bc61072589d) C:\Windows\system32\drivers\circlass.sys
21:28:17.0541 1616 circlass - ok
21:28:17.0614 1616 CLFS (d7659d3b5b92c31e84e53c1431f35132) C:\Windows\system32\CLFS.sys
21:28:17.0620 1616 CLFS - ok
21:28:17.0657 1616 CmBatt (99afc3795b58cc478fbbbcdc658fcb56) C:\Windows\system32\DRIVERS\CmBatt.sys
21:28:17.0659 1616 CmBatt - ok
21:28:17.0688 1616 cmdide (0ca25e686a4928484e9fdabd168ab629) C:\Windows\system32\drivers\cmdide.sys
21:28:17.0689 1616 cmdide - ok
21:28:17.0717 1616 Compbatt (6afef0b60fa25de07c0968983ee4f60a) C:\Windows\system32\DRIVERS\compbatt.sys
21:28:17.0718 1616 Compbatt - ok
21:28:17.0741 1616 crcdisk (741e9dff4f42d2d8477d0fc1dc0df871) C:\Windows\system32\drivers\crcdisk.sys
21:28:17.0743 1616 crcdisk - ok
21:28:17.0781 1616 Crusoe (1f07becdca750766a96cda811ba86410) C:\Windows\system32\drivers\crusoe.sys
21:28:17.0784 1616 Crusoe - ok
21:28:17.0851 1616 ctxusbm (cb6ff7012bb5d59d7c12350db795ce1f) C:\Windows\system32\DRIVERS\ctxusbm.sys
21:28:17.0853 1616 ctxusbm - ok
21:28:17.0911 1616 DfsC (622c41a07ca7e6dd91770f50d532cb6c) C:\Windows\system32\Drivers\dfsc.sys
21:28:17.0914 1616 DfsC - ok
21:28:17.0968 1616 disk (5d4aefc3386920236a548271f8f1af6a) C:\Windows\system32\drivers\disk.sys
21:28:17.0970 1616 disk - ok
21:28:18.0074 1616 Dot4 (4f59c172c094e1a1d46463a8dc061cbd) C:\Windows\system32\DRIVERS\Dot4.sys
21:28:18.0078 1616 Dot4 - ok
21:28:18.0100 1616 Dot4Print (80bf3ba09f6f2523c8f6b7cc6dbf7bd5) C:\Windows\system32\DRIVERS\Dot4Prt.sys
21:28:18.0102 1616 Dot4Print - ok
21:28:18.0132 1616 dot4usb (c55004ca6b419b6695970dfe849b122f) C:\Windows\system32\DRIVERS\dot4usb.sys
21:28:18.0135 1616 dot4usb - ok
21:28:18.0179 1616 drmkaud (97fef831ab90bee128c9af390e243f80) C:\Windows\system32\drivers\drmkaud.sys
21:28:18.0181 1616 drmkaud - ok
21:28:18.0263 1616 DXGKrnl (c68ac676b0ef30cfbb1080adce49eb1f) C:\Windows\System32\drivers\dxgkrnl.sys
21:28:18.0276 1616 DXGKrnl - ok
21:28:18.0314 1616 E1G60 (5425f74ac0c1dbd96a1e04f17d63f94c) C:\Windows\system32\DRIVERS\E1G60I32.sys
21:28:18.0317 1616 E1G60 - ok
21:28:18.0408 1616 Ecache (7f64ea048dcfac7acf8b4d7b4e6fe371) C:\Windows\system32\drivers\ecache.sys
21:28:18.0465 1616 Ecache - ok
21:28:18.0762 1616 elxstor (23b62471681a124889978f6295b3f4c6) C:\Windows\system32\drivers\elxstor.sys
21:28:18.0773 1616 elxstor - ok
21:28:18.0822 1616 ErrDev (3db974f3935483555d7148663f726c61) C:\Windows\system32\drivers\errdev.sys
21:28:18.0823 1616 ErrDev - ok
21:28:18.0889 1616 exfat (22b408651f9123527bcee54b4f6c5cae) C:\Windows\system32\drivers\exfat.sys
21:28:18.0892 1616 exfat - ok
21:28:18.0935 1616 fastfat (1e9b9a70d332103c52995e957dc09ef8) C:\Windows\system32\drivers\fastfat.sys
21:28:18.0939 1616 fastfat - ok
21:28:19.0086 1616 fdc (afe1e8b9782a0dd7fb46bbd88e43f89a) C:\Windows\system32\DRIVERS\fdc.sys
21:28:19.0087 1616 fdc - ok
21:28:19.0126 1616 FileInfo (a8c0139a884861e3aae9cfe73b208a9f) C:\Windows\system32\drivers\fileinfo.sys
21:28:19.0128 1616 FileInfo - ok
21:28:19.0164 1616 Filetrace (0ae429a696aecbc5970e3cf2c62635ae) C:\Windows\system32\drivers\filetrace.sys
21:28:19.0166 1616 Filetrace - ok
21:28:19.0202 1616 flpydisk (85b7cf99d532820495d68d747fda9ebd) C:\Windows\system32\DRIVERS\flpydisk.sys
21:28:19.0205 1616 flpydisk - ok
21:28:19.0245 1616 FltMgr (01334f9ea68e6877c4ef05d3ea8abb05) C:\Windows\system32\drivers\fltmgr.sys
21:28:19.0250 1616 FltMgr - ok
21:28:19.0318 1616 fssfltr (d909075fa72c090f27aa926c32cb4612) C:\Windows\system32\DRIVERS\fssfltr.sys
21:28:19.0320 1616 fssfltr - ok
21:28:19.0357 1616 Fs_Rec (65ea8b77b5851854f0c55c43fa51a198) C:\Windows\system32\drivers\Fs_Rec.sys
21:28:19.0359 1616 Fs_Rec - ok
21:28:19.0375 1616 FwLnk (cbc22823628544735625b280665e434e) C:\Windows\system32\DRIVERS\FwLnk.sys
21:28:19.0377 1616 FwLnk - ok
21:28:19.0429 1616 gagp30kx (34582a6e6573d54a07ece5fe24a126b5) C:\Windows\system32\drivers\gagp30kx.sys
21:28:19.0432 1616 gagp30kx - ok
21:28:19.0501 1616 GEARAspiWDM (8182ff89c65e4d38b2de4bb0fb18564e) C:\Windows\system32\Drivers\GEARAspiWDM.sys
21:28:19.0503 1616 GEARAspiWDM - ok
21:28:19.0568 1616 HdAudAddService (cb04c744be0a61b1d648faed182c3b59) C:\Windows\system32\drivers\HdAudio.sys
21:28:19.0574 1616 HdAudAddService - ok
21:28:19.0655 1616 HDAudBus (062452b7ffd68c8c042a6261fe8dff4a) C:\Windows\system32\DRIVERS\HDAudBus.sys
21:28:19.0666 1616 HDAudBus - ok
21:28:19.0687 1616 HidBth (1338520e78d90154ed6be8f84de5fceb) C:\Windows\system32\drivers\hidbth.sys
21:28:19.0689 1616 HidBth - ok
21:28:19.0714 1616 HidIr (ff3160c3a2445128c5a6d9b076da519e) C:\Windows\system32\drivers\hidir.sys
21:28:19.0715 1616 HidIr - ok
21:28:19.0780 1616 HidUsb (cca4b519b17e23a00b826c55716809cc) C:\Windows\system32\DRIVERS\hidusb.sys
21:28:19.0782 1616 HidUsb - ok
21:28:19.0820 1616 HpCISSs (16ee7b23a009e00d835cdb79574a91a6) C:\Windows\system32\drivers\hpcisss.sys
21:28:19.0823 1616 HpCISSs - ok
21:28:19.0941 1616 HtcUsbMdmV32 (89e2296561fce84ac9f34ee7243d78ac) C:\Windows\system32\DRIVERS\HtcUsbMdmV32.sys
21:28:19.0944 1616 HtcUsbMdmV32 - ok
21:28:20.0014 1616 HtcVCom32 (89e2296561fce84ac9f34ee7243d78ac) C:\Windows\system32\DRIVERS\HtcVComV32.sys
21:28:20.0017 1616 HtcVCom32 - ok
21:28:20.0073 1616 HTTP (f870aa3e254628ebeafe754108d664de) C:\Windows\system32\drivers\HTTP.sys
21:28:20.0083 1616 HTTP - ok
21:28:20.0109 1616 i2omp (c6b032d69650985468160fc9937cf5b4) C:\Windows\system32\drivers\i2omp.sys
21:28:20.0111 1616 i2omp - ok
21:28:20.0141 1616 i8042prt (22d56c8184586b7a1f6fa60be5f5a2bd) C:\Windows\system32\DRIVERS\i8042prt.sys
21:28:20.0143 1616 i8042prt - ok
21:28:20.0202 1616 iaStorV (54155ea1b0df185878e0fc9ec3ac3a14) C:\Windows\system32\drivers\iastorv.sys
21:28:20.0208 1616 iaStorV - ok
21:28:20.0243 1616 iirsp (2d077bf86e843f901d8db709c95b49a5) C:\Windows\system32\drivers\iirsp.sys
21:28:20.0246 1616 iirsp - ok
21:28:20.0419 1616 IntcAzAudAddService (8a4341616976e47712b60f18c7049dcc) C:\Windows\system32\drivers\RTKVHDA.sys
21:28:20.0528 1616 IntcAzAudAddService - ok
21:28:20.0583 1616 intelide (83aa759f3189e6370c30de5dc5590718) C:\Windows\system32\drivers\intelide.sys
21:28:20.0585 1616 intelide - ok
21:28:20.0842 1616 intelppm (224191001e78c89dfa78924c3ea595ff) C:\Windows\system32\DRIVERS\intelppm.sys
21:28:20.0844 1616 intelppm - ok
21:28:20.0874 1616 IpFilterDriver (62c265c38769b864cb25b4bcf62df6c3) C:\Windows\system32\DRIVERS\ipfltdrv.sys
21:28:20.0876 1616 IpFilterDriver - ok
21:28:20.0893 1616 IpInIp - ok
21:28:20.0937 1616 IPMIDRV (b25aaf203552b7b3491139d582b39ad1) C:\Windows\system32\drivers\ipmidrv.sys
21:28:20.0940 1616 IPMIDRV - ok
21:28:20.0992 1616 IPNAT (8793643a67b42cec66490b2a0cf92d68) C:\Windows\system32\DRIVERS\ipnat.sys
21:28:20.0996 1616 IPNAT - ok
21:28:21.0023 1616 IRENUM (109c0dfb82c3632fbd11949b73aeeac9) C:\Windows\system32\drivers\irenum.sys
21:28:21.0025 1616 IRENUM - ok
21:28:21.0059 1616 isapnp (6c70698a3e5c4376c6ab5c7c17fb0614) C:\Windows\system32\drivers\isapnp.sys
21:28:21.0061 1616 isapnp - ok
21:28:21.0121 1616 iScsiPrt (232fa340531d940aac623b121a595034) C:\Windows\system32\DRIVERS\msiscsi.sys
21:28:21.0125 1616 iScsiPrt - ok
21:28:21.0176 1616 iteatapi (bced60d16156e428f8df8cf27b0df150) C:\Windows\system32\drivers\iteatapi.sys
21:28:21.0177 1616 iteatapi - ok
21:28:21.0216 1616 iteraid (06fa654504a498c30adca8bec4e87e7e) C:\Windows\system32\drivers\iteraid.sys
21:28:21.0218 1616 iteraid - ok
21:28:21.0266 1616 jswpslwf (7e72514a3a1c5a9f3bff0660b3866c2b) C:\Windows\system32\DRIVERS\jswpslwf.sys
21:28:21.0269 1616 jswpslwf - ok
21:28:21.0304 1616 kbdclass (37605e0a8cf00cbba538e753e4344c6e) C:\Windows\system32\DRIVERS\kbdclass.sys
21:28:21.0306 1616 kbdclass - ok
21:28:21.0338 1616 kbdhid (ede59ec70e25c24581add1fbec7325f7) C:\Windows\system32\DRIVERS\kbdhid.sys
21:28:21.0339 1616 kbdhid - ok
21:28:21.0411 1616 KR10I (e8ca038f51f7761bd6e3a3b0b8014263) C:\Windows\system32\drivers\kr10i.sys
21:28:21.0416 1616 KR10I - ok
21:28:21.0468 1616 KR10N (6a4adb9186dd0e114e623daf57e42b31) C:\Windows\system32\drivers\kr10n.sys
21:28:21.0473 1616 KR10N - ok
21:28:21.0562 1616 KSecDD (2b2f1638466e8cb091400c9019cc730e) C:\Windows\system32\Drivers\ksecdd.sys
21:28:21.0571 1616 KSecDD - ok
21:28:21.0617 1616 lltdio (d1c5883087a0c3f1344d9d55a44901f6) C:\Windows\system32\DRIVERS\lltdio.sys
21:28:21.0620 1616 lltdio - ok
21:28:21.0659 1616 LSI_FC (c7e15e82879bf3235b559563d4185365) C:\Windows\system32\drivers\lsi_fc.sys
21:28:21.0662 1616 LSI_FC - ok
21:28:21.0703 1616 LSI_SAS (ee01ebae8c9bf0fa072e0ff68718920a) C:\Windows\system32\drivers\lsi_sas.sys
21:28:21.0706 1616 LSI_SAS - ok
21:28:21.0744 1616 LSI_SCSI (912a04696e9ca30146a62afa1463dd5c) C:\Windows\system32\drivers\lsi_scsi.sys
21:28:21.0747 1616 LSI_SCSI - ok
21:28:21.0776 1616 luafv (8f5c7426567798e62a3b3614965d62cc) C:\Windows\system32\drivers\luafv.sys
21:28:21.0779 1616 luafv - ok
21:28:21.0830 1616 megasas (0001ce609d66632fa17b84705f658879) C:\Windows\system32\drivers\megasas.sys
21:28:21.0832 1616 megasas - ok
21:28:22.0016 1616 MegaSR (c252f32cd9a49dbfc25ecf26ebd51a99) C:\Windows\system32\drivers\megasr.sys
21:28:22.0025 1616 MegaSR - ok
21:28:22.0070 1616 Modem (e13b5ea0f51ba5b1512ec671393d09ba) C:\Windows\system32\drivers\modem.sys
21:28:22.0072 1616 Modem - ok
21:28:22.0134 1616 monitor (0a9bb33b56e294f686abb7c1e4e2d8a8) C:\Windows\system32\DRIVERS\monitor.sys
21:28:22.0136 1616 monitor - ok
21:28:22.0193 1616 motccgp (c741717b0a18813dd7d12085937cee72) C:\Windows\system32\DRIVERS\motccgp.sys
21:28:22.0194 1616 motccgp - ok
21:28:22.0231 1616 motccgpfl (b812da6605caf02641312f1f65c75419) C:\Windows\system32\DRIVERS\motccgpfl.sys
21:28:22.0232 1616 motccgpfl - ok
21:28:22.0290 1616 motmodem (4b4cc4125d39104d3bbfa890f572c33d) C:\Windows\system32\DRIVERS\motmodem.sys
21:28:22.0297 1616 motmodem - ok
21:28:22.0325 1616 motport (4b4cc4125d39104d3bbfa890f572c33d) C:\Windows\system32\DRIVERS\motport.sys
21:28:22.0327 1616 motport - ok
21:28:22.0363 1616 mouclass (5bf6a1326a335c5298477754a506d263) C:\Windows\system32\DRIVERS\mouclass.sys
21:28:22.0365 1616 mouclass - ok
21:28:22.0393 1616 mouhid (93b8d4869e12cfbe663915502900876f) C:\Windows\system32\DRIVERS\mouhid.sys
21:28:22.0394 1616 mouhid - ok
21:28:22.0408 1616 MountMgr (bdafc88aa6b92f7842416ea6a48e1600) C:\Windows\system32\drivers\mountmgr.sys
21:28:22.0410 1616 MountMgr - ok
21:28:22.0456 1616 MpFilter (fee0baded54222e9f1dae9541212aab1) C:\Windows\system32\DRIVERS\MpFilter.sys
21:28:22.0460 1616 MpFilter - ok
21:28:22.0485 1616 mpio (511d011289755dd9f9a7579fb0b064e6) C:\Windows\system32\drivers\mpio.sys
21:28:22.0489 1616 mpio - ok
21:28:22.0624 1616 MpKsl1e8affaf (a69630d039c38018689190234f866d77) c:\ProgramData\Microsoft\Microsoft Antimalware\Definition Updates\{B10A7386-6388-484E-98BA-31B51354FE93}\MpKsl1e8affaf.sys
21:28:22.0625 1616 MpKsl1e8affaf - ok
21:28:22.0658 1616 MpNWMon (2c3489660d4a8d514c123c3f0d67df46) C:\Windows\system32\DRIVERS\MpNWMon.sys
21:28:22.0659 1616 MpNWMon - ok
21:28:22.0732 1616 mpsdrv (22241feba9b2defa669c8cb0a8dd7d2e) C:\Windows\system32\drivers\mpsdrv.sys
21:28:22.0735 1616 mpsdrv - ok
21:28:22.0772 1616 Mraid35x (4fbbb70d30fd20ec51f80061703b001e) C:\Windows\system32\drivers\mraid35x.sys
21:28:22.0774 1616 Mraid35x - ok
21:28:22.0833 1616 MRxDAV (82cea0395524aacfeb58ba1448e8325c) C:\Windows\system32\drivers\mrxdav.sys
21:28:22.0836 1616 MRxDAV - ok
21:28:22.0880 1616 mrxsmb (1e94971c4b446ab2290deb71d01cf0c2) C:\Windows\system32\DRIVERS\mrxsmb.sys
21:28:22.0884 1616 mrxsmb - ok
21:28:22.0937 1616 mrxsmb10 (4fccb34d793b116423209c0f8b7a3b03) C:\Windows\system32\DRIVERS\mrxsmb10.sys
21:28:22.0942 1616 mrxsmb10 - ok
21:28:22.0965 1616 mrxsmb20 (c3cb1b40ad4a0124d617a1199b0b9d7c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
21:28:22.0968 1616 mrxsmb20 - ok
21:28:22.0996 1616 msahci (28023e86f17001f7cd9b15a5bc9ae07d) C:\Windows\system32\drivers\msahci.sys
21:28:22.0998 1616 msahci - ok
21:28:23.0074 1616 msdsm (4468b0f385a86ecddaf8d3ca662ec0e7) C:\Windows\system32\drivers\msdsm.sys
21:28:23.0077 1616 msdsm - ok
21:28:23.0131 1616 Msfs (a9927f4a46b816c92f461acb90cf8515) C:\Windows\system32\drivers\Msfs.sys
21:28:23.0133 1616 Msfs - ok
21:28:23.0149 1616 msisadrv (0f400e306f385c56317357d6dea56f62) C:\Windows\system32\drivers\msisadrv.sys
21:28:23.0151 1616 msisadrv - ok
21:28:23.0188 1616 MSKSSRV (d8c63d34d9c9e56c059e24ec7185cc07) C:\Windows\system32\drivers\MSKSSRV.sys
21:28:23.0190 1616 MSKSSRV - ok
21:28:23.0220 1616 MSPCLOCK (1d373c90d62ddb641d50e55b9e78d65e) C:\Windows\system32\drivers\MSPCLOCK.sys
21:28:23.0222 1616 MSPCLOCK - ok
21:28:23.0241 1616 MSPQM (b572da05bf4e098d4bba3a4734fb505b) C:\Windows\system32\drivers\MSPQM.sys
21:28:23.0243 1616 MSPQM - ok
21:28:23.0271 1616 MsRPC (b49456d70555de905c311bcda6ec6adb) C:\Windows\system32\drivers\MsRPC.sys
21:28:23.0276 1616 MsRPC - ok
21:28:23.0305 1616 mssmbios (e384487cb84be41d09711c30ca79646c) C:\Windows\system32\DRIVERS\mssmbios.sys
21:28:23.0308 1616 mssmbios - ok
21:28:23.0340 1616 MSTEE (7199c1eec1e4993caf96b8c0a26bd58a) C:\Windows\system32\drivers\MSTEE.sys
21:28:23.0342 1616 MSTEE - ok
21:28:23.0356 1616 Mup (6a57b5733d4cb702c8ea4542e836b96c) C:\Windows\system32\Drivers\mup.sys
21:28:23.0359 1616 Mup - ok
21:28:23.0440 1616 NativeWifiP (85c44fdff9cf7e72a40dcb7ec06a4416) C:\Windows\system32\DRIVERS\nwifi.sys
21:28:23.0445 1616 NativeWifiP - ok
21:28:23.0501 1616 NDIS (1357274d1883f68300aeadd15d7bbb42) C:\Windows\system32\drivers\ndis.sys
21:28:23.0511 1616 NDIS - ok
21:28:23.0546 1616 NdisTapi (0e186e90404980569fb449ba7519ae61) C:\Windows\system32\DRIVERS\ndistapi.sys
21:28:23.0548 1616 NdisTapi - ok
21:28:23.0567 1616 Ndisuio (d6973aa34c4d5d76c0430b181c3cd389) C:\Windows\system32\DRIVERS\ndisuio.sys
21:28:23.0571 1616 Ndisuio - ok
21:28:23.0616 1616 NdisWan (818f648618ae34f729fdb47ec68345c3) C:\Windows\system32\DRIVERS\ndiswan.sys
21:28:23.0620 1616 NdisWan - ok
21:28:23.0661 1616 NDProxy (71dab552b41936358f3b541ae5997fb3) C:\Windows\system32\drivers\NDProxy.sys
21:28:23.0668 1616 NDProxy - ok
21:28:23.0818 1616 NetBIOS (bcd093a5a6777cf626434568dc7dba78) C:\Windows\system32\DRIVERS\netbios.sys
21:28:23.0820 1616 NetBIOS - ok
21:28:23.0946 1616 netbt (ecd64230a59cbd93c85f1cd1cab9f3f6) C:\Windows\system32\DRIVERS\netbt.sys
21:28:23.0951 1616 netbt - ok
21:28:24.0027 1616 nfrd960 (2e7fb731d4790a1bc6270accefacb36e) C:\Windows\system32\drivers\nfrd960.sys
21:28:24.0031 1616 nfrd960 - ok
21:28:24.0085 1616 NisDrv (7b01c6172cfd0b10116175e09200d4b4) C:\Windows\system32\DRIVERS\NisDrvWFP.sys
21:28:24.0090 1616 NisDrv - ok
21:28:24.0114 1616 Npfs (d36f239d7cce1931598e8fb90a0dbc26) C:\Windows\system32\drivers\Npfs.sys
21:28:24.0116 1616 Npfs - ok
21:28:24.0147 1616 nsiproxy (609773e344a97410ce4ebf74a8914fcf) C:\Windows\system32\drivers\nsiproxy.sys
21:28:24.0149 1616 nsiproxy - ok
21:28:24.0271 1616 Ntfs (6a4a98cee84cf9e99564510dda4baa47) C:\Windows\system32\drivers\Ntfs.sys
21:28:24.0316 1616 Ntfs - ok
21:28:24.0341 1616 ntrigdigi (e875c093aec0c978a90f30c9e0dfbb72) C:\Windows\system32\drivers\ntrigdigi.sys
21:28:24.0343 1616 ntrigdigi - ok
21:28:24.0368 1616 Null (c5dbbcda07d780bda9b685df333bb41e) C:\Windows\system32\drivers\Null.sys
21:28:24.0369 1616 Null - ok
21:28:24.0407 1616 nvraid (2edf9e7751554b42cbb60116de727101) C:\Windows\system32\drivers\nvraid.sys
21:28:24.0411 1616 nvraid - ok
21:28:24.0439 1616 nvstor (abed0c09758d1d97db0042dbb2688177) C:\Windows\system32\drivers\nvstor.sys
21:28:24.0442 1616 nvstor - ok
21:28:24.0473 1616 nv_agp (18bbdf913916b71bd54575bdb6eeac0b) C:\Windows\system32\drivers\nv_agp.sys
21:28:24.0477 1616 nv_agp - ok
21:28:24.0490 1616 NwlnkFlt - ok
21:28:24.0508 1616 NwlnkFwd - ok
21:28:24.0543 1616 ohci1394 (be32da025a0be1878f0ee8d6d9386cd5) C:\Windows\system32\drivers\ohci1394.sys
21:28:24.0545 1616 ohci1394 - ok
21:28:24.0602 1616 Parport (0fa9b5055484649d63c303fe404e5f4d) C:\Windows\system32\drivers\parport.sys
21:28:24.0605 1616 Parport - ok
21:28:24.0653 1616 partmgr (57389fa59a36d96b3eb09d0cb91e9cdc) C:\Windows\system32\drivers\partmgr.sys
21:28:24.0655 1616 partmgr - ok
21:28:24.0683 1616 Parvdm (4f9a6a8a31413180d0fcb279ad5d8112) C:\Windows\system32\drivers\parvdm.sys
21:28:24.0685 1616 Parvdm - ok
21:28:24.0725 1616 pci (941dc1d19e7e8620f40bbc206981efdb) C:\Windows\system32\drivers\pci.sys
21:28:24.0729 1616 pci - ok
21:28:24.0754 1616 pciide (1636d43f10416aeb483bc6001097b26c) C:\Windows\system32\drivers\pciide.sys
21:28:24.0755 1616 pciide - ok
21:28:24.0793 1616 pcmcia (e6f3fb1b86aa519e7698ad05e58b04e5) C:\Windows\system32\drivers\pcmcia.sys
21:28:24.0797 1616 pcmcia - ok
21:28:24.0888 1616 PEAUTH (6349f6ed9c623b44b52ea3c63c831a92) C:\Windows\system32\drivers\peauth.sys
21:28:24.0916 1616 PEAUTH - ok
21:28:25.0014 1616 pneteth (713e294439d982bb161317de0136faa0) C:\Windows\system32\DRIVERS\pneteth.sys
21:28:25.0074 1616 pneteth - ok
21:28:25.0133 1616 PptpMiniport (ecfffaec0c1ecd8dbc77f39070ea1db1) C:\Windows\system32\DRIVERS\raspptp.sys
21:28:25.0136 1616 PptpMiniport - ok
21:28:25.0167 1616 Processor (2027293619dd0f047c584cf2e7df4ffd) C:\Windows\system32\drivers\processr.sys
21:28:25.0170 1616 Processor - ok
21:28:25.0229 1616 PSched (99514faa8df93d34b5589187db3aa0ba) C:\Windows\system32\DRIVERS\pacer.sys
21:28:25.0231 1616 PSched - ok
21:28:25.0245 1616 PxHelp20 (f7bb4e7a7c02ab4a2672937e124e306e) C:\Windows\system32\Drivers\PxHelp20.sys
21:28:25.0247 1616 PxHelp20 - ok
21:28:25.0405 1616 ql2300 (0a6db55afb7820c99aa1f3a1d270f4f6) C:\Windows\system32\drivers\ql2300.sys
21:28:25.0454 1616 ql2300 - ok
21:28:25.0481 1616 ql40xx (81a7e5c076e59995d54bc1ed3a16e60b) C:\Windows\system32\drivers\ql40xx.sys
21:28:25.0484 1616 ql40xx - ok
21:28:25.0532 1616 QWAVEdrv (9f5e0e1926014d17486901c88eca2db7) C:\Windows\system32\drivers\qwavedrv.sys
21:28:25.0535 1616 QWAVEdrv - ok
21:28:25.0554 1616 RasAcd (147d7f9c556d259924351feb0de606c3) C:\Windows\system32\DRIVERS\rasacd.sys
21:28:25.0556 1616 RasAcd - ok
21:28:25.0585 1616 Rasl2tp (a214adbaf4cb47dd2728859ef31f26b0) C:\Windows\system32\DRIVERS\rasl2tp.sys
21:28:25.0587 1616 Rasl2tp - ok
21:28:25.0632 1616 RasPppoe (509a98dd18af4375e1fc40bc175f1def) C:\Windows\system32\DRIVERS\raspppoe.sys
21:28:25.0634 1616 RasPppoe - ok
21:28:25.0691 1616 RasSstp (2005f4a1e05fa09389ac85840f0a9e4d) C:\Windows\system32\DRIVERS\rassstp.sys
21:28:25.0694 1616 RasSstp - ok
21:28:25.0749 1616 rdbss (b14c9d5b9add2f84f70570bbbfaa7935) C:\Windows\system32\DRIVERS\rdbss.sys
21:28:25.0755 1616 rdbss - ok
21:28:25.0775 1616 RDPCDD (89e59be9a564262a3fb6c4f4f1cd9899) C:\Windows\system32\DRIVERS\RDPCDD.sys
21:28:25.0778 1616 RDPCDD - ok
21:28:25.0826 1616 rdpdr (fbc0bacd9c3d7f6956853f64a66e252d) C:\Windows\system32\drivers\rdpdr.sys
21:28:25.0832 1616 rdpdr - ok
21:28:25.0846 1616 RDPENCDD (9d91fe5286f748862ecffa05f8a0710c) C:\Windows\system32\drivers\rdpencdd.sys
21:28:25.0849 1616 RDPENCDD - ok
21:28:25.0913 1616 RDPWD (30bfbdfb7f95559ede971f9ddb9a00ba) C:\Windows\system32\drivers\RDPWD.sys
21:28:25.0918 1616 RDPWD - ok
21:28:25.0946 1616 RimUsb - ok
21:28:26.0018 1616 RimVSerPort (2c4fb2e9f039287767c384e46ee91030) C:\Windows\system32\DRIVERS\RimSerial.sys
21:28:26.0020 1616 RimVSerPort - ok
21:28:26.0046 1616 ROOTMODEM (75e8a6bfa7374aba833ae92bf41ae4e6) C:\Windows\system32\Drivers\RootMdm.sys
21:28:26.0047 1616 ROOTMODEM - ok
21:28:26.0088 1616 rspndr (9c508f4074a39e8b4b31d27198146fad) C:\Windows\system32\DRIVERS\rspndr.sys
21:28:26.0091 1616 rspndr - ok
21:28:26.0143 1616 RTL8169 (2d19a7469ea19993d0c12e627f4530bc) C:\Windows\system32\DRIVERS\Rtlh86.sys
21:28:26.0149 1616 RTL8169 - ok
21:28:26.0175 1616 RTSTOR (01c64783db1f40e1e3df67dd36199b35) C:\Windows\system32\drivers\RTSTOR.SYS
21:28:26.0179 1616 RTSTOR - ok
21:28:26.0215 1616 sbp2port (3ce8f073a557e172b330109436984e30) C:\Windows\system32\drivers\sbp2port.sys
21:28:26.0218 1616 sbp2port - ok
21:28:26.0273 1616 secdrv (90a3935d05b494a5a39d37e71f09a677) C:\Windows\system32\drivers\secdrv.sys
21:28:26.0274 1616 secdrv - ok
21:28:26.0307 1616 Serenum (68e44e331d46f0fb38f0863a84cd1a31) C:\Windows\system32\drivers\serenum.sys
21:28:26.0309 1616 Serenum - ok
21:28:26.0342 1616 Serial (c70d69a918b178d3c3b06339b40c2e1b) C:\Windows\system32\drivers\serial.sys
21:28:26.0346 1616 Serial - ok
21:28:26.0409 1616 sermouse (8af3d28a879bf75db53a0ee7a4289624) C:\Windows\system32\drivers\sermouse.sys
21:28:26.0411 1616 sermouse - ok
21:28:26.0456 1616 sffdisk (3efa810bdca87f6ecc24f9832243fe86) C:\Windows\system32\drivers\sffdisk.sys
21:28:26.0458 1616 sffdisk - ok
21:28:26.0524 1616 sffp_mmc (e95d451f7ea3e583aec75f3b3ee42dc5) C:\Windows\system32\drivers\sffp_mmc.sys
21:28:26.0526 1616 sffp_mmc - ok
21:28:26.0586 1616 sffp_sd (3d0ea348784b7ac9ea9bd9f317980979) C:\Windows\system32\drivers\sffp_sd.sys
21:28:26.0588 1616 sffp_sd - ok
21:28:26.0621 1616 sfloppy (46ed8e91793b2e6f848015445a0ac188) C:\Windows\system32\drivers\sfloppy.sys
21:28:26.0623 1616 sfloppy - ok
21:28:26.0677 1616 sisagp (1d76624a09a054f682d746b924e2dbc3) C:\Windows\system32\drivers\sisagp.sys
21:28:26.0680 1616 sisagp - ok
21:28:26.0720 1616 SiSRaid2 (43cb7aa756c7db280d01da9b676cfde2) C:\Windows\system32\drivers\sisraid2.sys
21:28:26.0722 1616 SiSRaid2 - ok
21:28:26.0753 1616 SiSRaid4 (a99c6c8b0baa970d8aa59ddc50b57f94) C:\Windows\system32\drivers\sisraid4.sys
21:28:26.0756 1616 SiSRaid4 - ok
21:28:26.0801 1616 Smb (7b75299a4d201d6a6533603d6914ab04) C:\Windows\system32\DRIVERS\smb.sys
21:28:26.0804 1616 Smb - ok
21:28:26.0891 1616 SMSIVZAM5 (1e715247efffdda938c085913045d599) C:\PROGRA~1\VERIZO~1\VZACCE~1\SMSIVZAM5.SYS
21:28:26.0893 1616 SMSIVZAM5 - ok
21:28:26.0994 1616 spldr (7aebdeef071fe28b0eef2cdd69102bff) C:\Windows\system32\drivers\spldr.sys
21:28:26.0995 1616 spldr - ok
21:28:27.0041 1616 srv (41987f9fc0e61adf54f581e15029ad91) C:\Windows\system32\DRIVERS\srv.sys
21:28:27.0048 1616 srv - ok
21:28:27.0105 1616 srv2 (ff33aff99564b1aa534f58868cbe41ef) C:\Windows\system32\DRIVERS\srv2.sys
21:28:27.0109 1616 srv2 - ok
21:28:27.0147 1616 srvnet (7605c0e1d01a08f3ecd743f38b834a44) C:\Windows\system32\DRIVERS\srvnet.sys
21:28:27.0151 1616 srvnet - ok
21:28:27.0229 1616 StillCam (ef70b3d22b4bffda6ea851ecb063efaa) C:\Windows\system32\DRIVERS\serscan.sys
21:28:27.0232 1616 StillCam - ok
21:28:27.0253 1616 swenum (7ba58ecf0c0a9a69d44b3dca62becf56) C:\Windows\system32\DRIVERS\swenum.sys
21:28:27.0260 1616 swenum - ok
21:28:27.0327 1616 Symc8xx (192aa3ac01df071b541094f251deed10) C:\Windows\system32\drivers\symc8xx.sys
21:28:27.0329 1616 Symc8xx - ok
21:28:27.0357 1616 Sym_hi (8c8eb8c76736ebaf3b13b633b2e64125) C:\Windows\system32\drivers\sym_hi.sys
21:28:27.0359 1616 Sym_hi - ok
21:28:27.0391 1616 Sym_u3 (8072af52b5fd103bbba387a1e49f62cb) C:\Windows\system32\drivers\sym_u3.sys
21:28:27.0393 1616 Sym_u3 - ok
21:28:27.0482 1616 SynTP (70534d1e4f9ac990536d5fb5b550b3de) C:\Windows\system32\DRIVERS\SynTP.sys
21:28:27.0488 1616 SynTP - ok
21:28:27.0583 1616 Tcpip (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\drivers\tcpip.sys
21:28:27.0634 1616 Tcpip - ok
21:28:27.0674 1616 Tcpip6 (16731b631f28f63cd9f4cb60940e7ddd) C:\Windows\system32\DRIVERS\tcpip.sys
21:28:27.0683 1616 Tcpip6 - ok
21:28:27.0717 1616 tcpipreg (3fc13f09af9be487c7b4fac4070a036c) C:\Windows\system32\drivers\tcpipreg.sys
21:28:27.0719 1616 tcpipreg - ok
21:28:27.0757 1616 tdcmdpst (1825bceb47bf41c5a9f0e44de82fc27a) C:\Windows\system32\DRIVERS\tdcmdpst.sys
21:28:27.0759 1616 tdcmdpst - ok
21:28:27.0800 1616 TDPIPE (5dcf5e267be67a1ae926f2df77fbcc56) C:\Windows\system32\drivers\tdpipe.sys
21:28:27.0802 1616 TDPIPE - ok
21:28:27.0834 1616 TDTCP (389c63e32b3cefed425b61ed92d3f021) C:\Windows\system32\drivers\tdtcp.sys
21:28:27.0836 1616 TDTCP - ok
21:28:27.0882 1616 tdx (76b06eb8a01fc8624d699e7045303e54) C:\Windows\system32\DRIVERS\tdx.sys
21:28:27.0885 1616 tdx - ok
21:28:27.0964 1616 TermDD (3cad38910468eab9a6479e2f01db43c7) C:\Windows\system32\DRIVERS\termdd.sys
21:28:27.0967 1616 TermDD - ok
21:28:28.0057 1616 tos_sps32 (1ea5f27c29405bf49799feca77186da9) C:\Windows\system32\DRIVERS\tos_sps32.sys
21:28:28.0063 1616 tos_sps32 - ok
21:28:28.0117 1616 tssecsrv (dcf0f056a2e4f52287264f5ab29cf206) C:\Windows\system32\DRIVERS\tssecsrv.sys
21:28:28.0119 1616 tssecsrv - ok
21:28:28.0151 1616 tunmp (caecc0120ac49e3d2f758b9169872d38) C:\Windows\system32\DRIVERS\tunmp.sys
21:28:28.0153 1616 tunmp - ok
21:28:28.0193 1616 tunnel (300db877ac094feab0be7688c3454a9c) C:\Windows\system32\DRIVERS\tunnel.sys
21:28:28.0195 1616 tunnel - ok
21:28:28.0240 1616 TVALZ (792a8b80f8188aba4b2be271583f3e46) C:\Windows\system32\DRIVERS\TVALZ_O.SYS
21:28:28.0242 1616 TVALZ - ok
21:28:28.0264 1616 uagp35 (7d33c4db2ce363c8518d2dfcf533941f) C:\Windows\system32\drivers\uagp35.sys
21:28:28.0267 1616 uagp35 - ok
21:28:28.0320 1616 udfs (d9728af68c4c7693cb100b8441cbdec6) C:\Windows\system32\DRIVERS\udfs.sys
21:28:28.0325 1616 udfs - ok
21:28:28.0376 1616 uliagpkx (b0acfdc9e4af279e9116c03e014b2b27) C:\Windows\system32\drivers\uliagpkx.sys
21:28:28.0379 1616 uliagpkx - ok
21:28:28.0434 1616 uliahci (9224bb254f591de4ca8d572a5f0d635c) C:\Windows\system32\drivers\uliahci.sys
21:28:28.0440 1616 uliahci - ok
21:28:28.0479 1616 UlSata (8514d0e5cd0534467c5fc61be94a569f) C:\Windows\system32\drivers\ulsata.sys
21:28:28.0483 1616 UlSata - ok
21:28:28.0525 1616 ulsata2 (38c3c6e62b157a6bc46594fada45c62b) C:\Windows\system32\drivers\ulsata2.sys
21:28:28.0529 1616 ulsata2 - ok
21:28:28.0543 1616 umbus (32cff9f809ae9aed85464492bf3e32d2) C:\Windows\system32\DRIVERS\umbus.sys
21:28:28.0546 1616 umbus - ok
21:28:28.0623 1616 USBAAPL (4b8a9c16b6d9258ed99c512aecb8c555) C:\Windows\system32\Drivers\usbaapl.sys
21:28:28.0656 1616 USBAAPL - ok
21:28:28.0670 1616 usbbus - ok
21:28:28.0730 1616 usbccgp (caf811ae4c147ffcd5b51750c7f09142) C:\Windows\system32\DRIVERS\usbccgp.sys
21:28:28.0772 1616 usbccgp - ok
21:28:28.0814 1616 usbcir (e9476e6c486e76bc4898074768fb7131) C:\Windows\system32\drivers\usbcir.sys
21:28:28.0817 1616 usbcir - ok
21:28:28.0833 1616 UsbDiag - ok
21:28:28.0878 1616 usbehci (79e96c23a97ce7b8f14d310da2db0c9b) C:\Windows\system32\DRIVERS\usbehci.sys
21:28:28.0880 1616 usbehci - ok
21:28:28.0904 1616 usbhub (4673bbcb006af60e7abddbe7a130ba42) C:\Windows\system32\DRIVERS\usbhub.sys
21:28:28.0940 1616 usbhub - ok
21:28:29.0171 1616 USBModem - ok
21:28:29.0196 1616 usbohci (ce697fee0d479290d89bec80dfe793b7) C:\Windows\system32\DRIVERS\usbohci.sys
21:28:29.0198 1616 usbohci - ok
21:28:29.0255 1616 usbprint (e75c4b5269091d15a2e7dc0b6d35f2f5) C:\Windows\system32\DRIVERS\usbprint.sys
21:28:29.0257 1616 usbprint - ok
21:28:29.0310 1616 usbscan (a508c9bd8724980512136b039bba65e9) C:\Windows\system32\DRIVERS\usbscan.sys
21:28:29.0312 1616 usbscan - ok
21:28:29.0355 1616 USBSTOR (be3da31c191bc222d9ad503c5224f2ad) C:\Windows\system32\DRIVERS\USBSTOR.SYS
21:28:29.0396 1616 USBSTOR - ok
21:28:29.0438 1616 usbuhci (814d653efc4d48be3b04a307eceff56f) C:\Windows\system32\DRIVERS\usbuhci.sys
21:28:29.0440 1616 usbuhci - ok
21:28:29.0492 1616 usbvideo (e67998e8f14cb0627a769f6530bcb352) C:\Windows\system32\Drivers\usbvideo.sys
21:28:29.0496 1616 usbvideo - ok
21:28:29.0550 1616 vga (87b06e1f30b749a114f74622d013f8d4) C:\Windows\system32\DRIVERS\vgapnp.sys
21:28:29.0552 1616 vga - ok
21:28:29.0585 1616 VgaSave (2e93ac0a1d8c79d019db6c51f036636c) C:\Windows\System32\drivers\vga.sys
21:28:29.0588 1616 VgaSave - ok
21:28:29.0619 1616 viaagp (5d7159def58a800d5781ba3a879627bc) C:\Windows\system32\drivers\viaagp.sys
21:28:29.0621 1616 viaagp - ok
21:28:29.0658 1616 ViaC7 (c4f3a691b5bad343e6249bd8c2d45dee) C:\Windows\system32\drivers\viac7.sys
21:28:29.0660 1616 ViaC7 - ok
21:28:29.0696 1616 viaide (aadf5587a4063f52c2c3fed7887426fc) C:\Windows\system32\drivers\viaide.sys
21:28:29.0698 1616 viaide - ok
21:28:29.0733 1616 volmgr (69503668ac66c77c6cd7af86fbdf8c43) C:\Windows\system32\drivers\volmgr.sys
21:28:29.0735 1616 volmgr - ok
21:28:29.0819 1616 volmgrx (23e41b834759917bfd6b9a0d625d0c28) C:\Windows\system32\drivers\volmgrx.sys
21:28:29.0826 1616 volmgrx - ok
21:28:29.0875 1616 volsnap (147281c01fcb1df9252de2a10d5e7093) C:\Windows\system32\drivers\volsnap.sys
21:28:29.0881 1616 volsnap - ok
21:28:29.0911 1616 vsmraid (587253e09325e6bf226b299774b728a9) C:\Windows\system32\drivers\vsmraid.sys
21:28:29.0915 1616 vsmraid - ok
21:28:29.0992 1616 WacomPen (48dfee8f1af7c8235d4e626f0c4fe031) C:\Windows\system32\drivers\wacompen.sys
21:28:29.0993 1616 WacomPen - ok
21:28:30.0018 1616 Wanarp (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:28:30.0021 1616 Wanarp - ok
21:28:30.0027 1616 Wanarpv6 (55201897378cca7af8b5efd874374a26) C:\Windows\system32\DRIVERS\wanarp.sys
21:28:30.0028 1616 Wanarpv6 - ok
21:28:30.0072 1616 Wd (78fe9542363f297b18c027b2d7e7c07f) C:\Windows\system32\drivers\wd.sys
21:28:30.0074 1616 Wd - ok
21:28:30.0126 1616 Wdf01000 (b6f0a7ad6d4bd325fbcd8bac96cd8d96) C:\Windows\system32\drivers\Wdf01000.sys
21:28:30.0137 1616 Wdf01000 - ok
21:28:30.0246 1616 WinUSB (676f4b665bdd8053eaa53ac1695b8074) C:\Windows\system32\DRIVERS\WinUSB.sys
21:28:30.0271 1616 WinUSB - ok
21:28:30.0314 1616 WmiAcpi (2e7255d172df0b8283cdfb7b433b864e) C:\Windows\system32\drivers\wmiacpi.sys
21:28:30.0316 1616 WmiAcpi - ok
21:28:30.0369 1616 ws2ifsl (e3a3cb253c0ec2494d4a61f5e43a389c) C:\Windows\system32\drivers\ws2ifsl.sys
21:28:30.0372 1616 ws2ifsl - ok
21:28:30.0438 1616 WUDFRd (ac13cb789d93412106b0fb6c7eb2bcb6) C:\Windows\system32\DRIVERS\WUDFRd.sys
21:28:30.0442 1616 WUDFRd - ok
21:28:30.0527 1616 MBR (0x1B8) (5b5e648d12fcadc244c1ec30318e1eb9) \Device\Harddisk0\DR0
21:28:30.0581 1616 \Device\Harddisk0\DR0 - ok
21:28:30.0586 1616 Boot (0x1200) (837a8982be8c986768a5eb7cde524361) \Device\Harddisk0\DR0\Partition0
21:28:30.0587 1616 \Device\Harddisk0\DR0\Partition0 - ok
21:28:30.0591 1616 ============================================================
21:28:30.0591 1616 Scan finished
21:28:30.0591 1616 ============================================================
21:28:30.0609 2376 Detected object count: 0
21:28:30.0609 2376 Actual detected object count: 0

#12 boopme

boopme

    To Insanity and Beyond


  • Global Moderator
  • 73,344 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:NJ USA
  • Local time:06:15 PM

Posted 23 January 2012 - 10:58 PM

If you are using Chrome reinstall it.

If you are on WIFI.. reset the router to its default configuration. This can be done by inserting something tiny like a paper clip end or pencil tip into a small hole labeled "reset" located on the back of the router. Press and hold down the small button inside until the lights on the front of the router blink off and then on again (usually about 10 seconds). If you don’t know the router's default password, you can look it up HERE


If these don't work its a protected malware and we need to move.

We need a deeper look. Please go here....Preparation Guide ,do steps 6-9.

Create a DDS log and post it in the new topic explained in step 9 which is here Virus, Trojan, Spyware, and Malware Removal Logs and not in this topic,thanks.
If GMER won't run skip it and move on.

Let me know if that went well.
How do I get help? Who is helping me?For the time will come when men will not put up with sound doctrine. Instead, to suit their own desires, they will gather around them a great number of teachers to say what their itching ears want to hear....Become a BleepingComputer fan: Facebook

#13 vcalemine

vcalemine
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 23 January 2012 - 11:50 PM

I can't get my WiFi to work. I see my old net work name and the name of the type of router I have. When I try to connect I enter password which is the default password. However, my user name is admin but there is no where to type that

#14 vcalemine

vcalemine
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 24 January 2012 - 12:03 AM

ok i plugged my comp into the router and have gotten onto my router page but i really don't know what to do to get the wireless working again. i have never set it up before

#15 vcalemine

vcalemine
  • Topic Starter

  • Members
  • 98 posts
  • OFFLINE
  •  
  • Gender:Female
  • Location:wilmington, nc
  • Local time:06:15 PM

Posted 24 January 2012 - 12:20 AM

ok i got the wireless working. now i am off to do these other instructions




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users